syzbot

 sign-in | mailing list | source | docs
🐞 Open [381] 🐞 Fixed [50] 🐞 Invalid [138] Missing Backports [36] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

WARNING in hfsplus_bnode_create

Status: upstream: reported C repro on 2023/04/25 07:57
Bug presence: origin:upstream
[Documentation on labels]
Reported-by: syzbot+a461be35cc94089b7f93@syzkaller.appspotmail.com
First crash: 226d, last: 9d16h
Bug presence (1)
Date Name Commit Repro Result
2023/05/08 upstream (ToT) ba0ad6ed89fd C [report] WARNING in hfsplus_bnode_create
Similar bugs (4)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream WARNING in hfsplus_bnode_create hfs C error 195 9h20m 370d 0/25 upstream: reported C repro on 2022/12/02 04:34
linux-5.15 WARNING in hfsplus_bnode_create origin:upstream C error 7 67d 208d 0/3 upstream: reported C repro on 2023/05/13 19:31
linux-4.14 WARNING in hfsplus_bnode_create hfsplus C 1 305d 343d 0/1 upstream: reported C repro on 2022/12/29 14:39
linux-4.19 WARNING in hfsplus_bnode_create hfsplus C error 5 304d 372d 0/1 upstream: reported C repro on 2022/11/30 07:43
Fix bisection attempts (3)
Created Duration User Patch Repo Result
2023/11/28 06:27 2h05m bisect fix linux-6.1.y job log (0) log
2023/10/29 00:07 1h29m bisect fix linux-6.1.y job log (0) log
2023/07/12 09:48 3h26m bisect fix linux-6.1.y job log (0) log

Sample crash report:
loop0: detected capacity change from 0 to 1024
hfsplus: new node 0 already hashed?
------------[ cut here ]------------
WARNING: CPU: 0 PID: 4222 at fs/hfsplus/bnode.c:573 hfsplus_bnode_create+0x428/0x4dc fs/hfsplus/bnode.c:572
Modules linked in:
CPU: 0 PID: 4222 Comm: syz-executor242 Not tainted 6.1.27-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : hfsplus_bnode_create+0x428/0x4dc fs/hfsplus/bnode.c:572
lr : hfsplus_bnode_create+0x428/0x4dc fs/hfsplus/bnode.c:572
sp : ffff80001db06cf0
x29: ffff80001db06d00 x28: dfff800000000000 x27: dfff800000000000
x26: ffff0001884a30f8 x25: dfff800000000000 x24: ffff0000c089f288
x23: 0000000000000000 x22: ffff0000d85780e0 x21: ffff0000d8578000
x20: 0000000000000000 x19: ffff0000c089f200 x18: ffff80001db06240
x17: 0000000000000000 x16: ffff8000120e6354 x15: 0000000000000000
x14: 0000000000000000 x13: 0000000000000001 x12: 0000000000000001
x11: ff8080000834483c x10: 0000000000000000 x9 : 4bc35f085a66a100
x8 : 4bc35f085a66a100 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff80001db065f8 x4 : ffff800015672960 x3 : ffff80000aa6d06c
x2 : ffff0001b45b3cd0 x1 : 0000000100000000 x0 : 0000000000000023
Call trace:
 hfsplus_bnode_create+0x428/0x4dc fs/hfsplus/bnode.c:572
 hfsplus_bmap_alloc+0x570/0x638 fs/hfsplus/btree.c:415
 hfs_btree_inc_height+0xf8/0xa60 fs/hfsplus/brec.c:475
 hfsplus_brec_insert+0x11c/0xaa0 fs/hfsplus/brec.c:75
 __hfsplus_ext_write_extent+0x288/0x4ac fs/hfsplus/extents.c:107
 __hfsplus_ext_cache_extent+0x84/0xa84 fs/hfsplus/extents.c:186
 hfsplus_ext_read_extent fs/hfsplus/extents.c:218 [inline]
 hfsplus_file_extend+0x390/0x14cc fs/hfsplus/extents.c:461
 hfsplus_get_block+0x398/0x1168 fs/hfsplus/extents.c:245
 __block_write_begin_int+0x340/0x13b4 fs/buffer.c:1991
 __block_write_begin fs/buffer.c:2041 [inline]
 block_write_begin fs/buffer.c:2102 [inline]
 cont_write_begin+0x5c0/0x7d8 fs/buffer.c:2456
 hfsplus_write_begin+0x98/0xe4 fs/hfsplus/inode.c:52
 generic_perform_write+0x278/0x55c mm/filemap.c:3754
 __generic_file_write_iter+0x168/0x388 mm/filemap.c:3882
 generic_file_write_iter+0xb8/0x2b4 mm/filemap.c:3914
 call_write_iter include/linux/fs.h:2205 [inline]
 new_sync_write fs/read_write.c:491 [inline]
 vfs_write+0x610/0x914 fs/read_write.c:584
 ksys_write+0x15c/0x26c fs/read_write.c:637
 __do_sys_write fs/read_write.c:649 [inline]
 __se_sys_write fs/read_write.c:646 [inline]
 __arm64_sys_write+0x7c/0x90 fs/read_write.c:646
 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
 invoke_syscall+0x98/0x2c0 arch/arm64/kernel/syscall.c:52
 el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142
 do_el0_svc+0x64/0x218 arch/arm64/kernel/syscall.c:206
 el0_svc+0x58/0x168 arch/arm64/kernel/entry-common.c:637
 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
 el0t_64_sync+0x18c/0x190 arch/arm64/kernel/entry.S:581
irq event stamp: 20982
hardirqs last  enabled at (20981): [<ffff80000834278c>] __up_console_sem+0xb4/0x100 kernel/printk/printk.c:261
hardirqs last disabled at (20982): [<ffff8000120e200c>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:405
softirqs last  enabled at (20636): [<ffff800008020d74>] softirq_handle_end kernel/softirq.c:414 [inline]
softirqs last  enabled at (20636): [<ffff800008020d74>] __do_softirq+0xc14/0xea0 kernel/softirq.c:600
softirqs last disabled at (20611): [<ffff80000802a948>] ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:79
---[ end trace 0000000000000000 ]---
------------[ cut here ]------------
kernel BUG at fs/hfsplus/bnode.c:618!
Internal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP
Modules linked in:
CPU: 0 PID: 4222 Comm: syz-executor242 Tainted: G        W          6.1.27-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : hfsplus_bnode_put+0x488/0x494 fs/hfsplus/bnode.c:618
lr : hfsplus_bnode_put+0x488/0x494 fs/hfsplus/bnode.c:618
sp : ffff80001db06de0
x29: ffff80001db06de0 x28: dfff800000000000 x27: ffff700003b60dd4
x26: 1fffe0001b0af003 x25: 1fffe00018113e40 x24: ffff0000d8578000
x23: dfff800000000000 x22: ffff0000c089f200 x21: ffff0000c089f280
x20: 0000000000000000 x19: ffff0000c089f200 x18: ffff80001db06240
x17: 0000000000000000 x16: ffff8000120e6484 x15: 0000000000000000
x14: 1ffff00002ab20b0 x13: dfff800000000000 x12: 0000000000000001
x11: ff808000090788f4 x10: 0000000000000000 x9 : ffff8000090788f4
x8 : ffff0000c62d8000 x7 : ffff8000089c9408 x6 : 0000000000000000
x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000090784c8
x2 : 0000000000000000 x1 : 0000000000000000 x0 : 0000000000000000
Call trace:
 hfsplus_bnode_put+0x488/0x494 fs/hfsplus/bnode.c:618
 hfs_btree_inc_height+0x4fc/0xa60 fs/hfsplus/brec.c:530
 hfsplus_brec_insert+0x11c/0xaa0 fs/hfsplus/brec.c:75
 __hfsplus_ext_write_extent+0x288/0x4ac fs/hfsplus/extents.c:107
 __hfsplus_ext_cache_extent+0x84/0xa84 fs/hfsplus/extents.c:186
 hfsplus_ext_read_extent fs/hfsplus/extents.c:218 [inline]
 hfsplus_file_extend+0x390/0x14cc fs/hfsplus/extents.c:461
 hfsplus_get_block+0x398/0x1168 fs/hfsplus/extents.c:245
 __block_write_begin_int+0x340/0x13b4 fs/buffer.c:1991
 __block_write_begin fs/buffer.c:2041 [inline]
 block_write_begin fs/buffer.c:2102 [inline]
 cont_write_begin+0x5c0/0x7d8 fs/buffer.c:2456
 hfsplus_write_begin+0x98/0xe4 fs/hfsplus/inode.c:52
 generic_perform_write+0x278/0x55c mm/filemap.c:3754
 __generic_file_write_iter+0x168/0x388 mm/filemap.c:3882
 generic_file_write_iter+0xb8/0x2b4 mm/filemap.c:3914
 call_write_iter include/linux/fs.h:2205 [inline]
 new_sync_write fs/read_write.c:491 [inline]
 vfs_write+0x610/0x914 fs/read_write.c:584
 ksys_write+0x15c/0x26c fs/read_write.c:637
 __do_sys_write fs/read_write.c:649 [inline]
 __se_sys_write fs/read_write.c:646 [inline]
 __arm64_sys_write+0x7c/0x90 fs/read_write.c:646
 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
 invoke_syscall+0x98/0x2c0 arch/arm64/kernel/syscall.c:52
 el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142
 do_el0_svc+0x64/0x218 arch/arm64/kernel/syscall.c:206
 el0_svc+0x58/0x168 arch/arm64/kernel/entry-common.c:637
 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
 el0t_64_sync+0x18c/0x190 arch/arm64/kernel/entry.S:581
Code: aa1403e0 97e3c737 17ffffb7 97d2009d (d4210000) 
---[ end trace 0000000000000000 ]---

Crashes (9):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2023/05/07 16:49 linux-6.1.y ca48fc16c493 90c93c40 .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-6-1-kasan-arm64 WARNING in hfsplus_bnode_create
2023/08/13 03:11 linux-6.1.y 1321ab403b38 39990d51 .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-6-1-kasan WARNING in hfsplus_bnode_create
2023/06/05 07:16 linux-6.1.y d2869ace6eeb a4ae4f42 .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-6-1-kasan WARNING in hfsplus_bnode_create
2023/06/07 09:18 linux-6.1.y 76ba310227d2 a4ae4f42 .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-6-1-kasan-arm64 WARNING in hfsplus_bnode_create
2023/09/27 03:15 linux-6.1.y d23900f974e0 0b6a67ac .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in hfsplus_bnode_create
2023/08/10 10:36 linux-6.1.y 0a4a7855302d 13ca4cd6 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in hfsplus_bnode_create
2023/05/30 07:31 linux-6.1.y a343b0dd87b4 cf184559 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 WARNING in hfsplus_bnode_create
2023/05/22 20:35 linux-6.1.y fa74641fb6b9 4bce1a3e .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 WARNING in hfsplus_bnode_create
2023/04/25 07:56 linux-6.1.y f17b0ab65d17 65320f8e .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 WARNING in hfsplus_bnode_create
* Struck through repros no longer work on HEAD.