syzbot


Title Repro Cause bisect Fix bisect Count Last Reported Patched Closed Patch
kernel BUG in ext4_writepages C error 4 41d 141d 0/2 never ext4: Avoid crash when inline data creation follows DIO write
KASAN: slab-out-of-bounds Read in exfat_clear_bitmap C error 2 163d 163d 2/2 never 82f723b8a5ad exfat: check if cluster num is valid
kernel BUG in ext4_free_blocks (2) C error 2 86d 86d 0/2 never ext4: block range must be validated before use in ext4_mb_clear_bb()
kernel BUG in ext4_write_inline_data_end (2) C error 1 92d 92d 2/2 never 91f90b571f1a ext4: fix race condition between ext4_write and ext4_convert_inline_data
KASAN: use-after-free Read in mon_bin_flush C error 2 10d 11d 0/2 never usb: mon: make mmapped memory read only
BUG: corrupted list in insert_work C done done 9 73d 173d 2/2 never d007f49ab789 percpu_ref_init(): clean ->percpu_count_ref on failure
kernel BUG in notify_change (3) C error 2 36d 36d 0/2 never ANDROID: incfs: Add check for ATTR_KILL_SUID and ATTR_MODE in incfs_setattr
BUG: corrupted list in process_one_work C error done 2 86d 170d 2/2 never d007f49ab789 percpu_ref_init(): clean ->percpu_count_ref on failure
KASAN: use-after-free Read in compute_effective_progs (2) C error 11 50d 177d 2/2 never 3527e3cbb84d bpf: Fix KASAN use-after-free Read in compute_effective_progs
kernel BUG in tun_attach C error 31 60d 102d 2/2 never bec1be0a745a net: tun: unlink NAPI from device on destruction
KASAN: use-after-free Read in free_netdev C error 2 70d 102d 2/2 never bec1be0a745a net: tun: unlink NAPI from device on destruction
general protection fault in chrdev_open C error 1 112d 111d 0/2 never fs/9p: Don't update file type when updating file attributes
kernel BUG in ext4_ind_remove_space C error 55 139d 250d 2/2 138d 22c450d39f89 ext4: limit length to bitmap_maxbytes - blocksize in punch_hole
kernel BUG in vhost_get_vq_desc C error done 19 197d 242d 2/2 138d 698dc7d13c4e vhost/vsock: don't check owner in vhost_vsock_stop() while releasing
BUG: stack guard page was hit in sys_open (5) 4 152d 157d 2/2 138d 3e45af8a72c0 ANDROID: incremental-fs: limit mount stack depth
BUG: stack guard page was hit in sys_lsetxattr (2) 2 208d 211d 2/2 138d 3e45af8a72c0 ANDROID: incremental-fs: limit mount stack depth
general protection fault in incfs_kill_sb C done 380 214d 216d 2/2 138d 3e45af8a72c0 ANDROID: incremental-fs: limit mount stack depth
BUG: stack guard page was hit in security_file_open 2 157d 209d 2/2 138d 3e45af8a72c0 ANDROID: incremental-fs: limit mount stack depth
BUG: stack guard page was hit in sys_mkdirat syz error 3 139d 173d 2/2 138d 3e45af8a72c0 ANDROID: incremental-fs: limit mount stack depth
BUG: stack guard page was hit in sys_chmod 1 184d 184d 2/2 138d 3e45af8a72c0 ANDROID: incremental-fs: limit mount stack depth
BUG: stack guard page was hit in sys_chown 2 168d 203d 2/2 138d 3e45af8a72c0 ANDROID: incremental-fs: limit mount stack depth
BUG: stack guard page was hit in sys_mknodat 1 166d 166d 2/2 138d 3e45af8a72c0 ANDROID: incremental-fs: limit mount stack depth
BUG: stack guard page was hit in sys_chdir (4) 1 180d 180d 2/2 138d 3e45af8a72c0 ANDROID: incremental-fs: limit mount stack depth
BUG: stack guard page was hit in sys_unlink (8) 1 179d 179d 2/2 138d 3e45af8a72c0 ANDROID: incremental-fs: limit mount stack depth
BUG: stack guard page was hit in sys_listxattr 1 178d 178d 2/2 138d 3e45af8a72c0 ANDROID: incremental-fs: limit mount stack depth
kernel BUG in mpage_prepare_extent_to_map C error 254 161d 329d 2/2 159d 330d0e44fc5a ext4: don't BUG if someone dirty pages without asking ext4 first
KASAN: use-after-free Write in paging64_update_accessed_dirty_bits C error 16 216d 325d 2/2 159d e90518d10c7d KVM: x86/mmu: do compare-and-exchange of gPTE via the user address
kernel BUG in add_grec C error 83 183d 257d 2/2 182d ae8ec5eabb1a net: ipv6: fix skb_over_panic in __ip6_append_data
kernel BUG in iput C error 2 191d 191d 2/2 182d 9eeaa2d7d58a exfat: avoid incorrectly releasing for root inode
KASAN: slab-out-of-bounds Read in packet_recvmsg C error 1 199d 199d 2/2 188d 70b7b3c055fd net/packet: fix slab-out-of-bounds access in packet_recvmsg()
KASAN: use-after-free Write in null_skcipher_crypt 1 249d 249d 2/2 188d 9248694dac20 esp: Fix possible buffer overflow in ESP transformation
BUG: stack guard page was hit in file_open C error 25 206d 284d 2/2 206d 6f915dd2af92 ANDROID: incremental-fs: remove index and incomplete dir on umount
kernel BUG in notify_change C error 3 222d 282d 2/2 206d 6f915dd2af92 ANDROID: incremental-fs: remove index and incomplete dir on umount
KASAN: invalid-free in bitmap_free C error done 1 289d 289d 2/2 206d 7da349f07e45 net/packet: rx_owner_map depends on pg_vec
general protection fault in pending_reads_dispatch_ioctl C error 4 238d 270d 2/2 214d 4b1862e4fc69 ANDROID: incremental-fs: fix GPF in pending_reads_dispatch_ioctl
KASAN: use-after-free Read in hardware_disable C error done 5 245d 248d 2/2 214d 080dbe7e9b86 KVM: x86: Forcibly leave nested virt when SMM state is toggled
BUG: Dentry still in use in unmount C done 1184 216d 229d 2/2 214d 6f915dd2af92 ANDROID: incremental-fs: remove index and incomplete dir on umount
general protection fault in reweight_entity C done 2 226d 284d 1/2 216d 4c47eaa7c828 BACKPORT: sched/fair: Fix fault in reweight_entity
kernel BUG in kvm_mmu_notifier_invalidate_range_end C error done 167 253d 340d 1/2 216d 2fc2c66b9ce4 ANDROID: percpu-rwsem: enable percpu_sem destruction in atomic context
general protection fault in tipc_crypto_key_distr 1 325d 325d 1/2 236d a7d91625863d tipc: check for null after calling kmemdup
KASAN: slab-out-of-bounds Write in legacy_parse_param C error 1 270d 270d 1/2 243d eadde287a62e vfs: fs_context: fix up param length parsing in legacy_parse_param
kernel BUG in cdc_ncm_fill_tx_frame C error 40 275d 341d 1/2 272d 385ffd31ebdb net: cdc_ncm: Allow for dwNtbOutMaxSize to be unset or zero
general protection fault in klist_iter_exit C error 5 290d 326d 1/2 281d c602863ad28e nfc: fix segfault in nfc_genl_dump_devices_done
KASAN: null-ptr-deref Write in prepare_to_wait C error 2 333d 333d 1/2 300d 748786564a35 Revert "io_uring: reinforce cancel on flush during exit"
general protection fault in scsi_queue_rq C error 3 308d 333d 1/2 300d 06cc8187dbb6 scsi: core: Remove command size deduction from scsi_setup_scsi_cmnd()
BUG: Dentry still in use [unmount of ramfs ramfs] C error 3 339d 341d 1/2 300d aee113fcef3a ANDROID: Incremental fs: Fix dentry get/put imbalance on vfs_mkdir() failure
KASAN: use-after-free Write in ext4_stop_mmpd C done 3 336d 338d 1/2 322d b663890d8544 ext4: fix possible UAF when remounting r/o a mmp-protected file system
divide error in genelink_tx_fixup C error 8 333d 338d 1/2 322d 017718dfbb6f usbnet: fix error return code in usbnet_probe()
KASAN: invalid-free in io_commit_cqring C error 3 328d 339d 1/2 327d 3f2c12ec8a3f io_uring: don't take uring_lock during iowq cancel