Received: by 2002:a05:7412:e794:b0:fa:551:50a7 with SMTP id o20csp2809647rdd;
        Sat, 13 Jan 2024 03:03:45 -0800 (PST)
X-Google-Smtp-Source: AGHT+IFVliol2qywipZvK3b6Jiv5Li7vMDcxVOtQyuk0xgo8WkTr3rtQayoHKJ7qJEEHbMCVcu34
X-Received: by 2002:a17:906:880f:b0:a26:96e8:c027 with SMTP id zh15-20020a170906880f00b00a2696e8c027mr2761639ejb.28.1705143825521;
        Sat, 13 Jan 2024 03:03:45 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1705143825; cv=none;
        d=google.com; s=arc-20160816;
        b=zogBC/O/M06PnnXPONCYvPTfRKTGk5MvoBJYFE+A8OxRqHMoUDjP9VhOeCWbici1uN
         YmvdO7V70ORqakBVxrlsI0r1vycA0UhQHjfq1p6CqM0ZjG4CXLH05964iUxdtAgDTM+4
         Z5f/XjhiXb9yLE87TxzI530JYRTayDOXPYxo1OFuy+5vpqT8eCyoXeX3grerziE0+xE1
         yDxhSfCnYbRhGuB24kGz1wBiG75iBQ7rwhhPikDNUtsLnI/oFm1WvPZaa14tgFyCrwTB
         MFLHfmF0qtazv0RviyQWrCTOYtUrkfTod7fUnljnTltcYGDceC8wEBby2Cr0Zj2Ru1Gs
         DvLg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=content-transfer-encoding:mime-version:list-unsubscribe
         :list-subscribe:list-id:precedence:references:in-reply-to:date
         :subject:cc:to:from:message-id:dkim-signature;
        bh=IalPj4dWcc3Tst3zLyeeQAncbEoxVIiQCJ3k5GdQ4SQ=;
        fh=W/6ZMcTn1l+LJ8VxRmeOofWVSzt+gPkyTNCkpMM3Fkw=;
        b=tXIDkvnnN0GpJSbjYZSXilI++qSPRoFruthEggjiHEMGXvfp5b1XawjNqeACMa91hk
         jOG7/DXznfpdPn6BRsIHqc0VjiMgHbASSrbu4ftdse2s0p1AfnKcGXbop4VN+gLl5/L6
         Lyk9Ff+1P+jOZ3okUZD2AXSXGj80mqqLNCsu64aA4cKXbeX6cyjTgF1zFJx7sIbuVWJW
         t9PqrLHDJvDliMT2iaYWQy+SqSErqaP6dUTpjZWV2B1X/iCGyrkD2oQa77TFZg1DOmVr
         36YeokgGSHanQndN/66HJjWLBzL3DGGTRxoHqXbje6xwVUzVlDfgmK6z+1rbPfAa+bhw
         Txpw==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@qq.com header.s=s201512 header.b=GGFKv4Vs;
       spf=pass (google.com: domain of linux-kernel+bounces-25270-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) smtp.mailfrom="linux-kernel+bounces-25270-linux.lists.archive=gmail.com@vger.kernel.org";
       dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=qq.com
Return-Path: <linux-kernel+bounces-25270-linux.lists.archive=gmail.com@vger.kernel.org>
Received: from am.mirrors.kernel.org (am.mirrors.kernel.org. [2604:1380:4601:e00::3])
        by mx.google.com with ESMTPS id v12-20020a1709063bcc00b00a2cf515e8b6si846758ejf.944.2024.01.13.03.03.45
        for <linux.lists.archive@gmail.com>
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Sat, 13 Jan 2024 03:03:45 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel+bounces-25270-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) client-ip=2604:1380:4601:e00::3;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@qq.com header.s=s201512 header.b=GGFKv4Vs;
       spf=pass (google.com: domain of linux-kernel+bounces-25270-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) smtp.mailfrom="linux-kernel+bounces-25270-linux.lists.archive=gmail.com@vger.kernel.org";
       dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=qq.com
Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by am.mirrors.kernel.org (Postfix) with ESMTPS id 491C91F22DE6
	for <linux.lists.archive@gmail.com>; Sat, 13 Jan 2024 11:03:45 +0000 (UTC)
Received: from localhost.localdomain (localhost.localdomain [127.0.0.1])
	by smtp.subspace.kernel.org (Postfix) with ESMTP id 4F95020DEA;
	Sat, 13 Jan 2024 11:03:38 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (1024-bit key) header.d=qq.com header.i=@qq.com header.b="GGFKv4Vs"
Received: from out162-62-58-211.mail.qq.com (out162-62-58-211.mail.qq.com [162.62.58.211])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 4CD4A20DC6
	for <linux-kernel@vger.kernel.org>; Sat, 13 Jan 2024 11:03:33 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=quarantine dis=none) header.from=qq.com
Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=qq.com
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=qq.com; s=s201512;
	t=1705143804; bh=IalPj4dWcc3Tst3zLyeeQAncbEoxVIiQCJ3k5GdQ4SQ=;
	h=From:To:Cc:Subject:Date:In-Reply-To:References;
	b=GGFKv4VsdFkcgFKVDaBOcD5d1hOjIkiSModDMs+KiqSu6wBj7XqFBo7Ij7OtpTM23
	 uh1WHCY+BrKJoIOeliDLpncecfQiFPT6wo6RDU2zApx9Zt75aVxqES7TzimTJT9Fo3
	 VIrHDPXzvcRynRlybdyEv6Yam86pixfe2BbOvbsI=
Received: from pek-lxu-l1.wrs.com ([111.198.225.215])
	by newxmesmtplogicsvrsza7-0.qq.com (NewEsmtp) with SMTP
	id DC9028D0; Sat, 13 Jan 2024 18:55:09 +0800
X-QQ-mid: xmsmtpt1705143309ts2d34r7z
Message-ID: <tencent_53EC36AE4A8A751776E7672A3C8737D69709@qq.com>
X-QQ-XMAILINFO: MWdgP8+gtiFRSS+ndu4x9KH00rQSYVWyvkIjAwUeb0KnyEmKKERwLzYYk7ZUt8
	 k4rZckQ60KqU4aZLo069ncLX5vw4qIS0RXPCtfRMO3Kh4CKVVG32zIhPoloBHT3uzIqNxh49wuNE
	 BJE/KjSIdzq94pL4o16ev9m/jjV8+m2o4mh3MQo/pRAEB0nwNK7D34M3kpQHeRAv+tHTTomGcyKg
	 WyMTazc6WDmeEfKC5C5QAT47N6QCVElOjIIqn1aDVzy2fwjnkWhDaCjhUblt3bvn646yN0En/bvg
	 bXkLS2JNGLuN0D7sUymvomVy3gPgstgZkJZIETHbfa1ZUzvP+D9QanfClqGduxygcCpabpib02CW
	 L7j2aS+Y46nsTdISx/eThCEcML3BC+QjNQs2xvSO6u6ZxpBOFqMuUmkyRUxIuOXrls+90YEkl/iu
	 1UTIfR8k019bcnil/8u2eyJNQCdv7fhC3KW3d74ye4ZO5EQFsCAPd+RwCUd0TrALhj6LO9zS/719
	 A+KCis5ncEN2R0JDkC2hsHc8g4uFdOK05MKRK9YlskI0HEKy67b2AP9A49kOfKEpM4I2zDUx/foK
	 XP5ntC46Mvz1VkV3CxDQaGGXsnpsRz86BCx0iH2zg3n5717J+cR3rMZlDmpmBVJluZvEBkCYG9gB
	 NKEGpRRTeZgUK6DPdgwz8ZkmxlXqYIpejRtVi4Qr3QpmWrevIRRyE3rYUGz8fHb4xLEhkAcFH7Jx
	 YBOkm+cDDZCYyV30UHEFdVd3jX1p76zM5sIBco+Qft9vxi6c8LXWbZi/DDDlh29goxHS5rXgLlou
	 QDCXQkwWwVauMrEepJhr1i5LQJt//5L/BRuiONhKjuB2t/nnzNyO3esNj4fpeY6ehHRx38douHqW
	 xgs/gxvjqOhg+Ql8xKTBhneieOUjiA5olj2lEWG9Z8TRz767iVCXZQOs1m9e8Pfg==
X-QQ-XMRINFO: Mp0Kj//9VHAxr69bL5MkOOs=
From: Edward Adam Davis <eadavis@qq.com>
To: syzbot+a5e651ca75fa0260acd5@syzkaller.appspotmail.com
Cc: linux-kernel@vger.kernel.org,
	syzkaller-bugs@googlegroups.com
Subject: Re: [syzbot] [f2fs?] KASAN: slab-use-after-free Read in destroy_device_list
Date: Sat, 13 Jan 2024 18:55:09 +0800
X-OQ-MSGID: <20240113105509.1700896-2-eadavis@qq.com>
X-Mailer: git-send-email 2.43.0
In-Reply-To: <000000000000aac725060ed0b15c@google.com>
References: <000000000000aac725060ed0b15c@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

please test slab-use-after-free Read in destroy_device_list

#syz test https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git 23a80d462c67

diff --git a/fs/f2fs/super.c b/fs/f2fs/super.c
index d00d21a8b53a..9939e2445b1e 100644
--- a/fs/f2fs/super.c
+++ b/fs/f2fs/super.c
@@ -4879,6 +4879,7 @@ static int f2fs_fill_super(struct super_block *sb, void *data, int silent)
 free_sbi:
 	if (sbi->s_chksum_driver)
 		crypto_free_shash(sbi->s_chksum_driver);
+	sb->s_fs_info = NULL;
 	kfree(sbi);
 
 	/* give only one another chance */