Warning: Permanently added '10.128.1.250' (ED25519) to the list of known hosts.
2025/07/21 15:25:30 ignoring optional flag "sandboxArg"="0"
2025/07/21 15:25:30 ignoring optional flag "type"="gce"
2025/07/21 15:25:30 parsed 1 programs
[ 123.500584][ T6333] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 126.137604][ T5156] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 126.146066][ T5156] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 126.158140][ T5156] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 126.172553][ T5156] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 126.181905][ T5156] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 127.693195][ T6381] chnl_net:caif_netlink_parms(): no params data found
[ 127.811536][ T6381] bridge0: port 1(bridge_slave_0) entered blocking state
[ 127.819560][ T6381] bridge0: port 1(bridge_slave_0) entered disabled state
[ 127.826924][ T6381] bridge_slave_0: entered allmulticast mode
[ 127.834385][ T6381] bridge_slave_0: entered promiscuous mode
[ 127.846326][ T6381] bridge0: port 2(bridge_slave_1) entered blocking state
[ 127.854313][ T6381] bridge0: port 2(bridge_slave_1) entered disabled state
[ 127.861865][ T6381] bridge_slave_1: entered allmulticast mode
[ 127.869502][ T6381] bridge_slave_1: entered promiscuous mode
[ 127.898816][ T6381] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 127.913020][ T6381] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 127.953104][ T6381] team0: Port device team_slave_0 added
[ 127.963092][ T6381] team0: Port device team_slave_1 added
[ 127.992292][ T6381] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 128.000582][ T6381] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 128.026631][ T6381] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 128.040034][ T6381] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 128.047372][ T6381] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 128.074296][ T6381] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 128.115431][ T6381] hsr_slave_0: entered promiscuous mode
[ 128.121881][ T6381] hsr_slave_1: entered promiscuous mode
[ 128.734088][ T6381] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 128.762793][ T6381] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 128.789362][ T6381] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 128.819555][ T6381] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 129.038868][ T6381] 8021q: adding VLAN 0 to HW filter on device bond0
[ 129.064717][ T6381] 8021q: adding VLAN 0 to HW filter on device team0
[ 129.092222][ T59] bridge0: port 1(bridge_slave_0) entered blocking state
[ 129.099535][ T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 129.114659][ T59] bridge0: port 2(bridge_slave_1) entered blocking state
[ 129.121901][ T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 129.391805][ T6381] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 129.460056][ T6381] veth0_vlan: entered promiscuous mode
[ 129.474548][ T6381] veth1_vlan: entered promiscuous mode
[ 129.521011][ T6381] veth0_macvtap: entered promiscuous mode
[ 129.533139][ T6381] veth1_macvtap: entered promiscuous mode
[ 129.559538][ T6381] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 129.575329][ T6381] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 129.593847][ T6381] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.604447][ T6381] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.614275][ T6381] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.623717][ T6381] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.854234][ T2129] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 129.941328][ T2129] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 130.056608][ T2129] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 130.860222][ T4149] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 130.886707][ T4149] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 130.924803][ T4149] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 130.934886][ T4149] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 131.152993][ T2129] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/07/21 15:25:42 executed programs: 0
[ 131.262618][ T5156] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 131.274805][ T5156] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 131.283300][ T5156] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 131.291637][ T5156] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 131.302015][ T5156] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 131.557007][ T6490] chnl_net:caif_netlink_parms(): no params data found
[ 131.671366][ T6490] bridge0: port 1(bridge_slave_0) entered blocking state
[ 131.680150][ T6490] bridge0: port 1(bridge_slave_0) entered disabled state
[ 131.688493][ T6490] bridge_slave_0: entered allmulticast mode
[ 131.696603][ T6490] bridge_slave_0: entered promiscuous mode
[ 131.712978][ T6490] bridge0: port 2(bridge_slave_1) entered blocking state
[ 131.721492][ T6490] bridge0: port 2(bridge_slave_1) entered disabled state
[ 131.729591][ T6490] bridge_slave_1: entered allmulticast mode
[ 131.737715][ T6490] bridge_slave_1: entered promiscuous mode
[ 131.791066][ T6490] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 131.804185][ T6490] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 131.860028][ T6490] team0: Port device team_slave_0 added
[ 131.870667][ T6490] team0: Port device team_slave_1 added
[ 131.922105][ T6490] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 131.929339][ T6490] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 131.956657][ T6490] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 131.970451][ T6490] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 131.978037][ T6490] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 132.005006][ T6490] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 132.084996][ T6490] hsr_slave_0: entered promiscuous mode
[ 132.096725][ T6490] hsr_slave_1: entered promiscuous mode
[ 132.103745][ T6490] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 132.111977][ T6490] Cannot create hsr debugfs directory
[ 132.581162][ T2129] bridge_slave_1: left allmulticast mode
[ 132.586956][ T2129] bridge_slave_1: left promiscuous mode
[ 132.594788][ T2129] bridge0: port 2(bridge_slave_1) entered disabled state
[ 132.615438][ T2129] bridge_slave_0: left allmulticast mode
[ 132.622025][ T2129] bridge_slave_0: left promiscuous mode
[ 132.629189][ T2129] bridge0: port 1(bridge_slave_0) entered disabled state
[ 132.928997][ T2129] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 132.941608][ T2129] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 132.952677][ T2129] bond0 (unregistering): Released all slaves
[ 133.031448][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 133.044050][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 133.106260][ T2129] hsr_slave_0: left promiscuous mode
[ 133.113853][ T2129] hsr_slave_1: left promiscuous mode
[ 133.123033][ T2129] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 133.134859][ T2129] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 133.145159][ T2129] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 133.153496][ T2129] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 133.175834][ T2129] veth1_macvtap: left promiscuous mode
[ 133.183198][ T2129] veth0_macvtap: left promiscuous mode
[ 133.190385][ T2129] veth1_vlan: left promiscuous mode
[ 133.195787][ T2129] veth0_vlan: left promiscuous mode
[ 133.352284][ T5156] Bluetooth: hci0: command tx timeout
[ 133.727550][ T2129] team0 (unregistering): Port device team_slave_1 removed
[ 133.768602][ T2129] team0 (unregistering): Port device team_slave_0 removed
[ 134.443338][ T6490] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 134.469119][ T6490] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 134.493038][ T6490] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 134.504541][ T6490] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 134.640125][ T6490] 8021q: adding VLAN 0 to HW filter on device bond0
[ 134.662685][ T6490] 8021q: adding VLAN 0 to HW filter on device team0
[ 134.683800][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 134.691171][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 134.976745][ T1035] bridge0: port 2(bridge_slave_1) entered blocking state
[ 134.984290][ T1035] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 135.405031][ T6490] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 135.428651][ T5156] Bluetooth: hci0: command tx timeout
[ 135.526577][ T6490] veth0_vlan: entered promiscuous mode
[ 135.550261][ T6490] veth1_vlan: entered promiscuous mode
[ 135.626182][ T6490] veth0_macvtap: entered promiscuous mode
[ 135.655317][ T6490] veth1_macvtap: entered promiscuous mode
[ 135.697564][ T6490] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 135.736701][ T6490] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 135.755448][ T6490] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 135.765832][ T6490] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 135.775682][ T6490] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 135.785809][ T6490] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 135.904382][ T4149] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 135.921638][ T4149] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 135.959433][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 135.968716][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 136.064228][ T6617] loop0: detected capacity change from 0 to 1024
[ 136.145310][ T6617] hfsplus: request for non-existent node 128 in B*Tree
[ 136.157570][ T6617] hfsplus: request for non-existent node 128 in B*Tree
[ 136.165636][ T6617] ==================================================================
[ 136.174473][ T6617] BUG: KASAN: slab-out-of-bounds in hfsplus_bnode_read+0xc0/0x2a0
[ 136.182778][ T6617] Read of size 8 at addr ffff88807a6a29c0 by task syz.0.15/6617
[ 136.190779][ T6617]
[ 136.193156][ T6617] CPU: 1 UID: 0 PID: 6617 Comm: syz.0.15 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full)
[ 136.193178][ T6617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 136.193194][ T6617] Call Trace:
[ 136.193204][ T6617]
[ 136.193212][ T6617] dump_stack_lvl+0x189/0x250
[ 136.193235][ T6617] ? __virt_addr_valid+0x1c8/0x5c0
[ 136.193253][ T6617] ? rcu_is_watching+0x15/0xb0
[ 136.193268][ T6617] ? __kasan_check_byte+0x12/0x40
[ 136.193284][ T6617] ? __pfx_dump_stack_lvl+0x10/0x10
[ 136.193300][ T6617] ? rcu_is_watching+0x15/0xb0
[ 136.193316][ T6617] ? lock_release+0x4b/0x3e0
[ 136.193332][ T6617] ? __virt_addr_valid+0x1c8/0x5c0
[ 136.193349][ T6617] ? __virt_addr_valid+0x4a5/0x5c0
[ 136.193367][ T6617] print_report+0xca/0x230
[ 136.193390][ T6617] ? hfsplus_bnode_read+0xc0/0x2a0
[ 136.193413][ T6617] kasan_report+0x118/0x150
[ 136.193432][ T6617] ? hfsplus_bnode_read+0xc0/0x2a0
[ 136.193457][ T6617] hfsplus_bnode_read+0xc0/0x2a0
[ 136.193482][ T6617] hfsplus_bnode_dump+0x300/0x450
[ 136.193509][ T6617] ? __pfx_hfsplus_bnode_dump+0x10/0x10
[ 136.193534][ T6617] ? hfsplus_bnode_write_u16+0x8b/0xd0
[ 136.193558][ T6617] ? hfsplus_bnode_move+0x393/0xb90
[ 136.193582][ T6617] ? __pfx___hfsplus_brec_find+0x10/0x10
[ 136.193600][ T6617] hfsplus_brec_remove+0x480/0x550
[ 136.193623][ T6617] __hfsplus_delete_attr+0x1d4/0x360
[ 136.193643][ T6617] ? __pfx___hfsplus_delete_attr+0x10/0x10
[ 136.193661][ T6617] ? hfsplus_find_init+0x8c/0x1d0
[ 136.193680][ T6617] hfsplus_delete_all_attrs+0x277/0x410
[ 136.193700][ T6617] ? __pfx_hfsplus_delete_all_attrs+0x10/0x10
[ 136.193721][ T6617] ? rcu_is_watching+0x15/0xb0
[ 136.193739][ T6617] ? __mark_inode_dirty+0x8c5/0xdf0
[ 136.193772][ T6617] hfsplus_delete_cat+0x92c/0xd20
[ 136.193796][ T6617] ? __pfx_hfsplus_delete_cat+0x10/0x10
[ 136.193820][ T6617] ? __pfx___mutex_lock+0x10/0x10
[ 136.193846][ T6617] hfsplus_unlink+0x359/0x730
[ 136.193871][ T6617] ? __pfx_hfsplus_unlink+0x10/0x10
[ 136.193894][ T6617] ? __pfx_down_write+0x10/0x10
[ 136.193915][ T6617] ? bpf_lsm_inode_unlink+0x9/0x20
[ 136.193933][ T6617] vfs_unlink+0x391/0x650
[ 136.193950][ T6617] do_unlinkat+0x350/0x560
[ 136.193967][ T6617] ? __pfx_do_unlinkat+0x10/0x10
[ 136.193984][ T6617] ? getname_flags+0x1e5/0x540
[ 136.194004][ T6617] __x64_sys_unlink+0x47/0x50
[ 136.194019][ T6617] do_syscall_64+0xfa/0x3b0
[ 136.194037][ T6617] ? lockdep_hardirqs_on+0x9c/0x150
[ 136.194054][ T6617] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 136.194070][ T6617] ? clear_bhb_loop+0x60/0xb0
[ 136.194089][ T6617] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 136.194106][ T6617] RIP: 0033:0x7f080d7799f9
[ 136.194129][ T6617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 136.194144][ T6617] RSP: 002b:00007f080e595038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[ 136.194164][ T6617] RAX: ffffffffffffffda RBX: 00007f080d915f80 RCX: 00007f080d7799f9
[ 136.194177][ T6617] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000
[ 136.194187][ T6617] RBP: 00007f080d7e78ee R08: 0000000000000000 R09: 0000000000000000
[ 136.194196][ T6617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 136.194205][ T6617] R13: 0000000000000000 R14: 00007f080d915f80 R15: 00007ffded162b68
[ 136.194223][ T6617]
[ 136.194229][ T6617]
[ 136.528460][ T6617] Allocated by task 6617:
[ 136.532806][ T6617] kasan_save_track+0x3e/0x80
[ 136.537523][ T6617] __kasan_kmalloc+0x93/0xb0
[ 136.542211][ T6617] __kmalloc_noprof+0x27a/0x4f0
[ 136.547246][ T6617] __hfs_bnode_create+0xf3/0x810
[ 136.552217][ T6617] hfsplus_bnode_find+0x224/0xd20
[ 136.557266][ T6617] hfsplus_brec_find+0x15c/0x500
[ 136.562228][ T6617] __hfsplus_getxattr+0x301/0x7e0
[ 136.567497][ T6617] hfsplus_getxattr+0x10d/0x180
[ 136.572469][ T6617] __vfs_getxattr+0x3f4/0x430
[ 136.577163][ T6617] smk_fetch+0xb4/0x140
[ 136.581322][ T6617] smack_d_instantiate+0x6f5/0x940
[ 136.586587][ T6617] security_d_instantiate+0x10a/0x200
[ 136.592234][ T6617] d_splice_alias+0x6e/0x330
[ 136.597111][ T6617] hfsplus_lookup+0x803/0x890
[ 136.602052][ T6617] lookup_one_qstr_excl_raw+0x118/0x280
[ 136.607597][ T6617] do_unlinkat+0x1d6/0x560
[ 136.612175][ T6617] __x64_sys_unlink+0x47/0x50
[ 136.616839][ T6617] do_syscall_64+0xfa/0x3b0
[ 136.621344][ T6617] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 136.627244][ T6617]
[ 136.629566][ T6617] The buggy address belongs to the object at ffff88807a6a2900
[ 136.629566][ T6617] which belongs to the cache kmalloc-192 of size 192
[ 136.643810][ T6617] The buggy address is located 40 bytes to the right of
[ 136.643810][ T6617] allocated 152-byte region [ffff88807a6a2900, ffff88807a6a2998)
[ 136.658835][ T6617]
[ 136.661416][ T6617] The buggy address belongs to the physical page:
[ 136.667828][ T6617] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88807a6a2c00 pfn:0x7a6a2
[ 136.677887][ T6617] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 136.685510][ T6617] page_type: f5(slab)
[ 136.689491][ T6617] raw: 00fff00000000000 ffff88801a4413c0 ffffea000080d200 0000000000000003
[ 136.698321][ T6617] raw: ffff88807a6a2c00 000000008010000f 00000000f5000000 0000000000000000
[ 136.707064][ T6617] page dumped because: kasan: bad access detected
[ 136.713739][ T6617] page_owner tracks the page as allocated
[ 136.719530][ T6617] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x252800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP|__GFP_THISNODE), pid 5941, tgid 5941 (syz-executor), ts 95810177006, free_ts 95788179972
[ 136.739170][ T6617] post_alloc_hook+0x240/0x2a0
[ 136.743924][ T6617] get_page_from_freelist+0x21d5/0x22b0
[ 136.749462][ T6617] __alloc_frozen_pages_noprof+0x181/0x370
[ 136.755280][ T6617] allocate_slab+0x65/0x3b0
[ 136.759787][ T6617] ___slab_alloc+0xbfc/0x1480
[ 136.764497][ T6617] __kmalloc_node_noprof+0x2fd/0x4e0
[ 136.769772][ T6617] allocate_slab+0x17c/0x3b0
[ 136.774354][ T6617] ___slab_alloc+0xbfc/0x1480
[ 136.779030][ T6617] kmem_cache_alloc_lru_noprof+0x288/0x3d0
[ 136.785016][ T6617] __d_alloc+0x31/0x6f0
[ 136.789273][ T6617] d_alloc_parallel+0xe0/0x14e0
[ 136.794298][ T6617] __lookup_slow+0x116/0x3d0
[ 136.799141][ T6617] start_creating+0x22e/0x3c0
[ 136.803989][ T6617] __debugfs_create_file+0x79/0x4f0
[ 136.809266][ T6617] debugfs_create_file_short+0x3f/0x60
[ 136.814823][ T6617] ieee80211_debugfs_recreate_netdev+0x268/0x1460
[ 136.821507][ T6617] page last free pid 23 tgid 23 stack trace:
[ 136.827664][ T6617] __free_frozen_pages+0xc65/0xe60
[ 136.832822][ T6617] __tlb_remove_table+0x2d2/0x3b0
[ 136.838027][ T6617] tlb_remove_table_rcu+0x85/0x100
[ 136.843345][ T6617] rcu_core+0xca5/0x1710
[ 136.847690][ T6617] handle_softirqs+0x283/0x870
[ 136.852487][ T6617] run_ksoftirqd+0x9b/0x100
[ 136.857669][ T6617] smpboot_thread_fn+0x542/0xa60
[ 136.862844][ T6617] kthread+0x711/0x8a0
[ 136.867541][ T6617] ret_from_fork+0x3fc/0x770
[ 136.872685][ T6617] ret_from_fork_asm+0x1a/0x30
[ 136.877827][ T6617]
[ 136.880148][ T6617] Memory state around the buggy address:
[ 136.885855][ T6617] ffff88807a6a2880: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[ 136.893929][ T6617] ffff88807a6a2900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 136.902650][ T6617] >ffff88807a6a2980: 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 136.910804][ T6617] ^
[ 136.916956][ T6617] ffff88807a6a2a00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 136.925121][ T6617] ffff88807a6a2a80: 00 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 136.933376][ T6617] ==================================================================
[ 136.979281][ T6617] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 136.986624][ T6617] CPU: 0 UID: 0 PID: 6617 Comm: syz.0.15 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full)
[ 136.997334][ T6617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 137.010281][ T6617] Call Trace:
[ 137.013732][ T6617]
[ 137.016810][ T6617] dump_stack_lvl+0x99/0x250
[ 137.021582][ T6617] ? __asan_memcpy+0x40/0x70
[ 137.026808][ T6617] ? __pfx_dump_stack_lvl+0x10/0x10
[ 137.032042][ T6617] ? __pfx__printk+0x10/0x10
[ 137.037017][ T6617] panic+0x2db/0x790
[ 137.041003][ T6617] ? __pfx_preempt_schedule+0x10/0x10
[ 137.046568][ T6617] ? __pfx_panic+0x10/0x10
[ 137.051188][ T6617] ? _raw_spin_unlock_irqrestore+0xfd/0x110
[ 137.057093][ T6617] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 137.063680][ T6617] ? hfsplus_bnode_read+0xc0/0x2a0
[ 137.069416][ T6617] check_panic_on_warn+0x89/0xb0
[ 137.074572][ T6617] ? hfsplus_bnode_read+0xc0/0x2a0
[ 137.079699][ T6617] end_report+0x78/0x160
[ 137.084067][ T6617] kasan_report+0x129/0x150
[ 137.088776][ T6617] ? hfsplus_bnode_read+0xc0/0x2a0
[ 137.093996][ T6617] hfsplus_bnode_read+0xc0/0x2a0
[ 137.098951][ T6617] hfsplus_bnode_dump+0x300/0x450
[ 137.104017][ T6617] ? __pfx_hfsplus_bnode_dump+0x10/0x10
[ 137.109659][ T6617] ? hfsplus_bnode_write_u16+0x8b/0xd0
[ 137.115240][ T6617] ? hfsplus_bnode_move+0x393/0xb90
[ 137.120647][ T6617] ? __pfx___hfsplus_brec_find+0x10/0x10
[ 137.126426][ T6617] hfsplus_brec_remove+0x480/0x550
[ 137.131682][ T6617] __hfsplus_delete_attr+0x1d4/0x360
[ 137.137004][ T6617] ? __pfx___hfsplus_delete_attr+0x10/0x10
[ 137.142819][ T6617] ? hfsplus_find_init+0x8c/0x1d0
[ 137.147845][ T6617] hfsplus_delete_all_attrs+0x277/0x410
[ 137.153670][ T6617] ? __pfx_hfsplus_delete_all_attrs+0x10/0x10
[ 137.159858][ T6617] ? rcu_is_watching+0x15/0xb0
[ 137.164620][ T6617] ? __mark_inode_dirty+0x8c5/0xdf0
[ 137.169819][ T6617] hfsplus_delete_cat+0x92c/0xd20
[ 137.174931][ T6617] ? __pfx_hfsplus_delete_cat+0x10/0x10
[ 137.180510][ T6617] ? __pfx___mutex_lock+0x10/0x10
[ 137.185615][ T6617] hfsplus_unlink+0x359/0x730
[ 137.190314][ T6617] ? __pfx_hfsplus_unlink+0x10/0x10
[ 137.195706][ T6617] ? __pfx_down_write+0x10/0x10
[ 137.200634][ T6617] ? bpf_lsm_inode_unlink+0x9/0x20
[ 137.205760][ T6617] vfs_unlink+0x391/0x650
[ 137.210104][ T6617] do_unlinkat+0x350/0x560
[ 137.214791][ T6617] ? __pfx_do_unlinkat+0x10/0x10
[ 137.219741][ T6617] ? getname_flags+0x1e5/0x540
[ 137.224506][ T6617] __x64_sys_unlink+0x47/0x50
[ 137.229174][ T6617] do_syscall_64+0xfa/0x3b0
[ 137.233672][ T6617] ? lockdep_hardirqs_on+0x9c/0x150
[ 137.238867][ T6617] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 137.245008][ T6617] ? clear_bhb_loop+0x60/0xb0
[ 137.249699][ T6617] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 137.255618][ T6617] RIP: 0033:0x7f080d7799f9
[ 137.260044][ T6617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 137.280179][ T6617] RSP: 002b:00007f080e595038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[ 137.288660][ T6617] RAX: ffffffffffffffda RBX: 00007f080d915f80 RCX: 00007f080d7799f9
[ 137.296884][ T6617] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000
[ 137.304964][ T6617] RBP: 00007f080d7e78ee R08: 0000000000000000 R09: 0000000000000000
[ 137.312948][ T6617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 137.321376][ T6617] R13: 0000000000000000 R14: 00007f080d915f80 R15: 00007ffded162b68
[ 137.329604][ T6617]
[ 137.333072][ T6617] Kernel Offset: disabled
[ 137.337420][ T6617] Rebooting in 86400 seconds..