Warning: Permanently added '[localhost]:10618' (ED25519) to the list of known hosts.
2025/07/18 10:14:13 ignoring optional flag "sandboxArg"="0"
2025/07/18 10:14:13 parsed 1 programs
[  131.524586][ T5633] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  136.288232][ T5660] chnl_net:caif_netlink_parms(): no params data found
[  136.360648][ T5660] bridge0: port 1(bridge_slave_0) entered blocking state
[  136.364211][ T5660] bridge0: port 1(bridge_slave_0) entered disabled state
[  136.367768][ T5660] bridge_slave_0: entered allmulticast mode
[  136.372431][ T5660] bridge_slave_0: entered promiscuous mode
[  136.378439][ T5660] bridge0: port 2(bridge_slave_1) entered blocking state
[  136.382273][ T5660] bridge0: port 2(bridge_slave_1) entered disabled state
[  136.386283][ T5660] bridge_slave_1: entered allmulticast mode
[  136.390170][ T5660] bridge_slave_1: entered promiscuous mode
[  136.420806][ T5660] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  136.427446][ T5660] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  136.451205][ T5660] team0: Port device team_slave_0 added
[  136.456684][ T5660] team0: Port device team_slave_1 added
[  136.477318][ T5660] batman_adv: batadv0: Adding interface: batadv_slave_0
[  136.480346][ T5660] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  136.494124][ T5660] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  136.501040][ T5660] batman_adv: batadv0: Adding interface: batadv_slave_1
[  136.506529][ T5660] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  136.519035][ T5660] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  136.557438][ T5660] hsr_slave_0: entered promiscuous mode
[  136.560843][ T5660] hsr_slave_1: entered promiscuous mode
[  137.229183][ T5660] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  137.248676][ T5660] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  137.266146][ T5660] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  137.290927][ T5660] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  137.448993][ T5660] 8021q: adding VLAN 0 to HW filter on device bond0
[  137.482356][ T5660] 8021q: adding VLAN 0 to HW filter on device team0
[  137.525114][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[  137.528345][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[  137.535088][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[  137.538746][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[  137.887429][ T5660] 8021q: adding VLAN 0 to HW filter on device batadv0
[  137.898128][ T1313] ieee802154 phy0 wpan0: encryption failed: -22
[  137.901141][ T1313] ieee802154 phy1 wpan1: encryption failed: -22
[  137.977612][ T5660] veth0_vlan: entered promiscuous mode
[  137.998106][ T5660] veth1_vlan: entered promiscuous mode
[  138.060801][ T5660] veth0_macvtap: entered promiscuous mode
[  138.077156][ T5660] veth1_macvtap: entered promiscuous mode
[  138.105576][ T5660] batman_adv: batadv0: Interface activated: batadv_slave_0
[  138.135957][ T5660] batman_adv: batadv0: Interface activated: batadv_slave_1
[  138.158100][ T5660] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  138.162171][ T5660] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  138.183451][ T5660] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  138.187297][ T5660] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  138.467043][ T1090] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  138.565232][ T1090] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  138.676637][ T1090] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  138.807727][ T1090] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  138.837810][   T67] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  138.841308][   T67] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  138.902207][   T67] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  138.908943][   T67] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  139.889803][   T45] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  139.896015][   T45] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  139.900027][   T45] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  139.906672][   T45] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  139.911606][   T45] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  140.744195][ T1090] bridge_slave_1: left allmulticast mode
[  140.746834][ T1090] bridge_slave_1: left promiscuous mode
[  140.749434][ T1090] bridge0: port 2(bridge_slave_1) entered disabled state
[  140.785137][ T1090] bridge_slave_0: left allmulticast mode
[  140.787891][ T1090] bridge_slave_0: left promiscuous mode
[  140.790800][ T1090] bridge0: port 1(bridge_slave_0) entered disabled state
[  141.436733][ T1090] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  141.446890][ T1090] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  141.466149][ T1090] bond0 (unregistering): Released all slaves
[  141.597343][ T1090] hsr_slave_0: left promiscuous mode
[  141.601452][ T1090] hsr_slave_1: left promiscuous mode
[  141.611089][ T1090] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  141.634502][ T1090] batman_adv: batadv0: Removing interface: batadv_slave_0
[  141.644228][ T1090] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  141.647768][ T1090] batman_adv: batadv0: Removing interface: batadv_slave_1
[  141.687667][ T1090] veth1_macvtap: left promiscuous mode
[  141.690420][ T1090] veth0_macvtap: left promiscuous mode
[  141.692988][ T1090] veth1_vlan: left promiscuous mode
[  141.702870][ T1090] veth0_vlan: left promiscuous mode
[  142.333184][ T1090] team0 (unregistering): Port device team_slave_1 removed
[  142.377589][ T1090] team0 (unregistering): Port device team_slave_0 removed
2025/07/18 10:14:32 executed programs: 0
[  145.650845][ T4688] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  145.657690][ T4688] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  145.662212][ T4688] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  145.669506][ T4688] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  145.673108][ T4688] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  146.058173][ T5826] chnl_net:caif_netlink_parms(): no params data found
[  146.210954][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state
[  146.217200][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state
[  146.220576][ T5826] bridge_slave_0: entered allmulticast mode
[  146.235323][ T5826] bridge_slave_0: entered promiscuous mode
[  146.242099][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state
[  146.255485][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state
[  146.258839][ T5826] bridge_slave_1: entered allmulticast mode
[  146.283478][ T5826] bridge_slave_1: entered promiscuous mode
[  146.337280][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  146.357218][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  146.411633][ T5826] team0: Port device team_slave_0 added
[  146.426783][ T5826] team0: Port device team_slave_1 added
[  146.478285][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0
[  146.482214][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  146.510862][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  146.525488][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1
[  146.528332][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  146.559460][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  146.645961][ T5826] hsr_slave_0: entered promiscuous mode
[  146.649311][ T5826] hsr_slave_1: entered promiscuous mode
[  147.169093][ T5826] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  147.186180][ T5826] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  147.197534][ T5826] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  147.216509][ T5826] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  147.380922][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0
[  147.420244][ T5826] 8021q: adding VLAN 0 to HW filter on device team0
[  147.439829][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[  147.443660][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[  147.466927][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[  147.470245][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[  147.736271][ T4688] Bluetooth: hci0: command tx timeout
[  147.846135][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0
[  147.916185][ T5826] veth0_vlan: entered promiscuous mode
[  147.926786][ T5826] veth1_vlan: entered promiscuous mode
[  147.951554][ T5826] veth0_macvtap: entered promiscuous mode
[  147.958780][ T5826] veth1_macvtap: entered promiscuous mode
[  147.975364][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0
[  147.988196][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1
[  147.996299][ T5826] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  148.000136][ T5826] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  148.006551][ T5826] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  148.011411][ T5826] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  148.090835][ T1039] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  148.098547][ T1039] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  148.141324][   T67] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  148.148846][   T67] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  148.221924][ T5876] loop0: detected capacity change from 0 to 1024
[  148.277003][ T5876] hfsplus: request for non-existent node 211 in B*Tree
[  148.284982][ T5876] hfsplus: request for non-existent node 211 in B*Tree
[  148.291180][ T5876] ==================================================================
[  148.294650][ T5876] BUG: KASAN: slab-use-after-free in hfsplus_bnode_read+0xc0/0x2a0
[  148.298104][ T5876] Read of size 8 at addr ffff888036a4a600 by task syz.0.15/5876
[  148.302800][ T5876] 
[  148.303971][ T5876] CPU: 0 UID: 0 PID: 5876 Comm: syz.0.15 Not tainted 6.16.0-rc6-syzkaller-g6832a9317eee #0 PREEMPT(full) 
[  148.303989][ T5876] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  148.303996][ T5876] Call Trace:
[  148.304005][ T5876]  <TASK>
[  148.304011][ T5876]  dump_stack_lvl+0x189/0x250
[  148.304031][ T5876]  ? __virt_addr_valid+0x1c8/0x5c0
[  148.304048][ T5876]  ? rcu_is_watching+0x15/0xb0
[  148.304062][ T5876]  ? __kasan_check_byte+0x12/0x40
[  148.304078][ T5876]  ? __pfx_dump_stack_lvl+0x10/0x10
[  148.304093][ T5876]  ? rcu_is_watching+0x15/0xb0
[  148.304105][ T5876]  ? lock_release+0x4b/0x3e0
[  148.304114][ T5876]  ? __virt_addr_valid+0x1c8/0x5c0
[  148.304124][ T5876]  ? __virt_addr_valid+0x4a5/0x5c0
[  148.304134][ T5876]  print_report+0xca/0x230
[  148.304142][ T5876]  ? hfsplus_bnode_read+0xc0/0x2a0
[  148.304151][ T5876]  kasan_report+0x118/0x150
[  148.304161][ T5876]  ? hfsplus_bnode_read+0xc0/0x2a0
[  148.304170][ T5876]  hfsplus_bnode_read+0xc0/0x2a0
[  148.304179][ T5876]  hfsplus_bnode_dump+0x300/0x450
[  148.304189][ T5876]  ? __pfx_hfsplus_bnode_dump+0x10/0x10
[  148.304197][ T5876]  ? hfsplus_bnode_write_u16+0x8b/0xd0
[  148.304206][ T5876]  ? hfsplus_bnode_move+0x393/0xb90
[  148.304214][ T5876]  ? __pfx___hfsplus_brec_find+0x10/0x10
[  148.304225][ T5876]  hfsplus_brec_remove+0x480/0x550
[  148.304236][ T5876]  __hfsplus_delete_attr+0x1d4/0x360
[  148.304247][ T5876]  ? __pfx___hfsplus_delete_attr+0x10/0x10
[  148.304261][ T5876]  ? hfsplus_attr_build_key+0xee/0x260
[  148.304275][ T5876]  hfsplus_delete_attr+0x231/0x2d0
[  148.304291][ T5876]  ? __pfx_hfsplus_delete_attr+0x10/0x10
[  148.304306][ T5876]  ? hfsplus_find_init+0x8c/0x1d0
[  148.304321][ T5876]  ? hfsplus_find_init+0x15a/0x1d0
[  148.304334][ T5876]  __hfsplus_setxattr+0x37a/0x1f40
[  148.304351][ T5876]  ? is_bpf_text_address+0x26/0x2b0
[  148.304367][ T5876]  ? kernel_text_address+0xa5/0xe0
[  148.304379][ T5876]  ? unwind_get_return_address+0x4d/0x90
[  148.304393][ T5876]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  148.304410][ T5876]  ? arch_stack_walk+0xfc/0x150
[  148.304425][ T5876]  ? __pfx___hfsplus_setxattr+0x10/0x10
[  148.304442][ T5876]  ? stack_trace_save+0x9c/0xe0
[  148.304472][ T5876]  ? __kasan_kmalloc+0x93/0xb0
[  148.304481][ T5876]  ? hfsplus_setxattr+0x102/0x180
[  148.304512][ T5876]  hfsplus_setxattr+0x11e/0x180
[  148.304523][ T5876]  hfsplus_trusted_setxattr+0x40/0x60
[  148.304534][ T5876]  ? __pfx_hfsplus_trusted_setxattr+0x10/0x10
[  148.304545][ T5876]  __vfs_setxattr+0x43c/0x480
[  148.304563][ T5876]  __vfs_setxattr_noperm+0x12d/0x660
[  148.304579][ T5876]  vfs_setxattr+0x16b/0x2f0
[  148.304596][ T5876]  ? __pfx_vfs_setxattr+0x10/0x10
[  148.304611][ T5876]  ? mnt_get_write_access+0x223/0x2a0
[  148.304626][ T5876]  filename_setxattr+0x274/0x600
[  148.304640][ T5876]  ? __pfx_filename_setxattr+0x10/0x10
[  148.304657][ T5876]  ? getname_flags+0x1e5/0x540
[  148.304674][ T5876]  path_setxattrat+0x364/0x3a0
[  148.304688][ T5876]  ? __pfx_path_setxattrat+0x10/0x10
[  148.304699][ T5876]  ? do_futex+0x395/0x420
[  148.304723][ T5876]  ? rcu_is_watching+0x15/0xb0
[  148.304739][ T5876]  __x64_sys_lsetxattr+0xbf/0xe0
[  148.304755][ T5876]  do_syscall_64+0xfa/0x3b0
[  148.304838][ T5876]  ? lockdep_hardirqs_on+0x9c/0x150
[  148.304851][ T5876]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.304864][ T5876]  ? clear_bhb_loop+0x60/0xb0
[  148.304878][ T5876]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.304891][ T5876] RIP: 0033:0x7fde1d37e819
[  148.304901][ T5876] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.304915][ T5876] RSP: 002b:00007fde1e255038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  148.304926][ T5876] RAX: ffffffffffffffda RBX: 00007fde1d535fa0 RCX: 00007fde1d37e819
[  148.304933][ T5876] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000020000040
[  148.304939][ T5876] RBP: 00007fde1d3f175e R08: 0000000000000000 R09: 0000000000000000
[  148.304944][ T5876] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  148.304950][ T5876] R13: 0000000000000000 R14: 00007fde1d535fa0 R15: 00007ffd9aa798d8
[  148.304963][ T5876]  </TASK>
[  148.304967][ T5876] 
[  148.495935][ T5876] Allocated by task 9:
[  148.497802][ T5876]  kasan_save_track+0x3e/0x80
[  148.499975][ T5876]  __kasan_kmalloc+0x93/0xb0
[  148.502027][ T5876]  __kmalloc_cache_noprof+0x230/0x3d0
[  148.504382][ T5876]  drm_atomic_state_alloc+0xa9/0x100
[  148.506709][ T5876]  drm_atomic_helper_dirtyfb+0xed/0xee0
[  148.509166][ T5876]  drm_fbdev_shmem_helper_fb_dirty+0x160/0x2f0
[  148.512236][ T5876]  drm_fb_helper_damage_work+0x224/0x710
[  148.514986][ T5876]  process_scheduled_works+0xae1/0x17b0
[  148.517598][ T5876]  worker_thread+0x8a0/0xda0
[  148.519674][ T5876]  kthread+0x70e/0x8a0
[  148.521571][ T5876]  ret_from_fork+0x3fc/0x770
[  148.523687][ T5876]  ret_from_fork_asm+0x1a/0x30
[  148.525996][ T5876] 
[  148.527159][ T5876] Freed by task 9:
[  148.528885][ T5876]  kasan_save_track+0x3e/0x80
[  148.531030][ T5876]  kasan_save_free_info+0x46/0x50
[  148.533214][ T5876]  __kasan_slab_free+0x62/0x70
[  148.535287][ T5876]  kfree+0x18e/0x440
[  148.537042][ T5876]  __drm_atomic_state_free+0x1ea/0x210
[  148.539478][ T5876]  drm_atomic_helper_dirtyfb+0xe2d/0xee0
[  148.542043][ T5876]  drm_fbdev_shmem_helper_fb_dirty+0x160/0x2f0
[  148.544840][ T5876]  drm_fb_helper_damage_work+0x224/0x710
[  148.547714][ T5876]  process_scheduled_works+0xae1/0x17b0
[  148.550533][ T5876]  worker_thread+0x8a0/0xda0
[  148.552754][ T5876]  kthread+0x70e/0x8a0
[  148.554621][ T5876]  ret_from_fork+0x3fc/0x770
[  148.556647][ T5876]  ret_from_fork_asm+0x1a/0x30
[  148.558855][ T5876] 
[  148.560060][ T5876] The buggy address belongs to the object at ffff888036a4a600
[  148.560060][ T5876]  which belongs to the cache kmalloc-192 of size 192
[  148.566344][ T5876] The buggy address is located 0 bytes inside of
[  148.566344][ T5876]  freed 192-byte region [ffff888036a4a600, ffff888036a4a6c0)
[  148.572414][ T5876] 
[  148.573446][ T5876] The buggy address belongs to the physical page:
[  148.576222][ T5876] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x36a4a
[  148.580405][ T5876] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  148.583784][ T5876] page_type: f5(slab)
[  148.585557][ T5876] raw: 04fff00000000000 ffff88801a4413c0 ffffea0000d77a00 dead000000000003
[  148.589308][ T5876] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[  148.593224][ T5876] page dumped because: kasan: bad access detected
[  148.596109][ T5876] page_owner tracks the page as allocated
[  148.598606][ T5876] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52c00(GFP_NOIO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 1, tgid 1 (swapper/0), ts 19090310568, free_ts 0
[  148.606063][ T5876]  post_alloc_hook+0x240/0x2a0
[  148.608273][ T5876]  get_page_from_freelist+0x21e4/0x22c0
[  148.611448][ T5876]  __alloc_frozen_pages_noprof+0x181/0x370
[  148.614662][ T5876]  alloc_pages_mpol+0x232/0x4a0
[  148.616690][ T5876]  allocate_slab+0x8a/0x3b0
[  148.618668][ T5876]  ___slab_alloc+0xbfc/0x1480
[  148.620738][ T5876]  __kmalloc_noprof+0x305/0x4f0
[  148.622902][ T5876]  usb_alloc_urb+0x46/0x150
[  148.624980][ T5876]  usb_control_msg+0x118/0x3e0
[  148.627234][ T5876]  usb_get_status+0xe7/0x2a0
[  148.629354][ T5876]  hub_probe+0x1e37/0x37f0
[  148.631602][ T5876]  usb_probe_interface+0x641/0xbc0
[  148.634104][ T5876]  really_probe+0x26a/0x9a0
[  148.636151][ T5876]  __driver_probe_device+0x18c/0x2f0
[  148.638406][ T5876]  driver_probe_device+0x4f/0x430
[  148.640642][ T5876]  __device_attach_driver+0x2ce/0x530
[  148.642882][ T5876] page_owner free stack trace missing
[  148.645204][ T5876] 
[  148.646326][ T5876] Memory state around the buggy address:
[  148.649356][ T5876]  ffff888036a4a500: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  148.654056][ T5876]  ffff888036a4a580: 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc
[  148.657448][ T5876] >ffff888036a4a600: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  148.660845][ T5876]                    ^
[  148.662618][ T5876]  ffff888036a4a680: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  148.665954][ T5876]  ffff888036a4a700: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  148.669297][ T5876] ==================================================================
[  148.698530][ T5876] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  148.702017][ T5876] CPU: 0 UID: 0 PID: 5876 Comm: syz.0.15 Not tainted 6.16.0-rc6-syzkaller-g6832a9317eee #0 PREEMPT(full) 
[  148.706687][ T5876] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  148.711445][ T5876] Call Trace:
[  148.712947][ T5876]  <TASK>
[  148.714362][ T5876]  dump_stack_lvl+0x99/0x250
[  148.716562][ T5876]  ? __asan_memcpy+0x40/0x70
[  148.718533][ T5876]  ? __pfx_dump_stack_lvl+0x10/0x10
[  148.720630][ T5876]  ? __pfx__printk+0x10/0x10
[  148.722728][ T5876]  panic+0x2db/0x790
[  148.724521][ T5876]  ? __pfx_preempt_schedule+0x10/0x10
[  148.726947][ T5876]  ? __pfx_panic+0x10/0x10
[  148.729250][ T5876]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  148.734403][ T5876]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  148.737026][ T5876]  ? hfsplus_bnode_read+0xc0/0x2a0
[  148.739250][ T5876]  check_panic_on_warn+0x89/0xb0
[  148.741385][ T5876]  ? hfsplus_bnode_read+0xc0/0x2a0
[  148.743501][ T5876]  end_report+0x78/0x160
[  148.745475][ T5876]  kasan_report+0x129/0x150
[  148.747808][ T5876]  ? hfsplus_bnode_read+0xc0/0x2a0
[  148.750865][ T5876]  hfsplus_bnode_read+0xc0/0x2a0
[  148.753200][ T5876]  hfsplus_bnode_dump+0x300/0x450
[  148.755324][ T5876]  ? __pfx_hfsplus_bnode_dump+0x10/0x10
[  148.757506][ T5876]  ? hfsplus_bnode_write_u16+0x8b/0xd0
[  148.759874][ T5876]  ? hfsplus_bnode_move+0x393/0xb90
[  148.762054][ T5876]  ? __pfx___hfsplus_brec_find+0x10/0x10
[  148.764433][ T5876]  hfsplus_brec_remove+0x480/0x550
[  148.766629][ T5876]  __hfsplus_delete_attr+0x1d4/0x360
[  148.768861][ T5876]  ? __pfx___hfsplus_delete_attr+0x10/0x10
[  148.771455][ T5876]  ? hfsplus_attr_build_key+0xee/0x260
[  148.773799][ T5876]  hfsplus_delete_attr+0x231/0x2d0
[  148.776366][ T5876]  ? __pfx_hfsplus_delete_attr+0x10/0x10
[  148.779812][ T5876]  ? hfsplus_find_init+0x8c/0x1d0
[  148.782619][ T5876]  ? hfsplus_find_init+0x15a/0x1d0
[  148.784985][ T5876]  __hfsplus_setxattr+0x37a/0x1f40
[  148.787428][ T5876]  ? is_bpf_text_address+0x26/0x2b0
[  148.789701][ T5876]  ? kernel_text_address+0xa5/0xe0
[  148.791937][ T5876]  ? unwind_get_return_address+0x4d/0x90
[  148.794419][ T5876]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  148.797957][ T5876]  ? arch_stack_walk+0xfc/0x150
[  148.800378][ T5876]  ? __pfx___hfsplus_setxattr+0x10/0x10
[  148.802945][ T5876]  ? stack_trace_save+0x9c/0xe0
[  148.805188][ T5876]  ? __kasan_kmalloc+0x93/0xb0
[  148.807418][ T5876]  ? hfsplus_setxattr+0x102/0x180
[  148.809716][ T5876]  hfsplus_setxattr+0x11e/0x180
[  148.811938][ T5876]  hfsplus_trusted_setxattr+0x40/0x60
[  148.814382][ T5876]  ? __pfx_hfsplus_trusted_setxattr+0x10/0x10
[  148.817556][ T5876]  __vfs_setxattr+0x43c/0x480
[  148.820260][ T5876]  __vfs_setxattr_noperm+0x12d/0x660
[  148.822951][ T5876]  vfs_setxattr+0x16b/0x2f0
[  148.825089][ T5876]  ? __pfx_vfs_setxattr+0x10/0x10
[  148.827600][ T5876]  ? mnt_get_write_access+0x223/0x2a0
[  148.830004][ T5876]  filename_setxattr+0x274/0x600
[  148.832236][ T5876]  ? __pfx_filename_setxattr+0x10/0x10
[  148.834962][ T5876]  ? getname_flags+0x1e5/0x540
[  148.837236][ T5876]  path_setxattrat+0x364/0x3a0
[  148.839740][ T5876]  ? __pfx_path_setxattrat+0x10/0x10
[  148.842999][ T5876]  ? do_futex+0x395/0x420
[  148.845645][ T5876]  ? rcu_is_watching+0x15/0xb0
[  148.848168][ T5876]  __x64_sys_lsetxattr+0xbf/0xe0
[  148.850411][ T5876]  do_syscall_64+0xfa/0x3b0
[  148.852414][ T5876]  ? lockdep_hardirqs_on+0x9c/0x150
[  148.854714][ T5876]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.857436][ T5876]  ? clear_bhb_loop+0x60/0xb0
[  148.859516][ T5876]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.862402][ T5876] RIP: 0033:0x7fde1d37e819
[  148.864441][ T5876] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.874603][ T5876] RSP: 002b:00007fde1e255038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  148.878352][ T5876] RAX: ffffffffffffffda RBX: 00007fde1d535fa0 RCX: 00007fde1d37e819
[  148.881855][ T5876] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000020000040
[  148.885434][ T5876] RBP: 00007fde1d3f175e R08: 0000000000000000 R09: 0000000000000000
[  148.888886][ T5876] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  148.892406][ T5876] R13: 0000000000000000 R14: 00007fde1d535fa0 R15: 00007ffd9aa798d8
[  148.895911][ T5876]  </TASK>
[  148.897660][ T5876] Kernel Offset: disabled
[  148.899657][ T5876] Rebooting in 86400 seconds..