syzbot

 sign-in | mailing list | source | docs
🐞 Open [958] Subsystems 🐞 Fixed [4570] 🐞 Invalid [10548] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

KMSAN: uninit-value in IP6_ECN_decapsulate

Status: upstream: reported C repro on 2018/09/20 20:54
Labels: net (incorrect?)
Reported-by: syzbot+bf7e6250c7ce248f3ec9@syzkaller.appspotmail.com
First crash: 1818d, last: 1d10h
Discussions (6)
Title Replies (including bot) Last reply
[syzbot] Monthly net report (May 2023) 0 (1) 2023/05/30 10:56
[syzbot] Monthly net report (Apr 2023) 0 (1) 2023/04/27 10:45
[syzbot] Monthly net report 0 (1) 2023/03/27 11:04
Reminder: 99 open syzbot bugs in net subsystem 14 (14) 2019/07/31 15:13
Reminder: 94 open syzbot bugs in net subsystem 1 (1) 2019/06/25 05:48
KMSAN: uninit-value in IP6_ECN_decapsulate 0 (1) 2018/09/20 20:54
Similar bugs (15)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KMSAN: uninit-value in hsr_register_frame_in net C 197 26d 1577d 0/24 upstream: reported C repro on 2019/02/11 21:53
upstream KMSAN: kernel-infoleak in copyout (2) net C 6723 4h07m 1168d 23/24 upstream: reported C repro on 2020/03/26 17:19
upstream KMSAN: uninit-value in aes_encrypt (4) net C 10 15d 1000d 0/24 upstream: reported C repro on 2020/09/10 14:09
upstream KMSAN: kernel-infoleak in _copy_to_iter (7) net C 138977 103d 456d 24/24 fixed on 2023/02/24 13:50
upstream KMSAN: uninit-value in __skb_checksum_complete (5) netfilter C 1380 3d02h 1027d 0/24 upstream: reported C repro on 2020/08/14 15:09
upstream KMSAN: uninit-value in skb_release_data (3) C 10 323d 1001d 0/24 auto-obsoleted due to no activity on 2022/11/17 07:20
upstream KMSAN: uninit-value in ipv6_find_tlv net C 271 41d 1394d 23/24 upstream: reported C repro on 2019/08/13 14:48
upstream KMSAN: uninit-value in bpf_prog_run_generic_xdp net 130 6d13h 201d 0/24 upstream: reported on 2022/11/18 11:39
upstream KMSAN: uninit-value in ax25cmp (2) C 51 260d 520d 0/24 closed as invalid on 2022/11/18 11:50
upstream KMSAN: uninit-value in virtqueue_add (3) 13 216d 508d 0/24 auto-obsoleted due to no activity on 2023/02/12 03:53
upstream KMSAN: uninit-value in can_send can C 630 198d 216d 24/24 fixed on 2023/02/24 13:50
upstream KMSAN: uninit-value in inet_frag_find (2) 2 512d 520d 0/24 auto-closed as invalid on 2022/04/11 17:13
upstream KMSAN: kernel-infoleak in _copy_to_iter (6) net C 748 456d 545d 22/24 fixed on 2022/03/08 16:11
upstream KMSAN: uninit-value in eth_type_trans (2) net C 3674 now 1232d 0/24 upstream: reported C repro on 2020/01/22 16:47
upstream KMSAN: uninit-value in hsr_fill_frame_info (2) net C 65 25d 238d 0/24 upstream: reported C repro on 2022/10/12 19:10
Last patch testing requests (1)
Created Duration User Patch Repo Result
2022/12/19 03:31 15m retest repro https://github.com/google/kmsan.git master report log

Sample crash report:
hsr0: VLAN not yet supported
=====================================================
BUG: KMSAN: uninit-value in fill_frame_info net/hsr/hsr_forward.c:601 [inline]
BUG: KMSAN: uninit-value in hsr_forward_skb+0x9bd/0x30f0 net/hsr/hsr_forward.c:616
 fill_frame_info net/hsr/hsr_forward.c:601 [inline]
 hsr_forward_skb+0x9bd/0x30f0 net/hsr/hsr_forward.c:616
 hsr_dev_xmit+0x192/0x330 net/hsr/hsr_device.c:223
 __netdev_start_xmit include/linux/netdevice.h:4915 [inline]
 netdev_start_xmit include/linux/netdevice.h:4929 [inline]
 xmit_one net/core/dev.c:3578 [inline]
 dev_hard_start_xmit+0x247/0xa10 net/core/dev.c:3594
 __dev_queue_xmit+0x34eb/0x50f0 net/core/dev.c:4244
 dev_queue_xmit include/linux/netdevice.h:3085 [inline]
 packet_xmit+0x9c/0x6b0 net/packet/af_packet.c:276
 packet_snd net/packet/af_packet.c:3081 [inline]
 packet_sendmsg+0x8a5d/0x9de0 net/packet/af_packet.c:3113
 sock_sendmsg_nosec net/socket.c:724 [inline]
 sock_sendmsg net/socket.c:747 [inline]
 __sys_sendto+0x76c/0xa10 net/socket.c:2144
 __do_sys_sendto net/socket.c:2156 [inline]
 __se_sys_sendto net/socket.c:2152 [inline]
 __x64_sys_sendto+0x125/0x1c0 net/socket.c:2152
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x63/0xcd

Uninit was created at:
 slab_post_alloc_hook+0x12d/0xb60 mm/slab.h:716
 slab_alloc_node mm/slub.c:3451 [inline]
 kmem_cache_alloc_node+0x535/0xa30 mm/slub.c:3496
 kmalloc_reserve+0x148/0x470 net/core/skbuff.c:568
 __alloc_skb+0x318/0x740 net/core/skbuff.c:654
 alloc_skb include/linux/skbuff.h:1288 [inline]
 alloc_skb_with_frags+0xbd/0xbb0 net/core/skbuff.c:6378
 sock_alloc_send_pskb+0xa80/0xbf0 net/core/sock.c:2729
 packet_alloc_skb net/packet/af_packet.c:2930 [inline]
 packet_snd net/packet/af_packet.c:3024 [inline]
 packet_sendmsg+0x6fc2/0x9de0 net/packet/af_packet.c:3113
 sock_sendmsg_nosec net/socket.c:724 [inline]
 sock_sendmsg net/socket.c:747 [inline]
 __sys_sendto+0x76c/0xa10 net/socket.c:2144
 __do_sys_sendto net/socket.c:2156 [inline]
 __se_sys_sendto net/socket.c:2152 [inline]
 __x64_sys_sendto+0x125/0x1c0 net/socket.c:2152
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x63/0xcd

CPU: 0 PID: 4983 Comm: syz-executor225 Not tainted 6.4.0-rc2-syzkaller-gdad188c049f8 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/28/2023
=====================================================

Crashes (384):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets Manager Title
2023/05/17 22:19 https://github.com/google/kmsan.git master dad188c049f8 eaac4681 .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/02/05 15:27 https://github.com/google/kmsan.git master eda666ff2276 be607b78 .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in ip_tunnel_rcv
2022/06/13 20:33 https://github.com/google/kmsan.git master 2f3064574275 0d5abf15 .config strace log report syz C ci-upstream-kmsan-gce KMSAN: uninit-value in ip_tunnel_rcv
2018/06/17 13:07 https://github.com/google/kmsan.git master 88e0e95b30f1 27c5f59f .config console log report syz C ci-upstream-kmsan-gce
2018/06/16 08:29 https://github.com/google/kmsan.git master 88e0e95b30f1 27c5f59f .config console log report syz ci-upstream-kmsan-gce
2023/04/09 20:27 https://github.com/google/kmsan.git master 9189d4cb6980 71147e29 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in IP6_ECN_decapsulate
2023/06/06 22:26 https://github.com/google/kmsan.git master 2741f1b02117 a4ae4f42 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/06/05 08:09 https://github.com/google/kmsan.git master 2741f1b02117 a4ae4f42 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/06/04 17:54 https://github.com/google/kmsan.git master 2741f1b02117 a4ae4f42 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/06/03 15:08 https://github.com/google/kmsan.git master 2741f1b02117 a4ae4f42 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/05/28 19:05 https://github.com/google/kmsan.git master f93f2feda5d6 cf184559 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/05/26 07:30 https://github.com/google/kmsan.git master f93f2feda5d6 b40ef614 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/05/23 02:00 https://github.com/google/kmsan.git master f93f2feda5d6 4bce1a3e .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/05/20 07:19 https://github.com/google/kmsan.git master dad188c049f8 96689200 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/05/17 21:11 https://github.com/google/kmsan.git master dad188c049f8 eaac4681 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/05/09 06:58 https://github.com/google/kmsan.git master 81af97bdef5e f4168103 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/05/08 22:24 https://github.com/google/kmsan.git master 81af97bdef5e 90c93c40 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/05/07 11:48 https://github.com/google/kmsan.git master 81af97bdef5e 90c93c40 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/05/04 20:00 https://github.com/google/kmsan.git master 81af97bdef5e 3a560463 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/05/04 09:09 https://github.com/google/kmsan.git master 81af97bdef5e b5918830 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/05/04 07:17 https://github.com/google/kmsan.git master 81af97bdef5e b5918830 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/05/02 00:49 https://github.com/google/kmsan.git master 81af97bdef5e 62df2017 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/04/29 09:09 https://github.com/google/kmsan.git master 81af97bdef5e 62df2017 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/04/29 02:57 https://github.com/google/kmsan.git master 81af97bdef5e 62df2017 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/04/23 18:12 https://github.com/google/kmsan.git master 0255004d2a8e 2b32bd34 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/04/22 16:21 https://github.com/google/kmsan.git master 0255004d2a8e 2b32bd34 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/04/16 22:51 https://github.com/google/kmsan.git master c478e5b17829 ec410564 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/04/15 22:30 https://github.com/google/kmsan.git master c478e5b17829 ec410564 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/04/14 14:19 https://github.com/google/kmsan.git master c478e5b17829 3cfcaa1b .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/04/12 01:38 https://github.com/google/kmsan.git master 9189d4cb6980 49faf98d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/04/09 22:23 https://github.com/google/kmsan.git master 9189d4cb6980 71147e29 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/04/09 09:34 https://github.com/google/kmsan.git master 9189d4cb6980 71147e29 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/04/08 22:58 https://github.com/google/kmsan.git master 9189d4cb6980 71147e29 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/04/06 19:59 https://github.com/google/kmsan.git master 9189d4cb6980 08707520 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/04/01 18:56 https://github.com/google/kmsan.git master 90ea0df61c98 f325deb0 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in ip_tunnel_rcv
2023/03/31 02:10 https://github.com/google/kmsan.git master 90ea0df61c98 f325deb0 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/03/30 05:28 https://github.com/google/kmsan.git master 90ea0df61c98 f325deb0 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/03/29 17:31 https://github.com/google/kmsan.git master 90ea0df61c98 f325deb0 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/03/28 20:45 https://github.com/google/kmsan.git master 90ea0df61c98 48c74771 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/03/27 11:58 https://github.com/google/kmsan.git master 90ea0df61c98 f8f96aa9 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in ip_tunnel_rcv
2023/03/27 04:36 https://github.com/google/kmsan.git master 90ea0df61c98 fbf0499a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/03/24 14:30 https://github.com/google/kmsan.git master 90ea0df61c98 f94b4a29 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/03/23 23:32 https://github.com/google/kmsan.git master 90ea0df61c98 f94b4a29 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2023/03/06 06:32 https://github.com/google/kmsan.git master 944070199c5e f8902b57 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce KMSAN: uninit-value in hsr_forward_skb
2018/06/16 04:24 https://github.com/google/kmsan.git master 88e0e95b30f1 27c5f59f .config console log report ci-upstream-kmsan-gce
2023/05/09 10:15 https://github.com/google/kmsan.git master 81af97bdef5e f4168103 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hsr_forward_skb
2023/05/09 08:59 https://github.com/google/kmsan.git master 81af97bdef5e f4168103 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hsr_forward_skb
2023/04/30 12:30 https://github.com/google/kmsan.git master 81af97bdef5e 62df2017 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hsr_forward_skb
2023/04/30 07:35 https://github.com/google/kmsan.git master 81af97bdef5e 62df2017 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hsr_forward_skb
2023/04/30 03:15 https://github.com/google/kmsan.git master 81af97bdef5e 62df2017 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hsr_forward_skb
2023/04/29 22:46 https://github.com/google/kmsan.git master 81af97bdef5e 62df2017 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hsr_forward_skb
2023/04/21 20:51 https://github.com/google/kmsan.git master 0255004d2a8e 2b32bd34 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hsr_forward_skb
2023/03/30 14:52 https://github.com/google/kmsan.git master 90ea0df61c98 f325deb0 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hsr_forward_skb
2023/03/29 23:32 https://github.com/google/kmsan.git master 90ea0df61c98 f325deb0 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in hsr_forward_skb
2021/01/17 03:13 https://github.com/google/kmsan.git master 73d62e81b476 65a7a854 .config console log report info ci-upstream-kmsan-gce-386
* Struck through repros no longer work on HEAD.