syzbot

 sign-in | mailing list | source | docs
🐞 Open [1646]
Subsystems
🐞 Fixed [6009]
🐞 Invalid [14804]
Missing Backports [135]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KMSAN: uninit-value in __hw_addr_add_ex

Status: auto-obsoleted due to no activity on 2023/11/07 04:36
Subsystems: net
[Documentation on labels]
Reported-by: syzbot+cec7816c907e0923fdcc@syzkaller.appspotmail.com
First crash: 1120d, last: 518d
Discussions (6)
Title Replies (including bot) Last reply
[syzbot] Monthly net report (Jul 2023) 0 (1) 2023/08/01 12:53
[syzbot] Monthly net report (Jun 2023) 0 (1) 2023/06/29 12:38
[syzbot] Monthly net report (May 2023) 0 (1) 2023/05/30 10:56
[syzbot] Monthly net report (Apr 2023) 0 (1) 2023/04/27 10:45
[syzbot] Monthly net report 0 (1) 2023/03/27 11:04
[syzbot] KMSAN: uninit-value in __hw_addr_add_ex 0 (1) 2022/11/18 12:01
Similar bugs (2)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KASAN: global-out-of-bounds Read in __hw_addr_add_ex (2) net C 278 1d15h 62d 0/28 upstream: reported C repro on 2024/11/27 21:55
upstream KASAN: global-out-of-bounds Read in __hw_addr_add_ex net 193 180d 239d 0/28 auto-obsoleted due to no activity on 2024/10/10 19:31

Sample crash report:
IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
=====================================================
BUG: KMSAN: uninit-value in memcmp+0x23e/0x290 lib/string.c:789
 memcmp+0x23e/0x290 lib/string.c:789
 __hw_addr_add_ex+0x2f9/0x1020 net/core/dev_addr_lists.c:62
 __hw_addr_sync_one net/core/dev_addr_lists.c:210 [inline]
 __hw_addr_sync_multiple+0x35f/0xa40 net/core/dev_addr_lists.c:250
 dev_mc_sync_multiple+0x195/0x2b0 net/core/dev_addr_lists.c:959
 team_set_rx_mode+0x143/0x230 drivers/net/team/team.c:1780
 __dev_set_rx_mode+0x3b0/0x440 net/core/dev.c:8717
 __dev_mc_add net/core/dev_addr_lists.c:836 [inline]
 dev_mc_add+0x180/0x1d0 net/core/dev_addr_lists.c:850
 igmp6_group_added+0x320/0x830 net/ipv6/mcast.c:680
 __ipv6_dev_mc_inc+0x11e9/0x1620 net/ipv6/mcast.c:949
 ipv6_dev_mc_inc+0x70/0x80 net/ipv6/mcast.c:957
 addrconf_join_solict net/ipv6/addrconf.c:2179 [inline]
 addrconf_dad_begin net/ipv6/addrconf.c:3958 [inline]
 addrconf_dad_work+0x736/0x2210 net/ipv6/addrconf.c:4085
 process_one_work+0xdb9/0x1820 kernel/workqueue.c:2298
 worker_thread+0x10bc/0x21f0 kernel/workqueue.c:2445
 kthread+0x721/0x850 kernel/kthread.c:327
 ret_from_fork+0x1f/0x30

Uninit was stored to memory at:
 __hw_addr_create net/core/dev_addr_lists.c:32 [inline]
 __hw_addr_add_ex+0x718/0x1020 net/core/dev_addr_lists.c:93
 __dev_mc_add net/core/dev_addr_lists.c:832 [inline]
 dev_mc_add+0x10a/0x1d0 net/core/dev_addr_lists.c:850
 igmp6_group_added+0x320/0x830 net/ipv6/mcast.c:680
 __ipv6_dev_mc_inc+0x11e9/0x1620 net/ipv6/mcast.c:949
 ipv6_dev_mc_inc+0x70/0x80 net/ipv6/mcast.c:957
 addrconf_join_solict net/ipv6/addrconf.c:2179 [inline]
 addrconf_dad_begin net/ipv6/addrconf.c:3958 [inline]
 addrconf_dad_work+0x736/0x2210 net/ipv6/addrconf.c:4085
 process_one_work+0xdb9/0x1820 kernel/workqueue.c:2298
 worker_thread+0x10bc/0x21f0 kernel/workqueue.c:2445
 kthread+0x721/0x850 kernel/kthread.c:327
 ret_from_fork+0x1f/0x30

Local variable buf created at:
 igmp6_group_added+0x9b/0x830 net/ipv6/mcast.c:671
 __ipv6_dev_mc_inc+0x11e9/0x1620 net/ipv6/mcast.c:949

CPU: 1 PID: 25 Comm: kworker/1:1 Not tainted 5.16.0-rc5-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: ipv6_addrconf addrconf_dad_work
=====================================================

Crashes (580):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2022/01/04 23:22 https://github.com/google/kmsan.git master 81c325bbf94e 0a2584dd .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in __hw_addr_add_ex
2023/08/29 04:03 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ef21fa7c198e 7ba13a15 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/28 23:01 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ef21fa7c198e 7ba13a15 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/28 06:47 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ef21fa7c198e 7ba13a15 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/28 05:22 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ef21fa7c198e 7ba13a15 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/28 03:10 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ef21fa7c198e 7ba13a15 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/27 16:20 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ef21fa7c198e 7ba13a15 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/27 05:02 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ef21fa7c198e 7ba13a15 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/26 23:19 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ef21fa7c198e 7ba13a15 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/21 18:43 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ca09f772ccca 6b415825 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/21 09:08 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ca09f772ccca d216d8a0 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/21 06:49 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ca09f772ccca d216d8a0 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/21 05:21 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ca09f772ccca d216d8a0 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/21 04:03 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ca09f772ccca d216d8a0 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/21 02:32 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ca09f772ccca d216d8a0 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/21 01:23 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ca09f772ccca d216d8a0 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/20 21:26 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ca09f772ccca d216d8a0 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/20 20:04 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ca09f772ccca d216d8a0 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/20 06:08 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ca09f772ccca d216d8a0 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/18 00:52 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ca09f772ccca 74b106b6 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/16 00:24 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 7e3811521dc3 39990d51 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/15 09:15 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 7e3811521dc3 39990d51 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/14 16:48 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 7e3811521dc3 39990d51 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/14 06:07 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 7e3811521dc3 39990d51 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/13 11:00 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 7e3811521dc3 39990d51 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/13 07:32 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 7e3811521dc3 39990d51 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/07 09:25 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 9d3e8e1ff0d8 4ffcc9ef .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/07 01:45 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 9d3e8e1ff0d8 4ffcc9ef .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/06 18:46 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 9d3e8e1ff0d8 4ffcc9ef .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/06 07:48 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 9d3e8e1ff0d8 4ffcc9ef .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/06 04:40 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 9d3e8e1ff0d8 4ffcc9ef .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/06 00:59 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 9d3e8e1ff0d8 4ffcc9ef .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/05 20:17 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 9d3e8e1ff0d8 4ffcc9ef .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/05 17:35 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes 9d3e8e1ff0d8 4ffcc9ef .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/02 23:49 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ab2dbc7acced b178af49 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/02 04:34 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ab2dbc7acced df07ffe8 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/01 13:51 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ab2dbc7acced 2a0d0f29 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/01 12:33 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ab2dbc7acced 2a0d0f29 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/08/01 02:10 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ab2dbc7acced 2a0d0f29 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/07/31 19:34 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ab2dbc7acced 2a0d0f29 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/07/30 21:26 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ab2dbc7acced 2a0d0f29 .config console log report info ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/07/30 08:44 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ab2dbc7acced 92476829 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/07/29 13:25 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ab2dbc7acced 92476829 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/07/29 05:12 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ab2dbc7acced 92476829 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/07/29 03:16 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ab2dbc7acced 92476829 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/07/28 22:39 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ab2dbc7acced 92476829 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/07/28 21:30 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ab2dbc7acced 92476829 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/07/28 10:44 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ab2dbc7acced 92476829 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/07/23 21:41 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ab2dbc7acced 27cbe77f .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/07/23 18:33 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ab2dbc7acced 27cbe77f .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/07/22 21:46 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ab2dbc7acced 27cbe77f .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/07/17 03:49 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ab2dbc7acced 35d9ecc5 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/07/17 02:24 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ab2dbc7acced 35d9ecc5 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/07/16 03:00 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ab2dbc7acced 35d9ecc5 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
2023/07/15 15:55 git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux.git fixes ab2dbc7acced 35d9ecc5 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-riscv64 KASAN: global-out-of-bounds Read in __hw_addr_add_ex
* Struck through repros no longer work on HEAD.