syzbot

 sign-in | mailing list | source | docs
🐞 Open [110]
🐞 Fixed [23]
🐞 Invalid [325]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

kernel panic: EXT4-fs (device loop6): panic forced after error

Status: premoderation: reported syz repro on 2025/08/08 18:17
Bug presence: origin:lts
[Documentation on labels]
Reported-by: syzbot+28cba1c249ecc60d1beb@syzkaller.appspotmail.com
First crash: 13d, last: 13d
Bug presence (2)
Date Name Commit Repro Result
2025/08/10 lts (merge base) c79648372d02 syz [report] kernel panic: EXT4-fs (device loop1): panic forced after error
2025/08/10 upstream (ToT) 561c80369df0 syz Didn't crash

Sample crash report:
EXT4-fs error (device loop6): ext4_get_branch:178: inode #13: block 2: comm syz.6.17: invalid block
Kernel panic - not syncing: EXT4-fs (device loop6): panic forced after error
CPU: 0 PID: 422 Comm: syz.6.17 Not tainted 5.15.189-syzkaller-android13-5.15.189_r00 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
Call Trace:
 <TASK>
 __dump_stack+0x21/0x30 lib/dump_stack.c:88
 dump_stack_lvl+0xee/0x150 lib/dump_stack.c:106
 dump_stack+0x15/0x20 lib/dump_stack.c:113
 panic+0x283/0x760 kernel/panic.c:309
 ext4_handle_error+0x6f4/0x7b0 fs/ext4/super.c:667
 __ext4_error_inode+0x22b/0x4d0 fs/ext4/super.c:787
 ext4_check_blockref+0x1c6/0x1d0 fs/ext4/block_validity.c:363
 ext4_get_branch+0x424/0x7c0 fs/ext4/indirect.c:178
 ext4_ind_map_blocks+0x255/0x1f40 fs/ext4/indirect.c:554
 ext4_map_blocks+0x38c/0x1b20 fs/ext4/inode.c:603
 _ext4_get_block+0x1da/0x4e0 fs/ext4/inode.c:817
 ext4_get_block fs/ext4/inode.c:834 [inline]
 __ext4_block_zero_page_range fs/ext4/inode.c:3781 [inline]
 ext4_block_zero_page_range+0x39d/0x9b0 fs/ext4/inode.c:3860
 ext4_block_truncate_page fs/ext4/inode.c:3884 [inline]
 ext4_truncate+0x8c3/0xfa0 fs/ext4/inode.c:4261
 ext4_process_orphan+0x1d9/0x320 fs/ext4/orphan.c:339
 ext4_orphan_cleanup+0x9d1/0x10c0 fs/ext4/orphan.c:474
 ext4_fill_super+0x8912/0x9030 fs/ext4/super.c:4964
 mount_bdev+0x2ae/0x3e0 fs/super.c:1400
 ext4_mount+0x34/0x40 fs/ext4/super.c:6621
 legacy_get_tree+0xed/0x190 fs/fs_context.c:611
 vfs_get_tree+0x89/0x260 fs/super.c:1530
 do_new_mount+0x25a/0xa20 fs/namespace.c:3014
 path_mount+0x675/0x1020 fs/namespace.c:3344
 do_mount fs/namespace.c:3357 [inline]
 __do_sys_mount fs/namespace.c:3565 [inline]
 __se_sys_mount+0x318/0x380 fs/namespace.c:3542
 __x64_sys_mount+0xbf/0xd0 fs/namespace.c:3542
 x64_sys_call+0x6bf/0x9a0 arch/x86/include/generated/asm/syscalls_64.h:166
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x66/0xd0
RIP: 0033:0x7f0856001be9
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f0855e72038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00007f0856228fa0 RCX: 00007f0856001be9
RDX: 00002000000001c0 RSI: 0000200000000240 RDI: 0000200000000000
RBP: 00007f0856084e19 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007f0856229038 R14: 00007f0856228fa0 R15: 00007ffda6be8ba8
 </TASK>
Kernel Offset: disabled
Rebooting in 86400 seconds..

Crashes (2):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2025/08/08 19:22 android13-5.15-lts f32b52534f1d 32a0e5ed .config console log report syz / log [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] ci2-android-5-15 kernel panic: EXT4-fs (device loop6): panic forced after error
2025/08/08 18:16 android13-5.15-lts f32b52534f1d 32a0e5ed .config console log report syz / log [disk image] [vmlinux] [kernel image] [mounted in repro (corrupt fs)] ci2-android-5-15 kernel panic: EXT4-fs (device loop6): panic forced after error
* Struck through repros no longer work on HEAD.