syzbot

 sign-in | mailing list | source | docs | 🏰
🐞 Open [1336]
Subsystems
🐞 Fixed [7118]
🐞 Invalid [18797]
Missing Backports [220]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
✨ AI
💬 Send us feedback

upstream test error: KMSAN: uninit-value in irqentry_exit_to_kernel_mode_preempt

Status: upstream: reported on 2026/04/21 21:37
Subsystems: kernel
[Documentation on labels]
Reported-by: syzbot+cdcfd55737fe43eeb3a3@syzkaller.appspotmail.com
First crash: 34d, last: 26d
✨ AI Jobs (1)
ID Workflow Result Correct Bug Created Started Finished Revision Error
9e0da0c8-83bb-4b9a-a08d-885d5ba15ac4 assessment-security 💥 upstream test error: KMSAN: uninit-value in irqentry_exit_to_kernel_mode_preempt 2026/05/15 10:49 2026/05/15 10:49 2026/05/15 10:49 9cd3beaadf14b3a22d15fd97a0bf081ee41ebe01 failed to run ["make" "KERNELVERSION=syzkaller" "KERNELRELEASE=syzkaller" "LOCALVERSION=-syzkaller" "-j" "32" "ARCH=x86_64" "CC=ccache clang" "LD=ld.lld" "O=/app/workdir/cache/build/f237b69fb47d384d41043ba893cfb887121bc092" "-s" "bzImage" "compile_commands.json"]: exit status 2 Root cause: error: unable to open output file 'drivers/leds/led-core.o': 'No such file or directory' error: unable to open output file 'arch/x86/mm/pat/set_memory.o': 'No such file or directory' fatal error: error in backend: IO failure on output stream: No space left on device PLEASE submit a bug report to https://github.com/llvm/llvm-project/issues/ and include the crash backtrace, preprocessed source, and associated run script. Stack dump: 0. Program arguments: /usr/bin/clang --target=x86_64-linux-gnu -fintegrated-as -Werror=unknown-warning-option -Werror=ignored-optimization-argument -Werror=option-ignored -Werror=unused-command-line-argument -fmacro-prefix-map=/app/workdir/cache/src/bad7268f0d867d479c7da322ef99b7e7898918b3/= -fshort-wchar -funsigned-char -fno-common -fno-PIE -fno-strict-aliasing -std=gnu11 -fms-extensions -Wno-gnu -Wno-microsoft-anon-tag -mno-sse -mno-mmx -mno-sse2 -mno-3dnow -mno-avx -mno-sse4a -fcf-protection=branch -fno-jump-tables -m64 -falign-loops=1 -mno-80387 -mno-fp-ret-in-387 -mstack-alignment=8 -mskip-rax-setup -march=x86-64 -mtune=generic -mno-red-zone -mcmodel=kernel -Wno-sign-compare -fno-asynchronous-unwind-tables -mretpoline-external-thunk -mindirect-branch-cs-prefix -mfunction-return=thunk-extern -fpatchable-function-entry=16,16 -fno-delete-null-pointer-checks -O2 -fno-stack-protector -fno-omit-frame-pointer -fno-optimize-sibling-calls -fno-stack-clash-protection -falign-functions=16 -fstrict-flex-arrays=3 -fno-strict-overflow -fno-stack-check -fno-builtin-wcslen -Wall -Wextra -Wundef -Werror=implicit-function-declaration -Werror=implicit-int -Werror=return-type -Werror=strict-prototypes -Wno-format-security -Wno-trigraphs -Wno-frame-address -Wno-address-of-packed-member -Wmissing-declarations -Wmissing-prototypes -Wframe-larger-than=2048 -Wno-format-overflow-non-kprintf -Wno-format-truncation-non-kprintf -Wno-default-const-init-unsafe -Wno-type-limits -Wno-pointer-sign -Wcast-function-type -Wno-unterminated-string-initialization -Wimplicit-fallthrough -Werror=date-time -Werror=incompatible-pointer-types -Wenum-conversion -Wunused -Wno-unused-but-set-variable -Wno-unused-const-variable -Wno-format-overflow -Wno-override-init -Wno-pointer-to-enum-cast -Wno-tautological-constant-out-of-range-compare -Wno-unaligned-access -Wno-enum-compare-conditional -Wno-missing-field-initializers -Wno-shift-negative-value -Wno-enum-enum-conversion -Wno-sign-compare -Wno-unused-parameter -g -gdwarf-4 -fsanitize=kernel-memory -fsanitize-memory-param-retval -fsanitize-coverage=trace-pc -fsanitize-coverage=trace-cmp -fdebug-info-for-profiling -mllvm -enable-fs-discriminator=true -mllvm -improved-fs-discriminator=true -fbasic-block-address-map -nostdinc -I/app/workdir/cache/src/bad7268f0d867d479c7da322ef99b7e7898918b3/arch/x86/include -I./arch/x86/include/generated -I/app/workdir/cache/src/bad7268f0d867d479c7da322ef99b7e7898918b3/include -I./include -I/app/workdir/cache/src/bad7268f0d867d479c7da322ef99b7e7898918b3/arch/x86/include/uapi -I./arch/x86/include/generated/uapi -I/app/workdir/cache/src/bad7268f0d867d479c7da322ef99b7e7898918b3/include/uapi -I./include/generated/uapi -include /app/workdir/cache/src/bad7268f0d867d479c7da322ef99b7e7898918b3/include/linux/compiler-version.h -include /app/workdir/cache/src/bad7268f0d867d479c7da322ef99b7e7898918b3/include/linux/kconfig.h -include /app/workdir/cache/src/bad7268f0d867d479c7da322ef99b7e7898918b3/include/linux/compiler_types.h -D__KERNEL__ -I/app/workdir/cache/src/bad7268f0d867d479c7da322ef99b7e7898918b3/block -Iblock -DKBUILD_MODFILE=\"block/blk-core\" -DKBUILD_BASENAME=\"blk_core\" -DKBUILD_MODNAME=\"blk_core\" -D__KBUILD_MODNAME=blk_core -c -Wp,-MMD,block/.blk-core.o.d -fcolor-diagnostics -o block/blk-core.o /app/workdir/cache/src/bad7268f0d867d479c7da322ef99b7e7898918b3/block/b
Discussions (2)
Title Replies (including bot) Last reply
[syzbot] [kernel?] upstream test error: KMSAN: uninit-value in irqentry_exit_to_kernel_mode_preempt 10 (11) 2026/05/22 06:26
[PATCH v1] entry: Fix KMSAN false positives in IRQ and NMI exit code 2 (2) 2026/05/11 08:21

Sample crash report:
=====================================================
BUG: KMSAN: uninit-value in irqentry_exit_to_kernel_mode_preempt+0xb0/0xc0 include/linux/irq-entry-common.h:472
 irqentry_exit_to_kernel_mode_preempt+0xb0/0xc0 include/linux/irq-entry-common.h:472
 irqentry_exit_to_kernel_mode include/linux/irq-entry-common.h:547 [inline]
 irqentry_exit+0x7b/0x760 kernel/entry/common.c:164
 sysvec_apic_timer_interrupt+0x52/0x90 arch/x86/kernel/apic/apic.c:1061
 asm_sysvec_apic_timer_interrupt+0x1f/0x30 arch/x86/include/asm/idtentry.h:697
 kmsan_get_metadata+0x12e/0x160 mm/kmsan/shadow.c:148
 kmsan_get_shadow_origin_ptr+0x4a/0xb0 mm/kmsan/shadow.c:102
 get_shadow_origin_ptr mm/kmsan/instrumentation.c:38 [inline]
 __msan_metadata_ptr_for_load_4+0x24/0x40 mm/kmsan/instrumentation.c:93
 do_csum lib/checksum.c:64 [inline]
 ip_fast_csum+0x1e6/0x3f0 lib/checksum.c:99
 nsim_dev_trap_skb_build drivers/net/netdevsim/dev.c:842 [inline]
 nsim_dev_trap_report drivers/net/netdevsim/dev.c:876 [inline]
 nsim_dev_trap_report_work+0x8c0/0x1430 drivers/net/netdevsim/dev.c:922
 process_one_work kernel/workqueue.c:3302 [inline]
 process_scheduled_works+0xb65/0x1e40 kernel/workqueue.c:3385
 worker_thread+0xee4/0x1590 kernel/workqueue.c:3466
 kthread+0x53f/0x600 kernel/kthread.c:436
 ret_from_fork+0x20f/0x8d0 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245

Uninit was created at:
 slab_post_alloc_hook mm/slub.c:4576 [inline]
 slab_alloc_node mm/slub.c:4898 [inline]
 __do_kmalloc_node mm/slub.c:5294 [inline]
 __kmalloc_node_track_caller_noprof+0x4f6/0x1750 mm/slub.c:5403
 kmalloc_reserve net/core/skbuff.c:635 [inline]
 __alloc_skb+0x90d/0x1190 net/core/skbuff.c:713
 alloc_skb include/linux/skbuff.h:1383 [inline]
 nsim_dev_trap_skb_build drivers/net/netdevsim/dev.c:819 [inline]
 nsim_dev_trap_report drivers/net/netdevsim/dev.c:876 [inline]
 nsim_dev_trap_report_work+0x3f2/0x1430 drivers/net/netdevsim/dev.c:922
 process_one_work kernel/workqueue.c:3302 [inline]
 process_scheduled_works+0xb65/0x1e40 kernel/workqueue.c:3385
 worker_thread+0xee4/0x1590 kernel/workqueue.c:3466
 kthread+0x53f/0x600 kernel/kthread.c:436
 ret_from_fork+0x20f/0x8d0 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245

CPU: 1 UID: 0 PID: 47 Comm: kworker/u8:3 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
Workqueue: events_unbound nsim_dev_trap_report_work
=====================================================

Crashes (5):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2026/04/29 00:06 upstream dca922e019dd 95008c03 .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root upstream test error: KMSAN: uninit-value in irqentry_exit_to_kernel_mode_preempt
2026/04/27 12:02 upstream 254f49634ee1 0f700595 .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root upstream test error: KMSAN: uninit-value in irqentry_exit_to_kernel_mode_preempt
2026/04/23 14:07 upstream 2e6803928193 4c3406dc .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root upstream test error: KMSAN: uninit-value in irqentry_exit_to_kernel_mode_preempt
2026/04/21 17:54 upstream 4ee64205ffaa 0b6ab7ec .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root upstream test error: KMSAN: uninit-value in irqentry_exit_to_kernel_mode_preempt
2026/04/24 00:58 upstream 45dcf5e28813 9cfb3ca7 .config console log report [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root upstream test error: KMSAN: uninit-value in irqentry_exit_to_kernel_mode_preempt
* Struck through repros no longer work on HEAD.