Warning: Permanently added '10.128.1.130' (ED25519) to the list of known hosts. 1970/01/01 00:01:21 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:01:22 parsed 1 programs [ 85.222417][ T4429] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 95.284453][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.286639][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.289790][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 95.305151][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.307094][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.310119][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 96.007027][ T4478] chnl_net:caif_netlink_parms(): no params data found [ 96.042517][ T4478] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.045690][ T4478] bridge0: port 1(bridge_slave_0) entered disabled state [ 96.048329][ T4478] device bridge_slave_0 entered promiscuous mode [ 96.051974][ T4478] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.053850][ T4478] bridge0: port 2(bridge_slave_1) entered disabled state [ 96.056405][ T4478] device bridge_slave_1 entered promiscuous mode [ 96.073815][ T4478] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 96.078433][ T4478] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 96.097333][ T4478] team0: Port device team_slave_0 added [ 96.100864][ T4478] team0: Port device team_slave_1 added [ 96.114408][ T4478] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 96.116149][ T4478] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.122369][ T4478] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 96.126435][ T4478] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 96.128112][ T4478] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.134806][ T4478] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 96.195627][ T4478] device hsr_slave_0 entered promiscuous mode [ 96.235123][ T4478] device hsr_slave_1 entered promiscuous mode [ 96.996070][ T4478] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 97.046923][ T4478] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 97.085581][ T4478] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 97.117205][ T4478] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 97.194148][ T4478] 8021q: adding VLAN 0 to HW filter on device bond0 [ 97.201101][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 97.203511][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 97.213364][ T4478] 8021q: adding VLAN 0 to HW filter on device team0 [ 97.220624][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 97.224438][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 97.228112][ T1615] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.229934][ T1615] bridge0: port 1(bridge_slave_0) entered forwarding state [ 97.232659][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 97.249820][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 97.252495][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 97.255719][ T297] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.257567][ T297] bridge0: port 2(bridge_slave_1) entered forwarding state [ 97.264055][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 97.266756][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 97.271806][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 97.277224][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 97.279780][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 97.291080][ T4478] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 97.297936][ T4478] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 97.302649][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 97.306307][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 97.308953][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 97.311542][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 97.316791][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 97.319318][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 97.321754][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 97.424855][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 97.426870][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 97.432297][ T4478] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 97.445881][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 97.448509][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 97.462428][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 97.465931][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 97.470664][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 97.472852][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 97.478266][ T4478] device veth0_vlan entered promiscuous mode [ 97.484569][ T4478] device veth1_vlan entered promiscuous mode [ 97.500063][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 97.502455][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 97.505463][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 97.508259][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 97.513386][ T4478] device veth0_macvtap entered promiscuous mode [ 97.523275][ T4478] device veth1_macvtap entered promiscuous mode [ 97.536433][ T4478] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 97.538378][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 97.540755][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 97.543121][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 97.546476][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 97.551933][ T4478] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 97.554218][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 97.557121][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 97.561795][ T4478] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.567705][ T4478] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.569888][ T4478] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.571935][ T4478] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 1970/01/01 00:01:38 executed programs: 0 [ 98.443763][ T4621] chnl_net:caif_netlink_parms(): no params data found [ 98.480941][ T4621] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.482837][ T4621] bridge0: port 1(bridge_slave_0) entered disabled state [ 98.485711][ T4621] device bridge_slave_0 entered promiscuous mode [ 98.489141][ T4621] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.490970][ T4621] bridge0: port 2(bridge_slave_1) entered disabled state [ 98.493448][ T4621] device bridge_slave_1 entered promiscuous mode [ 98.512699][ T4621] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 98.521735][ T4621] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 98.538318][ T4621] team0: Port device team_slave_0 added [ 98.541978][ T4621] team0: Port device team_slave_1 added [ 98.556607][ T4621] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 98.558253][ T4621] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 98.565168][ T4621] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 98.570406][ T4621] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 98.572227][ T4621] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 98.579610][ T4621] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 98.658000][ T4621] device hsr_slave_0 entered promiscuous mode [ 98.684201][ T4621] device hsr_slave_1 entered promiscuous mode [ 98.705301][ T4621] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 98.707213][ T4621] Cannot create hsr debugfs directory [ 98.781250][ T4621] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 100.353803][ T7] Bluetooth: hci0: command 0x0409 tx timeout [ 101.843935][ T4621] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 102.434289][ T4131] Bluetooth: hci0: command 0x041b tx timeout [ 103.239560][ T4621] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.291864][ T4621] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.468699][ T4621] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 103.551448][ T4621] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 103.575483][ T4621] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 103.617125][ T4621] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 103.722242][ T4621] 8021q: adding VLAN 0 to HW filter on device bond0 [ 103.732423][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 103.735081][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 103.740004][ T4621] 8021q: adding VLAN 0 to HW filter on device team0 [ 103.745183][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 103.747903][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 103.750344][ T1615] bridge0: port 1(bridge_slave_0) entered blocking state [ 103.752436][ T1615] bridge0: port 1(bridge_slave_0) entered forwarding state [ 103.756006][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 103.760216][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 103.762835][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 103.765635][ T1615] bridge0: port 2(bridge_slave_1) entered blocking state [ 103.767511][ T1615] bridge0: port 2(bridge_slave_1) entered forwarding state [ 103.772068][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 103.778871][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 103.785693][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 103.788965][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 103.792911][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 103.797511][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 103.801295][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 103.810091][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 103.812649][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 103.818575][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 103.821271][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 103.825944][ T4621] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 103.904596][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 103.906538][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 103.913037][ T4621] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 103.925896][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 103.928589][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 103.940870][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 103.943515][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 103.947643][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 103.950010][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 103.954733][ T4621] device veth0_vlan entered promiscuous mode [ 103.961440][ T4621] device veth1_vlan entered promiscuous mode [ 103.976540][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 103.978898][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 103.981220][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 103.986262][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 103.990802][ T4621] device veth0_macvtap entered promiscuous mode [ 103.996245][ T4621] device veth1_macvtap entered promiscuous mode [ 104.007314][ T4621] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 104.009850][ T4621] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.013401][ T4621] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 104.015749][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 104.018299][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 104.020702][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 104.023330][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 104.030072][ T4621] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 104.032459][ T4621] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.038569][ T4621] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 104.040788][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 104.043393][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 104.049200][ T4621] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.051358][ T4621] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.053362][ T4621] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.056792][ T4621] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.139225][ T297] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.141090][ T297] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.144622][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 104.155781][ T297] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.157941][ T297] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.160950][ T1615] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:01:44 executed programs: 2 [ 104.207286][ T4855] loop0: detected capacity change from 0 to 1024 [ 104.278066][ T4855] hfsplus: new node 0 already hashed? [ 104.279620][ T4855] ------------[ cut here ]------------ [ 104.280937][ T4855] WARNING: CPU: 0 PID: 4855 at fs/hfsplus/bnode.c:584 hfsplus_bnode_create+0x404/0x4c8 [ 104.283330][ T4855] Modules linked in: [ 104.284288][ T4855] CPU: 0 PID: 4855 Comm: syz.0.16 Not tainted 5.15.180-syzkaller #0 [ 104.286311][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 104.288922][ T4855] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 104.290921][ T4855] pc : hfsplus_bnode_create+0x404/0x4c8 [ 104.292397][ T4855] lr : hfsplus_bnode_create+0x404/0x4c8 [ 104.293749][ T4855] sp : ffff80001fa06db0 [ 104.294817][ T4855] x29: ffff80001fa06dc0 x28: 0000000000000000 x27: 00000000000000f8 [ 104.296968][ T4855] x26: 0000000000000080 x25: dfff800000000000 x24: dfff800000000000 [ 104.299054][ T4855] x23: ffff0000e9ea20f8 x22: 0000000000000000 x21: ffff0000cc204000 [ 104.301220][ T4855] x20: 0000000000000000 x19: ffff0000c1c33c00 x18: 0000000000000001 [ 104.303239][ T4855] x17: 0000000000000000 x16: ffff80001119ef40 x15: 00000000ffffffff [ 104.305315][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 104.307300][ T4855] x11: 0000000000000000 x10: 0000000000000000 x9 : 13e03a4b35640800 [ 104.309338][ T4855] x8 : 13e03a4b35640800 x7 : 0000000000000001 x6 : 0000000000000001 [ 104.311388][ T4855] x5 : ffff80001fa06698 x4 : ffff80001422f280 x3 : ffff80000a730d84 [ 104.313424][ T4855] x2 : ffff0001b42b8d10 x1 : 0000000100000000 x0 : 0000000000000023 [ 104.315471][ T4855] Call trace: [ 104.316316][ T4855] hfsplus_bnode_create+0x404/0x4c8 [ 104.317575][ T4855] hfsplus_bmap_alloc+0x534/0x5f8 [ 104.318890][ T4855] hfs_bnode_split+0xc8/0xbb8 [ 104.320094][ T4855] hfsplus_brec_insert+0x2f4/0xaa8 [ 104.321307][ T4855] hfsplus_create_cat+0x31c/0xdd4 [ 104.322600][ T4855] hfsplus_fill_super+0xf8c/0x16dc [ 104.323934][ T4855] mount_bdev+0x264/0x358 [ 104.324983][ T4855] hfsplus_mount+0x44/0x58 [ 104.326117][ T4855] legacy_get_tree+0xd4/0x16c [ 104.327382][ T4855] vfs_get_tree+0x90/0x274 [ 104.328531][ T4855] do_new_mount+0x228/0x810 [ 104.329701][ T4855] path_mount+0x5b4/0x1000 [ 104.330797][ T4855] __arm64_sys_mount+0x514/0x5e4 [ 104.332038][ T4855] invoke_syscall+0x98/0x2b8 [ 104.333254][ T4855] el0_svc_common+0x138/0x258 [ 104.334404][ T4855] do_el0_svc+0x58/0x14c [ 104.335349][ T4855] el0_svc+0x78/0x1e0 [ 104.336390][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 104.337698][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 104.338877][ T4855] irq event stamp: 4526 [ 104.339943][ T4855] hardirqs last enabled at (4525): [] __up_console_sem+0xb4/0x100 [ 104.342361][ T4855] hardirqs last disabled at (4526): [] el1_dbg+0x24/0x80 [ 104.344605][ T4855] softirqs last enabled at (4498): [] handle_softirqs+0xa4c/0xbf0 [ 104.347171][ T4855] softirqs last disabled at (4439): [] __irq_exit_rcu+0x240/0x440 [ 104.349524][ T4855] ---[ end trace 27db19d546db9fbc ]--- [ 104.355666][ T4855] hfsplus: new node 0 already hashed? [ 104.357050][ T4855] ------------[ cut here ]------------ [ 104.358212][ T4855] WARNING: CPU: 1 PID: 4855 at fs/hfsplus/bnode.c:584 hfsplus_bnode_create+0x404/0x4c8 [ 104.360392][ T4855] Modules linked in: [ 104.361285][ T4855] CPU: 1 PID: 4855 Comm: syz.0.16 Tainted: G W 5.15.180-syzkaller #0 [ 104.363421][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 104.365851][ T4855] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 104.367891][ T4855] pc : hfsplus_bnode_create+0x404/0x4c8 [ 104.369295][ T4855] lr : hfsplus_bnode_create+0x404/0x4c8 [ 104.370712][ T4855] sp : ffff80001fa06e10 [ 104.371744][ T4855] x29: ffff80001fa06e20 x28: 0000000000000000 x27: 0000000000000222 [ 104.373778][ T4855] x26: 0000000000000080 x25: dfff800000000000 x24: dfff800000000000 [ 104.375916][ T4855] x23: ffff0000e9ea2222 x22: 0000000000000000 x21: ffff0000cc204000 [ 104.377973][ T4855] x20: 0000000000000000 x19: ffff0000c1c33c00 x18: 0000000000000001 [ 104.380069][ T4855] x17: 0000000000000000 x16: ffff80001119ef40 x15: 00000000ffffffff [ 104.382083][ T4855] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 104.384233][ T4855] x11: 0000000000000000 x10: 0000000000000000 x9 : 13e03a4b35640800 [ 104.386211][ T4855] x8 : 13e03a4b35640800 x7 : 0000000000000001 x6 : 0000000000000001 [ 104.388338][ T4855] x5 : ffff80001fa066f8 x4 : ffff80001422f280 x3 : ffff80000a730d84 [ 104.390291][ T4855] x2 : ffff0001b42d9d10 x1 : 0000000100000000 x0 : 0000000000000023 [ 104.392299][ T4855] Call trace: [ 104.393040][ T4855] hfsplus_bnode_create+0x404/0x4c8 [ 104.394402][ T4855] hfsplus_bmap_alloc+0x534/0x5f8 [ 104.395716][ T4855] hfs_btree_inc_height+0xf8/0x8e0 [ 104.397024][ T4855] hfsplus_brec_insert+0x5c8/0xaa8 [ 104.398265][ T4855] hfsplus_create_cat+0x31c/0xdd4 [ 104.399627][ T4855] hfsplus_fill_super+0xf8c/0x16dc [ 104.400841][ T4855] mount_bdev+0x264/0x358 [ 104.401922][ T4855] hfsplus_mount+0x44/0x58 [ 104.402987][ T4855] legacy_get_tree+0xd4/0x16c [ 104.404187][ T4855] vfs_get_tree+0x90/0x274 [ 104.405318][ T4855] do_new_mount+0x228/0x810 [ 104.406379][ T4855] path_mount+0x5b4/0x1000 [ 104.407507][ T4855] __arm64_sys_mount+0x514/0x5e4 [ 104.408736][ T4855] invoke_syscall+0x98/0x2b8 [ 104.409883][ T4855] el0_svc_common+0x138/0x258 [ 104.411184][ T4855] do_el0_svc+0x58/0x14c [ 104.412240][ T4855] el0_svc+0x78/0x1e0 [ 104.413302][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 104.414594][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 104.415748][ T4855] irq event stamp: 4810 [ 104.416819][ T4855] hardirqs last enabled at (4809): [] __up_console_sem+0xb4/0x100 [ 104.419194][ T4855] hardirqs last disabled at (4810): [] el1_dbg+0x24/0x80 [ 104.421370][ T4855] softirqs last enabled at (4728): [] handle_softirqs+0xa4c/0xbf0 [ 104.423771][ T4855] softirqs last disabled at (4529): [] __irq_exit_rcu+0x240/0x440 [ 104.426215][ T4855] ---[ end trace 27db19d546db9fbd ]--- [ 104.429325][ T4855] ------------[ cut here ]------------ [ 104.430742][ T4855] kernel BUG at fs/hfsplus/bnode.c:631! [ 104.432278][ T4855] Internal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP [ 104.434268][ T4855] Modules linked in: [ 104.435282][ T4855] CPU: 1 PID: 4855 Comm: syz.0.16 Tainted: G W 5.15.180-syzkaller #0 [ 104.437750][ T4855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 104.440465][ T4855] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 104.442476][ T4855] pc : hfsplus_bnode_put+0x590/0x59c [ 104.443893][ T4855] lr : hfsplus_bnode_put+0x590/0x59c [ 104.445278][ T4855] sp : ffff80001fa06f00 [ 104.446359][ T4855] x29: ffff80001fa06f00 x28: ffff0000c1c2fa00 x27: dfff800000000000 [ 104.448466][ T4855] x26: ffff700003f40df4 x25: ffff80001fa06fa0 x24: ffff0000cc204000 [ 104.450547][ T4855] x23: dfff800000000000 x22: 1fffe00018386780 x21: 0000000000000000 [ 104.452610][ T4855] x20: ffff0000c1c33c80 x19: ffff0000c1c33c00 x18: 0000000000000001 [ 104.454621][ T4855] x17: 0000000000000000 x16: ffff8000082d52a4 x15: 00000000ffffffff [ 104.456665][ T4855] x14: 0000000000000001 x13: 1ffff0000282a06b x12: 0000000000ff0100 [ 104.458721][ T4855] x11: 0000000000000000 x10: 0000000000000000 x9 : ffff800008ebeb38 [ 104.460792][ T4855] x8 : ffff0000da220000 x7 : ffff80000a8f22a4 x6 : 0000000000000000 [ 104.462907][ T4855] x5 : 0000000000000000 x4 : 0000000000000001 x3 : ffff800008ebe604 [ 104.465062][ T4855] x2 : 0000000000000000 x1 : 0000000000000000 x0 : 0000000000000000 [ 104.467264][ T4855] Call trace: [ 104.468099][ T4855] hfsplus_bnode_put+0x590/0x59c [ 104.469479][ T4855] hfs_btree_inc_height+0x48c/0x8e0 [ 104.470814][ T4855] hfsplus_brec_insert+0x5c8/0xaa8 [ 104.472229][ T4855] hfsplus_create_cat+0x31c/0xdd4 [ 104.473511][ T4855] hfsplus_fill_super+0xf8c/0x16dc [ 104.474864][ T4855] mount_bdev+0x264/0x358 [ 104.475950][ T4855] hfsplus_mount+0x44/0x58 [ 104.477143][ T4855] legacy_get_tree+0xd4/0x16c [ 104.478359][ T4855] vfs_get_tree+0x90/0x274 [ 104.479468][ T4855] do_new_mount+0x228/0x810 [ 104.480602][ T4855] path_mount+0x5b4/0x1000 [ 104.481843][ T4855] __arm64_sys_mount+0x514/0x5e4 [ 104.483168][ T4855] invoke_syscall+0x98/0x2b8 [ 104.484453][ T4855] el0_svc_common+0x138/0x258 [ 104.485625][ T4855] do_el0_svc+0x58/0x14c [ 104.486663][ T4855] el0_svc+0x78/0x1e0 [ 104.487715][ T4855] el0t_64_sync_handler+0xcc/0xe4 [ 104.489018][ T4855] el0t_64_sync+0x1a0/0x1a4 [ 104.490216][ T4855] Code: aa1403e0 97e6367f 17ffff74 97d6e94e (d4210000) [ 104.491907][ T4855] ---[ end trace 27db19d546db9fbe ]--- [ 104.513955][ T4125] Bluetooth: hci0: command 0x040f tx timeout [ 104.868637][ T4855] Kernel panic - not syncing: Oops - BUG: Fatal exception [ 104.870505][ T4855] SMP: stopping secondary CPUs [ 104.871826][ T4855] Kernel Offset: disabled [ 104.872900][ T4855] CPU features: 0x8,000081c1,21302e40 [ 104.874293][ T4855] Memory Limit: none [ 105.229211][ T4855] Rebooting in 86400 seconds..