Extracting prog: 1m16.405177987s
Minimizing prog: 11m26.935354302s
Simplifying prog options: 0s
Extracting C: 42.402541053s
Simplifying C: 9m56.934074991s


extracting reproducer from 30 programs
first checking the prog from the crash report
single: executing 1 programs separately with timeout 30s
testing program (duration=30s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$MAP_CREATE-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$MAP_UPDATE_ELEM_TAIL_CALL-ioctl$sock_SIOCGIFINDEX-syz_mount_image$ext4
detailed listing:
executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x800718, &(0x7f0000000200)={[{@delalloc}, {@journal_dev={'journal_dev', 0x3d, 0x40000ff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x60}}, {@nobh}, {@resgid}, {@acl}, {@nombcache}]}, 0x2, 0x497, &(0x7f00000010c0)="$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")

program crashed: WARNING in ext4_xattr_inode_update_ref
single: successfully extracted reproducer
found reproducer with 6 syscalls
minimizing guilty program
testing program (duration=45.54333084s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$MAP_CREATE-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$MAP_UPDATE_ELEM_TAIL_CALL-ioctl$sock_SIOCGIFINDEX
detailed listing:
executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)

program did not crash
program did not crash
testing program (duration=45.54333084s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$MAP_CREATE-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$MAP_UPDATE_ELEM_TAIL_CALL-syz_mount_image$ext4
detailed listing:
executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x800718, &(0x7f0000000200)={[{@delalloc}, {@journal_dev={'journal_dev', 0x3d, 0x40000ff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x60}}, {@nobh}, {@resgid}, {@acl}, {@nombcache}]}, 0x2, 0x497, &(0x7f00000010c0)="$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")

program crashed: WARNING in ext4_xattr_inode_update_ref
testing program (duration=45.54333084s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$MAP_CREATE-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_mount_image$ext4
detailed listing:
executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x800718, &(0x7f0000000200)={[{@delalloc}, {@journal_dev={'journal_dev', 0x3d, 0x40000ff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x60}}, {@nobh}, {@resgid}, {@acl}, {@nombcache}]}, 0x2, 0x497, &(0x7f00000010c0)="$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")

program crashed: WARNING in ext4_xattr_inode_update_ref
testing program (duration=45.54333084s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$MAP_CREATE-bpf$PROG_LOAD-syz_mount_image$ext4
detailed listing:
executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x800718, &(0x7f0000000200)={[{@delalloc}, {@journal_dev={'journal_dev', 0x3d, 0x40000ff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x60}}, {@nobh}, {@resgid}, {@acl}, {@nombcache}]}, 0x2, 0x497, &(0x7f00000010c0)="$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")

program crashed: WARNING in ext4_xattr_inode_update_ref
testing program (duration=45.54333084s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$MAP_CREATE-syz_mount_image$ext4
detailed listing:
executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x800718, &(0x7f0000000200)={[{@delalloc}, {@journal_dev={'journal_dev', 0x3d, 0x40000ff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x60}}, {@nobh}, {@resgid}, {@acl}, {@nombcache}]}, 0x2, 0x497, &(0x7f00000010c0)="$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")

program crashed: WARNING in ext4_xattr_inode_update_ref
testing program (duration=45.54333084s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x800718, &(0x7f0000000200)={[{@delalloc}, {@journal_dev={'journal_dev', 0x3d, 0x40000ff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x60}}, {@nobh}, {@resgid}, {@acl}, {@nombcache}]}, 0x2, 0x497, &(0x7f00000010c0)="$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")

program crashed: WARNING in ext4_xattr_inode_update_ref
extracting C reproducer
testing compiled C program (duration=45.54333084s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
program crashed: WARNING in ext4_xattr_inode_update_ref
simplifying C reproducer
testing compiled C program (duration=45.54333084s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
program crashed: WARNING in ext4_xattr_inode_update_ref
testing compiled C program (duration=45.54333084s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
program crashed: WARNING in ext4_xattr_inode_update_ref
testing compiled C program (duration=45.54333084s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:true Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
program crashed: WARNING in ext4_xattr_inode_update_ref
testing compiled C program (duration=45.54333084s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
program crashed: WARNING in ext4_xattr_inode_update_ref
testing compiled C program (duration=45.54333084s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
program crashed: WARNING in ext4_xattr_inode_update_ref
testing compiled C program (duration=45.54333084s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
program crashed: WARNING in ext4_xattr_inode_update_ref
testing compiled C program (duration=45.54333084s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
program crashed: WARNING in ext4_xattr_inode_update_ref
testing program (duration=45.54333084s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x800718, &(0x7f0000000200)={[{@delalloc}, {@journal_dev={'journal_dev', 0x3d, 0x40000ff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x60}}, {@nobh}, {@resgid}, {@acl}, {@nombcache}]}, 0x2, 0x497, &(0x7f00000010c0)="$eJzs281rHOUfAPDvTN76nvz6qy+tVaNFCIpJk1btwYuiIFJR0EM9xs22hG4baSLYF2wU8SRIQc/iUfQvEC8iiHoSPAmePEmhaC5tPUVmdqZNtrtp02yytfv5wGafZ+bZmee7M8/MM8+zCaBrDWd/kohtEfF7RAzWs8sLDNffriycq1xdOFdJYnHx9b+SvNzlhXOVsmj5ua1FZiSNSD9Mip0sN3v6zPHJWq16qsiPzZ0YKJKTx6rHqicnDh06eGD8macnnmpLnFlcl/e8N7N390tvXnilcuTCWz99ndV3W7F+aRyr9NtYixXDWeB/L+Ya1z12mzu7U21fkk56O1gRVqUnIrLD1Ze3/8HoiesHbzBe/KCjlQPWVXZvGmi9en4RuIsl0ekaAJ1R3ui3LPRUsmfgG5+DB9ez+9Fxl56rPwBlcV8pXvU1vZEWZfoanm/baTgijsz/83n2irWNQwAA3JKPK58d7o+Is1e/ejnre1zv7aW99+bvf+R/dxQ9waGI+F9E7IyI/0fEroi4JyKysvdFxP1rrM+N/Z/04ho3uaKs//dsMbe1vP9X9v5iqKfIbc/j70uOTteq+4vvZCT6BrL8+Ar7+O6FXz9ptW5p/y97Zfsv+4JFPS72NgzQTU3OTead0ja49H7Ent5m8SfXZgKSiNgdEXtWt+kdZWL68S/3tip08/hX0IZ5psUvsvDms/jnoyH+UlKfn3x7bPb0mSenTzTOT45tilp1/1h5Vtzo518+eq3V/uvxbypyzePfvPYwW7pUrb8vOf6NRYaSpfO1s+3d/22e/2l/8kY+z9xfLHt3cm7u1HhEf3I4zy9bPnH9s2W+LJ+d/yP7mrf/ncVnsvgfiIjsJH4wIh6KiIeLuj8SEY9GxL4VYvzx+ZvHH+ltnP9tkMU/1fT6d+38bzj+q0/0HP/hm1b7v7XjfzBPjRRL8utfg6Qh36w6vREDjRVc6/cHAAAA/wVp/hv4JB29lk7T0dH6b/h3xZa0NjM798TRmXdOTtV/Kz8UfWk50jVYjIfWpmvV8WS+2GJ9fHSiGCsux0sPFOPGn/ZszvOjlZnaVIdjh263tUX7z/zZ0+naAets+fRSOQE80d+RygAbrHEePV2ePf9quBjA3cr/a0P3ukn7TzeqHsDGc/+H7tWs/Z9vyJsLgLuT+z90L+0fulT6fdPF3254RYBOcP+HrrSW/+tfx8SmO6ManUls9EGJVRWOMpF2/IuSKBJni9bczi13+MIEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQJv8GAAD//2Uu29Y=")

program crashed: WARNING in ext4_xattr_inode_update_ref
validation run: crashed=true
testing program (duration=45.54333084s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x800718, &(0x7f0000000200)={[{@delalloc}, {@journal_dev={'journal_dev', 0x3d, 0x40000ff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x60}}, {@nobh}, {@resgid}, {@acl}, {@nombcache}]}, 0x2, 0x497, &(0x7f00000010c0)="$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")

program crashed: WARNING in ext4_xattr_inode_update_ref
validation run: crashed=true
testing program (duration=45.54333084s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x800718, &(0x7f0000000200)={[{@delalloc}, {@journal_dev={'journal_dev', 0x3d, 0x40000ff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x60}}, {@nobh}, {@resgid}, {@acl}, {@nombcache}]}, 0x2, 0x497, &(0x7f00000010c0)="$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")

program crashed: WARNING in ext4_xattr_inode_update_ref
validation run: crashed=true
reproducing took 28m54.782100631s
repro crashed as (corrupted=false):
loop0: detected capacity change from 0 to 512
EXT4-fs: Ignoring removed nobh option
------------[ cut here ]------------
EA inode 11 i_nlink=1026
WARNING: CPU: 1 PID: 4425 at fs/ext4/xattr.c:1022 ext4_xattr_inode_update_ref+0x4be/0x520 fs/ext4/xattr.c:1020
Modules linked in:
CPU: 1 PID: 4425 Comm: syz.0.17 Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
RIP: 0010:ext4_xattr_inode_update_ref+0x4be/0x520 fs/ext4/xattr.c:1020
Code: 8d 7d 40 4c 89 f8 48 c1 e8 03 42 80 3c 30 00 74 08 4c 89 ff e8 93 ec 9c ff 49 8b 37 48 c7 c7 40 92 80 8a 89 da e8 72 bd 18 ff <0f> 0b 49 be 00 00 00 00 00 fc ff df 4c 8b 6c 24 10 4c 8b 7c 24 08
RSP: 0018:ffffc900032c7200 EFLAGS: 00010246
RAX: 84c5385d616bab00 RBX: 0000000000000402 RCX: ffff88807ad65940
RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
RBP: ffffc900032c72e8 R08: dffffc0000000000 R09: ffffed10171e4f3c
R10: ffffed10171e4f3c R11: 1ffff110171e4f3b R12: ffffc900032c7260
R13: ffff888068f48cb8 R14: dffffc0000000000 R15: ffff888068f48cf8
FS:  0000555577d6b500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007ffc5367e000 CR3: 000000001cf98000 CR4: 00000000003506e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 ext4_xattr_inode_dec_ref fs/ext4/xattr.c:1045 [inline]
 ext4_xattr_set_entry+0xb33/0x1e90 fs/ext4/xattr.c:1687
 ext4_xattr_ibody_set+0x250/0x690 fs/ext4/xattr.c:2234
 ext4_xattr_move_to_block fs/ext4/xattr.c:2637 [inline]
 ext4_xattr_make_inode_space fs/ext4/xattr.c:2705 [inline]
 ext4_expand_extra_isize_ea+0x10e5/0x19b0 fs/ext4/xattr.c:2797
 __ext4_expand_extra_isize+0x301/0x3e0 fs/ext4/inode.c:5979
 ext4_try_to_expand_extra_isize fs/ext4/inode.c:6022 [inline]
 __ext4_mark_inode_dirty+0x47f/0x770 fs/ext4/inode.c:6100
 ext4_evict_inode+0xa73/0x1100 fs/ext4/inode.c:279
 evict+0x485/0x870 fs/inode.c:705
 ext4_orphan_cleanup+0xbd3/0x1400 fs/ext4/orphan.c:472
 __ext4_fill_super fs/ext4/super.c:5556 [inline]
 ext4_fill_super+0x7738/0x7cd0 fs/ext4/super.c:5687
 get_tree_bdev+0x3f1/0x610 fs/super.c:1366
 vfs_get_tree+0x88/0x270 fs/super.c:1573
 do_new_mount+0x24a/0xa40 fs/namespace.c:3078
 do_mount fs/namespace.c:3421 [inline]
 __do_sys_mount fs/namespace.c:3629 [inline]
 __se_sys_mount+0x2d6/0x3c0 fs/namespace.c:3606
 do_syscall_x64 arch/x86/entry/common.c:46 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:76
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7f909f390eea
Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffc5367d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00007ffc5367d0c0 RCX: 00007f909f390eea
RDX: 0000200000000180 RSI: 0000200000000140 RDI: 00007ffc5367d080
RBP: 0000200000000180 R08: 00007ffc5367d0c0 R09: 0000000000800718
R10: 0000000000800718 R11: 0000000000000246 R12: 0000200000000140
R13: 00007ffc5367d080 R14: 0000000000000497 R15: 0000200000000200
 </TASK>

final repro crashed as (corrupted=false):
loop0: detected capacity change from 0 to 512
EXT4-fs: Ignoring removed nobh option
------------[ cut here ]------------
EA inode 11 i_nlink=1026
WARNING: CPU: 1 PID: 4425 at fs/ext4/xattr.c:1022 ext4_xattr_inode_update_ref+0x4be/0x520 fs/ext4/xattr.c:1020
Modules linked in:
CPU: 1 PID: 4425 Comm: syz.0.17 Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
RIP: 0010:ext4_xattr_inode_update_ref+0x4be/0x520 fs/ext4/xattr.c:1020
Code: 8d 7d 40 4c 89 f8 48 c1 e8 03 42 80 3c 30 00 74 08 4c 89 ff e8 93 ec 9c ff 49 8b 37 48 c7 c7 40 92 80 8a 89 da e8 72 bd 18 ff <0f> 0b 49 be 00 00 00 00 00 fc ff df 4c 8b 6c 24 10 4c 8b 7c 24 08
RSP: 0018:ffffc900032c7200 EFLAGS: 00010246
RAX: 84c5385d616bab00 RBX: 0000000000000402 RCX: ffff88807ad65940
RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
RBP: ffffc900032c72e8 R08: dffffc0000000000 R09: ffffed10171e4f3c
R10: ffffed10171e4f3c R11: 1ffff110171e4f3b R12: ffffc900032c7260
R13: ffff888068f48cb8 R14: dffffc0000000000 R15: ffff888068f48cf8
FS:  0000555577d6b500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007ffc5367e000 CR3: 000000001cf98000 CR4: 00000000003506e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 ext4_xattr_inode_dec_ref fs/ext4/xattr.c:1045 [inline]
 ext4_xattr_set_entry+0xb33/0x1e90 fs/ext4/xattr.c:1687
 ext4_xattr_ibody_set+0x250/0x690 fs/ext4/xattr.c:2234
 ext4_xattr_move_to_block fs/ext4/xattr.c:2637 [inline]
 ext4_xattr_make_inode_space fs/ext4/xattr.c:2705 [inline]
 ext4_expand_extra_isize_ea+0x10e5/0x19b0 fs/ext4/xattr.c:2797
 __ext4_expand_extra_isize+0x301/0x3e0 fs/ext4/inode.c:5979
 ext4_try_to_expand_extra_isize fs/ext4/inode.c:6022 [inline]
 __ext4_mark_inode_dirty+0x47f/0x770 fs/ext4/inode.c:6100
 ext4_evict_inode+0xa73/0x1100 fs/ext4/inode.c:279
 evict+0x485/0x870 fs/inode.c:705
 ext4_orphan_cleanup+0xbd3/0x1400 fs/ext4/orphan.c:472
 __ext4_fill_super fs/ext4/super.c:5556 [inline]
 ext4_fill_super+0x7738/0x7cd0 fs/ext4/super.c:5687
 get_tree_bdev+0x3f1/0x610 fs/super.c:1366
 vfs_get_tree+0x88/0x270 fs/super.c:1573
 do_new_mount+0x24a/0xa40 fs/namespace.c:3078
 do_mount fs/namespace.c:3421 [inline]
 __do_sys_mount fs/namespace.c:3629 [inline]
 __se_sys_mount+0x2d6/0x3c0 fs/namespace.c:3606
 do_syscall_x64 arch/x86/entry/common.c:46 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:76
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7f909f390eea
Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffc5367d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00007ffc5367d0c0 RCX: 00007f909f390eea
RDX: 0000200000000180 RSI: 0000200000000140 RDI: 00007ffc5367d080
RBP: 0000200000000180 R08: 00007ffc5367d0c0 R09: 0000000000800718
R10: 0000000000800718 R11: 0000000000000246 R12: 0000200000000140
R13: 00007ffc5367d080 R14: 0000000000000497 R15: 0000200000000200
 </TASK>