From 2125a655332990ce8c3b9c9e17a71b3830d771cb Mon Sep 17 00:00:00 2001 From: David Sterba Date: Fri, 9 Sep 2016 15:33:20 +0200 Subject: [PATCH] btrfs-progs: tests: add fuzzed images for bad block group offset Reported-by: Lukas Lueg Signed-off-by: David Sterba --- .../bko-155151-bad-block-group-offset.raw.txt | 5 +++++ .../bko-155151-bad-block-group-offset.raw.xz | Bin 0 -> 3676 bytes .../bko-155621-bad-block-group-offset.raw.txt | 25 +++++++++++++++++++++ .../bko-155621-bad-block-group-offset.raw.xz | Bin 0 -> 3712 bytes 4 files changed, 30 insertions(+) create mode 100644 tests/fuzz-tests/images/bko-155151-bad-block-group-offset.raw.txt create mode 100644 tests/fuzz-tests/images/bko-155151-bad-block-group-offset.raw.xz create mode 100644 tests/fuzz-tests/images/bko-155621-bad-block-group-offset.raw.txt create mode 100644 tests/fuzz-tests/images/bko-155621-bad-block-group-offset.raw.xz diff --git a/tests/fuzz-tests/images/bko-155151-bad-block-group-offset.raw.txt b/tests/fuzz-tests/images/bko-155151-bad-block-group-offset.raw.txt new file mode 100644 index 0000000..4971f13 --- /dev/null +++ b/tests/fuzz-tests/images/bko-155151-bad-block-group-offset.raw.txt @@ -0,0 +1,5 @@ +URL: https://bugzilla.kernel.org/show_bug.cgi?id=155151 +Lukas Lueg 2016-08-27 20:19:24 UTC + +More news from the fuzzer. The attached image causes btrfsck to enter what +seems to be an endless loop; using btrfs-progs v4.7-42-g56e9586. diff --git a/tests/fuzz-tests/images/bko-155151-bad-block-group-offset.raw.xz b/tests/fuzz-tests/images/bko-155151-bad-block-group-offset.raw.xz new file mode 100644 index 0000000000000000000000000000000000000000..377b4d8077e05d5c6e66dd84a57719cde0ca796a GIT binary patch literal 3676 zcmeH~=U3AS7KVQby#@wkK&b{yC=!}f0YxS#5dkA5^xh!^0y2n52N@uMlne@p8AMtn zfOLT|FzNuc zJUiP4K@yp|aepBPDvo}Oksgf6{^wO@ThR^Skp6l61wXfYbX^oxT-W+=2xlAQ=c3tV zC_;iKqai)6zv%hflPHyerp`@@&k)gX^L+<-6t|>rdEBvQM%Pd!>nS4&QJ4p?pjZI# zZSvRwYTczavdiyAg#LhbdXNb=DKJ0I0{5SOxh(K9a%GE8A<5DI6!)PP`NZ))iZ&ye z%6K9O>fxJ6zo0~P_v}|EGdzrf)Cr0iaH_WLiecM6&&m8W1)ATp6PLuNl^(K+3W>q5 zAtLG$CVSr0Hw&-A3)ghxX9vlG<{HeoTlGX19Hoo+l}*$-%zgupgRSCtK< zQg%5|!QCDaN+_S-hbqrI){5JmoJK{Pf}lcUkCqj5e%A8ff2=X>ihO?tN4<9l3MmV^)lY*31*TD+R|(dAU5FN190X>lhHLkASLI zNCIk%I*!YUhA3gF!kS*A|7BR6h=Za^ju=P-Scj1?I|0)A&B=-h`qQ^ccgBy?J2?AFXW9)sFa6DsovJKP>O6Xt6hkHf5^%3790&)WY68 zGWj_0Skto(VulK^$d?f1h}~l1;xJ61VNNj|38_6um}iw~X*%{3(m$mp_xpcQJ3lL0 zh$9nT$ywoo17>s!2100&8AIr;w$MVGhmTFzN@PzUa#(7bkPXktZ*KEiTZ+&H7PB;x zUR2fut<=XZ3YnQOSA%wacUSRKfrIoq?+CfM%a1PpSXeqqUkb>2U}Vt|0tau^QCptm zMLurT@`W5t2%HgT)oJfH>>47bGSa%q zVo~wIkRa=NR*CzzT-9EW!@I^bd$6VZWOs1>YSaA?_FnAv6-Pf~u4m&YB>SAN$MV#w z>Vdt9VcQ}Ze+PE{s&4$!VVUhhAU?wAMZE1$A-p9((3p_9$`Q2_+YBBV+ZxDjS!CKH zVDeCMoxP}~R^G?`RPCY6zFEiFJ}uMDI+J_3Z}pFvk3v0D>tqz!l5z0O>n?us4xQ0X z^-XTCVieHjff`lhA&o@d*oPU-;Dhz|rMDd=QKH@xC$V}#@HDYTiL#4#tH8=JdtM{w z$48BpeSg9Y?Jbmw2cs;w^19hJc`$rtvfvtbu^udZR^}gF`;LS@)h(Y`x~#WNh>E;T zZ2yep%kdF`)-=P;oX)|B*SWbCd;&NhsnPG7u)i_n+7?>WC0C+n#|roxYV7gll{E`>fP_z`PYUrbgTx_JTK`*4f*M0@bzBpef7d3u`y3|Nn0`rIF zp4{De=P8SDP2@ATaTc`JrD^*hr?ziQiX1b)eziVTQYm6|BL0(^B--b{E%;eI`wJ`n ze~ez}?r`{zUl`Ho8us7B9mUb&88{J+!k?^)FXAYAZ5Q`%V(P%(iP&Fd+s{B~4>524 z3hWPT#;?Hs;3@GH*cSjx;ynZK06#6Ke>ejWq$Nmx2{1GO>X1!JO5#sTS*fKA1hT;Y K`XK>sjLYx)uOQ?A literal 0 HcmV?d00001 diff --git a/tests/fuzz-tests/images/bko-155621-bad-block-group-offset.raw.txt b/tests/fuzz-tests/images/bko-155621-bad-block-group-offset.raw.txt new file mode 100644 index 0000000..e28d73f --- /dev/null +++ b/tests/fuzz-tests/images/bko-155621-bad-block-group-offset.raw.txt @@ -0,0 +1,25 @@ +URL: https://bugzilla.kernel.org/show_bug.cgi?id=155621 +Lukas Lueg 2016-08-30 16:07:36 UTC + +More news from the fuzzer. The attached image causes btrfsck to enter what +seems to be an endless loop; using btrfs-progs v4.7-42-g56e9586. + +Starting program: /home/lukas/dev/btrfsfuzz/bin/bin/btrfsck hang17.img +[Thread debugging using libthread_db enabled] +Using host libthread_db library "/lib64/libthread_db.so.1". + +Program received signal SIGINT, Interrupt. +__find_space_info (info=info@entry=0x6ab3a0, flags=0, flags@entry=8589934592) at extent-tree.c:1796 +1796 list_for_each_entry(found, &info->space_info, list) { +#0 __find_space_info (info=info@entry=0x6ab3a0, flags=0, flags@entry=8589934592) at extent-tree.c:1796 +#1 0x000000000044c66d in update_space_info (info=info@entry=0x6ab3a0, flags=8589934592, total_bytes=total_bytes@entry=0, bytes_used=17592186044416, space_info=space_info@entry=0x7fffffffdbd8) + at extent-tree.c:1835 +#2 0x0000000000451622 in btrfs_read_block_groups (root=0x6ab850) at extent-tree.c:3278 +#3 0x000000000044b157 in btrfs_setup_all_roots (fs_info=fs_info@entry=0x6ab3a0, root_tree_bytenr=, root_tree_bytenr@entry=0, flags=flags@entry=64) at disk-io.c:1055 +#4 0x000000000044b484 in __open_ctree_fd (fp=fp@entry=3, path=path@entry=0x7fffffffe4eb "hang17.img", sb_bytenr=65536, sb_bytenr@entry=0, root_tree_bytenr=root_tree_bytenr@entry=0, + chunk_root_bytenr=chunk_root_bytenr@entry=0, flags=flags@entry=64) at disk-io.c:1317 +#5 0x000000000044b611 in open_ctree_fs_info (filename=0x7fffffffe4eb "hang17.img", sb_bytenr=sb_bytenr@entry=0, root_tree_bytenr=root_tree_bytenr@entry=0, chunk_root_bytenr=chunk_root_bytenr@entry=0, + flags=64) at disk-io.c:1363 +#6 0x000000000042deca in cmd_check (argc=, argv=0x7fffffffe218) at cmds-check.c:11320 +#7 0x000000000040a416 in main (argc=2, argv=0x7fffffffe218) at btrfs.c:243 +quit diff --git a/tests/fuzz-tests/images/bko-155621-bad-block-group-offset.raw.xz b/tests/fuzz-tests/images/bko-155621-bad-block-group-offset.raw.xz new file mode 100644 index 0000000000000000000000000000000000000000..2456780d899838ae1b6716224cc06fb69bccf357 GIT binary patch literal 3712 zcmeH~`8(9@9>>3fAh*7L3yJv~ACmUcudAJKQ3RrcNMUY3qWJgrwJ* znN|oKWcKEh<@*wRs1In^tJuts*Qu@fH@Sj(7h=qPTq?;bNFtw##qrxn>i{1og$_*! zPC5m})8#y%>T8Q5VEy$R@!~^>=npyGufXDau!n9Xw$$iqqCg#CL@WyZi&Q`y0C?lw z_JJB#=vHQFd06m0l*2D~nRIdu&eE8Ab;noP$0OGE*u;|Uebrcw6&ucpQizm3 z4p0}{RGK*)0{Jpy0Ixh+QW89IN3Zw}r_%g@6E&hS9w z_;n6FiHpm>h30Lj+z>&MX(OOvcC7U~_fJ76?Q|y9q|+h8{yhW=`$UCl2;Z>VI!mZ$WV} z8)@adD?QEE!O_kAaE9?^w0qclZxEjxwVs=Q zKf8I^o4jEm<;OTSb3+D742BWtHb&Rl3LT!dS}g^Ngwv4eydlP33rM#DQ&C(lbIx&yCW5QaH^LTV}+s5G*0F4^q)gff6rA{0$1U;!e2&M znQ@Kf^3~RRh;;l)kb=3O@2vaTId-qdJw=m0IfG9e4$jqorP=l?6b4Cc6|GBZKvNGG z5*!Cz5JE7U&vu1-i3NtBR_B)L>l-_4EzlJdqZ~t|GZmst874f=nY%KK1+&wh^B;QB zIr?jg1`AW=p%Kr|Vg6P;I17_$^PtgMz&5E~$_``P_y7sciDxS>)PS(=g1 zd9FCEA-tzl_R&g(#2ocv1%376)bzFzZjxaXshy~8(-5qu4aNW zn*zLx1TO7PP42q{B1E}EvR)Q9=!CS3NS~3vgUES3eZ()$e|JLHf14ZvB9>pLoTM_@ zY+WheB!P}hs2UeM-v2YIiEO%m^>ccxyyASH&DGqqMXb#3uOoB>dX+UWRf3?ZH5|Jv zrIz7z{%I5!G_Sf_>%Y0I=ZLTQSOzah9@vz^q4)h@>P;!)3F>nXi}oi4Nqr>M&LCw% zQlx3*2?VIcWK0aEDN3c9-0+3KpxP}wGj#Y=-Xw`5_K`AkPzn?XW?c%3syaEulcs|VE7 zyqBLiABfgfRB1^Rtu<=UT-|$|cWqi|n~rIt3h#L6u3qo5IC|SrmeuSP*Dmx%br(jw zJ`{}~;8ZjV`z<~_k{U#3jN-W_CZmH(o|(lJRivuvUL)5jZL!~-M-3SJ$xK=xV4a6x zf0KwWhUNJ3wvLoNy`+|5&860`>V?)+tw^-VSjavDLRfZ0 zjYH!J>`8eT`^g6dyfZ9z@kQva%1nbW3^O4!TzO{#UY@f#cEcb#%ZX)Cc$q6@AYJPn zpNltS(mURN-p53CZzgQLqUCCz6m*lo$=xF~>Wh!m*lY%lFAgxxqXZ@myY@_=s z|8KVau0H>TPw89qflBV<{|JZ@jjE>qAaW^)o}%nDs&sF|7t}p|FwxC-Xj^|HCI|dT z#QrKBe@A_7c?_C<0{a7_^Cz%BxNH0b_9uWPvl;?m;2#?tbr=5ql?3W7*NvhQGUfo# YtZ;I2@`-pi!yrPxKaJ_zAq(2+UyErkng9R* literal 0 HcmV?d00001 -- 2.7.4