Extracting prog: 1m14.042262061s
Minimizing prog: 14m43.690057527s
Simplifying prog options: 0s
Extracting C: 27.520796637s
Simplifying C: 4m58.784471429s


extracting reproducer from 1 programs
testing a last program of every proc
single: executing 1 programs separately with timeout 30s
testing program (duration=30s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$dir-creat-syz_mount_image$ext4-syz_mount_image$ext4-mount-open-mmap-listen-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
detailed listing:
executing program 0:
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$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") (async)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$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")
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc192, 0x4002011, r0, 0x0)
listen(0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x1, 0xa6, &(0x7f00000003c0)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

program crashed: UBSAN: shift-out-of-bounds in ext4_fill_super
single: successfully extracted reproducer
found reproducer with 9 syscalls
minimizing guilty program
testing program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$dir-creat-syz_mount_image$ext4-syz_mount_image$ext4-mount-open-mmap-listen
detailed listing:
executing program 0:
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$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") (async)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$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")
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc192, 0x4002011, r0, 0x0)
listen(0xffffffffffffffff, 0x0)

program did not crash
testing program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$dir-creat-syz_mount_image$ext4-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
detailed listing:
executing program 0:
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$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") (async)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$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")
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc192, 0x4002011, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x1, 0xa6, &(0x7f00000003c0)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

program crashed: UBSAN: shift-out-of-bounds in ext4_fill_super
testing program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$dir-creat-syz_mount_image$ext4-syz_mount_image$ext4-mount-open-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
detailed listing:
executing program 0:
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$eJzs28tvG0UYAPBv10lLXySU8ugDCBRExCNp0gI9cAAEEgeQkLiUY0jSqtRtUBMkWlVQECpHVIk74ojEX8AJLgg4IXGFO6pUoV4onIzW3q0ftU2SOlmofz9pm5ndsWc+z449u9MNYGhNZP8kETsj4teIGGtk2wtMNP5cv3Zh/q9rF+aTqNXe/COpl/vz2oX5omjxuh15ZjKNSD9JYn+XepfPnT81V60uns3z0yun351ePnf+6ZOn504snlg8M3v06JHDM889O/vMQOK8K2vrvg+WDux99a3Lr88fu/z2j18nRfwdcQzIRL+Dj9VqA66uXLta0slIiQ1hTSoRkXXXaH38j0Ulmp03Fq98XGrjgA1Vy/U4fLEG3MaSKLsFQDmKH/rs+rfYNm/2Ub6rLzYugLK4r+db48hIpNG4MBrtuL4dpImIOHbx7y+yLTbmPgQAQJtvs/nPU93mf2nc21LuznxtaDxfS9kdEXdHxJ6IuCeiXva+iLh/jfV3LpLcPP9Jr6wrsFXK5n/P52tb7fO/tCgyXslzu+qZ0eT4yeriofwzmYzRrVl+pk8d3738y2e9jrXO/7Itq7+YC+btuDKytf01C3Mrc7cSc6urH0XsG+kWf3JjJSCJiL0RsW+ddZx84qsDvY51xl9L+r3TC+3ZAawz1b6MeLzR/xejI/5C0n99cvqOqC4emi7Oipv99POlN3rV/+/9v7Gy/t/e9fy/Ef940rpeu7z2Oi799mnPa5qpdZ3/zR1b8r/vz62snJ2J2JK81mh06/7Z5muLfFE+i3/yYPfxvzuan8T+iMhO4gci4sGIeCjvu4cj4pGIONgZWNpM/vDSo+/0iv+/0P8LHf0/3l6ko/+biS3Ruad7onLq+2/a37GZXN3335F6ajLfs5rvv9ZWJH0aeEsfHgAAAPxPpBGxM5J06kY6TaemGv+Hf09sT6tLyytPHl9678xC4xmB8RhNiztdjfvBjfuhM/llfZGf7cgfzu8bf17ZVs9PzS9VF8oOHobcjh7jP/N7pezWARvO81owvIx/GF7GPwwv4x+GV5fxv62MdgCbr9vv/4fNZG1sMxsDbKqO8W/ZD4aI638YXsY/DK/W8d/3+XvgdrK8Lfo/vC8h0TURaWm1pwN/52SDR8HO8vtrrYmyv5kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG458AAAD//zPc5K4=") (async)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$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")
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x1, 0xa6, &(0x7f00000003c0)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

program did not crash
testing program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$dir-creat-syz_mount_image$ext4-syz_mount_image$ext4-mount-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
detailed listing:
executing program 0:
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$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") (async)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$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")
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc192, 0x4002011, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x1, 0xa6, &(0x7f00000003c0)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

program did not crash
testing program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$dir-creat-syz_mount_image$ext4-syz_mount_image$ext4-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
detailed listing:
executing program 0:
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$eJzs28tvG0UYAPBv10lLXySU8ugDCBRExCNp0gI9cAAEEgeQkLiUY0jSqtRtUBMkWlVQECpHVIk74ojEX8AJLgg4IXGFO6pUoV4onIzW3q0ftU2SOlmofz9pm5ndsWc+z449u9MNYGhNZP8kETsj4teIGGtk2wtMNP5cv3Zh/q9rF+aTqNXe/COpl/vz2oX5omjxuh15ZjKNSD9JYn+XepfPnT81V60uns3z0yun351ePnf+6ZOn504snlg8M3v06JHDM889O/vMQOK8K2vrvg+WDux99a3Lr88fu/z2j18nRfwdcQzIRL+Dj9VqA66uXLta0slIiQ1hTSoRkXXXaH38j0Ulmp03Fq98XGrjgA1Vy/U4fLEG3MaSKLsFQDmKH/rs+rfYNm/2Ub6rLzYugLK4r+db48hIpNG4MBrtuL4dpImIOHbx7y+yLTbmPgQAQJtvs/nPU93mf2nc21LuznxtaDxfS9kdEXdHxJ6IuCeiXva+iLh/jfV3LpLcPP9Jr6wrsFXK5n/P52tb7fO/tCgyXslzu+qZ0eT4yeriofwzmYzRrVl+pk8d3738y2e9jrXO/7Itq7+YC+btuDKytf01C3Mrc7cSc6urH0XsG+kWf3JjJSCJiL0RsW+ddZx84qsDvY51xl9L+r3TC+3ZAawz1b6MeLzR/xejI/5C0n99cvqOqC4emi7Oipv99POlN3rV/+/9v7Gy/t/e9fy/Ef940rpeu7z2Oi799mnPa5qpdZ3/zR1b8r/vz62snJ2J2JK81mh06/7Z5muLfFE+i3/yYPfxvzuan8T+iMhO4gci4sGIeCjvu4cj4pGIONgZWNpM/vDSo+/0iv+/0P8LHf0/3l6ko/+biS3Ruad7onLq+2/a37GZXN3335F6ajLfs5rvv9ZWJH0aeEsfHgAAAPxPpBGxM5J06kY6TaemGv+Hf09sT6tLyytPHl9678xC4xmB8RhNiztdjfvBjfuhM/llfZGf7cgfzu8bf17ZVs9PzS9VF8oOHobcjh7jP/N7pezWARvO81owvIx/GF7GPwwv4x+GV5fxv62MdgCbr9vv/4fNZG1sMxsDbKqO8W/ZD4aI638YXsY/DK/W8d/3+XvgdrK8Lfo/vC8h0TURaWm1pwN/52SDR8HO8vtrrYmyv5kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG458AAAD//zPc5K4=") (async)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$eJzs28tvG0UYAPBv10lLXySU8ugDCBRExCNp0gI9cAAEEgeQkLiUY0jSqtRtUBMkWlVQECpHVIk74ojEX8AJLgg4IXGFO6pUoV4onIzW3q0ftU2SOlmofz9pm5ndsWc+z449u9MNYGhNZP8kETsj4teIGGtk2wtMNP5cv3Zh/q9rF+aTqNXe/COpl/vz2oX5omjxuh15ZjKNSD9JYn+XepfPnT81V60uns3z0yun351ePnf+6ZOn504snlg8M3v06JHDM889O/vMQOK8K2vrvg+WDux99a3Lr88fu/z2j18nRfwdcQzIRL+Dj9VqA66uXLta0slIiQ1hTSoRkXXXaH38j0Ulmp03Fq98XGrjgA1Vy/U4fLEG3MaSKLsFQDmKH/rs+rfYNm/2Ub6rLzYugLK4r+db48hIpNG4MBrtuL4dpImIOHbx7y+yLTbmPgQAQJtvs/nPU93mf2nc21LuznxtaDxfS9kdEXdHxJ6IuCeiXva+iLh/jfV3LpLcPP9Jr6wrsFXK5n/P52tb7fO/tCgyXslzu+qZ0eT4yeriofwzmYzRrVl+pk8d3738y2e9jrXO/7Itq7+YC+btuDKytf01C3Mrc7cSc6urH0XsG+kWf3JjJSCJiL0RsW+ddZx84qsDvY51xl9L+r3TC+3ZAawz1b6MeLzR/xejI/5C0n99cvqOqC4emi7Oipv99POlN3rV/+/9v7Gy/t/e9fy/Ef940rpeu7z2Oi799mnPa5qpdZ3/zR1b8r/vz62snJ2J2JK81mh06/7Z5muLfFE+i3/yYPfxvzuan8T+iMhO4gci4sGIeCjvu4cj4pGIONgZWNpM/vDSo+/0iv+/0P8LHf0/3l6ko/+biS3Ruad7onLq+2/a37GZXN3335F6ajLfs5rvv9ZWJH0aeEsfHgAAAPxPpBGxM5J06kY6TaemGv+Hf09sT6tLyytPHl9678xC4xmB8RhNiztdjfvBjfuhM/llfZGf7cgfzu8bf17ZVs9PzS9VF8oOHobcjh7jP/N7pezWARvO81owvIx/GF7GPwwv4x+GV5fxv62MdgCbr9vv/4fNZG1sMxsDbKqO8W/ZD4aI638YXsY/DK/W8d/3+XvgdrK8Lfo/vC8h0TURaWm1pwN/52SDR8HO8vtrrYmyv5kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG458AAAD//zPc5K4=")
r0 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc192, 0x4002011, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x1, 0xa6, &(0x7f00000003c0)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

program did not crash
testing program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$dir-creat-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
detailed listing:
executing program 0:
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$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") (async)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc192, 0x4002011, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x1, 0xa6, &(0x7f00000003c0)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

program crashed: UBSAN: shift-out-of-bounds in ext4_fill_super
testing program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$dir-creat-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
detailed listing:
executing program 0:
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc192, 0x4002011, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x1, 0xa6, &(0x7f00000003c0)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

program did not crash
testing program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$dir-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
detailed listing:
executing program 0:
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$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") (async)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc192, 0x4002011, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x1, 0xa6, &(0x7f00000003c0)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

program did not crash
testing program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): creat-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
detailed listing:
executing program 0:
creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$eJzs28tvG0UYAPBv10lLXySU8ugDCBRExCNp0gI9cAAEEgeQkLiUY0jSqtRtUBMkWlVQECpHVIk74ojEX8AJLgg4IXGFO6pUoV4onIzW3q0ftU2SOlmofz9pm5ndsWc+z449u9MNYGhNZP8kETsj4teIGGtk2wtMNP5cv3Zh/q9rF+aTqNXe/COpl/vz2oX5omjxuh15ZjKNSD9JYn+XepfPnT81V60uns3z0yun351ePnf+6ZOn504snlg8M3v06JHDM889O/vMQOK8K2vrvg+WDux99a3Lr88fu/z2j18nRfwdcQzIRL+Dj9VqA66uXLta0slIiQ1hTSoRkXXXaH38j0Ulmp03Fq98XGrjgA1Vy/U4fLEG3MaSKLsFQDmKH/rs+rfYNm/2Ub6rLzYugLK4r+db48hIpNG4MBrtuL4dpImIOHbx7y+yLTbmPgQAQJtvs/nPU93mf2nc21LuznxtaDxfS9kdEXdHxJ6IuCeiXva+iLh/jfV3LpLcPP9Jr6wrsFXK5n/P52tb7fO/tCgyXslzu+qZ0eT4yeriofwzmYzRrVl+pk8d3738y2e9jrXO/7Itq7+YC+btuDKytf01C3Mrc7cSc6urH0XsG+kWf3JjJSCJiL0RsW+ddZx84qsDvY51xl9L+r3TC+3ZAawz1b6MeLzR/xejI/5C0n99cvqOqC4emi7Oipv99POlN3rV/+/9v7Gy/t/e9fy/Ef940rpeu7z2Oi799mnPa5qpdZ3/zR1b8r/vz62snJ2J2JK81mh06/7Z5muLfFE+i3/yYPfxvzuan8T+iMhO4gci4sGIeCjvu4cj4pGIONgZWNpM/vDSo+/0iv+/0P8LHf0/3l6ko/+biS3Ruad7onLq+2/a37GZXN3335F6ajLfs5rvv9ZWJH0aeEsfHgAAAPxPpBGxM5J06kY6TaemGv+Hf09sT6tLyytPHl9678xC4xmB8RhNiztdjfvBjfuhM/llfZGf7cgfzu8bf17ZVs9PzS9VF8oOHobcjh7jP/N7pezWARvO81owvIx/GF7GPwwv4x+GV5fxv62MdgCbr9vv/4fNZG1sMxsDbKqO8W/ZD4aI638YXsY/DK/W8d/3+XvgdrK8Lfo/vC8h0TURaWm1pwN/52SDR8HO8vtrrYmyv5kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG458AAAD//zPc5K4=") (async)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc192, 0x4002011, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x1, 0xa6, &(0x7f00000003c0)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

program crashed: UBSAN: shift-out-of-bounds in ext4_fill_super
testing program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): creat-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
detailed listing:
executing program 0:
creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$eJzs28tvG0UYAPBv10lLXySU8ugDCBRExCNp0gI9cAAEEgeQkLiUY0jSqtRtUBMkWlVQECpHVIk74ojEX8AJLgg4IXGFO6pUoV4onIzW3q0ftU2SOlmofz9pm5ndsWc+z449u9MNYGhNZP8kETsj4teIGGtk2wtMNP5cv3Zh/q9rF+aTqNXe/COpl/vz2oX5omjxuh15ZjKNSD9JYn+XepfPnT81V60uns3z0yun351ePnf+6ZOn504snlg8M3v06JHDM889O/vMQOK8K2vrvg+WDux99a3Lr88fu/z2j18nRfwdcQzIRL+Dj9VqA66uXLta0slIiQ1hTSoRkXXXaH38j0Ulmp03Fq98XGrjgA1Vy/U4fLEG3MaSKLsFQDmKH/rs+rfYNm/2Ub6rLzYugLK4r+db48hIpNG4MBrtuL4dpImIOHbx7y+yLTbmPgQAQJtvs/nPU93mf2nc21LuznxtaDxfS9kdEXdHxJ6IuCeiXva+iLh/jfV3LpLcPP9Jr6wrsFXK5n/P52tb7fO/tCgyXslzu+qZ0eT4yeriofwzmYzRrVl+pk8d3738y2e9jrXO/7Itq7+YC+btuDKytf01C3Mrc7cSc6urH0XsG+kWf3JjJSCJiL0RsW+ddZx84qsDvY51xl9L+r3TC+3ZAawz1b6MeLzR/xejI/5C0n99cvqOqC4emi7Oipv99POlN3rV/+/9v7Gy/t/e9fy/Ef940rpeu7z2Oi799mnPa5qpdZ3/zR1b8r/vz62snJ2J2JK81mh06/7Z5muLfFE+i3/yYPfxvzuan8T+iMhO4gci4sGIeCjvu4cj4pGIONgZWNpM/vDSo+/0iv+/0P8LHf0/3l6ko/+biS3Ruad7onLq+2/a37GZXN3335F6ajLfs5rvv9ZWJH0aeEsfHgAAAPxPpBGxM5J06kY6TaemGv+Hf09sT6tLyytPHl9678xC4xmB8RhNiztdjfvBjfuhM/llfZGf7cgfzu8bf17ZVs9PzS9VF8oOHobcjh7jP/N7pezWARvO81owvIx/GF7GPwwv4x+GV5fxv62MdgCbr9vv/4fNZG1sMxsDbKqO8W/ZD4aI638YXsY/DK/W8d/3+XvgdrK8Lfo/vC8h0TURaWm1pwN/52SDR8HO8vtrrYmyv5kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG458AAAD//zPc5K4=")
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc192, 0x4002011, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x1, 0xa6, &(0x7f00000003c0)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

program did not crash
testing program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): creat-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
detailed listing:
executing program 0:
creat(0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$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") (async)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc192, 0x4002011, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x1, 0xa6, &(0x7f00000003c0)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

program did not crash
testing program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): creat-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
detailed listing:
executing program 0:
creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$eJzs28tvG0UYAPBv10lLXySU8ugDCBRExCNp0gI9cAAEEgeQkLiUY0jSqtRtUBMkWlVQECpHVIk74ojEX8AJLgg4IXGFO6pUoV4onIzW3q0ftU2SOlmofz9pm5ndsWc+z449u9MNYGhNZP8kETsj4teIGGtk2wtMNP5cv3Zh/q9rF+aTqNXe/COpl/vz2oX5omjxuh15ZjKNSD9JYn+XepfPnT81V60uns3z0yun351ePnf+6ZOn504snlg8M3v06JHDM889O/vMQOK8K2vrvg+WDux99a3Lr88fu/z2j18nRfwdcQzIRL+Dj9VqA66uXLta0slIiQ1hTSoRkXXXaH38j0Ulmp03Fq98XGrjgA1Vy/U4fLEG3MaSKLsFQDmKH/rs+rfYNm/2Ub6rLzYugLK4r+db48hIpNG4MBrtuL4dpImIOHbx7y+yLTbmPgQAQJtvs/nPU93mf2nc21LuznxtaDxfS9kdEXdHxJ6IuCeiXva+iLh/jfV3LpLcPP9Jr6wrsFXK5n/P52tb7fO/tCgyXslzu+qZ0eT4yeriofwzmYzRrVl+pk8d3738y2e9jrXO/7Itq7+YC+btuDKytf01C3Mrc7cSc6urH0XsG+kWf3JjJSCJiL0RsW+ddZx84qsDvY51xl9L+r3TC+3ZAawz1b6MeLzR/xejI/5C0n99cvqOqC4emi7Oipv99POlN3rV/+/9v7Gy/t/e9fy/Ef940rpeu7z2Oi799mnPa5qpdZ3/zR1b8r/vz62snJ2J2JK81mh06/7Z5muLfFE+i3/yYPfxvzuan8T+iMhO4gci4sGIeCjvu4cj4pGIONgZWNpM/vDSo+/0iv+/0P8LHf0/3l6ko/+biS3Ruad7onLq+2/a37GZXN3335F6ajLfs5rvv9ZWJH0aeEsfHgAAAPxPpBGxM5J06kY6TaemGv+Hf09sT6tLyytPHl9678xC4xmB8RhNiztdjfvBjfuhM/llfZGf7cgfzu8bf17ZVs9PzS9VF8oOHobcjh7jP/N7pezWARvO81owvIx/GF7GPwwv4x+GV5fxv62MdgCbr9vv/4fNZG1sMxsDbKqO8W/ZD4aI638YXsY/DK/W8d/3+XvgdrK8Lfo/vC8h0TURaWm1pwN/52SDR8HO8vtrrYmyv5kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG458AAAD//zPc5K4=") (async)
mount(0x0, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc192, 0x4002011, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x1, 0xa6, &(0x7f00000003c0)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

program did not crash
testing program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): creat-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
detailed listing:
executing program 0:
creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$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") (async)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, 0x0, 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc192, 0x4002011, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x1, 0xa6, &(0x7f00000003c0)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

program did not crash
testing program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): creat-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
detailed listing:
executing program 0:
creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$eJzs28tvG0UYAPBv10lLXySU8ugDCBRExCNp0gI9cAAEEgeQkLiUY0jSqtRtUBMkWlVQECpHVIk74ojEX8AJLgg4IXGFO6pUoV4onIzW3q0ftU2SOlmofz9pm5ndsWc+z449u9MNYGhNZP8kETsj4teIGGtk2wtMNP5cv3Zh/q9rF+aTqNXe/COpl/vz2oX5omjxuh15ZjKNSD9JYn+XepfPnT81V60uns3z0yun351ePnf+6ZOn504snlg8M3v06JHDM889O/vMQOK8K2vrvg+WDux99a3Lr88fu/z2j18nRfwdcQzIRL+Dj9VqA66uXLta0slIiQ1hTSoRkXXXaH38j0Ulmp03Fq98XGrjgA1Vy/U4fLEG3MaSKLsFQDmKH/rs+rfYNm/2Ub6rLzYugLK4r+db48hIpNG4MBrtuL4dpImIOHbx7y+yLTbmPgQAQJtvs/nPU93mf2nc21LuznxtaDxfS9kdEXdHxJ6IuCeiXva+iLh/jfV3LpLcPP9Jr6wrsFXK5n/P52tb7fO/tCgyXslzu+qZ0eT4yeriofwzmYzRrVl+pk8d3738y2e9jrXO/7Itq7+YC+btuDKytf01C3Mrc7cSc6urH0XsG+kWf3JjJSCJiL0RsW+ddZx84qsDvY51xl9L+r3TC+3ZAawz1b6MeLzR/xejI/5C0n99cvqOqC4emi7Oipv99POlN3rV/+/9v7Gy/t/e9fy/Ef940rpeu7z2Oi799mnPa5qpdZ3/zR1b8r/vz62snJ2J2JK81mh06/7Z5muLfFE+i3/yYPfxvzuan8T+iMhO4gci4sGIeCjvu4cj4pGIONgZWNpM/vDSo+/0iv+/0P8LHf0/3l6ko/+biS3Ruad7onLq+2/a37GZXN3335F6ajLfs5rvv9ZWJH0aeEsfHgAAAPxPpBGxM5J06kY6TaemGv+Hf09sT6tLyytPHl9678xC4xmB8RhNiztdjfvBjfuhM/llfZGf7cgfzu8bf17ZVs9PzS9VF8oOHobcjh7jP/N7pezWARvO81owvIx/GF7GPwwv4x+GV5fxv62MdgCbr9vv/4fNZG1sMxsDbKqO8W/ZD4aI638YXsY/DK/W8d/3+XvgdrK8Lfo/vC8h0TURaWm1pwN/52SDR8HO8vtrrYmyv5kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG458AAAD//zPc5K4=") (async)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(0x0, 0x46342, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc192, 0x4002011, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x1, 0xa6, &(0x7f00000003c0)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

program did not crash
testing program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): creat-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
detailed listing:
executing program 0:
creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$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") (async)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc192, 0x4002011, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

program did not crash
testing program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): creat-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
detailed listing:
executing program 0:
creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$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") (async)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc192, 0x4002011, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, 0x0, &(0x7f00000000c0)='GPL\x00', 0x1, 0xa6, &(0x7f00000003c0)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

program did not crash
testing program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): creat-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
detailed listing:
executing program 0:
creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$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") (async)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc192, 0x4002011, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB], &(0x7f00000000c0)='GPL\x00', 0x1, 0xa6, &(0x7f00000003c0)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

program did not crash
testing program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): creat-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
detailed listing:
executing program 0:
creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$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") (async)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc192, 0x4002011, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], 0x0, 0x1, 0xa6, &(0x7f00000003c0)=""/166, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

program did not crash
testing program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): creat-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
detailed listing:
executing program 0:
creat(&(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200010e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x32}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$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") (async)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc192, 0x4002011, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

program did not crash
extracting C reproducer
testing compiled C program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): creat-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
program crashed: UBSAN: shift-out-of-bounds in ext4_fill_super
simplifying C reproducer
testing compiled C program (duration=36.542436931s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): creat-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
program did not crash
testing compiled C program (duration=36.542436931s, {Threaded:true Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): creat-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
program did not crash
testing compiled C program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): creat-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
program crashed: UBSAN: shift-out-of-bounds in ext4_fill_super
testing compiled C program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): creat-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
program crashed: UBSAN: shift-out-of-bounds in ext4_fill_super
testing compiled C program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): creat-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
program crashed: UBSAN: shift-out-of-bounds in ext4_fill_super
testing compiled C program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): creat-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
program crashed: UBSAN: shift-out-of-bounds in ext4_fill_super
testing compiled C program (duration=36.542436931s, {Threaded:true Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): creat-syz_mount_image$ext4-mount-open-mmap-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD
program crashed: UBSAN: shift-out-of-bounds in ext4_fill_super
reproducing took 21m24.037608354s
repro crashed as (corrupted=false):
loop0: detected capacity change from 0 to 512
EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
================================================================================
UBSAN: shift-out-of-bounds in fs/ext4/super.c:4424:27
shift exponent 807429217 is too large for 32-bit type 'int'
CPU: 0 PID: 298 Comm: syz-executor335 Not tainted 5.15.178-syzkaller-00013-g7d1f9b5c2ff5 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0x151/0x1c0 lib/dump_stack.c:106
 dump_stack+0x15/0x20 lib/dump_stack.c:113
 ubsan_epilogue lib/ubsan.c:151 [inline]
 __ubsan_handle_shift_out_of_bounds+0x3bf/0x420 lib/ubsan.c:321
 ext4_fill_super+0x7491/0x96e0 fs/ext4/super.c:4424
 mount_bdev+0x282/0x3b0 fs/super.c:1400
 ext4_mount+0x34/0x40 fs/ext4/super.c:6594
 legacy_get_tree+0xf1/0x190 fs/fs_context.c:611
 vfs_get_tree+0x88/0x290 fs/super.c:1530
 do_new_mount+0x2ba/0xb30 fs/namespace.c:3012
 path_mount+0x671/0x1070 fs/namespace.c:3342
 do_mount fs/namespace.c:3355 [inline]
 __do_sys_mount fs/namespace.c:3563 [inline]
 __se_sys_mount+0x2c4/0x3b0 fs/namespace.c:3540
 __x64_sys_mount+0xbf/0xd0 fs/namespace.c:3540
 x64_sys_call+0x49d/0x9a0 arch/x86/include/generated/asm/syscalls_64.h:166
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x3b/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x66/0xd0
RIP: 0033:0x7f4bd0ed3e2a
Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f4bd0e8f088 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00007f4bd0e8f0a0 RCX: 00007f4bd0ed3e2a
RDX: 0000400000000040 RSI: 0000400000000000 RDI: 00007f4bd0e8f0a0
RBP: 0000400000000000 R08: 00007f4bd0e8f0e0 R09: 00007f4bd0e8f0e0
R10: 000000000200010e R11: 0000000000000246 R12: 0000400000000040
R13: 00007f4bd0e8f0e0 R14: 0000000000000004 R15: 000000000200010e
 </TASK>
================================================================================
EXT4-fs (loop0): fragment/cluster size (2048) != block size (1024)

final repro crashed as (corrupted=false):
loop0: detected capacity change from 0 to 512
EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
================================================================================
UBSAN: shift-out-of-bounds in fs/ext4/super.c:4424:27
shift exponent 807429217 is too large for 32-bit type 'int'
CPU: 0 PID: 298 Comm: syz-executor335 Not tainted 5.15.178-syzkaller-00013-g7d1f9b5c2ff5 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0x151/0x1c0 lib/dump_stack.c:106
 dump_stack+0x15/0x20 lib/dump_stack.c:113
 ubsan_epilogue lib/ubsan.c:151 [inline]
 __ubsan_handle_shift_out_of_bounds+0x3bf/0x420 lib/ubsan.c:321
 ext4_fill_super+0x7491/0x96e0 fs/ext4/super.c:4424
 mount_bdev+0x282/0x3b0 fs/super.c:1400
 ext4_mount+0x34/0x40 fs/ext4/super.c:6594
 legacy_get_tree+0xf1/0x190 fs/fs_context.c:611
 vfs_get_tree+0x88/0x290 fs/super.c:1530
 do_new_mount+0x2ba/0xb30 fs/namespace.c:3012
 path_mount+0x671/0x1070 fs/namespace.c:3342
 do_mount fs/namespace.c:3355 [inline]
 __do_sys_mount fs/namespace.c:3563 [inline]
 __se_sys_mount+0x2c4/0x3b0 fs/namespace.c:3540
 __x64_sys_mount+0xbf/0xd0 fs/namespace.c:3540
 x64_sys_call+0x49d/0x9a0 arch/x86/include/generated/asm/syscalls_64.h:166
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x3b/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x66/0xd0
RIP: 0033:0x7f4bd0ed3e2a
Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f4bd0e8f088 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00007f4bd0e8f0a0 RCX: 00007f4bd0ed3e2a
RDX: 0000400000000040 RSI: 0000400000000000 RDI: 00007f4bd0e8f0a0
RBP: 0000400000000000 R08: 00007f4bd0e8f0e0 R09: 00007f4bd0e8f0e0
R10: 000000000200010e R11: 0000000000000246 R12: 0000400000000040
R13: 00007f4bd0e8f0e0 R14: 0000000000000004 R15: 000000000200010e
 </TASK>
================================================================================
EXT4-fs (loop0): fragment/cluster size (2048) != block size (1024)