Received: by 2002:ab2:6816:0:b0:1f9:5764:f03e with SMTP id t22csp2845899lqo;
        Mon, 20 May 2024 21:03:01 -0700 (PDT)
X-Forwarded-Encrypted: i=3; AJvYcCUfO/kfhD2lF0i4yxrntgCcsyYi9IiRHPddYhjvmKI7FJtAB9dNZ2004kKx5Ia9wGJUPn1Ed1y0PYFlcBv5e2mF1vlKPMGansUXcJ2iVA==
X-Google-Smtp-Source: AGHT+IHSdlIhOoov7fWzgN2VTrOOIOqyIcpQdItGrQIBIgcFz5V2Yg4ezDsfnXZKcMaCEl/yOG8x
X-Received: by 2002:a05:620a:1a9f:b0:794:7776:d079 with SMTP id af79cd13be357-7947776d6famr1450316085a.13.1716264181249;
        Mon, 20 May 2024 21:03:01 -0700 (PDT)
ARC-Seal: i=2; a=rsa-sha256; t=1716264181; cv=pass;
        d=google.com; s=arc-20160816;
        b=R+dS0NA7tgVe30jrIxJK7KEIC1IwiHIFCJZu8u8zK4Za0lFsW92/ZL9yUqeFdcjbTl
         vS8s/yoYCRY7wmXFm8LEtTNN2s6qUdM5GYq3ddNWISaoyWny1RVZBt8ZeaGVO1vFicgR
         spFM5t/sjZCMh415BsRqZU2inb5jZGFHP9BZZymF7wNXNXCJQyQ5qVWv92sVJWBQtbM5
         WVKPVtcqXPlvSpGWIWeYC8YPJaSeAiFH40789d8+8KyNyiCP4EEbSonAPUQrkevj+Oqi
         bMnqahrrHGhSvpuVf6FEMZ1KZAO2LBVOpgwtGwISH3zYQIgS7V+USVi8e0+z9i3J5eJZ
         Slyw==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=content-transfer-encoding:mime-version:list-unsubscribe
         :list-subscribe:list-id:precedence:references:in-reply-to:date
         :subject:cc:to:from:message-id:dkim-signature;
        bh=2ZvdINK6wvHC0lJ0GdyeahipLn/enAa0n7oiObPGLFo=;
        fh=Qx5JoRar93xLtUdmo9NgXvteR1Y2O8qFLDr3UtYdYj8=;
        b=FDkCYqXbU47RI8vcs1f+MKhNXBMNlpkra9jZyItRvvkGGbWjWE5sSdaNTchxtesGJj
         SejDPcUzRbevmtrz0FILqLATwt++JHCSa0OiZuHeUil9Qt7H7XYtODbm/JnpMG0e2GY1
         /nr6Ms/PclL7k6z9i2w9xNTO2dZ5mP1pexgRCuZCC/nIFQnrMN7yeuK9BLLLjrgtGGR1
         lk+F/Z9BKWY/7TTpEtgcBRP9OqgqHHZ62PstoCfiXPz+KkD+/XW+hJwbaJrY1knQi13w
         0RveAHECwMG/enYgBZSEJ9HRJThDVDziYcvOoYc7nlyR+wQNyF//RLM0mYVh6lQNVc4E
         395g==;
        dara=google.com
ARC-Authentication-Results: i=2; mx.google.com;
       dkim=pass header.i=@qq.com header.s=s201512 header.b=tJx6ToEV;
       arc=pass (i=1 spf=pass spfdomain=qq.com dkim=pass dkdomain=qq.com dmarc=pass fromdomain=qq.com);
       spf=pass (google.com: domain of linux-kernel+bounces-184475-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:45d1:ec00::1 as permitted sender) smtp.mailfrom="linux-kernel+bounces-184475-linux.lists.archive=gmail.com@vger.kernel.org";
       dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=qq.com
Return-Path: <linux-kernel+bounces-184475-linux.lists.archive=gmail.com@vger.kernel.org>
Received: from ny.mirrors.kernel.org (ny.mirrors.kernel.org. [2604:1380:45d1:ec00::1])
        by mx.google.com with ESMTPS id af79cd13be357-792bf3382bdsi84740385a.407.2024.05.20.21.03.01
        for <linux.lists.archive@gmail.com>
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Mon, 20 May 2024 21:03:01 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel+bounces-184475-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:45d1:ec00::1 as permitted sender) client-ip=2604:1380:45d1:ec00::1;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@qq.com header.s=s201512 header.b=tJx6ToEV;
       arc=pass (i=1 spf=pass spfdomain=qq.com dkim=pass dkdomain=qq.com dmarc=pass fromdomain=qq.com);
       spf=pass (google.com: domain of linux-kernel+bounces-184475-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:45d1:ec00::1 as permitted sender) smtp.mailfrom="linux-kernel+bounces-184475-linux.lists.archive=gmail.com@vger.kernel.org";
       dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=qq.com
Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by ny.mirrors.kernel.org (Postfix) with ESMTPS id F359D1C212AD
	for <linux.lists.archive@gmail.com>; Tue, 21 May 2024 04:03:00 +0000 (UTC)
Received: from localhost.localdomain (localhost.localdomain [127.0.0.1])
	by smtp.subspace.kernel.org (Postfix) with ESMTP id 152451F959;
	Tue, 21 May 2024 04:02:59 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (1024-bit key) header.d=qq.com header.i=@qq.com header.b="tJx6ToEV"
Received: from out162-62-57-49.mail.qq.com (out162-62-57-49.mail.qq.com [162.62.57.49])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 66EB43D556
	for <linux-kernel@vger.kernel.org>; Tue, 21 May 2024 04:02:54 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=162.62.57.49
ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1716264178; cv=none; b=l7my8olzSLwGPdhbQ8a5B+YWNh1gRlnxP8Zl5SwwXxtBQicMxirrFUYCe2RJIMxdZSuUartsGO8X6l4VNmyad8ek3+BVqhIFxX+o0Dp+nqGPEzW381ILogujKmdK/DnOjWPua1YEFLMUTr8JbPKAQgT2G5DyCKbqSgSGbdrvPbo=
ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1716264178; c=relaxed/simple;
	bh=CWj/6bR4BbPGl9J0wGJExs/1VriTTxHSODfpnk/QI6U=;
	h=Message-ID:From:To:Cc:Subject:Date:In-Reply-To:References:
	 MIME-Version; b=iazox/CH2CqW9omBdQ0nA1C9O+EVGWzXAc8NRgL55dGC0rUyIL1z+2pxSKmZ8iYfEt5mkWv2qVETNyv2LHpzOJSsm2ou0RtNOX0mdR7pk3hOcqDRxQBjANDqXJXq7PBwwzBzxCJXgTYixz45annL+aG/EiLydLbmLx3zZ/s/6bY=
ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=quarantine dis=none) header.from=qq.com; spf=pass smtp.mailfrom=qq.com; dkim=pass (1024-bit key) header.d=qq.com header.i=@qq.com header.b=tJx6ToEV; arc=none smtp.client-ip=162.62.57.49
Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=quarantine dis=none) header.from=qq.com
Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=qq.com
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=qq.com; s=s201512;
	t=1716264165; bh=2ZvdINK6wvHC0lJ0GdyeahipLn/enAa0n7oiObPGLFo=;
	h=From:To:Cc:Subject:Date:In-Reply-To:References;
	b=tJx6ToEViqNVOV4cliPihXGLpGUnqBr5DSOJSltRnOE6fvz3t0s9veZg/7p6nhtu+
	 A4VZ2VHz90F+CZe1RZhZlQLRS4tW4wcDDpz1zUH9SoqA7a/ALXSA1XmHYsGa7DJzXT
	 lzpn1MeuNiVtn/ynnUvFKl+5qNZYJsh22xqwdD50=
Received: from pek-lxu-l1.wrs.com ([111.198.228.153])
	by newxmesmtplogicsvrsza10-0.qq.com (NewEsmtp) with SMTP
	id B582643F; Tue, 21 May 2024 11:45:24 +0800
X-QQ-mid: xmsmtpt1716263124tdzm6zjxp
Message-ID: <tencent_FFE5365E9608362A4B7474FF76E567C03C09@qq.com>
X-QQ-XMAILINFO: MQspGcEBiT+RrGdw47aRNAbM3eFZnTpwqqLHvwcTgCpr6Lqu5VVixyWa9MaRii
	 +iqOMyb0qfaL4Smaj3FZ0cU0icvwEVvmEDWQ98s6R1VYEe0QLxPOwCQvsg3EHY6NYcQv1YPlGMTV
	 RcmjUnrbRCCpaIT/6Gv6Yo2F6ZHMvcX257y6qzP0ioLpMWz4X5XSNyxMkU0C00FUjuRwt63kwV4s
	 CCSPLHPNKa7e8kGBtyqnPxOmd7+ly0oN6ft1NFCaMFiPZuLSZhR+6Jr7aeDYxEpFSz/GQMiuJlvN
	 ut937rxnz+OquIVBAAf1gy1Fy+OdQqm+F0PgFeSH3K7wv1/VNYV2sMIuljErEL3ftwN/gW2IQcXq
	 jqAfzQ5ASqSVgUAjWbj/mTAJefd6pndqVvzVjdCxFcc+O529YCSFk+Mtaly7IX8FhPzYS7nMgBtI
	 wxrirGe97DruIaILHGny3BuDJqOc5eAEnqJkoX1qtkuDB2j5k8mp8Z1zlQdHt07+P8nm96xRDb4U
	 hLuDmZVZbNJHo7tVystM3jxYDsW1vas6DOJRMk+a95t/kKgYvoW99SibUZTK7MX5CvfWW3L5HIca
	 VtXCVQx2rYDJyYLNL/hh/UHOJUDoGg22sRMMnX29He4STkCDJ1wNg4yGWCjT3eb+5rzL97tk+LB/
	 TQ/047dmrIr5oBqAtuw6Jjy1cUpX/YqjhhnNjV+AhXWb/eP2yZse7R4DZUONlgpSDb+4gycmdxBb
	 FIyCvlvmSc6q0oqrfvZ/5rlWoUVUf2ATVlFYYjX1Y4lXG3WkvLqe1ZXW9s0IueglVjihkhzTe4SS
	 5L8B9nBxHOIp7MjDNdLU2j12yEsLAetcYf949DyMzr9AFfhdsKnt7CmqvMUgJAl20uanacYfxeso
	 QpSIlBmXE5QgWfOfiqTdo/Og/tKr1uHMKM2dAwQR2oQ+ygsKrMouUwS060iIEc9ovByLp1mqoHZR
	 DU6D2tZTo=
X-QQ-XMRINFO: Nq+8W0+stu50PRdwbJxPCL0=
From: Edward Adam Davis <eadavis@qq.com>
To: syzbot+efde959319469ff8d4d7@syzkaller.appspotmail.com
Cc: linux-kernel@vger.kernel.org,
	syzkaller-bugs@googlegroups.com
Subject: Re: [syzbot] [hfs?] KMSAN: uninit-value in copy_name
Date: Tue, 21 May 2024 11:45:24 +0800
X-OQ-MSGID: <20240521034524.416086-2-eadavis@qq.com>
X-Mailer: git-send-email 2.43.0
In-Reply-To: <00000000000037162f0618b6fefb@google.com>
References: <00000000000037162f0618b6fefb@google.com>
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

please test uiv in copy_name

#syz test https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git a5131c3fdf26

diff --git a/fs/hfsplus/unicode.c b/fs/hfsplus/unicode.c
index 73342c925a4b..8e97df12375d 100644
--- a/fs/hfsplus/unicode.c
+++ b/fs/hfsplus/unicode.c
@@ -234,6 +234,7 @@ int hfsplus_uni2asc(struct super_block *sb,
 		}
 done:
 		res = nls->uni2char(cc, op, len);
+		printk("res: %d, cc: %d, op:%p, len: %d, ustrlen: %d, %s\n", res, cc, op, len, ustrlen, __func__);
 		if (res < 0) {
 			if (res == -ENAMETOOLONG)
 				goto out;
diff --git a/fs/hfsplus/xattr.c b/fs/hfsplus/xattr.c
index 9c9ff6b8c6f7..cac1cca468d8 100644
--- a/fs/hfsplus/xattr.c
+++ b/fs/hfsplus/xattr.c
@@ -698,7 +698,7 @@ ssize_t hfsplus_listxattr(struct dentry *dentry, char *buffer, size_t size)
 		return err;
 	}
 
-	strbuf = kmalloc(NLS_MAX_CHARSET_SIZE * HFSPLUS_ATTR_MAX_STRLEN +
+	strbuf = kzalloc(NLS_MAX_CHARSET_SIZE * HFSPLUS_ATTR_MAX_STRLEN +
 			XATTR_MAC_OSX_PREFIX_LEN + 1, GFP_KERNEL);
 	if (!strbuf) {
 		res = -ENOMEM;
@@ -733,6 +733,7 @@ ssize_t hfsplus_listxattr(struct dentry *dentry, char *buffer, size_t size)
 			goto end_listxattr;
 
 		xattr_name_len = NLS_MAX_CHARSET_SIZE * HFSPLUS_ATTR_MAX_STRLEN;
+		printk("sb: %p, xnl: %d, %s\n", strbuf, xattr_name_len, __func__);
 		if (hfsplus_uni2asc(inode->i_sb,
 			(const struct hfsplus_unistr *)&fd.key->attr.key_name,
 					strbuf, &xattr_name_len)) {
@@ -741,6 +742,7 @@ ssize_t hfsplus_listxattr(struct dentry *dentry, char *buffer, size_t size)
 			goto end_listxattr;
 		}
 
+		printk("s:%d, buf:%p, res:%d, sb: %s, xnl: %d, %s\n", size, buffer, res, strbuf, xattr_name_len, __func__);
 		if (!buffer || !size) {
 			if (can_list(strbuf))
 				res += name_len(strbuf, xattr_name_len);