syzbot

 sign-in | mailing list | source | docs
🐞 Open [1456]
Subsystems
🐞 Fixed [6883]
🐞 Invalid [17891]
Missing Backports [224]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KMSAN: uninit-value in bpf_prog_run_generic_xdp

Status: upstream: reported C repro on 2022/11/18 11:39
Subsystems: net
[Documentation on labels]
Reported-by: syzbot+0e6ddb1ef80986bdfe64@syzkaller.appspotmail.com
First crash: 1513d, last: 4d22h
Discussions (19)
Title Replies (including bot) Last reply
[syzbot] Monthly net report (Jan 2026) 2 (3) 2026/01/20 11:17
[syzbot] Monthly net report (Nov 2025) 0 (1) 2025/11/17 07:50
[syzbot] Monthly net report (Oct 2025) 0 (1) 2025/10/16 08:36
[syzbot] Monthly net report (Sep 2025) 0 (1) 2025/09/15 06:54
[syzbot] Monthly net report (Aug 2025) 0 (1) 2025/08/14 12:42
[syzbot] Monthly net report (Jul 2025) 0 (1) 2025/07/14 07:23
[PATCH bpf v2 0/2] bpf, xdp: clean adjust_{head,meta} memory when offset < 0 8 (8) 2025/04/04 00:29
[PATCH net v1] net: Fix tuntap uninitialized value 5 (5) 2025/03/31 11:47
[PATCH v2] can: fix skb reference counting in j1939_session_new() 11 (11) 2024/11/29 13:25
[syzbot] KMSAN: uninit-value in bpf_prog_run_generic_xdp 0 (3) 2024/07/01 10:19
[syzbot] Monthly can report (May 2024) 0 (1) 2024/05/31 06:49
[syzbot] Monthly bpf report (Mar 2024) 0 (1) 2024/03/11 10:18
[syzbot] Monthly bpf report (Feb 2024) 0 (1) 2024/02/08 21:48
[syzbot] Monthly can report (Jan 2024) 0 (1) 2024/01/16 07:55
Re: [syzbot] KMSAN: uninit-value in bpf_prog_run_generic_xdp 1 (1) 2023/12/21 11:22
[syzbot] Monthly can report (Dec 2023) 0 (1) 2023/12/02 14:45
[syzbot] Monthly bpf report (Nov 2023) 0 (1) 2023/11/07 04:52
[syzbot] Monthly can report (Nov 2023) 0 (1) 2023/11/01 10:13
[syzbot] Monthly batman report (Oct 2023) 0 (1) 2023/10/09 09:23
Similar bugs (18)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KMSAN: uninit-value in skb_release_data (3) net 7 C 10 1287d 1966d 0/29 auto-obsoleted due to no activity on 2022/11/17 07:20
upstream KMSAN: uninit-value in hsr_register_frame_in net 7 C 197 920d 2541d 0/29 auto-obsoleted due to no activity on 2024/02/18 18:09
upstream KMSAN: kernel-infoleak in copyout (2) net 17 C 6723 964d 2132d 22/29 fixed on 2023/06/08 14:41
upstream KMSAN: uninit-value in ipv6_find_tlv net 7 C 271 1005d 2359d 22/29 fixed on 2023/06/08 14:41
upstream KMSAN: uninit-value in ax25cmp (2) hams 7 C 51 1224d 1485d 0/29 closed as invalid on 2022/11/18 11:50
upstream KMSAN: uninit-value in virtqueue_add (3) virt 7 13 1180d 1473d 0/29 auto-obsoleted due to no activity on 2023/02/12 03:53
upstream KMSAN: kernel-infoleak in _copy_to_iter (7) net 23 C 138977 1068d 1420d 22/29 fixed on 2023/02/24 13:50
upstream KMSAN: kernel-infoleak in __skb_datagram_iter net 9 68 854d 959d 23/29 fixed on 2023/09/28 17:51
upstream KMSAN: uninit-value in can_send can 7 C 630 1163d 1181d 22/29 fixed on 2023/02/24 13:50
upstream KMSAN: uninit-value in IP6_ECN_decapsulate net 7 C 981 769d 2685d 25/29 fixed on 2023/12/21 03:45
upstream KMSAN: uninit-value in inet_frag_find (2) net 7 2 1477d 1485d 0/29 auto-closed as invalid on 2022/04/11 17:13
upstream KMSAN: kernel-infoleak in _copy_to_iter (6) net 9 C 748 1421d 1510d 20/29 fixed on 2022/03/08 16:11
upstream KMSAN: uninit-value in eth_type_trans (2) net 7 C 8195 19h23m 2197d 0/29 upstream: reported C repro on 2020/01/22 16:47
upstream KMSAN: uninit-value in hsr_fill_frame_info (2) net 7 C 65 920d 1202d 0/29 auto-obsoleted due to no activity on 2023/10/30 13:38
upstream KMSAN: uninit-value in erspan_build_header net 7 40 1113d 1203d 0/29 auto-obsoleted due to no activity on 2023/05/10 10:26
upstream KMSAN: uninit-value in ip_tunnel_xmit (3) net 7 C 1516 1208d 1896d 0/29 closed as invalid on 2022/10/12 18:48
upstream KMSAN: uninit-value in br_dev_xmit bridge 7 C 537 1108d 2164d 0/29 auto-obsoleted due to no activity on 2023/05/15 13:28
upstream KMSAN: uninit-value in batadv_get_vid batman 7 C 1947 1059d 2164d 0/29 auto-obsoleted due to no activity on 2023/07/23 05:56
Last patch testing requests (5)
Created Duration User Patch Repo Result
2025/06/06 14:17 25m retest repro upstream report log
2025/06/06 14:17 25m retest repro upstream report log
2025/06/06 14:17 29m retest repro upstream OK log
2024/07/03 03:13 33m retest repro upstream error
2024/07/01 10:19 19m wojciech.gladysz@infogain.com patch https://linux.googlesource.com/linux/kernel/git/torvalds/linux e478cf26c556e4ab572ab0ab2306c986901dcd61 report log

Sample crash report:
=====================================================
BUG: KMSAN: uninit-value in bpf_prog_run_generic_xdp+0x190a/0x1f20 net/core/dev.c:5154
 bpf_prog_run_generic_xdp+0x190a/0x1f20 net/core/dev.c:5154
 netif_receive_generic_xdp net/core/dev.c:5236 [inline]
 do_xdp_generic+0xc0d/0x15a0 net/core/dev.c:5298
 tun_get_user+0x4952/0x6e50 drivers/net/tun.c:1929
 tun_chr_write_iter+0x3ac/0x5d0 drivers/net/tun.c:2053
 new_sync_write fs/read_write.c:586 [inline]
 vfs_write+0xb34/0x1540 fs/read_write.c:679
 ksys_write+0x240/0x4b0 fs/read_write.c:731
 __do_sys_write fs/read_write.c:742 [inline]
 __se_sys_write fs/read_write.c:739 [inline]
 __x64_sys_write+0x93/0xe0 fs/read_write.c:739
 x64_sys_call+0x3161/0x3c30 arch/x86/include/generated/asm/syscalls_64.h:2
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

Uninit was stored to memory at:
 pskb_expand_head+0x33a/0x1b70 net/core/skbuff.c:2283
 netif_skb_check_for_xdp net/core/dev.c:5199 [inline]
 netif_receive_generic_xdp net/core/dev.c:5230 [inline]
 do_xdp_generic+0x9e3/0x15a0 net/core/dev.c:5298
 tun_get_user+0x4952/0x6e50 drivers/net/tun.c:1929
 tun_chr_write_iter+0x3ac/0x5d0 drivers/net/tun.c:2053
 new_sync_write fs/read_write.c:586 [inline]
 vfs_write+0xb34/0x1540 fs/read_write.c:679
 ksys_write+0x240/0x4b0 fs/read_write.c:731
 __do_sys_write fs/read_write.c:742 [inline]
 __se_sys_write fs/read_write.c:739 [inline]
 __x64_sys_write+0x93/0xe0 fs/read_write.c:739
 x64_sys_call+0x3161/0x3c30 arch/x86/include/generated/asm/syscalls_64.h:2
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

Uninit was created at:
 slab_post_alloc_hook mm/slub.c:4121 [inline]
 slab_alloc_node mm/slub.c:4164 [inline]
 __do_kmalloc_node mm/slub.c:4293 [inline]
 __kmalloc_node_track_caller_noprof+0x945/0x1240 mm/slub.c:4313
 kmalloc_reserve+0x23e/0x4a0 net/core/skbuff.c:609
 __alloc_skb+0x363/0x7b0 net/core/skbuff.c:678
 alloc_skb include/linux/skbuff.h:1331 [inline]
 alloc_skb_with_frags+0xc8/0xd00 net/core/skbuff.c:6612
 sock_alloc_send_pskb+0xa81/0xbf0 net/core/sock.c:2897
 tun_alloc_skb drivers/net/tun.c:1526 [inline]
 tun_get_user+0x1c6d/0x6e50 drivers/net/tun.c:1851
 tun_chr_write_iter+0x3ac/0x5d0 drivers/net/tun.c:2053
 new_sync_write fs/read_write.c:586 [inline]
 vfs_write+0xb34/0x1540 fs/read_write.c:679
 ksys_write+0x240/0x4b0 fs/read_write.c:731
 __do_sys_write fs/read_write.c:742 [inline]
 __se_sys_write fs/read_write.c:739 [inline]
 __x64_sys_write+0x93/0xe0 fs/read_write.c:739
 x64_sys_call+0x3161/0x3c30 arch/x86/include/generated/asm/syscalls_64.h:2
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

CPU: 0 UID: 0 PID: 5786 Comm: syz-executor617 Not tainted 6.14.0-rc2-syzkaller-00281-g496659003dac #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
=====================================================

Crashes (2043):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2025/02/16 06:41 upstream 496659003dac 40a34ec9 .config strace log report syz / log C [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2024/11/06 10:23 upstream 2e1b3cc9d7f7 3a465482 .config strace log report syz / log C [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2026/01/22 18:37 upstream a66191c590b3 2367ed1e .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2026/01/10 14:44 upstream b6151c4e60e5 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2026/01/09 11:31 upstream 623fb9912f6a d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2026/01/08 16:00 upstream f0b9d8eb98df d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2026/01/07 20:22 upstream f0b9d8eb98df d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2026/01/06 04:27 upstream 7f98ab9da046 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2026/01/04 02:09 upstream aacb0a6d604a d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/31 14:44 upstream c8ebd433459b d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/31 03:29 upstream dbf8fe85a16a d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/30 18:56 upstream 8640b74557fc d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/29 03:19 upstream c875a6c32467 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/28 08:25 upstream d26143bb38e2 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/15 16:35 upstream 8f0b4cce4481 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/14 00:48 upstream 4a298a43f5e3 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/12 19:06 upstream 187d0801404f d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/10 08:59 upstream c9b47175e913 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/07 07:21 upstream 50471f8b7371 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/06 19:37 upstream 416f99c3b16f d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/06 15:29 upstream 416f99c3b16f d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/03 11:44 upstream 44fc84337b6e d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/03 09:23 upstream 44fc84337b6e d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/01 22:41 upstream 7d0a66e4bb90 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2024/03/16 16:19 upstream 66a27abac311 d615901c .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2026/01/19 12:38 upstream 24d479d26b25 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2026/01/10 17:55 upstream b6151c4e60e5 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2026/01/10 07:59 upstream 372800cb95a3 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2026/01/09 08:03 upstream 79b95d74470d d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2026/01/06 07:09 upstream 7f98ab9da046 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2026/01/05 08:04 upstream 3609fa95fb0f d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2026/01/04 04:31 upstream aacb0a6d604a d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2026/01/01 17:03 upstream b69053dd3ffb d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2026/01/01 16:58 upstream b69053dd3ffb d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/31 17:28 upstream c8ebd433459b d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/31 04:51 upstream dbf8fe85a16a d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/25 03:53 upstream ccd1cdca5cd4 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/15 17:38 upstream 8f0b4cce4481 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/13 00:06 upstream 187d0801404f d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/13 00:05 upstream 187d0801404f d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/10 10:06 upstream c9b47175e913 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/06 17:51 upstream 416f99c3b16f d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/06 12:18 upstream 7203ca412fc8 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/04 01:23 upstream 3f9f0252130e d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/03 13:27 upstream 619f4edc8d4f d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/03 10:38 upstream 619f4edc8d4f d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2025/12/01 10:47 upstream 7d0a66e4bb90 d6526ea3 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in bpf_prog_run_generic_xdp
2023/12/16 05:36 upstream 3bd7d7488169 3222d10c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in bpf_prog_run_generic_xdp
2022/11/15 12:56 https://github.com/google/kmsan.git master cb231e2f67ec 97de9cfc .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386 KMSAN: uninit-value in bpf_prog_run_generic_xdp
2022/01/03 16:49 https://github.com/google/kmsan.git master 81c325bbf94e 4a3f34f2 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in bpf_prog_run_generic_xdp
2021/12/06 12:45 https://github.com/google/kmsan.git master cdfb223e7e63 579a8754 .config console log report info ci-upstream-kmsan-gce-386 KMSAN: uninit-value in bpf_prog_run_generic_xdp
* Struck through repros no longer work on HEAD.