From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mail-wm1-f52.google.com (mail-wm1-f52.google.com [209.85.128.52]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id CF90835B136 for ; Sat, 18 Apr 2026 13:10:51 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=209.85.128.52 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1776517853; cv=none; b=O5NdR7UxEjzfEryWzVUCkPE4Om8/3cb3n2SwFmltiFmuhOVKljnLC6nFQZk+PgO2rU5Ab0EPV+b8w9brbpbZAc9Z1XMBH7wlJmNQkKS2yCEX5/N5SH1XWVdF0E3On8PdGlASKZmGeXP5GiDPZ90Em69S7Wl90uiaHZyOIbvXHio= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1776517853; c=relaxed/simple; bh=aPbZ5ymb3d5dKk9NYSabaQZ61XClFCKtNen++M+fRsc=; h=From:To:Cc:Subject:Date:Message-ID:MIME-Version; b=eCeUZSoFTzIAsmLnjmiDUWs/nC8o7Sd/qCIcLOLdZ75MvfwetfiIP6xIUvuO9z1jdPsFFZ0tXdV4596ajO8XnajNls4f28aCI/BZ+t3UgzS+k1bzEnavC2GbKl+7MM3VtYMVzaAI8vGwXIspeBxLUQmfgBZn5K64tdVbnN0wLnk= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=gmail.com; spf=pass smtp.mailfrom=gmail.com; dkim=pass (2048-bit key) header.d=gmail.com header.i=@gmail.com header.b=P1gWgoIm; arc=none smtp.client-ip=209.85.128.52 Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=gmail.com Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=gmail.com Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=gmail.com header.i=@gmail.com header.b="P1gWgoIm" Received: by mail-wm1-f52.google.com with SMTP id 5b1f17b1804b1-488c2690057so15020655e9.0 for ; Sat, 18 Apr 2026 06:10:51 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20251104; t=1776517850; x=1777122650; darn=vger.kernel.org; h=content-transfer-encoding:mime-version:message-id:date:subject:cc :to:from:from:to:cc:subject:date:message-id:reply-to; bh=700dgybNF4lsIbcRAdfipQ719p0FNtgEBpwSz84w2qI=; b=P1gWgoImbNhAnx/kQNFHbZpoxDDe+htvrKT+JNPsqtZNppZ9v9QRi6tVnPxwkf+F6d /8H8LRLJC2fqhocSV64yGQQBxJsAPmoh3loFAi/JycQCuJr+OvvoZjDi+WQ0VTRuqQbL 3Bpvrvl522CIHxrgSgmqCbwkhSKpQICnC72VGHMPpDE8lodzk4fgC6tA5pLKUgLBE98m KXrp+JbxLGCtmhM9wDX/RoQrBK1hG6HhEv4TtC7Sys/UbxJ3Mga+g5DHxgqIdqldDDge OO9l27TsZOeOSRqkExzZm03KdLpDAcwHITRF3tseCR1s68ZQkjP7t9sb+HOQQsxLelDe 9N3Q== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1776517850; x=1777122650; h=content-transfer-encoding:mime-version:message-id:date:subject:cc :to:from:x-gm-gg:x-gm-message-state:from:to:cc:subject:date :message-id:reply-to; bh=700dgybNF4lsIbcRAdfipQ719p0FNtgEBpwSz84w2qI=; b=Z+hWXSM6bmjdKe0H1GdMINZ+pk7IVgVXiZ6msCpTyTGoHK1PyUHulZ0zHZkukOPfRO u0jmaJYQJlCvulNLFWjoPG2/dl76azfZC1HyZZTScUSt5QM95DgWA1uIGL6Hv6/K3M1K h0nBgwVC5NKkKGxFkQnvj1LwSnySve9fNsXv8VrX4lwtcPtAmkp41h7hL/yfUr0jj6Yw v2ojWdbr8SF0dVbsTqEZ8UIyOIcKjQu0aV53bgXoIgJ2q5Q9GqRCrVRVn491h/BYcrkY pCI+y1D6T0DVxtBGi/puQasIUAquVwfrb1APGEdTstINSRiirCqq6rOwHuM8lnnGpCN3 GW+A== X-Forwarded-Encrypted: i=1; AFNElJ8DiLijtR0LYe+3/+rOlf6ARbguBiV1JTswzmqMbIvEszR5LWn7496T+uRinnVatqHLeSfmeMasCANZcmo=@vger.kernel.org X-Gm-Message-State: AOJu0Yz/2Auh7ewlWsbmKZzMhBPYVDnArdvkdE/D3MxecTz/jgMFLWoE NGNmKVacp9X8YKvoZSTJFuUds9a74agF9/HsxfPCt+xCmfSVCCLvjN4= X-Gm-Gg: AeBDietqO2kE/Uxbpd7dMz1/VLBktcFyWJIAkG/3IqezdvAV42jZH3V3famK9httcne hbiVzB7LtX+kh1AQmUNaV5EaGxqUx+UEWQWlvsy3g8RnlYRL5ZdxGrv4wsu1F6AARIu59nfeA+R 9+Q1zeX9jBwePKNXi9vDni4VgM27wNXPG9i+OQLorhM0OlCwjy5WeM/g2hnr7jE1WjSlRd+7oOO uBY2KTDqX3Qg+HctJ+fvgo32Ktg1NbeOkEQLrjbsVPzaa1zm9vNjFFlC8mG/hilI1eA63+eDR3a nJZXfKTKQR7IRi2HjuhI+NkoBqeQrqoFeuJZBLrP1JpYqqvFANXDAFbPJYuz1TTGcoKJH06eIfI Zz6632l23X1+e6mv6nBGz5oa885NNLwTI+70GIqeagCBgnWT4z3l3aRu2IUc0vcYxQIISapUTop NmbdY= X-Received: by 2002:a05:600c:3e05:b0:486:ffa3:594 with SMTP id 5b1f17b1804b1-488fb78049amr98923805e9.23.1776517849810; Sat, 18 Apr 2026 06:10:49 -0700 (PDT) Received: from debian.. ([2001:41d0:303:db6b::]) by smtp.gmail.com with ESMTPSA id 5b1f17b1804b1-488fc1393d3sm190186135e9.11.2026.04.18.06.10.48 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Sat, 18 Apr 2026 06:10:49 -0700 (PDT) From: Tristan Madani To: mark@fasheh.com, jlbec@evilplan.org, joseph.qi@linux.alibaba.com Cc: ocfs2-devel@lists.linux.dev, linux-kernel@vger.kernel.org, syzbot+7ea0b96c4ddb49fd1a70@syzkaller.appspotmail.com Subject: [PATCH] ocfs2: use kzalloc for quota recovery bitmap allocation Date: Sat, 18 Apr 2026 13:10:48 +0000 Message-ID: <20260418131048.1052507-1-tristmd@gmail.com> X-Mailer: git-send-email 2.47.3 Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 Content-Transfer-Encoding: 8bit From: Tristan Madani ocfs2 quota recovery allocates a bitmap buffer with kmalloc and does not fully initialize it. This can lead to use of uninitialized bits during quota recovery from a corrupted filesystem image. Use kzalloc instead to ensure the bitmap is zero-initialized. Reported-by: syzbot+7ea0b96c4ddb49fd1a70@syzkaller.appspotmail.com Cc: stable@vger.kernel.org Signed-off-by: Tristan Madani --- fs/ocfs2/quota_local.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/fs/ocfs2/quota_local.c b/fs/ocfs2/quota_local.c index 12cbb4fccda0d..f55810c59b1b1 100644 --- a/fs/ocfs2/quota_local.c +++ b/fs/ocfs2/quota_local.c @@ -302,7 +302,7 @@ static int ocfs2_add_recovery_chunk(struct super_block *sb, if (!rc) return -ENOMEM; rc->rc_chunk = chunk; - rc->rc_bitmap = kmalloc(sb->s_blocksize, GFP_NOFS); + rc->rc_bitmap = kzalloc(sb->s_blocksize, GFP_NOFS); if (!rc->rc_bitmap) { kfree(rc); return -ENOMEM; -- 2.47.3