./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2482949604 <...> Warning: Permanently added '10.128.0.178' (ECDSA) to the list of known hosts. execve("./syz-executor2482949604", ["./syz-executor2482949604"], 0x7ffe77be7ae0 /* 10 vars */) = 0 brk(NULL) = 0x5555562e3000 brk(0x5555562e3c40) = 0x5555562e3c40 arch_prctl(ARCH_SET_FS, 0x5555562e3300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor2482949604", 4096) = 28 brk(0x555556304c40) = 0x555556304c40 brk(0x555556305000) = 0x555556305000 mprotect(0x7f2bd5dac000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 memfd_create("syzkaller", 0) = 3 mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2bcd8f3000 write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 524288) = 524288 munmap(0x7f2bcd8f3000, 524288) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ioctl(4, LOOP_SET_FD, 3) = 0 close(3) = 0 mkdir("./file0", 0777) = 0 syzkaller login: [ 50.497697][ T5069] loop0: detected capacity change from 0 to 1024 [ 50.513410][ T5069] ------------[ cut here ]------------ [ 50.518969][ T5069] WARNING: CPU: 0 PID: 5069 at fs/hfsplus/inode.c:591 hfsplus_cat_write_inode+0xb07/0xfe0 [ 50.529131][ T5069] Modules linked in: [ 50.533191][ T5069] CPU: 0 PID: 5069 Comm: syz-executor248 Not tainted 6.1.0-syzkaller-13031-g77856d911a8c #0 [ 50.543450][ T5069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 50.553686][ T5069] RIP: 0010:hfsplus_cat_write_inode+0xb07/0xfe0 [ 50.559944][ T5069] Code: 25 28 00 00 00 48 3b 84 24 60 03 00 00 0f 85 df 04 00 00 44 89 f0 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 59 eb 2c ff <0f> 0b e9 d1 f7 ff ff e8 4d eb 2c ff 0f 0b e9 7f fa ff ff 89 d9 80 [ 50.579893][ T5069] RSP: 0018:ffffc90003b7f140 EFLAGS: 00010293 [ 50.586120][ T5069] RAX: ffffffff825eea67 RBX: 0000000000000008 RCX: ffff888017ee3a80 [ 50.594192][ T5069] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000058 [ 50.602199][ T5069] RBP: ffffc90003b7f4f0 R08: ffffffff825ee229 R09: ffffed100455ba60 [ 50.610305][ T5069] R10: 0000000000000001 R11: 0000000000000000 R12: dffffc0000000000 [ 50.618347][ T5069] R13: ffffc90003b7f200 R14: ffffc90003b7f1a0 R15: ffff888075002370 [ 50.626353][ T5069] FS: 00005555562e3300(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 50.635363][ T5069] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 50.642009][ T5069] CR2: 00007f2bcd972c00 CR3: 000000001e2a2000 CR4: 00000000003506e0 [ 50.649972][ T5069] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 50.658007][ T5069] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 50.666016][ T5069] Call Trace: [ 50.669290][ T5069] [ 50.672323][ T5069] ? hfsplus_get_perms+0x810/0x810 [ 50.677454][ T5069] ? __mutex_lock_common+0x45f/0x26e0 [ 50.682879][ T5069] ? xas_reload+0x400/0x400 [ 50.687479][ T5069] ? __mutex_unlock_slowpath+0x222/0x770 [ 50.693189][ T5069] ? hfsplus_ext_write_extent+0x87/0x1e0 [ 50.698850][ T5069] ? mutex_unlock+0x10/0x10 [ 50.703412][ T5069] ? rcu_read_lock_sched_held+0x87/0x110 [ 50.709055][ T5069] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 50.715114][ T5069] ? hfsplus_ext_write_extent+0x177/0x1e0 [ 50.720840][ T5069] ? hfsplus_ext_cmp_key+0x2e0/0x2e0 [ 50.726374][ T5069] ? rcu_read_lock_sched_held+0x87/0x110 [ 50.732085][ T5069] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 50.738076][ T5069] ? hfsplus_write_inode+0x185/0x5c0 [ 50.743431][ T5069] __writeback_single_inode+0x4d6/0x670 [ 50.748998][ T5069] writeback_single_inode+0x21e/0x810 [ 50.754439][ T5069] ? write_inode_now+0x260/0x260 [ 50.759389][ T5069] ? iput+0x3d9/0x760 [ 50.763407][ T5069] ? trace_lock_release+0x95/0x220 [ 50.768529][ T5069] write_inode_now+0x1cd/0x260 [ 50.773373][ T5069] ? bdi_split_work_to_wbs+0x870/0x870 [ 50.778846][ T5069] ? do_raw_spin_unlock+0x134/0x8a0 [ 50.784102][ T5069] iput+0x3e6/0x760 [ 50.787918][ T5069] hfsplus_fill_super+0x13ca/0x1b50 [ 50.793180][ T5069] ? __lock_acquire+0x1292/0x1f60 [ 50.798244][ T5069] ? hfsplus_mount+0x40/0x40 [ 50.802904][ T5069] ? bdev_name+0x2ce/0x3f0 [ 50.807331][ T5069] ? pointer+0x14a/0xfa0 [ 50.811658][ T5069] ? string+0x2d0/0x2d0 [ 50.815833][ T5069] ? vsnprintf+0x1cb0/0x1cb0 [ 50.820457][ T5069] ? vsnprintf+0x1bd8/0x1cb0 [ 50.825111][ T5069] ? ptr_to_hashval+0x70/0x70 [ 50.829804][ T5069] ? snprintf+0xc0/0x110 [ 50.834111][ T5069] ? vscnprintf+0x80/0x80 [ 50.838454][ T5069] ? sb_set_blocksize+0x95/0xf0 [ 50.843347][ T5069] mount_bdev+0x26c/0x3a0 [ 50.847687][ T5069] ? hfsplus_mount+0x40/0x40 [ 50.852342][ T5069] legacy_get_tree+0xea/0x180 [ 50.857025][ T5069] ? hfsplus_mark_mdb_dirty+0x1b0/0x1b0 [ 50.862911][ T5069] vfs_get_tree+0x88/0x270 [ 50.867339][ T5069] do_new_mount+0x289/0xad0 [ 50.871906][ T5069] ? do_move_mount_old+0x150/0x150 [ 50.877027][ T5069] ? user_path_at_empty+0x149/0x1a0 [ 50.882270][ T5069] __se_sys_mount+0x2d3/0x3c0 [ 50.886995][ T5069] ? __x64_sys_mount+0xc0/0xc0 [ 50.891815][ T5069] ? syscall_enter_from_user_mode+0x2e/0x1d0 [ 50.897807][ T5069] ? __x64_sys_mount+0x1c/0xc0 [ 50.902629][ T5069] do_syscall_64+0x3d/0xb0 [ 50.907051][ T5069] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 50.913016][ T5069] RIP: 0033:0x7f2bd5d40aea [ 50.917435][ T5069] Code: 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 50.937096][ T5069] RSP: 002b:00007ffca26f5208 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5 [ 50.945566][ T5069] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f2bd5d40aea [ 50.953599][ T5069] RDX: 0000000020000600 RSI: 0000000020000000 RDI: 00007ffca26f5220 [ 50.961619][ T5069] RBP: 00007ffca26f5220 R08: 00007ffca26f5260 R09: 00000000000005ff [ 50.969593][ T5069] R10: 000000000101000c R11: 0000000000000286 R12: 0000000000000004 [ 50.977627][ T5069] R13: 00005555562e32c0 R14: 000000000101000c R15: 00007ffca26f5260 [ 50.985656][ T5069] [ 50.988669][ T5069] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 50.995930][ T5069] CPU: 1 PID: 5069 Comm: syz-executor248 Not tainted 6.1.0-syzkaller-13031-g77856d911a8c #0 [ 51.005982][ T5069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 51.016021][ T5069] Call Trace: [ 51.019295][ T5069] [ 51.022213][ T5069] dump_stack_lvl+0x1b1/0x290 [ 51.026895][ T5069] ? nf_tcp_handle_invalid+0x630/0x630 [ 51.032342][ T5069] ? panic+0x710/0x710 [ 51.036401][ T5069] ? vscnprintf+0x59/0x80 [ 51.040719][ T5069] ? hfsplus_cat_write_inode+0xaa0/0xfe0 [ 51.046340][ T5069] panic+0x2d6/0x710 [ 51.050221][ T5069] ? __warn+0x16d/0x2d0 [ 51.054363][ T5069] ? memcpy_page_flushcache+0x100/0x100 [ 51.059919][ T5069] ? hfsplus_cat_write_inode+0xb07/0xfe0 [ 51.065541][ T5069] __warn+0x284/0x2d0 [ 51.069511][ T5069] ? hfsplus_cat_write_inode+0xb07/0xfe0 [ 51.075137][ T5069] report_bug+0x1b3/0x2d0 [ 51.079468][ T5069] handle_bug+0x3d/0x70 [ 51.083617][ T5069] exc_invalid_op+0x16/0x40 [ 51.088115][ T5069] asm_exc_invalid_op+0x16/0x20 [ 51.092963][ T5069] RIP: 0010:hfsplus_cat_write_inode+0xb07/0xfe0 [ 51.099199][ T5069] Code: 25 28 00 00 00 48 3b 84 24 60 03 00 00 0f 85 df 04 00 00 44 89 f0 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 59 eb 2c ff <0f> 0b e9 d1 f7 ff ff e8 4d eb 2c ff 0f 0b e9 7f fa ff ff 89 d9 80 [ 51.118796][ T5069] RSP: 0018:ffffc90003b7f140 EFLAGS: 00010293 [ 51.124855][ T5069] RAX: ffffffff825eea67 RBX: 0000000000000008 RCX: ffff888017ee3a80 [ 51.132817][ T5069] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000058 [ 51.140779][ T5069] RBP: ffffc90003b7f4f0 R08: ffffffff825ee229 R09: ffffed100455ba60 [ 51.148758][ T5069] R10: 0000000000000001 R11: 0000000000000000 R12: dffffc0000000000 [ 51.156720][ T5069] R13: ffffc90003b7f200 R14: ffffc90003b7f1a0 R15: ffff888075002370 [ 51.164691][ T5069] ? hfsplus_cat_write_inode+0x2c9/0xfe0 [ 51.170318][ T5069] ? hfsplus_cat_write_inode+0xb07/0xfe0 [ 51.175964][ T5069] ? hfsplus_get_perms+0x810/0x810 [ 51.181073][ T5069] ? __mutex_lock_common+0x45f/0x26e0 [ 51.186439][ T5069] ? xas_reload+0x400/0x400 [ 51.190946][ T5069] ? __mutex_unlock_slowpath+0x222/0x770 [ 51.196570][ T5069] ? hfsplus_ext_write_extent+0x87/0x1e0 [ 51.202199][ T5069] ? mutex_unlock+0x10/0x10 [ 51.206691][ T5069] ? rcu_read_lock_sched_held+0x87/0x110 [ 51.212317][ T5069] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 51.218301][ T5069] ? hfsplus_ext_write_extent+0x177/0x1e0 [ 51.224026][ T5069] ? hfsplus_ext_cmp_key+0x2e0/0x2e0 [ 51.229309][ T5069] ? rcu_read_lock_sched_held+0x87/0x110 [ 51.234938][ T5069] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 51.240917][ T5069] ? hfsplus_write_inode+0x185/0x5c0 [ 51.246227][ T5069] __writeback_single_inode+0x4d6/0x670 [ 51.251776][ T5069] writeback_single_inode+0x21e/0x810 [ 51.257145][ T5069] ? write_inode_now+0x260/0x260 [ 51.262095][ T5069] ? iput+0x3d9/0x760 [ 51.266084][ T5069] ? trace_lock_release+0x95/0x220 [ 51.271192][ T5069] write_inode_now+0x1cd/0x260 [ 51.275960][ T5069] ? bdi_split_work_to_wbs+0x870/0x870 [ 51.281419][ T5069] ? do_raw_spin_unlock+0x134/0x8a0 [ 51.286620][ T5069] iput+0x3e6/0x760 [ 51.290426][ T5069] hfsplus_fill_super+0x13ca/0x1b50 [ 51.295617][ T5069] ? __lock_acquire+0x1292/0x1f60 [ 51.300648][ T5069] ? hfsplus_mount+0x40/0x40 [ 51.305232][ T5069] ? bdev_name+0x2ce/0x3f0 [ 51.309645][ T5069] ? pointer+0x14a/0xfa0 [ 51.313889][ T5069] ? string+0x2d0/0x2d0 [ 51.318049][ T5069] ? vsnprintf+0x1cb0/0x1cb0 [ 51.322641][ T5069] ? vsnprintf+0x1bd8/0x1cb0 [ 51.327235][ T5069] ? ptr_to_hashval+0x70/0x70 [ 51.331930][ T5069] ? snprintf+0xc0/0x110 [ 51.336174][ T5069] ? vscnprintf+0x80/0x80 [ 51.340509][ T5069] ? sb_set_blocksize+0x95/0xf0 [ 51.345355][ T5069] mount_bdev+0x26c/0x3a0 [ 51.349685][ T5069] ? hfsplus_mount+0x40/0x40 [ 51.354270][ T5069] legacy_get_tree+0xea/0x180 [ 51.358945][ T5069] ? hfsplus_mark_mdb_dirty+0x1b0/0x1b0 [ 51.364486][ T5069] vfs_get_tree+0x88/0x270 [ 51.368895][ T5069] do_new_mount+0x289/0xad0 [ 51.373396][ T5069] ? do_move_mount_old+0x150/0x150 [ 51.378502][ T5069] ? user_path_at_empty+0x149/0x1a0 [ 51.383698][ T5069] __se_sys_mount+0x2d3/0x3c0 [ 51.388372][ T5069] ? __x64_sys_mount+0xc0/0xc0 [ 51.393127][ T5069] ? syscall_enter_from_user_mode+0x2e/0x1d0 [ 51.399106][ T5069] ? __x64_sys_mount+0x1c/0xc0 [ 51.403862][ T5069] do_syscall_64+0x3d/0xb0 [ 51.408274][ T5069] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 51.414172][ T5069] RIP: 0033:0x7f2bd5d40aea [ 51.418584][ T5069] Code: 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 51.438223][ T5069] RSP: 002b:00007ffca26f5208 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5 [ 51.446676][ T5069] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f2bd5d40aea [ 51.454646][ T5069] RDX: 0000000020000600 RSI: 0000000020000000 RDI: 00007ffca26f5220 [ 51.462610][ T5069] RBP: 00007ffca26f5220 R08: 00007ffca26f5260 R09: 00000000000005ff [ 51.470599][ T5069] R10: 000000000101000c R11: 0000000000000286 R12: 0000000000000004 [ 51.478575][ T5069] R13: 00005555562e32c0 R14: 000000000101000c R15: 00007ffca26f5260 [ 51.486559][ T5069] [ 51.489716][ T5069] Kernel Offset: disabled [ 51.494109][ T5069] Rebooting in 86400 seconds..