syzbot

 sign-in | mailing list | source | docs
🐞 Open [1130] 🐞 Fixed [4212] 🐞 Invalid [9343] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes

KMSAN: uninit-value in set_selection_kernel

Status: upstream: reported on 2020/03/12 21:47
Reported-by: syzbot+0b81ae727db96ee52ca8@syzkaller.appspotmail.com
First crash: 999d, last: 102d
similar bugs (2):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KMSAN: kernel-infoleak in _copy_to_iter (7) C 71465 now 271d 23/24 internal: reported C repro on 2022/03/09 07:32
upstream KMSAN: kernel-infoleak in vcs_read (2) C 1538 103d 1097d 23/24 upstream: reported C repro on 2019/12/04 15:25

Sample crash report:
=====================================================
BUG: KMSAN: uninit-value in vc_do_selection drivers/tty/vt/selection.c:277 [inline]
BUG: KMSAN: uninit-value in vc_selection drivers/tty/vt/selection.c:350 [inline]
BUG: KMSAN: uninit-value in set_selection_kernel+0x20b4/0x3960 drivers/tty/vt/selection.c:359
 vc_do_selection drivers/tty/vt/selection.c:277 [inline]
 vc_selection drivers/tty/vt/selection.c:350 [inline]
 set_selection_kernel+0x20b4/0x3960 drivers/tty/vt/selection.c:359
 set_selection_user+0xdd/0x120 drivers/tty/vt/selection.c:185
 tioclinux+0x1f0/0x8e0 drivers/tty/vt/vt.c:3200
 vt_ioctl+0x531/0x2c50 drivers/tty/vt/vt_ioctl.c:762
 vt_compat_ioctl+0x35f/0x880
 tty_compat_ioctl+0x559/0x910 drivers/tty/tty_io.c:2957
 __do_compat_sys_ioctl fs/ioctl.c:968 [inline]
 __se_compat_sys_ioctl+0x781/0xfa0 fs/ioctl.c:910
 __ia32_compat_sys_ioctl+0x8f/0xd0 fs/ioctl.c:910
 do_syscall_32_irqs_on arch/x86/entry/common.c:112 [inline]
 __do_fast_syscall_32+0xa2/0x100 arch/x86/entry/common.c:178
 do_fast_syscall_32+0x33/0x70 arch/x86/entry/common.c:203
 do_SYSENTER_32+0x1b/0x20 arch/x86/entry/common.c:246
 entry_SYSENTER_compat_after_hwframe+0x70/0x82

Uninit was created at:
 __alloc_pages+0x9f1/0xe80 mm/page_alloc.c:5471
 __alloc_pages_bulk+0x1de1/0x24b0 mm/page_alloc.c:5396
 alloc_pages_bulk_array_mempolicy+0xc2f/0xf40 mm/mempolicy.c:2367
 vm_area_alloc_pages mm/vmalloc.c:2915 [inline]
 __vmalloc_area_node mm/vmalloc.c:3011 [inline]
 __vmalloc_node_range+0xad6/0x2700 mm/vmalloc.c:3181
 __vmalloc_node mm/vmalloc.c:3246 [inline]
 vmalloc+0x8c/0xa0 mm/vmalloc.c:3279
 vc_uniscr_alloc drivers/tty/vt/vt.c:347 [inline]
 vc_do_resize+0x6d4/0x2ba0 drivers/tty/vt/vt.c:1249
 vc_resize+0x5a/0x70 drivers/tty/vt/vt.c:1362
 fbcon_modechanged+0xb81/0x15a0 drivers/video/fbdev/core/fbcon.c:2679
 fbcon_update_vcs+0x36/0x40 drivers/video/fbdev/core/fbcon.c:2735
 do_fb_ioctl+0xb7f/0xc50 drivers/video/fbdev/core/fbmem.c:1124
 fb_compat_ioctl+0x37e/0x12b0 drivers/video/fbdev/core/fbmem.c:1325
 __do_compat_sys_ioctl fs/ioctl.c:968 [inline]
 __se_compat_sys_ioctl+0x781/0xfa0 fs/ioctl.c:910
 __ia32_compat_sys_ioctl+0x8f/0xd0 fs/ioctl.c:910
 do_syscall_32_irqs_on arch/x86/entry/common.c:112 [inline]
 __do_fast_syscall_32+0xa2/0x100 arch/x86/entry/common.c:178
 do_fast_syscall_32+0x33/0x70 arch/x86/entry/common.c:203
 do_SYSENTER_32+0x1b/0x20 arch/x86/entry/common.c:246
 entry_SYSENTER_compat_after_hwframe+0x70/0x82

CPU: 0 PID: 9203 Comm: syz-executor.0 Not tainted 5.19.0-syzkaller-32656-gd891e35583bf #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022
=====================================================

Crashes (428):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-kmsan-gce-386 2022/08/25 21:07 https://github.com/google/kmsan.git master d891e35583bf 9b5bf4cd .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/08/23 20:19 https://github.com/google/kmsan.git master 1b070a5d1a2c cea8b0f7 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/08/23 01:21 https://github.com/google/kmsan.git master 1b070a5d1a2c 26a13b38 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/08/21 11:16 https://github.com/google/kmsan.git master 1b070a5d1a2c 26a13b38 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/08/17 08:36 https://github.com/google/kmsan.git master 1b070a5d1a2c 4e72d229 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/08/07 19:38 https://github.com/google/kmsan.git master 168a92de0739 88e3a122 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/08/06 22:27 https://github.com/google/kmsan.git master bba47a4b6421 88e3a122 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/08/04 20:16 https://github.com/google/kmsan.git master bba47a4b6421 1c9013ac .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/08/04 20:16 https://github.com/google/kmsan.git master bba47a4b6421 1c9013ac .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/08/01 05:18 https://github.com/google/kmsan.git master 3ea9edba19ef fef302b1 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/07/28 23:46 https://github.com/google/kmsan.git master 97117d69c353 fb95c74d .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/07/28 01:26 https://github.com/google/kmsan.git master 97117d69c353 fb95c74d .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/07/22 02:50 https://github.com/google/kmsan.git master 97117d69c353 5e6028b9 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/07/21 03:21 https://github.com/google/kmsan.git master 97117d69c353 88cb1383 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/07/20 10:18 https://github.com/google/kmsan.git master 97117d69c353 775344bc .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/07/20 09:00 https://github.com/google/kmsan.git master 97117d69c353 775344bc .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/07/20 07:54 https://github.com/google/kmsan.git master 97117d69c353 775344bc .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/07/20 06:54 https://github.com/google/kmsan.git master 97117d69c353 775344bc .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/07/17 23:27 https://github.com/google/kmsan.git master 97117d69c353 95cb00d1 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/07/17 07:37 https://github.com/google/kmsan.git master 97117d69c353 95cb00d1 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/07/16 20:31 https://github.com/google/kmsan.git master 97117d69c353 95cb00d1 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/07/16 14:48 https://github.com/google/kmsan.git master 97117d69c353 95cb00d1 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/07/16 00:02 https://github.com/google/kmsan.git master 97117d69c353 95cb00d1 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/07/15 04:31 https://github.com/google/kmsan.git master 97117d69c353 5d921b08 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/07/13 03:04 https://github.com/google/kmsan.git master 97117d69c353 d91dd8ea .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/07/11 17:50 https://github.com/google/kmsan.git master 97117d69c353 da3d6955 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/07/11 16:48 https://github.com/google/kmsan.git master 97117d69c353 da3d6955 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/07/09 17:10 https://github.com/google/kmsan.git master 97117d69c353 b5765a15 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/07/07 08:05 https://github.com/google/kmsan.git master 97117d69c353 bff65f44 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/06/30 13:44 https://github.com/google/kmsan.git master ec1cbf8b060e 1434eec0 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/06/30 10:52 https://github.com/google/kmsan.git master ec1cbf8b060e 1434eec0 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/06/29 23:31 https://github.com/google/kmsan.git master ec1cbf8b060e 1434eec0 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/06/24 19:43 https://github.com/google/kmsan.git master 4b28366af7d9 a5dbd430 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/06/19 10:55 https://github.com/google/kmsan.git master fb61e40b30d1 8f633d84 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/06/19 09:08 https://github.com/google/kmsan.git master fb61e40b30d1 8f633d84 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/06/18 15:50 https://github.com/google/kmsan.git master 365ac3bfacfb 8f633d84 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/06/14 12:52 https://github.com/google/kmsan.git master 2f3064574275 0f087040 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/06/14 09:46 https://github.com/google/kmsan.git master 2f3064574275 0f087040 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/05/11 16:25 https://github.com/google/kmsan.git master d6e2c8c7eb40 beb0b407 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/05/10 15:46 https://github.com/google/kmsan.git master d6e2c8c7eb40 8b277b8e .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/05/09 17:29 https://github.com/google/kmsan.git master d6e2c8c7eb40 8b277b8e .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/05/04 20:48 https://github.com/google/kmsan.git master d6e2c8c7eb40 dc9e5259 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/04/30 06:54 https://github.com/google/kmsan.git master d6e2c8c7eb40 ad6b95d8 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/04/27 09:32 https://github.com/google/kmsan.git master d6e2c8c7eb40 1fa34c1b .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/04/22 23:53 https://github.com/google/kmsan.git master b834db009dc5 131df97d .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/04/21 21:53 https://github.com/google/kmsan.git master 33d9269ef6e0 2738b391 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/04/21 09:29 https://github.com/google/kmsan.git master 33d9269ef6e0 d4befee1 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/04/21 01:48 https://github.com/google/kmsan.git master 33d9269ef6e0 d4befee1 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2022/04/20 19:59 https://github.com/google/kmsan.git master 33d9269ef6e0 160a3f31 .config log report info KMSAN: uninit-value in set_selection_kernel
ci-upstream-kmsan-gce-386 2021/01/14 10:24 https://github.com/google/kmsan.git master 73d62e81b476 269d24e8 .config log report info
ci-upstream-kmsan-gce-386 2020/03/12 09:01 https://github.com/google/kmsan.git master 8bbbc5cf3dca d850e9d0 .config log report
ci-upstream-kmsan-gce-386 2020/03/11 16:35 https://github.com/google/kmsan.git master 8bbbc5cf3dca e7caca8e .config log report
* Struck through repros no longer work on HEAD.