syzbot

 sign-in | mailing list | source | docs
🐞 Open [1496]
Subsystems
🐞 Fixed [6588]
🐞 Invalid [16850]
Missing Backports [205]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KMSAN: uninit-value in hfs_find_set_zero_bits

Status: upstream: reported C repro on 2023/03/06 17:55
Subsystems: hfs
[Documentation on labels]
Reported-by: syzbot+773fa9d79b29bd8b6831@syzkaller.appspotmail.com
First crash: 950d, last: 5d06h
Discussions (14)
Title Replies (including bot) Last reply
[PATCH] hfs: fix KMSAN uninit-value issue in hfs_find_set_zero_bits() 1 (1) 2025/08/20 23:06
[syzbot] Monthly hfs report (Jul 2025) 0 (1) 2025/07/26 08:56
[syzbot] Monthly hfs report (Jun 2025) 0 (1) 2025/06/24 13:52
[syzbot] Monthly hfs report (May 2025) 0 (1) 2025/05/24 10:05
[syzbot] Monthly hfs report (Apr 2025) 0 (1) 2025/04/23 07:50
[syzbot] Monthly hfs report (Mar 2025) 0 (1) 2025/03/23 02:26
[syzbot] Monthly hfs report (Feb 2025) 0 (1) 2025/02/19 12:35
[syzbot] Monthly hfs report (Jan 2025) 0 (1) 2025/01/20 08:15
[syzbot] Monthly hfs report (Dec 2024) 0 (1) 2024/12/19 18:39
[syzbot] Monthly hfs report (Nov 2024) 0 (1) 2024/11/18 10:47
[syzbot] Monthly hfs report (Sep 2024) 0 (1) 2024/09/16 12:27
[syzbot] Monthly hfs report (Aug 2024) 0 (1) 2024/08/16 09:48
[syzbot] Monthly hfs report (Jun 2024) 0 (1) 2024/06/14 08:15
[syzbot] [hfs?] KMSAN: uninit-value in hfs_find_set_zero_bits 0 (1) 2023/03/06 17:55
Last patch testing requests (10)
Created Duration User Patch Repo Result
2025/08/12 19:09 27m retest repro upstream OK log
2025/08/11 15:37 4h06m retest repro upstream OK log
2025/08/11 15:37 3h51m retest repro upstream OK log
2025/08/11 15:37 30m retest repro upstream OK log
2025/08/11 15:37 29m retest repro upstream OK log
2025/08/11 15:37 51m retest repro upstream OK log
2025/08/11 14:59 30m retest repro upstream OK log
2024/06/28 08:22 22m retest repro upstream error
2024/06/28 08:22 22m retest repro upstream error
2024/06/28 07:54 25m retest repro upstream error

Sample crash report:
loop0: detected capacity change from 0 to 64
=====================================================
BUG: KMSAN: uninit-value in hfs_find_set_zero_bits+0x74d/0xb60 fs/hfs/bitmap.c:45
 hfs_find_set_zero_bits+0x74d/0xb60 fs/hfs/bitmap.c:45
 hfs_vbm_search_free+0x13c/0x5b0 fs/hfs/bitmap.c:151
 hfs_extend_file+0x6a5/0x1b00 fs/hfs/extent.c:408
 hfs_bmap_reserve+0x11c/0x5a0 fs/hfs/btree.c:269
 hfs_cat_create+0x22e/0xc40 fs/hfs/catalog.c:104
 hfs_create+0xce/0x250 fs/hfs/dir.c:202
 lookup_open fs/namei.c:3708 [inline]
 open_last_lookups fs/namei.c:3807 [inline]
 path_openat+0x2d47/0x6760 fs/namei.c:4043
 do_filp_open+0x280/0x660 fs/namei.c:4073
 do_sys_openat2+0x1bb/0x2f0 fs/open.c:1435
 do_sys_open fs/open.c:1450 [inline]
 __do_sys_openat fs/open.c:1466 [inline]
 __se_sys_openat fs/open.c:1461 [inline]
 __x64_sys_openat+0x240/0x300 fs/open.c:1461
 x64_sys_call+0x3bcc/0x3e20 arch/x86/include/generated/asm/syscalls_64.h:258
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xd9/0x210 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

Uninit was created at:
 __alloc_frozen_pages_noprof+0x689/0xf00 mm/page_alloc.c:5171
 alloc_pages_mpol+0x328/0x860 mm/mempolicy.c:2416
 alloc_frozen_pages_noprof+0xf7/0x200 mm/mempolicy.c:2487
 alloc_slab_page mm/slub.c:2487 [inline]
 allocate_slab+0x24d/0x1220 mm/slub.c:2655
 new_slab mm/slub.c:2709 [inline]
 ___slab_alloc+0x1024/0x34e0 mm/slub.c:3891
 __slab_alloc mm/slub.c:3981 [inline]
 __slab_alloc_node mm/slub.c:4056 [inline]
 slab_alloc_node mm/slub.c:4217 [inline]
 __do_kmalloc_node mm/slub.c:4364 [inline]
 __kvmalloc_node_noprof+0xcab/0x1530 mm/slub.c:5052
 kvmalloc_array_node_noprof include/linux/slab.h:1065 [inline]
 __ptr_ring_init_queue_alloc_noprof include/linux/ptr_ring.h:471 [inline]
 ptr_ring_init_noprof include/linux/ptr_ring.h:489 [inline]
 skb_array_init_noprof include/linux/skb_array.h:182 [inline]
 pfifo_fast_init+0x45c/0x7f0 net/sched/sch_generic.c:869
 qdisc_create_dflt+0x21c/0x640 net/sched/sch_generic.c:1019
 attach_one_default_qdisc net/sched/sch_generic.c:1178 [inline]
 netdev_for_each_tx_queue include/linux/netdevice.h:2660 [inline]
 attach_default_qdiscs net/sched/sch_generic.c:1196 [inline]
 dev_activate+0x4ce/0x1c10 net/sched/sch_generic.c:1255
 __dev_open+0xbc1/0xc60 net/core/dev.c:1691
 __dev_change_flags+0x3a8/0x9f0 net/core/dev.c:9549
 netif_change_flags+0x8d/0x1e0 net/core/dev.c:9612
 do_setlink+0x15c3/0x7e50 net/core/rtnetlink.c:3143
 rtnl_changelink net/core/rtnetlink.c:3761 [inline]
 __rtnl_newlink net/core/rtnetlink.c:3920 [inline]
 rtnl_newlink+0x2fcc/0x3a90 net/core/rtnetlink.c:4057
 rtnetlink_rcv_msg+0x106c/0x14b0 net/core/rtnetlink.c:6946
 netlink_rcv_skb+0x54d/0x680 net/netlink/af_netlink.c:2552
 rtnetlink_rcv+0x35/0x40 net/core/rtnetlink.c:6973
 netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]
 netlink_unicast+0xf01/0x12b0 net/netlink/af_netlink.c:1346
 netlink_sendmsg+0x10b3/0x1250 net/netlink/af_netlink.c:1896
 sock_sendmsg_nosec net/socket.c:714 [inline]
 __sock_sendmsg+0x333/0x3d0 net/socket.c:729
 __sys_sendto+0x593/0x720 net/socket.c:2228
 __do_sys_sendto net/socket.c:2235 [inline]
 __se_sys_sendto net/socket.c:2231 [inline]
 __x64_sys_sendto+0x130/0x200 net/socket.c:2231
 x64_sys_call+0x3910/0x3e20 arch/x86/include/generated/asm/syscalls_64.h:45
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xd9/0x210 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

CPU: 1 UID: 0 PID: 6083 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(none) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
=====================================================

Crashes (4197):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2025/08/28 05:14 upstream 39f90c196721 e12e5ba4 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/09/08 14:31 upstream 76eeb9b8de98 d291dd2d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/08/28 04:09 upstream 39f90c196721 e12e5ba4 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/28 14:41 upstream 038d61fd6422 fb8f743d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/28 11:59 upstream 038d61fd6422 fb8f743d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/27 22:57 upstream ec2df4364666 fb8f743d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/27 18:33 upstream ec2df4364666 fb8f743d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/27 07:22 upstream 302f88ff3584 fb8f743d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/27 04:27 upstream 302f88ff3584 fb8f743d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/26 06:00 upstream 327579671a9b fb8f743d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/26 06:00 upstream 327579671a9b fb8f743d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/25 01:39 upstream 25fae0b93d1d fb8f743d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/24 02:00 upstream 01a412d06bc5 0c1d6ded .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/23 23:53 upstream 01a412d06bc5 0c1d6ded .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/23 11:17 upstream 89be9a83ccf1 e1dd4f22 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/23 07:19 upstream 89be9a83ccf1 e1dd4f22 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/22 08:47 upstream 89be9a83ccf1 1555463b .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/22 01:30 upstream 89be9a83ccf1 0b3788a0 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/22 01:30 upstream 89be9a83ccf1 0b3788a0 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/21 16:28 upstream 89be9a83ccf1 0b3788a0 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/21 05:22 upstream 89be9a83ccf1 7117feec .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/20 17:15 upstream f4a40a4282f4 7117feec .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/20 16:52 upstream f4a40a4282f4 7117feec .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/20 15:19 upstream f4a40a4282f4 7117feec .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/20 07:32 upstream bf61759db409 7117feec .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/20 02:20 upstream bf61759db409 7117feec .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/19 11:57 upstream 4871b7cb27f4 7117feec .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/19 09:28 upstream 4871b7cb27f4 7117feec .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/19 00:24 upstream d786aba32000 f550e092 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/18 08:16 upstream 6832a9317eee 0d1223f1 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/17 17:56 upstream e2291551827f 0d1223f1 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/17 06:01 upstream e2291551827f 44f8051e .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/02/07 20:03 upstream bb066fe812d6 a4f327c2 .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2024/10/30 12:08 upstream c1e939a21eb1 66aeb999 .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2024/07/21 23:01 upstream 2c9b3512402e b88348e9 .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2024/07/21 19:31 upstream 2c9b3512402e b88348e9 .config strace log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2024/03/14 20:23 upstream 480e035fc4c7 d615901c .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2023/12/27 12:51 upstream fbafc3e621c3 fb427a07 .config strace log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/09/13 09:36 upstream 22f20375f5b7 e2beed91 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/27 23:47 upstream ec2df4364666 fb8f743d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/25 03:26 upstream 25fae0b93d1d fb8f743d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/24 03:46 upstream 01a412d06bc5 0c1d6ded .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/22 12:04 upstream 89be9a83ccf1 1555463b .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/21 21:23 upstream 89be9a83ccf1 0b3788a0 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/21 18:38 upstream 89be9a83ccf1 0b3788a0 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/20 21:14 upstream f4a40a4282f4 7117feec .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/20 11:45 upstream bf61759db409 7117feec .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/20 04:45 upstream bf61759db409 7117feec .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/19 16:30 upstream 4871b7cb27f4 7117feec .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/19 10:40 upstream 4871b7cb27f4 7117feec .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/19 01:53 upstream d786aba32000 f550e092 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/18 09:19 upstream 6832a9317eee 0d1223f1 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfs_find_set_zero_bits
2025/07/17 10:45 upstream e2291551827f 44f8051e .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in hfs_find_set_zero_bits
2023/12/15 05:25 upstream c7402612e2e6 3222d10c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfs_find_set_zero_bits
2023/03/02 22:57 https://github.com/google/kmsan.git master 944070199c5e f8902b57 .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hfs_find_set_zero_bits
* Struck through repros no longer work on HEAD.