Warning: Permanently added '10.128.10.25' (ED25519) to the list of known hosts. 2024/02/07 14:50:18 ignoring optional flag "sandboxArg"="0" 2024/02/07 14:50:19 parsed 1 programs 2024/02/07 14:50:20 executed programs: 0 [ 53.831085][ T1435] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 58.624662][ T1859] loop0: detected capacity change from 0 to 64 [ 58.633016][ T1859] hfs: unable to locate alternate MDB [ 58.638454][ T1859] hfs: continuing without an alternate MDB [ 58.645930][ T1859] ================================================================== [ 58.654260][ T1859] BUG: KASAN: slab-out-of-bounds in hfs_bnode_read_key+0x1c8/0x3d0 [ 58.662145][ T1859] Write of size 256 at addr ffff88810fe4d880 by task syz-executor.0/1859 [ 58.670617][ T1859] [ 58.672918][ T1859] CPU: 1 PID: 1859 Comm: syz-executor.0 Not tainted 6.1.77-syzkaller #0 [ 58.681210][ T1859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 58.691244][ T1859] Call Trace: [ 58.694591][ T1859] [ 58.697496][ T1859] dump_stack_lvl+0xf4/0x251 [ 58.702073][ T1859] ? nf_tcp_handle_invalid+0x2f3/0x2f3 [ 58.707537][ T1859] ? panic+0x3f7/0x3f7 [ 58.711601][ T1859] ? __virt_addr_valid+0x139/0x260 [ 58.716693][ T1859] ? __virt_addr_valid+0x211/0x260 [ 58.721874][ T1859] print_report+0x15f/0x4f0 [ 58.726365][ T1859] ? __virt_addr_valid+0x139/0x260 [ 58.731467][ T1859] ? __virt_addr_valid+0x211/0x260 [ 58.736563][ T1859] ? hfs_bnode_read_key+0x1c8/0x3d0 [ 58.741835][ T1859] kasan_report+0x136/0x160 [ 58.746332][ T1859] ? hfs_bnode_read_key+0x1c8/0x3d0 [ 58.751615][ T1859] kasan_check_range+0x27f/0x290 [ 58.756531][ T1859] ? hfs_bnode_read_key+0x1c8/0x3d0 [ 58.761965][ T1859] memcpy+0x3c/0x60 [ 58.765835][ T1859] hfs_bnode_read_key+0x1c8/0x3d0 [ 58.770833][ T1859] hfs_brec_insert+0x65a/0xc90 [ 58.775575][ T1859] ? do_raw_spin_unlock+0x137/0x8a0 [ 58.780745][ T1859] ? hfs_brec_keylen+0x2b0/0x2b0 [ 58.785740][ T1859] ? memset+0x1f/0x40 [ 58.789696][ T1859] ? hfs_cat_build_record+0x5b/0x7c0 [ 58.794958][ T1859] hfs_cat_create+0x52a/0x8b0 [ 58.799603][ T1859] ? hfs_cat_build_key+0x160/0x160 [ 58.804690][ T1859] ? _raw_spin_unlock+0x24/0x40 [ 58.809510][ T1859] ? hfs_new_inode+0x7b8/0x9d0 [ 58.814331][ T1859] hfs_create+0x5b/0xb0 [ 58.818470][ T1859] ? hfs_lookup+0x2a0/0x2a0 [ 58.823036][ T1859] path_openat+0xf0c/0x27d0 [ 58.827508][ T1859] ? do_raw_spin_unlock+0x137/0x8a0 [ 58.832772][ T1859] ? do_filp_open+0x430/0x430 [ 58.837433][ T1859] do_filp_open+0x226/0x430 [ 58.841919][ T1859] ? vfs_tmpfile+0x410/0x410 [ 58.846498][ T1859] ? _raw_spin_unlock+0x24/0x40 [ 58.851345][ T1859] ? alloc_fd+0x3dc/0x470 [ 58.855658][ T1859] do_sys_openat2+0x10b/0x420 [ 58.860312][ T1859] ? rcu_is_watching+0x1b/0x90 [ 58.865049][ T1859] ? do_sys_open+0x1c0/0x1c0 [ 58.869698][ T1859] ? __rseq_handle_notify_resume+0x827/0xdf0 [ 58.875652][ T1859] ? xfd_validate_state+0x12/0x50 [ 58.880932][ T1859] __x64_sys_openat+0x209/0x250 [ 58.885754][ T1859] ? __ia32_sys_open+0x230/0x230 [ 58.890671][ T1859] ? switch_fpu_return+0xc9/0x130 [ 58.895676][ T1859] do_syscall_64+0x3d/0x80 [ 58.900075][ T1859] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 58.905956][ T1859] RIP: 0033:0x7fb441a7cb29 [ 58.910351][ T1859] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 58.930202][ T1859] RSP: 002b:00007fb4428930c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 58.938605][ T1859] RAX: ffffffffffffffda RBX: 00007fb441b9bf80 RCX: 00007fb441a7cb29 [ 58.946743][ T1859] RDX: 0000000000141842 RSI: 0000000020000380 RDI: ffffffffffffff9c [ 58.954786][ T1859] RBP: 00007fb441ac847a R08: 0000000000000000 R09: 0000000000000000 [ 58.962752][ T1859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 58.970803][ T1859] R13: 0000000000000006 R14: 00007fb441b9bf80 R15: 00007ffd9ac643f8 [ 58.978789][ T1859] [ 58.982018][ T1859] [ 58.984330][ T1859] Allocated by task 1859: [ 58.988640][ T1859] kasan_set_track+0x4b/0x70 [ 58.993211][ T1859] __kasan_kmalloc+0x97/0xb0 [ 58.997955][ T1859] __kmalloc+0xa6/0x1c0 [ 59.002088][ T1859] hfs_find_init+0x86/0x1b0 [ 59.006693][ T1859] hfs_cat_create+0x165/0x8b0 [ 59.011471][ T1859] hfs_create+0x5b/0xb0 [ 59.015608][ T1859] path_openat+0xf0c/0x27d0 [ 59.020093][ T1859] do_filp_open+0x226/0x430 [ 59.024658][ T1859] do_sys_openat2+0x10b/0x420 [ 59.029484][ T1859] __x64_sys_openat+0x209/0x250 [ 59.034396][ T1859] do_syscall_64+0x3d/0x80 [ 59.038910][ T1859] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 59.044773][ T1859] [ 59.047070][ T1859] The buggy address belongs to the object at ffff88810fe4d880 [ 59.047070][ T1859] which belongs to the cache kmalloc-96 of size 96 [ 59.061004][ T1859] The buggy address is located 0 bytes inside of [ 59.061004][ T1859] 96-byte region [ffff88810fe4d880, ffff88810fe4d8e0) [ 59.073990][ T1859] [ 59.076386][ T1859] The buggy address belongs to the physical page: [ 59.082767][ T1859] page:ffffea00043f9340 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10fe4d [ 59.093057][ T1859] flags: 0x100000000000200(slab|node=0|zone=2) [ 59.099617][ T1859] raw: 0100000000000200 dead000000000100 dead000000000122 ffff888100041780 [ 59.108344][ T1859] raw: 0000000000000000 0000000080200020 00000001ffffffff 0000000000000000 [ 59.116893][ T1859] page dumped because: kasan: bad access detected [ 59.123271][ T1859] page_owner tracks the page as allocated [ 59.128958][ T1859] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 1, tgid 1 (swapper/0), ts 2164534909, free_ts 0 [ 59.145685][ T1859] post_alloc_hook+0x286/0x2b0 [ 59.150528][ T1859] get_page_from_freelist+0x398c/0x3b60 [ 59.156040][ T1859] __alloc_pages+0x251/0x640 [ 59.160599][ T1859] alloc_page_interleave+0xf/0x120 [ 59.165680][ T1859] alloc_slab_page+0x6a/0x150 [ 59.170326][ T1859] new_slab+0x70/0x250 [ 59.174451][ T1859] ___slab_alloc+0x9df/0xe70 [ 59.179182][ T1859] __kmem_cache_alloc_node+0x195/0x250 [ 59.184702][ T1859] __kmalloc+0x95/0x1c0 [ 59.188880][ T1859] resource_list_create_entry+0x1a/0xa0 [ 59.194421][ T1859] acpi_dev_process_resource+0x13a/0x780 [ 59.200297][ T1859] acpi_walk_resources+0x246/0x540 [ 59.205392][ T1859] acpi_dev_get_resources+0x216/0x360 [ 59.210913][ T1859] acpi_pci_probe_root_resources+0x54/0x2e0 [ 59.216956][ T1859] pci_acpi_root_prepare_resources+0x89/0x4b0 [ 59.223009][ T1859] acpi_pci_root_create+0x1f5/0xb90 [ 59.228197][ T1859] page_owner free stack trace missing [ 59.233551][ T1859] [ 59.235852][ T1859] Memory state around the buggy address: [ 59.241470][ T1859] ffff88810fe4d780: fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 59.249503][ T1859] ffff88810fe4d800: 00 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc [ 59.257625][ T1859] >ffff88810fe4d880: 00 00 00 00 00 00 00 00 00 06 fc fc fc fc fc fc [ 59.265740][ T1859] ^ [ 59.272121][ T1859] ffff88810fe4d900: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 59.280236][ T1859] ffff88810fe4d980: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 59.288266][ T1859] ================================================================== [ 59.296531][ T1859] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 59.303927][ T1859] Kernel Offset: disabled [ 59.308234][ T1859] Rebooting in 86400 seconds..