hfsplus: new node 0 already hashed? ------------[ cut here ]------------ WARNING: CPU: 1 PID: 6683 at fs/hfsplus/bnode.c:671 hfsplus_bnode_create+0x384/0x430 fs/hfsplus/bnode.c:670 Modules linked in: CPU: 1 UID: 0 PID: 6683 Comm: syz.3.4 Not tainted syzkaller #0 PREEMPT Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) pc : hfsplus_bnode_create+0x384/0x430 fs/hfsplus/bnode.c:670 lr : hfsplus_bnode_create+0x384/0x430 fs/hfsplus/bnode.c:670 sp : ffff8000a5606bd0 x29: ffff8000a5606be0 x28: 1ffff00014ac0d88 x27: dfff800000000000 x26: 0000000000000000 x25: 0000000000000080 x24: 0000000000000000 x23: ffff0000e53ab0c4 x22: 0000000000000000 x21: 0000000000000000 x20: ffff0000d5b3c000 x19: ffff0000cb34fb00 x18: 00000000ffffffff x17: ffff800093605000 x16: ffff80008b065bd0 x15: 0000000000000001 x14: 1ffff00014ac0cf0 x13: 0000000000000000 x12: 0000000000000000 x11: 0000000000080000 x10: 000000000000c2ed x9 : 26b5ff7217770f00 x8 : 26b5ff7217770f00 x7 : ffff80008056636c x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807d446c x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000023 Call trace: hfsplus_bnode_create+0x384/0x430 fs/hfsplus/bnode.c:670 (P) hfsplus_bmap_alloc+0x43c/0x4cc fs/hfsplus/btree.c:415 hfs_btree_inc_height+0xf8/0x8e0 fs/hfsplus/brec.c:475 hfsplus_brec_insert+0x108/0xaa8 fs/hfsplus/brec.c:75 __hfsplus_ext_write_extent+0x278/0x4cc fs/hfsplus/extents.c:107 __hfsplus_ext_cache_extent+0x84/0xa88 fs/hfsplus/extents.c:186 hfsplus_ext_read_extent fs/hfsplus/extents.c:218 [inline] hfsplus_file_extend+0x37c/0x1388 fs/hfsplus/extents.c:459 hfsplus_get_block+0x314/0x1154 fs/hfsplus/extents.c:245 __block_write_begin_int+0x53c/0x15e8 fs/buffer.c:2145 block_write_begin fs/buffer.c:2256 [inline] cont_write_begin+0x62c/0x968 fs/buffer.c:2594 hfsplus_write_begin+0x7c/0xc4 fs/hfsplus/inode.c:48 generic_perform_write+0x244/0x7bc mm/filemap.c:4175 __generic_file_write_iter+0xfc/0x204 mm/filemap.c:4292 generic_file_write_iter+0x10c/0x47c mm/filemap.c:4318 new_sync_write fs/read_write.c:593 [inline] vfs_write+0x540/0xa3c fs/read_write.c:686 ksys_write+0x120/0x210 fs/read_write.c:738 __do_sys_write fs/read_write.c:749 [inline] __se_sys_write fs/read_write.c:746 [inline] __arm64_sys_write+0x7c/0x90 fs/read_write.c:746 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x98/0x254 arch/arm64/kernel/syscall.c:49 el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151 el0_svc+0x5c/0x254 arch/arm64/kernel/entry-common.c:744 el0t_64_sync_handler+0x84/0x12c arch/arm64/kernel/entry-common.c:763 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:596 irq event stamp: 356 hardirqs last enabled at (355): [] irqentry_exit+0xd8/0x108 kernel/entry/common.c:214 hardirqs last disabled at (356): [] el1_brk64+0x20/0x54 arch/arm64/kernel/entry-common.c:434 softirqs last enabled at (346): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (346): [] handle_softirqs+0xaf8/0xc88 kernel/softirq.c:607 softirqs last disabled at (327): [] __do_softirq+0x14/0x20 kernel/softirq.c:613 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ kernel BUG at fs/hfsplus/bnode.c:716! Internal error: Oops - BUG: 00000000f2000800 [#1] SMP Modules linked in: CPU: 1 UID: 0 PID: 6683 Comm: syz.3.4 Tainted: G W syzkaller #0 PREEMPT Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 pstate: 83400005 (Nzcv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) pc : hfsplus_bnode_put+0x490/0x49c fs/hfsplus/bnode.c:716 lr : hfsplus_bnode_put+0x490/0x49c fs/hfsplus/bnode.c:716 sp : ffff8000a5606ca0 x29: ffff8000a5606ca0 x28: 0000000000000000 x27: dfff800000000000 x26: ffff700014ac0da8 x25: ffff8000a5606d40 x24: 1fffe00019669f60 x23: ffff0000d5b3c000 x22: dfff800000000000 x21: 0000000000000000 x20: ffff0000cb34fb80 x19: ffff0000cb34fb00 x18: 00000000ffffffff x17: ffff800093605000 x16: ffff8000805381bc x15: 0000000000000001 x14: 1fffe00019669f70 x13: 0000000000000000 x12: 0000000000000000 x11: 0000000000080000 x10: 0000000000026a6e x9 : ffff8000aca5a000 x8 : 0000000000026a6f x7 : ffff800080e54634 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000000001 x3 : ffff8000812d92ac x2 : 0000000000000000 x1 : 0000000000000000 x0 : 0000000000000000 Call trace: hfsplus_bnode_put+0x490/0x49c fs/hfsplus/bnode.c:716 (P) hfs_btree_inc_height+0x48c/0x8e0 fs/hfsplus/brec.c:530 hfsplus_brec_insert+0x108/0xaa8 fs/hfsplus/brec.c:75 __hfsplus_ext_write_extent+0x278/0x4cc fs/hfsplus/extents.c:107 __hfsplus_ext_cache_extent+0x84/0xa88 fs/hfsplus/extents.c:186 hfsplus_ext_read_extent fs/hfsplus/extents.c:218 [inline] hfsplus_file_extend+0x37c/0x1388 fs/hfsplus/extents.c:459 hfsplus_get_block+0x314/0x1154 fs/hfsplus/extents.c:245 __block_write_begin_int+0x53c/0x15e8 fs/buffer.c:2145 block_write_begin fs/buffer.c:2256 [inline] cont_write_begin+0x62c/0x968 fs/buffer.c:2594 hfsplus_write_begin+0x7c/0xc4 fs/hfsplus/inode.c:48 generic_perform_write+0x244/0x7bc mm/filemap.c:4175 __generic_file_write_iter+0xfc/0x204 mm/filemap.c:4292 generic_file_write_iter+0x10c/0x47c mm/filemap.c:4318 new_sync_write fs/read_write.c:593 [inline] vfs_write+0x540/0xa3c fs/read_write.c:686 ksys_write+0x120/0x210 fs/read_write.c:738 __do_sys_write fs/read_write.c:749 [inline] __se_sys_write fs/read_write.c:746 [inline] __arm64_sys_write+0x7c/0x90 fs/read_write.c:746 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x98/0x254 arch/arm64/kernel/syscall.c:49 el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151 el0_svc+0x5c/0x254 arch/arm64/kernel/entry-common.c:744 el0t_64_sync_handler+0x84/0x12c arch/arm64/kernel/entry-common.c:763 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:596 Code: aa1403e0 97e62db3 17ffffb4 97d17205 (d4210000) ---[ end trace 0000000000000000 ]---