syzbot

 sign-in | mailing list | source | docs
🐞 Open [979] Subsystems 🐞 Fixed [5235] 🐞 Invalid [12495] Missing Backports [83] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

KMSAN: uninit-value in gue_err (2)

Status: fixed on 2019/03/28 12:00
Subsystems: net
[Documentation on labels]
Fix commit: 5355ed6388e2 fou, fou6: avoid uninit-value in gue_err() and gue6_err()
First crash: 1875d, last: 1853d
Similar bugs (1)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KMSAN: uninit-value in gue_err net C 4686 1875d 1929d 11/26 fixed on 2019/03/06 07:43

Sample crash report:
==================================================================
BUG: KMSAN: uninit-value in gue_err+0x514/0xfa0 net/ipv4/fou.c:1032
CPU: 1 PID: 16 Comm: ksoftirqd/1 Not tainted 5.0.0+ #17
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x173/0x1d0 lib/dump_stack.c:113
 kmsan_report+0x131/0x2a0 mm/kmsan/kmsan.c:624
 __msan_warning+0x7a/0xf0 mm/kmsan/kmsan_instr.c:310
 gue_err+0x514/0xfa0 net/ipv4/fou.c:1032
 __udp4_lib_err_encap_no_sk net/ipv4/udp.c:571 [inline]
 __udp4_lib_err_encap net/ipv4/udp.c:626 [inline]
 __udp4_lib_err+0x12e6/0x1d40 net/ipv4/udp.c:665
 udp_err+0x74/0x90 net/ipv4/udp.c:737
 icmp_socket_deliver net/ipv4/icmp.c:767 [inline]
 icmp_unreach+0xb65/0x1070 net/ipv4/icmp.c:884
 icmp_rcv+0x11a1/0x1950 net/ipv4/icmp.c:1066
 ip_protocol_deliver_rcu+0x584/0xbb0 net/ipv4/ip_input.c:208
 ip_local_deliver_finish net/ipv4/ip_input.c:234 [inline]
 NF_HOOK include/linux/netfilter.h:289 [inline]
 ip_local_deliver+0x624/0x7b0 net/ipv4/ip_input.c:255
 dst_input include/net/dst.h:450 [inline]
 ip_rcv_finish net/ipv4/ip_input.c:414 [inline]
 NF_HOOK include/linux/netfilter.h:289 [inline]
 ip_rcv+0x6bd/0x740 net/ipv4/ip_input.c:524
 __netif_receive_skb_one_core net/core/dev.c:4973 [inline]
 __netif_receive_skb net/core/dev.c:5083 [inline]
 process_backlog+0x756/0x10e0 net/core/dev.c:5923
 napi_poll net/core/dev.c:6346 [inline]
 net_rx_action+0x78b/0x1a60 net/core/dev.c:6412
 __do_softirq+0x53f/0x93a kernel/softirq.c:293
 run_ksoftirqd+0x26/0x50 kernel/softirq.c:658
 smpboot_thread_fn+0x4d0/0x9f0 kernel/smpboot.c:164
 kthread+0x4a1/0x4e0 kernel/kthread.c:247
 ret_from_fork+0x35/0x40 arch/x86/entry/entry_64.S:355

Uninit was created at:
 kmsan_save_stack_with_flags mm/kmsan/kmsan.c:205 [inline]
 kmsan_internal_poison_shadow+0x92/0x150 mm/kmsan/kmsan.c:159
 kmsan_kmalloc+0xa6/0x130 mm/kmsan/kmsan_hooks.c:173
 kmsan_slab_alloc+0xe/0x10 mm/kmsan/kmsan_hooks.c:182
 slab_post_alloc_hook mm/slab.h:445 [inline]
 slab_alloc_node mm/slub.c:2773 [inline]
 __kmalloc_node_track_caller+0xe9e/0xff0 mm/slub.c:4398
 __kmalloc_reserve net/core/skbuff.c:140 [inline]
 __alloc_skb+0x309/0xa20 net/core/skbuff.c:208
 alloc_skb include/linux/skbuff.h:1012 [inline]
 alloc_skb_with_frags+0x186/0xa60 net/core/skbuff.c:5287
 sock_alloc_send_pskb+0xafd/0x10a0 net/core/sock.c:2091
 sock_alloc_send_skb+0xca/0xe0 net/core/sock.c:2108
 __ip_append_data+0x34cd/0x5000 net/ipv4/ip_output.c:998
 ip_append_data+0x324/0x480 net/ipv4/ip_output.c:1220
 icmp_push_reply+0x23d/0x7e0 net/ipv4/icmp.c:375
 __icmp_send+0x2ea3/0x30f0 net/ipv4/icmp.c:737
 icmp_send include/net/icmp.h:47 [inline]
 __udp4_lib_rcv+0x36d7/0x4b80 net/ipv4/udp.c:2323
 udp_rcv+0x5c/0x70 net/ipv4/udp.c:2482
 ip_protocol_deliver_rcu+0x584/0xbb0 net/ipv4/ip_input.c:208
 ip_local_deliver_finish net/ipv4/ip_input.c:234 [inline]
 NF_HOOK include/linux/netfilter.h:289 [inline]
 ip_local_deliver+0x624/0x7b0 net/ipv4/ip_input.c:255
 dst_input include/net/dst.h:450 [inline]
 ip_rcv_finish net/ipv4/ip_input.c:414 [inline]
 NF_HOOK include/linux/netfilter.h:289 [inline]
 ip_rcv+0x6bd/0x740 net/ipv4/ip_input.c:524
 __netif_receive_skb_one_core net/core/dev.c:4973 [inline]
 __netif_receive_skb net/core/dev.c:5083 [inline]
 process_backlog+0x756/0x10e0 net/core/dev.c:5923
 napi_poll net/core/dev.c:6346 [inline]
 net_rx_action+0x78b/0x1a60 net/core/dev.c:6412
 __do_softirq+0x53f/0x93a kernel/softirq.c:293
==================================================================

Crashes (1617):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2019/03/27 08:07 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report syz C ci-upstream-kmsan-gce
2019/03/24 22:54 https://github.com/google/kmsan.git master c10a026b8dee acbc5b7d .config console log report syz C ci-upstream-kmsan-gce
2019/03/23 17:31 https://github.com/google/kmsan.git master c10a026b8dee a2cef203 .config console log report syz C ci-upstream-kmsan-gce
2019/03/23 08:25 https://github.com/google/kmsan.git master c10a026b8dee 3361bde5 .config console log report syz C ci-upstream-kmsan-gce
2019/03/21 22:32 https://github.com/google/kmsan.git master c10a026b8dee dce6e62f .config console log report syz C ci-upstream-kmsan-gce
2019/03/21 10:57 https://github.com/google/kmsan.git master c10a026b8dee 427ea487 .config console log report syz C ci-upstream-kmsan-gce
2019/03/16 03:07 https://github.com/google/kmsan.git master 43cfd3b1484f bab43553 .config console log report syz C ci-upstream-kmsan-gce
2019/03/28 11:39 https://github.com/google/kmsan.git master 3c26d882e695 f94f56fe .config console log report ci-upstream-kmsan-gce
2019/03/28 10:37 https://github.com/google/kmsan.git master 3c26d882e695 f94f56fe .config console log report ci-upstream-kmsan-gce
2019/03/28 08:13 https://github.com/google/kmsan.git master 3c26d882e695 f94f56fe .config console log report ci-upstream-kmsan-gce
2019/03/28 06:26 https://github.com/google/kmsan.git master 3c26d882e695 f94f56fe .config console log report ci-upstream-kmsan-gce
2019/03/28 04:52 https://github.com/google/kmsan.git master 3c26d882e695 f94f56fe .config console log report ci-upstream-kmsan-gce
2019/03/28 03:46 https://github.com/google/kmsan.git master 3c26d882e695 f94f56fe .config console log report ci-upstream-kmsan-gce
2019/03/28 02:02 https://github.com/google/kmsan.git master 3c26d882e695 4e668495 .config console log report ci-upstream-kmsan-gce
2019/03/28 00:32 https://github.com/google/kmsan.git master 3c26d882e695 4e668495 .config console log report ci-upstream-kmsan-gce
2019/03/27 22:55 https://github.com/google/kmsan.git master 3c26d882e695 4e668495 .config console log report ci-upstream-kmsan-gce
2019/03/27 22:36 https://github.com/google/kmsan.git master 3c26d882e695 4e668495 .config console log report ci-upstream-kmsan-gce
2019/03/27 21:34 https://github.com/google/kmsan.git master 3c26d882e695 4e668495 .config console log report ci-upstream-kmsan-gce
2019/03/27 20:32 https://github.com/google/kmsan.git master 3c26d882e695 4e668495 .config console log report ci-upstream-kmsan-gce
2019/03/27 20:01 https://github.com/google/kmsan.git master 3c26d882e695 4e668495 .config console log report ci-upstream-kmsan-gce
2019/03/27 18:34 https://github.com/google/kmsan.git master 3c26d882e695 4e668495 .config console log report ci-upstream-kmsan-gce
2019/03/27 17:08 https://github.com/google/kmsan.git master 3c26d882e695 4e668495 .config console log report ci-upstream-kmsan-gce
2019/03/27 16:08 https://github.com/google/kmsan.git master 3c26d882e695 4e668495 .config console log report ci-upstream-kmsan-gce
2019/03/27 15:31 https://github.com/google/kmsan.git master 3c26d882e695 4e668495 .config console log report ci-upstream-kmsan-gce
2019/03/27 13:58 https://github.com/google/kmsan.git master 3c26d882e695 4e668495 .config console log report ci-upstream-kmsan-gce
2019/03/27 11:57 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/27 11:33 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/27 10:23 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/27 09:11 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/27 07:49 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/27 05:55 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/27 04:35 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/27 01:53 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/27 01:52 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/26 23:13 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/26 22:06 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/26 21:02 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/26 18:26 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/26 17:48 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/26 15:45 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/26 14:13 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/26 12:24 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/26 10:46 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/26 10:30 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/26 09:28 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/26 08:00 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/26 06:57 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/26 05:34 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/26 03:48 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/26 02:07 https://github.com/google/kmsan.git master 3c26d882e695 55684ce1 .config console log report ci-upstream-kmsan-gce
2019/03/06 08:29 https://github.com/google/kmsan.git master a695dc5e929e 05cf83bf .config console log report ci-upstream-kmsan-gce
* Struck through repros no longer work on HEAD.