./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor537645870 <...> Warning: Permanently added '10.128.1.108' (ED25519) to the list of known hosts. execve("./syz-executor537645870", ["./syz-executor537645870"], 0x7fff81095a10 /* 10 vars */) = 0 brk(NULL) = 0x555557166000 brk(0x555557166d00) = 0x555557166d00 arch_prctl(ARCH_SET_FS, 0x555557166380) = 0 set_tid_address(0x555557166650) = 5066 set_robust_list(0x555557166660, 24) = 0 rseq(0x555557166ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor537645870", 4096) = 27 getrandom("\xcb\xaa\x7e\xf4\xc3\x9c\x1d\xe1", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555557166d00 brk(0x555557187d00) = 0x555557187d00 brk(0x555557188000) = 0x555557188000 mprotect(0x7f46c0881000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 memfd_create("syzkaller", 0) = 3 mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f46b83d1000 write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 524288) = 524288 munmap(0x7f46b83d1000, 138412032) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ioctl(4, LOOP_SET_FD, 3) = 0 close(3) = 0 mkdir("./bus", 0777) = 0 mount("/dev/loop0", "./bus", "hfsplus", MS_NOEXEC|MS_RELATIME, "") = 0 openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3 chdir("./bus") = 0 ioctl(4, LOOP_CLR_FD) = 0 close(4) = 0 [ 60.080103][ T5066] loop0: detected capacity change from 0 to 1024 [ 60.114725][ T5066] ------------[ cut here ]------------ [ 60.120304][ T5066] kernel BUG at fs/hfsplus/xattr.c:175! [ 60.126083][ T5066] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 60.132167][ T5066] CPU: 0 PID: 5066 Comm: syz-executor537 Not tainted 6.7.0-rc8-syzkaller-00024-gac865f00af29 #0 [ 60.142580][ T5066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 60.152659][ T5066] RIP: 0010:__hfsplus_setxattr+0x2104/0x2200 [ 60.158652][ T5066] Code: ff 4c 8b 54 24 50 4c 8b 44 24 38 e9 28 ea ff ff e8 a1 32 83 ff 4c 8b 54 24 50 4c 8b 44 24 38 e9 f2 e9 ff ff e8 1d 89 2c ff 90 <0f> 0b 48 8b 7c 24 48 e8 80 32 83 ff 4c 8b 54 24 50 4c 8b 44 24 38 [ 60.178246][ T5066] RSP: 0018:ffffc90003a274d8 EFLAGS: 00010293 [ 60.184307][ T5066] RAX: 0000000000000000 RBX: 0000000000010000 RCX: ffffffff825ad2d6 [ 60.192283][ T5066] RDX: ffff888025025940 RSI: ffffffff825ae933 RDI: 0000000000000007 [ 60.200252][ T5066] RBP: ffffed1003dbba07 R08: ffff88801872e000 R09: 0000000000000000 [ 60.208210][ T5066] R10: ffff88801eddd030 R11: ffffffff915eb480 R12: 0000000000000003 [ 60.216165][ T5066] R13: ffff88801eddd000 R14: 1ffff92000744ead R15: ffffc90003a27598 [ 60.224232][ T5066] FS: 0000555557166380(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 60.233152][ T5066] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 60.239728][ T5066] CR2: 000055bef3408c08 CR3: 000000007982f000 CR4: 0000000000350ef0 [ 60.247702][ T5066] Call Trace: [ 60.250980][ T5066] [ 60.253901][ T5066] ? show_regs+0x8f/0xa0 [ 60.258150][ T5066] ? die+0x36/0xa0 [ 60.261864][ T5066] ? do_trap+0x22b/0x420 [ 60.266108][ T5066] ? __hfsplus_setxattr+0x2104/0x2200 [ 60.271476][ T5066] ? __hfsplus_setxattr+0x2104/0x2200 [ 60.276835][ T5066] ? do_error_trap+0xf4/0x230 [ 60.281514][ T5066] ? __hfsplus_setxattr+0x2104/0x2200 [ 60.286893][ T5066] ? handle_invalid_op+0x34/0x40 [ 60.291834][ T5066] ? __hfsplus_setxattr+0x2104/0x2200 [ 60.297195][ T5066] ? exc_invalid_op+0x2e/0x40 [ 60.301886][ T5066] ? asm_exc_invalid_op+0x1a/0x20 [ 60.306899][ T5066] ? __hfsplus_setxattr+0xaa6/0x2200 [ 60.312172][ T5066] ? __hfsplus_setxattr+0x2103/0x2200 [ 60.317542][ T5066] ? __hfsplus_setxattr+0x2104/0x2200 [ 60.322912][ T5066] ? __hfsplus_setxattr+0x2103/0x2200 [ 60.328275][ T5066] ? lock_acquire+0x1ae/0x520 [ 60.332959][ T5066] ? find_held_lock+0x2d/0x110 [ 60.337717][ T5066] ? copy_name+0xa0/0xa0 [ 60.341957][ T5066] ? mark_held_locks+0x9f/0xe0 [ 60.346718][ T5066] ? _raw_spin_unlock_irqrestore+0x4e/0x70 [ 60.352523][ T5066] ? lockdep_hardirqs_on+0x7d/0x110 [ 60.357768][ T5066] hfsplus_setxattr+0x10c/0x160 [ 60.362638][ T5066] ? hfsplus_init_security+0x40/0x40 [ 60.367946][ T5066] __vfs_setxattr+0x173/0x1d0 [ 60.372644][ T5066] ? __vfs_removexattr+0x1c0/0x1c0 [ 60.377763][ T5066] ? apparmor_capable+0x126/0x1e0 [ 60.382800][ T5066] __vfs_setxattr_noperm+0x127/0x5e0 [ 60.388144][ T5066] __vfs_setxattr_locked+0x17e/0x250 [ 60.393467][ T5066] vfs_setxattr+0x146/0x350 [ 60.398003][ T5066] ? save_trace+0x4e/0xb30 [ 60.402522][ T5066] ? __vfs_setxattr_locked+0x250/0x250 [ 60.407998][ T5066] do_setxattr+0x142/0x170 [ 60.412444][ T5066] setxattr+0x159/0x170 [ 60.416654][ T5066] ? do_setxattr+0x170/0x170 [ 60.421285][ T5066] ? mnt_get_write_access+0x20c/0x300 [ 60.426657][ T5066] path_setxattr+0x175/0x1d0 [ 60.431255][ T5066] ? setxattr+0x170/0x170 [ 60.435589][ T5066] ? _raw_spin_unlock_irq+0x23/0x50 [ 60.440794][ T5066] ? _raw_spin_unlock_irq+0x2e/0x50 [ 60.446013][ T5066] ? ptrace_notify+0xf4/0x130 [ 60.450710][ T5066] __x64_sys_lsetxattr+0xc1/0x160 [ 60.455748][ T5066] ? syscall_enter_from_user_mode+0x107/0x120 [ 60.461810][ T5066] do_syscall_64+0x40/0x110 [ 60.466407][ T5066] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 60.472347][ T5066] RIP: 0033:0x7f46c080e5f9 [ 60.476790][ T5066] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 60.496423][ T5066] RSP: 002b:00007ffef2ad5ac8 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd [ 60.504850][ T5066] RAX: ffffffffffffffda RBX: 00007ffef2ad5ca8 RCX: 00007f46c080e5f9 [ 60.512821][ T5066] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 00000000200000c0 [ 60.520784][ T5066] RBP: 00007f46c0881610 R08: 0000000000000003 R09: 0000000000000000 [ 60.528748][ T5066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 60.536720][ T5066] R13: 00007ffef2ad5c98 R14: 0000000000000001 R15: 0000000000000001 [ 60.544690][ T5066] [ 60.547700][ T5066] Modules linked in: [ 60.551879][ T5066] ---[ end trace 0000000000000000 ]--- [ 60.557415][ T5066] RIP: 0010:__hfsplus_setxattr+0x2104/0x2200 [ 60.563484][ T5066] Code: ff 4c 8b 54 24 50 4c 8b 44 24 38 e9 28 ea ff ff e8 a1 32 83 ff 4c 8b 54 24 50 4c 8b 44 24 38 e9 f2 e9 ff ff e8 1d 89 2c ff 90 <0f> 0b 48 8b 7c 24 48 e8 80 32 83 ff 4c 8b 54 24 50 4c 8b 44 24 38 [ 60.583214][ T5066] RSP: 0018:ffffc90003a274d8 EFLAGS: 00010293 [ 60.589302][ T5066] RAX: 0000000000000000 RBX: 0000000000010000 RCX: ffffffff825ad2d6 [ 60.597331][ T5066] RDX: ffff888025025940 RSI: ffffffff825ae933 RDI: 0000000000000007 [ 60.605352][ T5066] RBP: ffffed1003dbba07 R08: ffff88801872e000 R09: 0000000000000000 [ 60.613373][ T5066] R10: ffff88801eddd030 R11: ffffffff915eb480 R12: 0000000000000003 [ 60.621366][ T5066] R13: ffff88801eddd000 R14: 1ffff92000744ead R15: ffffc90003a27598 [ 60.629397][ T5066] FS: 0000555557166380(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 60.638368][ T5066] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 60.644997][ T5066] CR2: 000055bef3408c08 CR3: 000000007982f000 CR4: 0000000000350ef0 [ 60.653013][ T5066] Kernel panic - not syncing: Fatal exception [ 60.659573][ T5066] Kernel Offset: disabled [ 60.663890][ T5066] Rebooting in 86400 seconds..