syzbot

 sign-in | mailing list | source | docs
🐞 Open [976] Subsystems 🐞 Fixed [5235] 🐞 Invalid [12491] Missing Backports [83] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

KMSAN: uninit-value in sch_direct_xmit

Status: auto-closed as invalid on 2022/02/25 22:12
Subsystems: net
[Documentation on labels]
First crash: 877d, last: 877d

Sample crash report:
=====================================================
BUG: KMSAN: uninit-value in sch_direct_xmit+0x377/0x1410 net/sched/sch_generic.c:322
 sch_direct_xmit+0x377/0x1410 net/sched/sch_generic.c:322
 __dev_xmit_skb+0x1c42/0x2cd0 net/core/dev.c:3809
 __dev_queue_xmit+0x1469/0x2c80 net/core/dev.c:4177
 dev_queue_xmit+0x4b/0x60 net/core/dev.c:4242
 neigh_hh_output include/net/neighbour.h:499 [inline]
 neigh_output include/net/neighbour.h:508 [inline]
 ip6_finish_output2+0x246d/0x2c60 net/ipv6/ip6_output.c:126
 __ip6_finish_output+0xf46/0x10a0 net/ipv6/ip6_output.c:191
 ip6_finish_output+0x15c/0x4d0 net/ipv6/ip6_output.c:201
 NF_HOOK_COND include/linux/netfilter.h:296 [inline]
 ip6_output+0x4ac/0x7f0 net/ipv6/ip6_output.c:224
 dst_output include/net/dst.h:450 [inline]
 NF_HOOK include/linux/netfilter.h:307 [inline]
 ndisc_send_skb+0xe34/0x1730 net/ipv6/ndisc.c:508
 ndisc_send_ns+0xf7e/0xfc0 net/ipv6/ndisc.c:650
 ndisc_solicit+0x5a7/0x670
 neigh_probe net/core/neighbour.c:1011 [inline]
 neigh_timer_handler+0x1639/0x20c0 net/core/neighbour.c:1093
 call_timer_fn+0x84/0x470 kernel/time/timer.c:1421
 expire_timers+0x2fd/0x650 kernel/time/timer.c:1466
 __run_timers+0x6a4/0xa30 kernel/time/timer.c:1734
 run_timer_softirq+0x2d/0x50 kernel/time/timer.c:1747
 __do_softirq+0x1c9/0x6ec kernel/softirq.c:558
 invoke_softirq kernel/softirq.c:432 [inline]
 __irq_exit_rcu kernel/softirq.c:636 [inline]
 irq_exit_rcu+0xd9/0x1d0 kernel/softirq.c:648
 sysvec_apic_timer_interrupt+0x7e/0x90 arch/x86/kernel/apic/apic.c:1097
 asm_sysvec_apic_timer_interrupt+0x12/0x20
 kmsan_get_shadow_origin_ptr+0x8/0xd0 mm/kmsan/shadow.c:141
 get_shadow_origin_ptr mm/kmsan/instrumentation.c:30 [inline]
 __msan_metadata_ptr_for_load_8+0x20/0x30 mm/kmsan/instrumentation.c:66
 batadv_nc_worker+0x13e/0x2590 net/batman-adv/network-coding.c:723
 process_one_work+0xdc7/0x1760 kernel/workqueue.c:2297
 worker_thread+0x1101/0x22b0 kernel/workqueue.c:2444
 kthread+0x66b/0x780 kernel/kthread.c:319
 ret_from_fork+0x1f/0x30

Local variable regs created at:
 __bpf_prog_run32+0x84/0x180 kernel/bpf/core.c:1787
 bpf_dispatcher_nop_func include/linux/bpf.h:718 [inline]
 __bpf_prog_run include/linux/filter.h:624 [inline]
 bpf_prog_run include/linux/filter.h:631 [inline]
 __bpf_trace_run kernel/trace/bpf_trace.c:1871 [inline]
 bpf_trace_run2+0x123/0x370 kernel/trace/bpf_trace.c:1908
=====================================================

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2021/11/27 22:07 https://github.com/google/kmsan.git master a535b0caaa2f 63eeac02 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in sch_direct_xmit
* Struck through repros no longer work on HEAD.