syzbot


KMSAN: uninit-value in post_read_mst_fixup

Status: auto-closed as invalid on 2022/05/31 07:12
Subsystems: fs
[Documentation on labels]
Reported-by: syzbot+c0c75a90b18291d3f84e@syzkaller.appspotmail.com
First crash: 1473d, last: 977d
Discussions (1)
Title Replies (including bot) Last reply
KMSAN: uninit-value in post_read_mst_fixup 0 (1) 2020/11/17 15:50
Similar bugs (6)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KMSAN: uninit-value in post_read_mst_fixup (2) ntfs3 C 192 211d 282d 0/28 auto-obsoleted due to no activity on 2024/05/15 20:54
upstream KMSAN: uninit-value in __crc32c_le_base (2) crypto C 6207 550d 1622d 0/28 closed as invalid on 2023/04/06 23:31
upstream KMSAN: kernel-infoleak in _copy_to_iter (8) mm C 21180 483d 578d 22/28 fixed on 2023/06/08 14:41
upstream KMSAN: uninit-value in virtqueue_add (3) virt 13 700d 992d 0/28 auto-obsoleted due to no activity on 2023/02/12 03:53
upstream KMSAN: kernel-infoleak in _copy_to_iter (7) net C 138977 587d 940d 22/28 fixed on 2023/02/24 13:50
upstream KMSAN: uninit-value in nilfs_add_checksums_on_logs nilfs 1079 484d 577d 22/28 fixed on 2023/06/08 14:41

Sample crash report:
ntfs: (device loop1): ntfs_end_buffer_async_read(): Buffer I/O error, logical block 0x12.
syz-executor.1: attempt to access beyond end of device
loop1: rw=0, want=80, limit=71
ntfs: (device loop1): ntfs_end_buffer_async_read(): Buffer I/O error, logical block 0x13.
=====================================================
BUG: KMSAN: uninit-value in post_read_mst_fixup+0x647/0xbc0 fs/ntfs/mst.c:39
 post_read_mst_fixup+0x647/0xbc0 fs/ntfs/mst.c:39
 ntfs_end_buffer_async_read+0x1039/0x1490 fs/ntfs/aops.c:133
 end_bio_bh_io_sync+0x176/0x230 fs/buffer.c:3005
 bio_endio+0xa7f/0xac0 block/bio.c:1491
 submit_bio_checks+0x4fe/0x27c0 block/blk-core.c:833
 blk_mq_get_request block/blk-mq.c:2589 [inline]
 blk_mq_submit_bio+0xd9f/0x44e0 block/blk-mq.c:2633
 __submit_bio+0x395/0xb80 block/blk-core.c:851
 __submit_bio_noacct_mq block/blk-core.c:926 [inline]
 submit_bio_noacct+0xda9/0xff0 block/blk-core.c:952
 submit_bio+0x4dc/0x760 block/blk-core.c:1013
 submit_bh_wbc+0xd31/0xdc0 fs/buffer.c:3054
 submit_bh+0x93/0xc0 fs/buffer.c:3060
 ntfs_read_block fs/ntfs/aops.c:345 [inline]
 ntfs_readpage+0x38cf/0x3c60 fs/ntfs/aops.c:435
 do_read_cache_page+0x1112/0x1620 mm/filemap.c:3464
 read_cache_page+0xf3/0x110 mm/filemap.c:3565
 read_mapping_page include/linux/pagemap.h:651 [inline]
 ntfs_map_page fs/ntfs/aops.h:75 [inline]
 map_mft_record_page+0x29c/0xe30 fs/ntfs/mft.c:73
 map_mft_record+0x91/0x260 fs/ntfs/mft.c:156
 ntfs_read_locked_inode+0x485/0x6b10 fs/ntfs/inode.c:550
 ntfs_iget+0x211/0x2f0 fs/ntfs/inode.c:177
 load_and_init_upcase+0x81/0x18c0 fs/ntfs/super.c:1655
 load_system_files+0x9d1/0x5000 fs/ntfs/super.c:1810
 ntfs_fill_super+0x379e/0x4e40 fs/ntfs/super.c:2891
 mount_bdev+0x626/0x920 fs/super.c:1370
 ntfs_mount+0xc9/0xe0 fs/ntfs/super.c:3048
 legacy_get_tree+0x163/0x2e0 fs/fs_context.c:610
 vfs_get_tree+0xd8/0x5d0 fs/super.c:1500
 do_new_mount+0x7b5/0x16f0 fs/namespace.c:2988
 path_mount+0x1021/0x28b0 fs/namespace.c:3318
 do_mount fs/namespace.c:3331 [inline]
 __do_sys_mount fs/namespace.c:3539 [inline]
 __se_sys_mount+0x8a8/0x9d0 fs/namespace.c:3516
 __ia32_sys_mount+0x157/0x1b0 fs/namespace.c:3516
 do_syscall_32_irqs_on arch/x86/entry/common.c:114 [inline]
 __do_fast_syscall_32+0x96/0xf0 arch/x86/entry/common.c:180
 do_fast_syscall_32+0x34/0x70 arch/x86/entry/common.c:205
 do_SYSENTER_32+0x1b/0x20 arch/x86/entry/common.c:248
 entry_SYSENTER_compat_after_hwframe+0x4d/0x5c

Uninit was created at:
 __alloc_pages+0xbbf/0x1090 mm/page_alloc.c:5409
 alloc_pages+0x8a5/0xb80
 folio_alloc+0x7b/0x180 mm/mempolicy.c:2201
 filemap_alloc_folio mm/filemap.c:1036 [inline]
 __page_cache_alloc include/linux/pagemap.h:374 [inline]
 do_read_cache_page+0x773/0x1620 mm/filemap.c:3448
 read_cache_page+0xf3/0x110 mm/filemap.c:3565
 read_mapping_page include/linux/pagemap.h:651 [inline]
 ntfs_map_page fs/ntfs/aops.h:75 [inline]
 map_mft_record_page+0x29c/0xe30 fs/ntfs/mft.c:73
 map_mft_record+0x91/0x260 fs/ntfs/mft.c:156
 ntfs_read_locked_inode+0x485/0x6b10 fs/ntfs/inode.c:550
 ntfs_iget+0x211/0x2f0 fs/ntfs/inode.c:177
 load_and_init_upcase+0x81/0x18c0 fs/ntfs/super.c:1655
 load_system_files+0x9d1/0x5000 fs/ntfs/super.c:1810
 ntfs_fill_super+0x379e/0x4e40 fs/ntfs/super.c:2891
 mount_bdev+0x626/0x920 fs/super.c:1370
 ntfs_mount+0xc9/0xe0 fs/ntfs/super.c:3048
 legacy_get_tree+0x163/0x2e0 fs/fs_context.c:610
 vfs_get_tree+0xd8/0x5d0 fs/super.c:1500
 do_new_mount+0x7b5/0x16f0 fs/namespace.c:2988
 path_mount+0x1021/0x28b0 fs/namespace.c:3318
 do_mount fs/namespace.c:3331 [inline]
 __do_sys_mount fs/namespace.c:3539 [inline]
 __se_sys_mount+0x8a8/0x9d0 fs/namespace.c:3516
 __ia32_sys_mount+0x157/0x1b0 fs/namespace.c:3516
 do_syscall_32_irqs_on arch/x86/entry/common.c:114 [inline]
 __do_fast_syscall_32+0x96/0xf0 arch/x86/entry/common.c:180
 do_fast_syscall_32+0x34/0x70 arch/x86/entry/common.c:205
 do_SYSENTER_32+0x1b/0x20 arch/x86/entry/common.c:248
 entry_SYSENTER_compat_after_hwframe+0x4d/0x5c

CPU: 0 PID: 5056 Comm: syz-executor.1 Not tainted 5.16.0-rc5-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
=====================================================

Crashes (199):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2022/01/31 07:11 https://github.com/google/kmsan.git master 85cfd6e539bd 495e00c5 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2022/01/19 03:44 https://github.com/google/kmsan.git master fa3879a274df 731a2d23 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2022/01/18 02:14 https://github.com/google/kmsan.git master fa3879a274df 731a2d23 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2022/01/17 07:48 https://github.com/google/kmsan.git master fa3879a274df 723cfaf0 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2022/01/16 09:21 https://github.com/google/kmsan.git master fa3879a274df 723cfaf0 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2022/01/14 02:33 https://github.com/google/kmsan.git master fa3879a274df b8d780ab .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2022/01/13 12:10 https://github.com/google/kmsan.git master fa3879a274df 44d1319a .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2022/01/13 07:07 https://github.com/google/kmsan.git master fa3879a274df 44d1319a .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2022/01/11 02:54 https://github.com/google/kmsan.git master 81c325bbf94e ddb0ab8c .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/12/06 05:40 https://github.com/google/kmsan.git master b0f85c4ccdd4 a617004c .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/12/03 08:02 https://github.com/google/kmsan.git master a535b0caaa2f 61f86278 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/11/30 15:01 https://github.com/google/kmsan.git master a535b0caaa2f 80270552 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/11/29 09:48 https://github.com/google/kmsan.git master a535b0caaa2f 63eeac02 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/11/29 00:13 https://github.com/google/kmsan.git master a535b0caaa2f 63eeac02 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/11/24 08:07 https://github.com/google/kmsan.git master 7ca3114e5a48 545ab074 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/11/24 06:40 https://github.com/google/kmsan.git master 7ca3114e5a48 545ab074 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/11/23 22:53 https://github.com/google/kmsan.git master 7ca3114e5a48 545ab074 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/11/21 09:44 https://github.com/google/kmsan.git master 425295055ce6 4eb20a4e .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/11/17 15:23 https://github.com/google/kmsan.git master 6a4b0eb32d37 cafff8b6 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/11/17 10:31 https://github.com/google/kmsan.git master 6a4b0eb32d37 cafff8b6 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/08/05 21:34 https://github.com/google/kmsan.git master ee9407ea37bf d2d6e680 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/07/24 19:02 https://github.com/google/kmsan.git master a43e029dee89 4d1b57d4 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/07/24 10:44 https://github.com/google/kmsan.git master a43e029dee89 4d1b57d4 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/07/22 10:33 https://github.com/google/kmsan.git master aeb985b98bde 29c3f20f .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/07/17 11:01 https://github.com/google/kmsan.git master a0f3a2c4404f f115ae98 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/07/17 02:28 https://github.com/google/kmsan.git master a0f3a2c4404f f115ae98 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/07/17 00:06 https://github.com/google/kmsan.git master a0f3a2c4404f f115ae98 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/07/16 22:56 https://github.com/google/kmsan.git master a0f3a2c4404f f115ae98 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/07/15 20:09 https://github.com/google/kmsan.git master 57b5797c8013 b9a2f64e .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/07/13 04:39 https://github.com/google/kmsan.git master 57b5797c8013 f415556d .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/07/12 05:20 https://github.com/google/kmsan.git master 57b5797c8013 a4869c92 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/07/05 20:38 https://github.com/google/kmsan.git master 57b5797c8013 55aa55c2 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/07/02 10:39 https://github.com/google/kmsan.git master 57b5797c8013 658ebc66 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/06/25 04:21 https://github.com/google/kmsan.git master a520ce29b172 0edbbe31 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/06/24 05:41 https://github.com/google/kmsan.git master 31ffdb453231 fe4ab389 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/06/20 16:48 https://github.com/google/kmsan.git master 6a6a67f21dec aba2b2fb .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/06/20 11:10 https://github.com/google/kmsan.git master 6a6a67f21dec aba2b2fb .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/06/19 10:09 https://github.com/google/kmsan.git master bfeba8b4c158 aba2b2fb .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/06/17 15:51 https://github.com/google/kmsan.git master 89a0faf20faa aba2b2fb .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/06/14 16:01 https://github.com/google/kmsan.git master 6099c9da2f7d 1ba81399 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/06/13 04:37 https://github.com/google/kmsan.git master 6099c9da2f7d 1ba81399 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/06/11 19:59 https://github.com/google/kmsan.git master 6099c9da2f7d 1ba81399 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/06/09 15:41 https://github.com/google/kmsan.git master 6099c9da2f7d 84fe5d96 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/06/03 11:44 https://github.com/google/kmsan.git master 6099c9da2f7d 0740de69 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/06/02 03:10 https://github.com/google/kmsan.git master 6099c9da2f7d 032639db .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/06/01 06:38 https://github.com/google/kmsan.git master 6099c9da2f7d 032639db .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/05/30 18:39 https://github.com/google/kmsan.git master 6099c9da2f7d 325a8dab .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/05/29 00:55 https://github.com/google/kmsan.git master 6099c9da2f7d 858ea628 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/05/28 21:13 https://github.com/google/kmsan.git master 6099c9da2f7d 858ea628 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/05/28 10:38 https://github.com/google/kmsan.git master 6099c9da2f7d 858ea628 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in post_read_mst_fixup
2021/01/16 22:30 https://github.com/google/kmsan.git master 73d62e81b476 65a7a854 .config console log report info ci-upstream-kmsan-gce-386
2020/11/16 17:46 https://github.com/google/kmsan.git master 73d62e81b476 1bf9a662 .config console log report info ci-upstream-kmsan-gce-386
2020/11/10 19:02 https://github.com/google/kmsan.git master e16174226146 cca87986 .config console log report info ci-upstream-kmsan-gce-386
2020/09/22 07:23 https://github.com/google/kmsan.git master c5a13b33ec11 9e1fa68e .config console log report info ci-upstream-kmsan-gce-386
* Struck through repros no longer work on HEAD.