Warning: Permanently added '10.128.1.189' (ED25519) to the list of known hosts.
2024/09/19 07:24:23 ignoring optional flag "sandboxArg"="0"
2024/09/19 07:24:24 parsed 1 programs
2024/09/19 07:24:24 executed programs: 0
2024/09/19 07:24:30 executed programs: 1
[   59.104132][ T1771] loop0: detected capacity change from 0 to 1024
[   59.162746][  T151] ==================================================================
[   59.170878][  T151] BUG: KASAN: slab-out-of-bounds in copy_page_from_iter_atomic+0x6f4/0xde0
[   59.179507][  T151] Read of size 2048 at addr ffff888102ed1800 by task kworker/u4:3/151
[   59.187638][  T151] 
[   59.189963][  T151] CPU: 0 PID: 151 Comm: kworker/u4:3 Not tainted 6.1.111-syzkaller #0
[   59.198109][  T151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   59.208258][  T151] Workqueue: loop0 loop_workfn
[   59.213036][  T151] Call Trace:
[   59.216304][  T151]  <TASK>
[   59.219332][  T151]  dump_stack_lvl+0xf4/0x251
[   59.223998][  T151]  ? nf_tcp_handle_invalid+0x2f3/0x2f3
[   59.229617][  T151]  ? panic+0x3fe/0x3fe
[   59.233707][  T151]  ? _printk+0xca/0x10a
[   59.237866][  T151]  ? __virt_addr_valid+0x139/0x270
[   59.243078][  T151]  ? __virt_addr_valid+0x221/0x270
[   59.248190][  T151]  print_report+0x15f/0x4f0
[   59.252684][  T151]  ? __virt_addr_valid+0x139/0x270
[   59.257878][  T151]  ? __virt_addr_valid+0x221/0x270
[   59.262989][  T151]  ? copy_page_from_iter_atomic+0x6f4/0xde0
[   59.268861][  T151]  kasan_report+0x136/0x160
[   59.273360][  T151]  ? copy_page_from_iter_atomic+0x6f4/0xde0
[   59.279685][  T151]  kasan_check_range+0x27f/0x290
[   59.284808][  T151]  ? copy_page_from_iter_atomic+0x6f4/0xde0
[   59.290773][  T151]  memcpy+0x25/0x60
[   59.294645][  T151]  copy_page_from_iter_atomic+0x6f4/0xde0
[   59.300431][  T151]  ? pipe_zero+0x1e0/0x1e0
[   59.304832][  T151]  ? shmem_write_begin+0x1dd/0x400
[   59.309938][  T151]  ? shmem_writepage+0x1410/0x1410
[   59.315148][  T151]  ? rcu_is_watching+0x1b/0x90
[   59.319910][  T151]  generic_perform_write+0x352/0x530
[   59.325183][  T151]  ? generic_file_direct_write+0x360/0x360
[   59.331009][  T151]  ? generic_write_checks+0xc9/0x170
[   59.336283][  T151]  __generic_file_write_iter+0x13f/0x340
[   59.341937][  T151]  ? common_file_perm+0x130/0x1e0
[   59.346954][  T151]  generic_file_write_iter+0x99/0x230
[   59.352409][  T151]  do_iter_write+0x664/0xad0
[   59.356985][  T151]  ? vfs_iter_write+0x90/0x90
[   59.361641][  T151]  ? kthread_associate_blkcg+0x1e7/0x330
[   59.367273][  T151]  loop_process_work+0x1420/0x1e40
[   59.372370][  T151]  ? loop_workfn+0x50/0x50
[   59.376765][  T151]  ? read_lock_is_recursive+0x10/0x10
[   59.382117][  T151]  ? _raw_spin_unlock_irqrestore+0xcb/0x130
[   59.388092][  T151]  ? read_word_at_a_time+0xe/0x20
[   59.393273][  T151]  ? process_one_work+0x6af/0xe90
[   59.398625][  T151]  ? process_one_work+0x6af/0xe90
[   59.403628][  T151]  process_one_work+0x745/0xe90
[   59.408492][  T151]  ? worker_detach_from_pool+0x240/0x240
[   59.414128][  T151]  ? __rwlock_init+0x140/0x140
[   59.418874][  T151]  ? wq_worker_sleeping+0x19/0x1f0
[   59.423967][  T151]  worker_thread+0x806/0xe60
[   59.428640][  T151]  kthread+0x1e8/0x240
[   59.433233][  T151]  ? process_one_work+0xe90/0xe90
[   59.438240][  T151]  ? kthread_blkcg+0xa0/0xa0
[   59.442826][  T151]  ret_from_fork+0x1f/0x30
[   59.447266][  T151]  </TASK>
[   59.450313][  T151] 
[   59.452622][  T151] Allocated by task 1771:
[   59.457033][  T151]  kasan_set_track+0x4b/0x70
[   59.461617][  T151]  __kasan_kmalloc+0x97/0xb0
[   59.466191][  T151]  __kmalloc+0xa6/0x1c0
[   59.470437][  T151]  hfsplus_read_wrapper+0x3fc/0x1110
[   59.475703][  T151]  hfsplus_fill_super+0x36e/0x1970
[   59.480829][  T151]  mount_bdev+0x26b/0x340
[   59.485202][  T151]  legacy_get_tree+0xe5/0x170
[   59.489880][  T151]  vfs_get_tree+0x7a/0x170
[   59.494287][  T151]  do_new_mount+0x21a/0x910
[   59.498788][  T151]  __se_sys_mount+0x23e/0x2d0
[   59.503487][  T151]  do_syscall_64+0x3b/0x80
[   59.507898][  T151]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   59.513777][  T151] 
[   59.516087][  T151] The buggy address belongs to the object at ffff888102ed1800
[   59.516087][  T151]  which belongs to the cache kmalloc-512 of size 512
[   59.530145][  T151] The buggy address is located 0 bytes inside of
[   59.530145][  T151]  512-byte region [ffff888102ed1800, ffff888102ed1a00)
[   59.543354][  T151] 
[   59.545686][  T151] The buggy address belongs to the physical page:
[   59.552095][  T151] page:ffffea00040bb400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x102ed0
[   59.562703][  T151] head:ffffea00040bb400 order:2 compound_mapcount:0 compound_pincount:0
[   59.571067][  T151] flags: 0x100000000010200(slab|head|node=0|zone=2)
[   59.577740][  T151] raw: 0100000000010200 0000000000000000 dead000000000001 ffff888100041c80
[   59.586322][  T151] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[   59.595013][  T151] page dumped because: kasan: bad access detected
[   59.601608][  T151] page_owner tracks the page as allocated
[   59.607404][  T151] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 55, tgid 55 (kworker/u4:0), ts 3124763211, free_ts 3106448191
[   59.628390][  T151]  post_alloc_hook+0x286/0x2b0
[   59.633149][  T151]  get_page_from_freelist+0x3994/0x3b70
[   59.638677][  T151]  __alloc_pages+0x251/0x640
[   59.643422][  T151]  alloc_slab_page+0x6a/0x150
[   59.648097][  T151]  new_slab+0x70/0x250
[   59.652162][  T151]  ___slab_alloc+0x9df/0xe70
[   59.656745][  T151]  __kmem_cache_alloc_node+0x195/0x250
[   59.662195][  T151]  kmalloc_trace+0x26/0xc0
[   59.666777][  T151]  alloc_bprm+0x52/0x5d0
[   59.671009][  T151]  kernel_execve+0x7d/0x610
[   59.675574][  T151]  call_usermodehelper_exec_async+0x1fc/0x310
[   59.681619][  T151]  ret_from_fork+0x1f/0x30
[   59.686101][  T151] page last free stack trace:
[   59.690754][  T151]  register_dummy_stack+0x81/0xd0
[   59.695755][  T151]  init_page_owner+0x20/0x70e
[   59.700409][  T151]  page_ext_init+0x3dc/0x413
[   59.704972][  T151]  kernel_init_freeable+0x370/0x4e9
[   59.710331][  T151] 
[   59.712637][  T151] Memory state around the buggy address:
[   59.718246][  T151]  ffff888102ed1900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   59.726373][  T151]  ffff888102ed1980: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   59.734522][  T151] >ffff888102ed1a00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   59.742559][  T151]                    ^
[   59.746692][  T151]  ffff888102ed1a80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   59.754845][  T151]  ffff888102ed1b00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   59.762887][  T151] ==================================================================
[   59.771175][  T151] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   59.778706][  T151] Kernel Offset: disabled
[   59.783134][  T151] Rebooting in 86400 seconds..