[syzbot] [crypto?] [ntfs3?] KMSAN: uninit-value in sw842_compress

Hello,

syzbot found the following issue on:

HEAD commit: 88fac17500f4 Merge tag 'fuse-fixes-6.11-rc7' of git://git...
git tree: upstream
console+strace: https://syzkaller.appspot.com/x/log.txt?x=14d165b7980000
kernel config: https://syzkaller.appspot.com/x/.config?x=35c699864e165c51
dashboard link: https://syzkaller.appspot.com/bug?extid=17cae3c0a5b0acdc327d
compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=156a4e8f980000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=13a2c309980000

Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/6e5a9ba13ba0/disk-88fac175.raw.xz
vmlinux: https://storage.googleapis.com/syzbot-assets/229238ec073e/vmlinux-88fac175.xz
kernel image: https://storage.googleapis.com/syzbot-assets/64327bdcda24/bzImage-88fac175.xz
mounted in repro: https://storage.googleapis.com/syzbot-assets/e120b354c45a/mount_0.gz

IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: [email protected]

=====================================================
BUG: KMSAN: uninit-value in check_template lib/842/842_compress.c:391 [inline]
BUG: KMSAN: uninit-value in process_next lib/842/842_compress.c:456 [inline]
BUG: KMSAN: uninit-value in sw842_compress+0x15eb/0x5990 lib/842/842_compress.c:543
check_template lib/842/842_compress.c:391 [inline]
process_next lib/842/842_compress.c:456 [inline]
sw842_compress+0x15eb/0x5990 lib/842/842_compress.c:543
crypto842_scompress+0x4f/0x70 crypto/842.c:78
scomp_acomp_comp_decomp+0x7c6/0xb90
scomp_acomp_compress+0x32/0x40 crypto/scompress.c:187
crypto_acomp_compress include/crypto/acompress.h:251 [inline]
zswap_compress+0x368/0xad0 mm/zswap.c:927
zswap_store+0x1af3/0x2dd0 mm/zswap.c:1459
swap_writepage+0x11f/0x470 mm/page_io.c:198
shmem_writepage+0x1a75/0x1f70 mm/shmem.c:1536
pageout mm/vmscan.c:680 [inline]
shrink_folio_list+0x577f/0x7cb0 mm/vmscan.c:1360
evict_folios+0x9bce/0xbc80 mm/vmscan.c:4580
try_to_shrink_lruvec+0x13a3/0x1750 mm/vmscan.c:4775
shrink_one+0x646/0xd20 mm/vmscan.c:4813
shrink_many mm/vmscan.c:4876 [inline]
lru_gen_shrink_node mm/vmscan.c:4954 [inline]
shrink_node+0x451a/0x50f0 mm/vmscan.c:5934
kswapd_shrink_node mm/vmscan.c:6762 [inline]
balance_pgdat mm/vmscan.c:6954 [inline]
kswapd+0x2627/0x4350 mm/vmscan.c:7223
kthread+0x3e2/0x540 kernel/kthread.c:389
ret_from_fork+0x6d/0x90 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244

<Zero or more stacks not recorded to save memory>

Uninit was stored to memory at:
memcpy_from_iter lib/iov_iter.c:73 [inline]
iterate_bvec include/linux/iov_iter.h:122 [inline]
iterate_and_advance2 include/linux/iov_iter.h:249 [inline]
iterate_and_advance include/linux/iov_iter.h:271 [inline]
__copy_from_iter lib/iov_iter.c:249 [inline]
copy_page_from_iter_atomic+0x12bb/0x2ae0 lib/iov_iter.c:481
copy_folio_from_iter_atomic include/linux/uio.h:186 [inline]
generic_perform_write+0x896/0x12e0 mm/filemap.c:4032
shmem_file_write_iter+0x2bd/0x2f0 mm/shmem.c:3074
do_iter_readv_writev+0x8a1/0xa40
vfs_iter_write+0x459/0xd50 fs/read_write.c:895
lo_write_bvec drivers/block/loop.c:243 [inline]
lo_write_simple drivers/block/loop.c:264 [inline]
do_req_filebacked drivers/block/loop.c:511 [inline]
loop_handle_cmd drivers/block/loop.c:1910 [inline]
loop_process_work+0x15ec/0x3750 drivers/block/loop.c:1945
loop_rootcg_workfn+0x2b/0x40 drivers/block/loop.c:1976
process_one_work kernel/workqueue.c:3231 [inline]
process_scheduled_works+0xae0/0x1c40 kernel/workqueue.c:3312
worker_thread+0xea7/0x14d0 kernel/workqueue.c:3389
kthread+0x3e2/0x540 kernel/kthread.c:389
ret_from_fork+0x6d/0x90 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244

Uninit was stored to memory at:
ntfs_write_bh+0x652/0xdb0 fs/ntfs3/fsntfs.c:1450
indx_write fs/ntfs3/index.c:1027 [inline]
indx_update_dup+0xd81/0xf80 fs/ntfs3/index.c:2694
ni_update_parent+0x12de/0x14b0 fs/ntfs3/frecord.c:3301
ni_write_inode+0x1cf4/0x1de0 fs/ntfs3/frecord.c:3392
ntfs3_write_inode+0x94/0xb0 fs/ntfs3/inode.c:1052
write_inode fs/fs-writeback.c:1497 [inline]
__writeback_single_inode+0x849/0x12c0 fs/fs-writeback.c:1716
writeback_sb_inodes+0xc95/0x1e00 fs/fs-writeback.c:1947
__writeback_inodes_wb+0x14c/0x440 fs/fs-writeback.c:2018
wb_writeback+0x50b/0xea0 fs/fs-writeback.c:2129
wb_check_background_flush fs/fs-writeback.c:2199 [inline]
wb_do_writeback fs/fs-writeback.c:2287 [inline]
wb_workfn+0x122c/0x1940 fs/fs-writeback.c:2314
process_one_work kernel/workqueue.c:3231 [inline]
process_scheduled_works+0xae0/0x1c40 kernel/workqueue.c:3312
worker_thread+0xea7/0x14d0 kernel/workqueue.c:3389
kthread+0x3e2/0x540 kernel/kthread.c:389
ret_from_fork+0x6d/0x90 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244

Uninit was stored to memory at:
ntfs_read_run_nb+0x786/0x1070 fs/ntfs3/fsntfs.c:1252
ntfs_read_bh+0x64/0xde0 fs/ntfs3/fsntfs.c:1313
indx_read+0x44e/0x17b0 fs/ntfs3/index.c:1067
indx_find+0xd12/0x1440 fs/ntfs3/index.c:1181
indx_update_dup+0x607/0xf80 fs/ntfs3/index.c:2666
ni_update_parent+0x12de/0x14b0 fs/ntfs3/frecord.c:3301
ni_write_inode+0x1cf4/0x1de0 fs/ntfs3/frecord.c:3392
ntfs3_write_inode+0x94/0xb0 fs/ntfs3/inode.c:1052
write_inode fs/fs-writeback.c:1497 [inline]
__writeback_single_inode+0x849/0x12c0 fs/fs-writeback.c:1716
writeback_sb_inodes+0xc95/0x1e00 fs/fs-writeback.c:1947
__writeback_inodes_wb+0x14c/0x440 fs/fs-writeback.c:2018
wb_writeback+0x50b/0xea0 fs/fs-writeback.c:2129
wb_check_background_flush fs/fs-writeback.c:2199 [inline]
wb_do_writeback fs/fs-writeback.c:2287 [inline]
wb_workfn+0x122c/0x1940 fs/fs-writeback.c:2314
process_one_work kernel/workqueue.c:3231 [inline]
process_scheduled_works+0xae0/0x1c40 kernel/workqueue.c:3312
worker_thread+0xea7/0x14d0 kernel/workqueue.c:3389
kthread+0x3e2/0x540 kernel/kthread.c:389
ret_from_fork+0x6d/0x90 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244

Uninit was stored to memory at:
ntfs_write_bh+0x652/0xdb0 fs/ntfs3/fsntfs.c:1450
indx_write fs/ntfs3/index.c:1027 [inline]
indx_update_dup+0xd81/0xf80 fs/ntfs3/index.c:2694
ni_update_parent+0x12de/0x14b0 fs/ntfs3/frecord.c:3301
ni_write_inode+0x1cf4/0x1de0 fs/ntfs3/frecord.c:3392
ntfs3_write_inode+0x94/0xb0 fs/ntfs3/inode.c:1052
write_inode fs/fs-writeback.c:1497 [inline]
__writeback_single_inode+0x849/0x12c0 fs/fs-writeback.c:1716
writeback_sb_inodes+0xc95/0x1e00 fs/fs-writeback.c:1947
__writeback_inodes_wb+0x14c/0x440 fs/fs-writeback.c:2018
wb_writeback+0x50b/0xea0 fs/fs-writeback.c:2129
wb_check_background_flush fs/fs-writeback.c:2199 [inline]
wb_do_writeback fs/fs-writeback.c:2287 [inline]
wb_workfn+0x122c/0x1940 fs/fs-writeback.c:2314
process_one_work kernel/workqueue.c:3231 [inline]
process_scheduled_works+0xae0/0x1c40 kernel/workqueue.c:3312
worker_thread+0xea7/0x14d0 kernel/workqueue.c:3389
kthread+0x3e2/0x540 kernel/kthread.c:389
ret_from_fork+0x6d/0x90 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244

Uninit was stored to memory at:
ntfs_read_run_nb+0x786/0x1070 fs/ntfs3/fsntfs.c:1252
ntfs_read_bh+0x64/0xde0 fs/ntfs3/fsntfs.c:1313
indx_read+0x44e/0x17b0 fs/ntfs3/index.c:1067
indx_find+0xd12/0x1440 fs/ntfs3/index.c:1181
indx_update_dup+0x607/0xf80 fs/ntfs3/index.c:2666
ni_update_parent+0x12de/0x14b0 fs/ntfs3/frecord.c:3301
ni_write_inode+0x1cf4/0x1de0 fs/ntfs3/frecord.c:3392
ntfs3_write_inode+0x94/0xb0 fs/ntfs3/inode.c:1052
write_inode fs/fs-writeback.c:1497 [inline]
__writeback_single_inode+0x849/0x12c0 fs/fs-writeback.c:1716
writeback_sb_inodes+0xc95/0x1e00 fs/fs-writeback.c:1947
__writeback_inodes_wb+0x14c/0x440 fs/fs-writeback.c:2018
wb_writeback+0x50b/0xea0 fs/fs-writeback.c:2129
wb_check_background_flush fs/fs-writeback.c:2199 [inline]
wb_do_writeback fs/fs-writeback.c:2287 [inline]
wb_workfn+0x122c/0x1940 fs/fs-writeback.c:2314
process_one_work kernel/workqueue.c:3231 [inline]
process_scheduled_works+0xae0/0x1c40 kernel/workqueue.c:3312
worker_thread+0xea7/0x14d0 kernel/workqueue.c:3389
kthread+0x3e2/0x540 kernel/kthread.c:389
ret_from_fork+0x6d/0x90 arch/x86/kernel/process.c:147
ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244

Uninit was stored to memory at:
ntfs_write_bh+0x652/0xdb0 fs/ntfs3/fsntfs.c:1450
indx_write fs/ntfs3/index.c:1027 [inline]
indx_insert_into_buffer+0xd8f/0x2010 fs/ntfs3/index.c:1811
indx_insert_entry+0xa3c/0xee0 fs/ntfs3/index.c:1988
ni_add_name+0xe5d/0x10d0 fs/ntfs3/frecord.c:3123
ntfs_link_inode+0x265/0x310 fs/ntfs3/inode.c:1768
ntfs_link+0x21d/0x500 fs/ntfs3/namei.c:146
vfs_link+0x93d/0xb70 fs/namei.c:4692
do_linkat+0x4f5/0xfd0 fs/namei.c:4762
__do_sys_link fs/namei.c:4796 [inline]
__se_sys_link fs/namei.c:4794 [inline]
__x64_sys_link+0xe8/0x140 fs/namei.c:4794
x64_sys_call+0x2853/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:87
do_syscall_x64 arch/x86/entry/common.c:52 [inline]
do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83
entry_SYSCALL_64_after_hwframe+0x77/0x7f

Uninit was stored to memory at:
hdr_insert_de fs/ntfs3/index.c:838 [inline]
indx_insert_into_buffer+0xcdf/0x2010 fs/ntfs3/index.c:1807
indx_insert_entry+0xa3c/0xee0 fs/ntfs3/index.c:1988
ni_add_name+0xe5d/0x10d0 fs/ntfs3/frecord.c:3123
ntfs_link_inode+0x265/0x310 fs/ntfs3/inode.c:1768
ntfs_link+0x21d/0x500 fs/ntfs3/namei.c:146
vfs_link+0x93d/0xb70 fs/namei.c:4692
do_linkat+0x4f5/0xfd0 fs/namei.c:4762
__do_sys_link fs/namei.c:4796 [inline]
__se_sys_link fs/namei.c:4794 [inline]
__x64_sys_link+0xe8/0x140 fs/namei.c:4794
x64_sys_call+0x2853/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:87
do_syscall_x64 arch/x86/entry/common.c:52 [inline]
do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83
entry_SYSCALL_64_after_hwframe+0x77/0x7f

Uninit was created at:
slab_post_alloc_hook mm/slub.c:3994 [inline]
slab_alloc_node mm/slub.c:4037 [inline]
kmem_cache_alloc_noprof+0x637/0xb20 mm/slub.c:4044
ntfs_link_inode+0x8f/0x310 fs/ntfs3/inode.c:1756
ntfs_link+0x21d/0x500 fs/ntfs3/namei.c:146
vfs_link+0x93d/0xb70 fs/namei.c:4692
do_linkat+0x4f5/0xfd0 fs/namei.c:4762
__do_sys_link fs/namei.c:4796 [inline]
__se_sys_link fs/namei.c:4794 [inline]
__x64_sys_link+0xe8/0x140 fs/namei.c:4794
x64_sys_call+0x2853/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:87
do_syscall_x64 arch/x86/entry/common.c:52 [inline]
do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83
entry_SYSCALL_64_after_hwframe+0x77/0x7f

CPU: 1 UID: 0 PID: 83 Comm: kswapd0 Not tainted 6.11.0-rc6-syzkaller-00026-g88fac17500f4 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
=====================================================


---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at [email protected].

syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.

If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title

If you want syzbot to run the reproducer, reply with:
#syz test: git://repo/address.git branch-or-commit-hash
If you attach or paste a git patch, syzbot will apply it before testing.

If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)

If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report

If you want to undo deduplication, reply with:
#syz undup

#syz test

Hello,

syzbot has tested the proposed patch but the reproducer is still triggering an issue:
KMSAN: uninit-value in sw842_compress
evict_folios+0x9a49/0xbb30 mm/vmscan.c:4560
try_to_shrink_lruvec+0x13a3/0x1750 mm/vmscan.c:4755
lru_gen_shrink_lruvec mm/vmscan.c:4897 [inline]
shrink_lruvec+0x4a3/0x46c0 mm/vmscan.c:5652
shrink_node_memcgs mm/vmscan.c:5888 [inline]
shrink_node+0x104e/0x50f0 mm/vmscan.c:5928
shrink_zones mm/vmscan.c:6172 [inline]
do_try_to_free_pages+0x820/0x2550 mm/vmscan.c:6234
try_to_free_mem_cgroup_pages+0x3f7/0xae0 mm/vmscan.c:6566
try_charge_memcg+0x72c/0x1830 mm/memcontrol.c:2210
try_charge mm/memcontrol-v1.h:20 [inline]
charge_memcg mm/memcontrol.c:4438 [inline]
__mem_cgroup_charge+0x11d/0x3f0 mm/memcontrol.c:4453
mem_cgroup_charge include/linux/memcontrol.h:672 [inline]
shmem_alloc_and_add_folio+0xe83/0x1ca0 mm/shmem.c:1792
shmem_get_folio_gfp+0x10bd/0x24c0 mm/shmem.c:2188
shmem_read_folio_gfp+0x80/0x140 mm/shmem.c:5201
drm_gem_get_pages+0x3cf/0x1440 drivers/gpu/drm/drm_gem.c:568
drm_gem_shmem_get_pages drivers/gpu/drm/drm_gem_shmem_helper.c:177 [inline]
drm_gem_shmem_vmap+0x2dc/0xca0 drivers/gpu/drm/drm_gem_shmem_helper.c:337
drm_gem_shmem_object_vmap+0x35/0x40 include/drm/drm_gem_shmem_helper.h:229
drm_gem_vmap drivers/gpu/drm/drm_gem.c:1205 [inline]
drm_gem_vmap_unlocked+0xc6/0x200 drivers/gpu/drm/drm_gem.c:1247
drm_gem_fb_vmap+0x11b/0x590 drivers/gpu/drm/drm_gem_framebuffer_helper.c:365
vkms_prepare_fb+0x12f/0x170 drivers/gpu/drm/vkms/vkms_plane.c:176
drm_atomic_helper_prepare_planes+0x436/0x10b0 drivers/gpu/drm/drm_atomic_helper.c:2601
drm_atomic_helper_commit+0x1f3/0xe80 drivers/gpu/drm/drm_atomic_helper.c:2029
drm_atomic_commit+0x30a/0x380 drivers/gpu/drm/drm_atomic.c:1522
drm_atomic_helper_update_plane+0x42b/0x600 drivers/gpu/drm/drm_atomic_helper.c:3190
__setplane_atomic+0x33d/0x3f0 drivers/gpu/drm/drm_plane.c:1074
drm_mode_cursor_universal drivers/gpu/drm/drm_plane.c:1229 [inline]
drm_mode_cursor_common+0x171a/0x1e80 drivers/gpu/drm/drm_plane.c:1288
drm_mode_cursor_ioctl+0x97/0xd0 drivers/gpu/drm/drm_plane.c:1338
drm_ioctl_kernel+0x4ea/0x560 drivers/gpu/drm/drm_ioctl.c:745
drm_ioctl+0xd13/0x15a0 drivers/gpu/drm/drm_ioctl.c:842
vfs_ioctl fs/ioctl.c:51 [inline]
__do_sys_ioctl fs/ioctl.c:907 [inline]
__se_sys_ioctl+0x261/0x450 fs/ioctl.c:893
__x64_sys_ioctl+0x96/0xe0 fs/ioctl.c:893
x64_sys_call+0x18bf/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:17
ntfs_link+0x21d/0x500 fs/ntfs3/namei.c:150
ntfs_link+0x21d/0x500 fs/ntfs3/namei.c:150
slab_post_alloc_hook mm/slub.c:3998 [inline]
slab_alloc_node mm/slub.c:4041 [inline]
kmem_cache_alloc_noprof+0x637/0xb20 mm/slub.c:4048
ntfs_link_inode+0x8f/0x310 fs/ntfs3/inode.c:1756
ntfs_link+0x21d/0x500 fs/ntfs3/namei.c:150
CPU: 1 UID: 0 PID: 6036 Comm: syz.0.15 Not tainted 6.11.0-rc7-syzkaller-gda3ea35007d0-dirty #0
Tested on:

commit: da3ea350 Linux 6.11-rc7
git tree: upstream
console output: https://syzkaller.appspot.com/x/log.txt?x=17a0e567980000
kernel config: https://syzkaller.appspot.com/x/.config?x=ea008021530b2de3
patch: https://syzkaller.appspot.com/x/patch.diff?x=11514e00580000

For archival purposes, forwarding an incoming command email to
[email protected], [email protected].

***

Subject: KMSAN: uninit-value in sw842_compress
Author: [email protected]

#syz test

BUG: KMSAN: uninit-value in check_template lib/842/842_compress.c:393 [inline]
BUG: KMSAN: uninit-value in process_next lib/842/842_compress.c:458 [inline]
BUG: KMSAN: uninit-value in sw842_compress+0x1744/0x5a70 lib/842/842_compress.c:545
check_template lib/842/842_compress.c:393 [inline]
process_next lib/842/842_compress.c:458 [inline]
sw842_compress+0x1744/0x5a70 lib/842/842_compress.c:545
worker_thread+0xea7/0x14f0 kernel/workqueue.c:3393
worker_thread+0xea7/0x14f0 kernel/workqueue.c:3393
worker_thread+0xea7/0x14f0 kernel/workqueue.c:3393
worker_thread+0xea7/0x14f0 kernel/workqueue.c:3393
worker_thread+0xea7/0x14f0 kernel/workqueue.c:3393
ntfs_link+0x21d/0x500 fs/ntfs3/namei.c:146
ntfs_link+0x21d/0x500 fs/ntfs3/namei.c:146
ntfs_link+0x21d/0x500 fs/ntfs3/namei.c:146
CPU: 1 UID: 0 PID: 5939 Comm: syz.0.15 Not tainted 6.11.0-rc7-syzkaller-g196145c606d0-dirty #0
commit: 196145c6 Merge tag 'clk-fixes-for-linus' of git://git...
git tree: upstream
console output: https://syzkaller.appspot.com/x/log.txt?x=159027c7980000
patch: https://syzkaller.appspot.com/x/patch.diff?x=1453949f980000

Hello,

syzbot tried to test the proposed patch but the build/boot failed:

t Branch Prediction Barrier
[ 0.233228] Spectre V2 : User space: Mitigation: STIBP via seccomp and prctl
[ 0.234229] Speculative Store Bypass: Mitigation: Speculative Store Bypass disabled via prctl and seccomp
[ 0.235273] TAA: Mitigation: Clear CPU buffers
[ 0.236227] MDS: Mitigation: Clear CPU buffers
[ 0.237511] Freeing SMP alternatives memory: 40K
[ 0.341387] smpboot: CPU0: Intel(R) Xeon(R) CPU @ 2.20GHz (family: 0x6, model: 0x4f, stepping: 0x0)
[ 0.342342] Performance Events: unsupported p6 CPU model 79 no PMU driver, software events only.
[ 0.343304] rcu: Hierarchical SRCU implementation.
[ 0.344161] smp: Bringing up secondary CPUs ...
[ 0.344313] x86: Booting SMP configuration:
[ 0.345227] .... node #0, CPUs: #1
[ 0.101781] kvm-clock: cpu 1, msr ab0a2041, secondary cpu clock
[ 0.346631] kvm-stealtime: cpu 1, msr 237b15200
[ 0.348334] MDS CPU bug present and SMT on, data leak possible. See https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/mds.html for more details.
[ 0.349230] TAA CPU bug present and SMT on, data leak possible. See https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/tsx_async_abort.html for more details.
[ 0.350234] smp: Brought up 1 node, 2 CPUs
[ 0.350810] smpboot: Max logical packages: 1
[ 0.351228] smpboot: Total of 2 processors activated (8800.63 BogoMIPS)
[ 0.352460] devtmpfs: initialized
[ 0.353294] clocksource: jiffies: mask: 0xffffffff max_cycles: 0xffffffff, max_idle_ns: 1911260446275000 ns
[ 0.353284] kworker/u4:0 (22) used greatest stack depth: 14336 bytes left
[ 0.354234] futex hash table entries: 512 (order: 3, 32768 bytes)
[ 0.357373] RTC time: 9:02:57, date: 09/13/24
[ 0.359244] NET: Registered protocol family 16
[ 0.359931] audit: initializing netlink subsys (disabled)
[ 0.361244] audit: type=2000 audit(1726218177.184:1): state=initialized audit_enabled=0 res=1
[ 0.361614] kworker/u4:1 (28) used greatest stack depth: 13936 bytes left
[ 0.363236] cpuidle: using governor menu
[ 0.363337] ACPI: bus type PCI registered
[ 0.364372] PCI: Using configuration type 1 for base access
[ 0.373228] HugeTLB registered 2.00 MiB page size, pre-allocated 0 pages
[ 0.374282] ACPI: Added _OSI(Module Device)
[ 0.375233] ACPI: Added _OSI(Processor Device)
[ 0.376233] ACPI: Added _OSI(3.0 _SCP Extensions)
[ 0.377003] ACPI: Added _OSI(Processor Aggregator Device)
[ 0.377233] ACPI: Added _OSI(Linux-Dell-Video)
[ 0.377886] ACPI: Added _OSI(Linux-Lenovo-NV-HDMI-Audio)
[ 0.379869] ACPI: 2 ACPI AML tables successfully acquired and loaded
[ 0.381674] ACPI: Interpreter enabled
[ 0.382248] ACPI: (supports S0 S3 S4 S5)
[ 0.383229] ACPI: Using IOAPIC for interrupt routing
[ 0.384235] PCI: Using host bridge windows from ACPI; if necessary, use "pci=nocrs" and report a bug
[ 0.385415] ACPI: Enabled 16 GPEs in block 00 to 0F
[ 0.390247] ACPI: PCI Root Bridge [PCI0] (domain 0000 [bus 00-ff])
[ 0.391232] acpi PNP0A03:00: _OSC: OS supports [ASPM ClockPM Segments MSI]
[ 0.392256] acpi PNP0A03:00: _OSC failed (AE_NOT_FOUND); disabling ASPM
[ 0.393238] acpi PNP0A03:00: fail to add MMCONFIG information, can't access extended PCI configuration space under this bridge.
[ 0.394358] PCI host bridge to bus 0000:00
[ 0.395229] pci_bus 0000:00: root bus resource [io 0x0000-0x0cf7 window]
[ 0.396163] pci_bus 0000:00: root bus resource [io 0x0d00-0xffff window]
[ 0.397229] pci_bus 0000:00: root bus resource [mem 0x000a0000-0x000bffff window]
[ 0.398228] pci_bus 0000:00: root bus resource [mem 0xc0000000-0xfebfefff window]
[ 0.399229] pci_bus 0000:00: root bus resource [bus 00-ff]
[ 0.434280] pci 0000:00:01.3: quirk: [io 0xb000-0xb03f] claimed by PIIX4 ACPI
[ 0.547277] ACPI: PCI Interrupt Link [LNKA] (IRQs 5 *10 11)
[ 0.549289] ACPI: PCI Interrupt Link [LNKB] (IRQs 5 *10 11)
[ 0.551285] ACPI: PCI Interrupt Link [LNKC] (IRQs 5 10 *11)
[ 0.553288] ACPI: PCI Interrupt Link [LNKD] (IRQs 5 10 *11)
[ 0.555248] ACPI: PCI Interrupt Link [LNKS] (IRQs *9)
[ 0.556431] pci 0000:00:05.0: vgaarb: setting as boot VGA device
[ 0.557203] pci 0000:00:05.0: vgaarb: VGA device added: decodes=io+mem,owns=io+mem,locks=none
[ 0.558231] pci 0000:00:05.0: vgaarb: bridge control possible
[ 0.559227] vgaarb: loaded
[ 0.560232] SCSI subsystem initialized
[ 0.560305] ACPI: bus type USB registered
[ 0.561274] usbcore: registered new interface driver usbfs
[ 0.562273] usbcore: registered new interface driver hub
[ 0.562273] usbcore: registered new device driver usb
[ 0.563253] pps_core: LinuxPPS API ver. 1 registered
[ 0.564228] pps_core: Software ver. 5.3.6 - Copyright 2005-2007 Rodolfo Giometti <[email protected]>
[ 0.565235] PTP clock support registered
[ 0.566249] EDAC MC: Ver: 3.0.0
[ 0.567225] Advanced Linux Sound Architecture Driver Initialized.
[ 0.567303] PCI: Using ACPI for IRQ routing
[ 0.569227] NetLabel: Initializing
[ 0.569228] NetLabel: domain hash size = 128
[ 0.569834] NetLabel: protocols = UNLABELED CIPSOv4 CALIPSO
[ 0.570252] NetLabel: unlabeled traffic allowed by default
[ 0.571325] clocksource: Switched to clocksource kvm-clock
[ 0.580325] VFS: Disk quotas dquot_6.6.0
[ 0.581125] VFS: Dquot-cache hash table entries: 512 (order 0, 4096 bytes)
[ 0.582192] pnp: PnP ACPI init
[ 0.583276] pnp: PnP ACPI: found 7 devices
[ 0.590974] clocksource: acpi_pm: mask: 0xffffff max_cycles: 0xffffff, max_idle_ns: 2085701024 ns
[ 0.592383] NET: Registered protocol family 2
[ 0.593291] IP idents hash table entries: 131072 (order: 8, 1048576 bytes)
[ 0.595192] tcp_listen_portaddr_hash hash table entries: 4096 (order: 4, 65536 bytes)
[ 0.596433] TCP established hash table entries: 65536 (order: 7, 524288 bytes)
[ 0.597549] TCP bind hash table entries: 65536 (order: 8, 1048576 bytes)
[ 0.598661] TCP: Hash tables configured (established 65536 bind 65536)
[ 0.599636] UDP hash table entries: 4096 (order: 5, 131072 bytes)
[ 0.600500] UDP-Lite hash table entries: 4096 (order: 5, 131072 bytes)
[ 0.601494] NET: Registered protocol family 1
[ 0.602346] RPC: Registered named UNIX socket transport module.
[ 0.603270] RPC: Registered udp transport module.
[ 0.603959] RPC: Registered tcp transport module.
[ 0.604648] RPC: Registered tcp NFSv4.1 backchannel transport module.
[ 0.605680] pci 0000:00:00.0: Limiting direct PCI/PCI transfers
[ 0.606569] pci 0000:00:05.0: Video device with shadowed ROM at [mem 0x000c0000-0x000dffff]
[ 0.607780] PCI-DMA: Using software bounce buffering for IO (SWIOTLB)
[ 0.608649] software IO TLB: mapped [mem 0xbbffd000-0xbfffd000] (64MB)
[ 0.609637] RAPL PMU: API unit is 2^-32 Joules, 3 fixed counters, 10737418240 ms ovfl timer
[ 0.611144] RAPL PMU: hw unit of domain pp0-core 2^-0 Joules
[ 0.611974] RAPL PMU: hw unit of domain package 2^-0 Joules
[ 0.612737] RAPL PMU: hw unit of domain dram 2^-16 Joules
[ 0.613501] clocksource: tsc: mask: 0xffffffffffffffff max_cycles: 0x1fb6c80a799, max_idle_ns: 440795272342 ns
[ 0.615219] Scanning for low memory corruption every 60 seconds
[ 0.616680] Initialise system trusted keyrings
[ 0.617443] workingset: timestamp_bits=56 max_order=21 bucket_order=0
[ 0.620806] NFS: Registering the id_resolver key type
[ 0.621695] Key type id_resolver registered
[ 0.622358] Key type id_legacy registered
[ 0.625266] Key type asymmetric registered
[ 0.625855] Asymmetric key parser 'x509' registered
[ 0.626648] Block layer SCSI generic (bsg) driver version 0.4 loaded (major 251)
[ 0.627648] io scheduler noop registered
[ 0.628206] io scheduler deadline registered
[ 0.628835] io scheduler cfq registered (default)
[ 0.629506] io scheduler mq-deadline registered
[ 0.630141] io scheduler kyber registered
[ 0.630926] input: Power Button as /devices/LNXSYSTM:00/LNXPWRBN:00/input/input0
[ 0.631962] ACPI: Power Button [PWRF]
[ 0.632576] input: Sleep Button as /devices/LNXSYSTM:00/LNXSLPBN:00/input/input1
[ 0.633600] ACPI: Sleep Button [SLPF]
[ 0.636091] PCI Interrupt Link [LNKC] enabled at IRQ 11
[ 0.636921] virtio-pci 0000:00:03.0: virtio_pci: leaving for legacy driver
[ 0.642090] PCI Interrupt Link [LNKD] enabled at IRQ 10
[ 0.642888] virtio-pci 0000:00:04.0: virtio_pci: leaving for legacy driver
[ 0.649581] PCI Interrupt Link [LNKB] enabled at IRQ 10
[ 0.650373] virtio-pci 0000:00:06.0: virtio_pci: leaving for legacy driver
[ 0.654995] virtio-pci 0000:00:07.0: virtio_pci: leaving for legacy driver
[ 0.670716] Serial: 8250/16550 driver, 4 ports, IRQ sharing enabled
[ 0.693031] 00:03: ttyS0 at I/O 0x3f8 (irq = 4, base_baud = 115200) is a 16550A
[ 0.715987] 00:04: ttyS1 at I/O 0x2f8 (irq = 3, base_baud = 115200) is a 16550A
[ 0.739118] 00:05: ttyS2 at I/O 0x3e8 (irq = 6, base_baud = 115200) is a 16550A
[ 0.762116] 00:06: ttyS3 at I/O 0x2e8 (irq = 7, base_baud = 115200) is a 16550A
[ 0.764122] Non-volatile memory driver v1.3
[ 0.764885] Linux agpgart interface v0.103
[ 0.767721] loop: module loaded
[ 0.807436] e100: Intel(R) PRO/100 Network Driver, 3.5.24-k2-NAPI
[ 0.808493] e100: Copyright(c) 1999-2006 Intel Corporation
[ 0.809449] e1000: Intel(R) PRO/1000 Network Driver - version 7.3.21-k8-NAPI
[ 0.810633] e1000: Copyright (c) 1999-2006 Intel Corporation.
[ 0.811513] e1000e: Intel(R) PRO/1000 Network Driver - 3.2.6-k
[ 0.812734] e1000e: Copyright(c) 1999 - 2015 Intel Corporation.
[ 0.813744] sky2: driver version 1.30
[ 0.814550] ehci_hcd: USB 2.0 'Enhanced' Host Controller (EHCI) Driver
[ 0.815443] ehci-pci: EHCI PCI platform driver
[ 0.816075] ohci_hcd: USB 1.1 'Open' Host Controller (OHCI) Driver
[ 0.817012] ohci-pci: OHCI PCI platform driver
[ 0.817610] uhci_hcd: USB Universal Host Controller Interface driver
[ 0.818556] usbcore: registered new interface driver usblp
[ 0.819172] usbcore: registered new interface driver usb-storage
[ 0.820220] i8042: PNP: PS/2 Controller [PNP0303:KBD,PNP0f13:MOU] at 0x60,0x64 irq 1,12
[ 0.821924] i8042: Warning: Keylock active
[ 0.824090] serio: i8042 KBD port at 0x60,0x64 irq 1
[ 0.825039] serio: i8042 AUX port at 0x60,0x64 irq 12
[ 0.826219] rtc_cmos 00:00: RTC can wake from S4
[ 0.827575] rtc_cmos 00:00: registered as rtc0
[ 0.828412] rtc_cmos 00:00: alarms up to one day, 114 bytes nvram
[ 0.829685] device-mapper: ioctl: 4.39.0-ioctl (2018-04-03) initialised: [email protected]
[ 0.831360] hidraw: raw HID events driver (C) Jiri Kosina
[ 0.832320] usbcore: registered new interface driver usbhid
[ 0.833381] usbhid: USB HID core driver
[ 0.834620] Initializing XFRM netlink socket
[ 0.835375] NET: Registered protocol family 10
[ 0.836515] Segment Routing with IPv6
[ 0.837254] sit: IPv6, IPv4 and MPLS over IPv4 tunneling driver
[ 0.838155] NET: Registered protocol family 17
[ 0.838961] Key type dns_resolver registered
[ 0.840070] mce: Using 32 MCE banks
[ 0.840614] sched_clock: Marking stable (739805965, 100781643)->(860712230, -20124622)
[ 0.841974] registered taskstats version 1
[ 0.842560] Loading compiled-in X.509 certificates
[ 0.843835] Magic number: 8:908:19
[ 0.844533] console [netcon0] enabled
[ 0.845127] netconsole: network logging started
[ 0.846185] ALSA device list:
[ 0.847369] No soundcards found.
[ 1.030526] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input2
[ 1.446640] random: fast init done
[ 1.447709] input: ImExPS/2 Generic Explorer Mouse as /devices/platform/i8042/serio1/input/input4
[ 1.449201] md: Waiting for all devices to be available before autodetect
[ 1.450219] md: If you don't use raid, use raid=noautodetect
[ 1.451193] md: Autodetecting RAID arrays.
[ 1.451815] md: autorun ...
[ 1.452213] md: ... autorun DONE.
[ 1.452772] VFS: Cannot open root device "sda1" or unknown-block(0,0): error -6
[ 1.453832] Please append a correct "root=" boot option; here are the available partitions:
[ 1.455077] Kernel panic - not syncing: VFS: Unable to mount root fs on unknown-block(0,0)
[ 1.456263] CPU: 1 PID: 1 Comm: swapper/0 Not tainted 4.19.204 #1
[ 1.457133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 1.458370] Call Trace:
[ 1.458728] dump_stack+0x69/0x84
[ 1.459192] panic+0xe2/0x236
[ 1.459616] mount_block_root+0x189/0x226
[ 1.460186] mount_root+0x10a/0x127
[ 1.460709] prepare_namespace+0x13a/0x172
[ 1.461273] kernel_init_freeable+0x1f7/0x20c
[ 1.461869] ? rest_init+0xa0/0xa0
[ 1.462352] kernel_init+0x9/0xfc
[ 1.462832] ret_from_fork+0x35/0x40
[ 1.463467] Kernel Offset: 0x2c200000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff)
[ 1.465034] ---[ end Kernel panic - not syncing: VFS: Unable to mount root fs on unknown-block(0,0) ]---


syzkaller build log:
go env (err=<nil>)
GO111MODULE='auto'
GOARCH='amd64'
GOBIN=''
GOCACHE='/syzkaller/.cache/go-build'
GOENV='/syzkaller/.config/go/env'
GOEXE=''
GOEXPERIMENT=''
GOFLAGS=''
GOHOSTARCH='amd64'
GOHOSTOS='linux'
GOINSECURE=''
GOMODCACHE='/syzkaller/jobs-2/linux/gopath/pkg/mod'
GONOPROXY=''
GONOSUMDB=''
GOOS='linux'
GOPATH='/syzkaller/jobs-2/linux/gopath'
GOPRIVATE=''
GOPROXY='https://proxy.golang.org,direct'
GOROOT='/usr/local/go'
GOSUMDB='sum.golang.org'
GOTMPDIR=''
GOTOOLCHAIN='auto'
GOTOOLDIR='/usr/local/go/pkg/tool/linux_amd64'
GOVCS=''
GOVERSION='go1.22.7'
GCCGO='gccgo'
GOAMD64='v1'
AR='ar'
CC='gcc'
CXX='g++'
CGO_ENABLED='1'
GOMOD='/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/go.mod'
GOWORK=''
CGO_CFLAGS='-O2 -g'
CGO_CPPFLAGS=''
CGO_CXXFLAGS='-O2 -g'
CGO_FFLAGS='-O2 -g'
CGO_LDFLAGS='-O2 -g'
PKG_CONFIG='pkg-config'
GOGCCFLAGS='-fPIC -m64 -pthread -Wl,--no-gc-sections -fmessage-length=0 -ffile-prefix-map=/tmp/go-build3057085696=/tmp/go-build -gno-record-gcc-switches'

git status (err=<nil>)
HEAD detached at 9d47f20a1c
nothing to commit, working tree clean


tput: No value for $TERM and no -T specified
tput: No value for $TERM and no -T specified
Makefile:31: run command via tools/syz-env for best compatibility, see:
Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env
go list -f '{{.Stale}}' ./sys/syz-sysgen | grep -q false || go install ./sys/syz-sysgen
make .descriptions
tput: No value for $TERM and no -T specified
tput: No value for $TERM and no -T specified
Makefile:31: run command via tools/syz-env for best compatibility, see:
Makefile:32: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env
bin/syz-sysgen
go fmt ./sys/... >/dev/null
touch .descriptions
GOOS=linux GOARCH=amd64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=9d47f20a1c5cfc0e89b8e37d0175d69be81ad9a9 -X 'github.com/google/syzkaller/prog.gitRevisionDate=20240903-155700'" "-tags=syz_target syz_os_linux syz_arch_amd64 " -o ./bin/linux_amd64/syz-execprog github.com/google/syzkaller/tools/syz-execprog
mkdir -p ./bin/linux_amd64
g++ -o ./bin/linux_amd64/syz-executor executor/executor.cc \
-m64 -O2 -pthread -Wall -Werror -Wparentheses -Wunused-const-variable -Wframe-larger-than=16384 -Wno-stringop-overflow -Wno-array-bounds -Wno-format-overflow -Wno-unused-but-set-variable -Wno-unused-command-line-argument -static-pie -std=c++17 -I. -Iexecutor/_include -fpermissive -w -DGOOS_linux=1 -DGOARCH_amd64=1 \
-DHOSTGOOS_linux=1 -DGIT_REVISION=\"9d47f20a1c5cfc0e89b8e37d0175d69be81ad9a9\"
/usr/bin/ld: /tmp/ccOaDBGX.o: in function `test_cover_filter()':
executor.cc:(.text+0x1412b): warning: the use of `tempnam' is dangerous, better use `mkstemp'
/usr/bin/ld: /tmp/ccOaDBGX.o: in function `Connection::Connect(char const*, char const*)':
executor.cc:(.text._ZN10Connection7ConnectEPKcS1_[_ZN10Connection7ConnectEPKcS1_]+0x104): warning: Using 'gethostbyname' in statically linked applications requires at runtime the shared libraries from the glibc version used for linking


Error text is too large and was truncated, full error text is at:
https://syzkaller.appspot.com/x/error.txt?x=14c8549f980000
patch: https://syzkaller.appspot.com/x/patch.diff?x=16e427c7980000