syzbot

 sign-in | mailing list | source | docs
🐞 Open [987] Subsystems 🐞 Fixed [5238] 🐞 Invalid [12509] Missing Backports [83] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

KMSAN: uninit-value in ___neigh_create

Status: auto-closed as invalid on 2022/09/06 08:36
Subsystems: usb net
[Documentation on labels]
First crash: 1931d, last: 1661d
Last patch testing requests (4)
Created Duration User Patch Repo Result
2022/09/06 05:27 19m retest repro https://github.com/google/kmsan.git master OK log
2022/09/06 01:27 20m retest repro https://github.com/google/kmsan.git master OK log
2022/09/05 20:27 19m retest repro https://github.com/google/kmsan.git master OK log
2022/09/05 16:27 19m retest repro https://github.com/google/kmsan.git master OK log

Sample crash report:
usb 1-1: New USB device strings: Mfr=3, Product=0, SerialNumber=9
rsi_91x: rsi_probe: Failed to init usb interface
rsi_91x: rsi_probe: Failed in probe...Exiting
RSI-USB WLAN: probe of 1-1:129.129 failed with error -22
=====================================================
BUG: KMSAN: uninit-value in __list_add include/linux/list.h:60 [inline]
BUG: KMSAN: uninit-value in list_add_tail include/linux/list.h:93 [inline]
BUG: KMSAN: uninit-value in ___neigh_create+0x2783/0x2c40 net/core/neighbour.c:649
CPU: 1 PID: 17 Comm: kworker/1:0 Not tainted 5.3.0-rc7+ #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: ipv6_addrconf addrconf_dad_work
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x191/0x1f0 lib/dump_stack.c:113
 kmsan_report+0x17d/0x2f0 mm/kmsan/kmsan_report.c:114
 __msan_warning+0x73/0xe0 mm/kmsan/kmsan_instr.c:250
 __list_add_valid+0x292/0x430 lib/list_debug.c:26
 __list_add include/linux/list.h:60 [inline]
 list_add_tail include/linux/list.h:93 [inline]
 ___neigh_create+0x2783/0x2c40 net/core/neighbour.c:649
 __neigh_create+0xbd/0xd0 net/core/neighbour.c:674
 ip6_finish_output2+0x149a/0x2670 net/ipv6/ip6_output.c:113
 __ip6_finish_output+0x83d/0x8f0 net/ipv6/ip6_output.c:142
 ip6_finish_output+0x2db/0x420 net/ipv6/ip6_output.c:152
 NF_HOOK_COND include/linux/netfilter.h:294 [inline]
 ip6_output+0x5d3/0x720 net/ipv6/ip6_output.c:175
 dst_output include/net/dst.h:436 [inline]
 NF_HOOK include/linux/netfilter.h:305 [inline]
 ndisc_send_skb+0x1083/0x15e0 net/ipv6/ndisc.c:504
 ndisc_send_ns+0xda8/0xe10 net/ipv6/ndisc.c:646
 ndisc_solicit+0x498/0x5d0 net/ipv6/ndisc.c:733
 neigh_probe net/core/neighbour.c:1012 [inline]
 __neigh_event_send+0x10fd/0x1d40 net/core/neighbour.c:1172
 neigh_event_send include/net/neighbour.h:445 [inline]
 neigh_resolve_output+0x25e/0xb50 net/core/neighbour.c:1474
 neigh_output include/net/neighbour.h:511 [inline]
 ip6_finish_output2+0x2129/0x2670 net/ipv6/ip6_output.c:116
 __ip6_finish_output+0x83d/0x8f0 net/ipv6/ip6_output.c:142
 ip6_finish_output+0x2db/0x420 net/ipv6/ip6_output.c:152
 NF_HOOK_COND include/linux/netfilter.h:294 [inline]
 ip6_output+0x5d3/0x720 net/ipv6/ip6_output.c:175
 dst_output include/net/dst.h:436 [inline]
 NF_HOOK include/linux/netfilter.h:305 [inline]
 ndisc_send_skb+0x1083/0x15e0 net/ipv6/ndisc.c:504
 ndisc_send_rs+0xb5d/0xb90 net/ipv6/ndisc.c:698
 addrconf_dad_completed+0xc03/0x1490 net/ipv6/addrconf.c:4196
 addrconf_dad_work+0x17b3/0x26e0 net/ipv6/addrconf.c:4107
 process_one_work+0x1572/0x1ef0 kernel/workqueue.c:2269
 worker_thread+0x111b/0x2460 kernel/workqueue.c:2415
 kthread+0x4b5/0x4f0 kernel/kthread.c:256
 ret_from_fork+0x35/0x40 arch/x86/entry/entry_64.S:355

Uninit was created at:
 kmsan_save_stack_with_flags mm/kmsan/kmsan.c:154 [inline]
 kmsan_internal_poison_shadow+0x60/0x120 mm/kmsan/kmsan.c:137
 kmsan_slab_alloc+0xaa/0x120 mm/kmsan/kmsan_hooks.c:103
 slab_alloc_node mm/slub.c:2790 [inline]
 __kmalloc_node_track_caller+0xb55/0x1320 mm/slub.c:4388
 __kmalloc_reserve net/core/skbuff.c:141 [inline]
 __alloc_skb+0x306/0xa10 net/core/skbuff.c:209
 alloc_skb include/linux/skbuff.h:1056 [inline]
 ndisc_alloc_skb+0x1ba/0x5b0 net/ipv6/ndisc.c:416
 ndisc_send_ns+0x5e9/0xe10 net/ipv6/ndisc.c:622
 ndisc_solicit+0x498/0x5d0 net/ipv6/ndisc.c:733
 neigh_probe net/core/neighbour.c:1012 [inline]
 __neigh_event_send+0x10fd/0x1d40 net/core/neighbour.c:1172
 neigh_event_send include/net/neighbour.h:445 [inline]
 neigh_resolve_output+0x25e/0xb50 net/core/neighbour.c:1474
 neigh_output include/net/neighbour.h:511 [inline]
 ip6_finish_output2+0x2129/0x2670 net/ipv6/ip6_output.c:116
 __ip6_finish_output+0x83d/0x8f0 net/ipv6/ip6_output.c:142
 ip6_finish_output+0x2db/0x420 net/ipv6/ip6_output.c:152
 NF_HOOK_COND include/linux/netfilter.h:294 [inline]
 ip6_output+0x5d3/0x720 net/ipv6/ip6_output.c:175
 dst_output include/net/dst.h:436 [inline]
 NF_HOOK include/linux/netfilter.h:305 [inline]
 ndisc_send_skb+0x1083/0x15e0 net/ipv6/ndisc.c:504
 ndisc_send_rs+0xb5d/0xb90 net/ipv6/ndisc.c:698
 addrconf_dad_completed+0xc03/0x1490 net/ipv6/addrconf.c:4196
 addrconf_dad_work+0x17b3/0x26e0 net/ipv6/addrconf.c:4107
 process_one_work+0x1572/0x1ef0 kernel/workqueue.c:2269
 worker_thread+0x111b/0x2460 kernel/workqueue.c:2415
 kthread+0x4b5/0x4f0 kernel/kthread.c:256
 ret_from_fork+0x35/0x40 arch/x86/entry/entry_64.S:355
=====================================================

Crashes (53):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2019/10/08 22:45 https://github.com/google/kmsan.git master cebb918b7474 b1ebbfef .config console log report syz C ci-upstream-kmsan-gce
2019/09/30 00:57 https://github.com/google/kmsan.git master 124037e07586 c1ad5441 .config console log report syz C ci-upstream-kmsan-gce
2019/09/09 01:50 https://github.com/google/kmsan.git master 014077b5cd62 a60cb4cd .config console log report syz C ci-upstream-kmsan-gce
2019/08/04 05:33 https://github.com/google/kmsan.git master beaab8a31e0d 6affd8e8 .config console log report syz C ci-upstream-kmsan-gce
2019/03/07 10:10 https://github.com/google/kmsan.git master a695dc5e929e 8c085c5e .config console log report ci-upstream-kmsan-gce
2019/03/05 10:28 https://github.com/google/kmsan.git master fa1981bee40f bb91cf81 .config console log report ci-upstream-kmsan-gce
2019/03/01 07:20 https://github.com/google/kmsan.git master fa1981bee40f 8a4b3a6b .config console log report ci-upstream-kmsan-gce
2019/02/27 23:52 https://github.com/google/kmsan.git master fa1981bee40f 34ec456b .config console log report ci-upstream-kmsan-gce
2019/02/21 23:42 https://github.com/google/kmsan.git master fa1981bee40f 7ff74a98 .config console log report ci-upstream-kmsan-gce
2019/02/15 23:57 https://github.com/google/kmsan.git master fa1981bee40f f42dee6d .config console log report ci-upstream-kmsan-gce
2019/02/15 12:54 https://github.com/google/kmsan.git master fa1981bee40f f6f233c0 .config console log report ci-upstream-kmsan-gce
2019/02/14 05:28 https://github.com/google/kmsan.git master fa1981bee40f 6a46f448 .config console log report ci-upstream-kmsan-gce
2019/02/13 04:38 https://github.com/google/kmsan.git master fa1981bee40f 1eedba36 .config console log report ci-upstream-kmsan-gce
2019/02/12 18:42 https://github.com/google/kmsan.git master fa1981bee40f 6ecc6d0f .config console log report ci-upstream-kmsan-gce
2019/02/12 17:28 https://github.com/google/kmsan.git master fa1981bee40f 6ecc6d0f .config console log report ci-upstream-kmsan-gce
2019/02/12 17:09 https://github.com/google/kmsan.git master fa1981bee40f 6ecc6d0f .config console log report ci-upstream-kmsan-gce
2019/02/12 17:07 https://github.com/google/kmsan.git master fa1981bee40f 6ecc6d0f .config console log report ci-upstream-kmsan-gce
2019/02/11 12:46 https://github.com/google/kmsan.git master fa1981bee40f 73f5f452 .config console log report ci-upstream-kmsan-gce
2019/02/09 07:12 https://github.com/google/kmsan.git master fa1981bee40f fa6c7b70 .config console log report ci-upstream-kmsan-gce
2019/02/08 05:37 https://github.com/google/kmsan.git master fa1981bee40f aa4feb03 .config console log report ci-upstream-kmsan-gce
2019/02/07 06:01 https://github.com/google/kmsan.git master fa1981bee40f d25487bc .config console log report ci-upstream-kmsan-gce
2019/02/05 01:50 https://github.com/google/kmsan.git master fa1981bee40f d672172c .config console log report ci-upstream-kmsan-gce
2019/02/04 14:59 https://github.com/google/kmsan.git master fa1981bee40f d672172c .config console log report ci-upstream-kmsan-gce
2019/02/01 23:41 https://github.com/google/kmsan.git master fa1981bee40f 564f9a4f .config console log report ci-upstream-kmsan-gce
2019/02/01 11:51 https://github.com/google/kmsan.git master fa1981bee40f 0c07abcf .config console log report ci-upstream-kmsan-gce
2019/02/01 10:48 https://github.com/google/kmsan.git master fa1981bee40f 0c07abcf .config console log report ci-upstream-kmsan-gce
2019/02/01 00:38 https://github.com/google/kmsan.git master fa1981bee40f 0e8ea0a3 .config console log report ci-upstream-kmsan-gce
2019/01/30 05:20 https://github.com/google/kmsan.git master fa1981bee40f aa432daf .config console log report ci-upstream-kmsan-gce
2019/01/29 03:47 https://github.com/google/kmsan.git master fa1981bee40f aa432daf .config console log report ci-upstream-kmsan-gce
2019/01/28 16:23 https://github.com/google/kmsan.git master d16ba73bc696 629c2a27 .config console log report ci-upstream-kmsan-gce
2019/01/28 11:54 https://github.com/google/kmsan.git master 02f2d5aea531 629c2a27 .config console log report ci-upstream-kmsan-gce
2019/01/27 17:44 https://github.com/google/kmsan.git master 02f2d5aea531 c73f090a .config console log report ci-upstream-kmsan-gce
2019/01/25 18:52 https://github.com/google/kmsan.git master 02f2d5aea531 b5d78bce .config console log report ci-upstream-kmsan-gce
2019/01/25 12:27 https://github.com/google/kmsan.git master 02f2d5aea531 b5d78bce .config console log report ci-upstream-kmsan-gce
2019/01/25 12:03 https://github.com/google/kmsan.git master 02f2d5aea531 b5d78bce .config console log report ci-upstream-kmsan-gce
2019/01/24 12:22 https://github.com/google/kmsan.git master 02f2d5aea531 ce1ccf97 .config console log report ci-upstream-kmsan-gce
2019/01/21 15:09 https://github.com/google/kmsan.git master 02f2d5aea531 badbbeee .config console log report ci-upstream-kmsan-gce
2019/01/21 14:35 https://github.com/google/kmsan.git master 02f2d5aea531 badbbeee .config console log report ci-upstream-kmsan-gce
2019/01/21 00:37 https://github.com/google/kmsan.git master 02f2d5aea531 fd37a550 .config console log report ci-upstream-kmsan-gce
2019/01/19 20:05 https://github.com/google/kmsan.git master 02f2d5aea531 8aa587b0 .config console log report ci-upstream-kmsan-gce
2019/01/19 16:22 https://github.com/google/kmsan.git master 02f2d5aea531 8aa587b0 .config console log report ci-upstream-kmsan-gce
2019/01/17 21:05 https://github.com/google/kmsan.git master 02f2d5aea531 769e75ed .config console log report ci-upstream-kmsan-gce
2019/01/17 17:21 https://github.com/google/kmsan.git master 02f2d5aea531 769e75ed .config console log report ci-upstream-kmsan-gce
2019/01/16 18:19 https://github.com/google/kmsan.git master 02f2d5aea531 d538790b .config console log report ci-upstream-kmsan-gce
2019/01/16 16:52 https://github.com/google/kmsan.git master 02f2d5aea531 d538790b .config console log report ci-upstream-kmsan-gce
2019/01/16 05:38 https://github.com/google/kmsan.git master 02f2d5aea531 b47fa78d .config console log report ci-upstream-kmsan-gce
2019/01/16 05:36 https://github.com/google/kmsan.git master 02f2d5aea531 b47fa78d .config console log report ci-upstream-kmsan-gce
2019/01/15 10:58 https://github.com/google/kmsan.git master 02f2d5aea531 ebacf5cb .config console log report ci-upstream-kmsan-gce
2019/01/14 15:16 https://github.com/google/kmsan.git master 02f2d5aea531 95485883 .config console log report ci-upstream-kmsan-gce
2019/01/11 19:01 https://github.com/google/kmsan.git master 02f2d5aea531 c3f3344c .config console log report ci-upstream-kmsan-gce
2019/01/11 13:39 https://github.com/google/kmsan.git master 02f2d5aea531 80dde172 .config console log report ci-upstream-kmsan-gce
2019/01/11 09:31 https://github.com/google/kmsan.git master 02f2d5aea531 80dde172 .config console log report ci-upstream-kmsan-gce
* Struck through repros no longer work on HEAD.