From nobody Fri Dec 19 16:19:51 2025 Received: from mail-oi1-f199.google.com (mail-oi1-f199.google.com [209.85.167.199]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id A8FF22459C5 for ; Fri, 5 Dec 2025 06:28:21 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=209.85.167.199 ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1764916103; cv=none; b=LHRgSImt9xh8EFcr71j+jN7LZBCrN9olXijUTvIn3b7rCHcp6LwhAi8B21nufH4Gt+m+rXY5XTBNwY9Nm/29HWKHyOjggvWw6IuTX74z+snRmZ6Y/UGB00pQkXaug2V8rdkVbwTfJMqVGBvcecmEosQxB1A4xqhl4bFCaeaAFoQ= ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1764916103; c=relaxed/simple; bh=j/HRba4GutObWTJNDUbR76QzGVT3J7RUknVk1vY0IOA=; h=MIME-Version:Date:In-Reply-To:Message-ID:Subject:From:To: Content-Type; b=rVambdKhabecjrC6gFu0lq1wVFG8pwwy8jPEx2hnpv8ILJydWcvUCXzWBGV6egqkrCP5jdRqFDF4nOrL6bsVExIZGvlc/j74vTNv4Q+CwvDUyM8OAhd+lGzAKceFg/DUpcxQXvhd0axYoFA1bVNuM7qZLzFYTgbEBiyl/5e4gbA= ARC-Authentication-Results: i=1; smtp.subspace.kernel.org; dmarc=fail (p=none dis=none) header.from=syzkaller.appspotmail.com; spf=pass smtp.mailfrom=M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com; arc=none smtp.client-ip=209.85.167.199 Authentication-Results: smtp.subspace.kernel.org; dmarc=fail (p=none dis=none) header.from=syzkaller.appspotmail.com Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=M3KW2WVRGUFZ5GODRSRYTGD7.apphosting.bounces.google.com Received: by mail-oi1-f199.google.com with SMTP id 5614622812f47-45033344baeso4049830b6e.1 for ; Thu, 04 Dec 2025 22:28:21 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1764916101; x=1765520901; h=to:from:subject:message-id:in-reply-to:date:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=ooXmwuhOS+0hhCcIcs9O6yc0XyK+YGqrK6pWmRAQRmo=; b=qe3DoJDmO1SHHKFxM7+3FCB6duXznIZq0WtRtsReAkgkSkRM7lreLKTUhvpzyy+OBX lWcY/5M70MMhEpdsJQaMyCpZO/9o+9RPbZ+v7cHdjV/WNbF9p2qKvnP2ux/WrDMu0S/3 IQsuFVHSWqIR2KaSWCI6dlgwFXEXawLTViWKAS1MeFt9TXvkP9JgZ7Afo4cJaprqYxcK IAFzi+KRIOQsDpzNWIRtLFaw/sSGrKmbR179Kw/LT9QnUgmJ5vzSxi9tsHDotDtXmquo qYqXNj6JYy6Khm3868lt1LXRtQwQmpamaHHUYLSm9vUqv3Qt8DHETsVPPbnxefOBHlIs LjHw== X-Gm-Message-State: AOJu0Yy1PeBgtoNQqzSFgvhAkc91uhX3Xd3aVVEUnTBI4xn7OaLIBkgI zjcXRWZQxPNnRZMq7Mio4G6a8zEGn2yA65AWkzwtC2LceyJhab9zIWICHdLfyk+GS8f7andz7Yk oAaS/cTE0uZ86g9NzkdVQLBJVZE9H4AoUJhrOcewQU1aC6puIh0zuVzt7oks= X-Google-Smtp-Source: AGHT+IEeCNXEzSx1Mt+Boo4gz8zcPGuxAL11Sy462Ud9pRbhGo+tnuUaXeIzLr4QgSc38z/g8Ud2/8Yf2ZRBYP+AdbhPaOYPVArG Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 X-Received: by 2002:a05:6808:c136:b0:450:b64e:9c14 with SMTP id 5614622812f47-4536e3922c4mr5582595b6e.5.1764916100863; Thu, 04 Dec 2025 22:28:20 -0800 (PST) Date: Thu, 04 Dec 2025 22:28:20 -0800 In-Reply-To: <69326fcf.a70a0220.d98e3.01e5.GAE@google.com> X-Google-Appengine-App-Id: s~syzkaller X-Google-Appengine-App-Id-Alias: syzkaller Message-ID: <69327b84.a70a0220.d98e3.01e6.GAE@google.com> Subject: Forwarded: [PATCH] hfsplus: fix memory leak in hfsplus_fill_super() error path From: syzbot To: linux-kernel@vger.kernel.org, syzkaller-bugs@googlegroups.com Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset="utf-8" For archival purposes, forwarding an incoming command email to linux-kernel@vger.kernel.org, syzkaller-bugs@googlegroups.com. *** Subject: [PATCH] hfsplus: fix memory leak in hfsplus_fill_super() error path Author: kartikey406@gmail.com #syz test: git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git= master When hfsplus_fill_super() fails, the sbi structure is freed but sb->s_fs_info is not set to NULL, leaving a dangling pointer. This can lead to memory leak as reported by syzbot. Set sb->s_fs_info to NULL after freeing sbi in the error path to ensure proper cleanup. Reported-by: syzbot+99f6ed51479b86ac4c41@syzkaller.appspotmail.com Closes: https://syzkaller.appspot.com/bug?extid=3D99f6ed51479b86ac4c41 Signed-off-by: Deepanshu Kartikey --- fs/hfsplus/super.c | 1 + 1 file changed, 1 insertion(+) diff --git a/fs/hfsplus/super.c b/fs/hfsplus/super.c index 54e85e25a259..eb1b262be45e 100644 --- a/fs/hfsplus/super.c +++ b/fs/hfsplus/super.c @@ -630,6 +630,7 @@ static int hfsplus_fill_super(struct super_block *sb, s= truct fs_context *fc) unload_nls(sbi->nls); unload_nls(nls); kfree(sbi); + sb->s_fs_info =3D NULL; return err; } =20 --=20 2.43.0