Extracting prog: 1m24.339056431s
Minimizing prog: 10m22.553282845s
Simplifying prog options: 0s
Extracting C: 37.053779653s
Simplifying C: 10m45.347211191s


extracting reproducer from 1 programs
testing a last program of every proc
single: executing 1 programs separately with timeout 30s
testing program (duration=30s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-syz_mount_image$ext4-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
detailed listing:
executing program 0:
open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x45)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x185502, 0x28)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000a00)={[{@jqfmt_vfsv1}, {@nobarrier}, {@noacl}, {@data_err_abort}, {@nodelalloc}, {@noquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000000480)="$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") (async)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000a00)={[{@jqfmt_vfsv1}, {@nobarrier}, {@noacl}, {@data_err_abort}, {@nodelalloc}, {@noquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000000480)="$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")
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})

program crashed: UBSAN: shift-out-of-bounds in ext4_fill_super
single: successfully extracted reproducer
found reproducer with 7 syscalls
minimizing guilty program
testing program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-syz_mount_image$ext4-syz_mount_image$ext4-mmap
detailed listing:
executing program 0:
open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x45)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x185502, 0x28)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000a00)={[{@jqfmt_vfsv1}, {@nobarrier}, {@noacl}, {@data_err_abort}, {@nodelalloc}, {@noquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000000480)="$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") (async)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000a00)={[{@jqfmt_vfsv1}, {@nobarrier}, {@noacl}, {@data_err_abort}, {@nodelalloc}, {@noquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000000480)="$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")
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)

program did not crash
testing program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-syz_mount_image$ext4-syz_mount_image$ext4-ioctl$KVM_SET_USER_MEMORY_REGION
detailed listing:
executing program 0:
open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x45)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x185502, 0x28)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000a00)={[{@jqfmt_vfsv1}, {@nobarrier}, {@noacl}, {@data_err_abort}, {@nodelalloc}, {@noquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000000480)="$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") (async)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000a00)={[{@jqfmt_vfsv1}, {@nobarrier}, {@noacl}, {@data_err_abort}, {@nodelalloc}, {@noquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000000480)="$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")
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})

program did not crash
testing program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
detailed listing:
executing program 0:
open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x45)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x185502, 0x28)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000a00)={[{@jqfmt_vfsv1}, {@nobarrier}, {@noacl}, {@data_err_abort}, {@nodelalloc}, {@noquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000000480)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0XUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo+iBC56U2XrUmbddnSNZ8P3HJO7k3O+ebe7+m5uTckgIE1lv0pRLwcEd8kEQcjIsnXDUe+cmx1u5X7V6ezJYl6/dO/ksZ2Wb35Ws3n7c8rL0XEb19FHC+sb7e6tDxXKpfThbw+Xpu/NF5dWj5xYb40m86mFyenpk69PTX53rvv9CzWN87+8/0ntz889fXRle9+uXvoZhKn40C+rjWOJ3CttTIWY/l7MhKnH9lwogeNbSdJvzvAlgzleT4S2RhwMIbyrAd2vi8jog4MqET+w4BqzgOa5/Y9Og9+btz7YPUEaH38w6ufjcSexrnRvpXkoTOj7Hx3tAftZ238+uetm9kSvfscAmBT165HxMnh4fXjX5KPf1t3sottHm3D+AfPzu1s/vNmu/lPYW3+E23mP/vb5O5WbJ7/hbs9aKajbP73ftv579pFq9GhvPZCY843kpy/UE6zse3FiDgWI7uz+kbXc06t3Kl3Wtc6/8uWrP3mXDDvx93h3Q8/Z6ZUKz1JzK3uXY94pe38N1nb/0mb/Z+9H2e7bONIeuu1Tus2j//pqv8U8Xrb/f/gilay8fXJ8cbxMN48Ktb7+8aR3zu13+/4s/2/b+P4R5PW67XVx2/jxz3/pp3WPRR/dH/870o+a5R35Y9dKdVqCxMRu5KP1z8++eC5zXpz+yz+Y0c3Hv/aHf97I+LzLuO/cfjnV7uKv0/7f+ax9v/jF+589MUPndrvbvx7q1E6lj/SzfjXbQef5L0DAAAAAACA7aYQEQciKRTXyoVCsbh6f8fh2FcoV6q14+crixdnovFd2dEYKTSvdB9suR9iIr8ftlmffKQ+FRGHIuLbob2NenG6Up7pd/AAAAAAAAAAAAAAAAAAAACwTezv8P3/zB9D/e4d8NT5yW8YXJvmfy9+6QnYlvz/h8El/2FwyX8YXPIfBpf8h8El/2FwyX8YWP/V6/V+9wEAAAAAAAAAAAAAAAAAAAAAAAAAAAB2krNnzmRLfeX+1emsPnN5aXGucvnETFqdK84vThenKwuXirOVymw5LU5X5jd7vXKlcmliMhavjNfSam28urR8br6yeLF27sJ8aTY9l448k6gAAAAAAAAAAAAAAAAAAADg+VJdWp4rlcvpgoLClgrD26MbO66Q5Bnar270eWACAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgBb/BwAA//8g7Tgx") (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})

program crashed: UBSAN: shift-out-of-bounds in ext4_fill_super
testing program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
detailed listing:
executing program 0:
open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x45)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x185502, 0x28)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})

program did not crash
testing program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
detailed listing:
executing program 0:
open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x45)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000a00)={[{@jqfmt_vfsv1}, {@nobarrier}, {@noacl}, {@data_err_abort}, {@nodelalloc}, {@noquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000000480)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0XUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo+iBC56U2XrUmbddnSNZ8P3HJO7k3O+ebe7+m5uTckgIE1lv0pRLwcEd8kEQcjIsnXDUe+cmx1u5X7V6ezJYl6/dO/ksZ2Wb35Ws3n7c8rL0XEb19FHC+sb7e6tDxXKpfThbw+Xpu/NF5dWj5xYb40m86mFyenpk69PTX53rvv9CzWN87+8/0ntz889fXRle9+uXvoZhKn40C+rjWOJ3CttTIWY/l7MhKnH9lwogeNbSdJvzvAlgzleT4S2RhwMIbyrAd2vi8jog4MqET+w4BqzgOa5/Y9Og9+btz7YPUEaH38w6ufjcSexrnRvpXkoTOj7Hx3tAftZ238+uetm9kSvfscAmBT165HxMnh4fXjX5KPf1t3sottHm3D+AfPzu1s/vNmu/lPYW3+E23mP/vb5O5WbJ7/hbs9aKajbP73ftv579pFq9GhvPZCY843kpy/UE6zse3FiDgWI7uz+kbXc06t3Kl3Wtc6/8uWrP3mXDDvx93h3Q8/Z6ZUKz1JzK3uXY94pe38N1nb/0mb/Z+9H2e7bONIeuu1Tus2j//pqv8U8Xrb/f/gilay8fXJ8cbxMN48Ktb7+8aR3zu13+/4s/2/b+P4R5PW67XVx2/jxz3/pp3WPRR/dH/870o+a5R35Y9dKdVqCxMRu5KP1z8++eC5zXpz+yz+Y0c3Hv/aHf97I+LzLuO/cfjnV7uKv0/7f+ax9v/jF+589MUPndrvbvx7q1E6lj/SzfjXbQef5L0DAAAAAACA7aYQEQciKRTXyoVCsbh6f8fh2FcoV6q14+crixdnovFd2dEYKTSvdB9suR9iIr8ftlmffKQ+FRGHIuLbob2NenG6Up7pd/AAAAAAAAAAAAAAAAAAAACwTezv8P3/zB9D/e4d8NT5yW8YXJvmfy9+6QnYlvz/h8El/2FwyX8YXPIfBpf8h8El/2FwyX8YWP/V6/V+9wEAAAAAAAAAAAAAAAAAAAAAAAAAAAB2krNnzmRLfeX+1emsPnN5aXGucvnETFqdK84vThenKwuXirOVymw5LU5X5jd7vXKlcmliMhavjNfSam28urR8br6yeLF27sJ8aTY9l448k6gAAAAAAAAAAAAAAAAAAADg+VJdWp4rlcvpgoLClgrD26MbO66Q5Bnar270eWACAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgBb/BwAA//8g7Tgx") (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})

program did not crash
testing program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-open-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
detailed listing:
executing program 0:
open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x45)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x185502, 0x28)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000a00)={[{@jqfmt_vfsv1}, {@nobarrier}, {@noacl}, {@data_err_abort}, {@nodelalloc}, {@noquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000000480)="$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") (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})

program did not crash
testing program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mount-open-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
detailed listing:
executing program 0:
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x185502, 0x28)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000a00)={[{@jqfmt_vfsv1}, {@nobarrier}, {@noacl}, {@data_err_abort}, {@nodelalloc}, {@noquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000000480)="$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") (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})

program did not crash
testing program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
detailed listing:
executing program 0:
open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x45)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x185502, 0x28)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000a00)={[{@jqfmt_vfsv1}, {@nobarrier}, {@noacl}, {@data_err_abort}, {@nodelalloc}, {@noquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000000480)="$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")
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})

program did not crash
testing program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
detailed listing:
executing program 0:
open(0x0, 0x143142, 0x45)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x185502, 0x28)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000a00)={[{@jqfmt_vfsv1}, {@nobarrier}, {@noacl}, {@data_err_abort}, {@nodelalloc}, {@noquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000000480)="$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") (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})

program did not crash
testing program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
detailed listing:
executing program 0:
open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x45)
mount(0x0, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x185502, 0x28)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000a00)={[{@jqfmt_vfsv1}, {@nobarrier}, {@noacl}, {@data_err_abort}, {@nodelalloc}, {@noquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000000480)="$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") (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})

program did not crash
testing program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
detailed listing:
executing program 0:
open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x45)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, 0x0, 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x185502, 0x28)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000a00)={[{@jqfmt_vfsv1}, {@nobarrier}, {@noacl}, {@data_err_abort}, {@nodelalloc}, {@noquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000000480)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0XUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo+iBC56U2XrUmbddnSNZ8P3HJO7k3O+ebe7+m5uTckgIE1lv0pRLwcEd8kEQcjIsnXDUe+cmx1u5X7V6ezJYl6/dO/ksZ2Wb35Ws3n7c8rL0XEb19FHC+sb7e6tDxXKpfThbw+Xpu/NF5dWj5xYb40m86mFyenpk69PTX53rvv9CzWN87+8/0ntz889fXRle9+uXvoZhKn40C+rjWOJ3CttTIWY/l7MhKnH9lwogeNbSdJvzvAlgzleT4S2RhwMIbyrAd2vi8jog4MqET+w4BqzgOa5/Y9Og9+btz7YPUEaH38w6ufjcSexrnRvpXkoTOj7Hx3tAftZ238+uetm9kSvfscAmBT165HxMnh4fXjX5KPf1t3sottHm3D+AfPzu1s/vNmu/lPYW3+E23mP/vb5O5WbJ7/hbs9aKajbP73ftv579pFq9GhvPZCY843kpy/UE6zse3FiDgWI7uz+kbXc06t3Kl3Wtc6/8uWrP3mXDDvx93h3Q8/Z6ZUKz1JzK3uXY94pe38N1nb/0mb/Z+9H2e7bONIeuu1Tus2j//pqv8U8Xrb/f/gilay8fXJ8cbxMN48Ktb7+8aR3zu13+/4s/2/b+P4R5PW67XVx2/jxz3/pp3WPRR/dH/870o+a5R35Y9dKdVqCxMRu5KP1z8++eC5zXpz+yz+Y0c3Hv/aHf97I+LzLuO/cfjnV7uKv0/7f+ax9v/jF+589MUPndrvbvx7q1E6lj/SzfjXbQef5L0DAAAAAACA7aYQEQciKRTXyoVCsbh6f8fh2FcoV6q14+crixdnovFd2dEYKTSvdB9suR9iIr8ftlmffKQ+FRGHIuLbob2NenG6Up7pd/AAAAAAAAAAAAAAAAAAAACwTezv8P3/zB9D/e4d8NT5yW8YXJvmfy9+6QnYlvz/h8El/2FwyX8YXPIfBpf8h8El/2FwyX8YWP/V6/V+9wEAAAAAAAAAAAAAAAAAAAAAAAAAAAB2krNnzmRLfeX+1emsPnN5aXGucvnETFqdK84vThenKwuXirOVymw5LU5X5jd7vXKlcmliMhavjNfSam28urR8br6yeLF27sJ8aTY9l448k6gAAAAAAAAAAAAAAAAAAADg+VJdWp4rlcvpgoLClgrD26MbO66Q5Bnar270eWACAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgBb/BwAA//8g7Tgx") (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})

program did not crash
testing program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
detailed listing:
executing program 0:
open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x45)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(0x0, 0x185502, 0x28)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000a00)={[{@jqfmt_vfsv1}, {@nobarrier}, {@noacl}, {@data_err_abort}, {@nodelalloc}, {@noquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000000480)="$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") (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})

program did not crash
testing program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
detailed listing:
executing program 0:
open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x45)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x185502, 0x28)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000a00)={[{@jqfmt_vfsv1}, {@nobarrier}, {@noacl}, {@data_err_abort}, {@nodelalloc}, {@noquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000000480)="$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") (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)

program did not crash
extracting C reproducer
testing compiled C program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
program crashed: UBSAN: shift-out-of-bounds in ext4_fill_super
simplifying C reproducer
testing compiled C program (duration=34.905064759s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
program did not crash
testing compiled C program (duration=34.905064759s, {Threaded:true Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
program did not crash
testing compiled C program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
program did not crash
testing compiled C program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
program crashed: UBSAN: shift-out-of-bounds in ext4_fill_super
testing compiled C program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
program crashed: UBSAN: shift-out-of-bounds in ext4_fill_super
testing compiled C program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
program crashed: UBSAN: shift-out-of-bounds in ext4_fill_super
testing compiled C program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
program crashed: UBSAN: shift-out-of-bounds in ext4_fill_super
testing program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
detailed listing:
executing program 0:
open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x45)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x185502, 0x28)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000a00)={[{@jqfmt_vfsv1}, {@nobarrier}, {@noacl}, {@data_err_abort}, {@nodelalloc}, {@noquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000000480)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0XUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo+iBC56U2XrUmbddnSNZ8P3HJO7k3O+ebe7+m5uTckgIE1lv0pRLwcEd8kEQcjIsnXDUe+cmx1u5X7V6ezJYl6/dO/ksZ2Wb35Ws3n7c8rL0XEb19FHC+sb7e6tDxXKpfThbw+Xpu/NF5dWj5xYb40m86mFyenpk69PTX53rvv9CzWN87+8/0ntz889fXRle9+uXvoZhKn40C+rjWOJ3CttTIWY/l7MhKnH9lwogeNbSdJvzvAlgzleT4S2RhwMIbyrAd2vi8jog4MqET+w4BqzgOa5/Y9Og9+btz7YPUEaH38w6ufjcSexrnRvpXkoTOj7Hx3tAftZ238+uetm9kSvfscAmBT165HxMnh4fXjX5KPf1t3sottHm3D+AfPzu1s/vNmu/lPYW3+E23mP/vb5O5WbJ7/hbs9aKajbP73ftv579pFq9GhvPZCY843kpy/UE6zse3FiDgWI7uz+kbXc06t3Kl3Wtc6/8uWrP3mXDDvx93h3Q8/Z6ZUKz1JzK3uXY94pe38N1nb/0mb/Z+9H2e7bONIeuu1Tus2j//pqv8U8Xrb/f/gilay8fXJ8cbxMN48Ktb7+8aR3zu13+/4s/2/b+P4R5PW67XVx2/jxz3/pp3WPRR/dH/870o+a5R35Y9dKdVqCxMRu5KP1z8++eC5zXpz+yz+Y0c3Hv/aHf97I+LzLuO/cfjnV7uKv0/7f+ax9v/jF+589MUPndrvbvx7q1E6lj/SzfjXbQef5L0DAAAAAACA7aYQEQciKRTXyoVCsbh6f8fh2FcoV6q14+crixdnovFd2dEYKTSvdB9suR9iIr8ftlmffKQ+FRGHIuLbob2NenG6Up7pd/AAAAAAAAAAAAAAAAAAAACwTezv8P3/zB9D/e4d8NT5yW8YXJvmfy9+6QnYlvz/h8El/2FwyX8YXPIfBpf8h8El/2FwyX8YWP/V6/V+9wEAAAAAAAAAAAAAAAAAAAAAAAAAAAB2krNnzmRLfeX+1emsPnN5aXGucvnETFqdK84vThenKwuXirOVymw5LU5X5jd7vXKlcmliMhavjNfSam28urR8br6yeLF27sJ8aTY9l448k6gAAAAAAAAAAAAAAAAAAADg+VJdWp4rlcvpgoLClgrD26MbO66Q5Bnar270eWACAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgBb/BwAA//8g7Tgx") (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})

program crashed: UBSAN: shift-out-of-bounds in ext4_fill_super
validation run: crashed=true
testing program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
detailed listing:
executing program 0:
open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x45)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x185502, 0x28)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000a00)={[{@jqfmt_vfsv1}, {@nobarrier}, {@noacl}, {@data_err_abort}, {@nodelalloc}, {@noquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000000480)="$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") (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})

program crashed: UBSAN: shift-out-of-bounds in ext4_fill_super
validation run: crashed=true
testing program (duration=34.905064759s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): open-mount-open-syz_mount_image$ext4-mmap-ioctl$KVM_SET_USER_MEMORY_REGION
detailed listing:
executing program 0:
open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x45)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x185502, 0x28)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000a00)={[{@jqfmt_vfsv1}, {@nobarrier}, {@noacl}, {@data_err_abort}, {@nodelalloc}, {@noquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000000480)="$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") (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})

program crashed: UBSAN: shift-out-of-bounds in ext4_fill_super
validation run: crashed=true
reproducing took 25m27.918025338s
repro crashed as (corrupted=false):
EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5
Contact linux-ext4@vger.kernel.org if you think we should keep it.
EXT4-fs (loop0): Ignoring removed nobh option
EXT4-fs (loop0): Ignoring removed bh option
EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
================================================================================
UBSAN: shift-out-of-bounds in fs/ext4/super.c:4422:27
shift exponent 8192 is too large for 32-bit type 'int'
CPU: 0 PID: 455 Comm: syz.0.29 Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
Call Trace:
 <TASK>
 __dump_stack+0x21/0x30 lib/dump_stack.c:88
 dump_stack_lvl+0xee/0x150 lib/dump_stack.c:106
 dump_stack+0x15/0x20 lib/dump_stack.c:113
 ubsan_epilogue+0xe/0x40 lib/ubsan.c:151
 __ubsan_handle_shift_out_of_bounds+0x37c/0x400 lib/ubsan.c:321
 ext4_fill_super+0x6ea7/0x9090 fs/ext4/super.c:4422
 mount_bdev+0x2ae/0x3e0 fs/super.c:1400
 ext4_mount+0x34/0x40 fs/ext4/super.c:6623
 legacy_get_tree+0xed/0x190 fs/fs_context.c:611
 vfs_get_tree+0x89/0x260 fs/super.c:1530
 do_new_mount+0x25a/0xa20 fs/namespace.c:3025
 path_mount+0x675/0x1020 fs/namespace.c:3355
 do_mount fs/namespace.c:3368 [inline]
 __do_sys_mount fs/namespace.c:3576 [inline]
 __se_sys_mount+0x318/0x380 fs/namespace.c:3553
 __x64_sys_mount+0xbf/0xd0 fs/namespace.c:3553
 x64_sys_call+0x6bf/0x9a0 arch/x86/include/generated/asm/syscalls_64.h:166
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x66/0xd0
RIP: 0033:0x7f0b6c85766a
Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f0b6c6c5e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00007f0b6c6c5ef0 RCX: 00007f0b6c85766a
RDX: 0000200000000080 RSI: 0000200000000000 RDI: 00007f0b6c6c5eb0
RBP: 0000200000000080 R08: 00007f0b6c6c5ef0 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000000
R13: 00007f0b6c6c5eb0 R14: 000000000000055e R15: 0000200000000a00
 </TASK>
================================================================================
EXT4-fs (loop0): blocks per group (131072) and clusters per group (8192) inconsistent

final repro crashed as (corrupted=false):
EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5
Contact linux-ext4@vger.kernel.org if you think we should keep it.
EXT4-fs (loop0): Ignoring removed nobh option
EXT4-fs (loop0): Ignoring removed bh option
EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
================================================================================
UBSAN: shift-out-of-bounds in fs/ext4/super.c:4422:27
shift exponent 8192 is too large for 32-bit type 'int'
CPU: 0 PID: 455 Comm: syz.0.29 Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
Call Trace:
 <TASK>
 __dump_stack+0x21/0x30 lib/dump_stack.c:88
 dump_stack_lvl+0xee/0x150 lib/dump_stack.c:106
 dump_stack+0x15/0x20 lib/dump_stack.c:113
 ubsan_epilogue+0xe/0x40 lib/ubsan.c:151
 __ubsan_handle_shift_out_of_bounds+0x37c/0x400 lib/ubsan.c:321
 ext4_fill_super+0x6ea7/0x9090 fs/ext4/super.c:4422
 mount_bdev+0x2ae/0x3e0 fs/super.c:1400
 ext4_mount+0x34/0x40 fs/ext4/super.c:6623
 legacy_get_tree+0xed/0x190 fs/fs_context.c:611
 vfs_get_tree+0x89/0x260 fs/super.c:1530
 do_new_mount+0x25a/0xa20 fs/namespace.c:3025
 path_mount+0x675/0x1020 fs/namespace.c:3355
 do_mount fs/namespace.c:3368 [inline]
 __do_sys_mount fs/namespace.c:3576 [inline]
 __se_sys_mount+0x318/0x380 fs/namespace.c:3553
 __x64_sys_mount+0xbf/0xd0 fs/namespace.c:3553
 x64_sys_call+0x6bf/0x9a0 arch/x86/include/generated/asm/syscalls_64.h:166
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x66/0xd0
RIP: 0033:0x7f0b6c85766a
Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f0b6c6c5e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00007f0b6c6c5ef0 RCX: 00007f0b6c85766a
RDX: 0000200000000080 RSI: 0000200000000000 RDI: 00007f0b6c6c5eb0
RBP: 0000200000000080 R08: 00007f0b6c6c5ef0 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000000
R13: 00007f0b6c6c5eb0 R14: 000000000000055e R15: 0000200000000a00
 </TASK>
================================================================================
EXT4-fs (loop0): blocks per group (131072) and clusters per group (8192) inconsistent