./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1694416347 <...> Warning: Permanently added '10.128.0.44' (ED25519) to the list of known hosts. execve("./syz-executor1694416347", ["./syz-executor1694416347"], 0x7ffeff2f4740 /* 10 vars */) = 0 brk(NULL) = 0x555577783000 brk(0x555577783d00) = 0x555577783d00 arch_prctl(ARCH_SET_FS, 0x555577783380) = 0 set_tid_address(0x555577783650) = 4992 set_robust_list(0x555577783660, 24) = 0 rseq(0x555577783ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1694416347", 4096) = 28 getrandom("\x3a\x2d\x29\x64\xd5\x0f\x06\x8e", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555577783d00 brk(0x5555777a4d00) = 0x5555777a4d00 brk(0x5555777a5000) = 0x5555777a5000 mprotect(0x7ff4695bd000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555577783650) = 4993 ./strace-static-x86_64: Process 4993 attached [pid 4993] set_robust_list(0x555577783660, 24) = 0 [pid 4993] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 4993] setpgid(0, 0) = 0 [pid 4993] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 4993] write(3, "1000", 4) = 4 [pid 4993] close(3) = 0 [pid 4993] memfd_create("syzkaller", 0) = 3 [pid 4993] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff461000000 [pid 4993] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 524288) = 524288 [pid 4993] munmap(0x7ff461000000, 138412032) = 0 [pid 4993] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 4993] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 4993] close(3) = 0 [pid 4993] close(4) = 0 [pid 4993] mkdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", 0777) = 0 [ 157.000559][ T4993] loop0: detected capacity change from 0 to 1024 [ 157.044398][ T4993] ===================================================== [ 157.051877][ T4993] BUG: KMSAN: uninit-value in hfsplus_cat_case_cmp_key+0xf1/0x190 [ 157.059897][ T4993] hfsplus_cat_case_cmp_key+0xf1/0x190 [ 157.065781][ T4993] hfs_find_rec_by_key+0xb1/0x240 [ 157.071180][ T4993] __hfsplus_brec_find+0x26f/0x7b0 [ 157.076500][ T4993] hfsplus_brec_find+0x445/0x970 [ 157.081721][ T4993] hfsplus_brec_read+0x46/0x1a0 [ 157.086860][ T4993] hfsplus_find_cat+0xdb/0x460 [ 157.091896][ T4993] hfsplus_iget+0x740/0xaf0 [ 157.096603][ T4993] hfsplus_fill_super+0x151b/0x2700 [ 157.102042][ T4993] mount_bdev+0x397/0x520 [ 157.106565][ T4993] hfsplus_mount+0x4d/0x60 [ 157.111473][ T4993] legacy_get_tree+0x114/0x290 [ 157.116413][ T4993] vfs_get_tree+0xa7/0x570 [ 157.121143][ T4993] do_new_mount+0x71f/0x15e0 [ 157.125879][ T4993] path_mount+0x742/0x1f20 [ 157.130417][ T4993] __se_sys_mount+0x725/0x810 [ 157.135295][ T4993] __x64_sys_mount+0xe4/0x150 [ 157.140340][ T4993] do_syscall_64+0xd5/0x1f0 [ 157.145338][ T4993] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 157.151515][ T4993] [ 157.153956][ T4993] Uninit was created at: [ 157.158393][ T4993] __kmalloc+0x6e4/0x1000 [ 157.163120][ T4993] hfsplus_find_init+0x91/0x250 [ 157.168191][ T4993] hfsplus_iget+0x3e1/0xaf0 [ 157.173371][ T4993] hfsplus_fill_super+0x151b/0x2700 [ 157.178793][ T4993] mount_bdev+0x397/0x520 [ 157.183586][ T4993] hfsplus_mount+0x4d/0x60 [ 157.188802][ T4993] legacy_get_tree+0x114/0x290 [ 157.193775][ T4993] vfs_get_tree+0xa7/0x570 [ 157.198600][ T4993] do_new_mount+0x71f/0x15e0 [ 157.203659][ T4993] path_mount+0x742/0x1f20 [ 157.208256][ T4993] __se_sys_mount+0x725/0x810 [ 157.213419][ T4993] __x64_sys_mount+0xe4/0x150 [ 157.218382][ T4993] do_syscall_64+0xd5/0x1f0 [ 157.223188][ T4993] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 157.229280][ T4993] [ 157.231876][ T4993] CPU: 1 PID: 4993 Comm: syz-executor169 Not tainted 6.8.0-syzkaller-08073-g480e035fc4c7 #0 [ 157.242214][ T4993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 157.253045][ T4993] ===================================================== [ 157.260107][ T4993] Disabling lock debugging due to kernel taint [ 157.266454][ T4993] Kernel panic - not syncing: kmsan.panic set ... [ 157.273006][ T4993] CPU: 1 PID: 4993 Comm: syz-executor169 Tainted: G B 6.8.0-syzkaller-08073-g480e035fc4c7 #0 [ 157.285176][ T4993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 157.295378][ T4993] Call Trace: [ 157.298779][ T4993] [ 157.302320][ T4993] dump_stack_lvl+0x216/0x2d0 [ 157.307213][ T4993] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 157.313241][ T4993] dump_stack+0x1e/0x30 [ 157.317540][ T4993] panic+0x4e2/0xcd0 [ 157.321584][ T4993] ? kmsan_get_metadata+0x71/0x1d0 [ 157.326900][ T4993] kmsan_report+0x2d5/0x2e0 [ 157.331576][ T4993] ? kmsan_get_metadata+0x146/0x1d0 [ 157.337070][ T4993] ? kmsan_get_metadata+0x146/0x1d0 [ 157.342457][ T4993] ? __msan_warning+0x95/0x120 [ 157.347336][ T4993] ? hfsplus_cat_case_cmp_key+0xf1/0x190 [ 157.353147][ T4993] ? hfs_find_rec_by_key+0xb1/0x240 [ 157.358485][ T4993] ? __hfsplus_brec_find+0x26f/0x7b0 [ 157.363954][ T4993] ? hfsplus_brec_find+0x445/0x970 [ 157.369247][ T4993] ? hfsplus_brec_read+0x46/0x1a0 [ 157.374409][ T4993] ? hfsplus_find_cat+0xdb/0x460 [ 157.379487][ T4993] ? hfsplus_iget+0x740/0xaf0 [ 157.384375][ T4993] ? hfsplus_fill_super+0x151b/0x2700 [ 157.389945][ T4993] ? mount_bdev+0x397/0x520 [ 157.394555][ T4993] ? hfsplus_mount+0x4d/0x60 [ 157.399265][ T4993] ? legacy_get_tree+0x114/0x290 [ 157.404319][ T4993] ? vfs_get_tree+0xa7/0x570 [ 157.409098][ T4993] ? do_new_mount+0x71f/0x15e0 [ 157.414039][ T4993] ? path_mount+0x742/0x1f20 [ 157.418797][ T4993] ? __se_sys_mount+0x725/0x810 [ 157.423794][ T4993] ? __x64_sys_mount+0xe4/0x150 [ 157.428743][ T4993] ? do_syscall_64+0xd5/0x1f0 [ 157.433567][ T4993] ? entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 157.439933][ T4993] ? kmsan_get_metadata+0x146/0x1d0 [ 157.445278][ T4993] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 157.452106][ T4993] ? kmsan_get_metadata+0x146/0x1d0 [ 157.457523][ T4993] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 157.463491][ T4993] ? _raw_spin_unlock_irqrestore+0x3f/0x60 [ 157.469554][ T4993] ? kmsan_get_metadata+0x146/0x1d0 [ 157.474959][ T4993] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 157.481408][ T4993] ? kmsan_get_metadata+0x146/0x1d0 [ 157.486797][ T4993] ? kmsan_get_metadata+0x146/0x1d0 [ 157.492123][ T4993] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 157.498090][ T4993] __msan_warning+0x95/0x120 [ 157.502880][ T4993] hfsplus_cat_case_cmp_key+0xf1/0x190 [ 157.508559][ T4993] hfs_find_rec_by_key+0xb1/0x240 [ 157.513792][ T4993] ? __pfx_hfsplus_cat_case_cmp_key+0x10/0x10 [ 157.520036][ T4993] __hfsplus_brec_find+0x26f/0x7b0 [ 157.525363][ T4993] ? __pfx_hfs_find_rec_by_key+0x10/0x10 [ 157.531239][ T4993] hfsplus_brec_find+0x445/0x970 [ 157.536390][ T4993] ? __pfx_hfs_find_rec_by_key+0x10/0x10 [ 157.542233][ T4993] hfsplus_brec_read+0x46/0x1a0 [ 157.547218][ T4993] hfsplus_find_cat+0xdb/0x460 [ 157.552094][ T4993] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 157.558086][ T4993] ? _raw_spin_unlock_irqrestore+0x3f/0x60 [ 157.564133][ T4993] ? kmsan_get_metadata+0x146/0x1d0 [ 157.569546][ T4993] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 157.575525][ T4993] ? kmsan_get_metadata+0x146/0x1d0 [ 157.580944][ T4993] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 157.586959][ T4993] ? kmsan_get_metadata+0x146/0x1d0 [ 157.592429][ T4993] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 157.598892][ T4993] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 157.605155][ T4993] ? kmsan_get_metadata+0x146/0x1d0 [ 157.610508][ T4993] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 157.616523][ T4993] hfsplus_iget+0x740/0xaf0 [ 157.621171][ T4993] hfsplus_fill_super+0x151b/0x2700 [ 157.626525][ T4993] ? kmsan_get_metadata+0x146/0x1d0 [ 157.631965][ T4993] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 157.637935][ T4993] ? vsnprintf+0x2994/0x2a00 [ 157.642739][ T4993] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 157.649203][ T4993] ? kmsan_get_metadata+0x146/0x1d0 [ 157.654659][ T4993] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 157.660779][ T4993] ? kmsan_get_metadata+0x146/0x1d0 [ 157.666194][ T4993] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 157.672233][ T4993] ? sb_set_blocksize+0x132/0x170 [ 157.678167][ T4993] mount_bdev+0x397/0x520 [ 157.682712][ T4993] ? __pfx_hfsplus_fill_super+0x10/0x10 [ 157.688428][ T4993] hfsplus_mount+0x4d/0x60 [ 157.693070][ T4993] legacy_get_tree+0x114/0x290 [ 157.698028][ T4993] ? __pfx_hfsplus_mount+0x10/0x10 [ 157.703366][ T4993] ? __pfx_legacy_get_tree+0x10/0x10 [ 157.708882][ T4993] vfs_get_tree+0xa7/0x570 [ 157.713444][ T4993] ? mount_capable+0x97/0x120 [ 157.718254][ T4993] do_new_mount+0x71f/0x15e0 [ 157.723028][ T4993] ? kmsan_get_metadata+0x146/0x1d0 [ 157.728468][ T4993] path_mount+0x742/0x1f20 [ 157.732993][ T4993] ? user_path_at_empty+0x325/0x3a0 [ 157.738310][ T4993] __se_sys_mount+0x725/0x810 [ 157.743337][ T4993] __x64_sys_mount+0xe4/0x150 [ 157.748241][ T4993] do_syscall_64+0xd5/0x1f0 [ 157.752974][ T4993] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 157.759046][ T4993] RIP: 0033:0x7ff46954a0ea [ 157.763543][ T4993] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 157.783313][ T4993] RSP: 002b:00007ffd2f8d7218 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5 [ 157.792003][ T4993] RAX: ffffffffffffffda RBX: 00007ffd2f8d7230 RCX: 00007ff46954a0ea [ 157.800321][ T4993] RDX: 0000000020000000 RSI: 0000000020000140 RDI: 00007ffd2f8d7230 [ 157.808467][ T4993] RBP: 0000000000000004 R08: 00007ffd2f8d7270 R09: 002c353532317063 [ 157.816574][ T4993] R10: 0000000000804000 R11: 0000000000000286 R12: 0000000000804000 [ 157.824697][ T4993] R13: 00007ffd2f8d7270 R14: 0000000000000003 R15: 0000000000080000 [ 157.833164][ T4993] [ 157.836666][ T4993] Kernel Offset: disabled [ 157.841076][ T4993] Rebooting in 86400 seconds..