Hello,
syzbot found the following issue on:
HEAD commit: 3b29299e5f60 Linux 6.1.22
git tree: linux-6.1.y
console output:
https://syzkaller.appspot.com/x/log.txt?x=12c485f1c80000
kernel config:
https://syzkaller.appspot.com/x/.config?x=4a782518325cb082
dashboard link:
https://syzkaller.appspot.com/bug?extid=c5103cae7270551db1e6
compiler: Debian clang version 15.0.7, GNU ld (GNU Binutils for Debian) 2.35.2
Unfortunately, I don't have any reproducer for this issue yet.
Downloadable assets:
disk image:
https://storage.googleapis.com/syzbot-assets/f6cdeb0f8946/disk-3b29299e.raw.xz
vmlinux:
https://storage.googleapis.com/syzbot-assets/cc5e0da6e9ab/vmlinux-3b29299e.xz
kernel image:
https://storage.googleapis.com/syzbot-assets/9e31f151a6a5/bzImage-3b29299e.xz
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by:
syzbot+c5103c...@syzkaller.appspotmail.com
------------[ cut here ]------------
kernel BUG at fs/hfs/inode.c:446!
invalid opcode: 0000 [#1] PREEMPT SMP KASAN
CPU: 1 PID: 1060 Comm: kworker/u4:5 Not tainted 6.1.22-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
Workqueue: writeback wb_workfn (flush-7:2)
RIP: 0010:hfs_write_inode+0xeb0/0xec0 fs/hfs/inode.c:446
Code: ff e9 88 fb ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 9d fb ff ff e8 4f cd 7f ff e9 93 fb ff ff e8 d5 e9 1d 08 e8 c0 ac 29 ff <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 41 57 41 56 41 54
RSP: 0018:ffffc90004c5f360 EFLAGS: 00010293
RAX: ffffffff825fe0e0 RBX: 0000000000000005 RCX: ffff8880201c9d40
RDX: 0000000000000000 RSI: ffffffff8d1187a0 RDI: 0000000000000005
RBP: ffffc90004c5f4f0 R08: 0000000000000007 R09: ffffffff825fd38a
R10: 0000000000000003 R11: ffff8880201c9d40 R12: 1ffff9200098be70
R13: dffffc0000000000 R14: 0000000000000000 R15: ffff888075805c58
FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000020081000 CR3: 000000007cac0000 CR4: 00000000003506e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
<TASK>
write_inode fs/fs-writeback.c:1440 [inline]
__writeback_single_inode+0x67d/0x11e0 fs/fs-writeback.c:1652
writeback_sb_inodes+0xc21/0x1ac0 fs/fs-writeback.c:1878
wb_writeback+0x49d/0xe10 fs/fs-writeback.c:2052
wb_do_writeback fs/fs-writeback.c:2195 [inline]
wb_workfn+0x427/0x1020 fs/fs-writeback.c:2235
process_one_work+0x8aa/0x11f0 kernel/workqueue.c:2289
worker_thread+0xa5f/0x1210 kernel/workqueue.c:2436
kthread+0x268/0x300 kernel/kthread.c:376
ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306
</TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:hfs_write_inode+0xeb0/0xec0 fs/hfs/inode.c:446
Code: ff e9 88 fb ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 9d fb ff ff e8 4f cd 7f ff e9 93 fb ff ff e8 d5 e9 1d 08 e8 c0 ac 29 ff <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 41 57 41 56 41 54
RSP: 0018:ffffc90004c5f360 EFLAGS: 00010293
RAX: ffffffff825fe0e0 RBX: 0000000000000005 RCX: ffff8880201c9d40
RDX: 0000000000000000 RSI: ffffffff8d1187a0 RDI: 0000000000000005
RBP: ffffc90004c5f4f0 R08: 0000000000000007 R09: ffffffff825fd38a
R10: 0000000000000003 R11: ffff8880201c9d40 R12: 1ffff9200098be70
R13: dffffc0000000000 R14: 0000000000000000 R15: ffff888075805c58
FS: 0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fff650bdbd8 CR3: 0000000085aa7000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
---
This report is generated by a bot. It may contain errors.
See
https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at
syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.