Warning: Permanently added '10.128.1.24' (ED25519) to the list of known hosts.
executing program
[   37.467997][ T4294] loop0: detected capacity change from 0 to 1024
[   37.489433][ T4294] hfsplus: request for non-existent node 128 in B*Tree
[   37.491463][ T4294] hfsplus: request for non-existent node 128 in B*Tree
[   37.493618][ T4294] ==================================================================
[   37.495736][ T4294] BUG: KASAN: slab-out-of-bounds in hfsplus_bnode_read+0x9c/0x248
[   37.497893][ T4294] Read of size 8 at addr ffff0000c08614c0 by task syz-executor202/4294
[   37.500151][ T4294] 
[   37.500763][ T4294] CPU: 0 PID: 4294 Comm: syz-executor202 Not tainted 6.1.141-syzkaller #0
[   37.503100][ T4294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   37.505814][ T4294] Call trace:
[   37.506713][ T4294]  dump_backtrace+0x1c8/0x1f4
[   37.507978][ T4294]  show_stack+0x2c/0x3c
[   37.509080][ T4294]  __dump_stack+0x30/0x40
[   37.510281][ T4294]  dump_stack_lvl+0xf8/0x160
[   37.511514][ T4294]  print_address_description+0x88/0x220
[   37.513063][ T4294]  print_report+0x50/0x68
[   37.514238][ T4294]  kasan_report+0xa8/0x100
[   37.515427][ T4294]  __asan_report_load8_noabort+0x2c/0x38
[   37.516983][ T4294]  hfsplus_bnode_read+0x9c/0x248
[   37.518308][ T4294]  hfsplus_bnode_dump+0x274/0x384
[   37.519700][ T4294]  hfsplus_brec_remove+0x3cc/0x4a0
[   37.521047][ T4294]  __hfsplus_delete_attr+0x198/0x33c
[   37.522434][ T4294]  hfsplus_delete_all_attrs+0x204/0x33c
[   37.523901][ T4294]  hfsplus_delete_cat+0x844/0xbb0
[   37.525336][ T4294]  hfsplus_unlink+0x2a0/0x664
[   37.526649][ T4294]  vfs_unlink+0x2e0/0x4f4
[   37.527842][ T4294]  do_unlinkat+0x31c/0x4e8
[   37.529114][ T4294]  __arm64_sys_unlinkat+0xe0/0xfc
[   37.530463][ T4294]  invoke_syscall+0x98/0x2bc
[   37.531708][ T4294]  el0_svc_common+0x138/0x258
[   37.532975][ T4294]  do_el0_svc+0x58/0x13c
[   37.534157][ T4294]  el0_svc+0x58/0x138
[   37.535202][ T4294]  el0t_64_sync_handler+0x84/0xf0
[   37.536557][ T4294]  el0t_64_sync+0x18c/0x190
[   37.537785][ T4294] 
[   37.538428][ T4294] Allocated by task 4294:
[   37.539619][ T4294]  kasan_set_track+0x4c/0x80
[   37.540904][ T4294]  kasan_save_alloc_info+0x28/0x34
[   37.542324][ T4294]  __kasan_kmalloc+0xa0/0xb8
[   37.543557][ T4294]  __kmalloc+0xec/0x178
[   37.544680][ T4294]  __hfs_bnode_create+0xe4/0x6cc
[   37.546021][ T4294]  hfsplus_bnode_find+0x1f0/0xb78
[   37.547407][ T4294]  hfsplus_brec_find+0x128/0x448
[   37.548817][ T4294]  hfsplus_delete_all_attrs+0x1e0/0x33c
[   37.550325][ T4294]  hfsplus_delete_cat+0x844/0xbb0
[   37.551692][ T4294]  hfsplus_unlink+0x2a0/0x664
[   37.552997][ T4294]  vfs_unlink+0x2e0/0x4f4
[   37.554194][ T4294]  do_unlinkat+0x31c/0x4e8
[   37.555429][ T4294]  __arm64_sys_unlinkat+0xe0/0xfc
[   37.556818][ T4294]  invoke_syscall+0x98/0x2bc
[   37.558103][ T4294]  el0_svc_common+0x138/0x258
[   37.559376][ T4294]  do_el0_svc+0x58/0x13c
[   37.560548][ T4294]  el0_svc+0x58/0x138
[   37.561671][ T4294]  el0t_64_sync_handler+0x84/0xf0
[   37.563078][ T4294]  el0t_64_sync+0x18c/0x190
[   37.564328][ T4294] 
[   37.564951][ T4294] Last potentially related work creation:
[   37.566515][ T4294]  kasan_save_stack+0x40/0x70
[   37.567815][ T4294]  __kasan_record_aux_stack+0xc0/0xdc
[   37.569368][ T4294]  kasan_record_aux_stack_noalloc+0x14/0x20
[   37.570948][ T4294]  call_rcu+0xfc/0x948
[   37.572071][ T4294]  free_fib_info+0x68/0xa8
[   37.573298][ T4294]  fib_create_info+0x144c/0x1e58
[   37.574657][ T4294]  fib_table_insert+0xac/0x1368
[   37.576026][ T4294]  fib_magic+0x250/0x31c
[   37.577203][ T4294]  fib_add_ifaddr+0x2ec/0x4f8
[   37.578511][ T4294]  fib_netdev_event+0x360/0x4a4
[   37.579814][ T4294]  raw_notifier_call_chain+0xd4/0x164
[   37.581341][ T4294]  __dev_notify_flags+0x250/0x46c
[   37.582796][ T4294]  dev_change_flags+0xc8/0x154
[   37.584143][ T4294]  devinet_ioctl+0x88c/0x17e0
[   37.585462][ T4294]  inet_ioctl+0x304/0x4d8
[   37.586637][ T4294]  sock_do_ioctl+0xf8/0x240
[   37.587911][ T4294]  sock_ioctl+0x5c4/0x840
[   37.589089][ T4294]  __arm64_sys_ioctl+0x14c/0x1c8
[   37.590426][ T4294]  invoke_syscall+0x98/0x2bc
[   37.591745][ T4294]  el0_svc_common+0x138/0x258
[   37.593019][ T4294]  do_el0_svc+0x58/0x13c
[   37.594223][ T4294]  el0_svc+0x58/0x138
[   37.595315][ T4294]  el0t_64_sync_handler+0x84/0xf0
[   37.596685][ T4294]  el0t_64_sync+0x18c/0x190
[   37.597910][ T4294] 
[   37.598556][ T4294] The buggy address belongs to the object at ffff0000c0861400
[   37.598556][ T4294]  which belongs to the cache kmalloc-256 of size 256
[   37.602353][ T4294] The buggy address is located 192 bytes inside of
[   37.602353][ T4294]  256-byte region [ffff0000c0861400, ffff0000c0861500)
[   37.606030][ T4294] 
[   37.606656][ T4294] The buggy address belongs to the physical page:
[   37.608489][ T4294] page:00000000c4e34fcb refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x100860
[   37.611275][ T4294] head:00000000c4e34fcb order:1 compound_mapcount:0 compound_pincount:0
[   37.613514][ T4294] flags: 0x5ffc00000010200(slab|head|node=0|zone=2|lastcpupid=0x7ff)
[   37.615810][ T4294] raw: 05ffc00000010200 fffffc0003575c00 dead000000000004 ffff0000c0002480
[   37.618179][ T4294] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[   37.620546][ T4294] page dumped because: kasan: bad access detected
[   37.622252][ T4294] 
[   37.622851][ T4294] Memory state around the buggy address:
[   37.624428][ T4294]  ffff0000c0861380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   37.626650][ T4294]  ffff0000c0861400: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   37.628823][ T4294] >ffff0000c0861480: 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc
[   37.631054][ T4294]                                            ^
[   37.632779][ T4294]  ffff0000c0861500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   37.635006][ T4294]  ffff0000c0861580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   37.637234][ T4294] ==================================================================
[   37.640300][ T4294] Disabling lock debugging due to kernel taint
[   37.642496][ T4294] Unable to handle kernel paging request at virtual address ffff74f8000087ff
[   37.644807][ T4294] KASAN: maybe wild-memory-access in range [0xffffa7c000043ff8-0xffffa7c000043fff]
[   37.648660][ T4294] Mem abort info:
[   37.649646][ T4294]   ESR = 0x0000000096000004
[   37.650820][ T4294]   EC = 0x25: DABT (current EL), IL = 32 bits
[   37.652427][ T4294]   SET = 0, FnV = 0
[   37.653424][ T4294]   EA = 0, S1PTW = 0
[   37.654431][ T4294]   FSC = 0x04: level 0 translation fault
[   37.655992][ T4294] Data abort info:
[   37.656980][ T4294]   ISV = 0, ISS = 0x00000004
[   37.658221][ T4294]   CM = 0, WnR = 0
[   37.659328][ T4294] swapper pgtable: 4k pages, 48-bit VAs, pgdp=000000020e41a000
[   37.661348][ T4294] [ffff74f8000087ff] pgd=0000000000000000, p4d=0000000000000000
[   37.663419][ T4294] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP
[   37.665333][ T4294] Modules linked in:
[   37.666370][ T4294] CPU: 1 PID: 4294 Comm: syz-executor202 Tainted: G    B              6.1.141-syzkaller #0
[   37.669114][ T4294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   37.671804][ T4294] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[   37.673891][ T4294] pc : kasan_check_range+0x64/0x2a0
[   37.675267][ T4294] lr : memcpy+0x48/0x90
[   37.676445][ T4294] sp : ffff800020737470
[   37.677593][ T4294] x29: ffff800020737470 x28: 0000000000000001 x27: 0000000040000000
[   37.679722][ T4294] x26: 1ffff0000295206c x25: dfff800000000000 x24: 0000000000001000
[   37.681853][ T4294] x23: 0000000000000001 x22: ffff800008f68cb4 x21: ffff800020737560
[   37.684008][ T4294] x20: ffffa7c000043fff x19: 0000000000000001 x18: ffff800011a7bce0
[   37.686192][ T4294] x17: 1fffe00033ee7176 x16: ffff800008042940 x15: 0000000000000000
[   37.688430][ T4294] x14: 00000000000000ff x13: 0000000000ff0100 x12: 0000000000000001
[   37.690565][ T4294] x11: 1ffff4f8000087ff x10: 1ffff4f8000087ff x9 : ffffffffffffffff
[   37.692748][ T4294] x8 : ffff74f8000087ff x7 : 0000000000000004 x6 : 00000000000000ff
[   37.694888][ T4294] x5 : ffff800020737582 x4 : ffff0000e415b00c x3 : ffff800008f68cb4
[   37.696992][ T4294] x2 : 0000000000000000 x1 : 0000000000000001 x0 : ffffa7c000043fff
[   37.699177][ T4294] Call trace:
[   37.700059][ T4294]  kasan_check_range+0x64/0x2a0
[   37.701346][ T4294]  memcpy+0x48/0x90
[   37.702398][ T4294]  hfsplus_bnode_read+0x124/0x248
[   37.703787][ T4294]  hfsplus_bnode_dump+0x274/0x384
[   37.705153][ T4294]  hfsplus_brec_remove+0x3cc/0x4a0
[   37.706489][ T4294]  __hfsplus_delete_attr+0x198/0x33c
[   37.707892][ T4294]  hfsplus_delete_all_attrs+0x204/0x33c
[   37.709388][ T4294]  hfsplus_delete_cat+0x844/0xbb0
[   37.710756][ T4294]  hfsplus_unlink+0x2a0/0x664
[   37.712019][ T4294]  vfs_unlink+0x2e0/0x4f4
[   37.713157][ T4294]  do_unlinkat+0x31c/0x4e8
[   37.714326][ T4294]  __arm64_sys_unlinkat+0xe0/0xfc
[   37.715628][ T4294]  invoke_syscall+0x98/0x2bc
[   37.716887][ T4294]  el0_svc_common+0x138/0x258
[   37.718195][ T4294]  do_el0_svc+0x58/0x13c
[   37.719358][ T4294]  el0_svc+0x58/0x138
[   37.720399][ T4294]  el0t_64_sync_handler+0x84/0xf0
[   37.721731][ T4294]  el0t_64_sync+0x18c/0x190
[   37.722936][ T4294] Code: 5400014c b4000b8c aa2a03e9 8b0b0129 (3940010a) 
[   37.724771][ T4294] ---[ end trace 0000000000000000 ]---
[   38.025191][ T4294] Kernel panic - not syncing: Oops: Fatal exception
[   38.027117][ T4294] SMP: stopping secondary CPUs
[   38.028426][ T4294] Kernel Offset: disabled
[   38.029613][ T4294] CPU features: 0x080000,02070084,26017203
[   38.031229][ T4294] Memory Limit: none
[   38.301635][ T4294] Rebooting in 86400 seconds..