[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 45.622032] can: request_module (can-proto-0) failed. [ 45.630849] can: request_module (can-proto-0) failed. [ 46.488663] IPVS: ftp: loaded support on port[0] = 21 [ 47.131036] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.200965] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 47.506112] tipc: TX() has been purged, node left! [ 49.056213] bond0 (unregistering): Released all slaves Warning: Permanently added '10.128.10.40' (ECDSA) to the list of known hosts. 2020/02/12 03:44:36 parsed 1 programs 2020/02/12 03:44:36 executed programs: 0 [ 54.245223] IPVS: ftp: loaded support on port[0] = 21 [ 54.251411] IPVS: ftp: loaded support on port[0] = 21 [ 54.271129] IPVS: ftp: loaded support on port[0] = 21 [ 54.283202] IPVS: ftp: loaded support on port[0] = 21 [ 54.290868] IPVS: ftp: loaded support on port[0] = 21 [ 54.299742] IPVS: ftp: loaded support on port[0] = 21 [ 54.363176] hfs: unable to locate alternate MDB [ 54.368023] hfs: continuing without an alternate MDB [ 54.401796] hfs: new node 0 already hashed? [ 54.406475] ------------[ cut here ]------------ [ 54.411259] WARNING: CPU: 1 PID: 4453 at fs/hfs/bnode.c:416 hfs_bnode_create.cold.13+0xe/0x15 [ 54.419921] Kernel panic - not syncing: panic_on_warn set ... [ 54.425983] CPU: 1 PID: 4453 Comm: syz-executor Not tainted 5.6.0-rc1-syzkaller #0 [ 54.433373] hfs: unable to locate alternate MDB [ 54.433681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 54.438440] hfs: continuing without an alternate MDB [ 54.447716] Call Trace: [ 54.447737] dump_stack+0x12f/0x187 [ 54.447748] ? hfs_bnode_create.cold.13+0xe/0x15 [ 54.447753] panic+0x22a/0x4f5 [ 54.447758] ? add_taint.cold.7+0x11/0x11 [ 54.447777] __warn.cold.10+0x25/0x28 [ 54.447784] ? hfs_bnode_create.cold.13+0xe/0x15 [ 54.447790] report_bug+0x1b0/0x270 [ 54.447801] do_error_trap+0x11b/0x200 [ 54.447810] do_invalid_op+0x36/0x40 [ 54.447813] ? hfs_bnode_create.cold.13+0xe/0x15 [ 54.447824] invalid_op+0x23/0x30 [ 54.474725] hfs: unable to locate alternate MDB [ 54.475093] RIP: 0010:hfs_bnode_create.cold.13+0xe/0x15 [ 54.475101] Code: db e8 ea ad 58 ff e9 5e e0 ff ff 48 c7 c7 20 b1 3a 87 e8 d9 ad 58 ff e9 8f f6 ff ff 89 de 48 c7 c7 60 b1 3a 87 e8 c6 ad 58 ff <0f> 0b e9 c8 fe ff ff 48 b8 00 00 00 00 00 fc ff df 55 48 89 e5 41 [ 54.475104] RSP: 0018:ffff8881c4d77880 EFLAGS: 00010282 [ 54.475109] RAX: 000000000000001f RBX: 0000000000000000 RCX: ffffffff82dbc05e [ 54.475112] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8881db129fac [ 54.475115] RBP: ffff8881c4d778c8 R08: ffffed103b626669 R09: ffffed103b626669 [ 54.475118] R10: ffffed103b626668 R11: ffff8881db133347 R12: ffff8881c4f360d0 [ 54.475121] R13: dffffc0000000000 R14: ffff8881d53c0f00 R15: ffff8881d53c0f00 [ 54.475138] ? llist_add_batch+0x5e/0xa0 [ 54.480023] hfs: continuing without an alternate MDB [ 54.483619] hfs_bmap_alloc+0x423/0x5d0 [ 54.483634] ? hfs_bmap_reserve+0x3b0/0x3b0 [ 54.483646] ? memcpy+0x45/0x50 [ 54.515304] hfs: new node 0 already hashed? [ 54.528451] ? hfs_bnode_read+0xb9/0xe0 [ 54.528472] hfs_bnode_split+0xbd/0xe20 [ 54.528483] ? memcpy+0x45/0x50 [ 54.528490] ? hfs_bnode_read+0xb9/0xe0 [ 54.528497] ? hfs_bnode_create.cold.13+0x15/0x15 [ 54.528501] ? hfs_bnode_read_u16+0x62/0x90 [ 54.528506] ? hfs_bnode_read+0xe0/0xe0 [ 54.528512] ? hfs_find_exit+0xc0/0xc0 [ 54.528522] hfs_brec_insert+0x2f0/0xbb0 [ 54.528541] ? hfs_brec_keylen+0x330/0x330 [ 54.534785] ------------[ cut here ]------------ [ 54.541976] hfs_cat_create+0x698/0x880 [ 54.549236] WARNING: CPU: 0 PID: 4460 at fs/hfs/bnode.c:416 hfs_bnode_create.cold.13+0xe/0x15 [ 54.556509] ? hfs_cat_build_key+0x180/0x180 [ 54.563764] Modules linked in: [ 54.571091] ? hfs_new_inode+0x4b0/0xd20 [ 54.575116] CPU: 0 PID: 4460 Comm: syz-executor1 Not tainted 5.6.0-rc1-syzkaller #0 [ 54.580216] hfs_mkdir+0x57/0xc0 [ 54.584168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 54.588484] vfs_mkdir+0x384/0x600 [ 54.592129] RIP: 0010:hfs_bnode_create.cold.13+0xe/0x15 [ 54.596448] do_mkdirat+0x1b7/0x210 [ 54.600400] Code: db e8 ea ad 58 ff e9 5e e0 ff ff 48 c7 c7 20 b1 3a 87 e8 d9 ad 58 ff e9 8f f6 ff ff 89 de 48 c7 c7 60 b1 3a 87 e8 c6 ad 58 ff <0f> 0b e9 c8 fe ff ff 48 b8 00 00 00 00 00 fc ff df 55 48 89 e5 41 [ 54.604369] ? __ia32_sys_mknod+0xb0/0xb0 [ 54.607652] RSP: 0018:ffff8881bb29f880 EFLAGS: 00010282 [ 54.611628] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 54.616454] RAX: 000000000000001f RBX: 0000000000000000 RCX: 0000000000000006 [ 54.616459] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000282 [ 54.620802] ? lockdep_hardirqs_on+0x42d/0x5d0 [ 54.624777] RBP: ffff8881bb29f8c8 R08: 0000000000000006 R09: fffffbfff135472c [ 54.624782] R10: fffffbfff135472b R11: ffffffff89aa395f R12: ffff8881b863c0d0 [ 54.628754] __x64_sys_mkdir+0x57/0x80 [ 54.632795] R13: dffffc0000000000 R14: ffff8881d17c7900 R15: ffff8881d17c7900 [ 54.632801] FS: 00007fe628eff700(0000) GS:ffff8881db000000(0000) knlGS:0000000000000000 [ 54.637030] do_syscall_64+0xd0/0x600 [ 54.641868] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 54.641873] CR2: 000000000072c051 CR3: 00000001c1113000 CR4: 00000000001406f0 [ 54.645852] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 54.654497] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 54.658909] RIP: 0033:0x455429 [ 54.662086] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 54.666142] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 54.673933] Call Trace: [ 54.677292] RSP: 002b:00007f7a9f4b5c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 54.686942] hfs_bmap_alloc+0x423/0x5d0 [ 54.690480] RAX: ffffffffffffffda RBX: 00007f7a9f4b66d4 RCX: 0000000000455429 [ 54.690486] RDX: 0000000000000000 RSI: 0000000000000021 RDI: 0000000020000180 [ 54.695852] ? hfs_bmap_reserve+0x3b0/0x3b0 [ 54.699456] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 54.699461] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 54.718375] ? memcpy+0x45/0x50 [ 54.722604] R13: 00000000000003ea R14: 00000000006f8e90 R15: 0000000000000000 [ 54.903309] ? hfs_bnode_read+0xb9/0xe0 [ 54.907281] hfs_bnode_split+0xbd/0xe20 [ 54.911262] ? memcpy+0x45/0x50 [ 54.914541] ? hfs_bnode_read+0xb9/0xe0 [ 54.918524] ? hfs_bnode_create.cold.13+0x15/0x15 [ 54.923363] ? hfs_bnode_read_u16+0x62/0x90 [ 54.927685] ? hfs_bnode_read+0xe0/0xe0 [ 54.931675] ? hfs_find_exit+0xc0/0xc0 [ 54.935573] hfs_brec_insert+0x2f0/0xbb0 [ 54.939639] ? hfs_brec_keylen+0x330/0x330 [ 54.943868] hfs_cat_create+0x698/0x880 [ 54.947835] ? hfs_cat_build_key+0x180/0x180 [ 54.952246] ? hfs_new_inode+0x4b0/0xd20 [ 54.956311] hfs_mkdir+0x57/0xc0 [ 54.959683] vfs_mkdir+0x384/0x600 [ 54.963217] do_mkdirat+0x1b7/0x210 [ 54.966845] ? __ia32_sys_mknod+0xb0/0xb0 [ 54.971003] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 54.976364] ? lockdep_hardirqs_on+0x42d/0x5d0 [ 54.980951] __x64_sys_mkdir+0x57/0x80 [ 54.984840] do_syscall_64+0xd0/0x600 [ 54.988644] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 54.993831] RIP: 0033:0x455429 [ 54.997016] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 55.015923] RSP: 002b:00007fe628efec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 55.023629] RAX: ffffffffffffffda RBX: 00007fe628eff6d4 RCX: 0000000000455429 [ 55.030896] RDX: 0000000000000000 RSI: 0000000000000021 RDI: 0000000020000180 [ 55.038164] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 55.045434] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 55.052700] R13: 00000000000003ea R14: 00000000006f8e90 R15: 0000000000000000 [ 55.061151] irq event stamp: 1134 [ 55.064627] hardirqs last enabled at (1133): [] trace_hardirqs_on_thunk+0x1a/0x1c [ 55.073900] hardirqs last disabled at (1134): [] trace_hardirqs_off_thunk+0x1a/0x1c [ 55.083257] softirqs last enabled at (1132): [] __do_softirq+0x68b/0x94c [ 55.091807] softirqs last disabled at (1121): [] irq_exit+0x1bb/0x1e0 [ 55.099948] ---[ end trace bbe9506a3e4309c2 ]--- [ 55.105462] Kernel Offset: disabled [ 55.109190] Rebooting in 86400 seconds..