lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Message-ID: <68fb2fab.050a0220.346f24.00af.GAE@google.com>
Date: Fri, 24 Oct 2025 00:50:03 -0700
From: syzbot <syzbot+ded9116588a7b73c34bc@...kaller.appspotmail.com>
To: dmantipov@...dex.ru, linux-kernel@...r.kernel.org, 
	syzkaller-bugs@...glegroups.com
Subject: Re: [syzbot] [ocfs2?] general protection fault in ocfs2_prepare_dir_for_insert
 (2)

Hello,

syzbot tried to test the proposed patch but the build/boot failed:

 Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   71.223454][    C0] Call Trace:
[   71.226203][    C0]  <IRQ>
[   71.228612][    C0]  dump_stack+0xfd/0x16e
[   71.232139][    C0]  panic+0x2f0/0x9c0
[   71.235407][    C0]  check_panic_on_warn+0x95/0xe0
[   71.239403][    C0]  handle_overflow+0x192/0x1b0
[   71.243198][    C0]  ip_idents_reserve+0x14a/0x170
[   71.247319][    C0]  __ip_select_ident+0xe4/0x1c0
[   71.251220][    C0]  iptunnel_xmit+0x468/0x850
[   71.254960][    C0]  udp_tunnel_xmit_skb+0x1ba/0x290
[   71.259256][    C0]  geneve_xmit+0x1d03/0x2130
[   71.263053][    C0]  dev_hard_start_xmit+0x2a8/0x7f0
[   71.267280][    C0]  __dev_queue_xmit+0x1690/0x2970
[   71.271468][    C0]  ip6_finish_output2+0x101e/0x1490
[   71.275766][    C0]  NF_HOOK+0x45/0x2c0
[   71.278968][    C0]  ? NF_HOOK+0x2c0/0x2c0
[   71.282508][    C0]  mld_sendpack+0x5f7/0xa60
[   71.286156][    C0]  mld_ifc_timer_expire+0x7e1/0x990
[   71.290462][    C0]  ? lock_acquire+0x78/0x330
[   71.294191][    C0]  ? lock_release+0x69/0x640
[   71.298036][    C0]  ? mld_gq_timer_expire+0xe0/0xe0
[   71.302006][    C0]  call_timer_fn+0x103/0x490
[   71.305730][    C0]  ? mld_gq_timer_expire+0xe0/0xe0
[   71.309993][    C0]  __run_timers+0x5d8/0x7a0
[   71.313911][    C0]  run_timer_softirq+0x63/0xf0
[   71.318015][    C0]  __do_softirq+0x267/0x92e
[   71.322055][    C0]  ? asm_call_irq_on_stack+0xf/0x20
[   71.326339][    C0]  asm_call_irq_on_stack+0xf/0x20
[   71.330564][    C0]  </IRQ>
[   71.333015][    C0]  do_softirq_own_stack+0x9b/0xe0
[   71.337179][    C0]  __irq_exit_rcu+0x227/0x230
[   71.341102][    C0]  irq_exit_rcu+0x5/0x20
[   71.344621][    C0]  sysvec_apic_timer_interrupt+0xea/0x100
[   71.349764][    C0]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[   71.354894][    C0] RIP: 0010:stack_trace_consume_entry+0x7/0x270
[   71.360059][    C0] Code: 00 00 48 3b 4c 24 18 75 09 48 83 c4 20 e9 91 6c df 07 e8 1c 54 9d 07 66 66 2e 0f 1f 84 00 00 00 00 00 90 55 41 57 41 56 41 55 <41> 54 53 48 83 ec 18 48 ba 00 00 00 00 00 fc ff df 4c 8d 47 10 4c
[   71.376154][    C0] RSP: 0018:ffffc90008aaebf8 EFLAGS: 00000286
[   71.381241][    C0] RAX: ffffffff8783c2d8 RBX: ffffc90008aaecb8 RCX: 0a3c4b9e92682801
[   71.387858][    C0] RDX: ffffc90008aaec01 RSI: ffffffff8783c2d8 RDI: ffffc90008aaecb8
[   71.394430][    C0] RBP: ffffc90008aaeca8 R08: dffffc0000000000 R09: ffffc90008aaec70
[   71.401018][    C0] R10: fffff52001155d90 R11: ffffffff81611e60 R12: ffff88801e074380
[   71.407617][    C0] R13: ffffed100845e940 R14: ffffffff81611e60 R15: ffffc90008aaec20
[   71.414438][    C0]  ? stack_trace_save+0x70/0x70
[   71.418552][    C0]  ? stack_trace_save+0x70/0x70
[   71.422558][    C0]  ? netlink_sendmsg+0x968/0xb50
[   71.426642][    C0]  ? netlink_sendmsg+0x968/0xb50
[   71.430694][    C0]  ? stack_trace_save+0x70/0x70
[   71.434615][    C0]  arch_stack_walk+0x108/0x150
[   71.438527][    C0]  ? netlink_sendmsg+0x968/0xb50
[   71.442631][    C0]  stack_trace_save+0x42/0x70
[   71.446538][    C0]  __kasan_kmalloc+0x106/0x140
[   71.450364][    C0]  ? __kasan_kmalloc+0x106/0x140
[   71.454549][    C0]  ? slab_post_alloc_hook+0x3a/0x300
[   71.458983][    C0]  ? kmem_cache_alloc+0x191/0x320
[   71.463020][    C0]  ? sock_alloc_inode+0x17/0xb0
[   71.467007][    C0]  ? new_inode_pseudo+0x63/0x220
[   71.471116][    C0]  ? __sock_create+0x129/0x900
[   71.475108][    C0]  ? udp_sock_create6+0x67/0x540
[   71.479152][    C0]  ? wg_socket_init+0x54c/0x930
[   71.483309][    C0]  ? wg_open+0x24b/0x420
[   71.486904][    C0]  ? __dev_open+0x252/0x400
[   71.490620][    C0]  ? __dev_change_flags+0x20a/0x6e0
[   71.494962][    C0]  ? dev_change_flags+0x82/0x1a0
[   71.499149][    C0]  ? do_setlink+0xae5/0x39b0
[   71.502955][    C0]  ? rtnl_newlink+0x1190/0x1520
[   71.507503][    C0]  ? rtnetlink_rcv_msg+0x9a1/0xe10
[   71.511787][    C0]  ? netlink_rcv_skb+0x185/0x390
[   71.515716][    C0]  ? netlink_unicast+0x7b7/0x9b0
[   71.520611][    C0]  ? lock_release+0x69/0x640
[   71.525149][    C0]  slab_post_alloc_hook+0x3a/0x300
[   71.529525][    C0]  ? get_obj_cgroup_from_current+0x2c3/0x2f0
[   71.534522][    C0]  ? sock_alloc_inode+0x17/0xb0
[   71.538475][    C0]  kmem_cache_alloc+0x191/0x320
[   71.542291][    C0]  ? sockfs_init_fs_context+0xb0/0xb0
[   71.546753][    C0]  sock_alloc_inode+0x17/0xb0
[   71.550639][    C0]  ? sockfs_init_fs_context+0xb0/0xb0
[   71.555015][    C0]  new_inode_pseudo+0x63/0x220
[   71.558724][    C0]  __sock_create+0x129/0x900
[   71.562532][    C0]  ? wg_socket_init+0x4bb/0x930
[   71.566440][    C0]  udp_sock_create6+0x67/0x540
[   71.571248][    C0]  wg_socket_init+0x54c/0x930
[   71.575826][    C0]  ? wg_socket_init+0x930/0x930
[   71.579730][    C0]  wg_open+0x24b/0x420
[   71.583114][    C0]  __dev_open+0x252/0x400
[   71.586652][    C0]  __dev_change_flags+0x20a/0x6e0
[   71.590743][    C0]  dev_change_flags+0x82/0x1a0
[   71.594640][    C0]  do_setlink+0xae5/0x39b0
[   71.598275][    C0]  ? rtnl_newlink+0x75/0x1520
[   71.601891][    C0]  rtnl_newlink+0x1190/0x1520
[   71.605709][    C0]  ? rtnl_newlink+0x2a1/0x1520
[   71.609651][    C0]  ? rtnl_setlink+0x380/0x380
[   71.613270][    C0]  rtnetlink_rcv_msg+0x9a1/0xe10
[   71.617249][    C0]  ? rcu_lock_release+0x9/0x20
[   71.621186][    C0]  ? rcu_is_watching+0x11/0xb0
[   71.625149][    C0]  ? rcu_lock_release+0x9/0x20
[   71.629135][    C0]  ? __local_bh_enable_ip+0xe6/0x160
[   71.633276][    C0]  ? local_bh_enable+0x5/0x20
[   71.637099][    C0]  ? local_bh_enable+0x5/0x20
[   71.640740][    C0]  ? __local_bh_enable_ip+0xe6/0x160
[   71.644941][    C0]  ? __dev_queue_xmit+0x1848/0x2970
[   71.649034][    C0]  ? skb_clone+0x1f3/0x360
[   71.652609][    C0]  netlink_rcv_skb+0x185/0x390
[   71.656760][    C0]  ? rtnetlink_bind+0x80/0x80
[   71.660615][    C0]  netlink_unicast+0x7b7/0x9b0
[   71.664322][    C0]  netlink_sendmsg+0x968/0xb50
[   71.668182][    C0]  ? netlink_getsockopt+0x4f0/0x4f0
[   71.672318][    C0]  __sock_sendmsg+0x15e/0x170
[   71.676187][    C0]  __sys_sendto+0x323/0x430
[   71.680048][    C0]  __x64_sys_sendto+0xda/0xf0
[   71.683928][    C0]  do_syscall_64+0x32/0x50
[   71.687634][    C0]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[   71.692636][    C0] RIP: 0033:0x7f23b2f027bc
[   71.696317][    C0] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[   71.712052][    C0] RSP: 002b:00007ffc654628e0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[   71.719689][    C0] RAX: ffffffffffffffda RBX: 00007f23b3c56620 RCX: 00007f23b2f027bc
[   71.727574][    C0] RDX: 0000000000000020 RSI: 00007f23b3c56670 RDI: 0000000000000003
[   71.734042][    C0] RBP: 0000000000000000 R08: 00007ffc65462934 R09: 000000000000000c
[   71.740589][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[   71.746882][    C0] R13: 0000000000000000 R14: 00007f23b3c56670 R15: 0000000000000000
[   71.753763][    C0] Kernel Offset: disabled
[   71.757459][    C0] Rebooting in 86400 seconds..

VM DIAGNOSIS:
07:49:05  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000030 RBX=0000000000000030 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc90000007200
R8 =dffffc0000000000 R9 =fffff52000000e42 R10=fffff52000000e42 R11=ffffffff83f79850
R12=dffffc0000000000 R13=1ffffffff2acda63 R14=ffffffff96156de0 R15=0000000000000000
RIP=ffffffff83f798c8 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00005555604e7500 ffffffff 00c00000
GS =0000 ffff888020600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffed664f118 CR3=000000003ec9e000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000040410888 Opmask01=0000000000000fff Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000100000001 0000001900000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f23b2f83ae7
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f23b2f83adf
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f23b2f83b12
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f23b2f83b1f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f23b2f83b19
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f23b2f83b2d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f23b2f83bb3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f23b2f83c91
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00306e6170737265 0030657267367069 00306c6e74367069 00306974765f3670
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6900306974765f70 6900306c6e757400 3074697300326777 0031677700306777
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000


syzkaller build log:
go env (err=<nil>)
AR='ar'
CC='gcc'
CGO_CFLAGS='-O2 -g'
CGO_CPPFLAGS=''
CGO_CXXFLAGS='-O2 -g'
CGO_ENABLED='1'
CGO_FFLAGS='-O2 -g'
CGO_LDFLAGS='-O2 -g'
CXX='g++'
GCCGO='gccgo'
GO111MODULE='auto'
GOAMD64='v1'
GOARCH='amd64'
GOAUTH='netrc'
GOBIN=''
GOCACHE='/syzkaller/.cache/go-build'
GOCACHEPROG=''
GODEBUG=''
GOENV='/syzkaller/.config/go/env'
GOEXE=''
GOEXPERIMENT=''
GOFIPS140='off'
GOFLAGS=''
GOGCCFLAGS='-fPIC -m64 -pthread -Wl,--no-gc-sections -fmessage-length=0 -ffile-prefix-map=/tmp/go-build1145845823=/tmp/go-build -gno-record-gcc-switches'
GOHOSTARCH='amd64'
GOHOSTOS='linux'
GOINSECURE=''
GOMOD='/syzkaller/jobs/linux/gopath/src/github.com/google/syzkaller/go.mod'
GOMODCACHE='/syzkaller/jobs/linux/gopath/pkg/mod'
GONOPROXY=''
GONOSUMDB=''
GOOS='linux'
GOPATH='/syzkaller/jobs/linux/gopath'
GOPRIVATE=''
GOPROXY='https://proxy.golang.org,direct'
GOROOT='/usr/local/go'
GOSUMDB='sum.golang.org'
GOTELEMETRY='local'
GOTELEMETRYDIR='/syzkaller/.config/go/telemetry'
GOTMPDIR=''
GOTOOLCHAIN='auto'
GOTOOLDIR='/usr/local/go/pkg/tool/linux_amd64'
GOVCS=''
GOVERSION='go1.24.4'
GOWORK=''
PKG_CONFIG='pkg-config'

git status (err=<nil>)
HEAD detached at 6b6b5f21aad
nothing to commit, working tree clean


tput: No value for $TERM and no -T specified
tput: No value for $TERM and no -T specified
Makefile:31: run command via tools/syz-env for best compatibility, see:
Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env
go list -f '{{.Stale}}' ./sys/syz-sysgen | grep -q false || go install ./sys/syz-sysgen
make .descriptions
tput: No value for $TERM and no -T specified
tput: No value for $TERM and no -T specified
Makefile:31: run command via tools/syz-env for best compatibility, see:
Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env
bin/syz-sysgen
touch .descriptions
GOOS=linux GOARCH=amd64 go build -ldflags="-s -w -X github.com/google/syzkaller/prog.GitRevision=6b6b5f21aadcc3fc3ccd91da0b782a4307229d70 -X github.com/google/syzkaller/prog.gitRevisionDate=20250604-135810"  -o ./bin/linux_amd64/syz-execprog github.com/google/syzkaller/tools/syz-execprog
mkdir -p ./bin/linux_amd64
g++ -o ./bin/linux_amd64/syz-executor executor/executor.cc \
	-m64 -O2 -pthread -Wall -Werror -Wparentheses -Wunused-const-variable -Wframe-larger-than=16384 -Wno-stringop-overflow -Wno-array-bounds -Wno-format-overflow -Wno-unused-but-set-variable -Wno-unused-command-line-argument -static-pie -std=c++17 -I. -Iexecutor/_include   -DGOOS_linux=1 -DGOARCH_amd64=1 \
	-DHOSTGOOS_linux=1 -DGIT_REVISION=\"6b6b5f21aadcc3fc3ccd91da0b782a4307229d70\"
/usr/bin/ld: /tmp/ccDhSuvv.o: in function `Connection::Connect(char const*, char const*)':
executor.cc:(.text._ZN10Connection7ConnectEPKcS1_[_ZN10Connection7ConnectEPKcS1_]+0x104): warning: Using 'gethostbyname' in statically linked applications requires at runtime the shared libraries from the glibc version used for linking


Error text is too large and was truncated, full error text is at:
https://syzkaller.appspot.com/x/error.txt?x=17442d2f980000


Tested on:

commit:         d3d0b4e2 Linux 5.10.245
git tree:       https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git linux-5.10.y
kernel config:  https://syzkaller.appspot.com/x/.config?x=d82f68054e55cf8c
dashboard link: https://syzkaller.appspot.com/bug?extid=ded9116588a7b73c34bc
compiler:       Debian clang version 20.1.8 (++20250708063551+0c9f909b7976-1~exp1~20250708183702.136), Debian LLD 20.1.8
patch:          https://syzkaller.appspot.com/x/patch.diff?x=17cd6d42580000

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ