syzbot


KMSAN: uninit-value in pagecache_write

Status: fixed on 2023/02/24 13:50
Subsystems: ext4
[Documentation on labels]
Reported-by: syzbot+9767be679ef5016b6082@syzkaller.appspotmail.com
Fix commit: 956510c0c743 fs: ext4: initialize fsdata in pagecache_write()
First crash: 739d, last: 718d
Discussions (3)
Title Replies (including bot) Last reply
[PATCH 1/5] fs: ext4: initialize fsdata in pagecache_write() 20 (20) 2023/01/26 21:09
[PATCH] fs: ext4: initialize fsdata in pagecache_write() 3 (3) 2022/11/21 11:23
[syzbot] KMSAN: uninit-value in pagecache_write 6 (7) 2022/11/10 11:01

Sample crash report:
=====================================================
BUG: KMSAN: uninit-value in pagecache_write+0x655/0x720 fs/ext4/verity.c:91
 pagecache_write+0x655/0x720 fs/ext4/verity.c:91
 ext4_write_merkle_tree_block+0x84/0xa0 fs/ext4/verity.c:389
 build_merkle_tree_level+0x972/0x1250 fs/verity/enable.c:121
 build_merkle_tree fs/verity/enable.c:182 [inline]
 enable_verity+0xede/0x1920 fs/verity/enable.c:268
 fsverity_ioctl_enable+0x895/0xab0 fs/verity/enable.c:392
 __ext4_ioctl fs/ext4/ioctl.c:1572 [inline]
 ext4_ioctl+0x26dd/0x8c50 fs/ext4/ioctl.c:1606
 ext4_compat_ioctl+0x702/0x800 fs/ext4/ioctl.c:1682
 __do_compat_sys_ioctl fs/ioctl.c:968 [inline]
 __se_compat_sys_ioctl+0x781/0xfa0 fs/ioctl.c:910
 __ia32_compat_sys_ioctl+0x8f/0xd0 fs/ioctl.c:910
 do_syscall_32_irqs_on arch/x86/entry/common.c:112 [inline]
 __do_fast_syscall_32+0xa2/0x100 arch/x86/entry/common.c:178
 do_fast_syscall_32+0x33/0x70 arch/x86/entry/common.c:203
 do_SYSENTER_32+0x1b/0x20 arch/x86/entry/common.c:246
 entry_SYSENTER_compat_after_hwframe+0x70/0x82

Local variable fsdata created at:
 pagecache_write+0x21c/0x720 fs/ext4/verity.c:85
 ext4_write_merkle_tree_block+0x84/0xa0 fs/ext4/verity.c:389

CPU: 1 PID: 15121 Comm: syz-executor.3 Not tainted 6.0.0-rc5-syzkaller-48543-g968c2729e576 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
=====================================================

Crashes (5):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2022/10/21 16:21 https://github.com/google/kmsan.git master 968c2729e576 4bfd3c27 .config console log report info [disk image] [vmlinux] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in pagecache_write
2022/10/18 16:06 https://github.com/google/kmsan.git master 968c2729e576 b31320fc .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in pagecache_write
2022/10/05 13:56 https://github.com/google/kmsan.git master 968c2729e576 267e3bb1 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in pagecache_write
2022/10/05 11:12 https://github.com/google/kmsan.git master 968c2729e576 267e3bb1 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in pagecache_write
2022/09/30 17:22 https://github.com/google/kmsan.git master 968c2729e576 feb56351 .config console log report info [disk image] [vmlinux] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in pagecache_write
* Struck through repros no longer work on HEAD.