syzbot

 sign-in | mailing list | source | docs
🐞 Open [1510]
Subsystems
🐞 Fixed [6627]
🐞 Invalid [16960]
Missing Backports [211]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KMSAN: uninit-value in hfsplus_delete_cat

Status: upstream: reported C repro on 2022/12/05 09:19
Subsystems: hfs
[Documentation on labels]
Reported-by: syzbot+fdedff847a0e5e84c39f@syzkaller.appspotmail.com
Fix commit: 9b3d15a75891 hfsplus: fix KMSAN uninit-value issue in hfsplus_delete_cat()
Patched on: [ci-qemu-gce-upstream-auto ci-qemu-upstream ci-qemu-upstream-386 ci-qemu2-arm32 ci-qemu2-arm64 ci-qemu2-arm64-compat ci-qemu2-arm64-mte ci-snapshot-upstream-root ci-upstream-bpf-kasan-gce ci-upstream-bpf-next-kasan-gce ci-upstream-gce-leak ci-upstream-kasan-badwrites-root ci-upstream-kasan-gce ci-upstream-kasan-gce-386 ci-upstream-kasan-gce-root ci-upstream-kasan-gce-selinux-root ci-upstream-kasan-gce-smack-root ci-upstream-kmsan-gce-386-root ci-upstream-kmsan-gce-root ci-upstream-linux-next-kasan-gce-root ci-upstream-net-kasan-gce ci-upstream-net-this-kasan-gce ci-upstream-rust-kasan-gce ci2-upstream-fs ci2-upstream-kcsan-gce], missing on: [ci-qemu-native-arm64-kvm ci-qemu2-riscv64 ci-upstream-gce-arm64 ci2-upstream-usb]
First crash: 1035d, last: 4d22h
Discussions (30)
Title Replies (including bot) Last reply
[PATCH AUTOSEL 6.17-5.4] hfs: fix KMSAN uninit-value issue in hfs_find_set_zero_bits() 4 (4) 2025/10/02 15:30
[syzbot] Monthly hfs report (Sep 2025) 0 (1) 2025/09/26 05:14
[syzbot] Monthly hfs report (Aug 2025) 0 (1) 2025/08/26 07:13
[PATCH] hfsplus: fix KMSAN uninit-value issue in hfsplus_delete_cat() 1 (1) 2025/08/25 22:51
[syzbot] Monthly hfs report (Jul 2025) 0 (1) 2025/07/26 08:56
[syzbot] Monthly hfs report (Jun 2025) 0 (1) 2025/06/24 13:52
[syzbot] Monthly hfs report (May 2025) 0 (1) 2025/05/24 10:05
[syzbot] Monthly hfs report (Apr 2025) 0 (1) 2025/04/23 07:50
[syzbot] Monthly hfs report (Mar 2025) 0 (1) 2025/03/23 02:26
[syzbot] Monthly hfs report (Feb 2025) 0 (1) 2025/02/19 12:35
[syzbot] Monthly hfs report (Jan 2025) 0 (1) 2025/01/20 08:15
[syzbot] Monthly hfs report (Dec 2024) 0 (1) 2024/12/19 18:39
[syzbot] Monthly hfs report (Nov 2024) 0 (1) 2024/11/18 10:47
[syzbot] Monthly hfs report (Sep 2024) 0 (1) 2024/09/16 12:27
[PATCH v3] hfsplus: Initialize subfolders value in hfsplus_init_once 1 (1) 2024/07/28 17:29
[syzbot] KMSAN: uninit-value in hfsplus_delete_cat 0 (5) 2024/07/28 12:37
[PATCH v2] hfsplus: Initialize directory subfolders in hfsplus_mknod 2 (2) 2024/07/27 14:52
hfsplus: Initialize directory subfolders in hfsplus_mknod 2 (2) 2024/07/27 05:47
hfsplus: Initialize directory subfolders in hfsplus_mknod 2 (2) 2024/07/27 05:13
hfsplus: Initialize directory subfolders in hfsplus_mknod 1 (1) 2024/07/27 05:05
[syzbot] Monthly hfs report (Apr 2024) 0 (1) 2024/04/12 13:18
[syzbot] Monthly hfs report (Mar 2024) 0 (1) 2024/03/12 09:29
[syzbot] Monthly hfs report (Feb 2024) 0 (1) 2024/02/09 21:02
[syzbot] Monthly hfs report (Jan 2024) 0 (1) 2024/01/10 09:16
[syzbot] Monthly hfs report (Dec 2023) 0 (1) 2023/12/06 10:05
[syzbot] Monthly hfs report (Oct 2023) 0 (1) 2023/10/04 13:13
[syzbot] Monthly hfs report (Aug 2023) 0 (1) 2023/08/30 09:53
[syzbot] Monthly hfs report (Jul 2023) 0 (1) 2023/07/30 13:17
[syzbot] Monthly hfs report (Jun 2023) 0 (1) 2023/06/29 08:55
[syzbot] Monthly hfs report (May 2023) 0 (1) 2023/05/30 08:18
Last patch testing requests (9)
Created Duration User Patch Repo Result
2024/07/28 12:37 28m simeddon@gmail.com patch upstream OK log
2024/07/23 17:31 1h17m simeddon@gmail.com patch upstream OK log
2024/07/19 20:40 2h32m simeddon@gmail.com patch upstream OK log
2024/06/28 09:12 1h43m retest repro upstream error
2024/06/28 09:12 1h02m retest repro upstream error
2024/06/28 06:59 31m retest repro upstream error
2024/02/14 04:25 38m retest repro upstream error
2024/02/13 07:07 21m retest repro upstream error
2023/09/29 20:14 16m retest repro upstream report log

Sample crash report:
=====================================================
BUG: KMSAN: uninit-value in hfsplus_subfolders_dec fs/hfsplus/catalog.c:248 [inline]
BUG: KMSAN: uninit-value in hfsplus_delete_cat+0x1195/0x13d0 fs/hfsplus/catalog.c:419
 hfsplus_subfolders_dec fs/hfsplus/catalog.c:248 [inline]
 hfsplus_delete_cat+0x1195/0x13d0 fs/hfsplus/catalog.c:419
 hfsplus_rmdir+0x13c/0x310 fs/hfsplus/dir.c:425
 vfs_rmdir+0x5b6/0x800 fs/namei.c:4461
 do_rmdir+0x7d6/0xdc0 fs/namei.c:4516
 __do_sys_unlinkat fs/namei.c:4690 [inline]
 __se_sys_unlinkat fs/namei.c:4684 [inline]
 __x64_sys_unlinkat+0x166/0x210 fs/namei.c:4684
 x64_sys_call+0x3c44/0x3e20 arch/x86/include/generated/asm/syscalls_64.h:264
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xd9/0x210 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

Uninit was created at:
 __alloc_frozen_pages_noprof+0x689/0xf00 mm/page_alloc.c:5171
 alloc_pages_mpol+0x328/0x860 mm/mempolicy.c:2416
 alloc_frozen_pages_noprof+0xf7/0x200 mm/mempolicy.c:2487
 alloc_slab_page mm/slub.c:2487 [inline]
 allocate_slab+0x24d/0x1220 mm/slub.c:2655
 new_slab mm/slub.c:2709 [inline]
 ___slab_alloc+0x1024/0x34e0 mm/slub.c:3891
 __slab_alloc mm/slub.c:3981 [inline]
 __slab_alloc_node mm/slub.c:4056 [inline]
 slab_alloc_node mm/slub.c:4217 [inline]
 kmem_cache_alloc_lru_noprof+0x922/0xed0 mm/slub.c:4248
 hfsplus_alloc_inode+0x5a/0xd0 fs/hfsplus/super.c:625
 alloc_inode+0x8a/0x4a0 fs/inode.c:346
 iget_locked+0x239/0x12d0 fs/inode.c:1438
 hfsplus_iget+0x5c/0xb80 fs/hfsplus/super.c:65
 hfsplus_btree_open+0x128/0x1cf0 fs/hfsplus/btree.c:150
 hfsplus_fill_super+0x1161/0x2730 fs/hfsplus/super.c:472
 get_tree_bdev_flags+0x6e3/0x920 fs/super.c:1692
 get_tree_bdev+0x38/0x50 fs/super.c:1715
 hfsplus_get_tree+0x35/0x40 fs/hfsplus/super.c:638
 vfs_get_tree+0xb0/0x5c0 fs/super.c:1815
 do_new_mount+0x733/0x1420 fs/namespace.c:3808
 path_mount+0x6db/0x1e90 fs/namespace.c:4123
 do_mount fs/namespace.c:4136 [inline]
 __do_sys_mount fs/namespace.c:4347 [inline]
 __se_sys_mount+0x6eb/0x7d0 fs/namespace.c:4324
 __x64_sys_mount+0xe4/0x150 fs/namespace.c:4324
 x64_sys_call+0x3604/0x3e20 arch/x86/include/generated/asm/syscalls_64.h:166
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xd9/0x210 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

CPU: 1 UID: 0 PID: 5976 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(none) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
=====================================================

Crashes (4901):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2025/08/27 06:51 upstream fab1beda7597 e12e5ba4 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/05 02:07 upstream 59b723cd2adb 509da429 .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/07/26 17:57 upstream 1722389b0d86 3f86dfed .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/07/26 15:58 upstream 1722389b0d86 3f86dfed .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/03/24 22:38 upstream 70293240c5ce 0ea90952 .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/01/02 14:14 upstream 610a9b8f49fb fb427a07 .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2023/02/24 09:07 https://github.com/google/kmsan.git master 97e36f4aa06f 9e2ebb3c .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_lookup
2025/08/27 12:57 upstream fab1beda7597 e12e5ba4 .config console log report syz / log [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/04/04 04:58 upstream a2cc6ff5ec8f d7ae3a11 .config console log report syz / log [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/29 13:43 upstream e5f0a698b34e 86341da6 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/29 13:43 upstream e5f0a698b34e 86341da6 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/29 09:53 upstream e5f0a698b34e 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/29 07:09 upstream 8f9736633f8c 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/28 20:50 upstream 8f9736633f8c 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/28 17:23 upstream 51a24b7deaae 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/28 16:10 upstream 51a24b7deaae 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/28 13:36 upstream 51a24b7deaae 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/28 06:30 upstream 51a24b7deaae 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/28 03:02 upstream 51a24b7deaae 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/28 01:25 upstream 51a24b7deaae 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/28 00:20 upstream 51a24b7deaae 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/27 21:05 upstream 51a24b7deaae 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/27 21:05 upstream 51a24b7deaae 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/27 12:23 upstream fec734e8d564 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/27 00:42 upstream fec734e8d564 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/26 17:21 upstream 4ff71af020ae 0abd0691 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/26 14:15 upstream 4ff71af020ae 0abd0691 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/26 01:41 upstream 4ff71af020ae 0abd0691 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/24 22:27 upstream 4ea5af085908 0abd0691 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/23 17:18 upstream cec1e6e5d1ab 0ac7291c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/23 16:12 upstream cec1e6e5d1ab 0ac7291c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/23 13:44 upstream cec1e6e5d1ab 0ac7291c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/23 12:09 upstream cec1e6e5d1ab 0ac7291c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/23 04:00 upstream cec1e6e5d1ab 0ac7291c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/22 15:44 upstream 07e27ad16399 0ac7291c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/22 07:46 upstream 2d5bd41a4505 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/21 22:01 upstream 2d5bd41a4505 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/21 17:00 upstream f975f08c2e89 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/21 08:40 upstream f975f08c2e89 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/21 02:26 upstream 3b08f56fbbb9 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/20 20:55 upstream 3b08f56fbbb9 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/20 19:21 upstream 3b08f56fbbb9 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/20 14:48 upstream cd89d487374c 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/20 09:52 upstream cd89d487374c 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/19 23:34 upstream 097a6c336d00 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/19 21:19 upstream 097a6c336d00 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/19 19:56 upstream 097a6c336d00 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/19 15:52 upstream 097a6c336d00 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/27 15:52 upstream fec734e8d564 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/26 19:12 upstream 4ff71af020ae 0abd0691 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/23 06:06 upstream cec1e6e5d1ab 0ac7291c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfsplus_delete_cat
2025/09/20 17:05 upstream cd89d487374c 67c37560 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfsplus_delete_cat
2023/12/17 14:11 upstream 3b8a9b2e6809 3222d10c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_delete_cat
2022/12/03 22:22 https://github.com/google/kmsan.git master 49a9a20768f5 e080de16 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_delete_cat
2023/09/01 02:05 upstream b97d64c72259 696ea0d2 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_rename_cat
2023/07/23 10:44 upstream 295e1388de2d 27cbe77f .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs general protection fault in hfsplus_rename_cat
2023/06/07 10:48 upstream a4d7d7011219 a4ae4f42 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: wild-memory-access Read in hfsplus_delete_cat
2023/08/30 06:26 upstream eaf9f4649cf0 b42ca3a7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_lookup
* Struck through repros no longer work on HEAD.