syzbot

 sign-in | mailing list | source | docs
🐞 Open [1413]
Subsystems
🐞 Fixed [5827]
🐞 Invalid [14217]
Missing Backports [92]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KMSAN: uninit-value in hfsplus_delete_cat

Status: upstream: reported C repro on 2022/12/05 09:19
Subsystems: hfs
[Documentation on labels]
Reported-by: syzbot+fdedff847a0e5e84c39f@syzkaller.appspotmail.com
First crash: 718d, last: 4h53m
Discussions (18)
Title Replies (including bot) Last reply
[syzbot] Monthly hfs report (Nov 2024) 0 (1) 2024/11/18 10:47
[syzbot] Monthly hfs report (Sep 2024) 0 (1) 2024/09/16 12:27
[PATCH v3] hfsplus: Initialize subfolders value in hfsplus_init_once 1 (1) 2024/07/28 17:29
[syzbot] KMSAN: uninit-value in hfsplus_delete_cat 0 (5) 2024/07/28 12:37
[PATCH v2] hfsplus: Initialize directory subfolders in hfsplus_mknod 2 (2) 2024/07/27 14:52
hfsplus: Initialize directory subfolders in hfsplus_mknod 2 (2) 2024/07/27 05:47
hfsplus: Initialize directory subfolders in hfsplus_mknod 2 (2) 2024/07/27 05:13
hfsplus: Initialize directory subfolders in hfsplus_mknod 1 (1) 2024/07/27 05:05
[syzbot] Monthly hfs report (Apr 2024) 0 (1) 2024/04/12 13:18
[syzbot] Monthly hfs report (Mar 2024) 0 (1) 2024/03/12 09:29
[syzbot] Monthly hfs report (Feb 2024) 0 (1) 2024/02/09 21:02
[syzbot] Monthly hfs report (Jan 2024) 0 (1) 2024/01/10 09:16
[syzbot] Monthly hfs report (Dec 2023) 0 (1) 2023/12/06 10:05
[syzbot] Monthly hfs report (Oct 2023) 0 (1) 2023/10/04 13:13
[syzbot] Monthly hfs report (Aug 2023) 0 (1) 2023/08/30 09:53
[syzbot] Monthly hfs report (Jul 2023) 0 (1) 2023/07/30 13:17
[syzbot] Monthly hfs report (Jun 2023) 0 (1) 2023/06/29 08:55
[syzbot] Monthly hfs report (May 2023) 0 (1) 2023/05/30 08:18
Last patch testing requests (9)
Created Duration User Patch Repo Result
2024/07/28 12:37 28m simeddon@gmail.com patch upstream OK log
2024/07/23 17:31 1h17m simeddon@gmail.com patch upstream OK log
2024/07/19 20:40 2h32m simeddon@gmail.com patch upstream OK log
2024/06/28 09:12 1h43m retest repro upstream error
2024/06/28 09:12 1h02m retest repro upstream error
2024/06/28 06:59 31m retest repro upstream error
2024/02/14 04:25 38m retest repro upstream error
2024/02/13 07:07 21m retest repro upstream error
2023/09/29 20:14 16m retest repro upstream report log

Sample crash report:
loop0: detected capacity change from 0 to 1024
=====================================================
BUG: KMSAN: uninit-value in hfsplus_subfolders_dec fs/hfsplus/catalog.c:248 [inline]
BUG: KMSAN: uninit-value in hfsplus_delete_cat+0x10f0/0x1340 fs/hfsplus/catalog.c:419
 hfsplus_subfolders_dec fs/hfsplus/catalog.c:248 [inline]
 hfsplus_delete_cat+0x10f0/0x1340 fs/hfsplus/catalog.c:419
 hfsplus_rmdir+0x140/0x2e0 fs/hfsplus/dir.c:425
 vfs_rmdir+0x5bf/0x800 fs/namei.c:4340
 do_rmdir+0x630/0x8b0 fs/namei.c:4399
 __do_sys_rmdir fs/namei.c:4418 [inline]
 __se_sys_rmdir fs/namei.c:4416 [inline]
 __x64_sys_rmdir+0x76/0xa0 fs/namei.c:4416
 x64_sys_call+0x119a/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:85
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

Uninit was stored to memory at:
 hfsplus_subfolders_inc fs/hfsplus/catalog.c:232 [inline]
 hfsplus_create_cat+0x17f6/0x1800 fs/hfsplus/catalog.c:314
 hfsplus_mknod+0x201/0x560 fs/hfsplus/dir.c:494
 hfsplus_mkdir+0x58/0x70 fs/hfsplus/dir.c:529
 vfs_mkdir+0x4a0/0x780 fs/namei.c:4257
 do_mkdirat+0x529/0x810 fs/namei.c:4280
 __do_sys_mkdir fs/namei.c:4300 [inline]
 __se_sys_mkdir fs/namei.c:4298 [inline]
 __x64_sys_mkdir+0x9f/0xe0 fs/namei.c:4298
 x64_sys_call+0x2ef0/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:84
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

Uninit was stored to memory at:
 hfsplus_subfolders_inc fs/hfsplus/catalog.c:232 [inline]
 hfsplus_create_cat+0x17f6/0x1800 fs/hfsplus/catalog.c:314
 hfsplus_fill_super+0x227f/0x2700 fs/hfsplus/super.c:566
 mount_bdev+0x39a/0x520 fs/super.c:1693
 hfsplus_mount+0x4d/0x60 fs/hfsplus/super.c:647
 legacy_get_tree+0x114/0x290 fs/fs_context.c:662
 vfs_get_tree+0xb1/0x5a0 fs/super.c:1814
 do_new_mount+0x71f/0x15e0 fs/namespace.c:3507
 path_mount+0x742/0x1f10 fs/namespace.c:3834
 do_mount fs/namespace.c:3847 [inline]
 __do_sys_mount fs/namespace.c:4057 [inline]
 __se_sys_mount+0x722/0x810 fs/namespace.c:4034
 __x64_sys_mount+0xe4/0x150 fs/namespace.c:4034
 x64_sys_call+0x255a/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:166
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

Uninit was created at:
 __alloc_pages_noprof+0x9a7/0xe00 mm/page_alloc.c:4756
 alloc_pages_mpol_noprof+0x299/0x990 mm/mempolicy.c:2265
 alloc_pages_noprof+0x1bf/0x1e0 mm/mempolicy.c:2345
 alloc_slab_page mm/slub.c:2412 [inline]
 allocate_slab+0x320/0x12e0 mm/slub.c:2578
 new_slab mm/slub.c:2631 [inline]
 ___slab_alloc+0x12ef/0x35e0 mm/slub.c:3818
 __slab_alloc mm/slub.c:3908 [inline]
 __slab_alloc_node mm/slub.c:3961 [inline]
 slab_alloc_node mm/slub.c:4122 [inline]
 kmem_cache_alloc_lru_noprof+0x584/0xb30 mm/slub.c:4153
 hfsplus_alloc_inode+0x5a/0xd0 fs/hfsplus/super.c:633
 alloc_inode+0x86/0x460 fs/inode.c:265
 iget_locked+0x250/0x1290 fs/inode.c:1418
 hfsplus_iget+0x59/0xae0 fs/hfsplus/super.c:64
 hfsplus_fill_super+0x1486/0x2700 fs/hfsplus/super.c:500
 mount_bdev+0x39a/0x520 fs/super.c:1693
 hfsplus_mount+0x4d/0x60 fs/hfsplus/super.c:647
 legacy_get_tree+0x114/0x290 fs/fs_context.c:662
 vfs_get_tree+0xb1/0x5a0 fs/super.c:1814
 do_new_mount+0x71f/0x15e0 fs/namespace.c:3507
 path_mount+0x742/0x1f10 fs/namespace.c:3834
 do_mount fs/namespace.c:3847 [inline]
 __do_sys_mount fs/namespace.c:4057 [inline]
 __se_sys_mount+0x722/0x810 fs/namespace.c:4034
 __x64_sys_mount+0xe4/0x150 fs/namespace.c:4034
 x64_sys_call+0x255a/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:166
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

CPU: 1 UID: 0 PID: 5788 Comm: syz-executor382 Not tainted 6.12.0-rc6-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
=====================================================

Crashes (2081):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/11/05 02:07 upstream 59b723cd2adb 509da429 .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/07/26 17:57 upstream 1722389b0d86 3f86dfed .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/07/26 15:58 upstream 1722389b0d86 3f86dfed .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/03/24 22:38 upstream 70293240c5ce 0ea90952 .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/01/02 14:14 upstream 610a9b8f49fb fb427a07 .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2023/02/24 09:07 https://github.com/google/kmsan.git master 97e36f4aa06f 9e2ebb3c .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_lookup
2024/11/21 02:03 upstream bf9aa14fc523 4fca1650 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/21 02:03 upstream bf9aa14fc523 4fca1650 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/20 10:49 upstream a5c93bfec0be 7d02db5a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/19 22:47 upstream 158f238aa69d 571351cb .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/19 14:03 upstream c6d64479d609 571351cb .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/19 09:43 upstream c6d64479d609 571351cb .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/18 15:58 upstream adc218676eef 571351cb .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/18 08:09 upstream f66d6acccbc0 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/18 02:14 upstream f66d6acccbc0 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/18 00:46 upstream f66d6acccbc0 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/17 17:39 upstream 4a5df3796467 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/17 11:33 upstream 4a5df3796467 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/17 01:19 upstream e8bdb3c8be08 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/16 23:18 upstream e8bdb3c8be08 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/16 19:01 upstream e8bdb3c8be08 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/16 12:18 upstream f868cd251776 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/16 04:57 upstream f868cd251776 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/16 03:47 upstream f868cd251776 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/15 18:35 upstream cfaaa7d010d1 f6ede3a3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/15 12:26 upstream cfaaa7d010d1 f6ede3a3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/15 09:50 upstream cfaaa7d010d1 f6ede3a3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/15 08:09 upstream cfaaa7d010d1 f6ede3a3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/14 05:40 upstream f1b785f4c787 a8c99394 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/14 03:45 upstream f1b785f4c787 a8c99394 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/13 08:53 upstream 3022e9d00ebe 62026c85 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/13 05:17 upstream 3022e9d00ebe 62026c85 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/12 17:31 upstream 2d5404caa8c7 75bb1b32 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/12 12:46 upstream 2d5404caa8c7 75bb1b32 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/11 23:14 upstream 2d5404caa8c7 97fe5517 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/11 18:15 upstream 2d5404caa8c7 97fe5517 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/11 08:18 upstream a9cda7c0ffed 6b856513 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/10 12:18 upstream de2f378f2b77 6b856513 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/10 08:46 upstream de2f378f2b77 6b856513 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/18 18:52 upstream adc218676eef 571351cb .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/18 04:02 upstream f66d6acccbc0 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/17 02:21 upstream e8bdb3c8be08 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/16 09:50 upstream f868cd251776 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/15 01:37 upstream 0a9b9d17f3a7 77f3eeb7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/12 03:08 upstream 2d5404caa8c7 97fe5517 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/12 01:26 upstream 2d5404caa8c7 97fe5517 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/10 15:53 upstream de2f378f2b77 6b856513 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/10 15:53 upstream de2f378f2b77 6b856513 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfsplus_delete_cat
2024/11/10 14:47 upstream de2f378f2b77 6b856513 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfsplus_delete_cat
2023/12/17 14:11 upstream 3b8a9b2e6809 3222d10c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_delete_cat
2022/12/03 22:22 https://github.com/google/kmsan.git master 49a9a20768f5 e080de16 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_delete_cat
2023/09/01 02:05 upstream b97d64c72259 696ea0d2 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_rename_cat
2023/07/23 10:44 upstream 295e1388de2d 27cbe77f .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs general protection fault in hfsplus_rename_cat
2023/06/07 10:48 upstream a4d7d7011219 a4ae4f42 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-fs KASAN: wild-memory-access Read in hfsplus_delete_cat
2023/08/30 06:26 upstream eaf9f4649cf0 b42ca3a7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_lookup
* Struck through repros no longer work on HEAD.