Warning: Permanently added '10.128.1.88' (ED25519) to the list of known hosts. 2025/02/21 18:06:24 ignoring optional flag "sandboxArg"="0" 2025/02/21 18:06:24 ignoring optional flag "type"="gce" 2025/02/21 18:06:24 parsed 1 programs 2025/02/21 18:06:26 executed programs: 0 [ 63.699069][ T1356] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 69.684086][ T1777] loop0: detected capacity change from 0 to 1024 [ 69.694820][ T1777] ================================================================== [ 69.702902][ T1777] BUG: KASAN: slab-out-of-bounds in hfsplus_uni2asc+0x724/0x1180 [ 69.710640][ T1777] Read of size 2 at addr ffff888104b3d40c by task syz-executor.0/1777 [ 69.718782][ T1777] [ 69.721099][ T1777] CPU: 0 PID: 1777 Comm: syz-executor.0 Not tainted 6.1.129-syzkaller #0 [ 69.729492][ T1777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 69.739536][ T1777] Call Trace: [ 69.742819][ T1777] [ 69.745738][ T1777] dump_stack_lvl+0xf4/0x251 [ 69.750322][ T1777] ? nf_tcp_handle_invalid+0x2f3/0x2f3 [ 69.755766][ T1777] ? panic+0x3fe/0x3fe [ 69.759822][ T1777] ? __virt_addr_valid+0x139/0x270 [ 69.765001][ T1777] ? __virt_addr_valid+0x221/0x270 [ 69.770123][ T1777] print_report+0x15f/0x4f0 [ 69.774612][ T1777] ? __virt_addr_valid+0x139/0x270 [ 69.779709][ T1777] ? __virt_addr_valid+0x221/0x270 [ 69.784805][ T1777] ? hfsplus_uni2asc+0x724/0x1180 [ 69.789811][ T1777] kasan_report+0x136/0x160 [ 69.794321][ T1777] ? hfsplus_uni2asc+0x724/0x1180 [ 69.799327][ T1777] hfsplus_uni2asc+0x724/0x1180 [ 69.804157][ T1777] ? memcpy+0x3c/0x60 [ 69.808152][ T1777] hfsplus_readdir+0x7fd/0x10d0 [ 69.813078][ T1777] ? hfsplus_rename+0x160/0x160 [ 69.817918][ T1777] ? iterate_dir+0xaa/0x500 [ 69.822405][ T1777] ? down_read_interruptible+0x1010/0x1010 [ 69.828195][ T1777] ? common_file_perm+0x130/0x1e0 [ 69.833200][ T1777] ? fsnotify_perm+0x120/0x440 [ 69.837947][ T1777] ? hfsplus_rename+0x160/0x160 [ 69.842786][ T1777] iterate_dir+0x1fa/0x500 [ 69.847195][ T1777] __se_sys_getdents64+0x1af/0x3e0 [ 69.852289][ T1777] ? __x64_sys_getdents64+0x80/0x80 [ 69.857554][ T1777] ? filldir+0x570/0x570 [ 69.861794][ T1777] ? switch_fpu_return+0xc9/0x130 [ 69.866801][ T1777] do_syscall_64+0x3b/0x80 [ 69.871202][ T1777] ? clear_bhb_loop+0x45/0xa0 [ 69.875862][ T1777] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 69.881750][ T1777] RIP: 0033:0x7fd66c27cce9 [ 69.886158][ T1777] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 69.905759][ T1777] RSP: 002b:00007fd66cf290c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9 [ 69.914159][ T1777] RAX: ffffffffffffffda RBX: 00007fd66c39bf80 RCX: 00007fd66c27cce9 [ 69.922203][ T1777] RDX: 0000000000000067 RSI: 0000000020000540 RDI: 0000000000000003 [ 69.930247][ T1777] RBP: 00007fd66c2c947a R08: 0000000000000000 R09: 0000000000000000 [ 69.938208][ T1777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 69.946164][ T1777] R13: 0000000000000006 R14: 00007fd66c39bf80 R15: 00007ffe87fc1068 [ 69.954120][ T1777] [ 69.957127][ T1777] [ 69.959435][ T1777] Allocated by task 1777: [ 69.963747][ T1777] kasan_set_track+0x4b/0x70 [ 69.968322][ T1777] __kasan_kmalloc+0x97/0xb0 [ 69.972978][ T1777] __kmalloc+0xa6/0x1c0 [ 69.977203][ T1777] hfsplus_find_init+0x7c/0x180 [ 69.982036][ T1777] hfsplus_readdir+0x1f4/0x10d0 [ 69.986868][ T1777] iterate_dir+0x1fa/0x500 [ 69.991267][ T1777] __se_sys_getdents64+0x1af/0x3e0 [ 69.996361][ T1777] do_syscall_64+0x3b/0x80 [ 70.000852][ T1777] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 70.006731][ T1777] [ 70.009048][ T1777] The buggy address belongs to the object at ffff888104b3d000 [ 70.009048][ T1777] which belongs to the cache kmalloc-2k of size 2048 [ 70.023082][ T1777] The buggy address is located 1036 bytes inside of [ 70.023082][ T1777] 2048-byte region [ffff888104b3d000, ffff888104b3d800) [ 70.036595][ T1777] [ 70.038911][ T1777] The buggy address belongs to the physical page: [ 70.045321][ T1777] page:ffffea000412ce00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x104b38 [ 70.055639][ T1777] head:ffffea000412ce00 order:3 compound_mapcount:0 compound_pincount:0 [ 70.064118][ T1777] flags: 0x100000000010200(slab|head|node=0|zone=2) [ 70.070701][ T1777] raw: 0100000000010200 0000000000000000 dead000000000001 ffff888100042000 [ 70.079268][ T1777] raw: 0000000000000000 0000000080080008 00000001ffffffff 0000000000000000 [ 70.087832][ T1777] page dumped because: kasan: bad access detected [ 70.094238][ T1777] page_owner tracks the page as allocated [ 70.099972][ T1777] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 3626936958, free_ts 0 [ 70.119579][ T1777] post_alloc_hook+0x286/0x2b0 [ 70.124345][ T1777] get_page_from_freelist+0x4002/0x4210 [ 70.129892][ T1777] __alloc_pages+0x251/0x640 [ 70.134612][ T1777] alloc_page_interleave+0xf/0x120 [ 70.139725][ T1777] alloc_slab_page+0x6a/0x150 [ 70.144482][ T1777] new_slab+0x70/0x250 [ 70.148543][ T1777] ___slab_alloc+0x9df/0xe70 [ 70.153130][ T1777] __kmem_cache_alloc_node+0x195/0x250 [ 70.158586][ T1777] __kmalloc_node_track_caller+0x96/0x1c0 [ 70.164298][ T1777] __alloc_skb+0x179/0x710 [ 70.168800][ T1777] rtmsg_ifinfo_build_skb+0x73/0x140 [ 70.174176][ T1777] rtmsg_ifinfo+0x5d/0xf0 [ 70.178494][ T1777] register_netdevice+0x114d/0x1580 [ 70.183690][ T1777] ifb_init_one+0x69/0x85 [ 70.188006][ T1777] ifb_init_module+0x3f/0x83 [ 70.192602][ T1777] do_one_initcall+0x19f/0x4c0 [ 70.197357][ T1777] page_owner free stack trace missing [ 70.202716][ T1777] [ 70.205031][ T1777] Memory state around the buggy address: [ 70.210644][ T1777] ffff888104b3d300: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 70.218693][ T1777] ffff888104b3d380: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 70.226780][ T1777] >ffff888104b3d400: 00 04 fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 70.234873][ T1777] ^ [ 70.239206][ T1777] ffff888104b3d480: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 70.247257][ T1777] ffff888104b3d500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 70.255330][ T1777] ================================================================== [ 70.263618][ T1777] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 70.271121][ T1777] Kernel Offset: disabled [ 70.275436][ T1777] Rebooting in 86400 seconds..