./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4253842650
<...>
Warning: Permanently added '10.128.1.83' (ECDSA) to the list of known hosts.
execve("./syz-executor4253842650", ["./syz-executor4253842650"], 0x7ffca67fd5f0 /* 10 vars */) = 0
brk(NULL) = 0x55555750f000
brk(0x55555750fc40) = 0x55555750fc40
arch_prctl(ARCH_SET_FS, 0x55555750f300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor4253842650", 4096) = 28
brk(0x555557530c40) = 0x555557530c40
brk(0x555557531000) = 0x555557531000
mprotect(0x7f21ab650000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
memfd_create("syzkaller", 0) = 3
mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f21a3197000
write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 524288) = 524288
munmap(0x7f21a3197000, 524288) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
ioctl(4, LOOP_SET_FD, 3) = 0
close(3) = 0
mkdir("./bus", 0777) = 0
syzkaller login: [ 56.556494][ T4991] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=4991 'syz-executor425'
[ 56.574682][ T4991] loop0: detected capacity change from 0 to 1024
[ 56.584674][ T4991] =======================================================
[ 56.584674][ T4991] WARNING: The mand mount option has been deprecated and
[ 56.584674][ T4991] and is ignored by this kernel. Remove the mand
mount("/dev/loop0", "./bus", "hfsplus", MS_SYNCHRONOUS|MS_MANDLOCK, "") = 0
openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
chdir("./bus") = 0
ioctl(4, LOOP_CLR_FD) = 0
close(4) = 0
[ 56.584674][ T4991] option from the mount to silence this warning.
[ 56.584674][ T4991] =======================================================
[ 56.631253][ T4991] hfsplus: xattr searching failed
[ 56.636681][ T4991] hfsplus: xattr searching failed
[ 56.642851][ T4991] hfsplus: xattr searching failed
[ 56.649138][ T4991] hfsplus: xattr searching failed
open("./file1", O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = 4
[ 56.655422][ T27] audit: type=1800 audit(1686628963.494:2): pid=4991 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor425" name="file1" dev="loop0" ino=20 res=0 errno=0
[ 56.664340][ T4991] hfsplus: xattr searching failed
[ 56.686633][ T4991] hfsplus: new node 0 already hashed?
[ 56.692780][ T4991] ------------[ cut here ]------------
[ 56.698297][ T4991] WARNING: CPU: 1 PID: 4991 at fs/hfsplus/bnode.c:573 hfsplus_bnode_create+0x3b1/0x440
[ 56.707994][ T4991] Modules linked in:
[ 56.711881][ T4991] CPU: 1 PID: 4991 Comm: syz-executor425 Not tainted 6.4.0-rc6-syzkaller-00006-gfd37b884003c #0
[ 56.722340][ T4991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[ 56.732612][ T4991] RIP: 0010:hfsplus_bnode_create+0x3b1/0x440
[ 56.738638][ T4991] Code: 8a 44 89 e6 e8 c0 62 4b 08 e9 7c fd ff ff e8 36 74 29 ff 4c 89 ff e8 de 73 57 08 48 c7 c7 80 b8 ff 8a 44 89 e6 e8 9f 62 4b 08 <0f> 0b eb b5 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 89 fc ff ff 48 89
[ 56.758301][ T4991] RSP: 0018:ffffc9000395edd8 EFLAGS: 00010246
[ 56.764366][ T4991] RAX: 0000000000000023 RBX: ffff88802b373900 RCX: 6e92a39f5ac3f400
[ 56.772407][ T4991] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[ 56.780537][ T4991] RBP: 0000000000000000 R08: ffffffff816f00ac R09: fffff5200072bd71
[ 56.788572][ T4991] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
[ 56.796576][ T4991] R13: dffffc0000000000 R14: ffff888079cba000 R15: ffff888079cba0e0
[ 56.804602][ T4991] FS: 000055555750f300(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[ 56.813586][ T4991] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 56.820229][ T4991] CR2: 000055a8482cc880 CR3: 0000000022359000 CR4: 00000000003506e0
[ 56.828311][ T4991] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 56.836278][ T4991] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 56.844289][ T4991] Call Trace:
[ 56.847608][ T4991]
[ 56.850533][ T4991] ? __warn+0x162/0x4a0
[ 56.854680][ T4991] ? hfsplus_bnode_create+0x3b1/0x440
[ 56.860103][ T4991] ? report_bug+0x2b3/0x500
[ 56.864635][ T4991] ? hfsplus_bnode_create+0x3b1/0x440
[ 56.870064][ T4991] ? handle_bug+0x3d/0x70
[ 56.874409][ T4991] ? exc_invalid_op+0x1a/0x50
[ 56.879148][ T4991] ? asm_exc_invalid_op+0x1a/0x20
[ 56.884201][ T4991] ? __wake_up_klogd+0xcc/0x100
[ 56.889108][ T4991] ? hfsplus_bnode_create+0x3b1/0x440
[ 56.894499][ T4991] ? hfsplus_bnode_create+0x3b1/0x440
[ 56.899957][ T4991] hfsplus_bmap_alloc+0x59a/0x640
[ 56.905011][ T4991] ? hfsplus_bmap_reserve+0x4e0/0x4e0
[ 56.910474][ T4991] hfs_btree_inc_height+0x11e/0xdb0
[ 56.915781][ T4991] ? hfsplus_brec_insert+0xdd0/0xdd0
[ 56.921121][ T4991] ? read_lock_is_recursive+0x20/0x20
[ 56.926550][ T4991] ? __mutex_trylock_common+0x182/0x2e0
[ 56.932151][ T4991] ? __might_sleep+0xc0/0xc0
[ 56.936761][ T4991] hfsplus_brec_insert+0x166/0xdd0
[ 56.941933][ T4991] ? rcu_is_watching+0x15/0xb0
[ 56.946730][ T4991] ? trace_contention_end+0x3c/0xf0
[ 56.952017][ T4991] ? hfsplus_brec_find+0x19d/0x570
[ 56.957227][ T4991] ? hfs_find_1st_rec_by_cnid+0x3c0/0x3c0
[ 56.962970][ T4991] ? hfsplus_brec_keylen+0x310/0x310
[ 56.968303][ T4991] ? mutex_lock_io_nested+0x60/0x60
[ 56.973525][ T4991] __hfsplus_ext_write_extent+0x36b/0x5b0
[ 56.979300][ T4991] __hfsplus_ext_cache_extent+0x84/0xe00
[ 56.984949][ T4991] ? mutex_lock_nested+0x1b/0x20
[ 56.990032][ T4991] hfsplus_file_extend+0x439/0x1b10
[ 56.995258][ T4991] ? xas_find+0x973/0xaa0
[ 56.999681][ T4991] ? hfsplus_get_block+0x14e0/0x14e0
[ 57.004990][ T4991] ? find_lock_entries+0x10f0/0x10f0
[ 57.010354][ T4991] ? clean_bdev_aliases+0x7f9/0x920
[ 57.015584][ T4991] hfsplus_get_block+0x406/0x14e0
[ 57.020740][ T4991] ? hfsplus_ext_write_extent+0x1f0/0x1f0
[ 57.026485][ T4991] ? submit_page_section+0x5e2/0x9c0
[ 57.031891][ T4991] ? hfsplus_ext_write_extent+0x1f0/0x1f0
[ 57.037758][ T4991] __blockdev_direct_IO+0x1ada/0x40e0
[ 57.043214][ T4991] ? show_vfsstat+0x570/0x570
[ 57.048221][ T4991] ? hfsplus_ext_write_extent+0x1f0/0x1f0
[ 57.053977][ T4991] ? filemap_write_and_wait_range+0x20a/0x2c0
[ 57.060123][ T4991] hfsplus_direct_IO+0xf8/0x1e0
[ 57.064998][ T4991] generic_file_direct_write+0x208/0x460
[ 57.070694][ T4991] __generic_file_write_iter+0x1c8/0x400
[ 57.076353][ T4991] generic_file_write_iter+0xaf/0x310
[ 57.081778][ T4991] do_iter_write+0x7b1/0xcb0
[ 57.086408][ T4991] ? vfs_iter_write+0xa0/0xa0
[ 57.091156][ T4991] ? rcu_read_lock_any_held+0xb7/0x160
[ 57.096650][ T4991] do_pwritev+0x21a/0x360
[ 57.101042][ T4991] ? do_preadv+0x350/0x350
[ 57.105486][ T4991] ? do_notify_parent+0xf50/0xf50
[ 57.110570][ T4991] ? print_irqtrace_events+0x220/0x220
[ 57.116053][ T4991] ? syscall_enter_from_user_mode+0x32/0x230
[ 57.122214][ T4991] ? __x64_sys_pwritev2+0xbd/0x100
[ 57.127741][ T4991] do_syscall_64+0x41/0xc0
[ 57.132158][ T4991] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 57.138180][ T4991] RIP: 0033:0x7f21ab5e37d9
[ 57.142695][ T4991] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 57.162460][ T4991] RSP: 002b:00007ffd623fd848 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[ 57.170977][ T4991] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f21ab5e37d9
[ 57.179192][ T4991] RDX: 0000000000000001 RSI: 0000000020000680 RDI: 0000000000000004
[ 57.187320][ T4991] RBP: 00007f21ab5a3070 R08: 0000000000000000 R09: 0000000000000000
[ 57.195331][ T4991] R10: 0000000000000600 R11: 0000000000000246 R12: 00007f21ab5a3100
[ 57.203472][ T4991] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 57.211605][ T4991]
[ 57.214624][ T4991] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 57.221910][ T4991] CPU: 1 PID: 4991 Comm: syz-executor425 Not tainted 6.4.0-rc6-syzkaller-00006-gfd37b884003c #0
[ 57.232488][ T4991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[ 57.242622][ T4991] Call Trace:
[ 57.245974][ T4991]
[ 57.248891][ T4991] dump_stack_lvl+0x1e7/0x2d0
[ 57.253560][ T4991] ? nf_tcp_handle_invalid+0x650/0x650
[ 57.259010][ T4991] ? panic+0x770/0x770
[ 57.263075][ T4991] ? vscnprintf+0x5d/0x80
[ 57.267398][ T4991] panic+0x30f/0x770
[ 57.271290][ T4991] ? __warn+0x171/0x4a0
[ 57.275437][ T4991] ? __memcpy_flushcache+0x2b0/0x2b0
[ 57.286565][ T4991] __warn+0x314/0x4a0
[ 57.290573][ T4991] ? hfsplus_bnode_create+0x3b1/0x440
[ 57.295961][ T4991] report_bug+0x2b3/0x500
[ 57.300332][ T4991] ? hfsplus_bnode_create+0x3b1/0x440
[ 57.305710][ T4991] handle_bug+0x3d/0x70
[ 57.309955][ T4991] exc_invalid_op+0x1a/0x50
[ 57.314541][ T4991] asm_exc_invalid_op+0x1a/0x20
[ 57.319489][ T4991] RIP: 0010:hfsplus_bnode_create+0x3b1/0x440
[ 57.325601][ T4991] Code: 8a 44 89 e6 e8 c0 62 4b 08 e9 7c fd ff ff e8 36 74 29 ff 4c 89 ff e8 de 73 57 08 48 c7 c7 80 b8 ff 8a 44 89 e6 e8 9f 62 4b 08 <0f> 0b eb b5 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 89 fc ff ff 48 89
[ 57.345226][ T4991] RSP: 0018:ffffc9000395edd8 EFLAGS: 00010246
[ 57.351298][ T4991] RAX: 0000000000000023 RBX: ffff88802b373900 RCX: 6e92a39f5ac3f400
[ 57.359267][ T4991] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[ 57.367237][ T4991] RBP: 0000000000000000 R08: ffffffff816f00ac R09: fffff5200072bd71
[ 57.375223][ T4991] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
[ 57.383566][ T4991] R13: dffffc0000000000 R14: ffff888079cba000 R15: ffff888079cba0e0
[ 57.392521][ T4991] ? __wake_up_klogd+0xcc/0x100
[ 57.397394][ T4991] ? hfsplus_bnode_create+0x3b1/0x440
[ 57.402867][ T4991] hfsplus_bmap_alloc+0x59a/0x640
[ 57.407995][ T4991] ? hfsplus_bmap_reserve+0x4e0/0x4e0
[ 57.413382][ T4991] hfs_btree_inc_height+0x11e/0xdb0
[ 57.418601][ T4991] ? hfsplus_brec_insert+0xdd0/0xdd0
[ 57.423902][ T4991] ? read_lock_is_recursive+0x20/0x20
[ 57.429292][ T4991] ? __mutex_trylock_common+0x182/0x2e0
[ 57.434847][ T4991] ? __might_sleep+0xc0/0xc0
[ 57.439449][ T4991] hfsplus_brec_insert+0x166/0xdd0
[ 57.444562][ T4991] ? rcu_is_watching+0x15/0xb0
[ 57.449325][ T4991] ? trace_contention_end+0x3c/0xf0
[ 57.454527][ T4991] ? hfsplus_brec_find+0x19d/0x570
[ 57.459761][ T4991] ? hfs_find_1st_rec_by_cnid+0x3c0/0x3c0
[ 57.465506][ T4991] ? hfsplus_brec_keylen+0x310/0x310
[ 57.470799][ T4991] ? mutex_lock_io_nested+0x60/0x60
[ 57.476010][ T4991] __hfsplus_ext_write_extent+0x36b/0x5b0
[ 57.481816][ T4991] __hfsplus_ext_cache_extent+0x84/0xe00
[ 57.487500][ T4991] ? mutex_lock_nested+0x1b/0x20
[ 57.492911][ T4991] hfsplus_file_extend+0x439/0x1b10
[ 57.498125][ T4991] ? xas_find+0x973/0xaa0
[ 57.502499][ T4991] ? hfsplus_get_block+0x14e0/0x14e0
[ 57.507825][ T4991] ? find_lock_entries+0x10f0/0x10f0
[ 57.513224][ T4991] ? clean_bdev_aliases+0x7f9/0x920
[ 57.518431][ T4991] hfsplus_get_block+0x406/0x14e0
[ 57.523503][ T4991] ? hfsplus_ext_write_extent+0x1f0/0x1f0
[ 57.529277][ T4991] ? submit_page_section+0x5e2/0x9c0
[ 57.534659][ T4991] ? hfsplus_ext_write_extent+0x1f0/0x1f0
[ 57.540379][ T4991] __blockdev_direct_IO+0x1ada/0x40e0
[ 57.545786][ T4991] ? show_vfsstat+0x570/0x570
[ 57.550464][ T4991] ? hfsplus_ext_write_extent+0x1f0/0x1f0
[ 57.556220][ T4991] ? filemap_write_and_wait_range+0x20a/0x2c0
[ 57.562298][ T4991] hfsplus_direct_IO+0xf8/0x1e0
[ 57.567179][ T4991] generic_file_direct_write+0x208/0x460
[ 57.572919][ T4991] __generic_file_write_iter+0x1c8/0x400
[ 57.578566][ T4991] generic_file_write_iter+0xaf/0x310
[ 57.583957][ T4991] do_iter_write+0x7b1/0xcb0
[ 57.588566][ T4991] ? vfs_iter_write+0xa0/0xa0
[ 57.593252][ T4991] ? rcu_read_lock_any_held+0xb7/0x160
[ 57.598736][ T4991] do_pwritev+0x21a/0x360
[ 57.603072][ T4991] ? do_preadv+0x350/0x350
[ 57.607502][ T4991] ? do_notify_parent+0xf50/0xf50
[ 57.612626][ T4991] ? print_irqtrace_events+0x220/0x220
[ 57.618096][ T4991] ? syscall_enter_from_user_mode+0x32/0x230
[ 57.624134][ T4991] ? __x64_sys_pwritev2+0xbd/0x100
[ 57.629257][ T4991] do_syscall_64+0x41/0xc0
[ 57.633677][ T4991] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 57.639572][ T4991] RIP: 0033:0x7f21ab5e37d9
[ 57.643991][ T4991] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 57.663768][ T4991] RSP: 002b:00007ffd623fd848 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[ 57.672186][ T4991] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f21ab5e37d9
[ 57.680182][ T4991] RDX: 0000000000000001 RSI: 0000000020000680 RDI: 0000000000000004
[ 57.688191][ T4991] RBP: 00007f21ab5a3070 R08: 0000000000000000 R09: 0000000000000000
[ 57.696235][ T4991] R10: 0000000000000600 R11: 0000000000000246 R12: 00007f21ab5a3100
[ 57.704489][ T4991] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 57.712531][ T4991]
[ 57.715775][ T4991] Kernel Offset: disabled
[ 57.720191][ T4991] Rebooting in 86400 seconds..