syzbot

 sign-in | mailing list | source | docs
🐞 Open [1269] Subsystems 🐞 Fixed [5427] 🐞 Invalid [12860] Missing Backports [106] 📈 Kernel Health 📈 Bugs/Month 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 📈 Coverage 💬 Send us feedback

KMSAN: uninit-value in dev_map_hash_lookup_elem

Status: upstream: reported C repro on 2024/05/18 21:05
Subsystems: bpf net
[Documentation on labels]
Reported-by: syzbot+80cf9d55d6fd2d6a9838@syzkaller.appspotmail.com
First crash: 42d, last: 12d
Discussions (1)
Title Replies (including bot) Last reply
[syzbot] [bpf?] [net?] KMSAN: uninit-value in dev_map_hash_lookup_elem 0 (1) 2024/05/18 21:05
Last patch testing requests (1)
Created Duration User Patch Repo Result
2024/06/02 00:31 2h56m retest repro upstream error OK

Sample crash report:
=====================================================
BUG: KMSAN: uninit-value in __dev_map_hash_lookup_elem kernel/bpf/devmap.c:270 [inline]
BUG: KMSAN: uninit-value in dev_map_hash_lookup_elem+0x116/0x2e0 kernel/bpf/devmap.c:803
 __dev_map_hash_lookup_elem kernel/bpf/devmap.c:270 [inline]
 dev_map_hash_lookup_elem+0x116/0x2e0 kernel/bpf/devmap.c:803
 ____bpf_map_lookup_elem kernel/bpf/helpers.c:42 [inline]
 bpf_map_lookup_elem+0x5c/0x80 kernel/bpf/helpers.c:38
 ___bpf_prog_run+0x13fe/0xe0f0 kernel/bpf/core.c:1997
 __bpf_prog_run64+0xb5/0xe0 kernel/bpf/core.c:2236
 bpf_dispatcher_nop_func include/linux/bpf.h:1234 [inline]
 __bpf_prog_run include/linux/filter.h:657 [inline]
 bpf_prog_run include/linux/filter.h:664 [inline]
 __bpf_trace_run kernel/trace/bpf_trace.c:2381 [inline]
 bpf_trace_run4+0x150/0x340 kernel/trace/bpf_trace.c:2422
 __bpf_trace_sched_switch+0x37/0x50 include/trace/events/sched.h:222
 trace_sched_switch include/trace/events/sched.h:222 [inline]
 __schedule+0x2eca/0x6bc0 kernel/sched/core.c:6743
 __schedule_loop kernel/sched/core.c:6823 [inline]
 schedule+0x13d/0x380 kernel/sched/core.c:6838
 ptrace_stop+0x8eb/0xd60 kernel/signal.c:2358
 ptrace_do_notify kernel/signal.c:2395 [inline]
 ptrace_notify+0x234/0x320 kernel/signal.c:2407
 ptrace_report_syscall include/linux/ptrace.h:415 [inline]
 ptrace_report_syscall_exit include/linux/ptrace.h:477 [inline]
 syscall_exit_work+0x14e/0x3e0 kernel/entry/common.c:173
 syscall_exit_to_user_mode_prepare kernel/entry/common.c:200 [inline]
 __syscall_exit_to_user_mode_work kernel/entry/common.c:205 [inline]
 syscall_exit_to_user_mode+0x135/0x160 kernel/entry/common.c:218
 do_syscall_64+0xdc/0x1e0 arch/x86/entry/common.c:89
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

Local variable stack created at:
 __bpf_prog_run64+0x45/0xe0 kernel/bpf/core.c:2236
 bpf_dispatcher_nop_func include/linux/bpf.h:1234 [inline]
 __bpf_prog_run include/linux/filter.h:657 [inline]
 bpf_prog_run include/linux/filter.h:664 [inline]
 __bpf_trace_run kernel/trace/bpf_trace.c:2381 [inline]
 bpf_trace_run4+0x150/0x340 kernel/trace/bpf_trace.c:2422

CPU: 0 PID: 5042 Comm: syz-executor593 Not tainted 6.9.0-syzkaller-02707-g614da38e2f7a #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
=====================================================

Crashes (20):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/05/15 12:13 upstream 614da38e2f7a fdb4c10c .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in dev_map_hash_lookup_elem
2024/06/13 23:54 upstream 614da38e2f7a a9616ff5 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in dev_map_hash_lookup_elem
2024/06/13 23:54 upstream 614da38e2f7a a9616ff5 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in dev_map_hash_lookup_elem
2024/06/12 16:49 upstream 614da38e2f7a 4d75f4f7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in dev_map_hash_lookup_elem
2024/06/12 16:48 upstream 614da38e2f7a 4d75f4f7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in dev_map_hash_lookup_elem
2024/06/12 15:16 upstream 614da38e2f7a 4d75f4f7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in dev_map_hash_lookup_elem
2024/06/12 15:16 upstream 614da38e2f7a 4d75f4f7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in dev_map_hash_lookup_elem
2024/06/12 14:35 upstream 614da38e2f7a 4d75f4f7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in dev_map_hash_lookup_elem
2024/06/12 14:34 upstream 614da38e2f7a 4d75f4f7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in dev_map_hash_lookup_elem
2024/06/12 13:04 upstream 614da38e2f7a 4d75f4f7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in dev_map_hash_lookup_elem
2024/06/12 13:04 upstream 614da38e2f7a 4d75f4f7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in dev_map_hash_lookup_elem
2024/06/12 13:04 upstream 614da38e2f7a 4d75f4f7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in dev_map_hash_lookup_elem
2024/06/12 13:03 upstream 614da38e2f7a 4d75f4f7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in dev_map_hash_lookup_elem
2024/06/11 16:12 upstream 614da38e2f7a c7d7d815 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in dev_map_hash_lookup_elem
2024/06/11 16:12 upstream 614da38e2f7a c7d7d815 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in dev_map_hash_lookup_elem
2024/06/11 08:56 upstream 614da38e2f7a 048c640a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in dev_map_hash_lookup_elem
2024/06/11 08:56 upstream 614da38e2f7a 048c640a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in dev_map_hash_lookup_elem
2024/05/18 22:14 upstream 614da38e2f7a c0f1611a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in dev_map_hash_lookup_elem
2024/05/18 22:14 upstream 614da38e2f7a c0f1611a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in dev_map_hash_lookup_elem
2024/05/14 20:54 upstream a5131c3fdf26 fdb4c10c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in dev_map_hash_lookup_elem
* Struck through repros no longer work on HEAD.