syzbot

 sign-in | mailing list | source | docs
🐞 Open [119]
🐞 Fixed [70]
🐞 Invalid [213]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

BUG: corrupted list in process_one_work

Status: upstream: reported C repro on 2022/04/10 06:05
Reported-by: syzbot+badfd07a93cffefd7317@syzkaller.appspotmail.com
Fix commit: d007f49ab789 percpu_ref_init(): clean ->percpu_count_ref on failure
Patched on: [ci2-android-5-10 ci2-android-5-10-perf], missing on: []
First crash: 1129d, last: 30d
Cause bisection: failed (error log, bisect log)
  
Fix bisection: fixed by (bisect log) :
commit d007f49ab789bee8ed76021830b49745d5feaf61
Author: Al Viro <viro@zeniv.linux.org.uk>
Date: Wed May 18 06:13:40 2022 +0000

  percpu_ref_init(): clean ->percpu_count_ref on failure

  
Similar bugs (10)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream BUG: corrupted list in process_one_work kernel 16 2486d 2498d 0/28 closed as invalid on 2018/09/05 12:51
android-5-15 KASAN: use-after-free Read in process_one_work missing-backport origin:downstream C unreliable 605 2d12h 925d 0/2 upstream: reported C repro on 2022/10/31 08:36
upstream KMSAN: kernel-infoleak in copyout (2) net C 6723 705d 1874d 22/28 fixed on 2023/06/08 14:41
upstream KASAN: global-out-of-bounds Read in process_one_work kernel 1 363d 359d 0/28 auto-obsoleted due to no activity on 2024/08/14 00:54
upstream general protection fault in process_one_work (2) kernel 1 1394d 1390d 0/28 auto-closed as invalid on 2021/09/17 12:34
upstream KASAN: slab-out-of-bounds Read in process_one_work kernel 1 929d 925d 0/28 auto-obsoleted due to no activity on 2023/01/25 20:05
android-6-1 KASAN: use-after-free Read in process_one_work origin:upstream missing-backport C error 790 1d09h 723d 0/2 upstream: reported C repro on 2023/05/21 23:04
upstream KASAN: slab-use-after-free Read in process_one_work kernel 2 612d 615d 0/28 auto-obsoleted due to no activity on 2023/12/08 17:35
android-54 KASAN: use-after-free Read in process_one_work 1 785d 785d 0/2 auto-obsoleted due to no activity on 2023/07/18 18:33
upstream KASAN: use-after-free Read in process_one_work 1 2799d 2763d 0/28 closed as invalid on 2018/02/14 13:45
Last patch testing requests (23)
Created Duration User Patch Repo Result
2022/08/30 17:30 16m tadeusz.struk@linaro.org android12-5.10-lts OK log
2022/06/03 17:44 17m tadeusz.struk@linaro.org https://github.com/tstruk/linux.git master OK
2022/06/02 18:06 17m tadeusz.struk@linaro.org https://github.com/tstruk/linux.git master OK
2022/05/26 00:54 9m tadeusz.struk@linaro.org patch android12-5.10-lts report log
2022/05/23 20:48 16m tadeusz.struk@linaro.org patch android12-5.10-lts report log
2022/05/23 19:32 16m tadeusz.struk@linaro.org patch git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master report log
2022/05/23 19:31 10m tadeusz.struk@linaro.org patch android12-5.10-lts report log
2022/05/23 17:33 19m tadeusz.struk@linaro.org patch android12-5.10-lts report log
2022/05/23 17:31 19m tadeusz.struk@linaro.org patch git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master OK
2022/05/20 20:05 9m tadeusz.struk@linaro.org patch https://android.googlesource.com/kernel/common android12-5.10 report log
2022/05/20 18:51 10m tadeusz.struk@linaro.org patch android12-5.10-lts report log
2022/05/20 18:49 16m tadeusz.struk@linaro.org patch git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master OK
2022/05/16 19:50 8m tadeusz.struk@linaro.org android12-5.10-lts report log
2022/05/16 15:41 8m tadeusz.struk@linaro.org git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master report log
2022/05/16 15:21 9m tadeusz.struk@linaro.org git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master report log
2022/05/12 20:30 7m tadeusz.struk@linaro.org git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master report log
2022/05/12 00:00 7m tadeusz.struk@linaro.org git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master report log
2022/05/11 20:54 11m tadeusz.struk@linaro.org git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master report log
2022/05/06 18:03 12m (58) tadeusz.struk@linaro.org https://android.googlesource.com/kernel/common android12-5.10 report log
2022/04/12 17:11 7m tadeusz.struk@linaro.org patch git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master report log
2022/04/12 01:10 9m tadeusz.struk@linaro.org patch git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master OK
2022/04/12 00:46 11m tadeusz.struk@linaro.org patch https://android.googlesource.com/kernel/common android12-5.10 OK
2022/04/11 14:21 9m tadeusz.struk@linaro.org git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master report log
Fix bisection attempts (3)
Created Duration User Patch Repo Result
2022/08/02 20:04 3h18m bisect fix android12-5.10-lts OK (1) job log
2022/06/10 11:23 20m bisect fix android12-5.10-lts OK (0) job log log
2022/05/11 10:04 24m bisect fix android12-5.10-lts OK (0) job log log

Sample crash report:
==================================================================
BUG: KASAN: use-after-free in __list_del_entry_valid+0xa6/0x120 lib/list_debug.c:62
Read of size 8 at addr ffff88811a4b2c68 by task kworker/1:20/398

CPU: 1 PID: 398 Comm: kworker/1:20 Not tainted 5.10.225-syzkaller-00513-g8d23314f588a #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
Workqueue: wg-crypt-wg2 wg_packet_encrypt_worker
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack_lvl+0x1e2/0x24b lib/dump_stack.c:118
 print_address_description+0x81/0x3b0 mm/kasan/report.c:248
 __kasan_report mm/kasan/report.c:435 [inline]
 kasan_report+0x179/0x1c0 mm/kasan/report.c:452
 __asan_report_load8_noabort+0x14/0x20 mm/kasan/report_generic.c:309
 __list_del_entry_valid+0xa6/0x120 lib/list_debug.c:62
 __list_del_entry include/linux/list.h:132 [inline]
 list_del_init include/linux/list.h:204 [inline]
 process_one_work+0x43f/0xbd0 kernel/workqueue.c:2245
 worker_thread+0xaea/0x1510 kernel/workqueue.c:2447
 kthread+0x34b/0x3d0 kernel/kthread.c:313
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:298

Allocated by task 398:
 kasan_save_stack mm/kasan/common.c:38 [inline]
 kasan_set_track mm/kasan/common.c:45 [inline]
 set_alloc_info mm/kasan/common.c:430 [inline]
 ____kasan_kmalloc+0xdb/0x110 mm/kasan/common.c:509
 __kasan_kmalloc+0x9/0x10 mm/kasan/common.c:518
 kasan_kmalloc include/linux/kasan.h:254 [inline]
 __kmalloc+0x1aa/0x330 mm/slub.c:4033
 __kmalloc_node include/linux/slab.h:418 [inline]
 kmalloc_node include/linux/slab.h:575 [inline]
 kvmalloc_node+0x82/0x130 mm/util.c:612
 kvmalloc include/linux/mm.h:822 [inline]
 kvzalloc include/linux/mm.h:830 [inline]
 alloc_netdev_mqs+0x8e/0xcd0 net/core/dev.c:10507
 alloc_etherdev_mqs+0x33/0x40 net/ethernet/eth.c:388
 usbnet_probe+0x1ff/0x2860 drivers/net/usb/usbnet.c:1662
 usb_probe_interface+0x5b6/0xa90 drivers/usb/core/driver.c:397
 really_probe+0x3eb/0xaf0 drivers/base/dd.c:562
 driver_probe_device+0xfd/0x260 drivers/base/dd.c:752
 __device_attach_driver+0x29b/0x410 drivers/base/dd.c:863
 bus_for_each_drv+0x183/0x200 drivers/base/bus.c:431
 __device_attach+0x30a/0x500 drivers/base/dd.c:932
 device_initial_probe+0x1a/0x20 drivers/base/dd.c:981
 bus_probe_device+0xbe/0x1e0 drivers/base/bus.c:491
 device_add+0x889/0xbc0 drivers/base/core.c:3276
 usb_set_configuration+0x19a5/0x1f30 drivers/usb/core/message.c:2160
 usb_generic_driver_probe+0x8b/0x150 drivers/usb/core/generic.c:238
 usb_probe_device+0x144/0x260 drivers/usb/core/driver.c:294
 really_probe+0x3eb/0xaf0 drivers/base/dd.c:562
 driver_probe_device+0xfd/0x260 drivers/base/dd.c:752
 __device_attach_driver+0x29b/0x410 drivers/base/dd.c:863
 bus_for_each_drv+0x183/0x200 drivers/base/bus.c:431
 __device_attach+0x30a/0x500 drivers/base/dd.c:932
 device_initial_probe+0x1a/0x20 drivers/base/dd.c:981
 bus_probe_device+0xbe/0x1e0 drivers/base/bus.c:491
 device_add+0x889/0xbc0 drivers/base/core.c:3276
 usb_new_device+0xbbc/0x1760 drivers/usb/core/hub.c:2615
 hub_port_connect drivers/usb/core/hub.c:5457 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5597 [inline]
 port_event drivers/usb/core/hub.c:5747 [inline]
 hub_event+0x2d3b/0x47c0 drivers/usb/core/hub.c:5829
 process_one_work+0x6dc/0xbd0 kernel/workqueue.c:2301
 worker_thread+0xaea/0x1510 kernel/workqueue.c:2447
 kthread+0x34b/0x3d0 kernel/kthread.c:313
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:298

Freed by task 5:
 kasan_save_stack mm/kasan/common.c:38 [inline]
 kasan_set_track+0x4b/0x70 mm/kasan/common.c:45
 kasan_set_free_info+0x23/0x40 mm/kasan/generic.c:370
 ____kasan_slab_free+0x121/0x160 mm/kasan/common.c:362
 __kasan_slab_free+0x11/0x20 mm/kasan/common.c:370
 kasan_slab_free include/linux/kasan.h:220 [inline]
 slab_free_hook mm/slub.c:1595 [inline]
 slab_free_freelist_hook+0xc0/0x190 mm/slub.c:1621
 slab_free mm/slub.c:3203 [inline]
 kfree+0xc3/0x270 mm/slub.c:4191
 kvfree+0x35/0x40 mm/util.c:647
 netdev_freemem+0x3f/0x60 net/core/dev.c:10461
 netdev_release+0x7f/0xb0 net/core/net-sysfs.c:1886
 device_release+0x95/0x1c0
 kobject_cleanup lib/kobject.c:713 [inline]
 kobject_release lib/kobject.c:744 [inline]
 kref_put include/linux/kref.h:65 [inline]
 kobject_put+0x178/0x260 lib/kobject.c:761
 put_device+0x1f/0x30 drivers/base/core.c:3375
 free_netdev+0x384/0x470 net/core/dev.c:10638
 usbnet_disconnect+0x242/0x3a0 drivers/net/usb/usbnet.c:1601
 usb_unbind_interface+0x1fa/0x8c0 drivers/usb/core/driver.c:459
 device_release_driver_internal+0x506/0x7c0 drivers/base/dd.c:1221
 device_release_driver+0x19/0x20 drivers/base/dd.c:1244
 bus_remove_device+0x2f8/0x360 drivers/base/bus.c:533
 device_del+0x68b/0xf00 drivers/base/core.c:3455
 usb_disable_device+0x380/0x720 drivers/usb/core/message.c:1411
 usb_disconnect+0x32a/0x890 drivers/usb/core/hub.c:2271
 hub_port_connect drivers/usb/core/hub.c:5296 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5597 [inline]
 port_event drivers/usb/core/hub.c:5747 [inline]
 hub_event+0x1e73/0x47c0 drivers/usb/core/hub.c:5829
 process_one_work+0x6dc/0xbd0 kernel/workqueue.c:2301
 worker_thread+0xaea/0x1510 kernel/workqueue.c:2447
 kthread+0x34b/0x3d0 kernel/kthread.c:313
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:298

Last potentially related work creation:
 kasan_save_stack+0x3b/0x60 mm/kasan/common.c:38
 __kasan_record_aux_stack+0xd3/0x100 mm/kasan/generic.c:348
 kasan_record_aux_stack_noalloc+0xb/0x10 mm/kasan/generic.c:358
 insert_work+0x56/0x310 kernel/workqueue.c:1352
 __queue_work+0x970/0xd10 kernel/workqueue.c:1518
 queue_work_on+0x105/0x160 kernel/workqueue.c:1545
 usbnet_link_change+0xeb/0x100
 usbnet_probe+0x1dff/0x2860 drivers/net/usb/usbnet.c:1808
 usb_probe_interface+0x5b6/0xa90 drivers/usb/core/driver.c:397
 really_probe+0x3eb/0xaf0 drivers/base/dd.c:562
 driver_probe_device+0xfd/0x260 drivers/base/dd.c:752
 __device_attach_driver+0x29b/0x410 drivers/base/dd.c:863
 bus_for_each_drv+0x183/0x200 drivers/base/bus.c:431
 __device_attach+0x30a/0x500 drivers/base/dd.c:932
 device_initial_probe+0x1a/0x20 drivers/base/dd.c:981
 bus_probe_device+0xbe/0x1e0 drivers/base/bus.c:491
 device_add+0x889/0xbc0 drivers/base/core.c:3276
 usb_set_configuration+0x19a5/0x1f30 drivers/usb/core/message.c:2160
 usb_generic_driver_probe+0x8b/0x150 drivers/usb/core/generic.c:238
 usb_probe_device+0x144/0x260 drivers/usb/core/driver.c:294
 really_probe+0x3eb/0xaf0 drivers/base/dd.c:562
 driver_probe_device+0xfd/0x260 drivers/base/dd.c:752
 __device_attach_driver+0x29b/0x410 drivers/base/dd.c:863
 bus_for_each_drv+0x183/0x200 drivers/base/bus.c:431
 __device_attach+0x30a/0x500 drivers/base/dd.c:932
 device_initial_probe+0x1a/0x20 drivers/base/dd.c:981
 bus_probe_device+0xbe/0x1e0 drivers/base/bus.c:491
 device_add+0x889/0xbc0 drivers/base/core.c:3276
 usb_new_device+0xbbc/0x1760 drivers/usb/core/hub.c:2615
 hub_port_connect drivers/usb/core/hub.c:5457 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5597 [inline]
 port_event drivers/usb/core/hub.c:5747 [inline]
 hub_event+0x2d3b/0x47c0 drivers/usb/core/hub.c:5829
 process_one_work+0x6dc/0xbd0 kernel/workqueue.c:2301
 worker_thread+0xaea/0x1510 kernel/workqueue.c:2447
 kthread+0x34b/0x3d0 kernel/kthread.c:313
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:298

The buggy address belongs to the object at ffff88811a4b2000
 which belongs to the cache kmalloc-4k of size 4096
The buggy address is located 3176 bytes inside of
 4096-byte region [ffff88811a4b2000, ffff88811a4b3000)
The buggy address belongs to the page:
page:ffffea0004692c00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x11a4b0
head:ffffea0004692c00 order:3 compound_mapcount:0 compound_pincount:0
flags: 0x4000000000010200(slab|head)
raw: 4000000000010200 dead000000000100 dead000000000122 ffff888100042c00
raw: 0000000000000000 0000000000040004 00000001ffffffff 0000000000000000
page dumped because: kasan: bad access detected
page_owner tracks the page as allocated
page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 398, ts 35968454016, free_ts 35933058196
 set_page_owner include/linux/page_owner.h:35 [inline]
 post_alloc_hook mm/page_alloc.c:2456 [inline]
 prep_new_page+0x166/0x180 mm/page_alloc.c:2462
 get_page_from_freelist+0x2d8c/0x2f30 mm/page_alloc.c:4254
 __alloc_pages_nodemask+0x435/0xaf0 mm/page_alloc.c:5348
 allocate_slab mm/slub.c:1808 [inline]
 new_slab+0x80/0x400 mm/slub.c:1869
 new_slab_objects mm/slub.c:2627 [inline]
 ___slab_alloc+0x302/0x4b0 mm/slub.c:2791
 __slab_alloc+0x63/0xa0 mm/slub.c:2831
 slab_alloc_node mm/slub.c:2913 [inline]
 slab_alloc mm/slub.c:2955 [inline]
 kmem_cache_alloc_trace+0x1bd/0x2e0 mm/slub.c:2972
 kmalloc include/linux/slab.h:552 [inline]
 kzalloc include/linux/slab.h:664 [inline]
 kobject_uevent_env+0x269/0x700 lib/kobject_uevent.c:539
 kobject_uevent+0x1f/0x30 lib/kobject_uevent.c:657
 device_add+0x791/0xbc0 drivers/base/core.c:3257
 usb_set_configuration+0x19a5/0x1f30 drivers/usb/core/message.c:2160
 usb_generic_driver_probe+0x8b/0x150 drivers/usb/core/generic.c:238
 usb_probe_device+0x144/0x260 drivers/usb/core/driver.c:294
 really_probe+0x3eb/0xaf0 drivers/base/dd.c:562
 driver_probe_device+0xfd/0x260 drivers/base/dd.c:752
 __device_attach_driver+0x29b/0x410 drivers/base/dd.c:863
page last free stack trace:
 reset_page_owner include/linux/page_owner.h:28 [inline]
 free_pages_prepare mm/page_alloc.c:1349 [inline]
 __free_pages_ok+0x82c/0x850 mm/page_alloc.c:1629
 free_the_page+0x76/0x370 mm/page_alloc.c:5409
 __free_pages+0x67/0xc0 mm/page_alloc.c:5418
 __free_slab+0xcf/0x190 mm/slub.c:1894
 free_slab mm/slub.c:1909 [inline]
 discard_slab+0x29/0x40 mm/slub.c:1915
 __slab_free+0x30d/0x3a0 mm/slub.c:3131
 do_slab_free mm/slub.c:3191 [inline]
 ___cache_free+0x111/0x130 mm/slub.c:3210
 qlink_free+0x50/0x90 mm/kasan/quarantine.c:157
 qlist_free_all+0x47/0xb0 mm/kasan/quarantine.c:176
 kasan_quarantine_reduce+0x15a/0x170 mm/kasan/quarantine.c:283
 __kasan_slab_alloc+0x2f/0xe0 mm/kasan/common.c:440
 kasan_slab_alloc include/linux/kasan.h:244 [inline]
 slab_post_alloc_hook+0x61/0x2f0 mm/slab.h:583
 slab_alloc_node mm/slub.c:2947 [inline]
 slab_alloc mm/slub.c:2955 [inline]
 kmem_cache_alloc+0x168/0x2e0 mm/slub.c:2960
 getname_flags+0xba/0x520 fs/namei.c:141
 getname+0x19/0x20 fs/namei.c:212
 do_sys_openat2+0xd7/0x710 fs/open.c:1211

Memory state around the buggy address:
 ffff88811a4b2b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
 ffff88811a4b2b80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
>ffff88811a4b2c00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
                                                          ^
 ffff88811a4b2c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
 ffff88811a4b2d00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
==================================================================
usb 5-1: USB disconnect, device number 5
cdc_ncm 5-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.4-1, CDC NCM
usb 5-1: new full-speed USB device number 6 using dummy_hcd
usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
usb 5-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 8
usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 512, setting to 64
usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
usb 5-1: Product: syz
usb 5-1: Manufacturer: syz
usb 5-1: SerialNumber: syz
cdc_ncm 5-1:1.0: MAC-Address: 42:42:42:42:42:42
cdc_ncm 5-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.4-1, CDC NCM, 42:42:42:42:42:42
hid-generic 0005:FFFFFFFD:FFFFFFF9.0004: unknown main item tag 0x0
hid-generic 0005:FFFFFFFD:FFFFFFF9.0004: unknown main item tag 0x0
hid-generic 0005:FFFFFFFD:FFFFFFF9.0004: unknown main item tag 0x0
hid-generic 0005:FFFFFFFD:FFFFFFF9.0004: unknown main item tag 0x0
hid-generic 0005:FFFFFFFD:FFFFFFF9.0004: unknown main item tag 0x0
hid-generic 0005:FFFFFFFD:FFFFFFF9.0004: unknown main item tag 0x0
hid-generic 0005:FFFFFFFD:FFFFFFF9.0004: unknown main item tag 0x0
hid-generic 0005:FFFFFFFD:FFFFFFF9.0004: unknown main item tag 0x0
hid-generic 0005:FFFFFFFD:FFFFFFF9.0004: unknown main item tag 0x0
hid-generic 0005:FFFFFFFD:FFFFFFF9.0004: unknown main item tag 0x0
hid-generic 0005:FFFFFFFD:FFFFFFF9.0004: unknown main item tag 0x0
hid-generic 0005:FFFFFFFD:FFFFFFF9.0004: unknown main item tag 0x0
hid-generic 0005:FFFFFFFD:FFFFFFF9.0004: unknown main item tag 0x0
hid-generic 0005:FFFFFFFD:FFFFFFF9.0004: unknown main item tag 0x0
hid-generic 0005:FFFFFFFD:FFFFFFF9.0004: unknown main item tag 0x0
hid-generic 0005:FFFFFFFD:FFFFFFF9.0004: unknown main item tag 0x0

Crashes (32):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2024/09/14 03:05 android13-5.10-lts 8d23314f588a b58f933c .config console log report syz / log [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2022/04/10 06:03 android12-5.10-lts 414e6c8e941c e22c3da3 .config console log report syz C ci2-android-5-10 BUG: corrupted list in process_one_work
2022/07/03 19:44 android12-5.10-lts fa7f6a5f56d9 1434eec0 .config console log report info ci2-android-5-10-perf BUG: corrupted list in process_one_work
2025/04/13 11:58 android13-5.10-lts e0b88ee5f09c 0bd6db41 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2025/01/28 14:46 android13-5.10-lts fbe98d68b6b3 f5427d7c .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/12/22 18:27 android13-5.10-lts 4055d754db6f b4fbdbd4 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/12/21 20:33 android13-5.10-lts 4055d754db6f d7f584ee .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/11/28 02:55 android13-5.10-lts 139a6bb26d9d 5df23865 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/11/08 23:39 android13-5.10-lts 6a01908517df 6b856513 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/10/31 00:56 android13-5.10-lts e5e5644ea27f 96eb609f .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/10/08 13:17 android13-5.10-lts e5e5644ea27f 402f1df0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/09/22 01:11 android13-5.10-lts 8d23314f588a 6f888b75 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/09/21 22:30 android13-5.10-lts 8d23314f588a 6f888b75 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/09/06 08:26 android13-5.10-lts 1c5354a314ea 464ac2ed .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/09/01 09:12 android13-5.10-lts 1c5354a314ea 1eda0d14 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/08/14 01:57 android13-5.10-lts 0890c03b8b7d f21a18ca .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/08/08 15:48 android13-5.10-lts fd58936f3c1f 61405512 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/08/04 07:46 android13-5.10-lts fd58936f3c1f 1786a2a8 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/07/26 02:13 android13-5.10-lts fd58936f3c1f 3f86dfed .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/07/25 22:53 android13-5.10-lts fd58936f3c1f 3f86dfed .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/07/20 09:59 android13-5.10-lts 1240968f7644 b88348e9 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/07/05 17:15 android13-5.10-lts 3feee789f446 2a40360c .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/07/02 23:19 android13-5.10-lts 3feee789f446 07f0a0a0 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/06/26 06:14 android13-5.10-lts a4a2b7a82ee4 dec8bc94 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/06/24 08:20 android13-5.10-lts b58b8f9dad93 edc5149a .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/06/21 11:54 android13-5.10-lts b58b8f9dad93 dac2aa43 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/04/16 22:44 android13-5.10-lts 4e1bc8d8e8ae 18f6e127 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/04/08 19:08 android13-5.10-lts 4e1bc8d8e8ae 53df08b6 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/04/06 14:00 android13-5.10-lts e7daca75b4c3 ca620dd8 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/03/29 01:41 android13-5.10-lts e7daca75b4c3 e91187ee .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2024/03/26 07:13 android13-5.10-lts e7daca75b4c3 bcd9b39f .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
2023/07/15 08:37 android13-5.10-lts 59b65efafe20 35d9ecc5 .config console log report info [disk image] [vmlinux] [kernel image] ci2-android-5-10 KASAN: use-after-free Read in process_one_work
* Struck through repros no longer work on HEAD.