./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3998540608 <...> Warning: Permanently added '10.128.0.73' (ED25519) to the list of known hosts. execve("./syz-executor3998540608", ["./syz-executor3998540608"], 0x7ffc00fafb10 /* 10 vars */) = 0 brk(NULL) = 0x555556dd0000 brk(0x555556dd0d00) = 0x555556dd0d00 arch_prctl(ARCH_SET_FS, 0x555556dd0380) = 0 set_tid_address(0x555556dd0650) = 5063 set_robust_list(0x555556dd0660, 24) = 0 rseq(0x555556dd0ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3998540608", 4096) = 28 getrandom("\x06\xb4\xca\x70\x73\x2a\xe8\xfa", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555556dd0d00 brk(0x555556df1d00) = 0x555556df1d00 brk(0x555556df2000) = 0x555556df2000 mprotect(0x7f2b5348a000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 memfd_create("syzkaller", 0) = 3 mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2b4afda000 write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 524288) = 524288 munmap(0x7f2b4afda000, 138412032) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ioctl(4, LOOP_SET_FD, 3) = 0 close(3) = 0 mkdir("./file0", 0777) = 0 mount("/dev/loop0", "./file0", "hfsplus", MS_SYNCHRONOUS|MS_NOATIME|MS_POSIXACL, "") = 0 openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 chdir("./file0") = 0 ioctl(4, LOOP_CLR_FD) = 0 close(4) = 0 [ 54.490266][ T5063] loop0: detected capacity change from 0 to 1024 [ 54.531495][ T5063] ------------[ cut here ]------------ [ 54.537097][ T5063] kernel BUG at fs/hfsplus/xattr.c:175! [ 54.543061][ T5063] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 54.549141][ T5063] CPU: 1 PID: 5063 Comm: syz-executor399 Not tainted 6.7.0-rc7-syzkaller-00041-gf016f7547aee #0 [ 54.559542][ T5063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 54.569576][ T5063] RIP: 0010:__hfsplus_setxattr+0x2104/0x2200 [ 54.575565][ T5063] Code: ff 4c 8b 54 24 50 4c 8b 44 24 38 e9 28 ea ff ff e8 a1 32 83 ff 4c 8b 54 24 50 4c 8b 44 24 38 e9 f2 e9 ff ff e8 4d 88 2c ff 90 <0f> 0b 48 8b 7c 24 48 e8 80 32 83 ff 4c 8b 54 24 50 4c 8b 44 24 38 [ 54.595156][ T5063] RSP: 0018:ffffc900044e74d8 EFLAGS: 00010293 [ 54.601198][ T5063] RAX: 0000000000000000 RBX: 0000000000010000 RCX: ffffffff825ad326 [ 54.609162][ T5063] RDX: ffff88807efe5940 RSI: ffffffff825ae983 RDI: 0000000000000007 [ 54.617106][ T5063] RBP: ffffed1003078307 R08: ffff888017b72000 R09: 0000000000000000 [ 54.625053][ T5063] R10: ffff8880183c1830 R11: 0000000000000003 R12: 0000000000000003 [ 54.632999][ T5063] R13: ffff8880183c1800 R14: 1ffff9200089cead R15: ffffc900044e7598 [ 54.640952][ T5063] FS: 0000555556dd0380(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 54.649862][ T5063] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 54.656422][ T5063] CR2: 000000000150e398 CR3: 000000007d29c000 CR4: 0000000000350ef0 [ 54.664372][ T5063] Call Trace: [ 54.667629][ T5063] [ 54.670540][ T5063] ? show_regs+0x8f/0xa0 [ 54.674762][ T5063] ? die+0x36/0xa0 [ 54.678462][ T5063] ? do_trap+0x22b/0x420 [ 54.682684][ T5063] ? __hfsplus_setxattr+0x2104/0x2200 [ 54.688034][ T5063] ? __hfsplus_setxattr+0x2104/0x2200 [ 54.693379][ T5063] ? do_error_trap+0xf4/0x230 [ 54.698034][ T5063] ? __hfsplus_setxattr+0x2104/0x2200 [ 54.703384][ T5063] ? handle_invalid_op+0x34/0x40 [ 54.708305][ T5063] ? __hfsplus_setxattr+0x2104/0x2200 [ 54.713660][ T5063] ? exc_invalid_op+0x2e/0x40 [ 54.718328][ T5063] ? asm_exc_invalid_op+0x1a/0x20 [ 54.723330][ T5063] ? __hfsplus_setxattr+0xaa6/0x2200 [ 54.728590][ T5063] ? __hfsplus_setxattr+0x2103/0x2200 [ 54.733937][ T5063] ? __hfsplus_setxattr+0x2104/0x2200 [ 54.739283][ T5063] ? __hfsplus_setxattr+0x2103/0x2200 [ 54.744630][ T5063] ? lock_acquire+0x1ae/0x520 [ 54.749292][ T5063] ? find_held_lock+0x2d/0x110 [ 54.754033][ T5063] ? copy_name+0xa0/0xa0 [ 54.758252][ T5063] ? mark_held_locks+0x9f/0xe0 [ 54.762996][ T5063] ? _raw_spin_unlock_irqrestore+0x4e/0x70 [ 54.768780][ T5063] ? lockdep_hardirqs_on+0x7d/0x110 [ 54.773966][ T5063] hfsplus_setxattr+0x10c/0x160 [ 54.778793][ T5063] ? hfsplus_listxattr+0xe10/0xe10 [ 54.783879][ T5063] __vfs_setxattr+0x173/0x1d0 [ 54.788539][ T5063] ? __vfs_removexattr+0x1c0/0x1c0 [ 54.793634][ T5063] __vfs_setxattr_noperm+0x127/0x5e0 [ 54.798920][ T5063] __vfs_setxattr_locked+0x17e/0x250 [ 54.804188][ T5063] vfs_setxattr+0x146/0x350 [ 54.808675][ T5063] ? save_trace+0x4e/0xb30 [ 54.813073][ T5063] ? __vfs_setxattr_locked+0x250/0x250 [ 54.818514][ T5063] do_setxattr+0x142/0x170 [ 54.822909][ T5063] setxattr+0x159/0x170 [ 54.827041][ T5063] ? do_setxattr+0x170/0x170 [ 54.831620][ T5063] ? mnt_get_write_access+0x20c/0x300 [ 54.836970][ T5063] path_setxattr+0x175/0x1d0 [ 54.841544][ T5063] ? setxattr+0x170/0x170 [ 54.845853][ T5063] ? _raw_spin_unlock_irq+0x23/0x50 [ 54.851030][ T5063] ? _raw_spin_unlock_irq+0x2e/0x50 [ 54.856202][ T5063] ? ptrace_notify+0xf4/0x130 [ 54.860856][ T5063] __x64_sys_setxattr+0xc4/0x160 [ 54.865773][ T5063] ? syscall_enter_from_user_mode+0x107/0x120 [ 54.871818][ T5063] do_syscall_64+0x40/0x110 [ 54.876304][ T5063] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 54.882171][ T5063] RIP: 0033:0x7f2b534175f9 [ 54.886561][ T5063] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 54.906340][ T5063] RSP: 002b:00007fff34d3bda8 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc [ 54.914727][ T5063] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007f2b534175f9 [ 54.922679][ T5063] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000020000100 [ 54.930627][ T5063] RBP: 00007f2b5348a610 R08: 0000000000000003 R09: 0000000000000000 [ 54.938575][ T5063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 54.946520][ T5063] R13: 00007fff34d3bf78 R14: 0000000000000001 R15: 0000000000000001 [ 54.954469][ T5063] [ 54.957466][ T5063] Modules linked in: [ 54.965048][ T5063] ---[ end trace 0000000000000000 ]--- [ 54.970550][ T5063] RIP: 0010:__hfsplus_setxattr+0x2104/0x2200 [ 54.976530][ T5063] Code: ff 4c 8b 54 24 50 4c 8b 44 24 38 e9 28 ea ff ff e8 a1 32 83 ff 4c 8b 54 24 50 4c 8b 44 24 38 e9 f2 e9 ff ff e8 4d 88 2c ff 90 <0f> 0b 48 8b 7c 24 48 e8 80 32 83 ff 4c 8b 54 24 50 4c 8b 44 24 38 [ 54.996780][ T5063] RSP: 0018:ffffc900044e74d8 EFLAGS: 00010293 [ 55.002859][ T5063] RAX: 0000000000000000 RBX: 0000000000010000 RCX: ffffffff825ad326 [ 55.010860][ T5063] RDX: ffff88807efe5940 RSI: ffffffff825ae983 RDI: 0000000000000007 [ 55.018846][ T5063] RBP: ffffed1003078307 R08: ffff888017b72000 R09: 0000000000000000 [ 55.026811][ T5063] R10: ffff8880183c1830 R11: 0000000000000003 R12: 0000000000000003 [ 55.034798][ T5063] R13: ffff8880183c1800 R14: 1ffff9200089cead R15: ffffc900044e7598 [ 55.042782][ T5063] FS: 0000555556dd0380(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 55.051732][ T5063] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 55.058335][ T5063] CR2: 00005624a1bd1ff0 CR3: 000000007d29c000 CR4: 0000000000350ef0 [ 55.066284][ T5063] Kernel panic - not syncing: Fatal exception [ 55.072565][ T5063] Kernel Offset: disabled [ 55.076867][ T5063] Rebooting in 86400 seconds..