syzbot

 sign-in | mailing list | source | docs | 🏰
🐞 Open [1328]
Subsystems
🐞 Fixed [7156]
🐞 Invalid [18924]
Missing Backports [221]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
✨ AI
💬 Send us feedback

KMSAN: uninit-value in sw842_compress (2)

Status: upstream: reported on 2026/06/06 16:43
Subsystems: crypto
Labels: prio:high
[Documentation on labels]
Reported-by: syzbot+bf5586280a66e9ccdfa9@syzkaller.appspotmail.com
First crash: 12d, last: 3d14h
✨ AI Jobs (1)
ID Workflow Result Correct Bug Created Started Finished Revision Error
2db7db91-c8d1-4b7b-89c1-ed16f731494a assessment-security DenialOfService: ❌ Exploitable: ✅ FilesystemTrigger: ✅ NetworkTrigger: ❌ PeripheralTrigger: ✅ RemoteTrigger: ❌ Unprivileged: ✅ UserNamespace: ✅ VMGuestTrigger: ✅ VMHostTrigger: ❌ KMSAN: uninit-value in sw842_compress (2) 2026/06/09 15:57 2026/06/09 15:57 2026/06/09 17:04 c36c07f6c1f2230a36374cbd22235f635e8f9284
Discussions (1)
Title Replies (including bot) Last reply
[syzbot] [crypto?] KMSAN: uninit-value in sw842_compress (2) 0 (1) 2026/06/06 16:43
Similar bugs (1)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream KMSAN: uninit-value in sw842_compress mm 7 C 107 125d 644d 0/29 auto-obsoleted due to no activity on 2026/05/04 10:59

Sample crash report:
=====================================================
BUG: KMSAN: uninit-value in crc32_be_base lib/crc/crc32-main.c:46 [inline]
BUG: KMSAN: uninit-value in crc32_be+0x228/0x270 lib/crc/crc32-main.c:80
 crc32_be_base lib/crc/crc32-main.c:46 [inline]
 crc32_be+0x228/0x270 lib/crc/crc32-main.c:80
 sw842_compress+0x45f8/0x5060 lib/842/842_compress.c:584
 crypto842_scompress+0x4e/0x70 crypto/842.c:46
 scomp_acomp_comp_decomp+0xa49/0x1120 include/crypto/internal/scompress.h:-1
 scomp_acomp_compress+0x33/0x40 crypto/scompress.c:280
 crypto_acomp_compress+0x5c4/0xe50 crypto/acompress.c:287
 zswap_compress mm/zswap.c:874 [inline]
 zswap_store_page mm/zswap.c:1415 [inline]
 zswap_store+0x1a1d/0x48b0 mm/zswap.c:1526
 swap_writeout+0x7a1/0x1120 mm/page_io.c:275
 shmem_writeout+0x1db1/0x2210 mm/shmem.c:1705
 writeout mm/vmscan.c:630 [inline]
 pageout mm/vmscan.c:679 [inline]
 shrink_folio_list+0x5ade/0x8000 mm/vmscan.c:1400
 evict_folios+0x9704/0xbb70 mm/vmscan.c:4854
 try_to_shrink_lruvec+0x1734/0x24b0 mm/vmscan.c:5009
 lru_gen_shrink_lruvec mm/vmscan.c:5173 [inline]
 shrink_lruvec+0x4f8/0x4e20 mm/vmscan.c:5932
 shrink_node_memcgs mm/vmscan.c:6171 [inline]
 shrink_node+0xf19/0x5a30 mm/vmscan.c:6215
 shrink_zones mm/vmscan.c:6454 [inline]
 do_try_to_free_pages+0x956/0x2640 mm/vmscan.c:6516
 try_to_free_mem_cgroup_pages+0x352/0x920 mm/vmscan.c:6838
 try_charge_memcg+0x815/0x1c20 mm/memcontrol.c:2630
 obj_cgroup_charge_pages mm/memcontrol.c:3072 [inline]
 __memcg_kmem_charge_page+0x48e/0xcf0 mm/memcontrol.c:3116
 __alloc_frozen_pages_noprof+0x693/0x1000 mm/page_alloc.c:5238
 alloc_pages_mpol+0x328/0x860 mm/mempolicy.c:2490
 alloc_frozen_pages_noprof mm/mempolicy.c:2561 [inline]
 alloc_pages_noprof+0x101/0x290 mm/mempolicy.c:2581
 vm_area_alloc_pages mm/vmalloc.c:3728 [inline]
 __vmalloc_area_node mm/vmalloc.c:3878 [inline]
 __vmalloc_node_range_noprof+0x1a2c/0x2cd0 mm/vmalloc.c:4064
 __kvmalloc_node_noprof+0x739/0x18c0 mm/slub.c:6861
 futex_hash_allocate+0x316/0x1c90 kernel/futex/core.c:1815
 futex_hash_prctl+0x191/0x200 kernel/futex/core.c:1961
 __do_sys_prctl kernel/sys.c:2885 [inline]
 __se_sys_prctl+0x9b6/0x2560 kernel/sys.c:2534
 __x64_sys_prctl+0xe4/0x150 kernel/sys.c:2534
 x64_sys_call+0x2d01/0x3ea0 arch/x86/include/generated/asm/syscalls_64.h:158
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x15d/0x3c0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

Uninit was created at:
 __alloc_frozen_pages_noprof+0x6fa/0x1000 mm/page_alloc.c:5244
 alloc_pages_mpol+0x328/0x860 mm/mempolicy.c:2490
 folio_alloc_mpol_noprof+0x56/0x1d0 mm/mempolicy.c:2509
 shmem_alloc_folio mm/shmem.c:1933 [inline]
 shmem_alloc_and_add_folio+0xc54/0x1bd0 mm/shmem.c:1975
 shmem_get_folio_gfp+0xad3/0x1fc0 mm/shmem.c:2564
 shmem_get_folio mm/shmem.c:2670 [inline]
 shmem_symlink+0x5ed/0xbb0 mm/shmem.c:4119
 vfs_symlink+0x256/0x550 fs/namei.c:5653
 filename_symlinkat+0x2b4/0x890 fs/namei.c:5678
 __do_sys_symlinkat fs/namei.c:5698 [inline]
 __se_sys_symlinkat+0xb2/0x5b0 fs/namei.c:5693
 __x64_sys_symlinkat+0x97/0xe0 fs/namei.c:5693
 x64_sys_call+0x3680/0x3ea0 arch/x86/include/generated/asm/syscalls_64.h:267
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0x15d/0x3c0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

CPU: 1 UID: 0 PID: 6815 Comm: syz.4.198 Not tainted syzkaller #0 PREEMPT(lazy) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
=====================================================

Crashes (5):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2026/06/11 11:11 upstream 9716c086c8e8 b754d2d8 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in sw842_compress
2026/06/11 11:11 upstream 9716c086c8e8 b754d2d8 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in sw842_compress
2026/06/11 11:03 upstream 9716c086c8e8 b754d2d8 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in sw842_compress
2026/06/11 11:03 upstream 9716c086c8e8 b754d2d8 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in sw842_compress
2026/06/02 16:40 upstream 6f3ed7fec72f 62fe1528 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-root KMSAN: uninit-value in sw842_compress
* Struck through repros no longer work on HEAD.