syzbot

 sign-in | mailing list | source | docs
🐞 Open [1163] 🐞 Fixed [4320] 🐞 Invalid [9664] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes

KMSAN: uninit-value in ptr_to_id

Status: auto-closed as invalid on 2022/09/27 03:12
Reported-by: syzbot+@syzkaller.appspotmail.com
First crash: 411d, last: 390d
similar bugs (8):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KMSAN: uninit-value in snd_pcm_hw_rule_add (2) 18 233d 500d 0/24 auto-closed as invalid on 2022/09/15 02:38
upstream KMSAN: uninit-value in seq_printf (2) C 99 234d 501d 0/24 auto-closed as invalid on 2022/09/30 02:43
upstream KMSAN: uninit-value in nsim_udp_tunnel_unset_port C 114 366d 445d 0/24 auto-closed as invalid on 2022/09/27 06:37
upstream KMSAN: uninit-value in number (4) C 7189 74d 452d 0/24 closed as invalid on 2022/11/28 10:01
upstream KMSAN: uninit-value in p9pdu_vwritef 544 164d 394d 0/24 auto-obsoleted due to no activity on 2022/11/22 23:51
upstream KMSAN: uninit-value in __vmalloc_node_range 5 383d 428d 0/24 auto-closed as invalid on 2022/04/17 19:38
upstream KMSAN: kernel-infoleak in _copy_to_iter (6) C 748 333d 423d 22/24 fixed on 2022/03/08 16:11
upstream KMSAN: uninit-value in esp6_init_state 2 384d 433d 0/24 auto-closed as invalid on 2022/04/16 22:31
Last patch testing requests:
Created Duration User Patch Repo Result
2022/09/27 01:30 22m retest repro https://github.com/google/kmsan.git master OK log

Sample crash report:
=====================================================
BUG: KMSAN: uninit-value in ptr_to_id+0x3bc/0x1170 lib/vsprintf.c:832
 ptr_to_id+0x3bc/0x1170 lib/vsprintf.c:832
 restricted_pointer+0x653/0xca0 lib/vsprintf.c:860
 pointer+0x99d/0x2060 lib/vsprintf.c:2437
 vsnprintf+0x1a9b/0x3650 lib/vsprintf.c:2809
 seq_vprintf fs/seq_file.c:391 [inline]
 seq_printf+0x314/0x4f0 fs/seq_file.c:406
 udp4_format_sock net/ipv4/udp.c:3062 [inline]
 udp4_seq_show+0x78b/0x910 net/ipv4/udp.c:3084
 seq_read_iter+0xaac/0x2150 fs/seq_file.c:230
 seq_read+0x7a6/0x990 fs/seq_file.c:162
 pde_read fs/proc/inode.c:311 [inline]
 proc_reg_read+0x39d/0x560 fs/proc/inode.c:323
 do_iter_read+0xeb9/0x14c0 fs/read_write.c:788
 vfs_readv fs/read_write.c:906 [inline]
 do_preadv+0x45e/0x6c0 fs/read_write.c:998
 __do_sys_preadv fs/read_write.c:1048 [inline]
 __se_sys_preadv fs/read_write.c:1043 [inline]
 __x64_sys_preadv+0x120/0x170 fs/read_write.c:1043
 do_syscall_x64 arch/x86/entry/common.c:51 [inline]
 do_syscall_64+0x54/0xd0 arch/x86/entry/common.c:82
 entry_SYSCALL_64_after_hwframe+0x44/0xae

Local variable sample.i created at:
 perf_log_itrace_start kernel/events/core.c:9069 [inline]
 event_sched_in+0x132b/0x35c0 kernel/events/core.c:2557
 group_sched_in kernel/events/core.c:2595 [inline]
 merge_sched_in kernel/events/core.c:3746 [inline]
 visit_groups_merge+0x2919/0x7460 kernel/events/core.c:3696

CPU: 1 PID: 4118 Comm: syz-executor983 Not tainted 5.16.0-rc5-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
=====================================================

Crashes (5):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets Title
ci-upstream-kmsan-gce 2022/01/02 08:23 https://github.com/google/kmsan.git master 81c325bbf94e e1768e9c .config console log report syz C KMSAN: uninit-value in ptr_to_id
ci-upstream-kmsan-gce 2022/01/10 22:19 https://github.com/google/kmsan.git master 81c325bbf94e ddb0ab8c .config console log report info KMSAN: uninit-value in ptr_to_id
ci-upstream-kmsan-gce 2022/01/02 07:14 https://github.com/google/kmsan.git master 81c325bbf94e e1768e9c .config console log report info KMSAN: uninit-value in ptr_to_id
ci-upstream-kmsan-gce 2022/01/02 07:14 https://github.com/google/kmsan.git master 81c325bbf94e e1768e9c .config console log report info KMSAN: uninit-value in ptr_to_id
ci-upstream-kmsan-gce 2021/12/21 01:31 https://github.com/google/kmsan.git master 81c325bbf94e 62bd192b .config console log report info KMSAN: uninit-value in ptr_to_id
* Struck through repros no longer work on HEAD.