syzbot

 sign-in | mailing list | source | docs
🐞 Open [1595]
Subsystems
🐞 Fixed [6224]
🐞 Invalid [15741]
Missing Backports [182]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KMSAN: uninit-value in __register_sysctl_table

Status: closed as invalid on 2018/06/27 15:08
Subsystems: fs
[Documentation on labels]
First crash: 2563d, last: 2563d

Sample crash report:
RDX: 0000000000000001 RSI: 0000000000000117 RDI: 0000000000000003
RBP: 000000000072bea0 R08: 000000000000014c R09: 0000000000000000
R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000004
R13: 000000000000055e R14: 00000000006fc170 R15: 0000000000000007
==================================================================
BUG: KMSAN: uninit-value in init_header fs/proc/proc_sysctl.c:198 [inline]
BUG: KMSAN: uninit-value in __register_sysctl_table+0x4ed/0x29f0 fs/proc/proc_sysctl.c:1304
CPU: 1 PID: 4568 Comm: syz-executor4 Not tainted 4.16.0+ #87
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:17 [inline]
 dump_stack+0x185/0x1d0 lib/dump_stack.c:53
 kmsan_report+0x142/0x240 mm/kmsan/kmsan.c:1067
 __msan_warning_32+0x6c/0xb0 mm/kmsan/kmsan_instr.c:683
 init_header fs/proc/proc_sysctl.c:198 [inline]
 __register_sysctl_table+0x4ed/0x29f0 fs/proc/proc_sysctl.c:1304
FAULT_INJECTION: forcing a failure.
name failslab, interval 1, probability 0, space 0, times 0
 register_net_sysctl+0x9f/0xb0 net/sysctl_net.c:120
 sysctl_core_net_init+0x1f6/0x3d0 net/core/sysctl_net_core.c:549
 ops_init+0x60f/0x7b0 net/core/net_namespace.c:118
 setup_net+0x213/0xcf0 net/core/net_namespace.c:302
 copy_net_ns+0x572/0xc40 net/core/net_namespace.c:426
 create_new_namespaces+0x7f5/0xe80 kernel/nsproxy.c:107
 unshare_nsproxy_namespaces+0x23b/0x320 kernel/nsproxy.c:206
 SYSC_unshare+0x88c/0x10f0 kernel/fork.c:2408
 SyS_unshare+0x36/0x50 kernel/fork.c:2358
 do_syscall_64+0x309/0x430 arch/x86/entry/common.c:287
 entry_SYSCALL_64_after_hwframe+0x3d/0xa2
RIP: 0033:0x458427
RSP: 002b:00007ffe1bf7c6c8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000458427
RDX: 0000000000000000 RSI: 00007ffe1bf7c6a0 RDI: 0000000040000000
RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000001a
R10: 0000000000000000 R11: 0000000000000206 R12: 00000000004117f0
R13: 0000000000411880 R14: 0000000000000000 R15: 0000000000000000

CPU: 0 PID: 4599 Comm: syz-executor3 Not tainted 4.16.0+ #87
Uninit was created at:
 kmsan_save_stack_with_flags mm/kmsan/kmsan.c:278 [inline]
 kmsan_alloc_meta_for_pages+0x161/0x3a0 mm/kmsan/kmsan.c:814
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 kmsan_alloc_page+0x82/0xe0 mm/kmsan/kmsan.c:868
 __alloc_pages_nodemask+0xf5b/0x5dc0 mm/page_alloc.c:4283
Call Trace:
 alloc_pages_current+0x6b5/0x970 mm/mempolicy.c:2055
 alloc_pages include/linux/gfp.h:494 [inline]
 alloc_slab_page mm/slub.c:1453 [inline]
 allocate_slab mm/slub.c:1596 [inline]
 new_slab+0x366/0x1bb0 mm/slub.c:1667
 __dump_stack lib/dump_stack.c:17 [inline]
 dump_stack+0x185/0x1d0 lib/dump_stack.c:53
 new_slab_objects mm/slub.c:2448 [inline]
 ___slab_alloc+0x1512/0x1f60 mm/slub.c:2600
 __slab_alloc mm/slub.c:2640 [inline]
 slab_alloc_node mm/slub.c:2703 [inline]
 __kmalloc_node+0x90b/0x1190 mm/slub.c:3832
 fail_dump lib/fault-inject.c:51 [inline]
 should_fail+0x87b/0xab0 lib/fault-inject.c:149
 kmalloc_node include/linux/slab.h:554 [inline]
 kvmalloc_node+0x1a1/0x2e0 mm/util.c:419
 kvmalloc include/linux/mm.h:541 [inline]
 kvzalloc include/linux/mm.h:549 [inline]
 allocate_hook_entries_size net/netfilter/core.c:60 [inline]
 nf_hook_entries_grow net/netfilter/core.c:127 [inline]
 __nf_register_net_hook+0xa41/0x1a30 net/netfilter/core.c:319
 should_failslab+0x279/0x2a0 mm/failslab.c:32
 nf_register_net_hook net/netfilter/core.c:435 [inline]
 nf_register_net_hooks+0x215/0x540 net/netfilter/core.c:451
 ipt_register_table+0x496/0x830 net/ipv4/netfilter/ip_tables.c:1793
 slab_pre_alloc_hook mm/slab.h:422 [inline]
 slab_alloc_node mm/slub.c:2663 [inline]
 slab_alloc mm/slub.c:2745 [inline]
 __kmalloc+0xc2/0x350 mm/slub.c:3785
 iptable_filter_table_init+0x1d9/0x270 net/ipv4/netfilter/iptable_filter.c:65
 xt_find_table_lock+0x590/0x8e0 net/netfilter/x_tables.c:1087
 xt_request_find_table_lock+0xa6/0x290 net/netfilter/x_tables.c:1117
 get_info+0x2af/0x830 net/ipv6/netfilter/ip6_tables.c:993
 do_ipt_get_ctl+0x1e2/0x1110 net/ipv4/netfilter/ip_tables.c:1704
 nf_sockopt net/netfilter/nf_sockopt.c:104 [inline]
 nf_getsockopt+0x47b/0x4e0 net/netfilter/nf_sockopt.c:122
 kmalloc include/linux/slab.h:517 [inline]
 drbg_alloc_state crypto/drbg.c:1187 [inline]
 drbg_instantiate crypto/drbg.c:1481 [inline]
 drbg_kcapi_seed+0xedd/0x2270 crypto/drbg.c:1880
 ip_getsockopt+0x284/0x3c0 net/ipv4/ip_sockglue.c:1572
 tcp_getsockopt+0x1c1/0x1f0 net/ipv4/tcp.c:3359
 sock_common_getsockopt+0x13a/0x170 net/core/sock.c:2934
 SYSC_getsockopt+0x49b/0x570 net/socket.c:1880
 crypto_rng_reset+0x262/0x310 crypto/rng.c:52
 SyS_getsockopt+0x76/0xa0 net/socket.c:1862
 do_syscall_64+0x309/0x430 arch/x86/entry/common.c:287
 rng_setkey+0x8b/0xa0 crypto/algif_rng.c:167
 entry_SYSCALL_64_after_hwframe+0x3d/0xa2
==================================================================

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2018/05/05 14:12 https://github.com/google/kmsan.git master d2d741e5d189 6a0382b5 .config console log report syz ci-upstream-kmsan-gce
* Struck through repros no longer work on HEAD.