syzbot


KMSAN: uninit-value in hfsplus_attr_bin_cmp_key

Status: upstream: reported on 2022/11/28 10:04
Labels: hfs (incorrect?)
Reported-by: syzbot+c6d8e1bffb0970780d5c@syzkaller.appspotmail.com
First crash: 192d, last: 38d
Discussions (1)
Title Replies (including bot) Last reply
[syzbot] KMSAN: uninit-value in hfsplus_attr_bin_cmp_key 0 (1) 2022/11/28 10:04
Similar bugs (1)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KASAN: slab-out-of-bounds Read in hfsplus_uni2asc hfs C error 681 11h22m 191d 0/24 upstream: reported C repro on 2022/11/28 10:02

Sample crash report:
loop4: detected capacity change from 0 to 1024
=====================================================
BUG: KMSAN: uninit-value in hfsplus_attr_bin_cmp_key+0xf1/0x190 fs/hfsplus/attributes.c:42
 hfsplus_attr_bin_cmp_key+0xf1/0x190 fs/hfsplus/attributes.c:42
 hfs_find_rec_by_key+0xb0/0x240 fs/hfsplus/bfind.c:100
 __hfsplus_brec_find+0x27e/0x7d0 fs/hfsplus/bfind.c:135
 hfsplus_brec_find+0x46a/0x9d0 fs/hfsplus/bfind.c:195
 hfsplus_delete_attr+0x51b/0x640 fs/hfsplus/attributes.c:341
 hfsplus_removexattr fs/hfsplus/xattr.c:794 [inline]
 __hfsplus_setxattr+0x78d/0x38f0 fs/hfsplus/xattr.c:275
 hfsplus_setxattr+0x129/0x1e0 fs/hfsplus/xattr.c:434
 hfsplus_security_setxattr+0x55/0x70 fs/hfsplus/xattr_security.c:31
 __vfs_removexattr+0x7b9/0x8e0 fs/xattr.c:498
 __vfs_removexattr_locked+0x27c/0x7d0 fs/xattr.c:533
 vfs_removexattr+0xcd/0x3e0 fs/xattr.c:555
 removexattr+0x282/0x340 fs/xattr.c:897
 path_removexattr+0x1d9/0x3c0 fs/xattr.c:911
 __do_sys_removexattr fs/xattr.c:925 [inline]
 __se_sys_removexattr fs/xattr.c:922 [inline]
 __ia32_sys_removexattr+0x71/0xb0 fs/xattr.c:922
 do_syscall_32_irqs_on arch/x86/entry/common.c:112 [inline]
 __do_fast_syscall_32+0xa2/0x100 arch/x86/entry/common.c:178
 do_fast_syscall_32+0x37/0x80 arch/x86/entry/common.c:203
 do_SYSENTER_32+0x1f/0x30 arch/x86/entry/common.c:246
 entry_SYSENTER_compat_after_hwframe+0x70/0x82

Uninit was created at:
 slab_post_alloc_hook+0x12d/0xb60 mm/slab.h:774
 slab_alloc_node mm/slub.c:3452 [inline]
 __kmem_cache_alloc_node+0x518/0x920 mm/slub.c:3491
 __do_kmalloc_node mm/slab_common.c:966 [inline]
 __kmalloc+0x121/0x3c0 mm/slab_common.c:980
 kmalloc include/linux/slab.h:584 [inline]
 hfsplus_find_init+0x91/0x250 fs/hfsplus/bfind.c:21
 hfsplus_delete_attr+0xf5/0x640 fs/hfsplus/attributes.c:321
 hfsplus_removexattr fs/hfsplus/xattr.c:794 [inline]
 __hfsplus_setxattr+0x78d/0x38f0 fs/hfsplus/xattr.c:275
 hfsplus_setxattr+0x129/0x1e0 fs/hfsplus/xattr.c:434
 hfsplus_security_setxattr+0x55/0x70 fs/hfsplus/xattr_security.c:31
 __vfs_removexattr+0x7b9/0x8e0 fs/xattr.c:498
 __vfs_removexattr_locked+0x27c/0x7d0 fs/xattr.c:533
 vfs_removexattr+0xcd/0x3e0 fs/xattr.c:555
 removexattr+0x282/0x340 fs/xattr.c:897
 path_removexattr+0x1d9/0x3c0 fs/xattr.c:911
 __do_sys_removexattr fs/xattr.c:925 [inline]
 __se_sys_removexattr fs/xattr.c:922 [inline]
 __ia32_sys_removexattr+0x71/0xb0 fs/xattr.c:922
 do_syscall_32_irqs_on arch/x86/entry/common.c:112 [inline]
 __do_fast_syscall_32+0xa2/0x100 arch/x86/entry/common.c:178
 do_fast_syscall_32+0x37/0x80 arch/x86/entry/common.c:203
 do_SYSENTER_32+0x1f/0x30 arch/x86/entry/common.c:246
 entry_SYSENTER_compat_after_hwframe+0x70/0x82

CPU: 1 PID: 8603 Comm: syz-executor.4 Not tainted 6.3.0-syzkaller-g81af97bdef5e #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
=====================================================

Crashes (18):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets Manager Title
2023/04/30 16:12 https://github.com/google/kmsan.git master 81af97bdef5e 62df2017 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/04/30 08:35 https://github.com/google/kmsan.git master 81af97bdef5e 62df2017 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/04/15 06:20 https://github.com/google/kmsan.git master c478e5b17829 ec410564 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/04/10 17:52 https://github.com/google/kmsan.git master 9189d4cb6980 71147e29 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/03/11 21:19 https://github.com/google/kmsan.git master e61893130d87 5205ef30 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/03/09 05:23 https://github.com/google/kmsan.git master e61893130d87 4fc6d98d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/03/09 05:23 https://github.com/google/kmsan.git master e61893130d87 4fc6d98d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/03/08 06:33 https://github.com/google/kmsan.git master e61893130d87 d2b00170 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/03/02 12:35 https://github.com/google/kmsan.git master 944070199c5e f8902b57 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/02/21 14:47 https://github.com/google/kmsan.git master 224e1375d540 f949448d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/02/19 02:28 https://github.com/google/kmsan.git master 31b504f219a9 bcdf85f8 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/02/19 02:04 https://github.com/google/kmsan.git master 31b504f219a9 bcdf85f8 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/02/19 02:03 https://github.com/google/kmsan.git master 31b504f219a9 bcdf85f8 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/01/16 02:02 https://github.com/google/kmsan.git master e919e2b1bc1c a63719e7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/01/08 01:11 https://github.com/google/kmsan.git master 5c6259d6d19f 1dac8c7a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2023/01/08 01:11 https://github.com/google/kmsan.git master 5c6259d6d19f 1dac8c7a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2022/12/03 14:59 https://github.com/google/kmsan.git master 49a9a20768f5 e080de16 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
2022/11/28 01:00 https://github.com/google/kmsan.git master a472f15b3d1e 74a66371 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfsplus_attr_bin_cmp_key
* Struck through repros no longer work on HEAD.