Warning: Permanently added '10.128.1.137' (ED25519) to the list of known hosts.
executing program
[   47.103078][ T4024] loop0: detected capacity change from 0 to 64
[   47.218408][ T4024] ==================================================================
[   47.220352][ T4024] BUG: KASAN: slab-out-of-bounds in hfs_bnode_read+0x184/0x464
[   47.221608][ T4024] Write of size 94 at addr ffff0000c4eefa00 by task syz-executor259/4024
[   47.223591][ T4024] 
[   47.224142][ T4024] CPU: 0 PID: 4024 Comm: syz-executor259 Not tainted 5.15.180-syzkaller #0
[   47.226369][ T4024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   47.228902][ T4024] Call trace:
[   47.229787][ T4024]  dump_backtrace+0x0/0x43c
[   47.230936][ T4024]  show_stack+0x2c/0x3c
[   47.231952][ T4024]  __dump_stack+0x30/0x40
[   47.233103][ T4024]  dump_stack_lvl+0xf8/0x160
[   47.234298][ T4024]  print_address_description+0x78/0x30c
[   47.235645][ T4024]  kasan_report+0xec/0x15c
[   47.236770][ T4024]  kasan_check_range+0x270/0x2b0
[   47.238048][ T4024]  memcpy+0xb4/0xe8
[   47.239059][ T4024]  hfs_bnode_read+0x184/0x464
[   47.240224][ T4024]  hfs_bnode_read_key+0x13c/0x1ec
[   47.241522][ T4024]  hfs_brec_insert+0x544/0x96c
[   47.242703][ T4024]  hfs_cat_create+0x2d8/0x758
[   47.243868][ T4024]  hfs_create+0x6c/0xe0
[   47.244934][ T4024]  path_openat+0x1144/0x26e4
[   47.246053][ T4024]  do_filp_open+0x164/0x330
[   47.247247][ T4024]  do_sys_openat2+0x128/0x3d8
[   47.248465][ T4024]  __arm64_sys_openat+0x120/0x154
[   47.249807][ T4024]  invoke_syscall+0x98/0x2b8
[   47.250957][ T4024]  el0_svc_common+0x138/0x258
[   47.252111][ T4024]  do_el0_svc+0x58/0x14c
[   47.253136][ T4024]  el0_svc+0x78/0x1e0
[   47.254180][ T4024]  el0t_64_sync_handler+0xcc/0xe4
[   47.255437][ T4024]  el0t_64_sync+0x1a0/0x1a4
[   47.256571][ T4024] 
[   47.257099][ T4024] Allocated by task 4024:
[   47.258122][ T4024]  __kasan_kmalloc+0xb0/0xf0
[   47.259273][ T4024]  __kmalloc+0x298/0x44c
[   47.260310][ T4024]  hfs_find_init+0x88/0x1c8
[   47.261451][ T4024]  hfs_cat_create+0x164/0x758
[   47.262555][ T4024]  hfs_create+0x6c/0xe0
[   47.263649][ T4024]  path_openat+0x1144/0x26e4
[   47.264794][ T4024]  do_filp_open+0x164/0x330
[   47.265849][ T4024]  do_sys_openat2+0x128/0x3d8
[   47.266924][ T4024]  __arm64_sys_openat+0x120/0x154
[   47.268226][ T4024]  invoke_syscall+0x98/0x2b8
[   47.269423][ T4024]  el0_svc_common+0x138/0x258
[   47.270566][ T4024]  do_el0_svc+0x58/0x14c
[   47.271640][ T4024]  el0_svc+0x78/0x1e0
[   47.272641][ T4024]  el0t_64_sync_handler+0xcc/0xe4
[   47.273890][ T4024]  el0t_64_sync+0x1a0/0x1a4
[   47.275011][ T4024] 
[   47.275595][ T4024] The buggy address belongs to the object at ffff0000c4eefa00
[   47.275595][ T4024]  which belongs to the cache kmalloc-128 of size 128
[   47.279288][ T4024] The buggy address is located 0 bytes inside of
[   47.279288][ T4024]  128-byte region [ffff0000c4eefa00, ffff0000c4eefa80)
[   47.282735][ T4024] The buggy address belongs to the page:
[   47.284116][ T4024] page:00000000b0c5bcfd refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x104eef
[   47.286632][ T4024] flags: 0x5ffc00000000200(slab|node=0|zone=2|lastcpupid=0x7ff)
[   47.288410][ T4024] raw: 05ffc00000000200 dead000000000100 dead000000000122 ffff0000c0002300
[   47.290461][ T4024] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[   47.292529][ T4024] page dumped because: kasan: bad access detected
[   47.294156][ T4024] 
[   47.294691][ T4024] Memory state around the buggy address:
[   47.296125][ T4024]  ffff0000c4eef900: 00 00 00 04 fc fc fc fc fc fc fc fc fc fc fc fc
[   47.298211][ T4024]  ffff0000c4eef980: fc fc fc fc fc fc fc fc fc fc f