syzbot

 sign-in | mailing list | source | docs
🐞 Open [1645]
Subsystems
🐞 Fixed [6009]
🐞 Invalid [14804]
Missing Backports [135]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KMSAN: uninit-value in batadv_tt_hash_find (2)

Status: auto-closed as invalid on 2022/04/07 21:37
Subsystems: batman
[Documentation on labels]
First crash: 1117d, last: 1117d
Similar bugs (2)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KMSAN: uninit-value in batadv_tt_hash_find batman 11 1602d 1659d 15/28 fixed on 2020/09/25 01:17
upstream KMSAN: uninit-value in profile_hits (3) kernel C 1529 184d 399d 27/28 fixed on 2024/08/23 02:59

Sample crash report:
=====================================================
BUG: KMSAN: uninit-value in batadv_tt_hash_find+0x4aa/0x9d0 net/batman-adv/translation-table.c:143
 batadv_tt_hash_find+0x4aa/0x9d0 net/batman-adv/translation-table.c:143
 batadv_tt_local_hash_find net/batman-adv/translation-table.c:177 [inline]
 batadv_tt_local_add+0x2fa/0x4e60 net/batman-adv/translation-table.c:659
 batadv_mcast_mla_tt_add net/batman-adv/multicast.c:696 [inline]
 __batadv_mcast_mla_update net/batman-adv/multicast.c:888 [inline]
 batadv_mcast_mla_update+0x4158/0x5780 net/batman-adv/multicast.c:915
 process_one_work+0xdb9/0x1820 kernel/workqueue.c:2298
 worker_thread+0x10bc/0x21f0 kernel/workqueue.c:2445
 kthread+0x721/0x850 kernel/kthread.c:327
 ret_from_fork+0x1f/0x30

Uninit was stored to memory at:
 ether_addr_copy include/linux/etherdevice.h:299 [inline]
 batadv_mcast_mla_softif_get_ipv6 net/batman-adv/multicast.c:452 [inline]
 batadv_mcast_mla_softif_get net/batman-adv/multicast.c:504 [inline]
 __batadv_mcast_mla_update net/batman-adv/multicast.c:878 [inline]
 batadv_mcast_mla_update+0x231e/0x5780 net/batman-adv/multicast.c:915
 process_one_work+0xdb9/0x1820 kernel/workqueue.c:2298
 worker_thread+0x10bc/0x21f0 kernel/workqueue.c:2445
 kthread+0x721/0x850 kernel/kthread.c:327
 ret_from_fork+0x1f/0x30

Local variable mcast_addr.i.i.i created at:
 batadv_mcast_mla_softif_get_ipv6 net/batman-adv/multicast.c:410 [inline]
 batadv_mcast_mla_softif_get net/batman-adv/multicast.c:504 [inline]
 __batadv_mcast_mla_update net/batman-adv/multicast.c:878 [inline]
 batadv_mcast_mla_update+0x1997/0x5780 net/batman-adv/multicast.c:915
 process_one_work+0xdb9/0x1820 kernel/workqueue.c:2298

CPU: 1 PID: 6314 Comm: kworker/u4:44 Not tainted 5.16.0-rc5-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: bat_events batadv_mcast_mla_update
=====================================================

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2022/01/07 21:34 https://github.com/google/kmsan.git master 81c325bbf94e 2ca0d385 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in batadv_tt_hash_find
* Struck through repros no longer work on HEAD.