syzbot

 sign-in | mailing list | source | docs | 🏰
🐞 Open [1323]
Subsystems
🐞 Fixed [7151]
🐞 Invalid [18907]
Missing Backports [220]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
✨ AI
💬 Send us feedback

KMSAN: uninit-value in timespec64_add_safe

Status: upstream: reported on 2026/03/06 02:52
Subsystems: kernel
Labels: prio:high
[Documentation on labels]
Reported-by: syzbot+5fca9514ef36ad94d973@syzkaller.appspotmail.com
First crash: 101d, last: 1d05h
✨ AI Jobs (4)
ID Workflow Result Correct Ext Bug ID Bug Created Started Finished Revision Error
0392f7a2-aa60-4bb7-9e74-a6e8a2da1f8c repro-c 💥 KMSAN: uninit-value in timespec64_add_safe 2026/05/22 14:08 2026/05/22 14:08 2026/05/23 03:20 df8ac09c914d5408499c5695877a3e0e31969e6f DoWhile loop is going in cycles for 20 iterations
0d50c6c2-153d-4392-bd14-b3600a6e0493 repro-c 💥 KMSAN: uninit-value in timespec64_add_safe 2026/05/20 16:26 2026/05/20 16:26 2026/05/21 01:58 cf874a1cf36318c06202027159ddac14acf00db7 DoWhile loop is going in cycles for 20 iterations
9b4ead90-f41f-4166-aa4e-a9afe843ca4d repro-c 💥 KMSAN: uninit-value in timespec64_add_safe 2026/05/19 10:06 2026/05/19 10:06 2026/05/19 13:46 223544dc3097d6233a385835bc8dba2b716cc5f0 DoWhile loop is going in cycles for 10 iterations
e4f64e4c-87f9-40b0-b6f3-34042843419e assessment-security DenialOfService: ❌ Exploitable: ❌ FilesystemTrigger: ❌ NetworkTrigger: ❌ PeripheralTrigger: ❌ RemoteTrigger: ❌ Unprivileged: ✅ UserNamespace: ❌ VMGuestTrigger: ✅ VMHostTrigger: ❌ KMSAN: uninit-value in timespec64_add_safe 2026/05/19 04:20 2026/05/19 04:20 2026/05/19 05:07 9f74d39908454b73546eaf1b8211b48b66e5c0fe
Discussions (1)
Title Replies (including bot) Last reply
[syzbot] [kernel?] KMSAN: uninit-value in timespec64_add_safe 1 (2) 2026/03/08 09:32

Sample crash report:
=====================================================
BUG: KMSAN: uninit-value in set_normalized_timespec64 kernel/time/time.c:492 [inline]
BUG: KMSAN: uninit-value in timespec64_add_safe+0x4b4/0x520 kernel/time/time.c:846
 set_normalized_timespec64 kernel/time/time.c:492 [inline]
 timespec64_add_safe+0x4b4/0x520 kernel/time/time.c:846
 poll_select_set_timeout fs/select.c:283 [inline]
 do_pselect fs/select.c:762 [inline]
 __do_sys_pselect6 fs/select.c:809 [inline]
 __se_sys_pselect6+0x4a6/0x6b0 fs/select.c:800
 __x64_sys_pselect6+0x114/0x1a0 fs/select.c:800
 x64_sys_call+0xa5d/0x3ea0 arch/x86/include/generated/asm/syscalls_64.h:271
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x15d/0x3c0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

Local variable end_time.i.i created at:
 do_pselect fs/select.c:744 [inline]
 __do_sys_pselect6 fs/select.c:809 [inline]
 __se_sys_pselect6+0x17e/0x6b0 fs/select.c:800
 __x64_sys_pselect6+0x114/0x1a0 fs/select.c:800

CPU: 0 UID: 0 PID: 5561 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(lazy) 
Tainted: [L]=SOFTLOCKUP
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
=====================================================

Crashes (19):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2026/06/10 17:32 upstream acb7500801e9 f79bac11 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in timespec64_add_safe
2026/05/28 10:51 upstream eb3f4b7426cf 9a5a7e5e .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in timespec64_add_safe
2026/05/06 12:22 upstream 9207d47f966b 26da2c66 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in timespec64_add_safe
2026/05/05 08:09 upstream c7e4e4d5f7dc a898ba9c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in timespec64_add_safe
2026/05/04 16:43 upstream 6d35786de281 85f1bcf2 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in timespec64_add_safe
2026/05/04 11:45 upstream 6d35786de281 85f1bcf2 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in timespec64_add_safe
2026/05/02 15:49 upstream f1a5e78a55eb a0d91488 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in timespec64_add_safe
2026/03/02 02:46 upstream e2bd1b136926 43249bac .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in timespec64_add_safe
2026/05/24 17:34 upstream 4cbfe4502e3d c69befb3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in timespec64_add_safe
2026/05/24 15:26 upstream 4cbfe4502e3d c69befb3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in timespec64_add_safe
2026/05/22 08:40 upstream 6779b50faa56 e195359d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in timespec64_add_safe
2026/05/17 08:10 upstream 6916d5703ddf de5aae85 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in timespec64_add_safe
2026/05/06 08:10 upstream 9207d47f966b 26da2c66 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in timespec64_add_safe
2026/05/05 18:21 upstream a293ec25d59d 06e69a27 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in timespec64_add_safe
2026/05/05 14:09 upstream a293ec25d59d 06e69a27 .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in timespec64_add_safe
2026/05/05 09:11 upstream c7e4e4d5f7dc a898ba9c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in timespec64_add_safe
2026/05/05 08:36 upstream c7e4e4d5f7dc a898ba9c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in timespec64_add_safe
2026/05/04 22:09 upstream 6d35786de281 85f1bcf2 .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in timespec64_add_safe
2026/05/02 22:16 upstream f1a5e78a55eb a0d91488 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in timespec64_add_safe
* Struck through repros no longer work on HEAD.