syzbot

 sign-in | mailing list | source | docs
🐞 Open [1436]
Subsystems
🐞 Fixed [6893]
🐞 Invalid [17917]
Missing Backports [224]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KMSAN: uninit-value in rose_device_event

Status: auto-obsoleted due to no activity on 2026/01/03 19:04
Subsystems: hams
[Documentation on labels]
First crash: 124d, last: 124d

Sample crash report:
8021q: adding VLAN 0 to HW filter on device bond0
bond0: (slave rose0): Error: Slave does not support XDP
=====================================================
BUG: KMSAN: uninit-value in lock_sock include/net/sock.h:1669 [inline]
BUG: KMSAN: uninit-value in rose_kill_by_device net/rose/af_rose.c:210 [inline]
BUG: KMSAN: uninit-value in rose_device_event+0x81e/0xdd0 net/rose/af_rose.c:244
 lock_sock include/net/sock.h:1669 [inline]
 rose_kill_by_device net/rose/af_rose.c:210 [inline]
 rose_device_event+0x81e/0xdd0 net/rose/af_rose.c:244
 notifier_call_chain kernel/notifier.c:85 [inline]
 raw_notifier_call_chain+0xe0/0x410 kernel/notifier.c:453
 call_netdevice_notifiers_info+0x1ac/0x2b0 net/core/dev.c:2229
 call_netdevice_notifiers_extack net/core/dev.c:2267 [inline]
 call_netdevice_notifiers net/core/dev.c:2281 [inline]
 netif_close_many+0x52a/0x8f0 net/core/dev.c:1784
 netif_close+0x148/0x340 net/core/dev.c:1797
 dev_close+0x16c/0x2e0 net/core/dev_api.c:220
 bond_enslave+0x1447/0x5660 drivers/net/bonding/bond_main.c:2490
 bond_do_ioctl+0x44b/0xea0 drivers/net/bonding/bond_main.c:4714
 dev_siocbond net/core/dev_ioctl.c:516 [inline]
 dev_ifsioc+0x116b/0x1930 net/core/dev_ioctl.c:666
 dev_ioctl+0xa12/0x1100 net/core/dev_ioctl.c:838
 sock_do_ioctl+0x36a/0x480 net/socket.c:1252
 compat_sock_ioctl_trans net/socket.c:3529 [inline]
 compat_sock_ioctl+0xcb8/0xff0 net/socket.c:3555
 __do_compat_sys_ioctl fs/ioctl.c:696 [inline]
 __se_compat_sys_ioctl fs/ioctl.c:639 [inline]
 __ia32_compat_sys_ioctl+0x7f6/0x1270 fs/ioctl.c:639
 ia32_sys_call+0x2d5f/0x4310 arch/x86/include/generated/asm/syscalls_32.h:55
 do_syscall_32_irqs_on arch/x86/entry/syscall_32.c:83 [inline]
 __do_fast_syscall_32+0xb0/0x150 arch/x86/entry/syscall_32.c:306
 do_fast_syscall_32+0x38/0x80 arch/x86/entry/syscall_32.c:331
 do_SYSENTER_32+0x1f/0x30 arch/x86/entry/syscall_32.c:369
 entry_SYSENTER_compat_after_hwframe+0x84/0x8e

Local variable array.i created at:
 rose_kill_by_device net/rose/af_rose.c:185 [inline]
 rose_device_event+0x14b/0xdd0 net/rose/af_rose.c:244
 notifier_call_chain kernel/notifier.c:85 [inline]
 raw_notifier_call_chain+0xe0/0x410 kernel/notifier.c:453

CPU: 0 UID: 0 PID: 12241 Comm: syz.0.2244 Tainted: G        W           syzkaller #0 PREEMPT(none) 
Tainted: [W]=WARN
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
=====================================================

Crashes (1):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2025/09/27 17:55 upstream fec734e8d564 001c9061 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kmsan-gce-386-root KMSAN: uninit-value in rose_device_event
* Struck through repros no longer work on HEAD.