From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mail-pl1-f172.google.com (mail-pl1-f172.google.com [209.85.214.172]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 0ADF418C33A for ; Thu, 29 Aug 2024 10:39:41 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=209.85.214.172 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1724927983; cv=none; b=NFElw8gZrI5pzbj0JPYGv8wfwqw7gkdC+1jWhjZCOdd72lYSldhbKQ0iphqJiSa8FpKaDg66ZNobBjYnAhd1yAdTapy2YyFcWbjKJ3Vk0xZ8NzHGDn6aeavjfKwivg22inwrU+uTM9zv1E350jw9iCt5X83rJoTDnOMxScql9fU= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1724927983; c=relaxed/simple; bh=H4ThLHPnoX33maHuj+G5p19yhTbbU8UuyNF2JahecVE=; h=Message-ID:Date:MIME-Version:Subject:To:References:From: In-Reply-To:Content-Type; b=LwRx1VLizTkaoSW46Sx+znU68ENDtRZbFxXbcm+4l6vDXBJNVA8cNJ3DsbCB4T3/8FQaARbh7pTCQJzrELc0uRDluTPomwm6g7X+rIdpFGeMuCpbG5HcxxnR4RiVnX5FFUUHe26+ZR0AMvDGO6nZv+P4qVTgGJuw8cOVb/1dbKg= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=none (p=none dis=none) header.from=kernel.dk; spf=pass smtp.mailfrom=kernel.dk; dkim=pass (2048-bit key) header.d=kernel-dk.20230601.gappssmtp.com header.i=@kernel-dk.20230601.gappssmtp.com header.b=p3SZ36RW; arc=none smtp.client-ip=209.85.214.172 Authentication-Results: smtp.subspace.kernel.org; dmarc=none (p=none dis=none) header.from=kernel.dk Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=kernel.dk Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=kernel-dk.20230601.gappssmtp.com header.i=@kernel-dk.20230601.gappssmtp.com header.b="p3SZ36RW" Received: by mail-pl1-f172.google.com with SMTP id d9443c01a7336-201df0b2df4so3800645ad.0 for ; Thu, 29 Aug 2024 03:39:41 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kernel-dk.20230601.gappssmtp.com; s=20230601; t=1724927981; x=1725532781; darn=vger.kernel.org; h=content-transfer-encoding:in-reply-to:from:content-language :references:to:subject:user-agent:mime-version:date:message-id:from :to:cc:subject:date:message-id:reply-to; bh=sJT7cCqC9KSi/JysyxzXg5pGbqUdVqvpB8/twIOhti0=; b=p3SZ36RWioY/VWimRYjYeBIsgB3yTM5TpHSPYSlMUAMX4jneqJZ4l04YY5frap6DIB q/u/ZrTbXdNCEUXxf+qBGROxhn/0MQk5UdBQdXUxL8dObjsfPRcvYDJZNncplPgbuHoY smVdFPygPlGMHbQ2jH1L/4Ol2lJM5Kc0y+V8Pyo1/+IOoiCARN5YhbhxR8pk8gTOj+rM k42kPoefX6gnoAmnUctcQqgjBqH+WJ+5ZGiMrw7EJNVL08ToOMRrtBWHPeQr4EIpf9Rh NuPesB05ZO6FbmPIPpv5iishGMdU0CPFfnsxwcOKQPqqfdRW/WYI7RAgVO7pVYJ3d36j M0XA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1724927981; x=1725532781; h=content-transfer-encoding:in-reply-to:from:content-language :references:to:subject:user-agent:mime-version:date:message-id :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=sJT7cCqC9KSi/JysyxzXg5pGbqUdVqvpB8/twIOhti0=; b=g89ZiM+kCsdJKlEV2rt4RExfoKzVYGzZFbAW1EMx2nBOASiTO/TQ8I8c8clHjCU+X+ VN2WpIEXZXHkkakJ30KDkBFVDX+O9/+gGNNNXNRB9lwAdSsXMCvsNlW/qAAfkx2dZA+w S7W4AZK92x3hE6XzF1NL4Zph0ygxfhTokY8AITYzXcJ8dpZx74ZWuVxEivf2aT3niJCI 9h/Ny9P5R1pNHcpYehfvx5Q6lRbtsuUN7pCRQBZUa/aaCi+xF0fecz3yfN2chXP3bFZa p7NwSG+KjKi5dv6/Mj/PRXelSfakpXDn7+P/ly7DYcxidXL+m5bL5ULpkAvaoZNaoSLc GArg== X-Forwarded-Encrypted: i=1; AJvYcCWbzNmgw5tZDvuF4UNM7piMMn3vozy8VWQz/6sdZI6vtJrhbkYNcgVtHIfi7eGUOCMdZpq6rNQim0IL@vger.kernel.org X-Gm-Message-State: AOJu0YyPmoxB8VY7dH9gHikh7uRIFrI5yXMWvazQbM/HMeh+LwENuY3U NHEKBjWFRsWl4rGqeEfP1eKakh7DYITKGEVEMjoSQ1FAqj4GHnmamHJgiydwO6c= X-Google-Smtp-Source: AGHT+IH9Bqu0fGCXqPP5kHE33n6VLGa/iqT2gAlJIPQyRuWJXMXfjh/9JMcbV3KNyOF7ot/Nrz6qxA== X-Received: by 2002:a17:902:dac6:b0:202:3cd0:5ef2 with SMTP id d9443c01a7336-2050c4c385amr29508955ad.63.1724927981310; Thu, 29 Aug 2024 03:39:41 -0700 (PDT) Received: from [192.168.1.150] ([198.8.77.157]) by smtp.gmail.com with ESMTPSA id d9443c01a7336-205152b11cfsm8764085ad.1.2024.08.29.03.39.40 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Thu, 29 Aug 2024 03:39:40 -0700 (PDT) Message-ID: Date: Thu, 29 Aug 2024 04:39:39 -0600 Precedence: bulk X-Mailing-List: linux-ext4@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Subject: Re: [syzbot] [ext4?] KASAN: use-after-free Read in ext4_inlinedir_to_tree To: syzbot , adilger.kernel@dilger.ca, asml.silence@gmail.com, linux-ext4@vger.kernel.org, linux-kernel@vger.kernel.org, syzkaller-bugs@googlegroups.com, tytso@mit.edu References: <000000000000d133670620c640fe@google.com> Content-Language: en-US From: Jens Axboe In-Reply-To: <000000000000d133670620c640fe@google.com> Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit On 8/28/24 4:55 PM, syzbot wrote: > Hello, > > syzbot found the following issue on: > > HEAD commit: d2bafcf224f3 Merge tag 'cgroup-for-6.11-rc4-fixes' of git:.. > git tree: upstream > console output: https://syzkaller.appspot.com/x/log.txt?x=1660edd5980000 > kernel config: https://syzkaller.appspot.com/x/.config?x=4fc2afd52fd008bb > dashboard link: https://syzkaller.appspot.com/bug?extid=46b0888255f68622d309 > compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 > syz repro: https://syzkaller.appspot.com/x/repro.syz?x=15d4ae09980000 > C reproducer: https://syzkaller.appspot.com/x/repro.c?x=158d6609980000 > > Downloadable assets: > disk image: https://storage.googleapis.com/syzbot-assets/7569f02310fb/disk-d2bafcf2.raw.xz > vmlinux: https://storage.googleapis.com/syzbot-assets/e30fee7b6c1d/vmlinux-d2bafcf2.xz > kernel image: https://storage.googleapis.com/syzbot-assets/2ffddebac153/bzImage-d2bafcf2.xz > mounted in repro: https://storage.googleapis.com/syzbot-assets/e4fb4afad539/mount_0.gz > > The issue was bisected to: > > commit e5598d6ae62626d261b046a2f19347c38681ff51 > Author: Pavel Begunkov > Date: Thu Aug 24 22:53:31 2023 +0000 > > io_uring: compact SQ/CQ heads/tails As mentioned before, this bisection result is clearly bogus. -- Jens Axboe