syzbot

 sign-in | mailing list | source | docs | 🏰
🐞 Open [1335]
Subsystems
🐞 Fixed [7140]
🐞 Invalid [18885]
Missing Backports [220]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
✨ AI
💬 Send us feedback

KMSAN: kernel-infoleak in irqentry_exit

Status: upstream: reported on 2026/05/31 00:27
Subsystems: kernel
Labels: prio:high
[Documentation on labels]
Reported-by: syzbot+185a631927096f9da2fc@syzkaller.appspotmail.com
Fix commit: rseq: Fix using an uninitialized stack variable in rseq_exit_user_update()
Patched on: [], missing on: [ci-qemu-gce-upstream-auto ci-qemu-native-arm64-kvm ci-qemu-upstream ci-qemu-upstream-386 ci-qemu2-arm32 ci-qemu2-arm64 ci-qemu2-arm64-compat ci-qemu2-arm64-mte ci-qemu2-riscv64 ci-snapshot-upstream-root ci-upstream-bpf-kasan-gce ci-upstream-bpf-next-kasan-gce ci-upstream-gce-arm64 ci-upstream-gce-leak ci-upstream-kasan-badwrites-root ci-upstream-kasan-gce ci-upstream-kasan-gce-386 ci-upstream-kasan-gce-root ci-upstream-kasan-gce-selinux-root ci-upstream-kasan-gce-smack-root ci-upstream-kmsan-gce-386-root ci-upstream-kmsan-gce-root ci-upstream-linux-next-kasan-gce-root ci-upstream-net-kasan-gce ci-upstream-net-this-kasan-gce ci-upstream-rust-kasan-gce ci2-upstream-fs ci2-upstream-kcsan-gce ci2-upstream-usb]
First crash: 11d, last: now
✨ AI Jobs (1)
ID Workflow Result Correct Bug Created Started Finished Revision Error
4fe5b83a-a4b7-4c51-a162-f562d209edae assessment-security DenialOfService: ✅ Exploitable: ❌ FilesystemTrigger: ❌ NetworkTrigger: ❌ PeripheralTrigger: ❌ RemoteTrigger: ❌ Unprivileged: ✅ UserNamespace: ✅ VMGuestTrigger: ❌ VMHostTrigger: ❌ KMSAN: kernel-infoleak in irqentry_exit 2026/05/29 20:06 2026/05/29 20:06 2026/05/29 20:41 6b4a844333e83556da95d61d7f207e7ef5cd4bc6
Discussions (2)
Title Replies (including bot) Last reply
[PATCH] rseq: fix using an uninitialized stack variable in rseq_exit_user_update 7 (7) 2026/06/02 10:45
[syzbot] [kernel?] KMSAN: kernel-infoleak in irqentry_exit 0 (1) 2026/05/31 00:27

Sample crash report:
=====================================================
BUG: KMSAN: kernel-infoleak in rseq_set_ids_get_csaddr include/linux/rseq_entry.h:502 [inline]
BUG: KMSAN: kernel-infoleak in rseq_update_usr include/linux/rseq_entry.h:536 [inline]
BUG: KMSAN: kernel-infoleak in rseq_exit_user_update include/linux/rseq_entry.h:644 [inline]
BUG: KMSAN: kernel-infoleak in __rseq_exit_to_user_mode_restart include/linux/rseq_entry.h:673 [inline]
BUG: KMSAN: kernel-infoleak in rseq_exit_to_user_mode_restart include/linux/rseq_entry.h:702 [inline]
BUG: KMSAN: kernel-infoleak in exit_to_user_mode_loop kernel/entry/common.c:100 [inline]
BUG: KMSAN: kernel-infoleak in __exit_to_user_mode_prepare include/linux/irq-entry-common.h:207 [inline]
BUG: KMSAN: kernel-infoleak in irqentry_exit_to_user_mode_prepare include/linux/irq-entry-common.h:244 [inline]
BUG: KMSAN: kernel-infoleak in irqentry_exit_to_user_mode include/linux/irq-entry-common.h:315 [inline]
BUG: KMSAN: kernel-infoleak in irqentry_exit+0x48b/0xa00 kernel/entry/common.c:162
 rseq_set_ids_get_csaddr include/linux/rseq_entry.h:502 [inline]
 rseq_update_usr include/linux/rseq_entry.h:536 [inline]
 rseq_exit_user_update include/linux/rseq_entry.h:644 [inline]
 __rseq_exit_to_user_mode_restart include/linux/rseq_entry.h:673 [inline]
 rseq_exit_to_user_mode_restart include/linux/rseq_entry.h:702 [inline]
 exit_to_user_mode_loop kernel/entry/common.c:100 [inline]
 __exit_to_user_mode_prepare include/linux/irq-entry-common.h:207 [inline]
 irqentry_exit_to_user_mode_prepare include/linux/irq-entry-common.h:244 [inline]
 irqentry_exit_to_user_mode include/linux/irq-entry-common.h:315 [inline]
 irqentry_exit+0x48b/0xa00 kernel/entry/common.c:162
 exc_page_fault+0x7e/0xb0 arch/x86/mm/fault.c:1530
 asm_exc_page_fault+0x2b/0x30 arch/x86/include/asm/idtentry.h:618

Local variable end_time.i.i created at:
 __do_sys_poll fs/select.c:1063 [inline]
 __se_sys_poll fs/select.c:1060 [inline]
 __x64_sys_poll+0x87/0x540 fs/select.c:1060
 x64_sys_call+0x3130/0x3ea0 arch/x86/include/generated/asm/syscalls_64.h:8

Bytes 0-3 of 4 are uninitialized
Memory access of size 4 starts at ffff88811b43fe88
Data copied to user address 00007f4206174140

CPU: 0 UID: 0 PID: 5414 Comm: sshd-session Not tainted syzkaller #0 PREEMPT(lazy) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
=====================================================

Crashes (2372):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2026/06/07 00:06 upstream 8e65320d91cd cc095639 .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 22:33 upstream 8e65320d91cd cc095639 .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 21:59 upstream 8e65320d91cd cc095639 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 20:58 upstream 8e65320d91cd cc095639 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 20:52 upstream 8e65320d91cd cc095639 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 17:27 upstream c10130c234c8 cc095639 .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 16:25 upstream c10130c234c8 cc095639 .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 15:43 upstream c10130c234c8 cc095639 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 14:42 upstream c10130c234c8 cc095639 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 12:51 upstream c10130c234c8 cc095639 .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 12:17 upstream c10130c234c8 cc095639 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 11:16 upstream c10130c234c8 cc095639 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 10:45 upstream c10130c234c8 cc095639 .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 09:34 upstream c10130c234c8 cc095639 .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 08:29 upstream c10130c234c8 cc095639 .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 06:49 upstream c10130c234c8 cc095639 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 05:31 upstream c10130c234c8 cc095639 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/05 23:48 upstream ddd664bbff63 48b6c3fa .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/05 23:30 upstream ddd664bbff63 48b6c3fa .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/05 22:29 upstream ddd664bbff63 48b6c3fa .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/05 22:13 upstream ddd664bbff63 48b6c3fa .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/05 21:10 upstream ddd664bbff63 48b6c3fa .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/05 20:23 upstream ddd664bbff63 48b6c3fa .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/05 19:20 upstream ddd664bbff63 48b6c3fa .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/05 18:18 upstream ddd664bbff63 48b6c3fa .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/05 16:46 upstream ddd664bbff63 48b6c3fa .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/05 15:44 upstream ddd664bbff63 48b6c3fa .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/05 15:01 upstream ddd664bbff63 48b6c3fa .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/05 14:00 upstream ddd664bbff63 48b6c3fa .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/05 12:37 upstream ddd664bbff63 48b6c3fa .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/05 11:31 upstream ddd664bbff63 197909be .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/05 08:51 upstream 9154c4af7829 197909be .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/05/30 23:53 upstream 670b77dfebe7 6b4a8443 .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/05/29 19:44 upstream 8fde5d1d47f6 6b4a8443 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 23:35 upstream 8e65320d91cd cc095639 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 19:49 upstream 8e65320d91cd cc095639 .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 18:28 upstream 8e65320d91cd cc095639 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 13:53 upstream 8e65320d91cd cc095639 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 07:55 upstream 8e65320d91cd cc095639 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 06:48 upstream 8e65320d91cd cc095639 .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/06 04:22 upstream ddd664bbff63 cc095639 .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/05 17:14 upstream ddd664bbff63 48b6c3fa .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/05 13:40 upstream ddd664bbff63 48b6c3fa .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/05 11:20 upstream 9154c4af7829 197909be .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: kernel-infoleak in irqentry_exit
2026/06/05 09:57 upstream 9154c4af7829 197909be .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: kernel-infoleak in irqentry_exit
2026/05/27 00:22 upstream d60ec36cab33 2b01f00e .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: kernel-infoleak in irqentry_exit
* Struck through repros no longer work on HEAD.