./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3803915654
<...>
Warning: Permanently added '10.128.1.132' (ECDSA) to the list of known hosts.
execve("./syz-executor3803915654", ["./syz-executor3803915654"], 0x7ffe7046f810 /* 10 vars */) = 0
brk(NULL) = 0x5555571d4000
brk(0x5555571d4c40) = 0x5555571d4c40
arch_prctl(ARCH_SET_FS, 0x5555571d4300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor3803915654", 4096) = 28
brk(0x5555571f5c40) = 0x5555571f5c40
brk(0x5555571f6000) = 0x5555571f6000
mprotect(0x7f74ba6af000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
memfd_create("syzkaller", 0) = 3
mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f74b21f6000
write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
munmap(0x7f74b21f6000, 262144) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
ioctl(4, LOOP_SET_FD, 3) = 0
close(3) = 0
mkdir("./file0", 0777) = 0
syzkaller login: [ 77.165544][ T5007] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5007 'syz-executor380'
[ 77.184078][ T5007] loop0: detected capacity change from 0 to 512
[ 77.201490][ T5007] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2264: inode #15: comm syz-executor380: corrupted in-inode xattr: bad e_name length
mount("/dev/loop0", "./file0", "ext4", MS_NOATIME|MS_NODIRATIME, ",errors=continue") = 0
openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
ioctl(4, LOOP_CLR_FD) = 0
close(4) = 0
[ 77.217006][ T5007] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz-executor380: couldn't read orphan inode 15 (err -117)
[ 77.229626][ T5007] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback.
[ 77.251592][ T5007] EXT4-fs warning (device loop0): __ext4fs_dirhash:281: invalid/unsupported hash tree version 135
[ 77.263073][ T5007] ------------[ cut here ]------------
[ 77.268569][ T5007] WARNING: CPU: 0 PID: 5007 at fs/ext4/hash.c:284 __ext4fs_dirhash+0xa34/0xb40
[ 77.277772][ T5007] Modules linked in:
[ 77.281796][ T5007] CPU: 0 PID: 5007 Comm: syz-executor380 Not tainted 6.4.0-rc1-next-20230510-syzkaller #0
[ 77.291997][ T5007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 77.302127][ T5007] RIP: 0010:__ext4fs_dirhash+0xa34/0xb40
[ 77.307791][ T5007] Code: 00 0f 85 16 01 00 00 48 8b 04 24 41 89 d8 48 c7 c1 60 d2 62 8a ba 19 01 00 00 48 c7 c6 80 d3 62 8a 48 8b 78 28 e8 9c 7a 12 00 <0f> 0b 41 bc ea ff ff ff e9 2a fd ff ff e8 aa 94 5a ff 8b 9c 24 88
[ 77.327586][ T5007] RSP: 0018:ffffc900039cf768 EFLAGS: 00010286
[ 77.334090][ T5007] RAX: 0000000000000000 RBX: 0000000000000087 RCX: 0000000000000000
[ 77.342146][ T5007] RDX: ffff88801ed61dc0 RSI: ffffffff823bfd38 RDI: 0000000000000005
[ 77.350196][ T5007] RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000
[ 77.358211][ T5007] R10: 0000000080000000 R11: 0000000000000001 R12: 000000005948191c
[ 77.366764][ T5007] R13: 0000000000000001 R14: dffffc0000000000 R15: ffff88807c0ba0c4
[ 77.374794][ T5007] FS: 00005555571d4300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[ 77.383797][ T5007] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 77.390436][ T5007] CR2: 000000000045ede0 CR3: 0000000073ff4000 CR4: 00000000003506f0
[ 77.398421][ T5007] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 77.406476][ T5007] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 77.414606][ T5007] Call Trace:
[ 77.417911][ T5007] <TASK>
[ 77.420901][ T5007] ? str2hashbuf_signed+0x2a0/0x2a0
[ 77.426154][ T5007] ? str2hashbuf_unsigned+0x2a0/0x2a0
[ 77.431601][ T5007] ? ext4_getblk+0x49b/0x850
[ 77.436253][ T5007] ? ext4_iomap_overwrite_begin+0xb0/0xb0
[ 77.442053][ T5007] ? is_bpf_text_address+0x4/0x1b0
[ 77.447236][ T5007] ? is_bpf_text_address+0x9d/0x1b0
[ 77.452538][ T5007] ext4fs_dirhash+0x13e/0x2e0
[ 77.457293][ T5007] ? __ext4fs_dirhash+0xb40/0xb40
[ 77.462455][ T5007] htree_dirblock_to_tree+0x81e/0xc90
[ 77.467936][ T5007] ? dx_probe+0x1990/0x1990
[ 77.472551][ T5007] ? kasan_set_track+0x25/0x30
[ 77.477357][ T5007] ? __kasan_kmalloc+0xa2/0xb0
[ 77.482185][ T5007] ? ext4_readdir+0x246c/0x35f0
[ 77.487096][ T5007] ? iterate_dir+0x56e/0x6f0
[ 77.491757][ T5007] ? __x64_sys_getdents64+0x13e/0x2c0
[ 77.497172][ T5007] ? do_syscall_64+0x39/0xb0
[ 77.501864][ T5007] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 77.508012][ T5007] ext4_htree_fill_tree+0x327/0xc40
[ 77.513299][ T5007] ? ext4_rename_dir_finish+0x450/0x450
[ 77.518894][ T5007] ? __kmem_cache_alloc_node+0x48/0x320
[ 77.524542][ T5007] ? inode_query_iversion+0x10e/0x180
[ 77.529979][ T5007] ? inode_maybe_inc_iversion+0x190/0x190
[ 77.535788][ T5007] ext4_readdir+0x1d18/0x35f0
[ 77.540599][ T5007] ? __ext4_check_dir_entry+0x8b0/0x8b0
[ 77.546192][ T5007] ? lock_sync+0x190/0x190
[ 77.550782][ T5007] ? rcu_is_watching+0x12/0xb0
[ 77.555587][ T5007] ? trace_lock_acquire+0x12d/0x180
[ 77.560873][ T5007] ? iterate_dir+0xd1/0x6f0
[ 77.565414][ T5007] ? lock_acquire+0x32/0xc0
[ 77.569941][ T5007] ? iterate_dir+0xd1/0x6f0
[ 77.574535][ T5007] iterate_dir+0x56e/0x6f0
[ 77.579013][ T5007] __x64_sys_getdents64+0x13e/0x2c0
[ 77.584316][ T5007] ? __ia32_sys_getdents+0x2c0/0x2c0
[ 77.589655][ T5007] ? compat_fillonedir+0x470/0x470
[ 77.594854][ T5007] ? lockdep_hardirqs_on+0x7d/0x100
[ 77.600163][ T5007] ? _raw_spin_unlock_irq+0x2e/0x50
[ 77.605426][ T5007] ? ptrace_notify+0xfe/0x140
[ 77.610187][ T5007] do_syscall_64+0x39/0xb0
[ 77.614716][ T5007] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 77.621373][ T5007] RIP: 0033:0x7f74ba642749
[ 77.625838][ T5007] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 77.645566][ T5007] RSP: 002b:00007fff0b1f4e88 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 77.654088][ T5007] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f74ba642749
[ 77.662182][ T5007] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 77.670243][ T5007] RBP: 00007f74ba602010 R08: 000000000000044b R09: 0000000000000000
[ 77.678248][ T5007] R10: 00007fff0b1f4d40 R11: 0000000000000246 R12: 00007f74ba6020a0
[ 77.686336][ T5007] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 77.694704][ T5007] </TASK>
[ 77.697751][ T5007] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 77.705175][ T5007] CPU: 0 PID: 5007 Comm: syz-executor380 Not tainted 6.4.0-rc1-next-20230510-syzkaller #0
[ 77.715117][ T5007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 77.725279][ T5007] Call Trace:
[ 77.728579][ T5007] <TASK>
[ 77.731537][ T5007] dump_stack_lvl+0xd9/0x150
[ 77.736162][ T5007] panic+0x686/0x730
[ 77.740083][ T5007] ? panic_smp_self_stop+0xa0/0xa0
[ 77.745265][ T5007] ? show_trace_log_lvl+0x285/0x390
[ 77.750524][ T5007] ? __ext4fs_dirhash+0xa34/0xb40
[ 77.755575][ T5007] check_panic_on_warn+0xb1/0xc0
[ 77.760574][ T5007] __warn+0xf2/0x390
[ 77.764502][ T5007] ? __ext4fs_dirhash+0xa34/0xb40
[ 77.769553][ T5007] report_bug+0x2da/0x500
[ 77.774082][ T5007] handle_bug+0x3c/0x70
[ 77.778296][ T5007] exc_invalid_op+0x18/0x50
[ 77.782847][ T5007] asm_exc_invalid_op+0x1a/0x20
[ 77.787817][ T5007] RIP: 0010:__ext4fs_dirhash+0xa34/0xb40
[ 77.793507][ T5007] Code: 00 0f 85 16 01 00 00 48 8b 04 24 41 89 d8 48 c7 c1 60 d2 62 8a ba 19 01 00 00 48 c7 c6 80 d3 62 8a 48 8b 78 28 e8 9c 7a 12 00 <0f> 0b 41 bc ea ff ff ff e9 2a fd ff ff e8 aa 94 5a ff 8b 9c 24 88
[ 77.813239][ T5007] RSP: 0018:ffffc900039cf768 EFLAGS: 00010286
[ 77.819320][ T5007] RAX: 0000000000000000 RBX: 0000000000000087 RCX: 0000000000000000
[ 77.827328][ T5007] RDX: ffff88801ed61dc0 RSI: ffffffff823bfd38 RDI: 0000000000000005
[ 77.835420][ T5007] RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000
[ 77.843409][ T5007] R10: 0000000080000000 R11: 0000000000000001 R12: 000000005948191c
[ 77.851393][ T5007] R13: 0000000000000001 R14: dffffc0000000000 R15: ffff88807c0ba0c4
[ 77.859387][ T5007] ? __ext4_warning+0x128/0x1f0
[ 77.864264][ T5007] ? __ext4fs_dirhash+0xa34/0xb40
[ 77.869325][ T5007] ? str2hashbuf_signed+0x2a0/0x2a0
[ 77.874567][ T5007] ? str2hashbuf_unsigned+0x2a0/0x2a0
[ 77.879978][ T5007] ? ext4_getblk+0x49b/0x850
[ 77.884615][ T5007] ? ext4_iomap_overwrite_begin+0xb0/0xb0
[ 77.890395][ T5007] ? is_bpf_text_address+0x4/0x1b0
[ 77.895571][ T5007] ? is_bpf_text_address+0x9d/0x1b0
[ 77.900806][ T5007] ext4fs_dirhash+0x13e/0x2e0
[ 77.905570][ T5007] ? __ext4fs_dirhash+0xb40/0xb40
[ 77.910639][ T5007] htree_dirblock_to_tree+0x81e/0xc90
[ 77.916080][ T5007] ? dx_probe+0x1990/0x1990
[ 77.920632][ T5007] ? kasan_set_track+0x25/0x30
[ 77.925411][ T5007] ? __kasan_kmalloc+0xa2/0xb0
[ 77.930196][ T5007] ? ext4_readdir+0x246c/0x35f0
[ 77.935086][ T5007] ? iterate_dir+0x56e/0x6f0
[ 77.939777][ T5007] ? __x64_sys_getdents64+0x13e/0x2c0
[ 77.945260][ T5007] ? do_syscall_64+0x39/0xb0
[ 77.949878][ T5007] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 77.955994][ T5007] ext4_htree_fill_tree+0x327/0xc40
[ 77.961271][ T5007] ? ext4_rename_dir_finish+0x450/0x450
[ 77.966861][ T5007] ? __kmem_cache_alloc_node+0x48/0x320
[ 77.972437][ T5007] ? inode_query_iversion+0x10e/0x180
[ 77.977859][ T5007] ? inode_maybe_inc_iversion+0x190/0x190
[ 77.983634][ T5007] ext4_readdir+0x1d18/0x35f0
[ 77.988364][ T5007] ? __ext4_check_dir_entry+0x8b0/0x8b0
[ 77.993947][ T5007] ? lock_sync+0x190/0x190
[ 77.998408][ T5007] ? rcu_is_watching+0x12/0xb0
[ 78.003229][ T5007] ? trace_lock_acquire+0x12d/0x180
[ 78.008455][ T5007] ? iterate_dir+0xd1/0x6f0
[ 78.012990][ T5007] ? lock_acquire+0x32/0xc0
[ 78.017530][ T5007] ? iterate_dir+0xd1/0x6f0
[ 78.022067][ T5007] iterate_dir+0x56e/0x6f0
[ 78.026556][ T5007] __x64_sys_getdents64+0x13e/0x2c0
[ 78.031774][ T5007] ? __ia32_sys_getdents+0x2c0/0x2c0
[ 78.037105][ T5007] ? compat_fillonedir+0x470/0x470
[ 78.042247][ T5007] ? lockdep_hardirqs_on+0x7d/0x100
[ 78.047484][ T5007] ? _raw_spin_unlock_irq+0x2e/0x50
[ 78.052731][ T5007] ? ptrace_notify+0xfe/0x140
[ 78.057443][ T5007] do_syscall_64+0x39/0xb0
[ 78.061888][ T5007] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 78.067824][ T5007] RIP: 0033:0x7f74ba642749
[ 78.072263][ T5007] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 78.091888][ T5007] RSP: 002b:00007fff0b1f4e88 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 78.100319][ T5007] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f74ba642749
[ 78.108303][ T5007] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 78.116299][ T5007] RBP: 00007f74ba602010 R08: 000000000000044b R09: 0000000000000000
[ 78.124281][ T5007] R10: 00007fff0b1f4d40 R11: 0000000000000246 R12: 00007f74ba6020a0
[ 78.132271][ T5007] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 78.140272][ T5007] </TASK>
[ 78.143540][ T5007] Kernel Offset: disabled
[ 78.147959][ T5007] Rebooting in 86400 seconds..