el0_svc+0x54/0x158 arch/arm64/kernel/entry-common.c:678 el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:696 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:595 hfs: new node 0 already hashed? ------------[ cut here ]------------ WARNING: CPU: 1 PID: 6088 at fs/hfs/bnode.c:422 hfs_bnode_create+0x428/0x4dc fs/hfs/bnode.c:421 Modules linked in: CPU: 1 PID: 6088 Comm: syz-executor120 Not tainted 6.6.0-rc7-syzkaller-g8de1e7afcc1c #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : hfs_bnode_create+0x428/0x4dc fs/hfs/bnode.c:421 lr : hfs_bnode_create+0x428/0x4dc fs/hfs/bnode.c:421 sp : ffff800096c26ef0 x29: ffff800096c26f00 x28: dfff800000000000 x27: dfff800000000000 x26: 000000000000016c x25: ffff0000cbb72888 x24: 0000000000000000 x23: 0000000000000000 x22: ffff0000db9c00e0 x21: ffff0000db9c0000 x20: 0000000000000000 x19: ffff0000cbb72800 x18: ffff800096c26b20 x17: 0000000000000000 x16: ffff80008a71b23c x15: 0000000000000001 x14: 1ffff00012d84d34 x13: 0000000000000000 x12: 0000000000000000 x11: 0000000000000000 x10: 0000000000000000 x9 : 2af996ba27dc5c00 x8 : 2af996ba27dc5c00 x7 : ffff80008a7f12f4 x6 : 0000000000000000 x5 : 0000000000000001 x4 : 0000000000000001 x3 : ffff800082b180c4 x2 : 0000000000000001 x1 : 0000000100000000 x0 : 000000000000001f Call trace: hfs_bnode_create+0x428/0x4dc fs/hfs/bnode.c:421 hfs_bmap_alloc+0x59c/0x664 fs/hfs/btree.c:291 hfs_btree_inc_height+0xf8/0x9d0 fs/hfs/brec.c:471 hfs_brec_insert+0x580/0x97c fs/hfs/brec.c:148 __hfs_ext_write_extent+0x240/0x468 fs/hfs/extent.c:124 hfs_ext_write_extent+0x148/0x1c0 fs/hfs/extent.c:144 hfs_write_inode+0xc0/0xc1c fs/hfs/inode.c:431 write_inode fs/fs-writeback.c:1456 [inline] __writeback_single_inode+0x5a8/0x146c fs/fs-writeback.c:1673 writeback_single_inode+0x1c0/0x64c fs/fs-writeback.c:1729 write_inode_now+0x198/0x230 fs/fs-writeback.c:2771 hfs_file_fsync+0xac/0x148 fs/hfs/inode.c:678 vfs_fsync_range+0x168/0x188 fs/sync.c:188 generic_write_sync include/linux/fs.h:2584 [inline] generic_file_write_iter+0x228/0x2b4 mm/filemap.c:4094 do_iter_write+0x65c/0xaa8 fs/read_write.c:860 vfs_writev fs/read_write.c:933 [inline] do_pwritev+0x1ec/0x334 fs/read_write.c:1030 __do_sys_pwritev2 fs/read_write.c:1089 [inline] __se_sys_pwritev2 fs/read_write.c:1080 [inline] __arm64_sys_pwritev2+0xd4/0x108 fs/read_write.c:1080 __invoke_syscall arch/arm64/kernel/syscall.c:37 [inline] invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:51 el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:136 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:155 el0_svc+0x54/0x158 arch/arm64/kernel/entry-common.c:678 el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:696 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:595 irq event stamp: 2942 hardirqs last enabled at (2941): [] raw_spin_rq_unlock_irq+0x14/0x24 kernel/sched/sched.h:1384 hardirqs last disabled at (2942): [] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:436 softirqs last enabled at (2888): [] softirq_handle_end kernel/softirq.c:399 [inline] softirqs last enabled at (2888): [] __do_softirq+0xac0/0xd54 kernel/softirq.c:582 softirqs last disabled at (2877): [] ____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:80 ---[ end trace 0000000000000000 ]--- ------------[ cut here ]------------ kernel BUG at fs/hfs/bnode.c:467! Internal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP Modules linked in: CPU: 1 PID: 6088 Comm: syz-executor120 Tainted: G W 6.6.0-rc7-syzkaller-g8de1e7afcc1c #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : hfs_bnode_put+0x318/0x324 fs/hfs/bnode.c:467 lr : hfs_bnode_put+0x318/0x324 fs/hfs/bnode.c:467 sp : ffff800096c27010 x29: ffff800096c27010 x28: dfff800000000000 x27: ffff700012d84e18 x26: 1fffe0001b738003 x25: 0000000000000200 x24: 1fffe0001976e500 x23: dfff800000000000 x22: ffff0000db9c0000 x21: ffff0000cbb72880 x20: 0000000000000000 x19: ffff0000cbb72800 x18: ffff800096c26b20 x17: 0000000000000000 x16: ffff80008a71b360 x15: 0000000000000001 x14: 1fffe0001976e510 x13: 0000000000000000 x12: 0000000000000000 x11: 0000000000000000 x10: 0000000000000000 x9 : 0000000000000000 x8 : ffff0000d2a2d340 x7 : ffff800080a2a998 x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff800081104060 x2 : 0000000000000000 x1 : 0000000000000000 x0 : 0000000000000000 Call trace: hfs_bnode_put+0x318/0x324 fs/hfs/bnode.c:467 hfs_btree_inc_height+0x4c0/0x9d0 fs/hfs/brec.c:525 hfs_brec_insert+0x580/0x97c fs/hfs/brec.c:148 __hfs_ext_write_extent+0x240/0x468 fs/hfs/extent.c:124 hfs_ext_write_extent+0x148/0x1c0 fs/hfs/extent.c:144 hfs_write_inode+0xc0/0xc1c fs/hfs/inode.c:431 write_inode fs/fs-writeback.c:1456 [inline] __writeback_single_inode+0x5a8/0x146c fs/fs-writeback.c:1673 writeback_single_inode+0x1c0/0x64c fs/fs-writeback.c:1729 write_inode_now+0x198/0x230 fs/fs-writeback.c:2771 hfs_file_fsync+0xac/0x148 fs/hfs/inode.c:678 vfs_fsync_range+0x168/0x188 fs/sync.c:188 generic_write_sync include/linux/fs.h:2584 [inline] generic_file_write_iter+0x228/0x2b4 mm/filemap.c:4094 do_iter_write+0x65c/0xaa8 fs/read_write.c:860 vfs_writev fs/read_write.c:933 [inline] do_pwritev+0x1ec/0x334 fs/read_write.c:1030 __do_sys_pwritev2 fs/read_write.c:1089 [inline] __se_sys_pwritev2 fs/read_write.c:1080 [inline] __arm64_sys_pwritev2+0xd4/0x108 fs/read_write.c:1080 __invoke_syscall arch/arm64/kernel/syscall.c:37 [inline] invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:51 el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:136 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:155 el0_svc+0x54/0x158 arch/arm64/kernel/entry-common.c:678 el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:696 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:595 Code: aa1503e0 97e30456 17ffffd5 97d04673 (d4210000) ---[ end trace 0000000000000000 ]---