syzbot


KMSAN: uninit-value in n_tty_receive_buf_common (2)

Status: auto-obsoleted due to no activity on 2023/09/27 16:27
Subsystems: serial
[Documentation on labels]
Reported-by: syzbot+b68d24ad0de64bdba684@syzkaller.appspotmail.com
First crash: 925d, last: 315d
Discussions (4)
Title Replies (including bot) Last reply
[syzbot] Monthly serial report (Jul 2023) 1 (2) 2023/08/03 08:33
[PATCH] tty tty_buffer: fix uninit-value in n_tty_receive_buf_common 2 (2) 2022/01/10 08:51
Re: [PATCH] tty tty_buffer: fix uninit-value in n_tty_receive_buf_common 1 (1) 2022/01/10 08:23
[syzbot] KMSAN: uninit-value in n_tty_receive_buf_common (2) 0 (1) 2021/12/15 08:54
Similar bugs (4)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KMSAN: uninit-value in n_tty_receive_buf_common serial 1 1912d 1912d 0/26 auto-closed as invalid on 2019/09/01 21:37
upstream general protection fault in n_tty_receive_buf_common (2) serial 3 44d 82d 0/26 moderation: reported on 2024/03/08 06:32
android-6-1 general protection fault in n_tty_receive_buf_common 1 97d 97d 0/2 auto-obsoleted due to no activity on 2024/05/22 15:27
upstream general protection fault in n_tty_receive_buf_common serial 48 2023d 2406d 0/26 closed as dup on 2018/07/17 10:20
Last patch testing requests (2)
Created Duration User Patch Repo Result
2023/07/03 23:08 40m retest repro https://github.com/google/kmsan.git master OK log
2022/03/24 03:32 12m wanngchenng@gmail.com patch https://github.com/google/kmsan.git 8b936c96768e report log

Sample crash report:
=====================================================
BUG: KMSAN: uninit-value in variable_test_bit arch/x86/include/asm/bitops.h:214 [inline]
BUG: KMSAN: uninit-value in test_bit include/asm-generic/bitops/instrumented-non-atomic.h:135 [inline]
BUG: KMSAN: uninit-value in n_tty_receive_buf_standard drivers/tty/n_tty.c:1557 [inline]
BUG: KMSAN: uninit-value in __receive_buf drivers/tty/n_tty.c:1577 [inline]
BUG: KMSAN: uninit-value in n_tty_receive_buf_common+0x1e6c/0x10360 drivers/tty/n_tty.c:1674
 variable_test_bit arch/x86/include/asm/bitops.h:214 [inline]
 test_bit include/asm-generic/bitops/instrumented-non-atomic.h:135 [inline]
 n_tty_receive_buf_standard drivers/tty/n_tty.c:1557 [inline]
 __receive_buf drivers/tty/n_tty.c:1577 [inline]
 n_tty_receive_buf_common+0x1e6c/0x10360 drivers/tty/n_tty.c:1674
 n_tty_receive_buf2+0xbe/0xd0 drivers/tty/n_tty.c:1709
 tty_ldisc_receive_buf+0x15e/0x390 drivers/tty/tty_buffer.c:471
 tty_port_default_receive_buf+0x14b/0x1e0 drivers/tty/tty_port.c:39
 receive_buf drivers/tty/tty_buffer.c:491 [inline]
 flush_to_ldisc+0x5bf/0xa10 drivers/tty/tty_buffer.c:543
 process_one_work+0xdc2/0x1820 kernel/workqueue.c:2298
 worker_thread+0x10f1/0x2290 kernel/workqueue.c:2445
 kthread+0x721/0x850 kernel/kthread.c:327
 ret_from_fork+0x1f/0x30

Uninit was created at:
 slab_post_alloc_hook mm/slab.h:524 [inline]
 slab_alloc_node mm/slub.c:3251 [inline]
 slab_alloc mm/slub.c:3259 [inline]
 __kmalloc+0xc3c/0x12d0 mm/slub.c:4437
 kmalloc include/linux/slab.h:595 [inline]
 tty_buffer_alloc drivers/tty/tty_buffer.c:177 [inline]
 __tty_buffer_request_room+0x4d2/0x900 drivers/tty/tty_buffer.c:275
 __tty_insert_flip_char+0xe5/0x3d0 drivers/tty/tty_buffer.c:392
 tty_insert_flip_char include/linux/tty_flip.h:36 [inline]
 uart_insert_char+0x495/0xb70 drivers/tty/serial/serial_core.c:3139
 serial8250_read_char+0x280/0x820 drivers/tty/serial/8250/8250_port.c:1769
 serial8250_rx_chars drivers/tty/serial/8250/8250_port.c:1784 [inline]
 serial8250_handle_irq+0x540/0x980 drivers/tty/serial/8250/8250_port.c:1927
 serial8250_default_handle_irq+0x18f/0x370 drivers/tty/serial/8250/8250_port.c:1949
 serial8250_interrupt+0x111/0x3f0 drivers/tty/serial/8250/8250_core.c:126
 __handle_irq_event_percpu+0x188/0xc90 kernel/irq/handle.c:158
 handle_irq_event_percpu kernel/irq/handle.c:198 [inline]
 handle_irq_event+0x188/0x420 kernel/irq/handle.c:215
 handle_edge_irq+0x472/0x13e0 kernel/irq/chip.c:822
 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline]
 handle_irq arch/x86/kernel/irq.c:231 [inline]
 __common_interrupt+0xf8/0x360 arch/x86/kernel/irq.c:250
 common_interrupt+0xb1/0xd0 arch/x86/kernel/irq.c:240
 asm_common_interrupt+0x1e/0x40

CPU: 0 PID: 1056 Comm: kworker/u4:5 Not tainted 5.16.0-rc3-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: events_unbound flush_to_ldisc
=====================================================

Crashes (591):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2021/12/10 12:04 https://github.com/google/kmsan.git master 8b936c96768e 4d4ce9bc .config console log report syz C ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/28 03:48 https://github.com/google/kmsan.git master 4b28366af7d9 ef82eb2c .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/27 19:18 https://github.com/google/kmsan.git master 4b28366af7d9 ef82eb2c .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/27 18:52 https://github.com/google/kmsan.git master 4b28366af7d9 ef82eb2c .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/27 16:58 https://github.com/google/kmsan.git master 4b28366af7d9 a371c43c .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/27 15:54 https://github.com/google/kmsan.git master 4b28366af7d9 a371c43c .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/27 11:08 https://github.com/google/kmsan.git master 4b28366af7d9 a371c43c .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/26 23:55 https://github.com/google/kmsan.git master 4b28366af7d9 a371c43c .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/26 22:24 https://github.com/google/kmsan.git master 4b28366af7d9 a371c43c .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/26 18:03 https://github.com/google/kmsan.git master 4b28366af7d9 a371c43c .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/26 11:57 https://github.com/google/kmsan.git master 4b28366af7d9 a371c43c .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/26 09:23 https://github.com/google/kmsan.git master 4b28366af7d9 a371c43c .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/26 06:24 https://github.com/google/kmsan.git master 4b28366af7d9 a371c43c .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/26 03:04 https://github.com/google/kmsan.git master 4b28366af7d9 a371c43c .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/25 14:09 https://github.com/google/kmsan.git master 4b28366af7d9 a371c43c .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/25 10:04 https://github.com/google/kmsan.git master 4b28366af7d9 a371c43c .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/25 08:47 https://github.com/google/kmsan.git master 4b28366af7d9 a371c43c .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/25 02:55 https://github.com/google/kmsan.git master 4b28366af7d9 a371c43c .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/24 09:58 https://github.com/google/kmsan.git master 4b28366af7d9 a5dbd430 .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/24 07:44 https://github.com/google/kmsan.git master 4b28366af7d9 912f5df7 .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/24 04:24 https://github.com/google/kmsan.git master 4b28366af7d9 912f5df7 .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/22 22:52 https://github.com/google/kmsan.git master 4b28366af7d9 912f5df7 .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/22 21:33 https://github.com/google/kmsan.git master 4b28366af7d9 912f5df7 .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/22 17:11 https://github.com/google/kmsan.git master 4b28366af7d9 0fc5c330 .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/22 15:21 https://github.com/google/kmsan.git master 4b28366af7d9 0fc5c330 .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/21 03:22 https://github.com/google/kmsan.git master 7516e1b6d801 0fc5c330 .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/20 11:05 https://github.com/google/kmsan.git master eb5e8c791e57 8f633d84 .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/19 22:42 https://github.com/google/kmsan.git master 74df87f93710 8f633d84 .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/18 23:47 https://github.com/google/kmsan.git master fb61e40b30d1 8f633d84 .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/18 22:22 https://github.com/google/kmsan.git master fb61e40b30d1 8f633d84 .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/18 04:57 https://github.com/google/kmsan.git master 365ac3bfacfb 8f633d84 .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/17 06:54 https://github.com/google/kmsan.git master 2f3064574275 1719ee24 .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/16 23:04 https://github.com/google/kmsan.git master 2f3064574275 1719ee24 .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/16 14:25 https://github.com/google/kmsan.git master 2f3064574275 1719ee24 .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/16 12:54 https://github.com/google/kmsan.git master 2f3064574275 1719ee24 .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/16 03:38 https://github.com/google/kmsan.git master 2f3064574275 1719ee24 .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/15 19:43 https://github.com/google/kmsan.git master 2f3064574275 1719ee24 .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/15 10:53 https://github.com/google/kmsan.git master 2f3064574275 127d1faf .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2021/11/16 12:58 https://github.com/google/kmsan.git master 386004877847 600426bd .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/21 05:14 https://github.com/google/kmsan.git master 7516e1b6d801 0fc5c330 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in n_tty_receive_buf_common
2022/06/16 20:10 https://github.com/google/kmsan.git master 2f3064574275 1719ee24 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in n_tty_receive_buf_common
2023/07/19 16:27 upstream ccff6d117d8d 022df2bb .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce general protection fault in n_tty_receive_buf_common
2023/04/24 23:01 upstream 1a0beef98b58 fdc18293 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce general protection fault in n_tty_receive_buf_common
2023/04/19 04:42 upstream af67688dca57 d931e9f0 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce general protection fault in n_tty_receive_buf_common
2023/03/13 01:38 upstream 134231664868 5205ef30 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce general protection fault in n_tty_receive_buf_common
2022/10/11 19:30 upstream 55be6084c8e0 1353c374 .config console log report info [disk image] [vmlinux] ci-upstream-kasan-gce-selinux-root general protection fault in n_tty_receive_buf_common
2021/12/22 18:00 upstream 2f47a9a4dfa3 6caa12e4 .config console log report info ci-upstream-kasan-gce-root general protection fault in n_tty_receive_buf_common
2021/12/11 08:35 upstream b8a98b6bf66a 49ca1f59 .config console log report info ci-upstream-kasan-gce-smack-root general protection fault in n_tty_receive_buf_common
2022/09/17 22:05 upstream a335366bad13 dd9a85ff .config console log report info ci-upstream-kasan-gce-386 general protection fault in n_tty_receive_buf_common
2023/02/14 14:56 linux-next 38d2b86a665b 1d6b4af7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root general protection fault in n_tty_receive_buf_common
2022/11/16 00:47 https://github.com/google/kmsan.git master cb231e2f67ec 3a127a31 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in flush_to_ldisc
2022/09/15 13:39 linux-next e47eb90a0a9a dd9a85ff .config console log report info [disk image] [vmlinux] ci-upstream-linux-next-kasan-gce-root general protection fault in n_tty_receive_buf_common
2022/06/18 06:39 https://github.com/google/kmsan.git master 365ac3bfacfb 8f633d84 .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in ppp_asynctty_receive
2022/05/10 13:44 https://github.com/google/kmsan.git master d6e2c8c7eb40 8b277b8e .config console log report info ci-upstream-kmsan-gce KMSAN: uninit-value in gsm1_receive
* Struck through repros no longer work on HEAD.