syzbot


KMSAN: uninit-value in hfsplus_attr_bin_cmp_key

Status: upstream: reported on 2022/11/28 10:04
Subsystems: hfs
[Documentation on labels]
Reported-by: syzbot+c6d8e1bffb0970780d5c@syzkaller.appspotmail.com
First crash: 374d, last: 53d
Discussions (1)
Title Replies (including bot) Last reply
[syzbot] KMSAN: uninit-value in hfsplus_attr_bin_cmp_key 0 (1) 2022/11/28 10:04

Sample crash report:
loop5: detected capacity change from 0 to 1024
hfsplus: request for non-existent node 3 in B*Tree
hfsplus: request for non-existent node 3 in B*Tree
=====================================================
BUG: KMSAN: uninit-value in hfsplus_attr_bin_cmp_key+0xf1/0x190 fs/hfsplus/attributes.c:42
 hfsplus_attr_bin_cmp_key+0xf1/0x190 fs/hfsplus/attributes.c:42
 hfs_find_rec_by_key+0xb0/0x240 fs/hfsplus/bfind.c:100
 __hfsplus_brec_find+0x26b/0x7b0 fs/hfsplus/bfind.c:135
 hfsplus_brec_find+0x445/0x970 fs/hfsplus/bfind.c:195
 hfsplus_find_attr+0x30c/0x390
 __hfsplus_getxattr+0x376/0xe40 fs/hfsplus/xattr.c:522
 hfsplus_getxattr+0x123/0x1e0 fs/hfsplus/xattr.c:590
 hfsplus_security_getxattr+0x53/0x60 fs/hfsplus/xattr_security.c:20
 vfs_getxattr_alloc+0x77a/0xc10 fs/xattr.c:394
 ima_read_xattr+0x51/0xd0 security/integrity/ima/ima_appraise.c:231
 process_measurement+0x1c17/0x36e0 security/integrity/ima/ima_main.c:326
 ima_file_check+0xb3/0x100 security/integrity/ima/ima_main.c:543
 do_open fs/namei.c:3641 [inline]
 path_openat+0x4c36/0x5a00 fs/namei.c:3796
 do_filp_open+0x20d/0x590 fs/namei.c:3823
 do_sys_openat2+0x1bf/0x2f0 fs/open.c:1422
 do_sys_open fs/open.c:1437 [inline]
 __do_compat_sys_openat fs/open.c:1497 [inline]
 __se_compat_sys_openat fs/open.c:1495 [inline]
 __ia32_compat_sys_openat+0x298/0x300 fs/open.c:1495
 do_syscall_32_irqs_on arch/x86/entry/common.c:112 [inline]
 __do_fast_syscall_32+0xa2/0x100 arch/x86/entry/common.c:178
 do_fast_syscall_32+0x37/0x80 arch/x86/entry/common.c:203
 do_SYSENTER_32+0x1f/0x30 arch/x86/entry/common.c:246
 entry_SYSENTER_compat_after_hwframe+0x70/0x82

Uninit was created at:
 slab_post_alloc_hook+0x12f/0xb70 mm/slab.h:767
 slab_alloc_node mm/slub.c:3478 [inline]
 __kmem_cache_alloc_node+0x536/0x8d0 mm/slub.c:3517
 __do_kmalloc_node mm/slab_common.c:1022 [inline]
 __kmalloc+0x121/0x3c0 mm/slab_common.c:1036
 kmalloc include/linux/slab.h:603 [inline]
 hfsplus_find_init+0x91/0x250 fs/hfsplus/bfind.c:21
 __hfsplus_getxattr+0x2c6/0xe40 fs/hfsplus/xattr.c:516
 hfsplus_getxattr+0x123/0x1e0 fs/hfsplus/xattr.c:590
 hfsplus_security_getxattr+0x53/0x60 fs/hfsplus/xattr_security.c:20
 vfs_getxattr_alloc+0x77a/0xc10 fs/xattr.c:394
 ima_read_xattr+0x51/0xd0 security/integrity/ima/ima_appraise.c:231
 process_measurement+0x1c17/0x36e0 security/integrity/ima/ima_main.c:326
 ima_file_check+0xb3/0x100 security/integrity/ima/ima_main.c:543
 do_open fs/namei.c:3641 [inline]
 path_openat+0x4c36/0x5a00 fs/namei.c:3796
 do_filp_open+0x20d/0x590 fs/namei.c:3823
 do_sys_openat2+0x1bf/0x2f0 fs/open.c:1422
 do_sys_open fs/open.c:1437 [inline]
 __do_compat_sys_openat fs/open.c:1497 [inline]
 __se_compat_sys_openat fs/open.c:1495 [inline]
 __ia32_compat_sys_openat+0x298/0x300 fs/open.c:1495
 do_syscall_32_irqs_on arch/x86/entry/common.c:112 [inline]
 __do_fast_syscall_32+0xa2/0x100 arch/x86/entry/common.c:178
 do_fast_syscall_32+0x37/0x80 arch/x86/entry/common.c:203
 do_SYSENTER_32+0x1f/0x30 arch/x86/entry/common.c:246
 entry_SYSENTER_compat_after_hwframe+0x70/0x82

CPU: 1 PID: 9177 Comm: syz-executor.5 Not tainted 6.6.0-rc5-syzkaller-00250-g70f8c6f8f880 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
=====================================================

Crashes (27):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2023/10/15 02:56 upstream 70f8c6f8f880 6388bc36 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/08/08 22:26 upstream 14f9643dc90a 3c27dfcd .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/08/04 12:40 upstream c1a515d3c027 74621247 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/07/29 19:32 upstream ffabf7c73176 92476829 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/07/29 19:32 upstream ffabf7c73176 92476829 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/07/28 12:12 upstream 57012c57536f 92476829 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/07/28 12:10 upstream 57012c57536f 92476829 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/07/28 12:09 upstream 57012c57536f 92476829 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/07/28 12:09 upstream 57012c57536f 92476829 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/04/30 16:12 https://github.com/google/kmsan.git master 81af97bdef5e 62df2017 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/04/30 08:35 https://github.com/google/kmsan.git master 81af97bdef5e 62df2017 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/04/15 06:20 https://github.com/google/kmsan.git master c478e5b17829 ec410564 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/04/10 17:52 https://github.com/google/kmsan.git master 9189d4cb6980 71147e29 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/03/11 21:19 https://github.com/google/kmsan.git master e61893130d87 5205ef30 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/03/09 05:23 https://github.com/google/kmsan.git master e61893130d87 4fc6d98d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/03/09 05:23 https://github.com/google/kmsan.git master e61893130d87 4fc6d98d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/03/08 06:33 https://github.com/google/kmsan.git master e61893130d87 d2b00170 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/03/02 12:35 https://github.com/google/kmsan.git master 944070199c5e f8902b57 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/02/21 14:47 https://github.com/google/kmsan.git master 224e1375d540 f949448d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/02/19 02:28 https://github.com/google/kmsan.git master 31b504f219a9 bcdf85f8 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/02/19 02:04 https://github.com/google/kmsan.git master 31b504f219a9 bcdf85f8 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/02/19 02:03 https://github.com/google/kmsan.git master 31b504f219a9 bcdf85f8 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/01/16 02:02 https://github.com/google/kmsan.git master e919e2b1bc1c a63719e7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/01/08 01:11 https://github.com/google/kmsan.git master 5c6259d6d19f 1dac8c7a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/01/08 01:11 https://github.com/google/kmsan.git master 5c6259d6d19f 1dac8c7a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2022/12/03 14:59 https://github.com/google/kmsan.git master 49a9a20768f5 e080de16 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2022/11/28 01:00 https://github.com/google/kmsan.git master a472f15b3d1e 74a66371 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
* Struck through repros no longer work on HEAD.