syzbot


KASAN: use-after-free Read in __dev_queue_xmit (5)

Status: upstream: reported C repro on 2021/10/04 21:37
Subsystems: block
[Documentation on labels]
Reported-by: syzbot+b7be9429f37d15205470@syzkaller.appspotmail.com
First crash: 885d, last: 12d
Cause bisection: introduced by (bisect log) [no-op commit]:
commit 349181b7b86367bfe66341c6fc2708f01c568f0d
Author: Karen Sornek <karen.sornek@intel.com>
Date: Mon Aug 30 08:38:01 2021 +0000

  iavf: Fix static code analysis warning

Crash: KASAN: use-after-free Read in __dev_queue_xmit (log)
Repro: C syz .config
  
Fix bisection: failed (error log, bisect log)
  
Discussions (5)
Title Replies (including bot) Last reply
[syzbot] Monthly block report (Oct 2023) 0 (1) 2023/10/09 09:23
[syzbot] Monthly block report (Sep 2023) 0 (1) 2023/09/07 09:25
[syzbot] Monthly block report (Jul 2023) 0 (1) 2023/07/06 14:17
[syzbot] Monthly block report (Jun 2023) 0 (1) 2023/06/07 09:10
[syzbot] KASAN: use-after-free Read in __dev_queue_xmit (5) 0 (2) 2021/12/13 22:46
Similar bugs (10)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
android-49 KASAN: use-after-free Read in __dev_queue_xmit C 46 1471d 1693d 0/3 public: reported C repro on 2019/04/13 00:00
upstream KASAN: use-after-free Read in __dev_queue_xmit (4) block 1 1224d 1224d 0/25 auto-closed as invalid on 2020/10/23 09:56
upstream KASAN: use-after-free Read in __dev_queue_xmit (2) net C 2 2020d 2020d 6/25 fixed on 2018/06/07 13:52
upstream KASAN: use-after-free Read in __dev_queue_xmit (3) net 11 1887d 1890d 12/25 fixed on 2018/11/12 21:25
linux-6.1 KASAN: use-after-free Read in __dev_queue_xmit origin:upstream C 2 14d 216d 0/3 upstream: reported C repro on 2023/04/29 13:33
linux-5.15 KASAN: use-after-free Read in __dev_queue_xmit origin:upstream C error 1 187d 187d 0/3 upstream: reported C repro on 2023/05/28 17:42
linux-4.19 KASAN: use-after-free Read in __dev_queue_xmit C error 15 274d 945d 0/1 upstream: reported C repro on 2021/04/30 04:08
upstream KASAN: use-after-free Read in __dev_queue_xmit net C 10 2039d 2157d 6/25 fixed on 2018/05/09 07:47
linux-4.14 KASAN: use-after-free Read in __dev_queue_xmit C error 1 447d 659d 0/1 upstream: reported C repro on 2022/02/10 06:42
upstream BUG: unable to handle kernel paging request in __dev_queue_xmit block 1 953d 944d 0/25 auto-closed as invalid on 2021/06/21 04:04
Last patch testing requests (10)
Created Duration User Patch Repo Result
2023/10/13 11:57 23m retest repro git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci report log
2023/10/13 08:27 19m retest repro net-next OK log
2023/10/13 08:27 20m retest repro net-next OK log
2023/10/13 08:27 19m retest repro net-next OK log
2023/10/13 08:27 26m retest repro net-next OK log
2023/10/13 03:50 20m retest repro linux-next error OK
2023/10/13 03:50 20m retest repro linux-next error OK
2023/10/13 03:50 3h52m retest repro linux-next error OK
2023/10/13 02:47 25m retest repro upstream OK log
2023/09/18 16:48 22m retest repro net report log

Sample crash report:
ieee802154 phy0 wpan0: encryption failed: -22
ieee802154 phy1 wpan1: encryption failed: -22
==================================================================
BUG: KASAN: use-after-free in __dev_queue_xmit+0x31a2/0x3650 net/core/dev.c:4190 net/core/dev.c:4190
Read of size 8 at addr ffff8880790a9c08 by task aoe_tx0/1228

CPU: 0 PID: 1228 Comm: aoe_tx0 Not tainted 5.16.0-rc5-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:88 [inline]
 __dump_stack lib/dump_stack.c:88 [inline] lib/dump_stack.c:106
 dump_stack_lvl+0xcd/0x134 lib/dump_stack.c:106 lib/dump_stack.c:106
 print_address_description.constprop.0.cold+0x8d/0x320 mm/kasan/report.c:247 mm/kasan/report.c:247
 __kasan_report mm/kasan/report.c:433 [inline]
 __kasan_report mm/kasan/report.c:433 [inline] mm/kasan/report.c:450
 kasan_report.cold+0x83/0xdf mm/kasan/report.c:450 mm/kasan/report.c:450
 __dev_queue_xmit+0x31a2/0x3650 net/core/dev.c:4190 net/core/dev.c:4190
 tx+0x68/0xb0 drivers/block/aoe/aoenet.c:63 drivers/block/aoe/aoenet.c:63
 kthread+0x1e7/0x3b0 drivers/block/aoe/aoecmd.c:1230 drivers/block/aoe/aoecmd.c:1230
 kthread+0x405/0x4f0 kernel/kthread.c:327 kernel/kthread.c:327
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:295 arch/x86/entry/entry_64.S:295
 </TASK>

Allocated by task 21530:
 kasan_save_stack+0x1e/0x50 mm/kasan/common.c:38 mm/kasan/common.c:38
 kasan_set_track mm/kasan/common.c:46 [inline]
 set_alloc_info mm/kasan/common.c:434 [inline]
 ____kasan_kmalloc mm/kasan/common.c:513 [inline]
 ____kasan_kmalloc mm/kasan/common.c:472 [inline]
 kasan_set_track mm/kasan/common.c:46 [inline] mm/kasan/common.c:522
 set_alloc_info mm/kasan/common.c:434 [inline] mm/kasan/common.c:522
 ____kasan_kmalloc mm/kasan/common.c:513 [inline] mm/kasan/common.c:522
 ____kasan_kmalloc mm/kasan/common.c:472 [inline] mm/kasan/common.c:522
 __kasan_kmalloc+0xa9/0xd0 mm/kasan/common.c:522 mm/kasan/common.c:522
 kmalloc_node include/linux/slab.h:613 [inline]
 kmalloc_node include/linux/slab.h:613 [inline] mm/util.c:587
 kvmalloc_node+0x61/0x120 mm/util.c:587 mm/util.c:587
 kvmalloc include/linux/slab.h:741 [inline]
 kvzalloc include/linux/slab.h:749 [inline]
 netif_alloc_netdev_queues net/core/dev.c:10191 [inline]
 kvmalloc include/linux/slab.h:741 [inline] net/core/dev.c:10886
 kvzalloc include/linux/slab.h:749 [inline] net/core/dev.c:10886
 netif_alloc_netdev_queues net/core/dev.c:10191 [inline] net/core/dev.c:10886
 alloc_netdev_mqs+0x774/0xec0 net/core/dev.c:10886 net/core/dev.c:10886
 rtnl_create_link+0x95a/0xb80 net/core/rtnetlink.c:3183 net/core/rtnetlink.c:3183
 __rtnl_newlink+0xf73/0x1750 net/core/rtnetlink.c:3448 net/core/rtnetlink.c:3448
 rtnl_newlink+0x64/0xa0 net/core/rtnetlink.c:3506 net/core/rtnetlink.c:3506
 rtnetlink_rcv_msg+0x413/0xb80 net/core/rtnetlink.c:5571 net/core/rtnetlink.c:5571
 netlink_rcv_skb+0x153/0x420 net/netlink/af_netlink.c:2496 net/netlink/af_netlink.c:2496
 netlink_unicast_kernel net/netlink/af_netlink.c:1319 [inline]
 netlink_unicast_kernel net/netlink/af_netlink.c:1319 [inline] net/netlink/af_netlink.c:1345
 netlink_unicast+0x533/0x7d0 net/netlink/af_netlink.c:1345 net/netlink/af_netlink.c:1345
 netlink_sendmsg+0x904/0xdf0 net/netlink/af_netlink.c:1921 net/netlink/af_netlink.c:1921
 sock_sendmsg_nosec net/socket.c:704 [inline]
 sock_sendmsg_nosec net/socket.c:704 [inline] net/socket.c:724
 sock_sendmsg+0xcf/0x120 net/socket.c:724 net/socket.c:724
 ____sys_sendmsg+0x6e8/0x810 net/socket.c:2409 net/socket.c:2409
 ___sys_sendmsg+0xf3/0x170 net/socket.c:2463 net/socket.c:2463
 __sys_sendmsg+0xe5/0x1b0 net/socket.c:2492 net/socket.c:2492
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_x64 arch/x86/entry/common.c:50 [inline] arch/x86/entry/common.c:80
 do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x44/0xae

Freed by task 21530:
 kasan_save_stack+0x1e/0x50 mm/kasan/common.c:38 mm/kasan/common.c:38
 kasan_set_track+0x21/0x30 mm/kasan/common.c:46 mm/kasan/common.c:46
 kasan_set_free_info+0x20/0x30 mm/kasan/generic.c:370 mm/kasan/generic.c:370
 ____kasan_slab_free mm/kasan/common.c:366 [inline]
 ____kasan_slab_free mm/kasan/common.c:328 [inline]
 ____kasan_slab_free mm/kasan/common.c:366 [inline] mm/kasan/common.c:374
 ____kasan_slab_free mm/kasan/common.c:328 [inline] mm/kasan/common.c:374
 __kasan_slab_free+0xff/0x130 mm/kasan/common.c:374 mm/kasan/common.c:374
 kasan_slab_free include/linux/kasan.h:235 [inline]
 slab_free_hook mm/slub.c:1723 [inline]
 kasan_slab_free include/linux/kasan.h:235 [inline] mm/slub.c:1749
 slab_free_hook mm/slub.c:1723 [inline] mm/slub.c:1749
 slab_free_freelist_hook+0x8b/0x1c0 mm/slub.c:1749 mm/slub.c:1749
 slab_free mm/slub.c:3513 [inline]
 slab_free mm/slub.c:3513 [inline] mm/slub.c:4561
 kfree+0xf6/0x560 mm/slub.c:4561 mm/slub.c:4561
 kvfree+0x42/0x50 mm/util.c:620 mm/util.c:620
 netif_free_tx_queues net/core/dev.c:10179 [inline]
 netif_free_tx_queues net/core/dev.c:10179 [inline] net/core/dev.c:10943
 free_netdev+0xa7/0x5a0 net/core/dev.c:10943 net/core/dev.c:10943
 netdev_run_todo+0x882/0xa80 net/core/dev.c:10632 net/core/dev.c:10632
 rtnl_unlock net/core/rtnetlink.c:112 [inline]
 rtnl_unlock net/core/rtnetlink.c:112 [inline] net/core/rtnetlink.c:5572
 rtnetlink_rcv_msg+0x420/0xb80 net/core/rtnetlink.c:5572 net/core/rtnetlink.c:5572
 netlink_rcv_skb+0x153/0x420 net/netlink/af_netlink.c:2496 net/netlink/af_netlink.c:2496
 netlink_unicast_kernel net/netlink/af_netlink.c:1319 [inline]
 netlink_unicast_kernel net/netlink/af_netlink.c:1319 [inline] net/netlink/af_netlink.c:1345
 netlink_unicast+0x533/0x7d0 net/netlink/af_netlink.c:1345 net/netlink/af_netlink.c:1345
 netlink_sendmsg+0x904/0xdf0 net/netlink/af_netlink.c:1921 net/netlink/af_netlink.c:1921
 sock_sendmsg_nosec net/socket.c:704 [inline]
 sock_sendmsg_nosec net/socket.c:704 [inline] net/socket.c:724
 sock_sendmsg+0xcf/0x120 net/socket.c:724 net/socket.c:724
 ____sys_sendmsg+0x6e8/0x810 net/socket.c:2409 net/socket.c:2409
 ___sys_sendmsg+0xf3/0x170 net/socket.c:2463 net/socket.c:2463
 __sys_sendmsg+0xe5/0x1b0 net/socket.c:2492 net/socket.c:2492
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_x64 arch/x86/entry/common.c:50 [inline] arch/x86/entry/common.c:80
 do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x44/0xae

The buggy address belongs to the object at ffff8880790a9c00
 which belongs to the cache kmalloc-cg-512 of size 512
The buggy address is located 8 bytes inside of
 512-byte region [ffff8880790a9c00, ffff8880790a9e00)
The buggy address belongs to the page:
page:ffffea0001e42a00 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff8880790abc00 pfn:0x790a8
head:ffffea0001e42a00 order:2 compound_mapcount:0 compound_pincount:0
flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
raw: 00fff00000010200 ffffea0000738708 ffffea0001f49208 ffff888010c42dc0
raw: ffff8880790abc00 000000000010000e 00000001ffffffff 0000000000000000
page dumped because: kasan: bad access detected
page_owner tracks the page as allocated
page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 2975, ts 28321092312, free_ts 27493577443
 prep_new_page mm/page_alloc.c:2418 [inline]
 prep_new_page mm/page_alloc.c:2418 [inline] mm/page_alloc.c:4149
 get_page_from_freelist+0xa72/0x2f50 mm/page_alloc.c:4149 mm/page_alloc.c:4149
 __alloc_pages+0x1b2/0x500 mm/page_alloc.c:5369 mm/page_alloc.c:5369
 alloc_pages+0x1a7/0x300 mm/mempolicy.c:2191 mm/mempolicy.c:2191
 alloc_slab_page mm/slub.c:1793 [inline]
 allocate_slab mm/slub.c:1930 [inline]
 alloc_slab_page mm/slub.c:1793 [inline] mm/slub.c:1993
 allocate_slab mm/slub.c:1930 [inline] mm/slub.c:1993
 new_slab+0x32d/0x4a0 mm/slub.c:1993 mm/slub.c:1993
 ___slab_alloc+0x918/0xfe0 mm/slub.c:3022 mm/slub.c:3022
 __slab_alloc.constprop.0+0x4d/0xa0 mm/slub.c:3109 mm/slub.c:3109
 slab_alloc_node mm/slub.c:3200 [inline]
 slab_alloc_node mm/slub.c:3200 [inline] mm/slub.c:4956
 __kmalloc_node_track_caller+0x2cb/0x360 mm/slub.c:4956 mm/slub.c:4956
 kmalloc_reserve net/core/skbuff.c:354 [inline]
 kmalloc_reserve net/core/skbuff.c:354 [inline] net/core/skbuff.c:426
 __alloc_skb+0xde/0x340 net/core/skbuff.c:426 net/core/skbuff.c:426
 alloc_skb include/linux/skbuff.h:1127 [inline]
 alloc_skb include/linux/skbuff.h:1127 [inline] net/core/skbuff.c:6078
 alloc_skb_with_frags+0x93/0x620 net/core/skbuff.c:6078 net/core/skbuff.c:6078
 sock_alloc_send_pskb+0x783/0x910 net/core/sock.c:2575 net/core/sock.c:2575
 unix_dgram_sendmsg+0x3ec/0x1950 net/unix/af_unix.c:1811 net/unix/af_unix.c:1811
 sock_sendmsg_nosec net/socket.c:704 [inline]
 sock_sendmsg_nosec net/socket.c:704 [inline] net/socket.c:724
 sock_sendmsg+0xcf/0x120 net/socket.c:724 net/socket.c:724
 sock_write_iter+0x289/0x3c0 net/socket.c:1057 net/socket.c:1057
 call_write_iter include/linux/fs.h:2162 [inline]
 call_write_iter include/linux/fs.h:2162 [inline] fs/read_write.c:503
 new_sync_write+0x429/0x660 fs/read_write.c:503 fs/read_write.c:503
 vfs_write+0x7cd/0xae0 fs/read_write.c:590 fs/read_write.c:590
 ksys_write+0x1ee/0x250 fs/read_write.c:643 fs/read_write.c:643
page last free stack trace:
 reset_page_owner include/linux/page_owner.h:24 [inline]
 free_pages_prepare mm/page_alloc.c:1338 [inline]
 reset_page_owner include/linux/page_owner.h:24 [inline] mm/page_alloc.c:1389
 free_pages_prepare mm/page_alloc.c:1338 [inline] mm/page_alloc.c:1389
 free_pcp_prepare+0x374/0x870 mm/page_alloc.c:1389 mm/page_alloc.c:1389
 free_unref_page_prepare mm/page_alloc.c:3309 [inline]
 free_unref_page_prepare mm/page_alloc.c:3309 [inline] mm/page_alloc.c:3388
 free_unref_page+0x19/0x690 mm/page_alloc.c:3388 mm/page_alloc.c:3388
 qlink_free mm/kasan/quarantine.c:146 [inline]
 qlink_free mm/kasan/quarantine.c:146 [inline] mm/kasan/quarantine.c:165
 qlist_free_all+0x5a/0xc0 mm/kasan/quarantine.c:165 mm/kasan/quarantine.c:165
 kasan_quarantine_reduce+0x180/0x200 mm/kasan/quarantine.c:272 mm/kasan/quarantine.c:272
 __kasan_slab_alloc+0xa2/0xc0 mm/kasan/common.c:444 mm/kasan/common.c:444
 kasan_slab_alloc include/linux/kasan.h:259 [inline]
 slab_post_alloc_hook mm/slab.h:519 [inline]
 slab_alloc_node mm/slub.c:3234 [inline]
 slab_alloc mm/slub.c:3242 [inline]
 kasan_slab_alloc include/linux/kasan.h:259 [inline] mm/slub.c:3247
 slab_post_alloc_hook mm/slab.h:519 [inline] mm/slub.c:3247
 slab_alloc_node mm/slub.c:3234 [inline] mm/slub.c:3247
 slab_alloc mm/slub.c:3242 [inline] mm/slub.c:3247
 kmem_cache_alloc+0x142/0x3a0 mm/slub.c:3247 mm/slub.c:3247
 shmem_alloc_inode+0x18/0x40 mm/shmem.c:3717 mm/shmem.c:3717
 alloc_inode+0x61/0x230 fs/inode.c:235 fs/inode.c:235
 new_inode_pseudo fs/inode.c:944 [inline]
 new_inode_pseudo fs/inode.c:944 [inline] fs/inode.c:973
 new_inode+0x27/0x2f0 fs/inode.c:973 fs/inode.c:973
 shmem_get_inode+0x195/0xc60 mm/shmem.c:2289 mm/shmem.c:2289
 shmem_mknod+0x5a/0x1f0 mm/shmem.c:2828 mm/shmem.c:2828
 lookup_open.isra.0+0xfe4/0x13d0 fs/namei.c:3280 fs/namei.c:3280
 open_last_lookups fs/namei.c:3350 [inline]
 open_last_lookups fs/namei.c:3350 [inline] fs/namei.c:3556
 path_openat+0x9b8/0x2750 fs/namei.c:3556 fs/namei.c:3556
 do_filp_open+0x1aa/0x400 fs/namei.c:3586 fs/namei.c:3586
 do_sys_openat2+0x16d/0x4d0 fs/open.c:1212 fs/open.c:1212
 do_sys_open fs/open.c:1228 [inline]
 __do_sys_openat fs/open.c:1244 [inline]
 __se_sys_openat fs/open.c:1239 [inline]
 do_sys_open fs/open.c:1228 [inline] fs/open.c:1239
 __do_sys_openat fs/open.c:1244 [inline] fs/open.c:1239
 __se_sys_openat fs/open.c:1239 [inline] fs/open.c:1239
 __x64_sys_openat+0x13f/0x1f0 fs/open.c:1239 fs/open.c:1239

Memory state around the buggy address:
 ffff8880790a9b00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
 ffff8880790a9b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
>ffff8880790a9c00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
                      ^
 ffff8880790a9c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
 ffff8880790a9d00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
==================================================================

Crashes (42):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2021/12/21 07:28 net-old 75a2f3152009 62bd192b .config console log report syz C ci-upstream-net-this-kasan-gce KASAN: use-after-free Read in __dev_queue_xmit
2022/07/09 07:15 linux-next cb71b93c2dc3 b5765a15 .config console log report syz C ci-upstream-linux-next-kasan-gce-root KASAN: use-after-free Read in __dev_queue_xmit
2022/05/23 08:37 linux-next 18ecd30af1a8 7268fa62 .config console log report syz C ci-upstream-linux-next-kasan-gce-root KASAN: use-after-free Read in __dev_queue_xmit
2022/05/15 12:39 linux-next 1e1b28b936ae 744a39e2 .config console log report syz C ci-upstream-linux-next-kasan-gce-root KASAN: use-after-free Read in __dev_queue_xmit
2023/03/02 17:03 net-old fb07390463c9 f8902b57 .config console log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce KASAN: slab-use-after-free Read in __dev_queue_xmit
2023/05/28 17:49 git://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git for-kernelci eb0f1697d729 cf184559 .config console log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-gce-arm64 KASAN: slab-use-after-free Read in __dev_queue_xmit
2022/05/15 14:31 upstream 2fe1020d73ca 744a39e2 .config console log report syz C ci-upstream-kasan-gce-smack-root KASAN: use-after-free Read in __dev_queue_xmit
2022/05/16 09:39 net-next-old d9713088158b 744a39e2 .config console log report syz C ci-upstream-net-kasan-gce KASAN: use-after-free Read in __dev_queue_xmit
2022/01/20 08:11 net-next-old fe8152b38d3a 5da9499f .config console log report syz C ci-upstream-net-kasan-gce KASAN: use-after-free Read in __dev_queue_xmit
2021/12/26 07:01 net-next-old 7c63f26cb518 6caa12e4 .config console log report syz C ci-upstream-net-kasan-gce KASAN: use-after-free Read in __dev_queue_xmit
2021/12/13 22:45 net-next-old 9b5bcb193a3b 49ca1f59 .config console log report syz C ci-upstream-net-kasan-gce KASAN: use-after-free Read in __dev_queue_xmit
2023/09/04 16:17 upstream 708283abf896 8bc9053e .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-root KASAN: use-after-free Read in __dev_queue_xmit
2022/01/12 23:40 upstream f079ab01b560 44d1319a .config console log report info ci-upstream-kasan-gce-smack-root KASAN: use-after-free Read in __dev_queue_xmit
2021/11/24 04:15 upstream 5d9f4cf36721 545ab074 .config console log report info ci-upstream-kasan-gce-smack-root KASAN: use-after-free Read in __dev_queue_xmit
2021/11/21 01:12 upstream a90af8f15bdc 4eb20a4e .config console log report info ci-upstream-kasan-gce-selinux-root KASAN: use-after-free Read in __dev_queue_xmit
2021/10/25 13:51 upstream 87066fdd2e30 4f0000ee .config console log report info ci-upstream-kasan-gce-root KASAN: use-after-free Read in __dev_queue_xmit
2021/09/29 05:10 upstream a4e6f95a891a d82cb927 .config console log report info ci-upstream-kasan-gce-root KASAN: use-after-free Read in __dev_queue_xmit
2021/08/30 17:36 upstream 7d2a07b76933 8f58a0ef .config console log report info ci-upstream-kasan-gce-smack-root KASAN: use-after-free Read in __dev_queue_xmit
2021/06/28 21:51 upstream 62fb9874f5da 9d2ab5df .config console log report info ci-upstream-kasan-gce-smack-root KASAN: use-after-free Read in __dev_queue_xmit
2023/10/27 08:28 net c17cda15cc86 bf285f0c .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-this-kasan-gce KASAN: use-after-free Read in __dev_queue_xmit
2022/09/14 05:24 net-old 0727a9a5fbc1 b884348d .config console log report info [disk image] [vmlinux] ci-upstream-net-this-kasan-gce KASAN: use-after-free Read in __dev_queue_xmit
2022/08/23 00:19 net-old 3c53cd65dece 26a13b38 .config console log report info ci-upstream-net-this-kasan-gce KASAN: use-after-free Read in __dev_queue_xmit
2022/06/24 06:50 net-old 12378a5a75e3 912f5df7 .config console log report info ci-upstream-net-this-kasan-gce KASAN: use-after-free Read in __dev_queue_xmit
2022/05/23 20:04 net-old 8c3b8dc5cc9b 4c7657cb .config console log report info ci-upstream-net-this-kasan-gce KASAN: use-after-free Read in __dev_queue_xmit
2022/04/10 16:10 net-old 8d3a6c37d50d e22c3da3 .config console log report info ci-upstream-net-this-kasan-gce KASAN: use-after-free Read in __dev_queue_xmit
2021/09/25 11:08 net-old 7fe7f3182a0d 8cac236e .config console log report info ci-upstream-net-this-kasan-gce KASAN: use-after-free Read in __dev_queue_xmit
2022/11/05 02:24 net-next-old fbeb229a6622 6d752409 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-kasan-gce KASAN: use-after-free Read in __dev_queue_xmit
2022/09/21 20:53 net-next-old c29b06821590 380f82fb .config console log report info [disk image] [vmlinux] ci-upstream-net-kasan-gce KASAN: use-after-free Read in __dev_queue_xmit
2022/08/10 07:21 net-next-old 3c47fb2f4c4d c2a623d6 .config console log report info ci-upstream-net-kasan-gce KASAN: use-after-free Read in __dev_queue_xmit
2022/07/19 20:43 net-next-old e22c88799f26 72a3cc0c .config console log report info ci-upstream-net-kasan-gce KASAN: use-after-free Read in __dev_queue_xmit
2021/08/09 20:18 linux-next da454ebf578f 6972b106 .config console log report info ci-upstream-linux-next-kasan-gce-root KASAN: use-after-free Read in __dev_queue_xmit
2023/11/19 09:00 upstream 05aa69b096a0 cb976f63 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-root KASAN: slab-use-after-free Read in __dev_queue_xmit
2023/10/22 21:07 upstream fe3cfe869d5e 361b23dc .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-badwrites-root KASAN: slab-use-after-free Read in __dev_queue_xmit
2023/09/20 22:48 upstream 5d2f53532ecc 0b6a67ac .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root KASAN: slab-use-after-free Read in __dev_queue_xmit
2023/10/15 10:39 upstream 9a3dad63edbe f757a323 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm32 Internal error in __dev_queue_xmit
2023/09/29 02:46 upstream 633b47cb009d d265efd8 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu2-arm32 Internal error in __dev_queue_xmit
2023/06/22 12:35 upstream dad9774deaf1 09ffe269 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-smack-root KASAN: slab-use-after-free Read in __dev_queue_xmit
2023/04/14 05:55 upstream 44149752e998 3cfcaa1b .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root KASAN: slab-use-after-free Read in __dev_queue_xmit
2023/08/18 21:07 upstream 8abd7287db92 d216d8a0 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-386 KASAN: slab-use-after-free Read in __dev_queue_xmit
2023/09/04 16:34 net-next bd6c11bc43c4 8bc9053e .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-net-kasan-gce KASAN: slab-use-after-free Read in __dev_queue_xmit
2023/08/26 00:20 linux-next 626932085009 03d9c195 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root KASAN: slab-use-after-free Read in __dev_queue_xmit
2023/04/08 09:35 linux-next e134c93f788f 71147e29 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-linux-next-kasan-gce-root KASAN: slab-use-after-free Read in __dev_queue_xmit
* Struck through repros no longer work on HEAD.