1
EXT4-fs error (device loop6): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=0, rec_len=0, size=1024 fake=0
------------[ cut here ]------------
kernel BUG at fs/namei.c:3066!
Internal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP
Modules linked in: pptp(E) l2tp_ppp(E) r8153_ecm(E) cdc_ncm(E) hci_uart(E) btusb(E) pppox(E) bsd_comp(E) ppp_mppe(E) ppp_deflate(E) cdc_eem(E) ax88179_178a(E) aqc111(E) asix(E) cdc_ether(E) btqca(E) hidp(E) btsdio(E) btbcm(E) btintel(E) rfcomm(E) btrtl(E) clk_test(E) ptp(E) tipc_diag(E) ieee802154_socket(E) ieee802154_6lowpan(E) mac802154(E) nhc_hop(E) nhc_udp(E) nhc_routing(E) nhc_fragment(E) nhc_ipv6(E) nhc_dest(E) nhc_mobility(E) ppp_generic(E) regmap_kunit(E) usbnet(E) r8152(E) bluetooth(E) nfc(E) ftdi_sio(E) vcan(E) slcan(E) zram(E) can_bcm(E) can_raw(E) can_gw(E) soc_utils_test(E) platform_test(E) clk_gate_test(E) dev_addr_lists_test(E) kunit_example_test(E) input_test(E) kunit_test(E) time_test(E) hid_uclogic_test(E) lib_test(E) iio_test_format(E) of_kunit_helpers(E) ext4_inode_test(E) fat_test(E) clk_kunit_helpers(E) cdc_acm(E) vcpu_stall_detector(E) wwan(E) kheaders(E) gnss(E) rtl8150(E) 8021q(E) pps_core(E) libarc4(E) virtio_balloon(E) usbmon(E) pwrseq_core(E) tipc(E) cctrng(E) macsec(E)
ieee802154(E) vmw_vsock_virtio_transport(E) 6lowpan(E) tls(E) l2tp_core(E) slhc(E) gzvm(E) regmap_ram(E) mii(E) rfkill(E) usbserial(E) regmap_raw_ram(E) can_dev(E) zsmalloc(E) can(E) open_dice(E) kunit(E)
CPU: 0 UID: 0 PID: 360 Comm: syz-executor Tainted: G E 6.12.18-android16-1-maybe-dirty-4k #1 9af86685e3ad064a54655916afb3d22234382e37
Tainted: [E]=UNSIGNED_MODULE
Hardware name: linux,dummy-virt (DT)
pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : may_delete+0x72c/0x730 proc/self/cwd/common/fs/namei.c:3066
lr : may_delete+0x72c/0x730 proc/self/cwd/common/fs/namei.c:3066
sp : ffffffc087c87b30
x29: ffffffc087c87b70 x28: 1ffffff018d8c74e x27: ffffffc0847b9560
x26: ffffff80c6f502f0 x25: ffffff80c6c67670 x24: ffffffc084a2a640
x23: ffffff80c6f56b00 x22: ffffff80c6c63ac0 x21: 0000000000000001
x20: dfffffc000000000 x19: ffffff80c6c63a70 x18: ffffffc08641e058
x17: 000000008c623181 x16: 000000008c623181 x15: 0000000000000001
x14: 1ffffff810942da0 x13: 0000000000000000 x12: 0000000000000000
x11: ffffffb810942da1 x10: 0000000000ff0100 x9 : 0000000000000000
x8 : ffffff80e1008000 x7 : ffffffc083250118 x6 : 0000000000000000
x5 : 0000000000000001 x4 : 0000000000000001 x3 : 0000000000000001
x2 : ffffff80c6c63a70 x1 : 0000000000200000 x0 : 0000000000000000
Call trace:
may_delete+0x72c/0x730 proc/self/cwd/common/fs/namei.c:3066
vfs_rmdir+0x4c/0x488 proc/self/cwd/common/fs/namei.c:4320
incfs_kill_sb+0xec/0x1f4 proc/self/cwd/common/fs/incfs/vfs.c:1968
deactivate_locked_super+0xf4/0x308 proc/self/cwd/common/fs/super.c:476
deactivate_super+0xec/0x110 proc/self/cwd/common/fs/super.c:509
cleanup_mnt+0x324/0x3bc proc/self/cwd/common/fs/namespace.c:1373
__cleanup_mnt+0x28/0x3c proc/self/cwd/common/fs/namespace.c:1380
task_work_run+0x1b4/0x22c proc/self/cwd/common/kernel/task_work.c:240
resume_user_mode_work proc/self/cwd/common/include/linux/resume_user_mode.h:50 [inline]
do_notify_resume+0x140/0x1a0 proc/self/cwd/common/arch/arm64/kernel/entry-common.c:153
exit_to_user_mode_prepare proc/self/cwd/common/arch/arm64/kernel/entry-common.c:171 [inline]
exit_to_user_mode proc/self/cwd/common/arch/arm64/kernel/entry-common.c:180 [inline]
el0_svc+0xb0/0xb4 proc/self/cwd/common/arch/arm64/kernel/entry-common.c:716
el0t_64_sync_handler+0x98/0x108 proc/self/cwd/common/arch/arm64/kernel/entry-common.c:733
el0t_64_sync+0x19c/0x1a0 proc/self/cwd/common/arch/arm64/kernel/entry.S:598
Code: 17ffff82 97e854c8 d4210000 97e854c6 (d4210000)
---[ end trace 0000000000000000 ]---
For immediate assistance, please email our customer support: [email protected]