Warning: Permanently added '10.128.1.168' (ED25519) to the list of known hosts. 2024/07/20 06:51:52 ignoring optional flag "sandboxArg"="0" 2024/07/20 06:51:52 parsed 1 programs 2024/07/20 06:51:55 executed programs: 0 [ 137.519041][ T5395] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 137.615761][ T5102] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 137.627492][ T5102] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 137.636405][ T5102] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 137.647007][ T5102] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 137.655719][ T5102] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 137.664102][ T5102] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 137.938573][ T5400] chnl_net:caif_netlink_parms(): no params data found [ 138.069298][ T5400] bridge0: port 1(bridge_slave_0) entered blocking state [ 138.076608][ T5400] bridge0: port 1(bridge_slave_0) entered disabled state [ 138.084798][ T5400] bridge_slave_0: entered allmulticast mode [ 138.093930][ T5400] bridge_slave_0: entered promiscuous mode [ 138.104448][ T5400] bridge0: port 2(bridge_slave_1) entered blocking state [ 138.111755][ T5400] bridge0: port 2(bridge_slave_1) entered disabled state [ 138.119014][ T5400] bridge_slave_1: entered allmulticast mode [ 138.127245][ T5400] bridge_slave_1: entered promiscuous mode [ 138.182346][ T5400] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 138.196428][ T5400] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 138.254310][ T5400] team0: Port device team_slave_0 added [ 138.266429][ T5400] team0: Port device team_slave_1 added [ 138.314400][ T5400] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 138.321432][ T5400] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 138.347417][ T5400] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 138.362200][ T5400] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 138.369154][ T5400] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 138.395242][ T5400] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 138.473046][ T5400] hsr_slave_0: entered promiscuous mode [ 138.480140][ T5400] hsr_slave_1: entered promiscuous mode [ 139.510297][ T5400] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 139.531063][ T5400] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 139.547406][ T5400] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 139.563881][ T5400] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 139.732398][ T5102] Bluetooth: hci0: command tx timeout [ 139.780813][ T5400] 8021q: adding VLAN 0 to HW filter on device bond0 [ 139.826093][ T5400] 8021q: adding VLAN 0 to HW filter on device team0 [ 139.848987][ T5114] bridge0: port 1(bridge_slave_0) entered blocking state [ 139.856381][ T5114] bridge0: port 1(bridge_slave_0) entered forwarding state [ 139.898120][ T5114] bridge0: port 2(bridge_slave_1) entered blocking state [ 139.905427][ T5114] bridge0: port 2(bridge_slave_1) entered forwarding state [ 140.330510][ T5400] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 140.441256][ T5400] veth0_vlan: entered promiscuous mode [ 140.472396][ T5400] veth1_vlan: entered promiscuous mode [ 140.548944][ T5400] veth0_macvtap: entered promiscuous mode [ 140.569363][ T5400] veth1_macvtap: entered promiscuous mode [ 140.615643][ T5400] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 140.646871][ T5400] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 140.665671][ T5400] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 140.679069][ T5400] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 140.688990][ T5400] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 140.703967][ T5400] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 140.918107][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 140.945796][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 141.011037][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 141.027293][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 141.200272][ T5468] loop0: detected capacity change from 0 to 1024 [ 141.268763][ T29] audit: type=1800 audit(1721458319.176:2): pid=5468 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=0 res=0 errno=0 [ 141.323270][ T11] ================================================================== [ 141.331452][ T11] BUG: KASAN: wild-memory-access in hfsplus_bnode_read+0x100/0x240 [ 141.339400][ T11] Read of size 1 at addr 0005088000000fff by task kworker/u8:0/11 [ 141.347227][ T11] [ 141.349561][ T11] CPU: 0 PID: 11 Comm: kworker/u8:0 Not tainted 6.10.0-syzkaller-10729-g3c3ff7be9729 #0 [ 141.359403][ T11] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 141.369507][ T11] Workqueue: writeback wb_workfn (flush-7:0) [ 141.375561][ T11] Call Trace: [ 141.378858][ T11] [ 141.381816][ T11] dump_stack_lvl+0x116/0x1f0 [ 141.386554][ T11] kasan_report+0xd9/0x110 [ 141.391028][ T11] ? hfsplus_bnode_read+0x100/0x240 [ 141.396268][ T11] ? hfsplus_bnode_read+0x100/0x240 [ 141.401512][ T11] kasan_check_range+0xef/0x1a0 [ 141.406402][ T11] __asan_memcpy+0x23/0x60 [ 141.410871][ T11] hfsplus_bnode_read+0x100/0x240 [ 141.415937][ T11] hfsplus_bnode_find+0x860/0xcb0 [ 141.421007][ T11] ? __pfx_hfsplus_bnode_find+0x10/0x10 [ 141.426591][ T11] ? __pfx_lock_release+0x10/0x10 [ 141.431663][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 141.437339][ T11] ? do_raw_spin_lock+0x12d/0x2c0 [ 141.442396][ T11] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 141.447802][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 141.453486][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 141.459166][ T11] hfsplus_btree_write+0x1e/0x490 [ 141.464227][ T11] hfsplus_write_inode+0x306/0x4f0 [ 141.469391][ T11] __writeback_single_inode+0xb39/0xf90 [ 141.474995][ T11] ? __pfx___writeback_single_inode+0x10/0x10 [ 141.481113][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 141.486794][ T11] ? _raw_spin_unlock+0x28/0x50 [ 141.491688][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 141.497366][ T11] ? wbc_attach_and_unlock_inode+0x597/0x940 [ 141.503399][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 141.509080][ T11] writeback_sb_inodes+0x611/0x1150 [ 141.514346][ T11] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 141.520118][ T11] ? find_held_lock+0x2d/0x110 [ 141.524947][ T11] ? do_raw_spin_lock+0x12d/0x2c0 [ 141.530004][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 141.535683][ T11] ? rcu_is_watching+0x12/0xc0 [ 141.540498][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 141.546174][ T11] ? queue_io+0x3f8/0x520 [ 141.550553][ T11] wb_writeback+0x199/0xb50 [ 141.555113][ T11] ? __pfx_wb_writeback+0x10/0x10 [ 141.560192][ T11] ? __pfx_lock_release+0x10/0x10 [ 141.565268][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 141.570946][ T11] ? mark_held_locks+0x9f/0xe0 [ 141.575765][ T11] wb_workfn+0x28d/0xf40 [ 141.580078][ T11] ? __pfx_wb_workfn+0x10/0x10 [ 141.584894][ T11] ? __pfx_lock_acquire+0x10/0x10 [ 141.589972][ T11] ? __pfx_lock_release+0x10/0x10 [ 141.595055][ T11] process_one_work+0x9c8/0x1b40 [ 141.600057][ T11] ? __pfx_lock_acquire+0x10/0x10 [ 141.605131][ T11] ? __pfx_process_one_work+0x10/0x10 [ 141.610555][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 141.616238][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 141.621914][ T11] ? assign_work+0x1a0/0x250 [ 141.626553][ T11] worker_thread+0x6c8/0xf20 [ 141.631225][ T11] ? __pfx_worker_thread+0x10/0x10 [ 141.636391][ T11] kthread+0x2c4/0x3a0 [ 141.640496][ T11] ? _raw_spin_unlock_irq+0x23/0x50 [ 141.645735][ T11] ? __pfx_kthread+0x10/0x10 [ 141.650448][ T11] ret_from_fork+0x48/0x80 [ 141.654916][ T11] ? __pfx_kthread+0x10/0x10 [ 141.659549][ T11] ret_from_fork_asm+0x1a/0x30 [ 141.664373][ T11] [ 141.667406][ T11] ================================================================== [ 141.710208][ T11] Disabling lock debugging due to kernel taint [ 141.716418][ T11] hfsplus: b-tree write err: -5, ino 3 [ 141.796392][ T5479] loop0: detected capacity change from 0 to 1024 [ 141.811667][ T5102] Bluetooth: hci0: command tx timeout [ 141.840391][ T29] audit: type=1800 audit(1721458319.746:3): pid=5479 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=0 res=0 errno=0 [ 141.873352][ T1030] ================================================================== [ 141.881439][ T1030] BUG: KASAN: wild-memory-access in hfsplus_bnode_read+0x100/0x240 [ 141.889373][ T1030] Read of size 1 at addr 0005088000000fff by task kworker/u8:5/1030 [ 141.897375][ T1030] [ 141.899708][ T1030] CPU: 0 PID: 1030 Comm: kworker/u8:5 Tainted: G B 6.10.0-syzkaller-10729-g3c3ff7be9729 #0 [ 141.911111][ T1030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 141.921190][ T1030] Workqueue: writeback wb_workfn (flush-7:0) [ 141.927242][ T1030] Call Trace: [ 141.930532][ T1030] [ 141.933477][ T1030] dump_stack_lvl+0x116/0x1f0 [ 141.938214][ T1030] kasan_report+0xd9/0x110 [ 141.942686][ T1030] ? hfsplus_bnode_read+0x100/0x240 [ 141.947913][ T1030] ? hfsplus_bnode_read+0x100/0x240 [ 141.953143][ T1030] kasan_check_range+0xef/0x1a0 [ 141.958023][ T1030] __asan_memcpy+0x23/0x60 [ 141.962475][ T1030] hfsplus_bnode_read+0x100/0x240 [ 141.967528][ T1030] hfsplus_bnode_find+0x860/0xcb0 [ 141.972579][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 141.978240][ T1030] ? rcu_is_watching+0x12/0xc0 [ 141.983046][ T1030] ? lock_release+0x4f6/0x6f0 [ 141.987757][ T1030] ? __pfx_hfsplus_bnode_find+0x10/0x10 [ 141.993328][ T1030] ? __pfx_lock_release+0x10/0x10 [ 141.998385][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.004047][ T1030] ? do_raw_spin_lock+0x12d/0x2c0 [ 142.009088][ T1030] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 142.014478][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.020140][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.025892][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.031558][ T1030] hfsplus_btree_write+0x1e/0x490 [ 142.036778][ T1030] hfsplus_write_inode+0x306/0x4f0 [ 142.041936][ T1030] __writeback_single_inode+0xb39/0xf90 [ 142.047525][ T1030] ? __pfx___writeback_single_inode+0x10/0x10 [ 142.053647][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.059330][ T1030] ? _raw_spin_unlock+0x28/0x50 [ 142.064215][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.069888][ T1030] ? wbc_attach_and_unlock_inode+0x597/0x940 [ 142.075950][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.081622][ T1030] writeback_sb_inodes+0x611/0x1150 [ 142.086887][ T1030] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 142.092561][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.098224][ T1030] ? rcu_is_watching+0x12/0xc0 [ 142.103060][ T1030] ? do_raw_spin_lock+0x12d/0x2c0 [ 142.108119][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.113786][ T1030] ? rcu_is_watching+0x12/0xc0 [ 142.118598][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.124260][ T1030] ? queue_io+0x3f8/0x520 [ 142.128624][ T1030] wb_writeback+0x199/0xb50 [ 142.133175][ T1030] ? __pfx_wb_writeback+0x10/0x10 [ 142.138238][ T1030] ? __pfx_lock_release+0x10/0x10 [ 142.143305][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.149063][ T1030] ? rcu_is_watching+0x12/0xc0 [ 142.153866][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.159537][ T1030] wb_workfn+0x28d/0xf40 [ 142.163827][ T1030] ? rcu_is_watching+0x12/0xc0 [ 142.168635][ T1030] ? __pfx_wb_workfn+0x10/0x10 [ 142.173438][ T1030] ? __pfx_lock_acquire+0x10/0x10 [ 142.178499][ T1030] ? __pfx_lock_release+0x10/0x10 [ 142.183565][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.189261][ T1030] ? rcu_is_watching+0x12/0xc0 [ 142.194067][ T1030] process_one_work+0x9c8/0x1b40 [ 142.199060][ T1030] ? __pfx_cfg80211_wiphy_work+0x10/0x10 [ 142.204733][ T1030] ? __pfx_process_one_work+0x10/0x10 [ 142.210149][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.215819][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.221487][ T1030] ? assign_work+0x1a0/0x250 [ 142.226113][ T1030] worker_thread+0x6c8/0xf20 [ 142.230751][ T1030] ? __pfx_worker_thread+0x10/0x10 [ 142.235901][ T1030] kthread+0x2c4/0x3a0 [ 142.239997][ T1030] ? _raw_spin_unlock_irq+0x23/0x50 [ 142.245219][ T1030] ? __pfx_kthread+0x10/0x10 [ 142.249832][ T1030] ret_from_fork+0x48/0x80 [ 142.254295][ T1030] ? __pfx_kthread+0x10/0x10 [ 142.258996][ T1030] ret_from_fork_asm+0x1a/0x30 [ 142.263897][ T1030] [ 142.266920][ T1030] ================================================================== [ 142.306352][ T1030] hfsplus: b-tree write err: -5, ino 3 [ 142.456880][ T5488] loop0: detected capacity change from 0 to 1024 [ 142.505728][ T29] audit: type=1800 audit(1721458320.416:4): pid=5488 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=0 res=0 errno=0 [ 142.543246][ T12] ================================================================== [ 142.551331][ T12] BUG: KASAN: wild-memory-access in hfsplus_bnode_read+0x100/0x240 [ 142.559263][ T12] Read of size 1 at addr 0005088000000fff by task kworker/u8:1/12 [ 142.567090][ T12] [ 142.569429][ T12] CPU: 0 PID: 12 Comm: kworker/u8:1 Tainted: G B 6.10.0-syzkaller-10729-g3c3ff7be9729 #0 [ 142.580651][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 142.590739][ T12] Workqueue: writeback wb_workfn (flush-7:0) [ 142.596783][ T12] Call Trace: [ 142.600068][ T12] [ 142.603009][ T12] dump_stack_lvl+0x116/0x1f0 [ 142.607805][ T12] kasan_report+0xd9/0x110 [ 142.612264][ T12] ? hfsplus_bnode_read+0x100/0x240 [ 142.617518][ T12] ? hfsplus_bnode_read+0x100/0x240 [ 142.622745][ T12] kasan_check_range+0xef/0x1a0 [ 142.627621][ T12] __asan_memcpy+0x23/0x60 [ 142.632070][ T12] hfsplus_bnode_read+0x100/0x240 [ 142.637123][ T12] hfsplus_bnode_find+0x860/0xcb0 [ 142.642172][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.647962][ T12] ? rcu_is_watching+0x12/0xc0 [ 142.652766][ T12] ? lock_release+0x4f6/0x6f0 [ 142.657479][ T12] ? __pfx_hfsplus_bnode_find+0x10/0x10 [ 142.663049][ T12] ? __pfx_lock_release+0x10/0x10 [ 142.668118][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.673784][ T12] ? do_raw_spin_lock+0x12d/0x2c0 [ 142.678826][ T12] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 142.684215][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.689881][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.695545][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.701213][ T12] hfsplus_btree_write+0x1e/0x490 [ 142.706268][ T12] hfsplus_write_inode+0x306/0x4f0 [ 142.711416][ T12] __writeback_single_inode+0xb39/0xf90 [ 142.717005][ T12] ? __pfx___writeback_single_inode+0x10/0x10 [ 142.723115][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.728802][ T12] ? _raw_spin_unlock+0x28/0x50 [ 142.733677][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.739344][ T12] ? wbc_attach_and_unlock_inode+0x597/0x940 [ 142.745363][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.751119][ T12] writeback_sb_inodes+0x611/0x1150 [ 142.756372][ T12] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 142.762045][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.767709][ T12] ? rcu_is_watching+0x12/0xc0 [ 142.772546][ T12] ? do_raw_spin_lock+0x12d/0x2c0 [ 142.777597][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.783294][ T12] ? rcu_is_watching+0x12/0xc0 [ 142.788099][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.793761][ T12] ? queue_io+0x3f8/0x520 [ 142.798129][ T12] wb_writeback+0x199/0xb50 [ 142.802681][ T12] ? __pfx_wb_writeback+0x10/0x10 [ 142.807754][ T12] ? __pfx_lock_release+0x10/0x10 [ 142.812819][ T12] ? debug_object_deactivate+0x1f0/0x370 [ 142.818472][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.824138][ T12] ? rcu_is_watching+0x12/0xc0 [ 142.829026][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.834790][ T12] wb_workfn+0x28d/0xf40 [ 142.839078][ T12] ? rcu_is_watching+0x12/0xc0 [ 142.843894][ T12] ? __pfx_wb_workfn+0x10/0x10 [ 142.848696][ T12] ? __pfx_lock_acquire+0x10/0x10 [ 142.853759][ T12] ? __pfx_lock_release+0x10/0x10 [ 142.858821][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.864571][ T12] ? rcu_is_watching+0x12/0xc0 [ 142.869376][ T12] process_one_work+0x9c8/0x1b40 [ 142.874364][ T12] ? __pfx_lock_acquire+0x10/0x10 [ 142.879422][ T12] ? __pfx_process_one_work+0x10/0x10 [ 142.884834][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.890503][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 142.896166][ T12] ? assign_work+0x1a0/0x250 [ 142.900790][ T12] worker_thread+0x6c8/0xf20 [ 142.905432][ T12] ? __pfx_worker_thread+0x10/0x10 [ 142.910585][ T12] kthread+0x2c4/0x3a0 [ 142.914677][ T12] ? _raw_spin_unlock_irq+0x23/0x50 [ 142.919902][ T12] ? __pfx_kthread+0x10/0x10 [ 142.924516][ T12] ret_from_fork+0x48/0x80 [ 142.928971][ T12] ? __pfx_kthread+0x10/0x10 [ 142.933583][ T12] ret_from_fork_asm+0x1a/0x30 [ 142.938397][ T12] [ 142.941420][ T12] ================================================================== [ 142.954031][ T1243] ieee802154 phy0 wpan0: encryption failed: -22 [ 142.960389][ T1243] ieee802154 phy1 wpan1: encryption failed: -22 [ 142.973014][ T12] hfsplus: b-tree write err: -5, ino 3 2024/07/20 06:52:01 executed programs: 4 [ 143.094168][ T5494] loop0: detected capacity change from 0 to 1024 [ 143.116588][ T29] audit: type=1800 audit(1721458321.026:5): pid=5494 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=0 res=0 errno=0 [ 143.138144][ T1030] ================================================================== [ 143.146223][ T1030] BUG: KASAN: wild-memory-access in hfsplus_bnode_read+0x100/0x240 [ 143.154154][ T1030] Read of size 1 at addr 0005088000000fff by task kworker/u8:5/1030 [ 143.162153][ T1030] [ 143.164490][ T1030] CPU: 0 PID: 1030 Comm: kworker/u8:5 Tainted: G B 6.10.0-syzkaller-10729-g3c3ff7be9729 #0 [ 143.175978][ T1030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 143.186053][ T1030] Workqueue: writeback wb_workfn (flush-7:0) [ 143.192118][ T1030] Call Trace: [ 143.195414][ T1030] [ 143.198361][ T1030] dump_stack_lvl+0x116/0x1f0 [ 143.203084][ T1030] kasan_report+0xd9/0x110 [ 143.207562][ T1030] ? hfsplus_bnode_read+0x100/0x240 [ 143.212795][ T1030] ? hfsplus_bnode_read+0x100/0x240 [ 143.218037][ T1030] kasan_check_range+0xef/0x1a0 [ 143.222932][ T1030] __asan_memcpy+0x23/0x60 [ 143.227395][ T1030] hfsplus_bnode_read+0x100/0x240 [ 143.232457][ T1030] hfsplus_bnode_find+0x860/0xcb0 [ 143.237515][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.243181][ T1030] ? rcu_is_watching+0x12/0xc0 [ 143.247984][ T1030] ? lock_release+0x4f6/0x6f0 [ 143.252694][ T1030] ? __pfx_hfsplus_bnode_find+0x10/0x10 [ 143.258263][ T1030] ? __pfx_lock_release+0x10/0x10 [ 143.263322][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.268988][ T1030] ? do_raw_spin_lock+0x12d/0x2c0 [ 143.274028][ T1030] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 143.279504][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.285171][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.290840][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.296563][ T1030] hfsplus_btree_write+0x1e/0x490 [ 143.301611][ T1030] hfsplus_write_inode+0x306/0x4f0 [ 143.306760][ T1030] __writeback_single_inode+0xb39/0xf90 [ 143.312433][ T1030] ? __pfx___writeback_single_inode+0x10/0x10 [ 143.318536][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.324198][ T1030] ? _raw_spin_unlock+0x28/0x50 [ 143.329101][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.334789][ T1030] ? wbc_attach_and_unlock_inode+0x597/0x940 [ 143.340807][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.346478][ T1030] writeback_sb_inodes+0x611/0x1150 [ 143.351819][ T1030] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 143.357496][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.363161][ T1030] ? rcu_is_watching+0x12/0xc0 [ 143.367998][ T1030] ? do_raw_spin_lock+0x12d/0x2c0 [ 143.373049][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.378718][ T1030] ? rcu_is_watching+0x12/0xc0 [ 143.383522][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.389185][ T1030] ? queue_io+0x3f8/0x520 [ 143.393554][ T1030] wb_writeback+0x199/0xb50 [ 143.398110][ T1030] ? __pfx_wb_writeback+0x10/0x10 [ 143.403173][ T1030] ? __pfx_lock_release+0x10/0x10 [ 143.408331][ T1030] ? debug_object_deactivate+0x1f0/0x370 [ 143.414014][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.419693][ T1030] ? rcu_is_watching+0x12/0xc0 [ 143.424503][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.430179][ T1030] wb_workfn+0x28d/0xf40 [ 143.434471][ T1030] ? rcu_is_watching+0x12/0xc0 [ 143.439278][ T1030] ? __pfx_wb_workfn+0x10/0x10 [ 143.444082][ T1030] ? __pfx_lock_acquire+0x10/0x10 [ 143.449144][ T1030] ? __pfx_lock_release+0x10/0x10 [ 143.454211][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.459874][ T1030] ? rcu_is_watching+0x12/0xc0 [ 143.464680][ T1030] process_one_work+0x9c8/0x1b40 [ 143.469668][ T1030] ? __pfx_lock_acquire+0x10/0x10 [ 143.474733][ T1030] ? __pfx_process_one_work+0x10/0x10 [ 143.480153][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.485828][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.491501][ T1030] ? assign_work+0x1a0/0x250 [ 143.496144][ T1030] worker_thread+0x6c8/0xf20 [ 143.500787][ T1030] ? __pfx_worker_thread+0x10/0x10 [ 143.505946][ T1030] kthread+0x2c4/0x3a0 [ 143.510044][ T1030] ? _raw_spin_unlock_irq+0x23/0x50 [ 143.515281][ T1030] ? __pfx_kthread+0x10/0x10 [ 143.519898][ T1030] ret_from_fork+0x48/0x80 [ 143.524358][ T1030] ? __pfx_kthread+0x10/0x10 [ 143.528971][ T1030] ret_from_fork_asm+0x1a/0x30 [ 143.533785][ T1030] [ 143.536808][ T1030] ================================================================== [ 143.577422][ T1030] hfsplus: b-tree write err: -5, ino 3 [ 143.670161][ T5500] loop0: detected capacity change from 0 to 1024 [ 143.716778][ T29] audit: type=1800 audit(1721458321.626:6): pid=5500 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=0 res=0 errno=0 [ 143.738642][ T12] ================================================================== [ 143.746718][ T12] BUG: KASAN: wild-memory-access in hfsplus_bnode_read+0x100/0x240 [ 143.754647][ T12] Read of size 1 at addr 0005088000000fff by task kworker/u8:1/12 [ 143.762471][ T12] [ 143.764806][ T12] CPU: 1 PID: 12 Comm: kworker/u8:1 Tainted: G B 6.10.0-syzkaller-10729-g3c3ff7be9729 #0 [ 143.776036][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 143.786117][ T12] Workqueue: writeback wb_workfn (flush-7:0) [ 143.792170][ T12] Call Trace: [ 143.795464][ T12] [ 143.798413][ T12] dump_stack_lvl+0x116/0x1f0 [ 143.803181][ T12] kasan_report+0xd9/0x110 [ 143.807656][ T12] ? hfsplus_bnode_read+0x100/0x240 [ 143.812891][ T12] ? hfsplus_bnode_read+0x100/0x240 [ 143.818130][ T12] kasan_check_range+0xef/0x1a0 [ 143.823022][ T12] __asan_memcpy+0x23/0x60 [ 143.827499][ T12] hfsplus_bnode_read+0x100/0x240 [ 143.832562][ T12] hfsplus_bnode_find+0x860/0xcb0 [ 143.837626][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.843308][ T12] ? rcu_is_watching+0x12/0xc0 [ 143.848215][ T12] ? lock_release+0x4f6/0x6f0 [ 143.852940][ T12] ? __pfx_hfsplus_bnode_find+0x10/0x10 [ 143.858520][ T12] ? __pfx_lock_release+0x10/0x10 [ 143.863593][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.869270][ T12] ? do_raw_spin_lock+0x12d/0x2c0 [ 143.874329][ T12] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 143.879733][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.885414][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.891098][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.896782][ T12] hfsplus_btree_write+0x1e/0x490 [ 143.901844][ T12] hfsplus_write_inode+0x306/0x4f0 [ 143.907009][ T12] __writeback_single_inode+0xb39/0xf90 [ 143.912618][ T12] ? __pfx___writeback_single_inode+0x10/0x10 [ 143.918738][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.924428][ T12] ? _raw_spin_unlock+0x28/0x50 [ 143.929325][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.935090][ T12] ? wbc_attach_and_unlock_inode+0x597/0x940 [ 143.941154][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.946887][ T12] writeback_sb_inodes+0x611/0x1150 [ 143.952195][ T12] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 143.957886][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.963569][ T12] ? rcu_is_watching+0x12/0xc0 [ 143.968419][ T12] ? do_raw_spin_lock+0x12d/0x2c0 [ 143.973482][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.979163][ T12] ? rcu_is_watching+0x12/0xc0 [ 143.983988][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 143.989671][ T12] ? queue_io+0x3f8/0x520 [ 143.994050][ T12] wb_writeback+0x199/0xb50 [ 143.998616][ T12] ? __pfx_wb_writeback+0x10/0x10 [ 144.003692][ T12] ? __pfx_lock_release+0x10/0x10 [ 144.008768][ T12] ? debug_object_deactivate+0x1f0/0x370 [ 144.014442][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.020125][ T12] ? rcu_is_watching+0x12/0xc0 [ 144.024947][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.030719][ T12] wb_workfn+0x28d/0xf40 [ 144.035042][ T12] ? rcu_is_watching+0x12/0xc0 [ 144.039872][ T12] ? __pfx_wb_workfn+0x10/0x10 [ 144.044695][ T12] ? __pfx_lock_acquire+0x10/0x10 [ 144.049777][ T12] ? __pfx_lock_release+0x10/0x10 [ 144.054863][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.060541][ T12] ? rcu_is_watching+0x12/0xc0 [ 144.065366][ T12] process_one_work+0x9c8/0x1b40 [ 144.070372][ T12] ? __pfx_lock_acquire+0x10/0x10 [ 144.075444][ T12] ? __pfx_process_one_work+0x10/0x10 [ 144.080869][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.086556][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.092236][ T12] ? assign_work+0x1a0/0x250 [ 144.096888][ T12] worker_thread+0x6c8/0xf20 [ 144.101549][ T12] ? __pfx_worker_thread+0x10/0x10 [ 144.106714][ T12] kthread+0x2c4/0x3a0 [ 144.110830][ T12] ? _raw_spin_unlock_irq+0x23/0x50 [ 144.116071][ T12] ? __pfx_kthread+0x10/0x10 [ 144.120713][ T12] ret_from_fork+0x48/0x80 [ 144.125191][ T12] ? __pfx_kthread+0x10/0x10 [ 144.129821][ T12] ret_from_fork_asm+0x1a/0x30 [ 144.134654][ T12] [ 144.137685][ T12] ================================================================== [ 144.149851][ T5102] Bluetooth: hci0: command tx timeout [ 144.157536][ T12] hfsplus: b-tree write err: -5, ino 3 [ 144.243481][ T5517] loop0: detected capacity change from 0 to 1024 [ 144.274576][ T29] audit: type=1800 audit(1721458322.186:7): pid=5517 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=0 res=0 errno=0 [ 144.307400][ T1030] ================================================================== [ 144.315651][ T1030] BUG: KASAN: wild-memory-access in hfsplus_bnode_read+0x100/0x240 [ 144.323580][ T1030] Read of size 1 at addr 0005088000000fff by task kworker/u8:5/1030 [ 144.331580][ T1030] [ 144.333914][ T1030] CPU: 1 PID: 1030 Comm: kworker/u8:5 Tainted: G B 6.10.0-syzkaller-10729-g3c3ff7be9729 #0 [ 144.345308][ T1030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 144.355381][ T1030] Workqueue: writeback wb_workfn (flush-7:0) [ 144.361438][ T1030] Call Trace: [ 144.364726][ T1030] [ 144.367665][ T1030] dump_stack_lvl+0x116/0x1f0 [ 144.372406][ T1030] kasan_report+0xd9/0x110 [ 144.376869][ T1030] ? hfsplus_bnode_read+0x100/0x240 [ 144.382099][ T1030] ? hfsplus_bnode_read+0x100/0x240 [ 144.387327][ T1030] kasan_check_range+0xef/0x1a0 [ 144.392226][ T1030] __asan_memcpy+0x23/0x60 [ 144.396674][ T1030] hfsplus_bnode_read+0x100/0x240 [ 144.401727][ T1030] hfsplus_bnode_find+0x860/0xcb0 [ 144.406781][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.412447][ T1030] ? rcu_is_watching+0x12/0xc0 [ 144.417250][ T1030] ? lock_release+0x4f6/0x6f0 [ 144.421964][ T1030] ? __pfx_hfsplus_bnode_find+0x10/0x10 [ 144.427532][ T1030] ? __pfx_lock_release+0x10/0x10 [ 144.432595][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.438260][ T1030] ? do_raw_spin_lock+0x12d/0x2c0 [ 144.443304][ T1030] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 144.448711][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.454374][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.460038][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.465709][ T1030] hfsplus_btree_write+0x1e/0x490 [ 144.470758][ T1030] hfsplus_write_inode+0x306/0x4f0 [ 144.475909][ T1030] __writeback_single_inode+0xb39/0xf90 [ 144.481586][ T1030] ? __pfx___writeback_single_inode+0x10/0x10 [ 144.487868][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.493529][ T1030] ? _raw_spin_unlock+0x28/0x50 [ 144.498405][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.504070][ T1030] ? wbc_attach_and_unlock_inode+0x597/0x940 [ 144.510100][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.515767][ T1030] writeback_sb_inodes+0x611/0x1150 [ 144.521019][ T1030] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 144.526702][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.532368][ T1030] ? rcu_is_watching+0x12/0xc0 [ 144.537195][ T1030] ? do_raw_spin_lock+0x12d/0x2c0 [ 144.542411][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.548073][ T1030] ? rcu_is_watching+0x12/0xc0 [ 144.552882][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.558547][ T1030] ? queue_io+0x3f8/0x520 [ 144.562916][ T1030] wb_writeback+0x199/0xb50 [ 144.567467][ T1030] ? __pfx_wb_writeback+0x10/0x10 [ 144.572614][ T1030] ? __pfx_lock_release+0x10/0x10 [ 144.577683][ T1030] ? debug_object_deactivate+0x1f0/0x370 [ 144.583374][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.589039][ T1030] ? rcu_is_watching+0x12/0xc0 [ 144.593850][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.599601][ T1030] wb_workfn+0x28d/0xf40 [ 144.603889][ T1030] ? rcu_is_watching+0x12/0xc0 [ 144.608693][ T1030] ? __pfx_wb_workfn+0x10/0x10 [ 144.613498][ T1030] ? __pfx_lock_acquire+0x10/0x10 [ 144.618561][ T1030] ? __pfx_lock_release+0x10/0x10 [ 144.623628][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.629295][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.634956][ T1030] ? rcu_is_watching+0x12/0xc0 [ 144.639765][ T1030] process_one_work+0x9c8/0x1b40 [ 144.644753][ T1030] ? __pfx_cfg80211_wiphy_work+0x10/0x10 [ 144.650445][ T1030] ? __pfx_process_one_work+0x10/0x10 [ 144.655860][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.661530][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.667195][ T1030] ? assign_work+0x1a0/0x250 [ 144.671823][ T1030] worker_thread+0x6c8/0xf20 [ 144.676466][ T1030] ? __pfx_worker_thread+0x10/0x10 [ 144.681621][ T1030] kthread+0x2c4/0x3a0 [ 144.685718][ T1030] ? _raw_spin_unlock_irq+0x23/0x50 [ 144.691208][ T1030] ? __pfx_kthread+0x10/0x10 [ 144.695823][ T1030] ret_from_fork+0x48/0x80 [ 144.700282][ T1030] ? __pfx_kthread+0x10/0x10 [ 144.704897][ T1030] ret_from_fork_asm+0x1a/0x30 [ 144.709714][ T1030] [ 144.712737][ T1030] ================================================================== [ 144.739729][ T1030] hfsplus: b-tree write err: -5, ino 3 [ 144.820399][ T5522] loop0: detected capacity change from 0 to 1024 [ 144.845704][ T29] audit: type=1800 audit(1721458322.756:8): pid=5522 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=0 res=0 errno=0 [ 144.867078][ T1030] ================================================================== [ 144.875166][ T1030] BUG: KASAN: wild-memory-access in hfsplus_bnode_read+0x100/0x240 [ 144.883100][ T1030] Read of size 1 at addr 0005088000000fff by task kworker/u8:5/1030 [ 144.891140][ T1030] [ 144.893479][ T1030] CPU: 1 PID: 1030 Comm: kworker/u8:5 Tainted: G B 6.10.0-syzkaller-10729-g3c3ff7be9729 #0 [ 144.904887][ T1030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 144.914966][ T1030] Workqueue: writeback wb_workfn (flush-7:0) [ 144.921019][ T1030] Call Trace: [ 144.924312][ T1030] [ 144.927257][ T1030] dump_stack_lvl+0x116/0x1f0 [ 144.931978][ T1030] kasan_report+0xd9/0x110 [ 144.936465][ T1030] ? hfsplus_bnode_read+0x100/0x240 [ 144.941701][ T1030] ? hfsplus_bnode_read+0x100/0x240 [ 144.946939][ T1030] kasan_check_range+0xef/0x1a0 [ 144.951826][ T1030] __asan_memcpy+0x23/0x60 [ 144.956294][ T1030] hfsplus_bnode_read+0x100/0x240 [ 144.961358][ T1030] hfsplus_bnode_find+0x860/0xcb0 [ 144.966421][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.972098][ T1030] ? rcu_is_watching+0x12/0xc0 [ 144.976916][ T1030] ? lock_release+0x4f6/0x6f0 [ 144.981639][ T1030] ? __pfx_hfsplus_bnode_find+0x10/0x10 [ 144.987225][ T1030] ? __pfx_lock_release+0x10/0x10 [ 144.992307][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 144.997984][ T1030] ? do_raw_spin_lock+0x12d/0x2c0 [ 145.003040][ T1030] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 145.008444][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.014123][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.019803][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.025491][ T1030] hfsplus_btree_write+0x1e/0x490 [ 145.030553][ T1030] hfsplus_write_inode+0x306/0x4f0 [ 145.035718][ T1030] __writeback_single_inode+0xb39/0xf90 [ 145.041418][ T1030] ? __pfx___writeback_single_inode+0x10/0x10 [ 145.047542][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.053222][ T1030] ? _raw_spin_unlock+0x28/0x50 [ 145.058126][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.063804][ T1030] ? wbc_attach_and_unlock_inode+0x597/0x940 [ 145.069853][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.075536][ T1030] writeback_sb_inodes+0x611/0x1150 [ 145.080806][ T1030] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 145.086499][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.092181][ T1030] ? rcu_is_watching+0x12/0xc0 [ 145.097027][ T1030] ? do_raw_spin_lock+0x12d/0x2c0 [ 145.102085][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.107765][ T1030] ? rcu_is_watching+0x12/0xc0 [ 145.112586][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.118262][ T1030] ? queue_io+0x3f8/0x520 [ 145.122732][ T1030] wb_writeback+0x199/0xb50 [ 145.127293][ T1030] ? __pfx_wb_writeback+0x10/0x10 [ 145.132369][ T1030] ? __pfx_lock_release+0x10/0x10 [ 145.137448][ T1030] ? debug_object_deactivate+0x1f0/0x370 [ 145.143121][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.148797][ T1030] ? rcu_is_watching+0x12/0xc0 [ 145.153621][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.159300][ T1030] wb_workfn+0x28d/0xf40 [ 145.163606][ T1030] ? rcu_is_watching+0x12/0xc0 [ 145.168422][ T1030] ? __pfx_wb_workfn+0x10/0x10 [ 145.173237][ T1030] ? __pfx_lock_acquire+0x10/0x10 [ 145.178310][ T1030] ? __pfx_lock_release+0x10/0x10 [ 145.183411][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.189087][ T1030] ? rcu_is_watching+0x12/0xc0 [ 145.193907][ T1030] process_one_work+0x9c8/0x1b40 [ 145.198914][ T1030] ? __pfx_lock_acquire+0x10/0x10 [ 145.203988][ T1030] ? __pfx_process_one_work+0x10/0x10 [ 145.209416][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.215097][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.220781][ T1030] ? assign_work+0x1a0/0x250 [ 145.225427][ T1030] worker_thread+0x6c8/0xf20 [ 145.230085][ T1030] ? __pfx_worker_thread+0x10/0x10 [ 145.235249][ T1030] kthread+0x2c4/0x3a0 [ 145.239352][ T1030] ? _raw_spin_unlock_irq+0x23/0x50 [ 145.244594][ T1030] ? __pfx_kthread+0x10/0x10 [ 145.249224][ T1030] ret_from_fork+0x48/0x80 [ 145.253694][ T1030] ? __pfx_kthread+0x10/0x10 [ 145.258319][ T1030] ret_from_fork_asm+0x1a/0x30 [ 145.263149][ T1030] [ 145.266180][ T1030] ================================================================== [ 145.291654][ T1030] hfsplus: b-tree write err: -5, ino 3 [ 145.373546][ T5537] loop0: detected capacity change from 0 to 1024 [ 145.401952][ T29] audit: type=1800 audit(1721458323.306:9): pid=5537 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=0 res=0 errno=0 [ 145.433418][ T12] ================================================================== [ 145.441501][ T12] BUG: KASAN: wild-memory-access in hfsplus_bnode_read+0x100/0x240 [ 145.449605][ T12] Read of size 1 at addr 0005088000000fff by task kworker/u8:1/12 [ 145.457435][ T12] [ 145.459769][ T12] CPU: 1 PID: 12 Comm: kworker/u8:1 Tainted: G B 6.10.0-syzkaller-10729-g3c3ff7be9729 #0 [ 145.470995][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 145.481158][ T12] Workqueue: writeback wb_workfn (flush-7:0) [ 145.487215][ T12] Call Trace: [ 145.490507][ T12] [ 145.493451][ T12] dump_stack_lvl+0x116/0x1f0 [ 145.498174][ T12] kasan_report+0xd9/0x110 [ 145.502651][ T12] ? hfsplus_bnode_read+0x100/0x240 [ 145.507903][ T12] ? hfsplus_bnode_read+0x100/0x240 [ 145.513158][ T12] kasan_check_range+0xef/0x1a0 [ 145.518056][ T12] __asan_memcpy+0x23/0x60 [ 145.522533][ T12] hfsplus_bnode_read+0x100/0x240 [ 145.527603][ T12] hfsplus_bnode_find+0x860/0xcb0 [ 145.532675][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.538357][ T12] ? rcu_is_watching+0x12/0xc0 [ 145.543182][ T12] ? lock_release+0x4f6/0x6f0 [ 145.547912][ T12] ? __pfx_hfsplus_bnode_find+0x10/0x10 [ 145.553497][ T12] ? __pfx_lock_release+0x10/0x10 [ 145.558574][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.564257][ T12] ? do_raw_spin_lock+0x12d/0x2c0 [ 145.569315][ T12] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 145.574726][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.580442][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.586127][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.591813][ T12] hfsplus_btree_write+0x1e/0x490 [ 145.596878][ T12] hfsplus_write_inode+0x306/0x4f0 [ 145.602046][ T12] __writeback_single_inode+0xb39/0xf90 [ 145.607656][ T12] ? __pfx___writeback_single_inode+0x10/0x10 [ 145.613779][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.619458][ T12] ? _raw_spin_unlock+0x28/0x50 [ 145.624353][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.630032][ T12] ? wbc_attach_and_unlock_inode+0x597/0x940 [ 145.636075][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.641758][ T12] writeback_sb_inodes+0x611/0x1150 [ 145.647029][ T12] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 145.652725][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.658410][ T12] ? rcu_is_watching+0x12/0xc0 [ 145.663262][ T12] ? do_raw_spin_lock+0x12d/0x2c0 [ 145.668324][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.674002][ T12] ? rcu_is_watching+0x12/0xc0 [ 145.678835][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.684516][ T12] ? queue_io+0x3f8/0x520 [ 145.688899][ T12] wb_writeback+0x199/0xb50 [ 145.693465][ T12] ? __pfx_wb_writeback+0x10/0x10 [ 145.698542][ T12] ? __pfx_lock_release+0x10/0x10 [ 145.703625][ T12] ? __pfx_lock_release+0x10/0x10 [ 145.708706][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.714390][ T12] ? rcu_is_watching+0x12/0xc0 [ 145.719215][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.724907][ T12] wb_workfn+0x28d/0xf40 [ 145.729313][ T12] ? rcu_is_watching+0x12/0xc0 [ 145.734139][ T12] ? __pfx_wb_workfn+0x10/0x10 [ 145.738965][ T12] ? __pfx_lock_acquire+0x10/0x10 [ 145.744059][ T12] ? __pfx_lock_release+0x10/0x10 [ 145.749146][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.754821][ T12] ? rcu_is_watching+0x12/0xc0 [ 145.759646][ T12] process_one_work+0x9c8/0x1b40 [ 145.764692][ T12] ? __pfx_lock_acquire+0x10/0x10 [ 145.769771][ T12] ? __pfx_process_one_work+0x10/0x10 [ 145.775216][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.780914][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 145.786601][ T12] ? assign_work+0x1a0/0x250 [ 145.791251][ T12] worker_thread+0x6c8/0xf20 [ 145.795917][ T12] ? __pfx_worker_thread+0x10/0x10 [ 145.801087][ T12] kthread+0x2c4/0x3a0 [ 145.805207][ T12] ? _raw_spin_unlock_irq+0x23/0x50 [ 145.810451][ T12] ? __pfx_kthread+0x10/0x10 [ 145.815083][ T12] ret_from_fork+0x48/0x80 [ 145.819558][ T12] ? __pfx_kthread+0x10/0x10 [ 145.824185][ T12] ret_from_fork_asm+0x1a/0x30 [ 145.829021][ T12] [ 145.832055][ T12] ================================================================== [ 145.877694][ T12] hfsplus: b-tree write err: -5, ino 3 [ 145.984557][ T5552] loop0: detected capacity change from 0 to 1024 [ 146.021081][ T29] audit: type=1800 audit(1721458323.926:10): pid=5552 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=0 res=0 errno=0 [ 146.052640][ T12] ================================================================== [ 146.060722][ T12] BUG: KASAN: wild-memory-access in hfsplus_bnode_read+0x100/0x240 [ 146.068653][ T12] Read of size 1 at addr 0005088000000fff by task kworker/u8:1/12 [ 146.076566][ T12] [ 146.078899][ T12] CPU: 0 PID: 12 Comm: kworker/u8:1 Tainted: G B 6.10.0-syzkaller-10729-g3c3ff7be9729 #0 [ 146.090123][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 146.100235][ T12] Workqueue: writeback wb_workfn (flush-7:0) [ 146.106284][ T12] Call Trace: [ 146.109575][ T12] [ 146.112531][ T12] dump_stack_lvl+0x116/0x1f0 [ 146.117254][ T12] kasan_report+0xd9/0x110 [ 146.121729][ T12] ? hfsplus_bnode_read+0x100/0x240 [ 146.126964][ T12] ? hfsplus_bnode_read+0x100/0x240 [ 146.132201][ T12] kasan_check_range+0xef/0x1a0 [ 146.137090][ T12] __asan_memcpy+0x23/0x60 [ 146.141552][ T12] hfsplus_bnode_read+0x100/0x240 [ 146.146611][ T12] hfsplus_bnode_find+0x860/0xcb0 [ 146.151674][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.157351][ T12] ? rcu_is_watching+0x12/0xc0 [ 146.162168][ T12] ? lock_release+0x4f6/0x6f0 [ 146.166899][ T12] ? __pfx_hfsplus_bnode_find+0x10/0x10 [ 146.172481][ T12] ? __pfx_lock_release+0x10/0x10 [ 146.177553][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.183320][ T12] ? do_raw_spin_lock+0x12d/0x2c0 [ 146.188381][ T12] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 146.193782][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.199463][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.205154][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.210833][ T12] hfsplus_btree_write+0x1e/0x490 [ 146.212737][ T5102] Bluetooth: hci0: command tx timeout [ 146.215890][ T12] hfsplus_write_inode+0x306/0x4f0 [ 146.226394][ T12] __writeback_single_inode+0xb39/0xf90 [ 146.231996][ T12] ? __pfx___writeback_single_inode+0x10/0x10 [ 146.238112][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.243792][ T12] ? _raw_spin_unlock+0x28/0x50 [ 146.248688][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.254361][ T12] ? wbc_attach_and_unlock_inode+0x597/0x940 [ 146.260394][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.266076][ T12] writeback_sb_inodes+0x611/0x1150 [ 146.271343][ T12] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 146.277028][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.282706][ T12] ? rcu_is_watching+0x12/0xc0 [ 146.287557][ T12] ? do_raw_spin_lock+0x12d/0x2c0 [ 146.292628][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.298315][ T12] ? rcu_is_watching+0x12/0xc0 [ 146.303142][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.308826][ T12] ? queue_io+0x3f8/0x520 [ 146.313210][ T12] wb_writeback+0x199/0xb50 [ 146.317801][ T12] ? __pfx_wb_writeback+0x10/0x10 [ 146.322882][ T12] ? __pfx_lock_release+0x10/0x10 [ 146.327968][ T12] ? debug_object_deactivate+0x1f0/0x370 [ 146.333635][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.339319][ T12] ? rcu_is_watching+0x12/0xc0 [ 146.344145][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.349831][ T12] wb_workfn+0x28d/0xf40 [ 146.354136][ T12] ? rcu_is_watching+0x12/0xc0 [ 146.358957][ T12] ? __pfx_wb_workfn+0x10/0x10 [ 146.363778][ T12] ? __pfx_lock_acquire+0x10/0x10 [ 146.368871][ T12] ? __pfx_lock_release+0x10/0x10 [ 146.373950][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.379627][ T12] ? rcu_is_watching+0x12/0xc0 [ 146.384449][ T12] process_one_work+0x9c8/0x1b40 [ 146.389456][ T12] ? __pfx_lock_acquire+0x10/0x10 [ 146.394528][ T12] ? __pfx_process_one_work+0x10/0x10 [ 146.399960][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.405646][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.411322][ T12] ? assign_work+0x1a0/0x250 [ 146.415966][ T12] worker_thread+0x6c8/0xf20 [ 146.420644][ T12] ? __pfx_worker_thread+0x10/0x10 [ 146.425810][ T12] kthread+0x2c4/0x3a0 [ 146.429923][ T12] ? _raw_spin_unlock_irq+0x23/0x50 [ 146.435164][ T12] ? __pfx_kthread+0x10/0x10 [ 146.439789][ T12] ret_from_fork+0x48/0x80 [ 146.444261][ T12] ? __pfx_kthread+0x10/0x10 [ 146.448972][ T12] ret_from_fork_asm+0x1a/0x30 [ 146.454157][ T12] [ 146.457191][ T12] ================================================================== [ 146.466366][ T12] hfsplus: b-tree write err: -5, ino 3 [ 146.581034][ T5567] loop0: detected capacity change from 0 to 1024 [ 146.646401][ T29] audit: type=1800 audit(1721458324.556:11): pid=5567 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=0 res=0 errno=0 [ 146.671563][ T11] ================================================================== [ 146.679732][ T11] BUG: KASAN: wild-memory-access in hfsplus_bnode_read+0x100/0x240 [ 146.687668][ T11] Read of size 1 at addr 0005088000000fff by task kworker/u8:0/11 [ 146.695758][ T11] [ 146.698097][ T11] CPU: 1 PID: 11 Comm: kworker/u8:0 Tainted: G B 6.10.0-syzkaller-10729-g3c3ff7be9729 #0 [ 146.709324][ T11] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 146.719405][ T11] Workqueue: writeback wb_workfn (flush-7:0) [ 146.725462][ T11] Call Trace: [ 146.728770][ T11] [ 146.731716][ T11] dump_stack_lvl+0x116/0x1f0 [ 146.736460][ T11] kasan_report+0xd9/0x110 [ 146.740952][ T11] ? hfsplus_bnode_read+0x100/0x240 [ 146.746195][ T11] ? hfsplus_bnode_read+0x100/0x240 [ 146.751440][ T11] kasan_check_range+0xef/0x1a0 [ 146.756331][ T11] __asan_memcpy+0x23/0x60 [ 146.760793][ T11] hfsplus_bnode_read+0x100/0x240 [ 146.765864][ T11] hfsplus_bnode_find+0x860/0xcb0 [ 146.770937][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.776616][ T11] ? rcu_is_watching+0x12/0xc0 [ 146.781438][ T11] ? lock_release+0x4f6/0x6f0 [ 146.786170][ T11] ? __pfx_hfsplus_bnode_find+0x10/0x10 [ 146.791753][ T11] ? __pfx_lock_release+0x10/0x10 [ 146.796833][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.802512][ T11] ? do_raw_spin_lock+0x12d/0x2c0 [ 146.807571][ T11] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 146.812972][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.818653][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.824334][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.830020][ T11] hfsplus_btree_write+0x1e/0x490 [ 146.835087][ T11] hfsplus_write_inode+0x306/0x4f0 [ 146.840260][ T11] __writeback_single_inode+0xb39/0xf90 [ 146.845869][ T11] ? __pfx___writeback_single_inode+0x10/0x10 [ 146.851992][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.857672][ T11] ? _raw_spin_unlock+0x28/0x50 [ 146.862564][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.868253][ T11] ? wbc_attach_and_unlock_inode+0x597/0x940 [ 146.874295][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.879981][ T11] writeback_sb_inodes+0x611/0x1150 [ 146.885336][ T11] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 146.891020][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.896702][ T11] ? rcu_is_watching+0x12/0xc0 [ 146.901548][ T11] ? do_raw_spin_lock+0x12d/0x2c0 [ 146.906606][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.912290][ T11] ? rcu_is_watching+0x12/0xc0 [ 146.917114][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.923314][ T11] ? queue_io+0x3f8/0x520 [ 146.927698][ T11] wb_writeback+0x199/0xb50 [ 146.932262][ T11] ? __pfx_wb_writeback+0x10/0x10 [ 146.937338][ T11] ? __pfx_lock_release+0x10/0x10 [ 146.942419][ T11] ? debug_object_deactivate+0x1f0/0x370 [ 146.948086][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.953943][ T11] ? rcu_is_watching+0x12/0xc0 [ 146.958761][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.964441][ T11] wb_workfn+0x28d/0xf40 [ 146.968740][ T11] ? rcu_is_watching+0x12/0xc0 [ 146.973564][ T11] ? __pfx_wb_workfn+0x10/0x10 [ 146.978411][ T11] ? __pfx_lock_acquire+0x10/0x10 [ 146.983485][ T11] ? __pfx_lock_release+0x10/0x10 [ 146.988563][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 146.994241][ T11] ? rcu_is_watching+0x12/0xc0 [ 146.999064][ T11] process_one_work+0x9c8/0x1b40 [ 147.004077][ T11] ? __pfx_lock_acquire+0x10/0x10 [ 147.009154][ T11] ? __pfx_process_one_work+0x10/0x10 [ 147.014581][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 147.020267][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 147.025945][ T11] ? assign_work+0x1a0/0x250 [ 147.030587][ T11] worker_thread+0x6c8/0xf20 [ 147.035242][ T11] ? __pfx_worker_thread+0x10/0x10 [ 147.040407][ T11] kthread+0x2c4/0x3a0 [ 147.044515][ T11] ? _raw_spin_unlock_irq+0x23/0x50 [ 147.049753][ T11] ? __pfx_kthread+0x10/0x10 [ 147.054379][ T11] ret_from_fork+0x48/0x80 [ 147.058850][ T11] ? __pfx_kthread+0x10/0x10 [ 147.063515][ T11] ret_from_fork_asm+0x1a/0x30 [ 147.068345][ T11] [ 147.071377][ T11] ================================================================== [ 147.101636][ T11] hfsplus: b-tree write err: -5, ino 3 [ 147.168942][ T5582] loop0: detected capacity change from 0 to 1024 [ 147.224496][ T29] audit: type=1800 audit(1721458325.136:12): pid=5582 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=0 res=0 errno=0 [ 147.246672][ T12] ================================================================== [ 147.254755][ T12] BUG: KASAN: wild-memory-access in hfsplus_bnode_read+0x100/0x240 [ 147.262683][ T12] Read of size 1 at addr 0005088000000fff by task kworker/u8:1/12 [ 147.270685][ T12] [ 147.273022][ T12] CPU: 1 PID: 12 Comm: kworker/u8:1 Tainted: G B 6.10.0-syzkaller-10729-g3c3ff7be9729 #0 [ 147.284253][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 147.294329][ T12] Workqueue: writeback wb_workfn (flush-7:0) [ 147.300362][ T12] Call Trace: [ 147.303673][ T12] [ 147.306608][ T12] dump_stack_lvl+0x116/0x1f0 [ 147.311318][ T12] kasan_report+0xd9/0x110 [ 147.315775][ T12] ? hfsplus_bnode_read+0x100/0x240 [ 147.320996][ T12] ? hfsplus_bnode_read+0x100/0x240 [ 147.326223][ T12] kasan_check_range+0xef/0x1a0 [ 147.331103][ T12] __asan_memcpy+0x23/0x60 [ 147.335558][ T12] hfsplus_bnode_read+0x100/0x240 [ 147.340609][ T12] hfsplus_bnode_find+0x860/0xcb0 [ 147.345659][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 147.351325][ T12] ? rcu_is_watching+0x12/0xc0 [ 147.356129][ T12] ? lock_release+0x4f6/0x6f0 [ 147.360839][ T12] ? __pfx_hfsplus_bnode_find+0x10/0x10 [ 147.366410][ T12] ? __pfx_lock_release+0x10/0x10 [ 147.371497][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 147.377170][ T12] ? do_raw_spin_lock+0x12d/0x2c0 [ 147.382217][ T12] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 147.387606][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 147.393270][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 147.398934][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 147.404602][ T12] hfsplus_btree_write+0x1e/0x490 [ 147.409652][ T12] hfsplus_write_inode+0x306/0x4f0 [ 147.414805][ T12] __writeback_single_inode+0xb39/0xf90 [ 147.420416][ T12] ? __pfx___writeback_single_inode+0x10/0x10 [ 147.426520][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 147.432188][ T12] ? _raw_spin_unlock+0x28/0x50 [ 147.437063][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 147.442728][ T12] ? wbc_attach_and_unlock_inode+0x597/0x940 [ 147.448748][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 147.454412][ T12] writeback_sb_inodes+0x611/0x1150 [ 147.459661][ T12] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 147.465330][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 147.470991][ T12] ? rcu_is_watching+0x12/0xc0 [ 147.475818][ T12] ? do_raw_spin_lock+0x12d/0x2c0 [ 147.480869][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 147.486531][ T12] ? rcu_is_watching+0x12/0xc0 [ 147.491338][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 147.497000][ T12] ? queue_io+0x3f8/0x520 [ 147.501363][ T12] wb_writeback+0x199/0xb50 [ 147.505910][ T12] ? __pfx_wb_writeback+0x10/0x10 [ 147.510970][ T12] ? __pfx_lock_release+0x10/0x10 [ 147.516030][ T12] ? debug_object_deactivate+0x1f0/0x370 [ 147.521683][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 147.527345][ T12] ? rcu_is_watching+0x12/0xc0 [ 147.532144][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 147.537896][ T12] wb_workfn+0x28d/0xf40 [ 147.542181][ T12] ? rcu_is_watching+0x12/0xc0 [ 147.546984][ T12] ? __pfx_wb_workfn+0x10/0x10 [ 147.551785][ T12] ? __pfx_lock_acquire+0x10/0x10 [ 147.556846][ T12] ? __pfx_lock_release+0x10/0x10 [ 147.561911][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 147.567571][ T12] ? rcu_is_watching+0x12/0xc0 [ 147.572376][ T12] process_one_work+0x9c8/0x1b40 [ 147.577360][ T12] ? __pfx_lock_acquire+0x10/0x10 [ 147.582420][ T12] ? __pfx_process_one_work+0x10/0x10 [ 147.587914][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 147.593582][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 147.599242][ T12] ? assign_work+0x1a0/0x250 [ 147.603872][ T12] worker_thread+0x6c8/0xf20 [ 147.608511][ T12] ? __pfx_worker_thread+0x10/0x10 [ 147.613684][ T12] kthread+0x2c4/0x3a0 [ 147.618127][ T12] ? _raw_spin_unlock_irq+0x23/0x50 [ 147.623351][ T12] ? __pfx_kthread+0x10/0x10 [ 147.627961][ T12] ret_from_fork+0x48/0x80 [ 147.632421][ T12] ? __pfx_kthread+0x10/0x10 [ 147.637034][ T12] ret_from_fork_asm+0x1a/0x30 [ 147.641846][ T12] [ 147.644875][ T12] ================================================================== [ 147.670384][ T12] hfsplus: b-tree write err: -5, ino 3 [ 147.797817][ T5588] loop0: detected capacity change from 0 to 1024 [ 147.819047][ T29] audit: type=1800 audit(1721458325.726:13): pid=5588 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=0 res=0 errno=0 [ 147.853528][ T11] ================================================================== [ 147.861613][ T11] BUG: KASAN: wild-memory-access in hfsplus_bnode_read+0x100/0x240 [ 147.869553][ T11] Read of size 1 at addr 0005088000000fff by task kworker/u8:0/11 [ 147.877377][ T11] [ 147.879721][ T11] CPU: 0 PID: 11 Comm: kworker/u8:0 Tainted: G B 6.10.0-syzkaller-10729-g3c3ff7be9729 #0 [ 147.890949][ T11] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 147.901027][ T11] Workqueue: writeback wb_workfn (flush-7:0) [ 147.907083][ T11] Call Trace: [ 147.910376][ T11] [ 147.913325][ T11] dump_stack_lvl+0x116/0x1f0 [ 147.918050][ T11] kasan_report+0xd9/0x110 [ 147.922524][ T11] ? hfsplus_bnode_read+0x100/0x240 [ 147.927763][ T11] ? hfsplus_bnode_read+0x100/0x240 [ 147.933099][ T11] kasan_check_range+0xef/0x1a0 [ 147.938000][ T11] __asan_memcpy+0x23/0x60 [ 147.942466][ T11] hfsplus_bnode_read+0x100/0x240 [ 147.947531][ T11] hfsplus_bnode_find+0x860/0xcb0 [ 147.952597][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 147.958272][ T11] ? rcu_is_watching+0x12/0xc0 [ 147.963130][ T11] ? lock_release+0x4f6/0x6f0 [ 147.967946][ T11] ? __pfx_hfsplus_bnode_find+0x10/0x10 [ 147.973702][ T11] ? __pfx_lock_release+0x10/0x10 [ 147.978781][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 147.984459][ T11] ? do_raw_spin_lock+0x12d/0x2c0 [ 147.989515][ T11] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 147.994917][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.000601][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.006278][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.012047][ T11] hfsplus_btree_write+0x1e/0x490 [ 148.017110][ T11] hfsplus_write_inode+0x306/0x4f0 [ 148.022274][ T11] __writeback_single_inode+0xb39/0xf90 [ 148.027883][ T11] ? __pfx___writeback_single_inode+0x10/0x10 [ 148.034031][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.039708][ T11] ? _raw_spin_unlock+0x28/0x50 [ 148.044606][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.050280][ T11] ? wbc_attach_and_unlock_inode+0x597/0x940 [ 148.056319][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.061998][ T11] writeback_sb_inodes+0x611/0x1150 [ 148.067260][ T11] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 148.072953][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.078627][ T11] ? rcu_is_watching+0x12/0xc0 [ 148.083474][ T11] ? do_raw_spin_lock+0x12d/0x2c0 [ 148.088529][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.094204][ T11] ? rcu_is_watching+0x12/0xc0 [ 148.099021][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.104696][ T11] ? queue_io+0x3f8/0x520 [ 148.109075][ T11] wb_writeback+0x199/0xb50 [ 148.113640][ T11] ? __pfx_wb_writeback+0x10/0x10 [ 148.118800][ T11] ? __pfx_lock_release+0x10/0x10 [ 148.123887][ T11] ? debug_object_deactivate+0x1f0/0x370 [ 148.129638][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.135323][ T11] ? rcu_is_watching+0x12/0xc0 [ 148.140141][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.145825][ T11] wb_workfn+0x28d/0xf40 [ 148.150129][ T11] ? rcu_is_watching+0x12/0xc0 [ 148.154947][ T11] ? __pfx_wb_workfn+0x10/0x10 [ 148.159764][ T11] ? __pfx_lock_acquire+0x10/0x10 [ 148.164845][ T11] ? __pfx_lock_release+0x10/0x10 [ 148.169928][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.175604][ T11] ? rcu_is_watching+0x12/0xc0 [ 148.180426][ T11] process_one_work+0x9c8/0x1b40 [ 148.185429][ T11] ? __pfx_lock_acquire+0x10/0x10 [ 148.190502][ T11] ? __pfx_process_one_work+0x10/0x10 [ 148.195926][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.201608][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.207284][ T11] ? assign_work+0x1a0/0x250 [ 148.211926][ T11] worker_thread+0x6c8/0xf20 [ 148.216579][ T11] ? __pfx_worker_thread+0x10/0x10 [ 148.221743][ T11] kthread+0x2c4/0x3a0 [ 148.225845][ T11] ? _raw_spin_unlock_irq+0x23/0x50 [ 148.231088][ T11] ? __pfx_kthread+0x10/0x10 [ 148.235716][ T11] ret_from_fork+0x48/0x80 [ 148.240186][ T11] ? __pfx_kthread+0x10/0x10 [ 148.244811][ T11] ret_from_fork_asm+0x1a/0x30 [ 148.249643][ T11] [ 148.252675][ T11] ================================================================== [ 148.261218][ T11] hfsplus: b-tree write err: -5, ino 3 [ 148.361905][ T5601] loop0: detected capacity change from 0 to 1024 2024/07/20 06:52:06 executed programs: 13 [ 148.426130][ T29] audit: type=1800 audit(1721458326.336:14): pid=5601 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=0 res=0 errno=0 [ 148.461947][ T1030] ================================================================== [ 148.470027][ T1030] BUG: KASAN: wild-memory-access in hfsplus_bnode_read+0x100/0x240 [ 148.478132][ T1030] Read of size 1 at addr 0005088000000fff by task kworker/u8:5/1030 [ 148.486221][ T1030] [ 148.488558][ T1030] CPU: 1 PID: 1030 Comm: kworker/u8:5 Tainted: G B 6.10.0-syzkaller-10729-g3c3ff7be9729 #0 [ 148.499957][ T1030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 148.510037][ T1030] Workqueue: writeback wb_workfn (flush-7:0) [ 148.516088][ T1030] Call Trace: [ 148.519383][ T1030] [ 148.522328][ T1030] dump_stack_lvl+0x116/0x1f0 [ 148.527055][ T1030] kasan_report+0xd9/0x110 [ 148.531529][ T1030] ? hfsplus_bnode_read+0x100/0x240 [ 148.536767][ T1030] ? hfsplus_bnode_read+0x100/0x240 [ 148.542006][ T1030] kasan_check_range+0xef/0x1a0 [ 148.546897][ T1030] __asan_memcpy+0x23/0x60 [ 148.551359][ T1030] hfsplus_bnode_read+0x100/0x240 [ 148.556423][ T1030] hfsplus_bnode_find+0x860/0xcb0 [ 148.561486][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.567164][ T1030] ? rcu_is_watching+0x12/0xc0 [ 148.571981][ T1030] ? lock_release+0x4f6/0x6f0 [ 148.576704][ T1030] ? __pfx_hfsplus_bnode_find+0x10/0x10 [ 148.582284][ T1030] ? __pfx_lock_release+0x10/0x10 [ 148.587361][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.593038][ T1030] ? do_raw_spin_lock+0x12d/0x2c0 [ 148.598095][ T1030] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 148.603496][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.609176][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.615131][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.621422][ T1030] hfsplus_btree_write+0x1e/0x490 [ 148.626487][ T1030] hfsplus_write_inode+0x306/0x4f0 [ 148.631650][ T1030] __writeback_single_inode+0xb39/0xf90 [ 148.637254][ T1030] ? __pfx___writeback_single_inode+0x10/0x10 [ 148.643375][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.649056][ T1030] ? _raw_spin_unlock+0x28/0x50 [ 148.653943][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.659619][ T1030] ? wbc_attach_and_unlock_inode+0x597/0x940 [ 148.665649][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.671332][ T1030] writeback_sb_inodes+0x611/0x1150 [ 148.676597][ T1030] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 148.682281][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.687962][ T1030] ? rcu_is_watching+0x12/0xc0 [ 148.692812][ T1030] ? do_raw_spin_lock+0x12d/0x2c0 [ 148.697966][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.703645][ T1030] ? rcu_is_watching+0x12/0xc0 [ 148.708467][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.714148][ T1030] ? queue_io+0x3f8/0x520 [ 148.718527][ T1030] wb_writeback+0x199/0xb50 [ 148.723093][ T1030] ? __pfx_wb_writeback+0x10/0x10 [ 148.728176][ T1030] ? __pfx_lock_release+0x10/0x10 [ 148.733257][ T1030] ? debug_object_deactivate+0x1f0/0x370 [ 148.738925][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.744610][ T1030] ? rcu_is_watching+0x12/0xc0 [ 148.749434][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.755123][ T1030] wb_workfn+0x28d/0xf40 [ 148.759430][ T1030] ? rcu_is_watching+0x12/0xc0 [ 148.764858][ T1030] ? __pfx_wb_workfn+0x10/0x10 [ 148.769676][ T1030] ? __pfx_lock_acquire+0x10/0x10 [ 148.774749][ T1030] ? __pfx_lock_release+0x10/0x10 [ 148.779831][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.785521][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.791205][ T1030] ? rcu_is_watching+0x12/0xc0 [ 148.796031][ T1030] process_one_work+0x9c8/0x1b40 [ 148.801136][ T1030] ? __pfx_batadv_nc_worker+0x10/0x10 [ 148.806546][ T1030] ? __pfx_process_one_work+0x10/0x10 [ 148.811973][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.817744][ T1030] ? srso_alias_return_thunk+0x5/0xfbef5 [ 148.823441][ T1030] ? assign_work+0x1a0/0x250 [ 148.828085][ T1030] worker_thread+0x6c8/0xf20 [ 148.832751][ T1030] ? __pfx_worker_thread+0x10/0x10 [ 148.837917][ T1030] kthread+0x2c4/0x3a0 [ 148.842114][ T1030] ? _raw_spin_unlock_irq+0x23/0x50 [ 148.847362][ T1030] ? __pfx_kthread+0x10/0x10 [ 148.851994][ T1030] ret_from_fork+0x48/0x80 [ 148.856469][ T1030] ? __pfx_kthread+0x10/0x10 [ 148.861105][ T1030] ret_from_fork_asm+0x1a/0x30 [ 148.865960][ T1030] [ 148.868994][ T1030] ================================================================== [ 148.899067][ T1030] hfsplus: b-tree write err: -5, ino 3 [ 149.075293][ T5617] loop0: detected capacity change from 0 to 1024 [ 149.145040][ T29] audit: type=1800 audit(1721458327.056:15): pid=5617 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=0 res=0 errno=0 [ 149.188584][ T52] ================================================================== [ 149.196687][ T52] BUG: KASAN: wild-memory-access in hfsplus_bnode_read+0x100/0x240 [ 149.204621][ T52] Read of size 1 at addr 0005088000000fff by task kworker/u8:3/52 [ 149.212450][ T52] [ 149.214800][ T52] CPU: 1 PID: 52 Comm: kworker/u8:3 Tainted: G B 6.10.0-syzkaller-10729-g3c3ff7be9729 #0 [ 149.226020][ T52] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 149.236091][ T52] Workqueue: writeback wb_workfn (flush-7:0) [ 149.242139][ T52] Call Trace: [ 149.245449][ T52] [ 149.248386][ T52] dump_stack_lvl+0x116/0x1f0 [ 149.253119][ T52] kasan_report+0xd9/0x110 [ 149.257624][ T52] ? hfsplus_bnode_read+0x100/0x240 [ 149.262856][ T52] ? hfsplus_bnode_read+0x100/0x240 [ 149.268104][ T52] kasan_check_range+0xef/0x1a0 [ 149.272992][ T52] __asan_memcpy+0x23/0x60 [ 149.277444][ T52] hfsplus_bnode_read+0x100/0x240 [ 149.282519][ T52] hfsplus_bnode_find+0x860/0xcb0 [ 149.287585][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 149.293277][ T52] ? rcu_is_watching+0x12/0xc0 [ 149.298101][ T52] ? lock_release+0x4f6/0x6f0 [ 149.302829][ T52] ? __pfx_hfsplus_bnode_find+0x10/0x10 [ 149.308407][ T52] ? __pfx_lock_release+0x10/0x10 [ 149.313465][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 149.319136][ T52] ? do_raw_spin_lock+0x12d/0x2c0 [ 149.324264][ T52] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 149.329655][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 149.335407][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 149.341161][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 149.346830][ T52] hfsplus_btree_write+0x1e/0x490 [ 149.351890][ T52] hfsplus_write_inode+0x306/0x4f0 [ 149.357042][ T52] __writeback_single_inode+0xb39/0xf90 [ 149.362729][ T52] ? __pfx___writeback_single_inode+0x10/0x10 [ 149.368921][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 149.374584][ T52] ? _raw_spin_unlock+0x28/0x50 [ 149.379459][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 149.385210][ T52] ? wbc_attach_and_unlock_inode+0x597/0x940 [ 149.391235][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 149.396915][ T52] writeback_sb_inodes+0x611/0x1150 [ 149.402163][ T52] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 149.407835][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 149.413502][ T52] ? rcu_is_watching+0x12/0xc0 [ 149.418329][ T52] ? do_raw_spin_lock+0x12d/0x2c0 [ 149.423376][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 149.429042][ T52] ? rcu_is_watching+0x12/0xc0 [ 149.433853][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 149.439517][ T52] ? queue_io+0x3f8/0x520 [ 149.443886][ T52] wb_writeback+0x199/0xb50 [ 149.448521][ T52] ? __pfx_wb_writeback+0x10/0x10 [ 149.453596][ T52] ? __pfx_lock_release+0x10/0x10 [ 149.458667][ T52] ? debug_object_deactivate+0x1f0/0x370 [ 149.464408][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 149.470329][ T52] ? rcu_is_watching+0x12/0xc0 [ 149.475132][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 149.480798][ T52] wb_workfn+0x28d/0xf40 [ 149.485093][ T52] ? rcu_is_watching+0x12/0xc0 [ 149.489983][ T52] ? __pfx_wb_workfn+0x10/0x10 [ 149.494790][ T52] ? __pfx_lock_acquire+0x10/0x10 [ 149.499863][ T52] ? __pfx_lock_release+0x10/0x10 [ 149.504930][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 149.510593][ T52] ? rcu_is_watching+0x12/0xc0 [ 149.515421][ T52] process_one_work+0x9c8/0x1b40 [ 149.520407][ T52] ? __pfx_lock_acquire+0x10/0x10 [ 149.525477][ T52] ? __pfx_process_one_work+0x10/0x10 [ 149.530900][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 149.536579][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 149.542245][ T52] ? assign_work+0x1a0/0x250 [ 149.546875][ T52] worker_thread+0x6c8/0xf20 [ 149.551621][ T52] ? __pfx_worker_thread+0x10/0x10 [ 149.556789][ T52] kthread+0x2c4/0x3a0 [ 149.560887][ T52] ? _raw_spin_unlock_irq+0x23/0x50 [ 149.566114][ T52] ? __pfx_kthread+0x10/0x10 [ 149.570730][ T52] ret_from_fork+0x48/0x80 [ 149.575275][ T52] ? __pfx_kthread+0x10/0x10 [ 149.579895][ T52] ret_from_fork_asm+0x1a/0x30 [ 149.584725][ T52] [ 149.587749][ T52] ================================================================== [ 149.613732][ T52] hfsplus: b-tree write err: -5, ino 3 [ 149.724000][ T5624] loop0: detected capacity change from 0 to 1024 [ 149.774227][ T29] audit: type=1800 audit(1721458327.686:16): pid=5624 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=0 res=0 errno=0 [ 149.830624][ T52] ================================================================== [ 149.838725][ T52] BUG: KASAN: wild-memory-access in hfsplus_bnode_read+0x100/0x240 [ 149.846657][ T52] Read of size 1 at addr 0005088000000fff by task kworker/u8:3/52 [ 149.854488][ T52] [ 149.856862][ T52] CPU: 1 PID: 52 Comm: kworker/u8:3 Tainted: G B 6.10.0-syzkaller-10729-g3c3ff7be9729 #0 [ 149.868087][ T52] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 149.878173][ T52] Workqueue: writeback wb_workfn (flush-7:0) [ 149.884258][ T52] Call Trace: [ 149.888077][ T52] [ 149.891031][ T52] dump_stack_lvl+0x116/0x1f0 [ 149.895855][ T52] kasan_report+0xd9/0x110 [ 149.900328][ T52] ? hfsplus_bnode_read+0x100/0x240 [ 149.905566][ T52] ? hfsplus_bnode_read+0x100/0x240 [ 149.910808][ T52] kasan_check_range+0xef/0x1a0 [ 149.915692][ T52] __asan_memcpy+0x23/0x60 [ 149.920243][ T52] hfsplus_bnode_read+0x100/0x240 [ 149.925397][ T52] hfsplus_bnode_find+0x860/0xcb0 [ 149.930462][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 149.936148][ T52] ? rcu_is_watching+0x12/0xc0 [ 149.940969][ T52] ? lock_release+0x4f6/0x6f0 [ 149.945698][ T52] ? __pfx_hfsplus_bnode_find+0x10/0x10 [ 149.951284][ T52] ? __pfx_lock_release+0x10/0x10 [ 149.956363][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 149.962046][ T52] ? do_raw_spin_lock+0x12d/0x2c0 [ 149.967113][ T52] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 149.972514][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 149.978196][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 149.983876][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 149.989651][ T52] hfsplus_btree_write+0x1e/0x490 [ 149.994716][ T52] hfsplus_write_inode+0x306/0x4f0 [ 149.999883][ T52] __writeback_single_inode+0xb39/0xf90 [ 150.005488][ T52] ? __pfx___writeback_single_inode+0x10/0x10 [ 150.011610][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.017292][ T52] ? _raw_spin_unlock+0x28/0x50 [ 150.022181][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.027863][ T52] ? wbc_attach_and_unlock_inode+0x597/0x940 [ 150.033898][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.039578][ T52] writeback_sb_inodes+0x611/0x1150 [ 150.044843][ T52] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 150.050531][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.056212][ T52] ? rcu_is_watching+0x12/0xc0 [ 150.061063][ T52] ? do_raw_spin_lock+0x12d/0x2c0 [ 150.066134][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.071815][ T52] ? rcu_is_watching+0x12/0xc0 [ 150.076803][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.082661][ T52] ? queue_io+0x3f8/0x520 [ 150.087135][ T52] wb_writeback+0x199/0xb50 [ 150.091700][ T52] ? __pfx_wb_writeback+0x10/0x10 [ 150.096776][ T52] ? __pfx_lock_release+0x10/0x10 [ 150.101859][ T52] ? debug_object_deactivate+0x1f0/0x370 [ 150.107532][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.113221][ T52] ? rcu_is_watching+0x12/0xc0 [ 150.118043][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.123737][ T52] wb_workfn+0x28d/0xf40 [ 150.128044][ T52] ? rcu_is_watching+0x12/0xc0 [ 150.132870][ T52] ? __pfx_wb_workfn+0x10/0x10 [ 150.137695][ T52] ? __pfx_lock_acquire+0x10/0x10 [ 150.142801][ T52] ? __pfx_lock_release+0x10/0x10 [ 150.147885][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.153568][ T52] ? rcu_is_watching+0x12/0xc0 [ 150.158391][ T52] process_one_work+0x9c8/0x1b40 [ 150.163398][ T52] ? __pfx_lock_acquire+0x10/0x10 [ 150.168472][ T52] ? __pfx_process_one_work+0x10/0x10 [ 150.173985][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.179673][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.185354][ T52] ? assign_work+0x1a0/0x250 [ 150.189999][ T52] worker_thread+0x6c8/0xf20 [ 150.194655][ T52] ? __pfx_worker_thread+0x10/0x10 [ 150.199910][ T52] kthread+0x2c4/0x3a0 [ 150.204017][ T52] ? _raw_spin_unlock_irq+0x23/0x50 [ 150.209262][ T52] ? __pfx_kthread+0x10/0x10 [ 150.213895][ T52] ret_from_fork+0x48/0x80 [ 150.218371][ T52] ? __pfx_kthread+0x10/0x10 [ 150.222999][ T52] ret_from_fork_asm+0x1a/0x30 [ 150.228127][ T52] [ 150.231167][ T52] ================================================================== [ 150.253856][ T52] hfsplus: b-tree write err: -5, ino 3 [ 150.373530][ T5642] loop0: detected capacity change from 0 to 1024 [ 150.439273][ T29] audit: type=1800 audit(1721458328.346:17): pid=5642 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=0 res=0 errno=0 [ 150.465719][ T52] ================================================================== [ 150.473807][ T52] BUG: KASAN: wild-memory-access in hfsplus_bnode_read+0x100/0x240 [ 150.481745][ T52] Read of size 1 at addr 0005088000000fff by task kworker/u8:3/52 [ 150.489747][ T52] [ 150.492084][ T52] CPU: 1 PID: 52 Comm: kworker/u8:3 Tainted: G B 6.10.0-syzkaller-10729-g3c3ff7be9729 #0 [ 150.503311][ T52] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 150.513393][ T52] Workqueue: writeback wb_workfn (flush-7:0) [ 150.519447][ T52] Call Trace: [ 150.522740][ T52] [ 150.525686][ T52] dump_stack_lvl+0x116/0x1f0 [ 150.530409][ T52] kasan_report+0xd9/0x110 [ 150.534901][ T52] ? hfsplus_bnode_read+0x100/0x240 [ 150.540143][ T52] ? hfsplus_bnode_read+0x100/0x240 [ 150.545822][ T52] kasan_check_range+0xef/0x1a0 [ 150.550719][ T52] __asan_memcpy+0x23/0x60 [ 150.555186][ T52] hfsplus_bnode_read+0x100/0x240 [ 150.560255][ T52] hfsplus_bnode_find+0x860/0xcb0 [ 150.565329][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.571008][ T52] ? rcu_is_watching+0x12/0xc0 [ 150.575826][ T52] ? lock_release+0x4f6/0x6f0 [ 150.580556][ T52] ? __pfx_hfsplus_bnode_find+0x10/0x10 [ 150.586147][ T52] ? __pfx_lock_release+0x10/0x10 [ 150.591222][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.596901][ T52] ? do_raw_spin_lock+0x12d/0x2c0 [ 150.601958][ T52] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 150.607363][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.613043][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.618721][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.624412][ T52] hfsplus_btree_write+0x1e/0x490 [ 150.629472][ T52] hfsplus_write_inode+0x306/0x4f0 [ 150.634722][ T52] __writeback_single_inode+0xb39/0xf90 [ 150.640415][ T52] ? __pfx___writeback_single_inode+0x10/0x10 [ 150.646536][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.652217][ T52] ? _raw_spin_unlock+0x28/0x50 [ 150.657106][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.662787][ T52] ? wbc_attach_and_unlock_inode+0x597/0x940 [ 150.668826][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.674514][ T52] writeback_sb_inodes+0x611/0x1150 [ 150.679777][ T52] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 150.685472][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.691155][ T52] ? rcu_is_watching+0x12/0xc0 [ 150.696009][ T52] ? do_raw_spin_lock+0x12d/0x2c0 [ 150.701159][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.706837][ T52] ? rcu_is_watching+0x12/0xc0 [ 150.711661][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.717341][ T52] ? queue_io+0x3f8/0x520 [ 150.721727][ T52] wb_writeback+0x199/0xb50 [ 150.726549][ T52] ? __pfx_wb_writeback+0x10/0x10 [ 150.731629][ T52] ? __pfx_lock_release+0x10/0x10 [ 150.736712][ T52] ? debug_object_deactivate+0x1f0/0x370 [ 150.742588][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.748379][ T52] ? rcu_is_watching+0x12/0xc0 [ 150.753203][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.758890][ T52] wb_workfn+0x28d/0xf40 [ 150.763194][ T52] ? rcu_is_watching+0x12/0xc0 [ 150.768016][ T52] ? __pfx_wb_workfn+0x10/0x10 [ 150.772840][ T52] ? __pfx_lock_acquire+0x10/0x10 [ 150.778616][ T52] ? __pfx_lock_release+0x10/0x10 [ 150.783697][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.789554][ T52] ? rcu_is_watching+0x12/0xc0 [ 150.794381][ T52] process_one_work+0x9c8/0x1b40 [ 150.799384][ T52] ? __pfx_lock_acquire+0x10/0x10 [ 150.804462][ T52] ? __pfx_process_one_work+0x10/0x10 [ 150.809895][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.815579][ T52] ? srso_alias_return_thunk+0x5/0xfbef5 [ 150.821301][ T52] ? assign_work+0x1a0/0x250 [ 150.825949][ T52] worker_thread+0x6c8/0xf20 [ 150.830607][ T52] ? __pfx_worker_thread+0x10/0x10 [ 150.835776][ T52] kthread+0x2c4/0x3a0 [ 150.839888][ T52] ? _raw_spin_unlock_irq+0x23/0x50 [ 150.845173][ T52] ? __pfx_kthread+0x10/0x10 [ 150.849807][ T52] ret_from_fork+0x48/0x80 [ 150.854284][ T52] ? __pfx_kthread+0x10/0x10 [ 150.858923][ T52] ret_from_fork_asm+0x1a/0x30 [ 150.863835][ T52] [ 150.866961][ T52] ================================================================== [ 150.887098][ T52] hfsplus: b-tree write err: -5, ino 3 [ 150.974586][ T5658] loop0: detected capacity change from 0 to 1024 [ 151.032646][ T29] audit: type=1800 audit(1721458328.936:18): pid=5658 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=0 res=0 errno=0 [ 151.077692][ T11] ================================================================== [ 151.085896][ T11] BUG: KASAN: wild-memory-access in hfsplus_bnode_read+0x100/0x240 [ 151.093831][ T11] Read of size 1 at addr 0005088000000fff by task kworker/u8:0/11 [ 151.101742][ T11] [ 151.104066][ T11] CPU: 1 PID: 11 Comm: kworker/u8:0 Tainted: G B 6.10.0-syzkaller-10729-g3c3ff7be9729 #0 [ 151.115278][ T11] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 151.125435][ T11] Workqueue: writeback wb_workfn (flush-7:0) [ 151.131567][ T11] Call Trace: [ 151.134860][ T11] [ 151.137813][ T11] dump_stack_lvl+0x116/0x1f0 [ 151.142527][ T11] kasan_report+0xd9/0x110 [ 151.146987][ T11] ? hfsplus_bnode_read+0x100/0x240 [ 151.152211][ T11] ? hfsplus_bnode_read+0x100/0x240 [ 151.157437][ T11] kasan_check_range+0xef/0x1a0 [ 151.162404][ T11] __asan_memcpy+0x23/0x60 [ 151.166855][ T11] hfsplus_bnode_read+0x100/0x240 [ 151.171907][ T11] hfsplus_bnode_find+0x860/0xcb0 [ 151.177048][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 151.182732][ T11] ? rcu_is_watching+0x12/0xc0 [ 151.187535][ T11] ? lock_release+0x4f6/0x6f0 [ 151.192245][ T11] ? __pfx_hfsplus_bnode_find+0x10/0x10 [ 151.197823][ T11] ? __pfx_lock_release+0x10/0x10 [ 151.202892][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 151.208556][ T11] ? do_raw_spin_lock+0x12d/0x2c0 [ 151.213610][ T11] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 151.218999][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 151.224664][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 151.230417][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 151.236089][ T11] hfsplus_btree_write+0x1e/0x490 [ 151.241145][ T11] hfsplus_write_inode+0x306/0x4f0 [ 151.246301][ T11] __writeback_single_inode+0xb39/0xf90 [ 151.251912][ T11] ? __pfx___writeback_single_inode+0x10/0x10 [ 151.258020][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 151.263688][ T11] ? _raw_spin_unlock+0x28/0x50 [ 151.268563][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 151.274225][ T11] ? wbc_attach_and_unlock_inode+0x597/0x940 [ 151.280243][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 151.285997][ T11] writeback_sb_inodes+0x611/0x1150 [ 151.291329][ T11] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 151.297085][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 151.302747][ T11] ? rcu_is_watching+0x12/0xc0 [ 151.307663][ T11] ? do_raw_spin_lock+0x12d/0x2c0 [ 151.312715][ T11] ? srso_alias_return_thunk+0x5/0xfbef5 [ 151.318376][ T11] ? rcu_is_watching+0x12/0xc0 [ 151.323184][ T11] ? srso_alias_return_thunk+0x5/0xfbef5