syzbot

 sign-in | mailing list | source | docs
🐞 Open [948] 🐞 Fixed [4019] 🐞 Invalid [8930] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes

KMSAN: uninit-value in ieee802154_hdr_push

Status: upstream: reported on 2021/03/02 09:29
Reported-by: syzbot+4f6e279a71100e94ae65@syzkaller.appspotmail.com
First crash: 579d, last: 23h24m
similar bugs (1):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KMSAN: uninit-value in dgram_sendmsg 75 19d 576d 0/24 upstream: reported on 2021/03/01 11:49

Sample crash report:
=====================================================
BUG: KMSAN: uninit-value in ieee802154_hdr_push+0x41d/0x9f0 net/ieee802154/header_ops.c:96
 ieee802154_hdr_push+0x41d/0x9f0 net/ieee802154/header_ops.c:96
 ieee802154_header_create+0xb37/0xdb0 net/mac802154/iface.c:403
 wpan_dev_hard_header include/net/cfg802154.h:385 [inline]
 dgram_sendmsg+0xaf3/0x1460 net/ieee802154/socket.c:669
 ieee802154_sock_sendmsg+0x8d/0xc0 net/ieee802154/socket.c:96
 sock_sendmsg_nosec net/socket.c:714 [inline]
 sock_sendmsg net/socket.c:734 [inline]
 ____sys_sendmsg+0xabc/0xe90 net/socket.c:2482
 ___sys_sendmsg+0x2a1/0x3f0 net/socket.c:2536
 __sys_sendmsg+0x258/0x440 net/socket.c:2565
 __compat_sys_sendmsg net/compat.c:343 [inline]
 __do_compat_sys_sendmsg net/compat.c:350 [inline]
 __se_compat_sys_sendmsg net/compat.c:347 [inline]
 __ia32_compat_sys_sendmsg+0x99/0xe0 net/compat.c:347
 do_syscall_32_irqs_on arch/x86/entry/common.c:112 [inline]
 __do_fast_syscall_32+0xa2/0x100 arch/x86/entry/common.c:178
 do_fast_syscall_32+0x33/0x70 arch/x86/entry/common.c:203
 do_SYSENTER_32+0x1b/0x20 arch/x86/entry/common.c:246
 entry_SYSENTER_compat_after_hwframe+0x70/0x82

Uninit was stored to memory at:
 ieee802154_header_create+0xb1d/0xdb0 net/mac802154/iface.c:401
 wpan_dev_hard_header include/net/cfg802154.h:385 [inline]
 dgram_sendmsg+0xaf3/0x1460 net/ieee802154/socket.c:669
 ieee802154_sock_sendmsg+0x8d/0xc0 net/ieee802154/socket.c:96
 sock_sendmsg_nosec net/socket.c:714 [inline]
 sock_sendmsg net/socket.c:734 [inline]
 ____sys_sendmsg+0xabc/0xe90 net/socket.c:2482
 ___sys_sendmsg+0x2a1/0x3f0 net/socket.c:2536
 __sys_sendmsg+0x258/0x440 net/socket.c:2565
 __compat_sys_sendmsg net/compat.c:343 [inline]
 __do_compat_sys_sendmsg net/compat.c:350 [inline]
 __se_compat_sys_sendmsg net/compat.c:347 [inline]
 __ia32_compat_sys_sendmsg+0x99/0xe0 net/compat.c:347
 do_syscall_32_irqs_on arch/x86/entry/common.c:112 [inline]
 __do_fast_syscall_32+0xa2/0x100 arch/x86/entry/common.c:178
 do_fast_syscall_32+0x33/0x70 arch/x86/entry/common.c:203
 do_SYSENTER_32+0x1b/0x20 arch/x86/entry/common.c:246
 entry_SYSENTER_compat_after_hwframe+0x70/0x82

Uninit was stored to memory at:
 ieee802154_addr_from_sa include/net/ieee802154_netdev.h:172 [inline]
 dgram_sendmsg+0x1286/0x1460 net/ieee802154/socket.c:659
 ieee802154_sock_sendmsg+0x8d/0xc0 net/ieee802154/socket.c:96
 sock_sendmsg_nosec net/socket.c:714 [inline]
 sock_sendmsg net/socket.c:734 [inline]
 ____sys_sendmsg+0xabc/0xe90 net/socket.c:2482
 ___sys_sendmsg+0x2a1/0x3f0 net/socket.c:2536
 __sys_sendmsg+0x258/0x440 net/socket.c:2565
 __compat_sys_sendmsg net/compat.c:343 [inline]
 __do_compat_sys_sendmsg net/compat.c:350 [inline]
 __se_compat_sys_sendmsg net/compat.c:347 [inline]
 __ia32_compat_sys_sendmsg+0x99/0xe0 net/compat.c:347
 do_syscall_32_irqs_on arch/x86/entry/common.c:112 [inline]
 __do_fast_syscall_32+0xa2/0x100 arch/x86/entry/common.c:178
 do_fast_syscall_32+0x33/0x70 arch/x86/entry/common.c:203
 do_SYSENTER_32+0x1b/0x20 arch/x86/entry/common.c:246
 entry_SYSENTER_compat_after_hwframe+0x70/0x82

Local variable address created at:
 ___sys_sendmsg+0x69/0x3f0 net/socket.c:2526
 __sys_sendmsg+0x258/0x440 net/socket.c:2565

CPU: 0 PID: 12855 Comm: syz-executor.5 Not tainted 6.0.0-rc5-syzkaller-48539-g523d2ce66d07 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022
=====================================================

Crashes (199):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-kmsan-gce-386 2022/09/27 17:16 https://github.com/google/kmsan.git master 523d2ce66d07 87840e00 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/09/27 03:48 https://github.com/google/kmsan.git master 523d2ce66d07 10323ddf .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/09/25 15:12 https://github.com/google/kmsan.git master 523d2ce66d07 0042f2b4 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/09/22 22:53 https://github.com/google/kmsan.git master 523d2ce66d07 0042f2b4 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/09/22 09:24 https://github.com/google/kmsan.git master 523d2ce66d07 60af5050 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/09/04 04:07 https://github.com/google/kmsan.git master ad8e4e812ba8 28811d0a .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/08/27 16:31 https://github.com/google/kmsan.git master ac3859c02d7f 07177916 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/08/10 07:10 https://github.com/google/kmsan.git master 1b070a5d1a2c c2a623d6 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/08/03 16:00 https://github.com/google/kmsan.git master 82224c6104a8 1c9013ac .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/07/23 01:59 https://github.com/google/kmsan.git master 97117d69c353 22343af4 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/07/22 21:27 https://github.com/google/kmsan.git master 97117d69c353 22343af4 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/07/17 17:09 https://github.com/google/kmsan.git master 97117d69c353 95cb00d1 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/07/15 03:52 https://github.com/google/kmsan.git master 97117d69c353 5d921b08 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/07/09 11:55 https://github.com/google/kmsan.git master 97117d69c353 b5765a15 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/07/07 15:54 https://github.com/google/kmsan.git master 97117d69c353 bff65f44 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/07/04 00:55 https://github.com/google/kmsan.git master ec1cbf8b060e 1434eec0 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/07/03 22:52 https://github.com/google/kmsan.git master ec1cbf8b060e 1434eec0 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/07/03 04:19 https://github.com/google/kmsan.git master ec1cbf8b060e 1434eec0 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/06/24 14:26 https://github.com/google/kmsan.git master 4b28366af7d9 a5dbd430 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/05/12 21:08 https://github.com/google/kmsan.git master d6e2c8c7eb40 9ad6612a .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/05/12 19:52 https://github.com/google/kmsan.git master d6e2c8c7eb40 9ad6612a .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/04/05 10:57 https://github.com/google/kmsan.git master 33d9269ef6e0 5915c2cb .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/04/04 00:28 https://github.com/google/kmsan.git master 1978a14f70af 79a2a8fc .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/02/05 02:26 https://github.com/google/kmsan.git master 85cfd6e539bd e13a05ed .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/02/02 09:25 https://github.com/google/kmsan.git master 85cfd6e539bd 4ebb2798 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/02/01 18:48 https://github.com/google/kmsan.git master 85cfd6e539bd c1c1631d .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/01/30 04:49 https://github.com/google/kmsan.git master 85cfd6e539bd 495e00c5 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/01/30 04:38 https://github.com/google/kmsan.git master 85cfd6e539bd 495e00c5 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/01/29 03:39 https://github.com/google/kmsan.git master 85cfd6e539bd 495e00c5 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/01/26 03:50 https://github.com/google/kmsan.git master 85cfd6e539bd 2cbffd88 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/01/24 14:50 https://github.com/google/kmsan.git master 85cfd6e539bd 214351e1 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/01/24 09:37 https://github.com/google/kmsan.git master 85cfd6e539bd 214351e1 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/01/10 07:11 https://github.com/google/kmsan.git master 81c325bbf94e 2ca0d385 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/01/10 05:58 https://github.com/google/kmsan.git master 81c325bbf94e 2ca0d385 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/01/09 17:55 https://github.com/google/kmsan.git master 81c325bbf94e 2ca0d385 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2022/01/02 23:35 https://github.com/google/kmsan.git master 81c325bbf94e e1768e9c .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2021/12/31 14:51 https://github.com/google/kmsan.git master 81c325bbf94e 36bd2e48 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2021/12/31 07:30 https://github.com/google/kmsan.git master 81c325bbf94e 36bd2e48 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2021/12/27 01:02 https://github.com/google/kmsan.git master 81c325bbf94e e4f103c4 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2021/12/26 05:47 https://github.com/google/kmsan.git master 81c325bbf94e 6caa12e4 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2021/12/17 18:03 https://github.com/google/kmsan.git master b0a8b5053e8b 44068e19 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2021/12/08 23:18 https://github.com/google/kmsan.git master 8b936c96768e a4a2a501 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2021/12/03 22:33 https://github.com/google/kmsan.git master 093998ececa3 c7c20675 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2021/11/01 04:54 https://github.com/google/kmsan.git master 59bd88c25ffc 098b5d53 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2021/11/01 01:26 https://github.com/google/kmsan.git master 59bd88c25ffc 098b5d53 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2021/10/31 16:58 https://github.com/google/kmsan.git master 59bd88c25ffc 098b5d53 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2021/10/31 15:43 https://github.com/google/kmsan.git master 59bd88c25ffc 098b5d53 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2021/10/30 17:00 https://github.com/google/kmsan.git master 59bd88c25ffc 098b5d53 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2021/10/30 15:38 https://github.com/google/kmsan.git master 59bd88c25ffc 098b5d53 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2021/10/30 14:08 https://github.com/google/kmsan.git master 59bd88c25ffc 098b5d53 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2021/10/28 15:19 https://github.com/google/kmsan.git master 8f7db06d805f be531bb4 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2021/10/28 14:16 https://github.com/google/kmsan.git master 8f7db06d805f be531bb4 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2021/10/27 08:35 https://github.com/google/kmsan.git master 8f7db06d805f d50eb50a .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2021/10/26 10:45 https://github.com/google/kmsan.git master 0f36cda66082 c1132b49 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2021/02/28 22:39 https://github.com/google/kmsan.git master 29ad81a1074a 4c37c133 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
ci-upstream-kmsan-gce-386 2021/02/26 08:33 https://github.com/google/kmsan.git master 29ad81a1074a 76f7fc95 .config log report info KMSAN: uninit-value in ieee802154_hdr_push
* Struck through repros no longer work on HEAD.