syzbot

 sign-in | mailing list | source | docs
🐞 Open [1389]
Subsystems
🐞 Fixed [7018]
🐞 Invalid [18324]
Missing Backports [223]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
✨ AI
💬 Send us feedback

KMSAN: uninit-value in __flush_smp_call_function_queue

Status: upstream: reported C repro on 2026/02/15 08:48
Subsystems: kernel
[Documentation on labels]
Reported-by: syzbot+4b1bd55fba6260160779@syzkaller.appspotmail.com
First crash: 43d, last: 3h09m
Discussions (1)
Title Replies (including bot) Last reply
[syzbot] [kernel?] KMSAN: uninit-value in __flush_smp_call_function_queue 1 (4) 2026/03/10 07:17
Last patch testing requests (1)
Created Duration User Patch Repo Result
2026/03/10 06:48 27m wangqing7171@gmail.com patch upstream report log

Sample crash report:
=====================================================
BUG: KMSAN: uninit-value in __flush_smp_call_function_queue+0x362/0x18e0 kernel/smp.c:535
 __flush_smp_call_function_queue+0x362/0x18e0 kernel/smp.c:535
 generic_smp_call_function_single_interrupt+0x1c/0x30 kernel/smp.c:463
 __sysvec_call_function_single+0x4b/0x3e0 arch/x86/kernel/smp.c:271
 instr_sysvec_call_function_single arch/x86/kernel/smp.c:266 [inline]
 sysvec_call_function_single+0x7c/0x90 arch/x86/kernel/smp.c:266
 asm_sysvec_call_function_single+0x1f/0x30 arch/x86/include/asm/idtentry.h:704
 smap_save mm/kmsan/instrumentation.c:94 [inline]
 get_shadow_origin_ptr mm/kmsan/instrumentation.c:35 [inline]
 __msan_metadata_ptr_for_load_8+0x14/0x40 mm/kmsan/instrumentation.c:94
 find_next_bit include/linux/find.h:69 [inline]
 __for_each_wrap include/linux/find.h:477 [inline]
 steal_cookie_task kernel/sched/core.c:6305 [inline]
 sched_core_balance+0x17f2/0x2010 kernel/sched/core.c:6333
 do_balance_callbacks kernel/sched/core.c:4929 [inline]
 __balance_callbacks kernel/sched/core.c:4985 [inline]
 finish_lock_switch kernel/sched/core.c:5034 [inline]
 finish_task_switch+0x3e4/0x8b0 kernel/sched/core.c:5153
 context_switch kernel/sched/core.c:5301 [inline]
 __schedule+0x2607/0x8640 kernel/sched/core.c:6911
 schedule_idle+0x5a/0x90 kernel/sched/core.c:7034
 do_idle+0x859/0x870 kernel/sched/idle.c:369
 cpu_startup_entry+0x5f/0x80 kernel/sched/idle.c:439
 rest_init+0x1df/0x260 init/main.c:760
 start_kernel+0x6d1/0x8b0 init/main.c:1210
 x86_64_start_reservations+0x28/0x30 arch/x86/kernel/head64.c:310
 x86_64_start_kernel+0x139/0x140 arch/x86/kernel/head64.c:291
 common_startup_64+0x13e/0x147

Local variable pflags created at:
 try_charge_memcg+0x63/0x1c20 mm/memcontrol.c:2367
 try_charge mm/memcontrol.c:2556 [inline]
 charge_memcg mm/memcontrol.c:4744 [inline]
 __mem_cgroup_charge+0x114/0x5c0 mm/memcontrol.c:4761

CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
=====================================================

Crashes (484):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2026/03/20 05:41 upstream 8a30aeb0d1b4 bd6dcb30 .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/20 03:49 upstream 8a30aeb0d1b4 bd6dcb30 .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/20 02:18 upstream 8a30aeb0d1b4 bd6dcb30 .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/02/15 19:04 upstream ca4ee40bf13d 1e62d198 .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/26 09:06 upstream d2a43e7f89da c6143aac .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/26 05:19 upstream d2a43e7f89da c6143aac .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/26 04:33 upstream d2a43e7f89da c6143aac .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/25 20:33 upstream bbeb83d3182a 4367a094 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/25 15:41 upstream bbeb83d3182a 4367a094 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/24 16:39 upstream c369299895a5 74e70d19 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/24 14:56 upstream c369299895a5 74e70d19 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/24 09:41 upstream c369299895a5 baf8bf12 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/24 04:35 upstream c369299895a5 baf8bf12 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/24 02:45 upstream c369299895a5 baf8bf12 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/23 21:47 upstream c369299895a5 5e3db351 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/23 19:35 upstream c369299895a5 5e3db351 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/23 17:51 upstream c369299895a5 5e3db351 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/23 16:20 upstream c369299895a5 5e3db351 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/23 14:59 upstream c369299895a5 5e3db351 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/23 00:35 upstream 8d8bd2a5aa98 5b92003d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/22 18:58 upstream 113ae7b4decc 5b92003d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/22 10:52 upstream 113ae7b4decc 5b92003d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/22 08:55 upstream 113ae7b4decc 5b92003d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/22 08:08 upstream 113ae7b4decc 5b92003d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/22 05:20 upstream 113ae7b4decc 5b92003d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/21 22:07 upstream a0c83177734a 5b92003d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/21 12:54 upstream a0c83177734a 5b92003d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/21 08:24 upstream c612261bedd6 5b92003d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/21 04:14 upstream c612261bedd6 5b92003d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/21 00:13 upstream c612261bedd6 5b92003d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/20 18:24 upstream 0e4f8f1a3d08 2f245add .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/20 09:14 upstream 0e4f8f1a3d08 2f245add .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/20 01:53 upstream 8a30aeb0d1b4 bd6dcb30 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/02/15 07:56 upstream ca4ee40bf13d 1e62d198 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/02/11 08:40 upstream dc855b77719f 441e25b7 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/26 06:41 upstream d2a43e7f89da c6143aac .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/25 23:15 upstream bbeb83d3182a 4367a094 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/25 18:01 upstream bbeb83d3182a 4367a094 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/25 09:40 upstream bbeb83d3182a 35e4ff71 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/25 07:22 upstream bbeb83d3182a 35e4ff71 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/24 23:54 upstream e3c33bc767b5 74e70d19 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/24 05:25 upstream c369299895a5 baf8bf12 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/23 23:34 upstream c369299895a5 5e3db351 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/23 03:51 upstream 8d8bd2a5aa98 5b92003d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/22 17:33 upstream 113ae7b4decc 5b92003d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/22 15:11 upstream 113ae7b4decc 5b92003d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/22 12:21 upstream 113ae7b4decc 5b92003d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/21 17:47 upstream a0c83177734a 5b92003d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/21 06:03 upstream c612261bedd6 5b92003d .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/20 15:23 upstream 0e4f8f1a3d08 2f245add .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in __flush_smp_call_function_queue
2026/03/20 03:45 upstream 8a30aeb0d1b4 bd6dcb30 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in __flush_smp_call_function_queue
* Struck through repros no longer work on HEAD.