syzbot

 sign-in | mailing list | source | docs
🐞 Open [1413]
Subsystems
🐞 Fixed [5827]
🐞 Invalid [14217]
Missing Backports [92]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

KASAN: use-after-free Read in v4l2_fh_init

Status: upstream: reported C repro on 2019/04/19 14:36
Subsystems: usb media
[Documentation on labels]
Reported-by: syzbot+c025d34b8eaa54c571b8@syzkaller.appspotmail.com
First crash: 2043d, last: 30m
Cause bisection: failed (error log, bisect log)
  
Fix bisection the fix commit could be any of (bisect log):
  4010a528219e Merge tag 'fixes_for_v5.14-rc4' of git://git.kernel.org/pub/scm/linux/kernel/git/jack/linux-fs
  3cc40a443a04 Merge tag 'nios2_fixes_v6.0' of git://git.kernel.org/pub/scm/linux/kernel/git/dinguyen/linux
   
Discussions (17)
Title Replies (including bot) Last reply
[syzbot] Monthly usb report (Nov 2024) 0 (1) 2024/11/15 14:42
[syzbot] Monthly media report (Oct 2024) 0 (1) 2024/10/17 07:41
[syzbot] Monthly media report (Sep 2024) 0 (1) 2024/09/16 12:28
[syzbot] Monthly media report (Aug 2024) 0 (1) 2024/08/16 19:57
[syzbot] Monthly usb report (Jul 2024) 0 (1) 2024/07/11 07:30
[syzbot] Monthly usb report (Jun 2024) 0 (1) 2024/06/10 11:56
[syzbot] Monthly usb report (May 2024) 0 (1) 2024/05/10 08:47
[syzbot] Monthly usb report (Apr 2024) 0 (1) 2024/04/08 12:51
[syzbot] Monthly usb report (Feb 2024) 0 (1) 2024/02/05 20:59
[syzbot] Monthly usb report (Jan 2024) 0 (1) 2024/01/05 13:17
[syzbot] Monthly usb report (Dec 2023) 0 (1) 2023/12/05 09:53
[syzbot] Monthly usb report (Nov 2023) 0 (1) 2023/11/03 20:48
[syzbot] Monthly media report (Oct 2023) 0 (1) 2023/10/09 12:45
[syzbot] Monthly media report (Sep 2023) 0 (1) 2023/09/06 08:13
KASAN: use-after-free Read in v4l2_fh_init 2 (3) 2020/12/02 11:21
Reminder: 35 open syzbot bugs in media subsystem 1 (1) 2019/07/24 01:39
Reminder: 28 open syzbot bugs in media subsystem 1 (1) 2019/06/27 03:53
Last patch testing requests (16)
Created Duration User Patch Repo Result
2024/07/20 19:23 25m retest repro upstream OK log
2024/07/20 19:23 34m retest repro upstream OK log
2024/07/20 19:23 24m retest repro upstream report log
2024/07/20 19:23 26m retest repro upstream report log
2024/07/20 19:23 24m retest repro upstream report log
2024/07/20 19:13 22m retest repro https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing OK log
2024/07/06 15:19 15m retest repro upstream report log
2024/07/06 15:19 17m retest repro upstream report log
2024/07/06 15:19 18m retest repro upstream report log
2024/07/06 15:19 19m retest repro upstream report log
2020/10/18 21:01 17m rkovhaev@gmail.com patch git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git v5.9 OK
2020/10/18 19:51 10m rkovhaev@gmail.com patch git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git v5.9 report log
2020/10/18 16:58 10m rkovhaev@gmail.com patch git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git v5.9 report log
2020/10/11 19:54 9m rkovhaev@gmail.com patch upstream report log
2020/10/11 17:38 9m rkovhaev@gmail.com patch upstream report log
2020/10/11 16:12 9m rkovhaev@gmail.com upstream report log
Fix bisection attempts (10)
Created Duration User Patch Repo Result
2022/08/17 10:41 30m bisect fix upstream OK (2) job log
2022/07/08 16:46 21m bisect fix upstream OK (0) job log log
2022/06/08 16:17 28m bisect fix upstream OK (0) job log log
2022/05/09 12:53 20m bisect fix upstream OK (0) job log log
2022/02/13 03:21 20m bisect fix upstream OK (0) job log log
2021/12/05 03:04 21m bisect fix upstream OK (0) job log log
2021/11/05 02:39 24m bisect fix upstream OK (0) job log log
2021/10/04 09:38 21m bisect fix upstream OK (0) job log log
2021/08/29 00:45 20m bisect fix upstream OK (0) job log log
2021/05/22 07:25 23m bisect fix upstream OK (0) job log log

Sample crash report:
==================================================================
BUG: KASAN: use-after-free in v4l2_fh_init+0x279/0x2c0 drivers/media/v4l2-core/v4l2-fh.c:25
Read of size 8 at addr ffff88803fae88b8 by task v4l_id/8601

CPU: 1 PID: 8601 Comm: v4l_id Not tainted 5.14.0-rc3-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0xcd/0x134 lib/dump_stack.c:105
 print_address_description.constprop.0.cold+0x6c/0x2d6 mm/kasan/report.c:233
 __kasan_report mm/kasan/report.c:419 [inline]
 kasan_report.cold+0x83/0xdf mm/kasan/report.c:436
 v4l2_fh_init+0x279/0x2c0 drivers/media/v4l2-core/v4l2-fh.c:25
 v4l2_fh_open+0x88/0xc0 drivers/media/v4l2-core/v4l2-fh.c:63
 em28xx_v4l2_open+0x11c/0x570 drivers/media/usb/em28xx/em28xx-video.c:2163
 v4l2_open+0x21c/0x3f0 drivers/media/v4l2-core/v4l2-dev.c:427
 chrdev_open+0x266/0x770 fs/char_dev.c:414
 do_dentry_open+0x4c8/0x11d0 fs/open.c:826
 do_open fs/namei.c:3374 [inline]
 path_openat+0x1c23/0x27f0 fs/namei.c:3507
 do_filp_open+0x1aa/0x400 fs/namei.c:3534
 do_sys_openat2+0x16d/0x420 fs/open.c:1204
 do_sys_open fs/open.c:1220 [inline]
 __do_sys_open fs/open.c:1228 [inline]
 __se_sys_open fs/open.c:1224 [inline]
 __x64_sys_open+0x119/0x1c0 fs/open.c:1224
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f3821706840
Code: 73 01 c3 48 8b 0d 68 77 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 89 bb 20 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24
RSP: 002b:00007ffe30e806c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
RAX: ffffffffffffffda RBX: 00007ffe30e80838 RCX: 00007f3821706840
RDX: 00007f38216f2ea0 RSI: 0000000000000000 RDI: 00007ffe30e81f1e
RBP: 0000000000000003 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000002 R11: 0000000000000246 R12: 00005578438148d0
R13: 00007ffe30e80830 R14: 0000000000000000 R15: 0000000000000000

Allocated by task 8478:
 kasan_save_stack+0x1b/0x40 mm/kasan/common.c:38
 kasan_set_track mm/kasan/common.c:46 [inline]
 set_alloc_info mm/kasan/common.c:434 [inline]
 ____kasan_kmalloc mm/kasan/common.c:513 [inline]
 ____kasan_kmalloc mm/kasan/common.c:472 [inline]
 __kasan_kmalloc+0x98/0xc0 mm/kasan/common.c:522
 kasan_kmalloc include/linux/kasan.h:264 [inline]
 kmem_cache_alloc_trace+0x1e4/0x480 mm/slab.c:3575
 kmalloc include/linux/slab.h:591 [inline]
 kzalloc include/linux/slab.h:721 [inline]
 em28xx_v4l2_init drivers/media/usb/em28xx/em28xx-video.c:2542 [inline]
 em28xx_v4l2_init.cold+0x93/0x329d drivers/media/usb/em28xx/em28xx-video.c:2520
 em28xx_init_extension+0x12f/0x1f0 drivers/media/usb/em28xx/em28xx-core.c:1126
 request_module_async+0x5d/0x70 drivers/media/usb/em28xx/em28xx-cards.c:3410
 process_one_work+0x98d/0x1630 kernel/workqueue.c:2276
 worker_thread+0x658/0x11f0 kernel/workqueue.c:2422
 kthread+0x3e5/0x4d0 kernel/kthread.c:319
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:295

Freed by task 8478:
 kasan_save_stack+0x1b/0x40 mm/kasan/common.c:38
 kasan_set_track+0x1c/0x30 mm/kasan/common.c:46
 kasan_set_free_info+0x20/0x30 mm/kasan/generic.c:360
 ____kasan_slab_free mm/kasan/common.c:366 [inline]
 ____kasan_slab_free mm/kasan/common.c:328 [inline]
 __kasan_slab_free+0xcd/0x100 mm/kasan/common.c:374
 kasan_slab_free include/linux/kasan.h:230 [inline]
 __cache_free mm/slab.c:3445 [inline]
 kfree+0x106/0x2c0 mm/slab.c:3803
 kref_put.isra.0+0x6f/0xa0 include/linux/kref.h:65
 em28xx_v4l2_init drivers/media/usb/em28xx/em28xx-video.c:2911 [inline]
 em28xx_v4l2_init.cold+0x263/0x329d drivers/media/usb/em28xx/em28xx-video.c:2520
 em28xx_init_extension+0x12f/0x1f0 drivers/media/usb/em28xx/em28xx-core.c:1126
 request_module_async+0x5d/0x70 drivers/media/usb/em28xx/em28xx-cards.c:3410
 process_one_work+0x98d/0x1630 kernel/workqueue.c:2276
 worker_thread+0x658/0x11f0 kernel/workqueue.c:2422
 kthread+0x3e5/0x4d0 kernel/kthread.c:319
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:295

The buggy address belongs to the object at ffff88803fae8000
 which belongs to the cache kmalloc-16k of size 16384
The buggy address is located 2232 bytes inside of
 16384-byte region [ffff88803fae8000, ffff88803faec000)
The buggy address belongs to the page:
page:ffffea0000feba00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3fae8
head:ffffea0000feba00 order:3 compound_mapcount:0 compound_pincount:0
flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
raw: 00fff00000010200 ffffea0000f4d408 ffff888010841c50 ffff888010840b00
raw: 0000000000000000 ffff88803fae8000 0000000100000001 0000000000000000
page dumped because: kasan: bad access detected
page_owner tracks the page as allocated
page last allocated via order 3, migratetype Unmovable, gfp_mask 0x2420c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_COMP|__GFP_THISNODE), pid 8478, ts 92658518419, free_ts 82645319032
 prep_new_page mm/page_alloc.c:2436 [inline]
 get_page_from_freelist+0xa72/0x2f80 mm/page_alloc.c:4169
 __alloc_pages+0x1b2/0x500 mm/page_alloc.c:5391
 __alloc_pages_node include/linux/gfp.h:570 [inline]
 kmem_getpages mm/slab.c:1377 [inline]
 cache_grow_begin+0x75/0x460 mm/slab.c:2593
 cache_alloc_refill+0x27f/0x380 mm/slab.c:2965
 ____cache_alloc mm/slab.c:3048 [inline]
 ____cache_alloc mm/slab.c:3031 [inline]
 __do_cache_alloc mm/slab.c:3275 [inline]
 slab_alloc mm/slab.c:3316 [inline]
 kmem_cache_alloc_trace+0x38c/0x480 mm/slab.c:3573
 kmalloc include/linux/slab.h:591 [inline]
 kzalloc include/linux/slab.h:721 [inline]
 em28xx_v4l2_init drivers/media/usb/em28xx/em28xx-video.c:2542 [inline]
 em28xx_v4l2_init.cold+0x93/0x329d drivers/media/usb/em28xx/em28xx-video.c:2520
 em28xx_init_extension+0x12f/0x1f0 drivers/media/usb/em28xx/em28xx-core.c:1126
 request_module_async+0x5d/0x70 drivers/media/usb/em28xx/em28xx-cards.c:3410
 process_one_work+0x98d/0x1630 kernel/workqueue.c:2276
 worker_thread+0x658/0x11f0 kernel/workqueue.c:2422
 kthread+0x3e5/0x4d0 kernel/kthread.c:319
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:295
page last free stack trace:
 reset_page_owner include/linux/page_owner.h:24 [inline]
 free_pages_prepare mm/page_alloc.c:1346 [inline]
 free_pcp_prepare+0x2c5/0x780 mm/page_alloc.c:1397
 free_unref_page_prepare mm/page_alloc.c:3332 [inline]
 free_unref_page+0x19/0x690 mm/page_alloc.c:3411
 __put_page+0xf9/0x3f0 mm/swap.c:127
 put_page include/linux/mm.h:1246 [inline]
 page_to_skb+0x977/0xc60 drivers/net/virtio_net.c:497
 receive_mergeable drivers/net/virtio_net.c:1031 [inline]
 receive_buf+0x335b/0x6310 drivers/net/virtio_net.c:1141
 virtnet_receive drivers/net/virtio_net.c:1433 [inline]
 virtnet_poll+0x5bf/0x11c0 drivers/net/virtio_net.c:1542
 __napi_poll+0xaf/0x440 net/core/dev.c:7047
 napi_poll net/core/dev.c:7114 [inline]
 net_rx_action+0x801/0xb40 net/core/dev.c:7201
 __do_softirq+0x29b/0x9c2 kernel/softirq.c:558
 invoke_softirq kernel/softirq.c:432 [inline]
 __irq_exit_rcu+0x16e/0x1c0 kernel/softirq.c:636
 irq_exit_rcu+0x5/0x20 kernel/softirq.c:648
 common_interrupt+0xa4/0xd0 arch/x86/kernel/irq.c:240
 asm_common_interrupt+0x1e/0x40 arch/x86/include/asm/idtentry.h:629
 native_safe_halt arch/x86/include/asm/irqflags.h:51 [inline]
 arch_safe_halt arch/x86/include/asm/irqflags.h:89 [inline]
 acpi_safe_halt drivers/acpi/processor_idle.c:109 [inline]
 acpi_idle_do_entry+0x1c6/0x250 drivers/acpi/processor_idle.c:553
 acpi_idle_enter+0x361/0x500 drivers/acpi/processor_idle.c:688
 cpuidle_enter_state+0x1b1/0xc80 drivers/cpuidle/cpuidle.c:237

Memory state around the buggy address:
 ffff88803fae8780: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
 ffff88803fae8800: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
>ffff88803fae8880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
                                        ^
 ffff88803fae8900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
 ffff88803fae8980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
==================================================================

Crashes (1126):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2021/07/29 09:59 upstream 4010a528219e 9a4781d4 .config console log report syz C ci-upstream-kasan-gce-selinux-root KASAN: use-after-free Read in v4l2_fh_init
2021/06/09 20:21 upstream 368094df48e6 84fe5d96 .config console log report syz C ci-upstream-kasan-gce-root KASAN: use-after-free Read in v4l2_fh_init
2021/02/15 18:31 upstream f40ddce88593 98682e5e .config console log report syz C ci-upstream-kasan-gce-selinux-root KASAN: use-after-free Read in v4l2_fh_init
2021/02/03 18:54 upstream 3aaf0a27ffc2 624dad51 .config console log report syz C ci-upstream-kasan-gce-root KASAN: use-after-free Read in v4l2_fh_init
2022/07/17 01:24 upstream 4a57a8400075 95cb00d1 .config console log report syz C ci-qemu-upstream KASAN: use-after-free Read in v4l2_fh_init
2022/04/04 06:07 upstream 09bb8856d4a7 79a2a8fc .config console log report syz C ci-qemu-upstream KASAN: use-after-free Read in v4l2_fh_init
2022/03/26 13:27 upstream cb7cbaae7fd9 89bc8608 .config console log report syz C ci-qemu-upstream KASAN: use-after-free Read in v4l2_fh_init
2022/03/21 16:48 upstream f443e374ae13 e2d91b1d .config console log report syz C ci-qemu-upstream KASAN: use-after-free Read in v4l2_fh_init
2022/03/14 21:38 upstream 09688c0166e7 9e8eaa75 .config console log report syz C ci-qemu-upstream KASAN: use-after-free Read in v4l2_fh_init
2022/03/07 15:07 upstream ffb217a13a2e 7bdd8b2c .config console log report syz C ci-qemu-upstream KASAN: use-after-free Read in v4l2_fh_init
2022/03/07 14:28 upstream ffb217a13a2e 7bdd8b2c .config console log report syz C ci-qemu-upstream KASAN: use-after-free Read in v4l2_fh_init
2021/07/09 16:27 linux-next 92510a7fd93c 281e815f .config console log report syz C ci-upstream-linux-next-kasan-gce-root KASAN: use-after-free Read in v4l2_fh_init
2021/07/05 22:42 linux-next a1f92694393a 55aa55c2 .config console log report syz C ci-upstream-linux-next-kasan-gce-root KASAN: use-after-free Read in v4l2_fh_init
2021/06/25 21:08 linux-next a1f92694393a ae6bf8dd .config console log report syz C ci-upstream-linux-next-kasan-gce-root KASAN: use-after-free Read in v4l2_fh_init
2021/03/31 00:14 linux-next 931294922e65 6a81331a .config console log report syz C ci-upstream-linux-next-kasan-gce-root KASAN: use-after-free Read in v4l2_fh_init
2024/10/31 20:20 upstream 0fc810ae3ae1 96eb609f .config strace log report syz / log C [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root KASAN: slab-use-after-free Read in v4l2_fh_init
2023/06/08 19:47 upstream 5f63595ebd82 058b3a5a .config console log report syz C [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream KASAN: slab-use-after-free Read in v4l2_fh_init
2023/06/08 08:08 upstream a27648c74210 058b3a5a .config console log report syz C [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/11 14:19 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing de9df030ccb5 0c4b1325 .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/11 00:57 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing de9df030ccb5 6b856513 .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/07 13:43 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 226ff2e681d0 867e44df .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/05 13:21 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 85c4efbe6088 da38b4c9 .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/02 03:58 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing c67e9601e29a f00eed24 .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/10/31 22:16 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing c67e9601e29a 96eb609f .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/10/25 01:31 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing c6d9e43954bf c79b8ca5 .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/10/22 03:28 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing c6d9e43954bf f1e4447c .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/10/20 05:42 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 07b887f8236e cd6fc0a3 .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/10/17 19:08 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 07b887f8236e 666f77ed .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/10/09 21:45 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 4a9fe2a8ac53 56fb2cb7 .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/10/03 17:28 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 9852d85ec9d4 d7906eff .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/10/03 17:01 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 9852d85ec9d4 d7906eff .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/10/03 16:34 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 9852d85ec9d4 d7906eff .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/10/03 00:28 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 9852d85ec9d4 02f9582a .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/09/30 22:36 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 9852d85ec9d4 bbd4e0a4 .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/09/25 12:03 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 68d4209158f4 349a68c4 .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/09/13 21:16 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 68d4209158f4 b58f933c .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/08/21 15:23 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing ca7df2c7bb5f db5852f9 .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/07/26 06:42 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 933069701c1b 3f86dfed .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2020/12/18 23:23 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 5e60366d56c6 04201c06 .config console log report syz C ci2-upstream-usb
2020/12/18 04:23 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 5e60366d56c6 04201c06 .config console log report syz C ci2-upstream-usb
2020/12/12 00:14 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing a256e24021bf bca53db9 .config console log report syz C ci2-upstream-usb
2022/03/15 11:55 upstream 09688c0166e7 9e8eaa75 .config console log report syz ci-qemu-upstream KASAN: use-after-free Read in v4l2_fh_init
2021/07/15 15:31 upstream 8096acd7442e b9a2f64e .config console log report syz C ci-upstream-kasan-gce-selinux-root KASAN: use-after-free Read in v4l2_fh_init
2021/06/08 17:13 upstream 614124bea77e b718257f .config console log report syz C ci-upstream-kasan-gce-root KASAN: use-after-free Read in v4l2_fh_init
2021/05/31 17:54 upstream 8124c8a6b353 032639db .config console log report syz C ci-upstream-kasan-gce-root KASAN: use-after-free Read in v4l2_fh_init
2021/01/30 22:28 upstream 0e9bcda5d286 fc9fd31e .config console log report syz C ci-upstream-kasan-gce KASAN: use-after-free Read in v4l2_fh_init
2021/02/02 01:10 upstream 1048ba83fb1c e6b95f32 .config console log report syz C ci-upstream-kasan-gce KASAN: use-after-free Read in v4l2_fh_init
2020/11/21 13:42 upstream 27bba9c532a8 68068804 .config console log report syz C ci-upstream-kasan-gce
2020/10/11 01:46 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 93578a25d4e2 4a77ae0b .config console log report syz C ci2-upstream-usb
2020/06/19 18:48 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing f8f02d5c671f 123cf502 .config console log report syz C ci2-upstream-usb
2020/06/19 18:08 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing f8f02d5c671f 123cf502 .config console log report syz C ci2-upstream-usb
2020/05/30 04:33 https://github.com/google/kasan.git usb-fuzzer 2089c6ed5a17 954bd312 .config console log report syz C ci2-upstream-usb
2020/05/29 16:34 https://github.com/google/kasan.git usb-fuzzer d19c64b3d097 bed08304 .config console log report syz C ci2-upstream-usb
2020/05/28 22:17 https://github.com/google/kasan.git usb-fuzzer d19c64b3d097 c7192a2f .config console log report syz C ci2-upstream-usb
2020/05/18 20:58 https://github.com/google/kasan.git usb-fuzzer 806d8acc2890 24d91142 .config console log report syz C ci2-upstream-usb
2020/05/15 13:21 https://github.com/google/kasan.git usb-fuzzer 059e7e0ff26c d7f9fffa .config console log report syz C ci2-upstream-usb
2020/05/15 13:00 https://github.com/google/kasan.git usb-fuzzer 059e7e0ff26c d7f9fffa .config console log report syz C ci2-upstream-usb
2020/05/15 00:33 https://github.com/google/kasan.git usb-fuzzer 059e7e0ff26c 2d572622 .config console log report syz C ci2-upstream-usb
2020/05/14 23:33 https://github.com/google/kasan.git usb-fuzzer 059e7e0ff26c 2d572622 .config console log report syz C ci2-upstream-usb
2020/03/17 12:46 https://github.com/google/kasan.git usb-fuzzer d6ff8147a51c 749688d2 .config console log report syz C ci2-upstream-usb
2020/03/17 09:15 https://github.com/google/kasan.git usb-fuzzer d6ff8147a51c 749688d2 .config console log report syz C ci2-upstream-usb
2020/03/17 04:33 https://github.com/google/kasan.git usb-fuzzer d6ff8147a51c 749688d2 .config console log report syz C ci2-upstream-usb
2020/03/06 17:24 https://github.com/google/kasan.git usb-fuzzer d6ff8147a51c 7fb694ef .config console log report syz C ci2-upstream-usb
2020/03/06 14:44 https://github.com/google/kasan.git usb-fuzzer d6ff8147a51c 7fb694ef .config console log report syz C ci2-upstream-usb
2020/02/27 04:41 https://github.com/google/kasan.git usb-fuzzer d6ff8147a51c 251aabb7 .config console log report syz C ci2-upstream-usb
2020/02/26 23:07 https://github.com/google/kasan.git usb-fuzzer d6ff8147a51c 251aabb7 .config console log report syz C ci2-upstream-usb
2020/02/25 08:17 https://github.com/google/kasan.git usb-fuzzer d6ff8147a51c 59b57593 .config console log report syz C ci2-upstream-usb
2020/02/25 06:57 https://github.com/google/kasan.git usb-fuzzer d6ff8147a51c 59b57593 .config console log report syz C ci2-upstream-usb
2019/04/18 23:02 https://github.com/google/kasan.git usb-fuzzer d34f9519daaa b0e8efcb .config console log report syz C ci2-upstream-usb
2021/01/05 15:27 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing ed054e4e95d6 a0234d98 .config console log report syz C ci2-upstream-usb
2020/12/24 19:12 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 3644e2d2dda7 c2c1d1dd .config console log report syz C ci2-upstream-usb
2021/06/16 06:32 upstream 94f0b2d4a1d0 990d3cbe .config console log report syz ci-upstream-kasan-gce-root KASAN: use-after-free Read in v4l2_fh_init
2021/05/28 00:11 upstream d7c5303fbc8a 858ea628 .config console log report syz ci-upstream-kasan-gce-root KASAN: use-after-free Read in v4l2_fh_init
2021/01/06 15:16 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing ed054e4e95d6 fff20c29 .config console log report syz ci2-upstream-usb
2020/12/09 22:29 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 8010622c86ca c090b4da .config console log report syz ci2-upstream-usb
2021/10/06 02:38 upstream f6274b06e326 0a63fd36 .config console log report info ci-upstream-kasan-gce KASAN: use-after-free Read in v4l2_fh_init
2022/01/02 01:11 upstream 278218f6778b e1768e9c .config console log report info ci-upstream-kasan-gce-386 KASAN: use-after-free Read in v4l2_fh_init
2022/01/13 19:14 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 455e73a07f6e b8d780ab .config console log report info ci2-upstream-usb KASAN: use-after-free Read in v4l2_fh_init
2024/11/20 10:55 upstream a5c93bfec0be 7d02db5a .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/19 07:52 upstream c6d64479d609 571351cb .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/19 02:32 upstream c6d64479d609 571351cb .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/19 01:27 upstream adc218676eef 571351cb .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/11 10:36 upstream 2d5404caa8c7 97fe5517 .config console log report info [disk image] [vmlinux] [kernel image] ci-upstream-kasan-badwrites-root KASAN: slab-use-after-free Read in v4l2_fh_init
2024/10/01 20:45 upstream e32cde8d2bd7 e9f6e118 .config console log report info [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/21 06:27 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 4b25d554 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/21 02:35 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 4b25d554 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/21 00:50 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 4fca1650 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/20 22:03 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 4fca1650 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/20 20:14 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 4fca1650 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/20 18:45 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 4fca1650 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/20 15:52 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 4fca1650 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/20 12:25 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 4fca1650 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/20 07:41 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 7d02db5a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/20 03:48 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 7d02db5a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/20 01:28 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 7d02db5a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/19 22:43 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 7d02db5a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/19 21:33 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 7d02db5a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/19 19:14 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 7d02db5a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/19 17:57 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 7d02db5a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/19 16:49 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 7d02db5a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/19 13:56 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 571351cb .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/19 12:19 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 571351cb .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/19 12:03 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 571351cb .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/19 10:51 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 571351cb .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/19 09:29 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 571351cb .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/18 23:22 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 e7bb5d6e .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/18 21:59 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 e7bb5d6e .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/18 18:59 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 e7bb5d6e .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/18 17:47 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 e7bb5d6e .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/18 14:52 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 e7bb5d6e .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/18 05:50 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/17 23:25 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/17 21:32 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/17 19:48 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/17 18:44 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/17 14:58 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/17 13:48 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/17 11:11 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/17 09:16 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/17 04:04 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/17 03:03 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/17 00:11 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/16 20:10 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/16 15:41 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 237d4e0f4113 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/16 08:27 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing aa03bda68af7 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/16 07:24 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing aa03bda68af7 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2024/11/16 05:21 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing aa03bda68af7 cfe3a04a .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb KASAN: slab-use-after-free Read in v4l2_fh_init
2020/12/10 05:50 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 8010622c86ca c090b4da .config console log report info ci2-upstream-usb
* Struck through repros no longer work on HEAD.