Extracting prog: 1m2.205095331s
Minimizing prog: 5m32.534705695s
Simplifying prog options: 0s
Extracting C: 29.868968071s
Simplifying C: 9m43.328921246s
extracting reproducer from 1 programs
testing a last program of every proc
single: executing 1 programs separately with timeout 30s
testing program (duration=30s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-mount
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000001c0)={[{@dax_never}, {@dioread_nolock}, {@barrier}, {@delalloc}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [], 0x2e}, 0x84, 0x47a, &(0x7f0000000b00)="$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")
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000180)='proc\x00', 0x0, 0x0)
program crashed: WARNING in inode_set_cached_link
single: successfully extracted reproducer
found reproducer with 2 syscalls
minimizing guilty program
testing program (duration=51.252376626s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000001c0)={[{@dax_never}, {@dioread_nolock}, {@barrier}, {@delalloc}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [], 0x2e}, 0x84, 0x47a, &(0x7f0000000b00)="$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")
program did not crash
testing program (duration=51.252376626s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mount
detailed listing:
executing program 0:
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000180)='proc\x00', 0x0, 0x0)
program did not crash
testing program (duration=51.252376626s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-mount
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000001c0)={[{@dax_never}, {@dioread_nolock}, {@barrier}, {@delalloc}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [], 0x2e}, 0x84, 0x47a, &(0x7f0000000b00)="$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")
mount(0x0, 0x0, &(0x7f0000000180)='proc\x00', 0x0, 0x0)
program did not crash
testing program (duration=51.252376626s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-mount
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000001c0)={[{@dax_never}, {@dioread_nolock}, {@barrier}, {@delalloc}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [], 0x2e}, 0x84, 0x47a, &(0x7f0000000b00)="$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")
mount(0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x0, 0x0)
program did not crash
extracting C reproducer
testing compiled C program (duration=51.252376626s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-mount
program crashed: WARNING in inode_set_cached_link
simplifying C reproducer
testing compiled C program (duration=51.252376626s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-mount
program crashed: WARNING in inode_set_cached_link
testing compiled C program (duration=51.252376626s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-mount
program did not crash
testing compiled C program (duration=51.252376626s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-mount
program crashed: WARNING in inode_set_cached_link
testing compiled C program (duration=51.252376626s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:true Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-mount
program crashed: WARNING in inode_set_cached_link
testing compiled C program (duration=51.252376626s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-mount
program crashed: WARNING in inode_set_cached_link
testing compiled C program (duration=51.252376626s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-mount
program did not crash
testing compiled C program (duration=51.252376626s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-mount
program crashed: WARNING in inode_set_cached_link
testing compiled C program (duration=51.252376626s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:true HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-mount
program crashed: WARNING in inode_set_cached_link
reproducing took 16m47.937739261s
repro crashed as (corrupted=false):
EXT4-fs error (device loop0): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz-executor129: bad entry in directory: rec_len % 4 != 0 - offset=108, inode=4294901777, rec_len=65535, size=1024 fake=0
------------[ cut here ]------------
bad length passed for symlink [/tmp/syz-imagegen2884317625/�] (got 39, expected 29)
WARNING: CPU: 0 PID: 5814 at ./include/linux/fs.h:803 inode_set_cached_link+0xd0/0x110 include/linux/fs.h:802
Modules linked in:
CPU: 0 UID: 0 PID: 5814 Comm: syz-executor129 Not tainted 6.14.0-rc1-syzkaller-00187-g8f6629c004b1 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
RIP: 0010:inode_set_cached_link+0xd0/0x110 include/linux/fs.h:802
Code: 41 5f 5d c3 cc cc cc cc e8 ad ff 46 ff c6 05 9a ea 8b 0d 01 90 48 c7 c7 20 be 1d 8c 4c 89 f6 44 89 fa 89 e9 e8 71 aa 07 ff 90 <0f> 0b 90 90 e9 6a ff ff ff 89 f9 80 e1 07 80 c1 03 38 c1 7c a1 e8
RSP: 0018:ffffc900040bf698 EFLAGS: 00010246
RAX: 1ea22670bb491100 RBX: ffff888078b465c0 RCX: ffff8880357abc00
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 000000000000001d R08: ffffffff81800b32 R09: 1ffff110170c519a
R10: dffffc0000000000 R11: ffffed10170c519b R12: ffff888078b465c0
R13: dffffc0000000000 R14: ffff888078b46310 R15: 0000000000000027
FS: 0000555586f04380(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007ffd5c5edf98 CR3: 000000003435e000 CR4: 00000000003526f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
__ext4_iget+0x2ea4/0x3f30 fs/ext4/inode.c:5012
ext4_lookup+0x3e3/0x750 fs/ext4/namei.c:1813
__lookup_slow+0x296/0x400 fs/namei.c:1793
lookup_slow+0x53/0x70 fs/namei.c:1810
walk_component+0x2e1/0x410 fs/namei.c:2114
lookup_last fs/namei.c:2612 [inline]
path_lookupat+0x16f/0x450 fs/namei.c:2636
filename_lookup+0x2a3/0x670 fs/namei.c:2665
user_path_at+0x3a/0x60 fs/namei.c:3072
ksys_umount fs/namespace.c:2071 [inline]
__do_sys_umount fs/namespace.c:2079 [inline]
__se_sys_umount fs/namespace.c:2077 [inline]
__x64_sys_umount+0xf1/0x170 fs/namespace.c:2077
do_syscall_x64 arch/x86/entry/common.c:52 [inline]
do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f8c57fcb487
Code: 07 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8
RSP: 002b:00007ffd5c5ee748 EFLAGS: 00000206 ORIG_RAX: 00000000000000a6
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f8c57fcb487
RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd5c5ee800
RBP: 00007ffd5c5ee800 R08: 0000000000000000 R09: 0000000000000000
R10: 00000000ffffffff R11: 0000000000000206 R12: 00007ffd5c5ef8f0
R13: 0000555586f15740 R14: 0000000000000001 R15: 431bde82d7b634db
final repro crashed as (corrupted=false):
EXT4-fs error (device loop0): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz-executor129: bad entry in directory: rec_len % 4 != 0 - offset=108, inode=4294901777, rec_len=65535, size=1024 fake=0
------------[ cut here ]------------
bad length passed for symlink [/tmp/syz-imagegen2884317625/�] (got 39, expected 29)
WARNING: CPU: 0 PID: 5814 at ./include/linux/fs.h:803 inode_set_cached_link+0xd0/0x110 include/linux/fs.h:802
Modules linked in:
CPU: 0 UID: 0 PID: 5814 Comm: syz-executor129 Not tainted 6.14.0-rc1-syzkaller-00187-g8f6629c004b1 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
RIP: 0010:inode_set_cached_link+0xd0/0x110 include/linux/fs.h:802
Code: 41 5f 5d c3 cc cc cc cc e8 ad ff 46 ff c6 05 9a ea 8b 0d 01 90 48 c7 c7 20 be 1d 8c 4c 89 f6 44 89 fa 89 e9 e8 71 aa 07 ff 90 <0f> 0b 90 90 e9 6a ff ff ff 89 f9 80 e1 07 80 c1 03 38 c1 7c a1 e8
RSP: 0018:ffffc900040bf698 EFLAGS: 00010246
RAX: 1ea22670bb491100 RBX: ffff888078b465c0 RCX: ffff8880357abc00
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 000000000000001d R08: ffffffff81800b32 R09: 1ffff110170c519a
R10: dffffc0000000000 R11: ffffed10170c519b R12: ffff888078b465c0
R13: dffffc0000000000 R14: ffff888078b46310 R15: 0000000000000027
FS: 0000555586f04380(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007ffd5c5edf98 CR3: 000000003435e000 CR4: 00000000003526f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
__ext4_iget+0x2ea4/0x3f30 fs/ext4/inode.c:5012
ext4_lookup+0x3e3/0x750 fs/ext4/namei.c:1813
__lookup_slow+0x296/0x400 fs/namei.c:1793
lookup_slow+0x53/0x70 fs/namei.c:1810
walk_component+0x2e1/0x410 fs/namei.c:2114
lookup_last fs/namei.c:2612 [inline]
path_lookupat+0x16f/0x450 fs/namei.c:2636
filename_lookup+0x2a3/0x670 fs/namei.c:2665
user_path_at+0x3a/0x60 fs/namei.c:3072
ksys_umount fs/namespace.c:2071 [inline]
__do_sys_umount fs/namespace.c:2079 [inline]
__se_sys_umount fs/namespace.c:2077 [inline]
__x64_sys_umount+0xf1/0x170 fs/namespace.c:2077
do_syscall_x64 arch/x86/entry/common.c:52 [inline]
do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83
entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f8c57fcb487
Code: 07 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8
RSP: 002b:00007ffd5c5ee748 EFLAGS: 00000206 ORIG_RAX: 00000000000000a6
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f8c57fcb487
RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd5c5ee800
RBP: 00007ffd5c5ee800 R08: 0000000000000000 R09: 0000000000000000
R10: 00000000ffffffff R11: 0000000000000206 R12: 00007ffd5c5ef8f0
R13: 0000555586f15740 R14: 0000000000000001 R15: 431bde82d7b634db