syzbot

 sign-in | mailing list | source | docs
🐞 Open [1646]
Subsystems
🐞 Fixed [6009]
🐞 Invalid [14804]
Missing Backports [135]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KMSAN: uninit-value in __list_add_valid

Status: closed as invalid on 2018/09/20 14:03
Subsystems: kernel
[Documentation on labels]
First crash: 2489d, last: 2337d

Sample crash report:
==================================================================
BUG: KMSAN: uninit-value in __list_add_valid+0x1b8/0x450 lib/list_debug.c:23
CPU: 0 PID: 5154 Comm: syz-executor442 Not tainted 4.17.0+ #9
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 <IRQ>
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x185/0x1d0 lib/dump_stack.c:113
 kmsan_report+0x188/0x2a0 mm/kmsan/kmsan.c:1125
 __msan_warning_32+0x70/0xc0 mm/kmsan/kmsan_instr.c:620
 __list_add_valid+0x1b8/0x450 lib/list_debug.c:23
 __list_add include/linux/list.h:60 [inline]
 list_add include/linux/list.h:79 [inline]
 account_entity_enqueue kernel/sched/fair.c:2652 [inline]
 enqueue_entity kernel/sched/fair.c:4176 [inline]
 enqueue_task_fair+0xe12/0x4490 kernel/sched/fair.c:5359
 enqueue_task kernel/sched/core.c:751 [inline]
 activate_task kernel/sched/core.c:770 [inline]
 ttwu_activate kernel/sched/core.c:1658 [inline]
 ttwu_do_activate kernel/sched/core.c:1717 [inline]
 ttwu_queue kernel/sched/core.c:1862 [inline]
 try_to_wake_up+0x162f/0x2260 kernel/sched/core.c:2075
 wake_up_process+0x34/0x40 kernel/sched/core.c:2148
 hrtimer_wakeup+0xac/0x100 kernel/time/hrtimer.c:1647
 __run_hrtimer kernel/time/hrtimer.c:1398 [inline]
 __hrtimer_run_queues+0xc54/0x1630 kernel/time/hrtimer.c:1460
 hrtimer_interrupt+0x451/0x13c0 kernel/time/hrtimer.c:1518
 local_apic_timer_interrupt+0x6b/0x250 arch/x86/kernel/apic/apic.c:1025
 smp_apic_timer_interrupt+0x5a/0x90 arch/x86/kernel/apic/apic.c:1053
 apic_timer_interrupt+0xf/0x20 arch/x86/entry/entry_64.S:866
 </IRQ>
RIP: 0010:native_restore_fl arch/x86/include/asm/irqflags.h:37 [inline]
RIP: 0010:arch_local_irq_restore arch/x86/include/asm/irqflags.h:78 [inline]
RIP: 0010:__msan_get_context_state+0x93/0xf0 mm/kmsan/kmsan_instr.c:644
RSP: 0000:ffff8801bf4bf9f8 EFLAGS: 00000202 ORIG_RAX: ffffffffffffff13
RAX: ffff8801cc8ae098 RBX: ffff8801cc8ae098 RCX: 0000000000000000
RDX: ffffea00098c1d80 RSI: 0000000000000000 RDI: ffff8801bf4bfcc8
RBP: ffff8801bf4bfa20 R08: 0000000000000000 R09: 0000000000000002
R10: 0000000000000000 R11: ffffffff81928dc0 R12: ffffea00098c1d80
R13: ffff8801bf4bfc37 R14: ffff8801cc8ad7c0 R15: 0000000000000202
 alloc_set_pte+0x26/0x1d80 mm/memory.c:3411
 filemap_map_pages+0x12d7/0x1ac0 mm/filemap.c:2677
 do_fault_around mm/memory.c:3595 [inline]
 do_read_fault mm/memory.c:3629 [inline]
 do_fault mm/memory.c:3734 [inline]
 handle_pte_fault mm/memory.c:3965 [inline]
 __handle_mm_fault mm/memory.c:4089 [inline]
 handle_mm_fault+0x2f6b/0x7ed0 mm/memory.c:4126
 __do_page_fault+0xec6/0x1a10 arch/x86/mm/fault.c:1400
 do_page_fault+0xb7/0x250 arch/x86/mm/fault.c:1477
 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1163
RIP: 0033:0x43f0ba
RSP: 002b:00007ffe992ee280 EFLAGS: 00010246
RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000000043f0ba
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
RBP: 00007ffe992ee2a0 R08: 000000000000118e R09: 0000000000c98880
R10: 0000000000c98b50 R11: 0000000000000246 R12: 000000000000118e
R13: 0000000000401c00 R14: 0000000000000000 R15: 0000000000000000

Uninit was stored to memory at:
 kmsan_save_stack_with_flags mm/kmsan/kmsan.c:282 [inline]
 kmsan_save_stack mm/kmsan/kmsan.c:297 [inline]
 kmsan_internal_chain_origin+0x12b/0x210 mm/kmsan/kmsan.c:689
 __msan_chain_origin+0x69/0xc0 mm/kmsan/kmsan_instr.c:464
 __list_add include/linux/list.h:65 [inline]
 list_add include/linux/list.h:79 [inline]
 list_move include/linux/list.h:171 [inline]
 pick_next_task_fair+0x2474/0x2530 kernel/sched/fair.c:6968
 pick_next_task+0x1ba/0x420 kernel/sched/core.c:3368
 __schedule+0x20f/0x770 kernel/sched/core.c:3498
 do_task_dead+0xc8/0xf0 kernel/sched/core.c:3541
 do_exit+0x347e/0x3930 kernel/exit.c:924
 do_group_exit+0x1a0/0x360 kernel/exit.c:970
 __do_sys_exit_group+0x21/0x30 kernel/exit.c:981
 __se_sys_exit_group+0x14/0x20 kernel/exit.c:979
 __x64_sys_exit_group+0x4c/0x50 kernel/exit.c:979
 do_syscall_64+0x15b/0x230 arch/x86/entry/common.c:287
 entry_SYSCALL_64_after_hwframe+0x44/0xa9

Local variable description: ----flags.i.i.i.i@_raw_spin_lock_irqsave
Variable was created at:
 _raw_spin_lock_irqsave+0x45/0xf0 kernel/locking/spinlock.c:150
 do_task_dead+0x40/0xf0 kernel/sched/core.c:3536
==================================================================

Crashes (207):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2018/06/30 04:53 https://github.com/google/kmsan.git master 123906095e30 dba0b50e .config console log report syz C ci-upstream-kmsan-gce
2018/06/20 01:53 https://github.com/google/kmsan.git master 123906095e30 095ef806 .config console log report syz C ci-upstream-kmsan-gce
2018/06/19 07:13 https://github.com/google/kmsan.git master 123906095e30 45c54f75 .config console log report syz C ci-upstream-kmsan-gce
2018/06/14 07:05 https://github.com/google/kmsan.git master 81c310582f0e 27c5f59f .config console log report syz C ci-upstream-kmsan-gce
2018/06/02 01:49 https://github.com/google/kmsan.git master 8fc8ecd1c58a 2f93b54f .config console log report syz C ci-upstream-kmsan-gce
2018/05/17 07:33 https://github.com/google/kmsan.git master 314993d1ef28 a367c1d7 .config console log report syz C ci-upstream-kmsan-gce
2018/04/23 07:25 https://github.com/google/kmsan.git master d2d741e5d189 d23fcf6c .config console log report syz C ci-upstream-kmsan-gce
2018/06/29 10:58 https://github.com/google/kmsan.git master 123906095e30 dba0b50e .config console log report syz ci-upstream-kmsan-gce
2018/06/28 22:43 https://github.com/google/kmsan.git master 123906095e30 dba0b50e .config console log report syz ci-upstream-kmsan-gce
2018/06/28 11:26 https://github.com/google/kmsan.git master 123906095e30 dba0b50e .config console log report syz ci-upstream-kmsan-gce
2018/06/26 14:27 https://github.com/google/kmsan.git master 123906095e30 089f1181 .config console log report syz ci-upstream-kmsan-gce
2018/06/26 08:42 https://github.com/google/kmsan.git master 123906095e30 2064fc5c .config console log report syz ci-upstream-kmsan-gce
2018/06/20 02:11 https://github.com/google/kmsan.git master 123906095e30 095ef806 .config console log report syz ci-upstream-kmsan-gce
2018/06/17 20:12 https://github.com/google/kmsan.git master 88e0e95b30f1 27c5f59f .config console log report syz ci-upstream-kmsan-gce
2018/06/17 05:39 https://github.com/google/kmsan.git master 88e0e95b30f1 27c5f59f .config console log report syz ci-upstream-kmsan-gce
2018/06/16 18:32 https://github.com/google/kmsan.git master 88e0e95b30f1 27c5f59f .config console log report syz ci-upstream-kmsan-gce
2018/06/15 21:51 https://github.com/google/kmsan.git master 88e0e95b30f1 27c5f59f .config console log report syz ci-upstream-kmsan-gce
2018/06/14 16:35 https://github.com/google/kmsan.git master 0064ced63c1b 27c5f59f .config console log report syz ci-upstream-kmsan-gce
2018/06/14 10:01 https://github.com/google/kmsan.git master 81c310582f0e 27c5f59f .config console log report syz ci-upstream-kmsan-gce
2018/06/14 09:31 https://github.com/google/kmsan.git master 81c310582f0e 27c5f59f .config console log report syz ci-upstream-kmsan-gce
2018/06/12 11:53 https://github.com/google/kmsan.git master 5cdf0501ac1b 112eec79 .config console log report syz ci-upstream-kmsan-gce
2018/06/10 22:36 https://github.com/google/kmsan.git master d6c351f832e3 866118af .config console log report syz ci-upstream-kmsan-gce
2018/06/09 16:46 https://github.com/google/kmsan.git master d6c351f832e3 866118af .config console log report syz ci-upstream-kmsan-gce
2018/06/08 17:06 https://github.com/google/kmsan.git master 6456f940990e f7b27b7a .config console log report syz ci-upstream-kmsan-gce
2018/06/08 14:01 https://github.com/google/kmsan.git master 6456f940990e f7b27b7a .config console log report syz ci-upstream-kmsan-gce
2018/06/08 00:34 https://github.com/google/kmsan.git master c6a6aed994b6 645e75f8 .config console log report syz ci-upstream-kmsan-gce
2018/06/06 18:59 https://github.com/google/kmsan.git master b9a5d319699c 41f9540d .config console log report syz ci-upstream-kmsan-gce
2018/06/04 02:01 https://github.com/google/kmsan.git master 8fc8ecd1c58a 2f93b54f .config console log report syz ci-upstream-kmsan-gce
2018/06/03 13:54 https://github.com/google/kmsan.git master 8fc8ecd1c58a 2f93b54f .config console log report syz ci-upstream-kmsan-gce
2018/05/30 14:04 https://github.com/google/kmsan.git master 8fc8ecd1c58a 2f93b54f .config console log report syz ci-upstream-kmsan-gce
2018/05/30 03:26 https://github.com/google/kmsan.git master 1b9cd4eccac9 2f93b54f .config console log report syz ci-upstream-kmsan-gce
2018/05/25 07:05 https://github.com/google/kmsan.git master 1b9cd4eccac9 f48c20b8 .config console log report syz ci-upstream-kmsan-gce
2018/05/22 19:36 https://github.com/google/kmsan.git master 1b9cd4eccac9 f48c20b8 .config console log report syz ci-upstream-kmsan-gce
2018/05/18 12:39 https://github.com/google/kmsan.git master cd34f1881058 c992b767 .config console log report syz ci-upstream-kmsan-gce
2018/04/20 02:08 https://github.com/google/kmsan.git master 48c6a2b0ab1b eae05cb0 .config console log report syz ci-upstream-kmsan-gce
2018/04/16 23:57 https://github.com/google/kmsan.git master 48c6a2b0ab1b b80fd3b5 .config console log report syz ci-upstream-kmsan-gce
2018/04/08 05:13 https://github.com/google/kmsan.git master e2ab7e8abba4 66f22a7f .config console log report syz ci-upstream-kmsan-gce
2018/09/05 04:00 https://github.com/google/kmsan.git master 28f0ca98eadf a4718693 .config console log report ci-upstream-kmsan-gce
2018/08/20 16:12 https://github.com/google/kmsan.git master 0cc51dc9a291 2dc4378f .config console log report ci-upstream-kmsan-gce
2018/08/19 20:59 https://github.com/google/kmsan.git master 0cc51dc9a291 2dc4378f .config console log report ci-upstream-kmsan-gce
2018/07/20 12:14 https://github.com/google/kmsan.git master cf8cd3cd03e2 49f35839 .config console log report ci-upstream-kmsan-gce
2018/07/16 04:02 https://github.com/google/kmsan.git master 80ecacc456c1 92a49505 .config console log report ci-upstream-kmsan-gce
2018/07/06 19:55 https://github.com/google/kmsan.git master a00de5aa4da3 9636bc93 .config console log report ci-upstream-kmsan-gce
2018/07/06 02:04 https://github.com/google/kmsan.git master 86eb85c04833 d3b2a0e2 .config console log report ci-upstream-kmsan-gce
2018/07/05 09:32 https://github.com/google/kmsan.git master c1adbc427188 f525fd72 .config console log report ci-upstream-kmsan-gce
2018/07/04 23:42 https://github.com/google/kmsan.git master accdc89e1dc3 e1b966c6 .config console log report ci-upstream-kmsan-gce
2018/07/04 20:55 https://github.com/google/kmsan.git master accdc89e1dc3 e1b966c6 .config console log report ci-upstream-kmsan-gce
2018/07/04 05:15 https://github.com/google/kmsan.git master 4ca559bbdeaf 317fc8ea .config console log report ci-upstream-kmsan-gce
2018/07/03 14:33 https://github.com/google/kmsan.git master 4ca559bbdeaf 317fc8ea .config console log report ci-upstream-kmsan-gce
2018/07/02 12:45 https://github.com/google/kmsan.git master 123906095e30 dba0b50e .config console log report ci-upstream-kmsan-gce
2018/07/02 11:05 https://github.com/google/kmsan.git master 123906095e30 dba0b50e .config console log report ci-upstream-kmsan-gce
2018/07/02 00:55 https://github.com/google/kmsan.git master 123906095e30 dba0b50e .config console log report ci-upstream-kmsan-gce
2018/07/01 18:44 https://github.com/google/kmsan.git master 123906095e30 dba0b50e .config console log report ci-upstream-kmsan-gce
2018/07/01 14:27 https://github.com/google/kmsan.git master 123906095e30 dba0b50e .config console log report ci-upstream-kmsan-gce
2018/07/01 08:38 https://github.com/google/kmsan.git master 123906095e30 dba0b50e .config console log report ci-upstream-kmsan-gce
2018/06/30 06:00 https://github.com/google/kmsan.git master 123906095e30 dba0b50e .config console log report ci-upstream-kmsan-gce
2018/06/29 20:55 https://github.com/google/kmsan.git master 123906095e30 dba0b50e .config console log report ci-upstream-kmsan-gce
2018/06/28 14:51 https://github.com/google/kmsan.git master 123906095e30 dba0b50e .config console log report ci-upstream-kmsan-gce
2018/06/28 14:36 https://github.com/google/kmsan.git master 123906095e30 dba0b50e .config console log report ci-upstream-kmsan-gce
2018/06/28 06:31 https://github.com/google/kmsan.git master 123906095e30 43e60f7e .config console log report ci-upstream-kmsan-gce
2018/06/27 21:20 https://github.com/google/kmsan.git master 123906095e30 43e60f7e .config console log report ci-upstream-kmsan-gce
2018/06/27 08:38 https://github.com/google/kmsan.git master 123906095e30 43e60f7e .config console log report ci-upstream-kmsan-gce
2018/06/26 19:17 https://github.com/google/kmsan.git master 123906095e30 b0294c53 .config console log report ci-upstream-kmsan-gce
2018/06/26 16:29 https://github.com/google/kmsan.git master 123906095e30 b0294c53 .config console log report ci-upstream-kmsan-gce
2018/06/26 13:22 https://github.com/google/kmsan.git master 123906095e30 089f1181 .config console log report ci-upstream-kmsan-gce
2018/06/26 07:25 https://github.com/google/kmsan.git master 123906095e30 2064fc5c .config console log report ci-upstream-kmsan-gce
2018/06/26 01:49 https://github.com/google/kmsan.git master 123906095e30 2064fc5c .config console log report ci-upstream-kmsan-gce
2018/06/25 17:59 https://github.com/google/kmsan.git master 123906095e30 2064fc5c .config console log report ci-upstream-kmsan-gce
2018/06/25 15:59 https://github.com/google/kmsan.git master 123906095e30 2064fc5c .config console log report ci-upstream-kmsan-gce
2018/06/25 03:05 https://github.com/google/kmsan.git master 123906095e30 2064fc5c .config console log report ci-upstream-kmsan-gce
2018/06/24 07:20 https://github.com/google/kmsan.git master 123906095e30 2064fc5c .config console log report ci-upstream-kmsan-gce
2018/06/23 17:32 https://github.com/google/kmsan.git master 123906095e30 2064fc5c .config console log report ci-upstream-kmsan-gce
2018/06/23 10:39 https://github.com/google/kmsan.git master 123906095e30 2064fc5c .config console log report ci-upstream-kmsan-gce
2018/06/23 08:26 https://github.com/google/kmsan.git master 123906095e30 89d2e600 .config console log report ci-upstream-kmsan-gce
2018/06/23 05:25 https://github.com/google/kmsan.git master 123906095e30 89d2e600 .config console log report ci-upstream-kmsan-gce
2018/06/22 07:46 https://github.com/google/kmsan.git master 123906095e30 095ef806 .config console log report ci-upstream-kmsan-gce
2018/06/22 05:59 https://github.com/google/kmsan.git master 123906095e30 095ef806 .config console log report ci-upstream-kmsan-gce
2018/06/21 22:06 https://github.com/google/kmsan.git master 123906095e30 095ef806 .config console log report ci-upstream-kmsan-gce
2018/06/21 16:44 https://github.com/google/kmsan.git master 123906095e30 095ef806 .config console log report ci-upstream-kmsan-gce
2018/06/21 03:19 https://github.com/google/kmsan.git master 123906095e30 095ef806 .config console log report ci-upstream-kmsan-gce
2018/06/20 21:11 https://github.com/google/kmsan.git master 123906095e30 095ef806 .config console log report ci-upstream-kmsan-gce
2018/06/20 16:25 https://github.com/google/kmsan.git master 123906095e30 095ef806 .config console log report ci-upstream-kmsan-gce
2018/06/20 09:41 https://github.com/google/kmsan.git master 123906095e30 095ef806 .config console log report ci-upstream-kmsan-gce
2018/04/06 22:12 https://github.com/google/kmsan.git master e2ab7e8abba4 d613535f .config console log report ci-upstream-kmsan-gce
* Struck through repros no longer work on HEAD.