Warning: Permanently added '10.128.1.4' (ED25519) to the list of known hosts.
2024/12/07 15:26:19 ignoring optional flag "sandboxArg"="0"
2024/12/07 15:26:20 parsed 1 programs
[  137.509346][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  137.516535][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  140.274017][ T6243] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  142.651658][ T5138] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  142.662236][ T5138] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  142.670682][ T5138] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  142.679020][ T5138] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  142.688199][ T5138] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  142.695600][ T5138] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  142.968758][ T2945] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  142.978680][ T2945] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  143.010690][ T2945] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  143.018958][ T2945] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  144.959528][ T6301] chnl_net:caif_netlink_parms(): no params data found
[  145.021019][ T6301] bridge0: port 1(bridge_slave_0) entered blocking state
[  145.028383][ T6301] bridge0: port 1(bridge_slave_0) entered disabled state
[  145.035599][ T6301] bridge_slave_0: entered allmulticast mode
[  145.043610][ T6301] bridge_slave_0: entered promiscuous mode
[  145.051923][ T6301] bridge0: port 2(bridge_slave_1) entered blocking state
[  145.059200][ T6301] bridge0: port 2(bridge_slave_1) entered disabled state
[  145.066480][ T6301] bridge_slave_1: entered allmulticast mode
[  145.074459][ T6301] bridge_slave_1: entered promiscuous mode
[  145.100550][ T6301] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  145.115249][ T6301] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  145.144493][ T6301] team0: Port device team_slave_0 added
[  145.152760][ T6301] team0: Port device team_slave_1 added
[  145.177563][ T6301] batman_adv: batadv0: Adding interface: batadv_slave_0
[  145.184555][ T6301] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  145.210618][ T6301] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  145.223359][ T6301] batman_adv: batadv0: Adding interface: batadv_slave_1
[  145.230459][ T6301] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  145.256553][ T6301] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  145.320190][ T6301] hsr_slave_0: entered promiscuous mode
[  145.328710][ T6301] hsr_slave_1: entered promiscuous mode
[  145.902995][ T6301] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  145.913819][ T6301] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  145.924264][ T6301] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  145.935197][ T6301] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  145.960409][ T6301] bridge0: port 2(bridge_slave_1) entered blocking state
[  145.967738][ T6301] bridge0: port 2(bridge_slave_1) entered forwarding state
[  145.975775][ T6301] bridge0: port 1(bridge_slave_0) entered blocking state
[  145.983049][ T6301] bridge0: port 1(bridge_slave_0) entered forwarding state
[  145.994422][  T658] bridge0: port 1(bridge_slave_0) entered disabled state
[  146.004335][  T658] bridge0: port 2(bridge_slave_1) entered disabled state
[  146.072342][ T6301] 8021q: adding VLAN 0 to HW filter on device bond0
[  146.100627][ T6301] 8021q: adding VLAN 0 to HW filter on device team0
[  146.114305][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[  146.121518][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[  146.135843][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[  146.143019][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[  146.370419][ T6301] 8021q: adding VLAN 0 to HW filter on device batadv0
[  146.423359][ T6301] veth0_vlan: entered promiscuous mode
[  146.439782][ T6301] veth1_vlan: entered promiscuous mode
[  146.472251][ T6301] veth0_macvtap: entered promiscuous mode
[  146.483483][ T6301] veth1_macvtap: entered promiscuous mode
[  146.504289][ T6301] batman_adv: batadv0: Interface activated: batadv_slave_0
[  146.520025][ T6301] batman_adv: batadv0: Interface activated: batadv_slave_1
[  146.532365][ T6301] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  146.542470][ T6301] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  146.553490][ T6301] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  146.562577][ T6301] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  146.754790][  T658] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.857482][  T658] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.948151][  T658] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.038542][  T658] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2024/12/07 15:26:35 executed programs: 0
[  148.443749][ T5138] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  148.453254][ T5138] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  148.464876][ T5138] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  148.480952][ T5138] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  148.490334][ T5138] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  148.501117][ T5138] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  148.705504][ T6408] chnl_net:caif_netlink_parms(): no params data found
[  148.806735][ T6408] bridge0: port 1(bridge_slave_0) entered blocking state
[  148.814724][ T6408] bridge0: port 1(bridge_slave_0) entered disabled state
[  148.825403][ T6408] bridge_slave_0: entered allmulticast mode
[  148.833565][ T6408] bridge_slave_0: entered promiscuous mode
[  148.845130][ T6408] bridge0: port 2(bridge_slave_1) entered blocking state
[  148.852683][ T6408] bridge0: port 2(bridge_slave_1) entered disabled state
[  148.863086][ T6408] bridge_slave_1: entered allmulticast mode
[  148.870921][ T6408] bridge_slave_1: entered promiscuous mode
[  148.910918][ T6408] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  148.926712][ T6408] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  148.969623][ T6408] team0: Port device team_slave_0 added
[  148.978354][ T6408] team0: Port device team_slave_1 added
[  149.013515][ T6408] batman_adv: batadv0: Adding interface: batadv_slave_0
[  149.020853][ T6408] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  149.050383][ T6408] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  149.064003][ T6408] batman_adv: batadv0: Adding interface: batadv_slave_1
[  149.074126][ T6408] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  149.103294][ T6408] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  149.157148][ T6408] hsr_slave_0: entered promiscuous mode
[  149.164585][ T6408] hsr_slave_1: entered promiscuous mode
[  149.174306][ T6408] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  149.182605][ T6408] Cannot create hsr debugfs directory
[  149.539460][  T658] bridge_slave_1: left allmulticast mode
[  149.545189][  T658] bridge_slave_1: left promiscuous mode
[  149.553299][  T658] bridge0: port 2(bridge_slave_1) entered disabled state
[  149.566873][  T658] bridge_slave_0: left allmulticast mode
[  149.572604][  T658] bridge_slave_0: left promiscuous mode
[  149.579643][  T658] bridge0: port 1(bridge_slave_0) entered disabled state
[  149.914714][  T658] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  149.931917][  T658] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  149.943233][  T658] bond0 (unregistering): Released all slaves
[  150.048068][  T658] hsr_slave_0: left promiscuous mode
[  150.054219][  T658] hsr_slave_1: left promiscuous mode
[  150.061611][  T658] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  150.075210][  T658] batman_adv: batadv0: Removing interface: batadv_slave_0
[  150.084686][  T658] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  150.095314][  T658] batman_adv: batadv0: Removing interface: batadv_slave_1
[  150.117064][  T658] veth1_macvtap: left promiscuous mode
[  150.122701][  T658] veth0_macvtap: left promiscuous mode
[  150.131762][  T658] veth1_vlan: left promiscuous mode
[  150.138359][  T658] veth0_vlan: left promiscuous mode
[  150.554078][ T5138] Bluetooth: hci0: command tx timeout
[  150.611415][  T658] team0 (unregistering): Port device team_slave_1 removed
[  150.643389][  T658] team0 (unregistering): Port device team_slave_0 removed
[  151.170949][ T6408] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  151.186613][ T6408] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  151.198152][ T6408] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  151.208979][ T6408] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  151.351982][ T6408] 8021q: adding VLAN 0 to HW filter on device bond0
[  151.375676][ T6408] 8021q: adding VLAN 0 to HW filter on device team0
[  151.501654][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[  151.508856][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[  151.532621][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[  151.539793][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[  151.852532][ T6408] 8021q: adding VLAN 0 to HW filter on device batadv0
[  151.909558][ T6408] veth0_vlan: entered promiscuous mode
[  151.922541][ T6408] veth1_vlan: entered promiscuous mode
[  151.954367][ T6408] veth0_macvtap: entered promiscuous mode
[  151.964402][ T6408] veth1_macvtap: entered promiscuous mode
[  151.985091][ T6408] batman_adv: batadv0: Interface activated: batadv_slave_0
[  152.007619][ T6408] batman_adv: batadv0: Interface activated: batadv_slave_1
[  152.020241][ T6408] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  152.032018][ T6408] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  152.041443][ T6408] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  152.053143][ T6408] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  152.145168][ T2945] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  152.163019][ T2945] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  152.192831][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  152.203471][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  152.273163][ T6524] loop0: detected capacity change from 0 to 64
[  152.306356][ T6524] ==================================================================
[  152.314482][ T6524] BUG: KASAN: slab-out-of-bounds in hfs_bnode_read+0xbc/0x220
[  152.322017][ T6524] Write of size 94 at addr ffff8880276d8980 by task syz.0.15/6524
[  152.329880][ T6524] 
[  152.332240][ T6524] CPU: 0 UID: 0 PID: 6524 Comm: syz.0.15 Not tainted 6.13.0-rc1-syzkaller-00316-gb5f217084ab3 #0
[  152.342795][ T6524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  152.352899][ T6524] Call Trace:
[  152.356212][ T6524]  <TASK>
[  152.359185][ T6524]  dump_stack_lvl+0x116/0x1f0
[  152.363937][ T6524]  print_report+0xc3/0x620
[  152.368406][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  152.374091][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  152.379779][ T6524]  ? __phys_addr+0xc6/0x150
[  152.384348][ T6524]  kasan_report+0xd9/0x110
[  152.388815][ T6524]  ? hfs_bnode_read+0xbc/0x220
[  152.393661][ T6524]  ? hfs_bnode_read+0xbc/0x220
[  152.398502][ T6524]  kasan_check_range+0xef/0x1a0
[  152.403416][ T6524]  __asan_memcpy+0x3c/0x60
[  152.407912][ T6524]  hfs_bnode_read+0xbc/0x220
[  152.412578][ T6524]  hfs_bnode_read_key+0x14e/0x1f0
[  152.417675][ T6524]  ? __pfx_hfs_bnode_read_key+0x10/0x10
[  152.423298][ T6524]  ? srso_alias_return_thunk+0x52/0xfbef5
[  152.429068][ T6524]  ? _raw_spin_unlock+0x28/0x50
[  152.433972][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  152.439657][ T6524]  ? hfs_bnode_put.part.0+0x1e3/0x280
[  152.445120][ T6524]  hfs_brec_insert+0x66b/0xb90
[  152.449945][ T6524]  ? __pfx_hfs_brec_insert+0x10/0x10
[  152.455282][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  152.460972][ T6524]  hfs_cat_move+0x3f0/0x7e0
[  152.465526][ T6524]  ? __pfx_hfs_cat_move+0x10/0x10
[  152.470606][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  152.476294][ T6524]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  152.481984][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  152.487665][ T6524]  ? rcu_is_watching+0x12/0xc0
[  152.492503][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  152.498194][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  152.503872][ T6524]  ? down_write_nested+0x152/0x210
[  152.509051][ T6524]  hfs_rename+0xe8/0x200
[  152.513344][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  152.519029][ T6524]  ? __pfx_hfs_rename+0x10/0x10
[  152.523938][ T6524]  vfs_rename+0xf8b/0x21f0
[  152.528440][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  152.534128][ T6524]  ? __pfx_vfs_rename+0x10/0x10
[  152.539041][ T6524]  ? _raw_spin_unlock+0x28/0x50
[  152.543953][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  152.549632][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  152.555309][ T6524]  ? security_path_rename+0x136/0x3c0
[  152.560733][ T6524]  do_renameat2+0xc5f/0xdd0
[  152.565287][ T6524]  ? __pfx_do_renameat2+0x10/0x10
[  152.570355][ T6524]  ? lock_acquire+0x2f/0xb0
[  152.574908][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  152.580593][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  152.586359][ T6524]  ? __phys_addr_symbol+0x30/0x80
[  152.591442][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  152.597133][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  152.602809][ T6524]  ? getname_flags.part.0+0x1c5/0x550
[  152.608241][ T6524]  __x64_sys_renameat2+0xe7/0x130
[  152.613312][ T6524]  do_syscall_64+0xcd/0x250
[  152.617884][ T6524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.623849][ T6524] RIP: 0033:0x7fbaf477e819
[  152.628302][ T6524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.647981][ T6524] RSP: 002b:00007fbaf556c038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[  152.656538][ T6524] RAX: ffffffffffffffda RBX: 00007fbaf4935fa0 RCX: 00007fbaf477e819
[  152.664552][ T6524] RDX: 0000000000000004 RSI: 0000000020000380 RDI: 0000000000000004
[  152.666334][ T5138] Bluetooth: hci0: command tx timeout
[  152.672534][ T6524] RBP: 00007fbaf47f175e R08: 0000000000000000 R09: 0000000000000000
[  152.685915][ T6524] R10: 0000000020000200 R11: 0000000000000246 R12: 0000000000000000
[  152.693941][ T6524] R13: 0000000000000000 R14: 00007fbaf4935fa0 R15: 00007ffd9fab9888
[  152.701972][ T6524]  </TASK>
[  152.705019][ T6524] 
[  152.707364][ T6524] Allocated by task 6524:
[  152.711715][ T6524]  kasan_save_stack+0x33/0x60
[  152.716436][ T6524]  kasan_save_track+0x14/0x30
[  152.721160][ T6524]  __kasan_kmalloc+0xaa/0xb0
[  152.725822][ T6524]  __kmalloc_noprof+0x21c/0x510
[  152.730736][ T6524]  hfs_find_init+0x95/0x220
[  152.735393][ T6524]  hfs_cat_move+0x15a/0x7e0
[  152.739943][ T6524]  hfs_rename+0xe8/0x200
[  152.744231][ T6524]  vfs_rename+0xf8b/0x21f0
[  152.748705][ T6524]  do_renameat2+0xc5f/0xdd0
[  152.753248][ T6524]  __x64_sys_renameat2+0xe7/0x130
[  152.758315][ T6524]  do_syscall_64+0xcd/0x250
[  152.762882][ T6524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.768843][ T6524] 
[  152.771183][ T6524] The buggy address belongs to the object at ffff8880276d8980
[  152.771183][ T6524]  which belongs to the cache kmalloc-96 of size 96
[  152.785112][ T6524] The buggy address is located 0 bytes inside of
[  152.785112][ T6524]  allocated 78-byte region [ffff8880276d8980, ffff8880276d89ce)
[  152.799223][ T6524] 
[  152.801569][ T6524] The buggy address belongs to the physical page:
[  152.808000][ T6524] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x276d8
[  152.816797][ T6524] anon flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  152.824372][ T6524] page_type: f5(slab)
[  152.828391][ T6524] raw: 00fff00000000000 ffff88801b041280 0000000000000000 dead000000000001
[  152.837035][ T6524] raw: 0000000000000000 0000000080200020 00000001f5000000 0000000000000000
[  152.845664][ T6524] page dumped because: kasan: bad access detected
[  152.852114][ T6524] page_owner tracks the page as allocated
[  152.857859][ T6524] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 1, tgid 1 (swapper/0), ts 21974953829, free_ts 19907419788
[  152.876436][ T6524]  post_alloc_hook+0x2d1/0x350
[  152.881361][ T6524]  get_page_from_freelist+0xfce/0x2f80
[  152.886862][ T6524]  __alloc_pages_noprof+0x223/0x25b0
[  152.892190][ T6524]  alloc_pages_mpol_noprof+0x2c9/0x610
[  152.897703][ T6524]  new_slab+0x2c9/0x410
[  152.902101][ T6524]  ___slab_alloc+0xdac/0x1870
[  152.906853][ T6524]  __slab_alloc.constprop.0+0x56/0xb0
[  152.912315][ T6524]  __kmalloc_cache_noprof+0xfa/0x410
[  152.917755][ T6524]  usb_hub_create_port_device+0xbb/0xde0
[  152.923437][ T6524]  hub_probe+0x1e1f/0x3200
[  152.927907][ T6524]  usb_probe_interface+0x303/0x9c0
[  152.933071][ T6524]  really_probe+0x241/0xa90
[  152.937631][ T6524]  __driver_probe_device+0x1de/0x440
[  152.942976][ T6524]  driver_probe_device+0x4c/0x1b0
[  152.948058][ T6524]  __device_attach_driver+0x1df/0x310
[  152.953485][ T6524]  bus_for_each_drv+0x15a/0x1e0
[  152.958380][ T6524] page last free pid 25 tgid 25 stack trace:
[  152.964383][ T6524]  free_unref_page+0x661/0x1080
[  152.969285][ T6524]  vfree+0x17a/0x890
[  152.973241][ T6524]  delayed_vfree_work+0x56/0x70
[  152.978156][ T6524]  process_one_work+0x9c8/0x1ba0
[  152.983137][ T6524]  worker_thread+0x6c8/0xf00
[  152.987775][ T6524]  kthread+0x2c4/0x3a0
[  152.991913][ T6524]  ret_from_fork+0x48/0x80
[  152.996368][ T6524]  ret_from_fork_asm+0x1a/0x30
[  153.001188][ T6524] 
[  153.003524][ T6524] Memory state around the buggy address:
[  153.009174][ T6524]  ffff8880276d8880: 00 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc
[  153.017267][ T6524]  ffff8880276d8900: 00 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc
[  153.025372][ T6524] >ffff8880276d8980: 00 00 00 00 00 00 00 00 00 06 fc fc fc fc fc fc
[  153.033461][ T6524]                                               ^
[  153.039897][ T6524]  ffff8880276d8a00: 00 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc
[  153.047990][ T6524]  ffff8880276d8a80: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[  153.056075][ T6524] ==================================================================
[  153.110842][ T6524] Kernel panic - not syncing: kasan.fault=panic_on_write set ...
[  153.118673][ T6524] CPU: 0 UID: 0 PID: 6524 Comm: syz.0.15 Not tainted 6.13.0-rc1-syzkaller-00316-gb5f217084ab3 #0
[  153.129243][ T6524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  153.139339][ T6524] Call Trace:
[  153.142648][ T6524]  <TASK>
[  153.145614][ T6524]  dump_stack_lvl+0x3d/0x1f0
[  153.150279][ T6524]  panic+0x71d/0x800
[  153.154684][ T6524]  ? __pfx_panic+0x10/0x10
[  153.159177][ T6524]  ? lockdep_hardirqs_on+0x7c/0x110
[  153.164440][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  153.170139][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  153.175834][ T6524]  ? preempt_schedule_common+0x44/0xc0
[  153.181360][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  153.187034][ T6524]  ? preempt_schedule_thunk+0x1a/0x30
[  153.192458][ T6524]  end_report+0x169/0x180
[  153.196832][ T6524]  kasan_report+0xe9/0x110
[  153.201295][ T6524]  ? hfs_bnode_read+0xbc/0x220
[  153.206125][ T6524]  ? hfs_bnode_read+0xbc/0x220
[  153.210963][ T6524]  kasan_check_range+0xef/0x1a0
[  153.215867][ T6524]  __asan_memcpy+0x3c/0x60
[  153.220350][ T6524]  hfs_bnode_read+0xbc/0x220
[  153.225019][ T6524]  hfs_bnode_read_key+0x14e/0x1f0
[  153.230100][ T6524]  ? __pfx_hfs_bnode_read_key+0x10/0x10
[  153.235705][ T6524]  ? srso_alias_return_thunk+0x52/0xfbef5
[  153.241458][ T6524]  ? _raw_spin_unlock+0x28/0x50
[  153.246349][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  153.252015][ T6524]  ? hfs_bnode_put.part.0+0x1e3/0x280
[  153.257461][ T6524]  hfs_brec_insert+0x66b/0xb90
[  153.262263][ T6524]  ? __pfx_hfs_brec_insert+0x10/0x10
[  153.267585][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  153.273258][ T6524]  hfs_cat_move+0x3f0/0x7e0
[  153.277800][ T6524]  ? __pfx_hfs_cat_move+0x10/0x10
[  153.282864][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  153.288544][ T6524]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  153.294213][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  153.299878][ T6524]  ? rcu_is_watching+0x12/0xc0
[  153.305612][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  153.311302][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  153.316972][ T6524]  ? down_write_nested+0x152/0x210
[  153.322138][ T6524]  hfs_rename+0xe8/0x200
[  153.326423][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  153.332091][ T6524]  ? __pfx_hfs_rename+0x10/0x10
[  153.337067][ T6524]  vfs_rename+0xf8b/0x21f0
[  153.341527][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  153.347198][ T6524]  ? __pfx_vfs_rename+0x10/0x10
[  153.352094][ T6524]  ? _raw_spin_unlock+0x28/0x50
[  153.356986][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  153.362651][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  153.368318][ T6524]  ? security_path_rename+0x136/0x3c0
[  153.373732][ T6524]  do_renameat2+0xc5f/0xdd0
[  153.378274][ T6524]  ? __pfx_do_renameat2+0x10/0x10
[  153.383327][ T6524]  ? lock_acquire+0x2f/0xb0
[  153.387891][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  153.393556][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  153.399217][ T6524]  ? __phys_addr_symbol+0x30/0x80
[  153.404283][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  153.409950][ T6524]  ? srso_alias_return_thunk+0x5/0xfbef5
[  153.415608][ T6524]  ? getname_flags.part.0+0x1c5/0x550
[  153.421025][ T6524]  __x64_sys_renameat2+0xe7/0x130
[  153.426088][ T6524]  do_syscall_64+0xcd/0x250
[  153.430662][ T6524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.436603][ T6524] RIP: 0033:0x7fbaf477e819
[  153.441038][ T6524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.460678][ T6524] RSP: 002b:00007fbaf556c038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[  153.469129][ T6524] RAX: ffffffffffffffda RBX: 00007fbaf4935fa0 RCX: 00007fbaf477e819
[  153.477303][ T6524] RDX: 0000000000000004 RSI: 0000000020000380 RDI: 0000000000000004
[  153.485321][ T6524] RBP: 00007fbaf47f175e R08: 0000000000000000 R09: 0000000000000000
[  153.493326][ T6524] R10: 0000000020000200 R11: 0000000000000246 R12: 0000000000000000
[  153.501342][ T6524] R13: 0000000000000000 R14: 00007fbaf4935fa0 R15: 00007ffd9fab9888
[  153.509351][ T6524]  </TASK>
[  153.512517][ T6524] Kernel Offset: disabled
[  153.516845][ T6524] Rebooting in 86400 seconds..