syzbot

 sign-in | mailing list | source | docs
🐞 Open [1599]
Subsystems
🐞 Fixed [6226]
🐞 Invalid [15751]
Missing Backports [184]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KMSAN: uninit-value in ___bpf_prog_run (4)

Status: upstream: reported C repro on 2023/12/26 15:59
Subsystems: bpf
[Documentation on labels]
Reported-by: syzbot+853242d9c9917165d791@syzkaller.appspotmail.com
Fix commit: 4c2d14c40a68 ppp: Fix KMSAN uninit-value warning with bpf
Patched on: [ci-qemu-gce-upstream-auto ci-qemu-native-arm64-kvm ci-qemu-upstream ci-qemu-upstream-386 ci-qemu2-arm32 ci-qemu2-arm64 ci-qemu2-arm64-compat ci-qemu2-arm64-mte ci-snapshot-upstream-root ci-upstream-bpf-kasan-gce ci-upstream-bpf-next-kasan-gce ci-upstream-gce-arm64 ci-upstream-gce-leak ci-upstream-kasan-badwrites-root ci-upstream-kasan-gce ci-upstream-kasan-gce-386 ci-upstream-kasan-gce-root ci-upstream-kasan-gce-selinux-root ci-upstream-kasan-gce-smack-root ci-upstream-kmsan-gce-386-root ci-upstream-kmsan-gce-root ci-upstream-linux-next-kasan-gce-root ci-upstream-net-kasan-gce ci-upstream-net-this-kasan-gce ci2-upstream-fs ci2-upstream-kcsan-gce ci2-upstream-usb], missing on: [ci-qemu2-riscv64]
First crash: 741d, last: 90d
Discussions (17)
Title Replies (including bot) Last reply
[PATCH net-next v5] ppp: Fix KMSAN uninit-value warning with bpf 3 (3) 2025/03/05 01:10
[PATCH net-next v4 0/1] ppp: Fix KMSAN uninit-value warning with bpf 5 (5) 2025/02/28 22:02
[PATCH net-next 0/1] ppp: Fix KMSAN uninit-value warning with bpf 3 (3) 2025/02/26 02:05
Re: [PATCH net-next v1 1/1] ppp: Fix KMSAN warning by initializing 2-byte header 3 (3) 2025/02/25 09:32
[PATCH net-next v2 0/1] ppp: Fix KMSAN uninit-value warning with bpf 5 (5) 2025/02/25 00:07
[PATCH net-next v3 0/1] ppp: Fix KMSAN uninit-value warning with bpf 2 (2) 2025/02/22 09:25
[PATCH net-next v1 0/1] ppp: Fix KMSAN uninit-value warning 2 (2) 2025/02/18 13:31
[PATCH net-next v1 1/1] ppp: Fix KMSAN warning by initializing 2-byte header 1 (1) 2025/02/18 13:31
[syzbot] Monthly bpf report (Jan 2025) 0 (1) 2025/01/20 08:14
[syzbot] Monthly bpf report (Dec 2024) 0 (1) 2024/12/19 21:40
[syzbot] Monthly bpf report (Oct 2024) 0 (1) 2024/10/15 21:53
[syzbot] Monthly bpf report (Sep 2024) 0 (1) 2024/09/14 12:53
[syzbot] Monthly bpf report (Aug 2024) 0 (1) 2024/08/14 12:43
[syzbot] Monthly bpf report (Jun 2024) 0 (1) 2024/06/12 22:41
[syzbot] Monthly bpf report (May 2024) 0 (1) 2024/05/12 18:21
[syzbot] Monthly bpf report (Mar 2024) 0 (1) 2024/03/11 10:18
[syzbot] [bpf?] KMSAN: uninit-value in ___bpf_prog_run (4) 0 (2) 2024/01/22 07:46
Similar bugs (3)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KMSAN: uninit-value in ___bpf_prog_run (3) bpf C 5 1123d 1125d 22/28 fixed on 2023/02/24 13:50
upstream KMSAN: uninit-value in ___bpf_prog_run bpf C 75 1812d 1813d 0/28 closed as invalid on 2020/05/28 10:23
upstream KMSAN: uninit-value in ___bpf_prog_run (2) bpf C 587 1758d 1761d 0/28 closed as invalid on 2020/07/22 14:22
Last patch testing requests (8)
Created Duration User Patch Repo Result
2025/02/01 00:45 21m retest repro upstream report log
2025/01/01 22:30 22m retest repro upstream report log
2024/10/29 16:41 28m retest repro upstream OK log
2024/10/29 16:41 21m retest repro upstream report log
2024/10/29 16:41 28m retest repro upstream OK log
2024/06/25 04:27 23m retest repro upstream error
2024/06/25 04:27 33m retest repro upstream error
2024/02/06 00:24 20m retest repro upstream error

Sample crash report:
=====================================================
BUG: KMSAN: uninit-value in ___bpf_prog_run+0x94d5/0xe0f0 kernel/bpf/core.c:2093
 ___bpf_prog_run+0x94d5/0xe0f0 kernel/bpf/core.c:2093
 __bpf_prog_run32+0xc2/0xf0 kernel/bpf/core.c:2252
 bpf_dispatcher_nop_func include/linux/bpf.h:1290 [inline]
 __bpf_prog_run include/linux/filter.h:701 [inline]
 bpf_prog_run include/linux/filter.h:708 [inline]
 ppp_send_frame drivers/net/ppp/ppp_generic.c:1770 [inline]
 __ppp_xmit_process+0x416/0x2840 drivers/net/ppp/ppp_generic.c:1661
 ppp_xmit_process+0x100/0x2b0 drivers/net/ppp/ppp_generic.c:1682
 ppp_write+0x71d/0x910 drivers/net/ppp/ppp_generic.c:536
 vfs_write+0x48a/0x1540 fs/read_write.c:677
 ksys_write+0x240/0x4b0 fs/read_write.c:731
 __do_sys_write fs/read_write.c:742 [inline]
 __se_sys_write fs/read_write.c:739 [inline]
 __x64_sys_write+0x93/0xe0 fs/read_write.c:739
 x64_sys_call+0x3161/0x3c30 arch/x86/include/generated/asm/syscalls_64.h:2
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

Uninit was stored to memory at:
 ___bpf_prog_run+0x98e7/0xe0f0 kernel/bpf/core.c:2011
 __bpf_prog_run32+0xc2/0xf0 kernel/bpf/core.c:2252
 bpf_dispatcher_nop_func include/linux/bpf.h:1290 [inline]
 __bpf_prog_run include/linux/filter.h:701 [inline]
 bpf_prog_run include/linux/filter.h:708 [inline]
 ppp_send_frame drivers/net/ppp/ppp_generic.c:1770 [inline]
 __ppp_xmit_process+0x416/0x2840 drivers/net/ppp/ppp_generic.c:1661
 ppp_xmit_process+0x100/0x2b0 drivers/net/ppp/ppp_generic.c:1682
 ppp_write+0x71d/0x910 drivers/net/ppp/ppp_generic.c:536
 vfs_write+0x48a/0x1540 fs/read_write.c:677
 ksys_write+0x240/0x4b0 fs/read_write.c:731
 __do_sys_write fs/read_write.c:742 [inline]
 __se_sys_write fs/read_write.c:739 [inline]
 __x64_sys_write+0x93/0xe0 fs/read_write.c:739
 x64_sys_call+0x3161/0x3c30 arch/x86/include/generated/asm/syscalls_64.h:2
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

Uninit was created at:
 slab_post_alloc_hook mm/slub.c:4091 [inline]
 slab_alloc_node mm/slub.c:4134 [inline]
 kmem_cache_alloc_node_noprof+0x6bf/0xb80 mm/slub.c:4186
 kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:587
 __alloc_skb+0x363/0x7b0 net/core/skbuff.c:678
 alloc_skb include/linux/skbuff.h:1323 [inline]
 ppp_write+0xdf/0x910 drivers/net/ppp/ppp_generic.c:519
 vfs_write+0x48a/0x1540 fs/read_write.c:677
 ksys_write+0x240/0x4b0 fs/read_write.c:731
 __do_sys_write fs/read_write.c:742 [inline]
 __se_sys_write fs/read_write.c:739 [inline]
 __x64_sys_write+0x93/0xe0 fs/read_write.c:739
 x64_sys_call+0x3161/0x3c30 arch/x86/include/generated/asm/syscalls_64.h:2
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

CPU: 1 UID: 0 PID: 5806 Comm: syz-executor123 Not tainted 6.12.0-syzkaller-07834-g06afb0f36106 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
=====================================================

Crashes (322):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/11/23 10:30 upstream 06afb0f36106 68da6d95 .config strace log report syz / log C [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/08/11 18:17 upstream 5189dafa4cf9 6f4edef4 .config strace log report syz / log C [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2025/02/12 12:53 upstream 09fbf3d50205 f2baddf5 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2025/02/08 22:56 upstream 8f6629c004b1 ef44b750 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2025/01/16 16:16 upstream 619f0b6fad52 968edaf4 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2025/01/14 13:05 upstream c45323b7560e b1f1cd88 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2025/01/09 14:52 upstream eea6e4b4dfb8 f3558dbf .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/12/18 19:51 upstream aef25be35d23 1432fc84 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/12/16 01:33 upstream 2d8308bf5b67 7cbfbb3a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/12/13 22:31 upstream f932fb9b4074 7cbfbb3a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/12/10 17:08 upstream 7cb1b4663150 cfc402b4 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/12/09 15:07 upstream fac04efc5c79 9ac0fdc6 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/12/09 00:47 upstream 62b5a46999c7 9ac0fdc6 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/12/08 04:25 upstream 7503345ac5f5 9ac0fdc6 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/12/08 03:16 upstream 7503345ac5f5 9ac0fdc6 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/12/07 12:52 upstream b5f217084ab3 9ac0fdc6 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/12/03 23:29 upstream ceb8bf2ceaa7 578925bc .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/12/02 00:53 upstream bcc8eda6d349 68914665 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/11/30 17:06 upstream 2ba9f676d0a2 68914665 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/11/29 08:49 upstream 7af08b57bcb9 5df23865 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/11/28 14:11 upstream b86545e02e8c 5df23865 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/11/27 05:51 upstream 7eef7e306d3c 52b38cc1 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/11/25 19:31 upstream 9f16d5e6f220 a84878fc .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/11/24 07:01 upstream 9f16d5e6f220 68da6d95 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/11/24 01:28 upstream 228a1157fb9f 68da6d95 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/11/23 21:27 upstream 228a1157fb9f 68da6d95 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/11/23 18:57 upstream 228a1157fb9f 68da6d95 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/11/23 05:31 upstream 06afb0f36106 68da6d95 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/11/22 15:07 upstream 28eb75e178d3 4b25d554 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/11/17 10:06 upstream 4a5df3796467 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/11/15 08:03 upstream cfaaa7d010d1 f6ede3a3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/11/14 16:19 upstream 0a9b9d17f3a7 77f3eeb7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/11/12 09:57 upstream 2d5404caa8c7 75bb1b32 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/11/12 08:41 upstream 2d5404caa8c7 75bb1b32 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/11/07 17:53 upstream ff7afaeca1a1 c069283c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/11/07 01:27 upstream 7758b206117d df3dc63b .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/11/06 00:49 upstream 2e1b3cc9d7f7 3a465482 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/11/01 09:45 upstream 6c52d4da1c74 96eb609f .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/10/15 15:14 upstream eca631b8fe80 14943bb8 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/10/15 03:36 upstream eca631b8fe80 b01b6661 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/10/14 03:43 upstream cfea70e835b9 084d8178 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/10/02 01:25 upstream e32cde8d2bd7 ea2b66a6 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/09/25 14:26 upstream 684a64bf32b6 349a68c4 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/09/25 03:45 upstream 97d8894b6f4c 5643e0e9 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/05/01 22:49 upstream 18daea77cca6 3ba885bc .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/01/22 07:45 upstream 9f8413c4a66f 9bd8dcda .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2023/12/20 15:15 upstream 55cb5f43689d 3ad490ea .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in ___bpf_prog_run
2024/06/06 06:55 upstream 101b7a97143a 121701b6 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in ___bpf_prog_run
2023/12/06 23:22 upstream bee0e7762ad2 e3299f55 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in ___bpf_prog_run
2023/11/21 14:44 upstream 98b1cc82c4af cb976f63 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in ___bpf_prog_run
* Struck through repros no longer work on HEAD.