syzbot

 sign-in | mailing list | source | docs
🐞 Open [1345]
Subsystems
🐞 Fixed [5806]
🐞 Invalid [14154]
Missing Backports [89]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KMSAN: uninit-value in htree_dirblock_to_tree

Status: fixed on 2023/07/01 16:05
Subsystems: ext4
[Documentation on labels]
Reported-by: syzbot+394aa8a792cb99dbc837@syzkaller.appspotmail.com
Fix commit: 4b3cb1d108bf ext4: improve error handling from ext4_dirhash()
First crash: 685d, last: 544d
Discussions (2)
Title Replies (including bot) Last reply
[PATCH] ext4: improve error handling from ext4_dirhash() 1 (1) 2023/05/06 16:20
[syzbot] [ext4?] KMSAN: uninit-value in htree_dirblock_to_tree 0 (1) 2023/01/03 10:58
Similar bugs (6)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KMSAN: uninit-value in number (4) kernel C 7189 716d 1094d 0/28 closed as invalid on 2022/11/28 10:01
upstream KMSAN: uninit-value in ext4_inlinedir_to_tree ext4 C 267 147d 193d 27/28 fixed on 2024/08/14 03:44
android-54 KASAN: slab-out-of-bounds Read in ext4_inlinedir_to_tree C 1 54d 208d 0/2 upstream: reported C repro on 2024/04/14 03:10
upstream KASAN: use-after-free Read in ext4_inlinedir_to_tree ext4 C done 5 19d 72d 0/28 upstream: reported C repro on 2024/08/28 22:55
android-6-1 KASAN: slab-out-of-bounds Read in ext4_inlinedir_to_tree origin:upstream C error 1 22d 208d 0/2 upstream: reported C repro on 2024/04/14 08:35
android-5-10 KASAN: use-after-free Read in ext4_inlinedir_to_tree C error 1 19d 208d 0/2 upstream: reported C repro on 2024/04/14 03:44

Sample crash report:
EXT4-fs error (device loop1): ext4_orphan_get:1395: comm syz-executor.1: couldn't read orphan inode 15 (err -117)
EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: writeback.
=====================================================
BUG: KMSAN: uninit-value in htree_dirblock_to_tree+0xf47/0x1610 fs/ext4/namei.c:1116
 htree_dirblock_to_tree+0xf47/0x1610 fs/ext4/namei.c:1116
 ext4_htree_fill_tree+0x1ade/0x1cc0 fs/ext4/namei.c:1204
 ext4_dx_readdir fs/ext4/dir.c:597 [inline]
 ext4_readdir+0x4b97/0x5ad0 fs/ext4/dir.c:142
 iterate_dir+0x3e6/0x9b0
 __do_sys_getdents64 fs/readdir.c:369 [inline]
 __se_sys_getdents64+0x169/0x520 fs/readdir.c:354
 __ia32_sys_getdents64+0x93/0xd0 fs/readdir.c:354
 do_syscall_32_irqs_on arch/x86/entry/common.c:112 [inline]
 __do_fast_syscall_32+0xa2/0x100 arch/x86/entry/common.c:178
 do_fast_syscall_32+0x37/0x80 arch/x86/entry/common.c:203
 do_SYSENTER_32+0x1f/0x30 arch/x86/entry/common.c:246
 entry_SYSENTER_compat_after_hwframe+0x70/0x82

Local variable hinfo created at:
 ext4_htree_fill_tree+0x52/0x1cc0 fs/ext4/namei.c:1170
 ext4_dx_readdir fs/ext4/dir.c:597 [inline]
 ext4_readdir+0x4b97/0x5ad0 fs/ext4/dir.c:142

CPU: 1 PID: 6607 Comm: syz-executor.1 Not tainted 6.4.0-rc1-syzkaller-g46e8b6e7cfeb #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/28/2023
=====================================================

Crashes (204):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2023/05/14 07:52 https://github.com/google/kmsan.git master 46e8b6e7cfeb 2b9ba477 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/05/12 10:26 https://github.com/google/kmsan.git master 46e8b6e7cfeb adb9a3cd .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/05/12 05:20 https://github.com/google/kmsan.git master 46e8b6e7cfeb adb9a3cd .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/05/06 23:41 https://github.com/google/kmsan.git master 81af97bdef5e 90c93c40 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/05/06 17:24 https://github.com/google/kmsan.git master 81af97bdef5e 90c93c40 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/05/06 03:30 https://github.com/google/kmsan.git master 81af97bdef5e 4cec9341 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/05/04 20:07 https://github.com/google/kmsan.git master 81af97bdef5e 3a560463 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/05/03 22:20 https://github.com/google/kmsan.git master 81af97bdef5e b5918830 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/05/03 09:13 https://github.com/google/kmsan.git master 81af97bdef5e 48e0a81d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/05/01 08:37 https://github.com/google/kmsan.git master 81af97bdef5e 62df2017 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/04/30 16:55 https://github.com/google/kmsan.git master 81af97bdef5e 62df2017 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/04/30 13:28 https://github.com/google/kmsan.git master 81af97bdef5e 62df2017 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/04/30 00:15 https://github.com/google/kmsan.git master 81af97bdef5e 62df2017 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/04/29 13:16 https://github.com/google/kmsan.git master 81af97bdef5e 62df2017 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/04/02 19:05 https://github.com/google/kmsan.git master 90ea0df61c98 f325deb0 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/03/30 23:50 https://github.com/google/kmsan.git master 90ea0df61c98 f325deb0 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/03/30 09:04 https://github.com/google/kmsan.git master 90ea0df61c98 f325deb0 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/03/28 10:05 https://github.com/google/kmsan.git master 90ea0df61c98 47f3aaf1 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/03/28 09:04 https://github.com/google/kmsan.git master 90ea0df61c98 47f3aaf1 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/03/25 20:10 https://github.com/google/kmsan.git master 90ea0df61c98 fbf0499a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/03/25 02:17 https://github.com/google/kmsan.git master 90ea0df61c98 9700afae .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/03/25 01:07 https://github.com/google/kmsan.git master 90ea0df61c98 9700afae .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/03/24 02:26 https://github.com/google/kmsan.git master 90ea0df61c98 f94b4a29 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/03/18 21:55 https://github.com/google/kmsan.git master 34add094f9de 7939252e .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/03/16 13:36 https://github.com/google/kmsan.git master 34add094f9de 18b58603 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/03/16 06:50 https://github.com/google/kmsan.git master 34add094f9de 18b58603 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/03/14 19:28 https://github.com/google/kmsan.git master 34add094f9de 0d5c4377 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/03/14 16:58 https://github.com/google/kmsan.git master 34add094f9de 0d5c4377 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/03/14 16:30 https://github.com/google/kmsan.git master 34add094f9de 0d5c4377 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/03/10 03:35 https://github.com/google/kmsan.git master e61893130d87 f08b59ac .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/03/06 20:59 https://github.com/google/kmsan.git master 54b4a7d3d6c6 f8902b57 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/03/02 15:57 https://github.com/google/kmsan.git master 944070199c5e f8902b57 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/02/28 11:20 https://github.com/google/kmsan.git master 97e36f4aa06f 95aee97a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/02/27 22:15 https://github.com/google/kmsan.git master 97e36f4aa06f e792ae78 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/02/27 02:47 https://github.com/google/kmsan.git master 97e36f4aa06f ee50e71c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/02/25 23:29 https://github.com/google/kmsan.git master 97e36f4aa06f ee50e71c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2022/12/30 00:02 https://github.com/google/kmsan.git master 5c6259d6d19f 44712fbc .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2022/12/24 19:31 https://github.com/google/kmsan.git master 5c6259d6d19f 9da18ae8 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in htree_dirblock_to_tree
2023/05/09 23:18 https://github.com/google/kmsan.git master 81af97bdef5e 30aa2a7e .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in ext4_inlinedir_to_tree
2023/05/07 05:39 https://github.com/google/kmsan.git master 81af97bdef5e 90c93c40 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in ext4_inlinedir_to_tree
2023/05/04 23:05 https://github.com/google/kmsan.git master 81af97bdef5e 3a560463 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in ext4_inlinedir_to_tree
2023/05/03 02:58 https://github.com/google/kmsan.git master 81af97bdef5e 48e0a81d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in ext4_inlinedir_to_tree
2023/05/03 02:55 https://github.com/google/kmsan.git master 81af97bdef5e 48e0a81d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in ext4_inlinedir_to_tree
2023/03/28 07:27 https://github.com/google/kmsan.git master 90ea0df61c98 47f3aaf1 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in ext4_inlinedir_to_tree
2023/03/27 17:42 https://github.com/google/kmsan.git master 90ea0df61c98 f8f96aa9 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in ext4_inlinedir_to_tree
2023/03/23 06:07 https://github.com/google/kmsan.git master 90ea0df61c98 f94b4a29 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in ext4_inlinedir_to_tree
2023/03/03 23:39 https://github.com/google/kmsan.git master 944070199c5e f8902b57 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in ext4_inlinedir_to_tree
* Struck through repros no longer work on HEAD.