program: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_mount_image$hfsplus(&(0x7f00000001c0), &(0x7f0000000000)='./file1\x00', 0x2000010, &(0x7f0000000100)=ANY=[], 0x1, 0x6b1, &(0x7f0000000e80)="$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") creat(&(0x7f0000000340)='./bus\x00', 0x0) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) removexattr(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)=@random={'user.', '&@\x00'}) r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$ifreq_SIOCGIFINDEX_wireguard(r2, 0x8933, &(0x7f0000000080)={'wg2\x00', 0x0}) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000007540)={0xa8, r1, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PEERS={0x84, 0x8, 0x0, 0x1, [{0x80, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}, @WGPEER_A_ALLOWEDIPS={0x58, 0x9, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5}}]}, {0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x2}}]}, {0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @local}, {0x5, 0x3, 0x3}}]}]}]}]}, @WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r3}]}, 0xa8}}, 0x0) [ 75.351380][ T5333] Bluetooth: hci0: command tx timeout [ 75.446230][ T5353] loop0: detected capacity change from 0 to 1024 [ 75.512344][ T5353] hfsplus: new node 0 already hashed? [ 75.515118][ T5353] ------------[ cut here ]------------ [ 75.518230][ T5353] WARNING: CPU: 0 PID: 5353 at fs/hfsplus/bnode.c:671 hfsplus_bnode_create+0x461/0x4f0 [ 75.522884][ T5353] Modules linked in: [ 75.524845][ T5353] CPU: 0 UID: 0 PID: 5353 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 75.528954][ T5353] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 75.533718][ T5353] RIP: 0010:hfsplus_bnode_create+0x461/0x4f0 [ 75.536467][ T5353] Code: a1 8b 89 ee e8 b0 de 8d fe e9 cf fc ff ff e8 d6 f9 25 ff 4c 89 ef e8 9e 6b e4 08 48 c7 c7 c0 c9 a1 8b 89 ee e8 90 de 8d fe 90 <0f> 0b 90 eb b0 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c d6 fb ff ff [ 75.545229][ T5353] RSP: 0018:ffffc9000d4defa0 EFLAGS: 00010246 [ 75.548018][ T5353] RAX: 0000000000000023 RBX: ffff888036c60000 RCX: f229965d99a44800 [ 75.551966][ T5353] RDX: ffffc9000de3a000 RSI: 00000000000056c1 RDI: 00000000000056c2 [ 75.555613][ T5353] RBP: 0000000000000000 R08: ffffc9000d4decc7 R09: 1ffff92001a9bd98 [ 75.558843][ T5353] R10: dffffc0000000000 R11: fffff52001a9bd99 R12: 0000000000000000 [ 75.562533][ T5353] R13: ffff888036c600e0 R14: ffff888035f19300 R15: dffffc0000000000 [ 75.566081][ T5353] FS: 00007fef9abe26c0(0000) GS:ffff88808d210000(0000) knlGS:0000000000000000 [ 75.570010][ T5353] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 75.573156][ T5353] CR2: 00007f470e056000 CR3: 0000000011491000 CR4: 0000000000352ef0 [ 75.576414][ T5353] Call Trace: [ 75.577874][ T5353] [ 75.579115][ T5353] ? do_raw_spin_unlock+0x4d/0x240 [ 75.581339][ T5353] hfsplus_bmap_alloc+0x5af/0x640 [ 75.583496][ T5353] ? __pfx_hfsplus_bmap_alloc+0x10/0x10 [ 75.585879][ T5353] ? hfsplus_bnode_read+0x223/0x800 [ 75.588039][ T5353] ? hfsplus_bnode_read+0x223/0x800 [ 75.590248][ T5353] hfs_bnode_split+0xcc/0xef0 [ 75.592285][ T5353] ? hfsplus_bnode_read+0x344/0x800 [ 75.594315][ T5353] ? hfsplus_bnode_read+0x223/0x800 [ 75.596377][ T5353] ? __asan_memcpy+0x40/0x70 [ 75.598439][ T5353] ? hfsplus_bnode_read_u16+0x87/0xd0 [ 75.601085][ T5353] ? __pfx_hfs_bnode_split+0x10/0x10 [ 75.603353][ T5353] hfsplus_brec_insert+0x38f/0xcc0 [ 75.605539][ T5353] ? __pfx_hfsplus_brec_insert+0x10/0x10 [ 75.608152][ T5353] hfsplus_create_cat+0x3b6/0x1000 [ 75.611410][ T5353] ? __pfx_hfsplus_create_cat+0x10/0x10 [ 75.615216][ T5353] ? do_raw_spin_unlock+0x4d/0x240 [ 75.618084][ T5353] ? do_raw_spin_unlock+0x4d/0x240 [ 75.621086][ T5353] ? _raw_spin_unlock+0x28/0x50 [ 75.623319][ T5353] ? hfsplus_new_inode+0x643/0x820 [ 75.625600][ T5353] hfsplus_fill_super+0x12f5/0x1b50 [ 75.627821][ T5353] ? __lock_acquire+0xab9/0xd20 [ 75.629881][ T5353] ? __pfx_hfsplus_fill_super+0x10/0x10 [ 75.632312][ T5353] ? string+0x279/0x2b0 [ 75.634132][ T5353] ? snprintf+0xda/0x120 [ 75.636023][ T5353] ? sb_set_blocksize+0x104/0x180 [ 75.638214][ T5353] ? setup_bdev_super+0x4c1/0x5b0 [ 75.640396][ T5353] get_tree_bdev_flags+0x40b/0x4d0 [ 75.643108][ T5353] ? __pfx_hfsplus_fill_super+0x10/0x10 [ 75.645880][ T5353] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 75.648282][ T5353] vfs_get_tree+0x92/0x2b0 [ 75.650240][ T5353] do_new_mount+0x2a2/0x9e0 [ 75.652473][ T5353] ? ns_capable+0x8a/0xf0 [ 75.654870][ T5353] ? __pfx_do_new_mount+0x10/0x10 [ 75.657447][ T5353] ? path_mount+0x61c/0xfe0 [ 75.659564][ T5353] ? user_path_at+0x44/0x60 [ 75.662237][ T5353] __se_sys_mount+0x317/0x410 [ 75.664507][ T5353] ? __pfx___se_sys_mount+0x10/0x10 [ 75.666907][ T5353] ? do_syscall_64+0xbe/0x3b0 [ 75.669078][ T5353] ? __x64_sys_mount+0x20/0xc0 [ 75.671523][ T5353] do_syscall_64+0xfa/0x3b0 [ 75.673740][ T5353] ? lockdep_hardirqs_on+0x9c/0x150 [ 75.676155][ T5353] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.678872][ T5353] ? clear_bhb_loop+0x60/0xb0 [ 75.680908][ T5353] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.683579][ T5353] RIP: 0033:0x7fef99d9038a [ 75.685640][ T5353] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 75.693603][ T5353] RSP: 002b:00007fef9abe1e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 75.696612][ T5353] RAX: ffffffffffffffda RBX: 00007fef9abe1ef0 RCX: 00007fef99d9038a [ 75.699729][ T5353] RDX: 00002000000001c0 RSI: 0000200000000000 RDI: 00007fef9abe1eb0 [ 75.702770][ T5353] RBP: 00002000000001c0 R08: 00007fef9abe1ef0 R09: 0000000002000010 [ 75.705848][ T5353] R10: 0000000002000010 R11: 0000000000000246 R12: 0000200000000000 [ 75.709013][ T5353] R13: 00007fef9abe1eb0 R14: 00000000000006b1 R15: 0000200000000100 [ 75.711982][ T5353] [ 75.713143][ T5353] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 75.716122][ T5353] CPU: 0 UID: 0 PID: 5353 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 75.720015][ T5353] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 75.724797][ T5353] Call Trace: [ 75.726347][ T5353] [ 75.727676][ T5353] dump_stack_lvl+0x99/0x250 [ 75.729855][ T5353] ? __asan_memcpy+0x40/0x70 [ 75.732113][ T5353] ? __pfx_dump_stack_lvl+0x10/0x10 [ 75.734572][ T5353] ? __pfx__printk+0x10/0x10 [ 75.736784][ T5353] vpanic+0x281/0x750 [ 75.738685][ T5353] ? __pfx__printk+0x10/0x10 [ 75.740885][ T5353] ? __pfx_vpanic+0x10/0x10 [ 75.742968][ T5353] ? is_bpf_text_address+0x26/0x2b0 [ 75.745320][ T5353] panic+0xb9/0xc0 [ 75.747055][ T5353] ? __pfx_panic+0x10/0x10 [ 75.748958][ T5353] __warn+0x31b/0x4b0 [ 75.750804][ T5353] ? hfsplus_bnode_create+0x461/0x4f0 [ 75.753467][ T5353] ? hfsplus_bnode_create+0x461/0x4f0 [ 75.755951][ T5353] report_bug+0x2be/0x4f0 [ 75.757895][ T5353] ? hfsplus_bnode_create+0x461/0x4f0 [ 75.760134][ T5353] ? hfsplus_bnode_create+0x461/0x4f0 [ 75.762416][ T5353] ? hfsplus_bnode_create+0x463/0x4f0 [ 75.764736][ T5353] handle_bug+0x84/0x160 [ 75.766537][ T5353] exc_invalid_op+0x1a/0x50 [ 75.768507][ T5353] asm_exc_invalid_op+0x1a/0x20 [ 75.771070][ T5353] RIP: 0010:hfsplus_bnode_create+0x461/0x4f0 [ 75.773774][ T5353] Code: a1 8b 89 ee e8 b0 de 8d fe e9 cf fc ff ff e8 d6 f9 25 ff 4c 89 ef e8 9e 6b e4 08 48 c7 c7 c0 c9 a1 8b 89 ee e8 90 de 8d fe 90 <0f> 0b 90 eb b0 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c d6 fb ff ff [ 75.782725][ T5353] RSP: 0018:ffffc9000d4defa0 EFLAGS: 00010246 [ 75.785559][ T5353] RAX: 0000000000000023 RBX: ffff888036c60000 RCX: f229965d99a44800 [ 75.789504][ T5353] RDX: ffffc9000de3a000 RSI: 00000000000056c1 RDI: 00000000000056c2 [ 75.793091][ T5353] RBP: 0000000000000000 R08: ffffc9000d4decc7 R09: 1ffff92001a9bd98 [ 75.796567][ T5353] R10: dffffc0000000000 R11: fffff52001a9bd99 R12: 0000000000000000 [ 75.800110][ T5353] R13: ffff888036c600e0 R14: ffff888035f19300 R15: dffffc0000000000 [ 75.803792][ T5353] ? do_raw_spin_unlock+0x4d/0x240 [ 75.806178][ T5353] hfsplus_bmap_alloc+0x5af/0x640 [ 75.808598][ T5353] ? __pfx_hfsplus_bmap_alloc+0x10/0x10 [ 75.811168][ T5353] ? hfsplus_bnode_read+0x223/0x800 [ 75.813625][ T5353] ? hfsplus_bnode_read+0x223/0x800 [ 75.815929][ T5353] hfs_bnode_split+0xcc/0xef0 [ 75.817950][ T5353] ? hfsplus_bnode_read+0x344/0x800 [ 75.820459][ T5353] ? hfsplus_bnode_read+0x223/0x800 [ 75.823002][ T5353] ? __asan_memcpy+0x40/0x70 [ 75.825265][ T5353] ? hfsplus_bnode_read_u16+0x87/0xd0 [ 75.827526][ T5353] ? __pfx_hfs_bnode_split+0x10/0x10 [ 75.829932][ T5353] hfsplus_brec_insert+0x38f/0xcc0 [ 75.832494][ T5353] ? __pfx_hfsplus_brec_insert+0x10/0x10 [ 75.835553][ T5353] hfsplus_create_cat+0x3b6/0x1000 [ 75.838039][ T5353] ? __pfx_hfsplus_create_cat+0x10/0x10 [ 75.840637][ T5353] ? do_raw_spin_unlock+0x4d/0x240 [ 75.842968][ T5353] ? do_raw_spin_unlock+0x4d/0x240 [ 75.845291][ T5353] ? _raw_spin_unlock+0x28/0x50 [ 75.848137][ T5353] ? hfsplus_new_inode+0x643/0x820 [ 75.850563][ T5353] hfsplus_fill_super+0x12f5/0x1b50 [ 75.852938][ T5353] ? __lock_acquire+0xab9/0xd20 [ 75.855069][ T5353] ? __pfx_hfsplus_fill_super+0x10/0x10 [ 75.857486][ T5353] ? string+0x279/0x2b0 [ 75.859875][ T5353] ? snprintf+0xda/0x120 [ 75.861886][ T5353] ? sb_set_blocksize+0x104/0x180 [ 75.864280][ T5353] ? setup_bdev_super+0x4c1/0x5b0 [ 75.866541][ T5353] get_tree_bdev_flags+0x40b/0x4d0 [ 75.868974][ T5353] ? __pfx_hfsplus_fill_super+0x10/0x10 [ 75.871345][ T5353] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 75.873707][ T5353] vfs_get_tree+0x92/0x2b0 [ 75.875760][ T5353] do_new_mount+0x2a2/0x9e0 [ 75.877788][ T5353] ? ns_capable+0x8a/0xf0 [ 75.879738][ T5353] ? __pfx_do_new_mount+0x10/0x10 [ 75.882319][ T5353] ? path_mount+0x61c/0xfe0 [ 75.884500][ T5353] ? user_path_at+0x44/0x60 [ 75.886626][ T5353] __se_sys_mount+0x317/0x410 [ 75.888809][ T5353] ? __pfx___se_sys_mount+0x10/0x10 [ 75.891128][ T5353] ? do_syscall_64+0xbe/0x3b0 [ 75.893251][ T5353] ? __x64_sys_mount+0x20/0xc0 [ 75.895410][ T5353] do_syscall_64+0xfa/0x3b0 [ 75.897340][ T5353] ? lockdep_hardirqs_on+0x9c/0x150 [ 75.899503][ T5353] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.901904][ T5353] ? clear_bhb_loop+0x60/0xb0 [ 75.903780][ T5353] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.906060][ T5353] RIP: 0033:0x7fef99d9038a [ 75.907983][ T5353] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 75.916315][ T5353] RSP: 002b:00007fef9abe1e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 75.919858][ T5353] RAX: ffffffffffffffda RBX: 00007fef9abe1ef0 RCX: 00007fef99d9038a [ 75.923191][ T5353] RDX: 00002000000001c0 RSI: 0000200000000000 RDI: 00007fef9abe1eb0 [ 75.926501][ T5353] RBP: 00002000000001c0 R08: 00007fef9abe1ef0 R09: 0000000002000010 [ 75.929934][ T5353] R10: 0000000002000010 R11: 0000000000000246 R12: 0000200000000000 [ 75.933550][ T5353] R13: 00007fef9abe1eb0 R14: 00000000000006b1 R15: 0000200000000100 [ 75.937046][ T5353] [ 75.938592][ T5353] Kernel Offset: disabled [ 75.940100][ T5353] Rebooting in 86400 seconds..