------------[ cut here ]------------ UBSAN: array-index-out-of-bounds in fs/ocfs2/alloc.c:1839:11 index 0 is out of range for type 'struct ocfs2_extent_rec[] __counted_by(l_count)' (aka 'struct ocfs2_extent_rec[]') CPU: 0 UID: 0 PID: 8735 Comm: syz.3.388 Not tainted syzkaller #0 PREEMPT Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 Call trace: show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:499 (C) __dump_stack+0x30/0x40 lib/dump_stack.c:94 dump_stack_lvl+0xd8/0x12c lib/dump_stack.c:120 dump_stack+0x1c/0x28 lib/dump_stack.c:129 ubsan_epilogue+0x14/0x48 lib/ubsan.c:233 __ubsan_handle_out_of_bounds+0xd0/0xfc lib/ubsan.c:455 __ocfs2_find_path+0x4f8/0x8b8 fs/ocfs2/alloc.c:1839 ocfs2_find_leaf+0xb4/0x1d0 fs/ocfs2/alloc.c:1947 ocfs2_get_clusters_nocache+0x13c/0xa30 fs/ocfs2/extent_map.c:418 ocfs2_get_clusters+0x414/0x844 fs/ocfs2/extent_map.c:631 ocfs2_extent_map_get_blocks+0x194/0x564 fs/ocfs2/extent_map.c:678 ocfs2_read_virt_blocks+0x23c/0x888 fs/ocfs2/extent_map.c:1001 ocfs2_read_dir_block fs/ocfs2/dir.c:521 [inline] ocfs2_find_entry_el fs/ocfs2/dir.c:728 [inline] ocfs2_find_entry+0x310/0x1c4c fs/ocfs2/dir.c:1120 ocfs2_find_files_on_disk+0x104/0x3a0 fs/ocfs2/dir.c:2023 ocfs2_lookup_ino_from_name+0x60/0x114 fs/ocfs2/dir.c:2045 _ocfs2_get_system_file_inode fs/ocfs2/sysfile.c:136 [inline] ocfs2_get_system_file_inode+0x280/0x5e8 fs/ocfs2/sysfile.c:112 ocfs2_init_global_system_inodes+0x2a8/0x594 fs/ocfs2/super.c:461 ocfs2_initialize_super fs/ocfs2/super.c:2196 [inline] ocfs2_fill_super+0x2208/0x532c fs/ocfs2/super.c:993 get_tree_bdev_flags+0x360/0x414 fs/super.c:1691 get_tree_bdev+0x2c/0x3c fs/super.c:1714 ocfs2_get_tree+0x28/0x38 fs/ocfs2/super.c:1184 vfs_get_tree+0x90/0x28c fs/super.c:1751 fc_mount fs/namespace.c:1199 [inline] do_new_mount_fc fs/namespace.c:3636 [inline] do_new_mount+0x284/0x944 fs/namespace.c:3712 path_mount+0x5b4/0xdfc fs/namespace.c:4022 do_mount fs/namespace.c:4035 [inline] __do_sys_mount fs/namespace.c:4224 [inline] __se_sys_mount fs/namespace.c:4201 [inline] __arm64_sys_mount+0x3e8/0x468 fs/namespace.c:4201 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x98/0x254 arch/arm64/kernel/syscall.c:49 el0_svc_common+0xe8/0x23c arch/arm64/kernel/syscall.c:132 do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151 el0_svc+0x5c/0x26c arch/arm64/kernel/entry-common.c:724 el0t_64_sync_handler+0x84/0x12c arch/arm64/kernel/entry-common.c:743 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:596 ---[ end trace ]--- OCFS2: ERROR (device loop3): int ocfs2_validate_extent_block(struct super_block *, struct buffer_head *): Extent block #288 has bad signature  On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. OCFS2: File system is now read-only. (syz.3.388,8735,0):__ocfs2_find_path:1853 ERROR: status = -30 (syz.3.388,8735,0):ocfs2_find_leaf:1949 ERROR: status = -30 (syz.3.388,8735,0):ocfs2_get_clusters_nocache:421 ERROR: status = -30 (syz.3.388,8735,0):ocfs2_get_clusters:634 ERROR: status = -30 (syz.3.388,8735,0):ocfs2_extent_map_get_blocks:681 ERROR: status = -30 (syz.3.388,8735,0):ocfs2_read_virt_blocks:1005 ERROR: status = -30 (syz.3.388,8735,0):ocfs2_read_dir_block:524 ERROR: status = -30 (syz.3.388,8735,0):ocfs2_init_global_system_inodes:465 ERROR: status = -30 (syz.3.388,8735,0):ocfs2_init_global_system_inodes:467 ERROR: Unable to load system inode 1, possibly corrupt fs? (syz.3.388,8735,0):ocfs2_init_global_system_inodes:476 ERROR: status = -30 (syz.3.388,8735,0):ocfs2_initialize_super:2198 ERROR: status = -30 (syz.3.388,8735,0):ocfs2_fill_super:1177 ERROR: status = -30