syzbot


Title Repro Cause bisect Fix bisect Count Last Reported Closed Patch
KASAN: use-after-free Read in __cpuhp_state_remove_instance C unreliable done 2726 34d 56d 3d11h 470ec4ed io-wq: fix double put of 'wq' in error path
KASAN: use-after-free Read in idr_for_each (2) C error done 86 37d 200d 3d11h 61cf9370 io_uring: Convert personality_idr to XArray
KASAN: vmalloc-out-of-bounds Read in bpf_trace_run2 C done done 5 55d 214d 9d15h befe6d94 tracepoint: Do not fail unregistering a probe due to memory failure
general protection fault in drm_client_buffer_vunmap C unreliable done 247 42d 143d 9d15h 874a52f9 drm/fb-helper: only unmap if buffer not null
BUG: unable to handle kernel paging request in bpf_trace_run2 C done done 10 53d 213d 9d15h befe6d94 tracepoint: Do not fail unregistering a probe due to memory failure
INFO: rcu detected stall in smp_call_function C 107 13d 268d 10d c583bcb8 rcu: Don't invoke try_invoke_on_locked_down_task() with irqs disabled 1b7af295 sched/core: Allow try_invoke_on_locked_down_task() with irqs disabled
INFO: task hung in io_uring_cancel_task_requests C 305 37d 72d 13d 34343786 io_uring: unpark SQPOLL thread for cancelation
general protection fault in usb_audio_probe C done 360 43d 45d 13d 30dea071 ALSA: usb-audio: fix NULL ptr dereference in usb_audio_probe
UBSAN: shift-out-of-bounds in erofs_fc_fill_super C unreliable 11 63d 93d 13d bde54529 erofs: fix shift-out-of-bounds of blkszbits
net-next build error (3) 7 77d 74d 13d 9c97921a net: fix building errors on powerpc when CONFIG_RETPOLINE is not set
KASAN: use-after-free Read in tctx_task_work 2 56d 54d 13d 2c32395d io_uring: fix __tctx_task_work() ctx race
INFO: task hung in addrconf_verify_work (4) C done 132 62d 149d 13d d349f997 net_sched: fix RTNL deadlock again caused by request_module()
possible deadlock in cfg80211_netdev_notifier_call syz done 13 15d 81d 13d 40c575d1 cfg80211: fix netdev registration deadlock
memory leak in qrtr_tun_open C 4 105d 149d 13d fc0494ea net: qrtr: Fix memory leak in qrtr_tun_open
UBSAN: shift-out-of-bounds in mceusb_dev_printdata C error 331 60d 127d 13d 9dec0f48 media: mceusb: sanity check for prescaler value
KMSAN: uninit-value in bpf_iter_prog_supported 4479 13d 74d 13d 17d8beda bpf: Fix an unitialized value in bpf_iter
KASAN: invalid-free in io_req_caches_free 5 57d 60d 13d 8e5c66c4 io_uring: clear request count when freeing caches
memory leak in v2_read_file_info C 71 62d 122d 13d a4db1072 quota: Fix memory leak when handling corrupted quota file
KASAN: null-ptr-deref Read in tcf_idrinfo_destroy C 115 16d 207d 13d 396d7f23 net: sched: fix police ext initialization
general protection fault in j1939_netdev_notify (2) C done 19 65d 124d 13d 4e096a18 net: introduce CAN specific pointer in the struct net_device
INFO: task hung in tcf_action_init_1 C done 30 73d 207d 13d d349f997 net_sched: fix RTNL deadlock again caused by request_module()
general protection fault in kobject_cleanup C unreliable 72 43d 56d 13d a6112998 gpio: fix NULL-deref-on-deregistration regression
KASAN: slab-out-of-bounds Read in skb_segment C error 311 92d 95d 13d 00b229f7 net: fix GSO for SG-enabled devices
upstream test error: INFO: trying to register non-static key in nsim_get_stats64 381 44d 86d 13d 863a42b2 netdevsim: init u64 stats for 32bit hardware
UBSAN: shift-out-of-bounds in snto32 C error 58 57d 130d 13d a0312af1 HID: core: detect and skip invalid inputs to snto32()
UBSAN: shift-out-of-bounds in exfat_fill_super C error 3 70d 87d 13d 78c276f5 exfat: fix shift-out-of-bounds in exfat_fill_super()
INFO: task hung in io_sq_thread_park C unreliable 263 48d 53d 13d 3ebba796 io_uring: ensure that SQPOLL thread is started for exit
KCSAN: data-race in tomoyo_domain_quota_is_ok / tomoyo_merge_path_acl (4) 12 70d 136d 13d 5797e861 tomoyo: ignore data race while checking quota
INFO: task hung in walk_component (2) 31 41d 42d 13d 775c5033 fuse: fix live lock in fuse_iget()
KCSAN: data-race in bpf_lru_pop_free / bpf_lru_push_free 237 61d 248d 13d 6df8fb83 bpf_lru_list: Read double-checked variable once without lock
KASAN: use-after-free Read in ntfs_iget C error error 1 150d 146d 13d 4dfe6bd9 ntfs: check for valid standard information attribute
general protection fault in kvm_hv_irq_routing_update C done 33 49d 56d 13d 919f4ebc KVM: x86: hyper-v: Fix Hyper-V context null-ptr-deref
WARNING in memdup_user_nul C inconclusive 2 99d 98d 13d 7ef4c19d smackfs: restrict bytes count in smackfs write functions
memory leak in io_submit_sqes (2) C 1 51d 50d 13d f0127254 io-wq: ensure all pending work is canceled on exit
INFO: task can't die in connmark_exit_net syz error 1 136d 132d 13d d349f997 net_sched: fix RTNL deadlock again caused by request_module()
memory leak in dlfb_usb_probe C 3 127d 130d 13d 5c0e4110 udlfb: Fix memory leak in dlfb_usb_probe
INFO: task can't die in iget5_locked 7 57d 82d 13d 775c5033 fuse: fix live lock in fuse_iget()
UBSAN: shift-out-of-bounds in std_validate C unreliable 2 93d 93d 13d 048c96e2 media: v4l2-ctrls.c: fix shift-out-of-bounds in std_validate
memory leak in zr364xx_probe C 6 68d 120d 13d ea354b6d media: zr364xx: fix memory leaks in probe()
linux-next test error: possible deadlock in cfg80211_netdev_notifier_call 6 85d 85d 13d 38ec7c6b virt_wifi: fix deadlock on RTNL
KASAN: use-after-free Read in usb_audio_disconnect C done 15 43d 44d 13d c5aa956e ALSA: usb-audio: fix use after free in usb_audio_disconnect
WARNING in pstore_kill_sb 1 72d 68d 13d 9c7d83ae pstore: Fix warning in pstore_kill_sb()
UBSAN: shift-out-of-bounds in chkSuper C unreliable 28 61d 127d 13d 3bef198f JFS: more checks for invalid superblock
KCSAN: data-race in __bpf_lru_list_rotate / bpf_lru_push_free (2) 32 67d 136d 13d 6df8fb83 bpf_lru_list: Read double-checked variable once without lock
KASAN: vmalloc-out-of-bounds Read in bpf_trace_run3 C done 6 69d 171d 13d befe6d94 tracepoint: Do not fail unregistering a probe due to memory failure
UBSAN: shift-out-of-bounds in mceusb_dev_recv C 13 60d 124d 13d 1b43bad3 media: mceusb: Fix potential out-of-bounds shift
memory leak in video_usercopy C 19 62d 124d 13d fb18802a media: v4l: ioctl: Fix memory leak in video_usercopy
BUG: sleeping function called from invalid context in rxe_alloc_nl C done 475 79d 93d 13d c4369575 RDMA/rxe: Fix bug in rxe_alloc()
WARNING in __alloc_skb C error 24 44d 56d 13d 093b036a net/qrtr: fix __netdev_alloc_skb call
WARNING in iov_iter_revert (2) C done 9 64d 65d 13d 3342ff26 tty: protect tty_write from odd low-level tty disciplines
WARNING in cfg80211_change_iface C inconclusive 4 80d 84d 13d bae17356 wext: call cfg80211_change_iface() with wiphy lock held
general protection fault in tomoyo_socket_sendmsg_permission 17 70d 161d 13d 9380afd6 usbip: fix stub_dev usbip_sockfd_store() races leading to gpf 718ad969 usbip: fix vhci_hcd attach_store() races leading to gpf 46613c9d usbip: fix vudc usbip_sockfd_store races leading to gpf
memory leak in edge_startup C 1 56d 52d 13d cfdc67ac USB: serial: io_edgeport: fix memory leak in edge_startup
unexpected kernel reboot (3) C error error 21132 13d 1014d 13d c8e2fe13 x86/perf: Use RET0 as default for guest_get_msrs to handle "no PMU" case
WARNING in qp_broker_alloc C inconclusive 24 58d 94d 13d 2fd10bcf drivers/misc/vmw_vmci: restrict too big queue size in qp_host_alloc_queue
WARNING in sk_stream_kill_queues (5) C done 4684 13d 144d 13d 097b9146 net: fix up truesize of cloned skb in skb_prepare_for_shift()
BUG: unable to handle kernel paging request in bpf_trace_run3 C done 40 60d 183d 13d befe6d94 tracepoint: Do not fail unregistering a probe due to memory failure
KASAN: null-ptr-deref Write in event_handler C done 2869 52d 199d 13d 9380afd6 usbip: fix stub_dev usbip_sockfd_store() races leading to gpf 718ad969 usbip: fix vhci_hcd attach_store() races leading to gpf 46613c9d usbip: fix vudc usbip_sockfd_store races leading to gpf
KASAN: use-after-free Read in nbd_genl_connect C inconclusive 16 44d 60d 13d c9a2f90f nbd: handle device refs for DESTROY_ON_DISCONNECT properly
WARNING in cfg80211_dev_rename C inconclusive 22 79d 84d 13d 0391a45c nl80211: call cfg80211_dev_rename() under RTNL
general protection fault in gfs2_withdraw C done 81 61d 210d 13d d5bf630f gfs2: bypass signal_our_withdraw if no journal
KASAN: null-ptr-deref Write in amp_read_loc_assoc_final_data C done 185 64d 265d 13d e8bd76ed Bluetooth: Fix null pointer dereference in amp_read_loc_assoc_final_data
possible deadlock in io_poll_double_wake (2) C error error 431 13d 206d 13d 1c3b3e65 io_uring: ignore double poll add on the same waitqueue head
WARNING in _cfg80211_unregister_wdev C inconclusive 48 78d 84d 13d 776a39b8 cfg80211: call cfg80211_destroy_ifaces() with wiphy lock held
INFO: task can't die in io_sq_thread_finish syz 137 24d 56d 13d eb85890b io_uring: ensure SQPOLL startup is triggered before error shutdown
WARNING in dst_release syz done 2 65d 64d 13d e0be4931 mptcp: reset last_snd on subflow close
BUG: sleeping function called from invalid context in mm_access C done 684 98d 101d 13d 38e89184 kbuild: lto: fix module versioning
KASAN: use-after-free Read in skb_segment C error 55 92d 95d 13d 00b229f7 net: fix GSO for SG-enabled devices
inconsistent lock state in io_dismantle_req C 2 81d 81d 13d 9ae1f8dd io_uring: fix inconsistent lock state
BUG: unable to handle kernel paging request in __kvm_mmu_prepare_zap_page syz error 2 777d 787d 34d 47c42e6b KVM: x86: fix handling of role.cr4_pae and rename it to 'gpte_size'
kernel BUG in memory_bm_free 72 78d 79d 38d 91cb2c8b arm64: Do not pass tagged addresses to __is_lm_address()
KASAN: slab-out-of-bounds Read in squashfs_get_id C error done 77 73d 209d 42d e812cbbb squashfs: avoid out of bounds writes in decompressors
UBSAN: shift-out-of-bounds in tcf_police_init C unreliable 8 93d 130d 43d e4bedf48 net_sched: reject silly cell_log in qdisc_get_rtab()
UBSAN: shift-out-of-bounds in est_timer C unreliable 73 52d 127d 43d dd5e0733 net_sched: gen_estimator: support large ewma log
memory leak in xskq_create C 7 110d 130d 44d 8bee6833 xsk: Fix memory leak for failed bind
BUG: sleeping function called from invalid context in corrupted syz done 18 140d 164d 44d 7bc40aed mac80211: free sta in sta_info_insert_finish() on errors
WARNING in md_ioctl C done error 684 128d 1089d 44d c731b84b md: fix a warning caused by a race between concurrent md_ioctl()s
BUG: unable to handle kernel paging request in htab_map_alloc (2) C unreliable 8 131d 139d 44d e1868b9e bpf: Avoid overflows involving hash elem_size
general protection fault in io_sqe_files_unregister 2 105d 104d 44d 3e2224c5 io_uring: Fix return value from alloc_fixed_file_ref_node
UBSAN: shift-out-of-bounds in __detect_linklayer C unreliable done 31 92d 98d 44d e4bedf48 net_sched: reject silly cell_log in qdisc_get_rtab()
BUG: receive list entry not found for dev vxcan1, id 003, mask C00007FF C unreliable 2 148d 148d 44d d73ff9b7 can: af_can: can_rx_unregister(): remove WARN() statement from list operation sanity check
UBSAN: shift-out-of-bounds in tcindex_set_parms C unreliable done 45 92d 127d 44d bcd0cf19 net_sched: avoid shift-out-of-bounds in tcindex_set_parms()
kernel BUG at mm/page-writeback.c:LINE! 1 113d 109d 44d c2407cf7 mm: make wait_on_page_writeback() wait for multiple pending writebacks
WARNING in io_uring_flush C unreliable 10 88d 97d 44d 4325cb49 io_uring: fix uring_flush in exit_files() warning
general protection fault in rose_send_frame C done done 664 154d 833d 44d 3b3fd068 rose: Fix Null pointer dereference in rose_send_frame()
general protection fault in taprio_dequeue_soft C done 2 129d 129d 44d 44d4775c net/sched: sch_taprio: reset child qdiscs before freeing them
BUG: unable to handle kernel paging request in bpf_lru_populate C done 12 130d 136d 44d e1868b9e bpf: Avoid overflows involving hash elem_size
bpf test error: BUG: sleeping function called from invalid context in sta_info_move_state 6 154d 160d 44d 7bc40aed mac80211: free sta in sta_info_insert_finish() on errors
KASAN: slab-out-of-bounds Read in hci_le_meta_evt C error error 45 141d 262d 44d f7e0e8b2 Bluetooth: Fix slab-out-of-bounds read in hci_le_direct_adv_report_evt()
KASAN: null-ptr-deref Write in rhashtable_free_and_destroy 11 63d 140d 44d 905b2032 mac80211: mesh: fix mesh_pathtbl_init() error path
KASAN: use-after-free Read in disk_part_iter_next C unreliable 243 44d 132d 44d aebf5db9 block: fix use-after-free in disk_part_iter_next
WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected (2) C done 640 108d 226d 44d 8d1ddb5e fcntl: Fix potential deadlock in send_sig{io, urg}()
kernel BUG at net/core/dev.c:NUM! C done 35 98d 99d 44d 47e4bb14 net: sit: unregister_netdevice on newlink's error path
KASAN: use-after-free Read in search_by_entry_key C done 3 193d 196d 44d d24396c5 reiserfs: add check for an invalid ih_entry_count
KCSAN: data-race in snd_rawmidi_transmit / snd_rawmidi_write 232 77d 253d 44d 88a06d6f ALSA: rawmidi: Access runtime->avail always in spinlock
UBSAN: shift-out-of-bounds in f2fs_fill_super C 4 136d 135d 44d e584bbe8 f2fs: fix shift-out-of-bounds in sanity_check_raw_super()
KASAN: global-out-of-bounds Read in smc_nl_get_sys_info C error 27 96d 123d 44d 25fe2c9c smc: fix out of bound access in smc_nl_get_sys_info()
KASAN: use-after-free Read in btrfs_scan_one_device C error 70 148d 214d 44d 0697d9a6 btrfs: don't access possibly stale fs_info data for printing duplicate device
memory leak in prepare_creds C 10 64d 238d 44d f26c08b4 io_uring: fix file leak on error path of io ctx creation
WARNING in percpu_ref_kill_and_confirm (2) C done 71 119d 127d 44d 9faadcc8 io_uring: fix double io_uring free
WARNING: filesystem loop0 was created with 512 inodes, the real maximum is 511, mounting anywa C unreliable 1 140d 136d 44d dc889b8d bfs: don't use WARNING: string when it's just info.
general protection fault in ieee80211_subif_start_xmit C unreliable 29 84d 151d 44d 054c9939 mac80211: pause TX while changing interface type
WARNING in rds_rdma_extra_size C done 165 79d 103d 44d a11148e6 net/rds: restrict iovecs length for RDS_CMSG_RDMA_ARGS
KASAN: use-after-free Read in decode_session6 C done 152 90d 298d 44d 0356010d sctp: bring inet(6)_skb_parm back to sctp_input_cb
WARNING: filesystem loop2 was created with 512 inodes, the real maximum is 511, mounting anyway 2 157d 153d 44d dc889b8d bfs: don't use WARNING: string when it's just info.
divide error in __tcp_select_window C done 1119 147d 153d 44d fd897679 mptcp: be careful on MPTCP-level ack.
WARNING: suspicious RCU usage in kernfs_iop_permission C done 1 81d 81d 44d b854cc65 ovl: avoid deadlock on directory ioctl
KMSAN: uninit-value in INET_ECN_decapsulate 3 111d 143d 44d 4179b00c geneve: pull IP header before ECN decapsulation
WARNING in io_ring_ctx_wait_and_kill C done 9 98d 99d 44d 06585c49 io_uring: do sqo disable on install_fd error
WARNING in mc1NUM_get_time 13 75d 76d 44d ebb22a05 rtc: mc146818: Dont test for bit 0-5 in Register D
INFO: task hung in lock_sock_nested (4) C done 6 95d 142d 44d 05e3ecea mptcp: avoid potential infinite loop in mptcp_recvmsg()
UBSAN: shift-out-of-bounds in choke_enqueue C inconclusive 3853 44d 136d 44d bd1248f1 net: sched: prevent invalid Scell_log shift count
WARNING: suspicious RCU usage in get_wiphy_regdom C done 5031 95d 127d 44d 51d62f2f cfg80211: Save the regulatory domain with a lock
WARNING: suspicious RCU usage in tcp_disconnect C done 25 98d 100d 44d 13a9499e mptcp: fix locking in mptcp_disconnect()
WARNING in spi_register_controller C 1848 128d 741d 44d 9c60cc79 media: msi2500: assign SPI bus number dynamically
KMSAN: uninit-value in __nla_validate_parse (2) C 2 105d 101d 44d c96adff9 cls_flower: call nla_ok() before nla_next()
INFO: task hung in __io_uring_files_cancel C done 30 85d 152d 44d bee749b1 io_uring: fix files cancellation
general protection fault in xsk_recvmsg C done unreliable 1800 129d 98d 44d 3546b9b8 xsk: Validate socket state in xsk_recvmsg, prior touching socket members
KASAN: use-after-free Write in rtl_fw_do_work (2) 4 129d 134d 44d 4dfde294 rtlwifi: rise completion at the last step of firmware callback
UBSAN: shift-out-of-bounds in sfq_init C unreliable 8 107d 121d 44d bd1248f1 net: sched: prevent invalid Scell_log shift count
memory leak in h5_rx_pkt_start C 5 241d 584d 44d 70f259a3 Bluetooth: hci_h5: close serdev device and free hu in h5_close 855af2d7 Bluetooth: hci_h5: fix memory leak in h5_close
kernel BUG at lib/string.c:LINE! (6) C done 2 125d 121d 44d 6cb56218 netfilter: xt_RATEEST: reject non-null terminated string from userspace
kernel BUG at include/linux/highmem.h:LINE! C error 32 148d 152d 44d 0060ef3b mm: support THPs in zero_user_segments
UBSAN: shift-out-of-bounds in dummy_hub_control C done 5 121d 118d 44d c318840f USB: Gadget: dummy-hcd: Fix shift-out-of-bounds bug
KASAN: use-after-free Read in reiserfs_fill_super C error done 2 138d 137d 44d d24396c5 reiserfs: add check for an invalid ih_entry_count
KASAN: vmalloc-out-of-bounds Write in pcpu_freelist_populate 6 132d 136d 44d e1868b9e bpf: Avoid overflows involving hash elem_size
BUG: unable to handle kernel NULL pointer dereference in kcsan_setup_watchpoint 128 174d 183d 44d 55a2346c kcsan: Never set up watchpoints on NULL pointers
BUG: unable to handle kernel paging request in percpu_ref_exit C done 3 105d 103d 44d 3e2224c5 io_uring: Fix return value from alloc_fixed_file_ref_node
KMSAN: uninit-value in gre_parse_header C 9283 72d 669d 44d 085c7c4e erspan: fix version 1 check in gre_parse_header()
UBSAN: shift-out-of-bounds in red_adaptative_timer C unreliable 260 44d 136d 44d bd1248f1 net: sched: prevent invalid Scell_log shift count
KASAN: slab-out-of-bounds Write in xfrm_attr_cpy32 C done 106 134d 182d 44d d1949d04 xfrm/compat: memset(0) 64-bit padding at right place
WARNING in squashfs_read_table C inconclusive 50 74d 103d 44d 506220d2 squashfs: add more sanity checks in xattr id lookup
BUG: receive list entry not found for dev vcan0, id 002, mask C00007FF C unreliable 5 148d 148d 44d d73ff9b7 can: af_can: can_rx_unregister(): remove WARN() statement from list operation sanity check
UBSAN: shift-out-of-bounds in parse_audio_format_i C error 19 129d 135d 44d 175b8d89 ALSA: pcm: oss: Fix potential out-of-bounds shift 43d5ca88 ALSA: usb-audio: Fix potential out-of-bounds shift
INFO: task can't die in io_sq_thread_stop 1 163d 159d 44d 65b2b213 io_uring: check kthread stopped flag when sq thread is unparked
UBSAN: array-index-out-of-bounds in dquot_resume C done 1 138d 136d 44d e51d68e7 fs: quota: fix array-index-out-of-bounds bug by passing correct argument to vfs_cleanup_quota_inode()
WARNING: filesystem loop0 was created with 512 inodes, the real maximum is 511, mounting anyway C done 11 139d 207d 44d dc889b8d bfs: don't use WARNING: string when it's just info.
KASAN: use-after-free Read in htab_map_alloc C done 38 171d 174d 44d 8aaeed81 bpf: Fix error path in htab_map_alloc()
general protection fault in io_disable_sqo_submit C done 124 96d 99d 44d b4411616 io_uring: fix null-deref in io_disable_sqo_submit
BUG: unable to handle kernel paging request in htab_free_elems 1 138d 138d 44d e1868b9e bpf: Avoid overflows involving hash elem_size
KASAN: null-ptr-deref Write in bdi_put C done done 601 101d 135d 44d 2d2f6f1b block: pre-initialize struct block_device in bdev_alloc_inode
general protection fault in rose_transmit_clear_request C done 5 173d 638d 44d 3b3fd068 rose: Fix Null pointer dereference in rose_send_frame()
kernel BUG at net/core/skbuff.c:LINE! (3) C done 4399 59d 1176d 44d afbc293a af_key: relax availability checks for skb size calculation
UBSAN: shift-out-of-bounds in __red_change C unreliable 24 47d 135d 44d bd1248f1 net: sched: prevent invalid Scell_log shift count
KASAN: vmalloc-out-of-bounds Write in htab_map_alloc 6 131d 140d 44d e1868b9e bpf: Avoid overflows involving hash elem_size
KASAN: use-after-free Read in rxrpc_get_skb 1 92d 88d 44d 7b5eab57 rxrpc: Fix clearance of Tx/Rx ring when releasing a call
WARNING in io_uring_cancel_task_requests syz done 69 80d 84d 44d 70b2c60d io_uring: fix sqo ownership false positive warning
upstream test error: BUG: sleeping function called from invalid context in sta_info_move_state 53 154d 163d 44d 7bc40aed mac80211: free sta in sta_info_insert_finish() on errors
kernel BUG at fs/notify/dnotify/dnotify.c:LINE! (2) C inconclusive 2 145d 151d 44d 5d069dbe fuse: fix bad inode
BUG: receive list entry not found for dev vcan0, id 001, mask C00007FF C unreliable 5 151d 151d 44d d73ff9b7 can: af_can: can_rx_unregister(): remove WARN() statement from list operation sanity check
inconsistent lock state in io_file_data_ref_zero C done 7152 127d 151d 44d ac0648a5 io_uring: use bottom half safe lock for fixed file data
unregister_netdevice: waiting for DEV to become free (4) C done 50394 44d 246d 44d 5399d522 rxrpc: Fix deadlock around release of dst cached on udp tunnel
WARNING in bpf_prog_test_run_raw_tp C done 36 92d 103d 44d 7ac6ad05 bpf: Reject too big ctx_size_in for raw_tp test run
UBSAN: shift-out-of-bounds in gred_change C unreliable 5 57d 112d 44d bd1248f1 net: sched: prevent invalid Scell_log shift count
BUG: corrupted list in io_file_get C done 3 84d 84d 44d f609cbb8 io_uring: fix list corruption for splice file_get
linux-next test error: BUG: sleeping function called from invalid context in sta_info_move_state 3 164d 168d 44d 7bc40aed mac80211: free sta in sta_info_insert_finish() on errors
WARNING in io_wq_submit_work 4 91d 96d 44d ca70f00b io_uring: fix cancellation taking mutex while TASK_UNINTERRUPTIBLE
UBSAN: shift-out-of-bounds in option_probe C error 22 134d 135d 44d a251963f USB: serial: option: add interface-number sanity check to flag handling
KMSAN: kernel-infoleak in vmci_host_unlocked_ioctl C 22 72d 157d 44d 31dcb6c3 misc: vmw_vmci: fix kernel info-leak by initializing dbells in vmci_ctx_get_chkpt_doorbells()
general protection fault in jffs2_parse_param C error done 1632 125d 214d 44d a61df3c4 jffs2: Fix NULL pointer dereference in rp_size fs option parsing
KMSAN: uninit-value in number (2) C 168 45d 424d 44d c8c958a5 can: af_can: prevent potential access of uninitialized member in can_rcv() 9aa9379d can: af_can: prevent potential access of uninitialized member in canfd_rcv()
net test error: BUG: sleeping function called from invalid context in sta_info_move_state 4 161d 168d 44d 7bc40aed mac80211: free sta in sta_info_insert_finish() on errors
possible deadlock in send_sigio (2) C done done 40 113d 226d 44d 8d1ddb5e fcntl: Fix potential deadlock in send_sig{io, urg}()
kernel BUG at fs/reiserfs/prints.c:LINE! C done done 5 135d 213d 44d d24396c5 reiserfs: add check for an invalid ih_entry_count
KASAN: vmalloc-out-of-bounds Write in lzo_uncompress C done 8 75d 99d 44d e812cbbb squashfs: avoid out of bounds writes in decompressors
KASAN: slab-out-of-bounds Read in smc_nl_handle_smcr_dev 1 127d 123d 44d 995433b7 net/smc: fix access to parent of an ib device
BUG: unable to handle kernel paging request in pcpu_freelist_populate C unreliable 42 129d 140d 44d e1868b9e bpf: Avoid overflows involving hash elem_size
UBSAN: array-index-out-of-bounds in alg_bind C error 700 129d 189d 44d 92eb6c30 crypto: af_alg - avoid undefined behavior accessing salg_name
net-next test error: BUG: sleeping function called from invalid context in sta_info_move_state 12 154d 163d 44d 7bc40aed mac80211: free sta in sta_info_insert_finish() on errors
general protection fault in gfs2_ri_update 1 158d 154d 44d 77872151 gfs2: check for empty rgrp tree in gfs2_ri_update
memory leak in rxrpc_lookup_local C 1415 84d 548d 44d b8323f72 rxrpc: Fix memory leak in rxrpc_lookup_local
WARNING: suspicious RCU usage in wiphy_apply_custom_regulatory C done 28 127d 124d 44d 51d62f2f cfg80211: Save the regulatory domain with a lock
memory leak in generic_parse_monolithic C 11 135d 160d 44d 4cb68296 afs: Fix memory leak when mounting with multiple source parameters
WARNING in mptcp_reset_timer C unreliable 1307 61d 155d 44d b680a214 mptcp: update rtx timeout only if required.
KASAN: slab-out-of-bounds Write in record_print_text C done unreliable 17 85d 87d 44d 08d60e59 printk: fix string termination for record_print_text()
WARNING in xfrm_alloc_compat C done 130 56d 178d 44d dbd7ae51 xfrm/compat: Translate by copying XFRMA_UNSPEC attribute
UBSAN: shift-out-of-bounds in red_enqueue C unreliable 4906 44d 136d 44d bd1248f1 net: sched: prevent invalid Scell_log shift count
KMSAN: kernel-infoleak in move_addr_to_user (4) C 59 51d 103d 44d b42b3a27 can: isotp: isotp_getname(): fix kernel information leak
general protection fault in ext4_commit_super C done 4 123d 122d 44d c92dc856 ext4: defer saving error info from atomic context
UBSAN: array-index-out-of-bounds in arch_uprobe_analyze_insn C done 604 137d 214d 44d 12cb908a x86/insn-eval: Use new for_each_insn_prefix() macro to loop over prefixes bytes 84da009f x86/sev-es: Use new for_each_insn_prefix() macro to loop over prefixes bytes 4e9a5ae8 x86/uprobes: Do not use prefixes.nbytes when looping over prefixes.bytes
BUG: unable to handle kernel NULL pointer dereference in call_rcu C done 85 114d 117d 44d 13384f61 kasan: fix null pointer dereference in kasan_record_aux_stack
KASAN: vmalloc-out-of-bounds Read in htab_free_elems C unreliable 7 137d 138d 44d e1868b9e bpf: Avoid overflows involving hash elem_size
BUG: receive list entry not found for dev vxcan1, id 002, mask C00007FF C unreliable 3 148d 150d 44d d73ff9b7 can: af_can: can_rx_unregister(): remove WARN() statement from list operation sanity check
WARNING in rhashtable_free_and_destroy C error 3 140d 233d 44d 905b2032 mac80211: mesh: fix mesh_pathtbl_init() error path
BUG: unable to handle kernel NULL pointer dereference in __lookup_slow C inconclusive done 3 66d 207d 44d d24396c5 reiserfs: add check for an invalid ih_entry_count
BUG: sleeping function called from invalid context in sta_info_move_state C done 39248 139d 170d 44d 7bc40aed mac80211: free sta in sta_info_insert_finish() on errors
UBSAN: shift-out-of-bounds in strset_parse_request C done 16 107d 130d 44d efb796f5 ethtool: fix string set id check
KASAN: slab-out-of-bounds Read in btrfs_scan_one_device C done done 1 168d 164d 44d 0697d9a6 btrfs: don't access possibly stale fs_info data for printing duplicate device
WARNING in qrtr_tun_write_iter C error 57 72d 103d 44d 2a80c158 net/qrtr: restrict user-controlled length in qrtr_tun_write_iter()
memory leak in hub_event C 7 64d 153d 44d e469d0b0 media: gspca: Fix memory leak in probe
KASAN: invalid-access Read in kmem_cache_destroy 2 81d 85d 44d 757fed1d Revert "mm/slub: fix a memory leak in sysfs_slab_add()"
possible deadlock in send_sigurg (2) C done 25 131d 182d 44d 8d1ddb5e fcntl: Fix potential deadlock in send_sig{io, urg}()
possible deadlock in ovl_dir_real_file 1 81d 81d 44d b854cc65 ovl: avoid deadlock on directory ioctl
WARNING in yurex_write/usb_submit_urb C error 78 103d 131d 44d 372c9313 USB: yurex: fix control-URB timeout handling
kernel BUG at fs/ext4/inode.c:LINE! C done 9 114d 239d 44d 073861ed mm: fix VM_BUG_ON(PageTail) and BUG_ON(PageWriteback)
KCSAN: data-race in snd_rawmidi_poll / snd_rawmidi_proceed 378 128d 254d 44d 88a06d6f ALSA: rawmidi: Access runtime->avail always in spinlock
UBSAN: shift-out-of-bounds in cbq_dequeue C unreliable 27 92d 136d 44d e4bedf48 net_sched: reject silly cell_log in qdisc_get_rtab()
bpf-next test error: BUG: sleeping function called from invalid context in sta_info_move_state 13 139d 159d 44d 7bc40aed mac80211: free sta in sta_info_insert_finish() on errors
KASAN: use-after-free Write in __sco_sock_close C done done 10 165d 263d 44d 6dfccd13 Bluetooth: Fix null pointer dereference in hci_event_packet()
BUG: unable to handle kernel paging request in dqput C done 7 139d 208d 44d 11c514a9 quota: Sanity-check quota file headers on load
KMSAN: uninit-value in snd_seq_oss_synth_make_info (2) 1 102d 98d 44d 217bfbb8 ALSA: seq: oss: Fix missing error check in snd_seq_oss_synth_make_info()
UBSAN: shift-out-of-bounds in intel_pmu_refresh C unreliable 1237 85d 135d 44d e61ab2a3 KVM: x86/pmu: Fix UBSAN shift-out-of-bounds warning in intel_pmu_refresh()
UBSAN: shift-out-of-bounds in snd_usbmidi_get_ms_info C error 9 102d 121d 44d c06ccf3e ALSA: usb-audio: Fix UBSAN warnings for MIDI jacks
UBSAN: shift-out-of-bounds in snd_pcm_oss_change_params_locked C unreliable 225 120d 135d 44d 11cb881b ALSA: pcm: oss: Fix a few more UBSAN fixes
UBSAN: shift-out-of-bounds in ext4_fill_super C unreliable 88 119d 135d 44d c9200760 ext4: check for invalid block size early when mounting a file system
INFO: rcu detected stall in tipc_release C done done 4 155d 290d 44d cc00bcaa netfilter: x_tables: Switch synchronization to RCU
UBSAN: shift-out-of-bounds in vhci_hub_control C unreliable 4 84d 121d 44d 718bf42b usb: usbip: vhci_hcd: protect shift size
WARNING: filesystem loop5 was created with 512 inodes, the real maximum is 511, mounting anyway 2 150d 146d 44d dc889b8d bfs: don't use WARNING: string when it's just info.
general protection fault in tower_disconnect C 53 127d 135d 44d b175d273 USB: legotower: fix logical error in recent commit
kernel BUG at drivers/dma-buf/dma-buf.c:LINE! syz error done 11 161d 411d 44d e722a295 staging: ion: remove from the tree
WARNING: filesystem loop1 was created with 512 inodes, the real maximum is 511, mounting anyway 4 157d 206d 44d dc889b8d bfs: don't use WARNING: string when it's just info.
KCSAN: data-race in snd_seq_check_queue / snd_seq_control_queue (3) 111 129d 274d 44d 4ebd4703 ALSA: seq: Use bool for snd_seq_queue internal flags
KMSAN: uninit-value in x25_bind 2 106d 128d 44d 6ee50c8e net/x25: prevent a couple of overflows
memory leak in wacom_probe C 26 107d 161d 44d 37309f47 HID: wacom: Fix memory leakage caused by kfifo_alloc
KASAN: use-after-free Read in service_outstanding_interrupt C 28 103d 258d 44d 5e5ff0b4 USB: cdc-wdm: Fix use after free in service_outstanding_interrupt().
general protection fault in call_commit_handler C done 428 100d 181d 44d 51225651 wext: fix NULL-ptr-dereference with cfg80211's lack of commit()
BUG: unable to handle kernel paging request in smc_nl_handle_smcr_dev C 16 113d 135d 44d 995433b7 net/smc: fix access to parent of an ib device
KASAN: vmalloc-out-of-bounds Write in bpf_lru_populate C unreliable 19 130d 140d 44d e1868b9e bpf: Avoid overflows involving hash elem_size
memory leak in copy_process C 23 61d 158d 44d 450677dc mm/madvise: fix memory leak from process_madvise
UBSAN: shift-out-of-bounds in kvm_vcpu_after_set_cpuid 2 127d 122d 44d 2f80d502 KVM: x86: fix shift out of bounds reported by UBSAN
KASAN: stack-out-of-bounds Write in bitmap_from_arr32 C done 2 147d 143d 44d a770bf51 ethtool: fix stack overflow in ethnl_parse_bitset()
WARNING: filesystem loop3 was created with 512 inodes, the real maximum is 511, mounting anyway 3 143d 211d 44d dc889b8d bfs: don't use WARNING: string when it's just info.
possible deadlock in hugetlb_cow C unreliable 341 114d 137d 44d e7dd91c4 mm/hugetlb: fix deadlock in hugetlb_cow error path
KASAN: null-ptr-deref Write in start_transaction C done done 1 136d 163d 44d ecfdc08b btrfs: remove dio iomap DSYNC workaround
possible deadlock in proc_pid_syscall (2) 2 228d 238d 44d f7cfd871 exec: Transform exec_update_mutex into a rw_semaphore 78af4dc9 perf: Break deadlock involving exec_update_mutex
KASAN: slab-out-of-bounds Read in squashfs_export_iget C done error 3 115d 133d 44d eabac19e squashfs: add more sanity checks in inode lookup
WARNING in io_disable_sqo_submit C done 9 89d 97d 44d 6b393a1f io_uring: fix false positive sqo warning on flush
KASAN: null-ptr-deref Read in filp_close C done 9 124d 126d 44d fec8a6a6 close_range: unshare all fds for CLOSE_RANGE_UNSHARE | CLOSE_RANGE_CLOEXEC 6abc20f8 selftests/core: add regression test for CLOSE_RANGE_UNSHARE | CLOSE_RANGE_CLOEXEC
possible deadlock in _destroy_id C unreliable 28 147d 155d 44d dd37d2f5 RDMA/cma: Fix deadlock on &lock in rdma_cma_listen_on_all() error unwind
UBSAN: array-index-out-of-bounds in ieee80211_del_key (2) C error 3 135d 143d 44d 2d946308 nl80211: validate key indexes for cfg80211_registered_device
KASAN: use-after-free Read in rxrpc_send_data_packet 1 86d 81d 44d 7b5eab57 rxrpc: Fix clearance of Tx/Rx ring when releasing a call
general protection fault in hci_event_packet C done 25 210d 263d 44d 6dfccd13 Bluetooth: Fix null pointer dereference in hci_event_packet()
KASAN: use-after-free Read in dump_schedule C done done 7 120d 231d 44d cc00bcaa netfilter: x_tables: Switch synchronization to RCU
KASAN: invalid-free in p9_client_create (2) C done 3 85d 85d 44d 757fed1d Revert "mm/slub: fix a memory leak in sysfs_slab_add()"
possible deadlock in io_timeout_fn (2) 4 106d 112d 44d 4aa84f2f io_uring: dont kill fasync under completion_lock
WARNING: filesystem loop4 was created with 512 inodes, the real maximum is 511, mounting anyway 3 157d 153d 44d dc889b8d bfs: don't use WARNING: string when it's just info.
general protection fault in wext_handle_ioctl C inconclusive 9 87d 176d 44d 51225651 wext: fix NULL-ptr-dereference with cfg80211's lack of commit()
INFO: rcu detected stall in sys_exit_group (6) C 4 204d 211d 44d c583bcb8 rcu: Don't invoke try_invoke_on_locked_down_task() with irqs disabled
WARNING in cm109_input_ev/usb_submit_urb C unreliable 8 133d 153d 44d 82e06090 Input: cm109 - do not stomp on control URB
UBSAN: shift-out-of-bounds in hash_mac_create C unreliable 29 111d 130d 44d 5c8193f5 netfilter: ipset: fix shift-out-of-bounds in htable_bits()
upstream build error (11) 25 100d 177d 100d f78f63da mm/process_vm_access: Add missing #include <linux/compat.h>
possible deadlock in process_measurement (2) C done done 56 140d 507d 107d 15a8d68e mm/hugetlb: a page from buddy is not on any list
INFO: rcu detected stall in sys_open (2) C done done 42 164d 514d 120d 1d0e850a afs: Fix cell removal
BUG: unable to handle kernel paging request in cfb_imageblit C done done 30 155d 199d 120d a49145ac fbmem: add margin check to fb_check_caps()
KASAN: use-after-free Read in eth_type_trans C done error 3 344d 486d 120d 96aa1b22 tun: correct header offsets in napi frags mode
BUG: MAX_LOCKDEP_KEYS too low! C done error 3496 300d 544d 134d 1a33e10e net: partially revert dynamic lockdep key changes
BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low! C done error 25236 338d 778d 134d 1a33e10e net: partially revert dynamic lockdep key changes
INFO: rcu detected stall in __se_sys_mount C done done 2 166d 290d 135d 1d0e850a afs: Fix cell removal
BUG: sleeping function called from invalid context in ext4_superblock_csum_set 2 166d 172d 138d d196e229 Revert "ext4: fix superblock checksum calculation race"
KASAN: null-ptr-deref Write in kthread_use_mm C done 2 172d 171d 153d 4b70cf9d io_uring: ensure consistent view of original task ->mm from SQPOLL
WARNING in close_fs_devices (2) C 23 155d 216d 153d cf89af14 btrfs: dev-replace: fail mount if we don't have replace item with target device
memory leak in gadget_setup C 49 165d 181d 153d 129aa973 usb: raw-gadget: fix memory leak in gadget_setup
memory leak in gadget_bind C 62 165d 181d 153d 129aa973 usb: raw-gadget: fix memory leak in gadget_setup
general protection fault in io_uring_show_cred C done 4 169d 168d 153d 6b47ab81 io_uring: use correct pointer for io_uring_show_cred()
KASAN: use-after-free Write in io_submit_sqes C error 2 171d 170d 153d cb8a8ae3 io_uring: drop req/tctx io_identity separately
KASAN: use-after-free Read in __proc_create 1 208d 207d 157d 1d0e850a afs: Fix cell removal
INFO: rcu detected stall in process_one_work (3) C done done 1 198d 239d 157d 1d0e850a afs: Fix cell removal
INFO: task can't die in corrupted C done 4 171d 198d 157d 86f33603 f2fs: handle errors of f2fs_get_meta_page_nofail
BUG: corrupted list in kobject_add_internal C done done 9 195d 258d 157d a46b7ed4 Bluetooth: Fix auto-creation of hci_conn at Conn Complete event
WARNING in dma_map_page_attrs C unreliable 304 166d 183d 157d 683a9c7e RDMA: Fix software RDMA drivers for dma mapping error
WARNING in unlock_new_inode C done 76 194d 1099d 157d 8859bf2b reiserfs: only call unlock_new_inode() if I_NEW
memory leak in ieee80211_check_fast_xmit C 983 167d 211d 157d dcd479e1 mac80211: always wind down STA state
WARNING: suspicious RCU usage in ovs_flow_tbl_masks_cache_resize C error 1 177d 176d 157d fea07a48 net: openvswitch: silence suspicious RCU usage warning
general protection fault in xsk_release C done 2 210d 209d 157d 1fd17c8c xsk: Fix possible crash in socket_release when out-of-memory
memory leak in reiserfs_parse_options C 4 222d 417d 157d e9d4709f reiserfs: Fix memory leak in reiserfs_parse_options()
KMSAN: kernel-infoleak in scsi_cmd_ioctl 131 162d 234d 157d 6d53a9fe block/scsi-ioctl: Fix kernel-infoleak in scsi_put_cdrom_generic_arg()
WARNING in binder_transaction_buffer_release (2) C done done 442 290d 331d 157d e8b8ae7c binder: Remove bogus warning on failed same-process transaction
BUG: using __this_cpu_read() in preemptible code in trace_hardirqs_on C done 502745 160d 191d 157d f8e48a3d lockdep: Fix preemption WARN for spurious IRQ-enable
INFO: task hung in wdm_flush C 38294 235d 619d 157d 37d2a363 USB: cdc-wdm: Make wdm_flush() interruptible and add wdm_fsync().
INFO: trying to register non-static key in uhid_char_release C done done 26 234d 412d 157d bce1305c HID: core: Correctly handle ReportSize being zero
WARNING in ieee80211_s1g_channel_width C done 3 200d 200d 157d c1cd35c6 cfg80211: only allow S1G channels on S1G band
KMSAN: uninit-value in ieee80211_skb_resize C 5 186d 211d 157d 14f46c1e mac80211: fix use of skb payload instead of header
KASAN: global-out-of-bounds Read in precalculate_color C done done 170 218d 511d 157d e3158a5e media: vivid: Fix global-out-of-bounds read in precalculate_color()
general protection fault in percpu_ref_exit C done 3 193d 196d 157d 7ea6bf2e percpu_ref: don't refer to ref->data if it isn't allocated
KASAN: use-after-free Write in tcindex_change C done done 4 400d 401d 157d 0d1c3530 net_sched: keep alloc_hash updated after hash allocation
general protection fault in gfs2_rgrp_dump 1 199d 198d 157d 0e539ca1 gfs2: Fix NULL pointer dereference in gfs2_rgrp_dump
WARNING: refcount bug in do_enable_set C inconclusive done 8 260d 370d 157d b83764f9 Bluetooth: Fix kernel oops triggered by hci_adv_monitors_clear()
possible deadlock in cleanup_net C done 281 226d 234d 157d d966ddcc tipc: fix a deadlock when flushing scheduled work
general protection fault in utf8_casefold C done 1 197d 196d 157d f6322f3f f2fs: reject CASEFOLD inode flag without casefold feature
KASAN: use-after-free Read in sctp_auth_free C done 4 196d 197d 157d d42ee76e net-backports: sctp: fix sctp_auth_init_hmacs() error path
kernel panic: Fatal exception (3) C done 2 192d 190d 157d eadd1bef netem: fix zero division in tabledist
KASAN: use-after-free Read in ath9k_hif_usb_rx_cb C 2849 157d 392d 157d 03fb92a4 ath9k: hif_usb: fix race condition between usb_get_urb() and usb_kill_anchored_urbs()
memory leak in udf_process_sequence C 4 210d 214d 157d a7be300d udf: Fix memory leak when mounting
general protection fault in unlink_file_vma C done 1 230d 226d 157d bc4fe4cd mm: mmap: Fix general protection fault in unlink_file_vma()
KASAN: use-after-free Read in fscache_alloc_cookie syz done 1 210d 210d 157d 1d0e850a afs: Fix cell removal
KASAN: unknown-crash Read in do_exit C inconclusive done 2 215d 221d 157d a49145ac fbmem: add margin check to fb_check_caps()
WARNING in handle_exception_nmi C error done 2653 198d 203d 157d f8e48a3d lockdep: Fix preemption WARN for spurious IRQ-enable
KASAN: use-after-free Read in tipc_named_reinit 6 262d 317d 157d fdeba99b tipc: fix use-after-free in tipc_bcast_get_mode
kernel BUG at fs/f2fs/segment.h:LINE! 9 203d 215d 157d 6a257471 f2fs: fix to check segment boundary during SIT page readahead
KMSAN: uninit-value in ip_tunnel_xmit (2) C 11778 161d 986d 157d fdafed45 ip_gre: set dev->hard_header_len and dev->needed_headroom properly
WARNING: refcount bug in p9_req_put syz inconclusive done 6 337d 889d 157d a39c4606 net/9p: validate fds in p9_fd_open
INFO: rcu detected stall in ip_list_rcv C error done 3 205d 231d 157d 1d0e850a afs: Fix cell removal
UBSAN: array-index-out-of-bounds in precalculate_color C 153 192d 217d 157d e3158a5e media: vivid: Fix global-out-of-bounds read in precalculate_color()
KMSAN: uninit-value in can_receive (2) C 2060 162d 256d 157d e009f95b can: j1935: j1939_tp_tx_dat_new(): fix missing initialization of skbcnt
WARNING in syscall_exit_to_user_mode C done done 1 195d 223d 157d a49145ac fbmem: add margin check to fb_check_caps()
general protection fault in tcf_generic_walker syz 9 204d 207d 157d 580e4273 net_sched: check error pointer in tcf_dump_walker()
WARNING in print_bfs_bug C done 14759 189d 542d 157d 6d1823cc lockdep: Optimize the memory usage of circular queue
KASAN: use-after-free Read in io_wqe_worker C error 2 207d 208d 157d c4068bf8 io-wq: fix use-after-free in io_wq_worker_running
INFO: task hung in io_uring_setup C done 51 226d 232d 157d 7e84e1c7 io_uring: allow disabling rings during the creation
KMSAN: uninit-value in unix_find_other C 57 202d 1019d 157d 7ca1db21 net: 9p: initialize sun_server.sun_path to have addr's value only when addr is valid
KASAN: use-after-free Read in delete_partition C done done 3 233d 230d 157d 08fc1ab6 block: fix locking in bdev_del_partition
WARNING in get_signal C done 2 200d 202d 157d 7b3c36fc ptrace: fix task_join_group_stop() for the case when current is traced
KASAN: use-after-free Write in refcount_warn_saturate C inconclusive done 2 261d 420d 157d b83764f9 Bluetooth: Fix kernel oops triggered by hci_adv_monitors_clear()
INFO: task hung in addrconf_verify_work (3) C done 75 170d 205d 157d 0fedc63f net_sched: commit action insertions together
kernel panic: stack is corrupted in get_kernel_gp_address syz done done 1 191d 223d 157d a49145ac fbmem: add margin check to fb_check_caps()
WARNING: ODEBUG bug in exit_to_user_mode_prepare C done done 27 232d 237d 157d 77f4689d fix regression in "epoll: Keep a reference on files added to the check list"
KMSAN: uninit-value in batadv_hard_if_event (2) C 162 173d 256d 157d f45a4248 net: usb: rtl8150: set random MAC address when set_ethernet_addr() fails
INFO: task hung in ctrl_getfamily syz done done 22 251d 864d 157d 47733f9d tipc: fix uninit skb->data in tipc_nl_compat_dumpit()
WARNING: suspicious RCU usage in io_init_identity 1536 184d 189d 157d 1e6fa521 io_uring: COW io_identity on mismatch
KASAN: out-of-bounds Read in __switch_to (2) syz done done 1 205d 201d 157d a49145ac fbmem: add margin check to fb_check_caps()
WARNING: suspicious RCU usage in qrtr_ns_worker C done 1 239d 302d 157d a7809ff9 net: qrtr: ns: Protect radix_tree_deref_slot() using rcu read locks
inconsistent lock state in xa_destroy C 755 195d 196d 157d ca6484cd io_uring: no need to call xa_destroy() on empty xarray
KASAN: use-after-free Write in afs_manage_cell C done done 20 189d 259d 157d 1d0e850a afs: Fix cell removal
possible deadlock in _snd_pcm_stream_lock_irqsave C done 997 189d 226d 157d 6564d0ad ALSA: ctl: Workaround for lockdep warning wrt card->ctl_files_rwlock
INFO: task hung in io_uring_flush C done done 11 248d 255d 157d b7ddce3c io_uring: fix cancel of deferred reqs with ->files
memory leak in kobject_set_name_vargs (3) C 19 158d 214d 157d cb8d53d2 ext4: fix leaking sysfs kobject after failed mount
WARNING in percpu_ref_exit (2) C done done 272 193d 489d 157d c1e2148f io_uring: free fixed_file_data after RCU grace period
KASAN: slab-out-of-bounds Write in gfs2_fill_super C done 1 205d 204d 157d 0ddc5154 gfs2: add validation checks for size of superblock
WARNING in rxrpc_recvmsg C error done 5 293d 293d 157d 65550098 rxrpc: Fix race between recvmsg and sendmsg on immediate call failure
general protection fault in open_xa_dir C done 3 193d 204d 157d c2bb80b8 reiserfs: Fix oops during mount
KASAN: use-after-free Read in tcf_action_init C done 1 209d 207d 157d 0fedc63f net_sched: commit action insertions together
KMSAN: uninit-value in search_by_key 1549 162d 214d 157d 4443390e reiserfs: Initialize inode keys properly
INFO: task hung in ubi_detach_mtd_dev syz error error 4 338d 424d 157d d005f8c6 ubi: check kthread_should_stop() after the setting of task state
bpf-next test error: BUG: program execution failed: executor 0: exit status 67 12 189d 189d 157d d25e2e93 netfilter: restore NF_INET_NUMHOOKS
KMSAN: uninit-value in f2fs_lookup 17 169d 210d 157d 6d7ab88a f2fs: fix uninit-value in f2fs_lookup
INFO: rcu detected stall in exit_group C done done 1 195d 224d 157d 1d0e850a afs: Fix cell removal
KASAN: slab-out-of-bounds Read in ntfs_attr_find C done 9 191d 1116d 157d 4f8c9402 ntfs: add check for mft record size in superblock
KASAN: slab-out-of-bounds Read in strset_parse_request C error 141 196d 196d 157d db972e53 ethtool: strset: allow ETHTOOL_A_STRSET_COUNTS_ONLY attr
WARNING in arch_install_hw_breakpoint C inconclusive done 8 644d 761d 157d e898e69d x86/hw_breakpoints: Make default case in hw_breakpoint_arch_parse() return an error
KASAN: stack-out-of-bounds Read in xfrm_selector_match (2) 1 215d 213d 157d e94ee171 xfrm: Use correct address family in xfrm_state_find
KASAN: use-after-free Read in tipc_mcast_xmit (2) C done 37 189d 202d 157d ed42989e tipc: fix the skb_unshare() in tipc_buf_append()
KASAN: use-after-free Read in tipc_bcast_get_mode 1 263d 262d 157d fdeba99b tipc: fix use-after-free in tipc_bcast_get_mode
INFO: task hung in flush_to_ldisc C inconclusive done 15 434d 504d 157d e8c75a30 vt: selection, push sel_lock up
KASAN: use-after-free Write in io_wq_worker_running C error 14 200d 227d 157d c4068bf8 io-wq: fix use-after-free in io_wq_worker_running
KASAN: slab-out-of-bounds Read in soft_cursor C done 218 196d 505d 157d 988d0763 vt_ioctl: make VT_RESIZEX behave like VT_RESIZE
BUG: unable to handle kernel paging request in tcf_action_dump_terse C done 15 201d 207d 157d 580e4273 net_sched: check error pointer in tcf_dump_walker()
INFO: rcu detected stall in sys_mount (5) C done done 10 204d 226d 157d 1d0e850a afs: Fix cell removal
general protection fault in qp_release_pages C done 2 193d 193d 157d 90ca6333 VMCI: check return value of get_user_pages_fast() for errors
INFO: task hung in lock_sock_nested (3) C done 5 201d 202d 157d d9fb8c50 mptcp: fix infinite loop on recvmsg()/worker() race.
KMSAN: uninit-value in __fget_light (2) C 18 174d 184d 157d d5e4d0a5 inet_diag: validate INET_DIAG_REQ_PROTOCOL attribute
WARNING in ati_remote_sendpacket/usb_submit_urb C 22 328d 639d 157d a8be8005 media: ati_remote: sanity check for both endpoints
KASAN: stack-out-of-bounds Read in csd_lock_record C 226 288d 293d 157d 35feb604 kernel/smp: Provide CSD lock timeout diagnostics
KASAN: use-after-free Read in afs_deactivate_cell (2) C done 11 195d 213d 157d 1d0e850a afs: Fix cell removal
possible deadlock in mnt_want_write C done done 662 197d 1004d 157d 146d62e5 ovl: detect overlapping layers
general protection fault in ieee80211_key_free C done 3 193d 198d 157d 3dc289f8 net: wireless: nl80211: fix out-of-bounds access in nl80211_del_key()
general protection fault in __do_sys_io_uring_register 80 184d 190d 157d 55cbc256 io_uring: fix error path cleanup in io_sqe_files_register()
KASAN: use-after-free Write in vcs_read C done 11 240d 245d 157d 52c3c3a5 Revert "vc_screen: extract vcs_read_buf_header"
WARNING in irqentry_exit C error done 2080 192d 259d 157d 4d004099 lockdep: Fix lockdep recursion
INFO: rcu detected stall in sys_newlstat C error done 1 212d 211d 157d 1d0e850a afs: Fix cell removal
kernel BUG at net/rxrpc/conn_object.c:LINE! C done 855 160d 225d 157d 546a4241 rxrpc: Fix conn bundle leak in net-namespace exit
possible deadlock in dev_uc_sync C done 3 193d 290d 157d 0e8b8d6a net: core: use list_del_init() instead of list_del() in netdev_run_todo()
WARNING in wp_page_copy syz done done 9 430d 507d 157d c3e5ea6e mm: avoid data corruption on CoW fault into PFN-mapped VMA
general protection fault in vmk80xx_write_packet C 82 198d 653d 157d e1f13c87 staging: comedi: check validity of wMaxPacketSize of usb endpoints found
general protection fault in rt6_fill_node C done done 3 242d 239d 157d eeaac363 net: nexthop: don't allow empty NHA_GROUP
KASAN: use-after-free Read in afs_manage_cell 5 199d 213d 157d 1d0e850a afs: Fix cell removal
KMSAN: uninit-value in do_ip_vs_set_ctl C 365 162d 951d 157d c5a8a849 ipvs: Fix uninit-value in do_ip_vs_set_ctl()
memory leak in __team_options_register C 1 227d 227d 157d 9a9e7749 net: team: fix memory leak in __team_options_register
general protection fault in nexthop_is_blackhole C done done 1 242d 239d 157d eeaac363 net: nexthop: don't allow empty NHA_GROUP
KASAN: use-after-free Read in ucma_close (2) syz done 1 224d 224d 157d f5449e74 RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy
UBSAN: array-index-out-of-bounds in ieee80211_del_key C done 685 167d 211d 157d 3dc289f8 net: wireless: nl80211: fix out-of-bounds access in nl80211_del_key()
INFO: task hung in htable_put C done done 29 430d 483d 157d 99b79c39 netfilter: xt_hashlimit: unregister proc file before releasing mutex
KASAN: use-after-free Write in xp_put_pool C done 50 210d 233d 157d 83cf5c68 xsk: Fix use-after-free in failed shared_umem bind
KASAN: use-after-free Read in __cfg8NUM_wpan_dev_from_attrs (2) C error done 5 291d 291d 157d bf64ff4c genetlink: get rid of family->attrbuf
kernel panic: System is deadlocked on memory C done 43 284d 282d 157d 9066e5cf mm, oom: make the calculation of oom badness more accurate
general protection fault in strncasecmp C done 1 212d 211d 157d 92e3cc91 afs: Fix rapid cell addition/removal by not using RCU on cells tree
KASAN: slab-out-of-bounds Read in f2fs_build_segment_manager C error 2 210d 210d 157d 3a22e9ac f2fs: fix to do sanity check on segment/section count
KMSAN: uninit-value in udf_get_pblock_spar15 1 213d 211d 157d 44ac6b82 udf: Limit sparing table size
WARNING: refcount bug in l2cap_chan_put C inconclusive done 13 260d 424d 157d b83764f9 Bluetooth: Fix kernel oops triggered by hci_adv_monitors_clear()
KASAN: use-after-free Write in afs_deactivate_cell 4 191d 211d 157d 1d0e850a afs: Fix cell removal
WARNING: proc registration bug in afs_manage_cell C done 1 211d 207d 157d 1d0e850a afs: Fix cell removal
INFO: trying to register non-static key in exfat_cache_inval_inode C done 4 200d 207d 157d 8ff006e5 exfat: fix use of uninitialized spinlock on error path
WARNING in nla_get_range_unsigned C done 63 233d 234d 157d c30a3c95 netlink: policy: correct validation type check
KASAN: use-after-free Read in bit_putcs C 12 204d 424d 157d 988d0763 vt_ioctl: make VT_RESIZEX behave like VT_RESIZE
BUG: using smp_processor_id() in preemptible code in tipc_crypto_xmit C done done 468 230d 300d 157d bb8872a1 tipc: fix using smp_processor_id() in preemptible
general protection fault in xsk_is_setup_for_bpf_map C error 294 210d 233d 157d 968be23c xsk: Fix possible segfault at xskmap entry insertion
KMSAN: uninit-value in udf_evict_inode 159 162d 210d 157d 044e2e26 udf: Avoid accessing uninitialized data on failed inode read
inconsistent lock state in io_uring_add_task_file 1 196d 196d 157d ce765372 io_uring: Fix use of XArray in __io_uring_files_cancel
memory leak in read_adv_mon_features C 2 227d 250d 157d cafd472a Bluetooth: Fix memory leak in read_adv_mon_features()
INFO: trying to register non-static key in del_timer_sync (2) C 1206 689d 741d 157d 621a3a8b mwifiex: don't call del_timer_sync() on uninitialized timer
inconsistent lock state in icmp_send syz done done 1 365d 862d 157d 13788174 tipc: block BH before using dst_cache
INFO: task can't die in rtnetlink_rcv_msg 5 197d 206d 157d 0fedc63f net_sched: commit action insertions together
BUG: unable to handle kernel paging request in pvclock_gtod_notify C done done 8 203d 222d 157d a49145ac fbmem: add margin check to fb_check_caps()
INFO: trying to register non-static key in uhid_dev_destroy C unreliable done 40 240d 412d 157d bce1305c HID: core: Correctly handle ReportSize being zero
WARNING in bpf_raw_tp_link_fill_link_info C error 56 210d 225d 157d b474959d bpf: Fix a buffer out-of-bound access when filling raw_tp link_info
KMSAN: uninit-value in qtree_entry_unused 396 162d 214d 157d 3d3dc274 quota: clear padding in v2r1_mem2diskdqb()
KASAN: use-after-free Write in rxrpc_put_bundle C done 229 195d 219d 157d f3af4ad1 rxrpc: Fix bundle counting for exclusive connections
KASAN: use-after-free Read in tcf_action_destroy C done 8 199d 214d 157d 0fedc63f net_sched: commit action insertions together
memory leak in xdp_umem_create C 17 161d 181d 157d e5e1a4bc xsk: Fix possible memory leak at socket close
general protection fault in xsk_diag_dump (2) C 354 214d 233d 157d 53ea2076 xsk: Fix possible segfault in xsk umem diagnostics
INFO: rcu detected stall in security_file_open (3) C done done 2 205d 204d 157d 1d0e850a afs: Fix cell removal
general protection fault in tcf_action_destroy (2) C done done 29 195d 408d 157d 0d1c3530 net_sched: keep alloc_hash updated after hash allocation
KASAN: global-out-of-bounds Read in fbcon_get_font C inconclusive inconclusive 41 203d 500d 157d 5af08640 fbcon: Fix global-out-of-bounds read in fbcon_get_font()
WARNING: suspicious RCU usage in ctrl_cmd_new_lookup C done done 10 213d 302d 157d a7809ff9 net: qrtr: ns: Protect radix_tree_deref_slot() using rcu read locks
general protection fault in io_poll_double_wake (2) C error 2 207d 207d 183d 8706e04e io_uring: always delete double poll wait entry on match
possible deadlock in io_write 2 204d 207d 183d fad8e0de io_uring: fix potential ABBA deadlock in ->show_fdinfo()
kernel BUG at lib/string.c:LINE! (5) C done 558 211d 219d 190d 35be8851 btrfs: fix overflow when copying corrupt csums for a message
general protection fault in madvise_cold_or_pageout_pte_range C done 3 211d 221d 192d ce268425 mm: validate pmd after splitting
KASAN: global-out-of-bounds Read in fbcon_resize C error 673 214d 246d 195d ec0972ad fbcon: Fix user font detection test at fbcon_resize().
WARNING: suspicious RCU usage in fib6_del (2) 1 227d 227d 195d 843d926b ipv6: avoid lockdep issue in fib6_del()
KASAN: use-after-free Read in ieee8NUM_tx 1 228d 228d 195d 0ff4628f mac802154: tx: fix use-after-free
general protection fault in wg_index_hashtable_replace 2 216d 227d 195d 9179ba31 wireguard: noise: take lock when removing handshake entry from table
memory leak in do_seccomp C 6 227d 254d 195d a566a901 seccomp: don't leak memory when filter install races
inconsistent lock state in padata_do_parallel 9 213d 233d 195d 1b0df11f padata: fix possible padata_works_lock deadlock
KASAN: use-after-free Write in skb_queue_tail 1 226d 226d 195d 3ca1a42a net: qrtr: check skb_put_padto() return value
possible deadlock in peernet2id_alloc 12 226d 398d 195d e1f469cd Revert "netns: don't disable BHs when locking "nsid_lock""
KMSAN: uninit-value in __inet_diag_dump C 37 196d 214d 195d d5e4d0a5 inet_diag: validate INET_DIAG_REQ_PROTOCOL attribute
memory leak in do_eventfd C 2 242d 337d 195d f6588660 KVM: fix memory leak in kvm_io_bus_unregister_dev()
KASAN: slab-out-of-bounds Read in read_descriptors (2) 1 245d 241d 195d a18cd6c9 usb: core: fix slab-out-of-bounds Read in read_descriptors
INFO: rcu detected stall in cleanup_net (4) C done 5 230d 226d 195d b5b73b26 taprio: Fix allowing too small intervals
KASAN: slab-out-of-bounds Read in fbcon_scrolldelta 1 221d 221d 195d 50145474 fbcon: remove soft scrollback code
INFO: task hung in tcf_ife_init C done 4 227d 232d 195d cc8e58f8 act_ife: load meta modules before tcf_idr_check_alloc()
KASAN: slab-out-of-bounds Read in prism2sta_probe_usb C 8 235d 266d 195d fea22e15 staging: wlan-ng: fix out of bounds read in prism2sta_probe_usb()
KMSAN: uninit-value in inet_diag_cmd_exact C 31 196d 208d 195d d5e4d0a5 inet_diag: validate INET_DIAG_REQ_PROTOCOL attribute
KASAN: global-out-of-bounds Read in vga16fb_imageblit C done 1071 222d 506d 195d bd018a6a video: fbdev: fix OOB read in vga_8planes_imageblit()
memory leak in tipc_group_create_member C 32 222d 630d 195d bb3a420d tipc: Fix memory leak in tipc_group_create_member()
general protection fault in free_netdev C error done 3605 271d 305d 203d 46ef5b89 ip6_gre: fix null-ptr-deref in ip6gre_init_net()
KASAN: use-after-free Write in page_counter_uncharge 2 242d 247d 203d f1796544 memcg: fix use-after-free in uncharge_batch
KASAN: use-after-free Write in page_counter_cancel 1 251d 247d 203d f1796544 memcg: fix use-after-free in uncharge_batch
KASAN: use-after-free Read in do_madvise syz error 4 243d 244d 203d 7867fd7c mm: madvise: fix vma user-after-free
KMSAN: kernel-infoleak in move_addr_to_user (3) C 79 218d 252d 207d 38ba8b92 can: j1939: fix kernel-infoleak in j1939_sk_sock2sockaddr_can()
KASAN: slab-out-of-bounds Write in hiddev_ioctl_usage C 279 237d 580d 210d 25a097f5 HID: hiddev: Fix slab-out-of-bounds write in hiddev_ioctl_usage()
WARNING: refcount bug in red_destroy C done 1 241d 239d 210d 5438dd45 net_sched: fix error path in red_init()
WARNING in slab_pre_alloc_hook C 210 235d 255d 210d f176ede3 USB: yurex: Fix bad gfp argument
WARNING: refcount bug in smc_release (3) 1 238d 227d 210d 5fb8642a net/smc: fix sock refcounting in case of termination
INFO: rcu detected stall in ext4_file_write_iter C inconclusive done 93 254d 787d 210d 7e249690 block: allow for_each_bvec to support zero len bvec
WARNING: refcount bug in qdisc_put (2) C done 7 240d 239d 210d 5438dd45 net_sched: fix error path in red_init()
BUG: corrupted list in mousedev_release syz done 5 233d 235d 210d 77f4689d fix regression in "epoll: Keep a reference on files added to the check list"
KASAN: use-after-free Read in snd_pcm_oss_release 1 239d 238d 210d 77f4689d fix regression in "epoll: Keep a reference on files added to the check list"
possible deadlock in __lock_task_sighand C done 12 234d 236d 210d fd7d6de2 io_uring: don't recurse on tsk->sighand->siglock with signalfd
WARNING in snd_pcm_plugin_build_mulaw C done 4 236d 234d 210d 949a1ebe ALSA: pcm: oss: Remove superfluous WARN_ON() for mulaw sanity check
general protection fault in snd_ctl_release syz done 4 232d 233d 210d 77f4689d fix regression in "epoll: Keep a reference on files added to the check list"
KMSAN: uninit-value in batadv_tt_hash_find 11 225d 282d 210d 303216e7 batman-adv: Avoid uninitialized chaddr when handling DHCP
KASAN: global-out-of-bounds Read in bit_putcs C done 262 211d 504d 210d 39b3cffb fbcon: prevent user font height or width change from causing potential out-of-bounds access bc5269ca vt_ioctl: change VT_RESIZEX ioctl to check for error return from vc_resize()
KASAN: use-after-free Read in fbcon_cursor syz done error 10 250d 494d 210d f8d1653d vt: defer kfree() of vc_screenbuf in vc_do_resize()
KASAN: use-after-free Read in rc_dev_uevent 1 259d 259d 210d 4f0835d6 media: rc: uevent sysfs file races with rc_unregister_device()
upstream boot error: KASAN: global-out-of-bounds Read in internal_create_group 273 241d 254d 210d 62c78927 libnvdimm: KASAN: global-out-of-bounds Read in internal_create_group
KMSAN: uninit-value in video_usercopy C 28 275d 275d 210d 4ffb879e media: media/v4l2-core: Fix kernel-infoleak in video_put_user()
INFO: task hung in nbd_ioctl (2) 37 237d 290d 210d 2a63866c tipc: fix shutdown() of connectionless socket
WARNING in restore_regulatory_settings C done 10414 228d 472d 210d 47caf685 cfg80211: regulatory: reject invalid hints
INFO: task hung in pipe_release (2) syz done 3 232d 263d 210d 7e249690 block: allow for_each_bvec to support zero len bvec
KMSAN: kernel-infoleak in raw_ioctl C 22 232d 256d 210d a092b723 net: usb: Fix uninit-was-stored issue in asix_read_phy_addr()
KASAN: use-after-free Read in bdev_del_partition C done 1 234d 234d 210d 08fc1ab6 block: fix locking in bdev_del_partition
KASAN: vmalloc-out-of-bounds Write in bitfill_aligned C 475 270d 505d 213d 033724d6 fbdev: Detect integer underflow at "struct fbcon_ops"->clear_margins.
BUG: unable to handle kernel paging request in vmx_vcpu_run C error error 194 993d 1107d 214d kvm: vmx: Nested VM-entry prereqs for event inj.
possible deadlock in __io_queue_deferred C error 1 257d 255d 218d 7271ef3a io_uring: fix recursive completion locking on oveflow flush
kernel BUG at mm/hugetlb.c:LINE! C done error 10 269d 382d 218d 15568299 hugetlbfs: prevent filesystem stacking of hugetlbfs
WARNING in r871xu_dev_remove C 47375 258d 609d 218d b4383c97 staging: rtl8712: handle firmware load failure
WARNING in ptrace_stop C done 1413 269d 273d 218d d136122f sched: Fix race against ptrace_freeze_trace()
general protection fault in do_con_write C done 10703 270d 506d 218d ce684552 vt: Reject zero-sized screen buffer size.
general protection fault in __btf_resolve_helper_id C 17 283d 291d 218d 5b801dfb bpf: Fix NULL pointer dereference in __btf_resolve_helper_id()
KASAN: use-after-free Read in line6_submit_audio_in_all_urbs 2 286d 300d 218d 68359a1a ALSA: line6: Sync the pending work cancel at disconnection
INFO: task hung in ovs_exit_net 65 271d 274d 218d a65878d6 net: openvswitch: fixes potential deadlock in dp cleanup code
memory leak in erase_aeb (2) syz 25 277d 346d 218d 3b185255 ubi: fastmap: Don't produce the initial next anchor PEB when fastmap is disabled
KASAN: use-after-free Write in __linkwatch_run_queue C error 24 273d 274d 218d c75d1d52 bonding: check return value of register_netdevice() in bond_newlink()
WARNING in fat12_ent_blocknr 2 262d 286d 218d a090a5a7 fat: fix fat_ra_init() for data clusters == 0
general protection fault in x86_fsgsbase_read_task C done 2 252d 252d 218d 8ab49526 x86/fsgsbase/64: Fix NULL deref in 86_fsgsbase_read_task
WARNING in __kernel_read C done 60 225d 284d 218d a39c4606 net/9p: validate fds in p9_fd_open
WARNING in inc_nlink C done 26 284d 387d 218d facb03dd fs/minix: don't allow getting deleted inodes
KASAN: use-after-free Read in delete_and_unsubscribe_port (2) syz done 4 262d 288d 218d 80982c7e ALSA: seq: oss: Serialize ioctls
KASAN: use-after-free Write in addr_resolve 1 319d 316d 218d f6a9d47a RDMA/cma: Execute rdma_cm destruction from a handler properly
general protection fault in cdev_del C 315 228d 695d 218d e911e99a usb: hso: check for return value in hso_serial_common_create()
general protection fault in afs_dynroot_depopulate 1 246d 245d 218d 5e0b17b0 afs: Fix NULL deref in afs_dynroot_depopulate()
KASAN: use-after-free Read in sock_def_write_space (2) C error 29 219d 276d 218d af9f691f qrtr: orphan socket in qrtr_release()
kernel BUG at mm/khugepaged.c:LINE! C done 30 245d 256d 218d f3f99d63 khugepaged: adjust VM_BUG_ON_MM() in __khugepaged_enter()
possible deadlock in shmem_fallocate (4) C done 81 269d 483d 218d 3e338d3c staging: android: ashmem: Fix lockdep warning for write operation
BUG: unable to handle kernel NULL pointer dereference in loop_rw_iter C done 24 244d 255d 218d 2dd2111d io_uring: Fix NULL pointer dereference in loop_rw_iter()
kernel BUG at net/rxrpc/recvmsg.c:LINE! C error 10 265d 293d 218d 65550098 rxrpc: Fix race between recvmsg and sendmsg on immediate call failure
KASAN: use-after-free Read in addr_handler (2) 2 273d 316d 218d f6a9d47a RDMA/cma: Execute rdma_cm destruction from a handler properly
KASAN: use-after-free Read in io_async_task_func syz error 1 255d 255d 218d 6d816e08 io_uring: hold 'ctx' reference around task_work queue + execute
WARNING in idr_alloc C done 65 227d 302d 218d 8dfddfb7 net: qrtr: fix usage of idr in port assignment to socket
WARNING in drop_nlink C done error 1 366d 362d 218d facb03dd fs/minix: don't allow getting deleted inodes
KASAN: slab-out-of-bounds Read in vc_do_resize C done 55 255d 491d 218d d88ca7e1 fbmem: pull fbcon_update_vcs() out of fb_set_var()
general protection fault in fib_dump_info (2) C done 16 242d 244d 218d eeaac363 net: nexthop: don't allow empty NHA_GROUP
KASAN: slab-out-of-bounds Read in vsscanf (2) C error 5 261d 274d 218d a6bd4f6d Smack: fix another vsscanf out of bounds
KMSAN: uninit-value in netlink_policy_dump_start C 31 223d 227d 218d d1fb5559 netlink: fix state reallocation in policy export
possible deadlock in uprobe_clear_state (2) 1 285d 281d 218d f867c771 binder: Don't use mmput() from shrinker function.
KASAN: null-ptr-deref Write in media_request_close C done 17 261d 309d 218d e30cc79c media: media-request: Fix crash if memory allocation fails
KASAN: use-after-free Read in devlink_health_reporter_destroy C error 1188 282d 283d 218d 5d037b4d devlink: Fix use-after-free when destroying health reporters
kernel BUG at net/core/dev.c:LINE! (3) C done 979 233d 377d 218d 83270702 bonding: fix a potential double-unregister
KASAN: use-after-free Read in ceph_mdsc_destroy 4 258d 274d 218d a7caa88f ceph: fix use-after-free for fsc->mdsc
KASAN: use-after-free Read in path_init (2) C done 29 252d 254d 218d 24fb33d4 fix breakage in do_rmdir()
WARNING in __kernel_write C done 522 267d 287d 218d a39c4606 net/9p: validate fds in p9_fd_open
KMSAN: uninit-value in get_block C 13 334d 337d 218d 270ef410 fs/minix: reject too-large maximum file size
WARNING: suspicious RCU usage in ovs_flow_tbl_masks_cache_size C done 4093 259d 261d 218d fea07a48 net: openvswitch: silence suspicious RCU usage warning
WARNING in submit_rx_urb/usb_submit_urb C 397 270d 694d 218d faaff976 staging: wlan-ng: properly check endpoint types
WARNING in ib_unregister_device_queued 2 350d 361d 218d 0cb42c02 RDMA/core: Fix bogus WARN_ON during ib_unregister_device_queued()
KASAN: use-after-free Read in get_block C done 23 284d 362d 218d 270ef410 fs/minix: reject too-large maximum file size
WARNING in idtentry_exit_cond_rcu syz 6 292d 288d 218d bce9b042 x86/traps: Disable interrupts in exc_aligment_check()
INFO: task hung in ovs_dp_masks_rebalance 771 231d 274d 218d a65878d6 net: openvswitch: fixes potential deadlock in dp cleanup code
memory leak in nf_tables_addchain C 1 257d 254d 218d 59136aa3 netfilter: nf_tables: free chain context when BINDING flag is missing
KASAN: null-ptr-deref Write in get_block C done 101 284d 398d 218d da27e0a0 fs/minix: check return value of sb_getblk()
WARNING: suspicious RCU usage in tipc_l2_send_msg syz done 60 242d 300d 218d f6db9096 tipc: call rcu_read_lock() in tipc_aead_encrypt_done()
WARNING in compat_do_ebt_get_ctl C done 15 248d 259d 218d 5c04da55 netfilter: ebtables: reject bogus getopt len value
memory leak in io_submit_sqes C 2 235d 254d 218d a36da65c io_uring: fail poll arm on queue proc failure
WARNING in __nf_unregister_net_hook (2) C done 9 284d 283d 218d 1e9451cb netfilter: nf_tables: fix nat hook table deletion
KCSAN: data-race in page_counter_try_charge / page_counter_try_charge (2) 148 253d 497d 218d 6e4bd50f mm/page_counter: fix various data races at memsw
KASAN: use-after-free Read in j1939_tp_txtimer C done error 5 285d 483d 218d cd3b3636 can: j1939: transport: j1939_session_tx_dat(): fix use-after-free read in j1939_tp_txtimer()
KASAN: use-after-free Write in get_block C inconclusive inconclusive 12 300d 350d 218d 270ef410 fs/minix: reject too-large maximum file size
KASAN: use-after-free Read in l2cap_chan_close C done 37 260d 440d 218d f9c70bdc Bluetooth: add a mutex lock to avoid UAF in do_enale_set
KASAN: use-after-free Read in ax88172a_unbind C done 2723 270d 510d 218d c28d9a28 ax88172a: fix ax88172a_unbind() failures
linux-next boot error: WARNING in mem_cgroup_css_alloc 6 252d 253d 218d 9f457179 mm: memcontrol: fix warning when allocating the root cgroup
KCSAN: data-race in vm_area_dup / vma_interval_tree_remove (2) 70 312d 426d 218d cda099b3 fork: Annotate a data race in vm_area_dup()
general protection fault in vsock_poll syz done 15 263d 275d 218d 1980c058 vsock: fix potential null pointer dereference in vsock_poll()
BUG: corrupted list in p9_read_work (2) syz done error 38 520d 882d 218d 74d6a5d5 9p/trans_fd: Fix concurrency del of req_list in p9_fd_cancelled/p9_read_work
general protection fault in io_poll_double_wake C done 8 222d 250d 218d d4e7cd36 io_uring: sanitize double poll handling
KMSAN: uninit-value in geneve_xmit C 163 222d 275d 218d 32818c07 geneve: fix an uninitialized value in geneve_changelink()
general protection fault in syscall_return_slowpath syz inconclusive done 1 324d 411d 218d 033724d6 fbdev: Detect integer underflow at "struct fbcon_ops"->clear_margins.
KMSAN: uninit-value in ax25_connect C 15 226d 359d 218d 2f2a7ffa AX.25: Fix out-of-bounds read in ax25_connect()
general protection fault in j1939_netdev_start C done 8 271d 422d 218d af804b78 can: j1939: socket: j1939_sk_bind(): make sure ml_priv is allocated
KASAN: slab-out-of-bounds Read in hci_extended_inquiry_result_evt C 16 261d 289d 218d 51c19bf3 Bluetooth: Fix slab-out-of-bounds read in hci_extended_inquiry_result_evt()
KASAN: wild-memory-access Read in rawv6_setsockopt 2 259d 259d 218d 519a8a6c net: Revert "net: optimize the sockptr_t for unified kernel/user address spaces"
KASAN: out-of-bounds Read in pebs_update_state syz inconclusive done 1 295d 343d 218d 033724d6 fbdev: Detect integer underflow at "struct fbcon_ops"->clear_margins.
WARNING in submit_audio_out_urb/usb_submit_urb syz 2 288d 287d 218d 6e8a914a ALSA: line6: Perform sanity check for each URB creation
KASAN: use-after-free Read in lockref_get 7 322d 422d 218d bad8e64f blktrace: fix debugfs use after free
KASAN: use-after-free Read in io_uring_setup (2) 1 267d 266d 218d d1719f70 io_uring: don't touch 'ctx' after installing file descriptor
KASAN: use-after-free Read in __xfrm6_tunnel_spi_lookup C error 12 276d 281d 218d 8b404f46 xfrm: interface: not xfrmi_ipv6/ipip_handler twice
general protection fault in khugepaged C done 3 275d 288d 218d 594cced1 khugepaged: fix null-pointer dereference due to race
KASAN: invalid-free in snd_seq_port_disconnect syz done 9 262d 267d 218d 80982c7e ALSA: seq: oss: Serialize ioctls
KASAN: slab-out-of-bounds Write in sctp_setsockopt C error 590 269d 274d 218d dfd3d526 sctp: fix slab-out-of-bounds in SCTP_DELAYED_SACK processing
possible deadlock in io_timeout_fn C done 4 253d 255d 218d 51a4cc11 io_uring: defer file table grabbing request cleanup for locked requests
KMSAN: uninit-value in ucma_connect C 138 223d 275d 218d 31142a4b RDMA/cm: Add min length checks to user structure copies
WARNING in snd_usbmidi_submit_urb/usb_submit_urb C done 42 301d 326d 218d 9b7e5208 ALSA: usb-audio: Fix race against the error recovery URB submission
WARNING in snd_info_get_line C done 36 274d 280d 218d 60379ba0 ALSA: info: Drop WARN_ON() from buffer NULL sanity check
WARNING: suspicious RCU usage in ovs_flow_tbl_destroy C done 658 259d 261d 218d fea07a48 net: openvswitch: silence suspicious RCU usage warning
INFO: task hung in __do_sys_reboot 1554 235d 290d 218d b292b50b driver core: Fix probe_count imbalance in really_probe()
INFO: trying to register non-static key in red_destroy C error 318 270d 291d 218d 608b4ada net_sched: initialize timer earlier in red_init()
general protection fault in go7007_usb_probe C 2103 258d 366d 218d 13764128 go7007: add sanity checking for endpoints
KASAN: slab-out-of-bounds Read in hci_inquiry_result_with_rssi_evt C error 9 263d 283d 218d 629b49c8 Bluetooth: Prevent out-of-bounds read in hci_inquiry_result_with_rssi_evt()
KMSAN: uninit-value in __tipc_nl_compat_dumpit (3) C 6181 219d 283d 218d 47733f9d tipc: fix uninit skb->data in tipc_nl_compat_dumpit()
KASAN: wild-memory-access Read in ip_setsockopt C 2 252d 252d 218d 519a8a6c net: Revert "net: optimize the sockptr_t for unified kernel/user address spaces"
WARNING: suspicious RCU usage in bond_ipsec_add_sa 214 219d 290d 218d f548a476 bonding: don't need RTNL for ipsec helpers
KASAN: wild-memory-access Read in sctp_setsockopt C 2 252d 252d 218d 519a8a6c net: Revert "net: optimize the sockptr_t for unified kernel/user address spaces"
KMSAN: uninit-value in xa_load C 208 219d 275d 218d 31142a4b RDMA/cm: Add min length checks to user structure copies
WARNING in vkms_vblank_simulate C done 12903 225d 801d 218d 51f644b4 drm/atomic-helper: reset vblank on crtc reset
WARNING in snd_usbmidi_input_start/usb_submit_urb C done 231 279d 321d 218d 9b7e5208 ALSA: usb-audio: Fix race against the error recovery URB submission
KASAN: use-after-free Read in smk_write_relabel_self C done 2 322d 318d 218d beb4ee67 Smack: fix use-after-free in smk_write_relabel_self()
possible deadlock in pipe_lock (3) C inconclusive done 4 446d 483d 247d 1a980b8c ovl: add splice file read write helper
possible deadlock in dev_mc_unsync C error done 78 285d 300d 247d be74294f net: get rid of lockdep_set_class_and_subclass()
possible deadlock in lock_trace (3) syz inconclusive done 69 386d 520d 247d 2db9dbf7 proc: Use new infrastructure to fix deadlocks in execve
possible deadlock in do_io_accounting (3) C inconclusive done 39 393d 483d 247d 76518d37 proc: io_accounting: Use new infrastructure to fix deadlocks in execve
possible deadlock in proc_pid_personality syz inconclusive done 3 402d 412d 247d 2db9dbf7 proc: Use new infrastructure to fix deadlocks in execve
WARNING: bad unlock balance in rcu_lock_release C inconclusive done 1433 388d 669d 247d 10476e63 locking/lockdep: Fix bad recursion pattern
WARNING in hsr_addr_subst_dest C done done 8639 384d 841d 247d 4b793acd hsr: use netdev_err() instead of WARN_ONCE()
WARNING: locking bug in try_to_grab_pending syz error done 1 337d 799d 247d 13788174 tipc: block BH before using dst_cache
KASAN: stack-out-of-bounds Read in update_stack_state C unreliable done 388 462d 1156d 247d init, tracing: Add initcall trace events
WARNING: bad unlock balance in rcu_core C inconclusive done 3578 384d 740d 247d 10476e63 locking/lockdep: Fix bad recursion pattern
general protection fault in qrtr_endpoint_post C done done 54 285d 303d 254d 8ff41cc2 net: qrtr: Fix an out of bounds read qrtr_endpoint_post()
invalid opcode in __phys_addr (2) 1 298d 298d 261d c4e8fa90 netfilter: ipset: call ip_set_free() instead of kfree()
PANIC: double fault in fixup_bad_iret C error 11753 288d 328d 265d 5144f8a8 compiler_types.h: Add __no_sanitize_{address,undefined} to noinstr
general protection fault in __apic_accept_irq (2) C done 9 302d 298d 265d 9d3c447c KVM: X86: Fix async pf caused null-ptr-deref
KCSAN: data-race in copy_process / release_task 154 294d 423d 265d c17d1a3a fork: annotate data race in copy_process()
KASAN: use-after-free Read in dmabuffs_dname 1 416d 412d 265d 4ab59c3c dma-buf: Move dma_buf_release() from fops to dentry_ops
WARNING in enqueue_task_dl C done 13 309d 886d 265d 740797ce sched/core: Fix PI boosting between RT and DEADLINE tasks
KCSAN: data-race in copy_process / copy_process (2) 294 295d 472d 265d c17d1a3a fork: annotate data race in copy_process()
PANIC: double fault in check_preemption_disabled C 2181 296d 301d 265d c7aadc09 x86/entry: Increase entry_stack size to a full page
memory leak in nbd_add_socket C 1 387d 387d 265d 579dd91a nbd: Fix memory leak in nbd_add_socket
WARNING in xfrm_policy_insert C inconclusive done 6 311d 1164d 268d ed17b8d3 xfrm: fix a warning in xfrm_policy_insert_list
BUG: unable to handle kernel paging request in netif_receive_generic_xdp C done done 160 323d 459d 269d 96aa1b22 tun: correct header offsets in napi frags mode
WARNING in iomap_apply C done 25 337d 377d 276d 175efa81 ext4: fix EXT4_MAX_LOGICAL_BLOCK macro ext4: fix EXT4_MAX_LOGICAL_BLOCK macro
KASAN: use-after-free Read in sock_def_write_space C done 67 277d 642d 277d a9b11101 llc: make sure applications use ARPHRD_ETHER
KASAN: slab-out-of-bounds Read in qrtr_endpoint_post C 8 299d 300d 277d 8ff41cc2 net: qrtr: Fix an out of bounds read qrtr_endpoint_post()
memory leak in qdisc_create_dflt C 1 296d 292d 277d 306381ae net_sched: fix a memory leak in atm_tc_init()
KASAN: vmalloc-out-of-bounds Read in netdev_name_node_lookup_rcu 1 298d 297d 277d bf64ff4c genetlink: get rid of family->attrbuf
WARNING in hsr_dev_finalize C error 1546 285d 300d 277d ccfc9df1 hsr: fix interface leak in error path of hsr_dev_finalize()
kernel BUG at net/l2tp/l2tp_core.c:LINE! C 10 301d 297d 277d c9a368f1 bpf: net: Avoid incorrect bpf_sk_reuseport_detach call
KASAN: vmalloc-out-of-bounds Read in tipc_nl_publ_dump C 22 282d 300d 277d bf64ff4c genetlink: get rid of family->attrbuf
KASAN: use-after-free Read in netdev_name_node_lookup_rcu C error 17 286d 297d 277d bf64ff4c genetlink: get rid of family->attrbuf
KASAN: use-after-free Read in nl8NUM_dump_wpan_phy (2) C 18 287d 300d 277d bf64ff4c genetlink: get rid of family->attrbuf
possible deadlock in dev_uc_sync_multiple (2) 26 287d 298d 277d be74294f net: get rid of lockdep_set_class_and_subclass()
KASAN: vmalloc-out-of-bounds Read in __nla_validate_parse 7 283d 300d 277d bf64ff4c genetlink: get rid of family->attrbuf
KASAN: use-after-free Read in tipc_nl_publ_dump (2) C 14 286d 297d 277d bf64ff4c genetlink: get rid of family->attrbuf
KASAN: use-after-free Read in tipc_nl_node_dump_monitor_peer (2) C 54 285d 300d 277d bf64ff4c genetlink: get rid of family->attrbuf
KASAN: use-after-free Read in tipc_udp_nl_dump_remoteip (2) C 9 285d 304d 277d bf64ff4c genetlink: get rid of family->attrbuf
KASAN: use-after-free Read in devlink_get_from_attrs C 25 285d 297d 277d bf64ff4c genetlink: get rid of family->attrbuf
WARNING in warn_bad_map 1 309d 305d 277d 9c29e361 mptcp: fix DSS map generation on fin retransmission
KASAN: vmalloc-out-of-bounds Read in nl8NUM_dump_wpan_phy C 145 282d 303d 277d bf64ff4c genetlink: get rid of family->attrbuf
KASAN: vmalloc-out-of-bounds Read in __cfg8NUM_wpan_dev_from_attrs 4 286d 300d 277d bf64ff4c genetlink: get rid of family->attrbuf
KASAN: use-after-free Read in tipc_nl_node_dump_link C error 10 291d 300d 277d bf64ff4c genetlink: get rid of family->attrbuf
KASAN: use-after-free Read in dev_get_by_name C 4 292d 297d 277d bf64ff4c genetlink: get rid of family->attrbuf
KASAN: vmalloc-out-of-bounds Read in tipc_nl_node_dump_monitor_peer C error 9 285d 303d 277d bf64ff4c genetlink: get rid of family->attrbuf
BUG: unable to handle kernel NULL pointer dereference in tomoyo_domain_quota_is_ok (2) 7 301d 315d 279d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
general protection fault in unpin_user_pages C done 13 337d 337d 279d f78cdbd7 rds: fix crash in rds_info_getsockopt()
KASAN: use-after-free Write in bpf_link_put 2 356d 358d 279d 138c6767 bpf: Fix use-after-free of bpf_link when priming half-fails
KASAN: use-after-free Write in fsnotify_detach_connector_from_object C done 4 310d 315d 279d ef1548ad proc: Use new_inode not new_inode_pseudo
KASAN: use-after-free Read in ip_icmp_error C done 14 331d 331d 279d 23917494 tcp: tcp_v4_err() icmp skb is named icmp_skb
BUG: unable to handle kernel NULL pointer dereference in schedule_timeout 1 300d 300d 279d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
KASAN: use-after-free Write in ath9k_htc_rx_msg C 93 315d 392d 279d e4ff08a4 ath9k: Fix use-after-free Write in ath9k_htc_rx_msg
BUG: using smp_processor_id() in preemptible [ADDR] code: syz-executor C done 22297 325d 663d 279d 13788174 tipc: block BH before using dst_cache
KASAN: slab-out-of-bounds Read in vsscanf C done 61 289d 392d 279d 84e99e58 Smack: slab-out-of-bounds in vsscanf
KASAN: slab-out-of-bounds Read in ip_icmp_error C done 13 331d 331d 279d 23917494 tcp: tcp_v4_err() icmp skb is named icmp_skb
WARNING: proc registration bug in snmp6_register_dev C done 14 307d 373d 279d de0083c7 hsr: avoid to create proc file after unregister
KASAN: null-ptr-deref Write in choke_reset C done 1441 335d 369d 279d 8738c85c sch_choke: avoid potential panic in choke_reset()
KASAN: slab-out-of-bounds Write in snd_usb_mixer_notify_id C done 39 298d 303d 279d 220345e9 ALSA: usb-audio: Fix OOB access of mixer element list
BUG: unable to handle kernel NULL pointer dereference in number 1 309d 305d 279d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
KASAN: slab-out-of-bounds Write in snd_usb_mixer_interrupt C done 5 301d 303d 279d 220345e9 ALSA: usb-audio: Fix OOB access of mixer element list
KASAN: use-after-free Read in vkms_dumb_create syz done 2 365d 361d 279d 0ea2ea42 drm/vkms: Hold gem object while still in-use
BUG: unable to handle kernel NULL pointer dereference in check_preemption_disabled (3) 3 309d 310d 279d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
KASAN: use-after-free Read in inet_diag_bc_sk C done 30 354d 356d 279d ee1bd483 inet_diag: bc: read cgroup id only for full sockets
memory leak in ctnetlink_del_conntrack C 1 320d 317d 279d 6c2d2176 netfilter: ctnetlink: memleak in filter initialization error path
INFO: rcu detected stall in inet_sendmsg (2) 13 281d 365d 279d df4953e4 sch_sfq: validate silly quantum values
linux-next boot error: WARNING: suspicious RCU usage in ipmr_get_table 60 351d 360d 279d 7013908c ipmr: Add lockdep expression to ipmr_for_each_table macro
BUG: unable to handle kernel NULL pointer dereference in dev_ifconf 1 310d 310d 279d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
BUG: using smp_processor_id() in preemptible [ADDR] code: /NUM 1 337d 337d 279d 13788174 tipc: block BH before using dst_cache
BUG: MAX_LOCKDEP_CHAINS too low! C done 17240 279d 938d 279d e7511f56 bonding: remove useless stats_lock_key 1a33e10e net: partially revert dynamic lockdep key changes
INFO: task hung in locks_remove_posix syz 2231 314d 337d 279d 187b96db x86/unwind/orc: Fix unwind_get_return_address_ptr() for inactive tasks
WARNING: refcount bug in crypto_mod_get C done 2 345d 356d 279d 6603523b crypto: api - Fix use-after-free and race in crypto_spawn_alg
BUG: unable to handle kernel NULL pointer dereference in mpihelp_addmul_1 1 310d 310d 279d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
KASAN: slab-out-of-bounds Write in setup_udp_tunnel_sock (3) 1 329d 329d 279d d9a81a22 l2tp: add sk_family checks to l2tp_validate_socket
linux-next test error: BUG: using smp_processor_id() in preemptible [ADDR] code: syz-fuzzer/6792 1 324d 324d 279d 81198536 ext4: mballoc: Use this_cpu_read instead of this_cpu_ptr
KCSAN: data-race in __fat_write_inode / fat12_ent_get 2 391d 384d 279d b1b65750 fat: don't allow to mount if the FAT length == 0
KASAN: stack-out-of-bounds Write in ath9k_hif_usb_rx_cb C 57 315d 388d 279d 19d6c375 ath9x: Fix stack-out-of-bounds Write in ath9k_hif_usb_rx_cb
KASAN: slab-out-of-bounds Read in ovl_check_fb_len syz done 3 336d 335d 279d 522f6e6c ovl: fix out of bounds access warning in ovl_check_fb_len()
KASAN: use-after-free Read in usblp_bulk_read 7 289d 366d 279d 296a193b usblp: poison URBs upon disconnect
BUG: unable to handle kernel NULL pointer dereference in alloc_pages_vma 1 309d 305d 279d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
linux-next boot error: general protection fault in tomoyo_get_local_path 18 336d 342d 279d 9d78edea proc: proc_pid_ns takes super_block as an argument
KASAN: use-after-free Read in htc_connect_service C 41041 314d 392d 279d ced21a4c ath9k: Fix use-after-free Read in htc_connect_service
KMSAN: uninit-value in tbf_enqueue 21 279d 366d 279d 9274124f net: stricter validation of untrusted gso packets
general protection fault in ima_free_template_entry C done 3 302d 322d 279d 42413b49 ima: Directly free *entry in ima_alloc_init_template() if digests is NULL
WARNING in kvm_inject_emulated_page_fault C done 20 303d 323d 279d 7a35e515 KVM: VMX: Properly handle kvm_read/write_guest_virt*() result
general protection fault in kobject_get (2) 2 309d 338d 279d 11a0ae4c RDMA: Allow ib_client's to fail when add() is called
general protection fault in fq_codel_enqueue C done 25 284d 369d 279d 9274124f net: stricter validation of untrusted gso packets
BUG: unable to handle kernel NULL pointer dereference in create_empty_buffers 1 321d 317d 279d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
memory leak in crypto_create_tfm C 14 307d 324d 279d 819966c0 crypto: drbg - always try to free Jitter RNG instance
WARNING in memtype_reserve C done 600 340d 349d 279d a0e710a7 USB: usbfs: fix mmap dma mismatch
general protection fault in put_cmsg C done 3 345d 345d 279d 1b2f08df ipv6: set msg_control_is_user in do_ipv6_getsockopt
WARNING in usbhid_raw_request/usb_submit_urb (3) syz 18 358d 464d 279d ac854131 USB: core: Fix misleading driver bug report
memory leak in nf_tables_parse_netdev_hooks (3) C 1 320d 317d 279d 3003055f netfilter: nf_tables: hook list memleak in flowtable deletion
general protection fault in proc_kill_sb 8 305d 316d 279d 058f2e4d proc: s_fs_info may be NULL when proc_kill_sb is called
INFO: trying to register non-static key in io_cqring_ev_posted (3) C done 3 338d 341d 279d 583863ed io_uring: initialize ctx->sqo_wait earlier
BUG: unable to handle kernel paging request in do_xdp_generic C done done 7444 353d 460d 279d 96aa1b22 tun: correct header offsets in napi frags mode
KASAN: slab-out-of-bounds Read in inet_diag_bc_sk C done 45 354d 356d 279d ee1bd483 inet_diag: bc: read cgroup id only for full sockets
BUG: stack guard page was hit in deref_stack_reg 2 344d 404d 279d dd912306 net: fix a potential recursive NETDEV_FEAT_CHANGE
INFO: task syz-executor can't die for more than 143 seconds. (2) C done 2512 280d 548d 279d 566d1362 pipe: Fix pipe_full() test in opipe_prep().
BUG: unable to handle kernel NULL pointer dereference in debug_smp_processor_id (2) 3 301d 309d 279d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
net-next test error: KASAN: use-after-free Write in afs_wake_up_async_call 60 301d 309d 279d 0041cd5a rxrpc: Fix notification call on completion of discarded calls
BUG: unable to handle kernel NULL pointer dereference in net_rx_queue_update_kobjects 1 309d 309d 279d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
general protection fault in erspan_validate C done 520 345d 352d 279d 51fa960d erspan: Check IFLA_GRE_ERSPAN_VER is set.
bpf test error: BUG: using smp_processor_id() in preemptible code in ext4_mb_new_blocks 48 309d 311d 279d 81198536 ext4: mballoc: Use this_cpu_read instead of this_cpu_ptr
kernel BUG at arch/x86/mm/physaddr.c:LINE! (5) C done 241 284d 357d 279d 57d38f26 vt: fix unicode console freeing with a common interface
WARNING: refcount bug in crypto_destroy_tfm C done 4 359d 381d 279d 6603523b crypto: api - Fix use-after-free and race in crypto_spawn_alg
general protection fault in inet_unhash C done 40 301d 329d 279d 02c71b14 l2tp: do not use inet_hash()/inet_unhash()
BUG: unable to handle kernel NULL pointer dereference in direct_page_fault 1 309d 305d 279d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
linux-next boot error: WARNING: suspicious RCU usage in bpq_device_event 6 342d 343d 279d 95f59bf8 drivers: net: hamradio: Fix suspicious RCU usage warning in bpqether.c
BUG: unable to handle kernel NULL pointer dereference in try_async_pf 1 309d 305d 279d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
BUG: unable to handle kernel NULL pointer dereference in unlock_page 1 311d 311d 279d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
KASAN: use-after-free Read in rpc_net_ns syz done 10 345d 351d 279d 31e9a7f3 SUNRPC: fix use-after-free in rpc_free_client_work()
WARNING in tipc_msg_append C done 107 306d 320d 279d c9aa81fa tipc: fix kernel WARNING in tipc_msg_append()
BUG: unable to handle kernel NULL pointer dereference in __es_insert_extent 1 312d 312d 279d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
bpf-next test error: BUG: using smp_processor_id() in preemptible code in ext4_mb_new_blocks 90 310d 316d 279d 81198536 ext4: mballoc: Use this_cpu_read instead of this_cpu_ptr
general protection fault in cfg80211_dev_rename 1 349d 345d 279d 0bbab5f0 cfg80211: fix debugfs rename crash
KASAN: slab-out-of-bounds Read in garmin_read_process C 1 397d 397d 279d e9b3c610 USB: serial: garmin_gps: add sanity checking for data length
net-next test error: BUG: using smp_processor_id() in preemptible code in corrupted 4 313d 314d 279d 81198536 ext4: mballoc: Use this_cpu_read instead of this_cpu_ptr
KASAN: use-after-free Read in usbhid_close (3) C 6 353d 380d 279d 0ed08fad HID: usbhid: Fix race between usbhid_close() and usbhid_stop()
BUG: unable to handle kernel NULL pointer dereference in kvm_vm_ioctl 1 309d 309d 279d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
general protection fault in skb_clone (3) 44 330d 332d 279d 23917494 tcp: tcp_v4_err() icmp skb is named icmp_skb
kernel BUG at arch/x86/kvm/mmu/mmu.c:LINE! (2) C done 46328 300d 331d 279d 7d2e8748 KVM: x86: Initialize tdp_level during vCPU creation
KMSAN: uninit-value in do_tcp_getsockopt 5 292d 344d 279d e776af60 net-backports: tcp: fix error recovery in tcp_zerocopy_receive()
linux-next test error: WARNING: suspicious RCU usage in ipmr_device_event 24 361d 366d 279d a14fbcd4 ipmr: Fix RCU list debugging warning
net test error: KASAN: null-ptr-deref Write in x25_disconnect 12 359d 360d 279d 8999dc89 net/x25: Fix null-ptr-deref in x25_disconnect
BUG: unable to handle kernel NULL pointer dereference in kvm_vcpu_gfn_to_memslot 1 309d 309d 279d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
memory leak in genl_rcv_msg C 116 315d 505d 279d c36f0555 genetlink: fix memory leaks in genl_family_rcv_msg_dumpit()
KMSAN: uninit-value in __dev_get_by_name C 2 341d 341d 279d 687775ce ax25: fix setsockopt(SO_BINDTODEVICE)
general protection fault in start_creating C done 106 301d 331d 279d d56f5136 KVM: let kvm_destroy_vm_debugfs clean up vCPU debugfs directories
BUG: unable to handle kernel NULL pointer dereference in udc_bind_to_driver 1 308d 308d 279d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
KCSAN: data-race in __rcu_read_unlock / sync_rcu_exp_select_node_cpus (2) 9 347d 514d 279d 314eeb43 rcu: Add *_ONCE() and data_race() to rcu_node ->exp_tasks plus locking
bpf test error: KASAN: null-ptr-deref Write in x25_disconnect 78 347d 360d 279d 8999dc89 net/x25: Fix null-ptr-deref in x25_disconnect
KASAN: slab-out-of-bounds Read in fl6_update_dst C done 43 301d 346d 279d bb986a50 seg6: fix seg6_validate_srh() to avoid slab-out-of-bounds
general protection fault in __tipc_sendstream C done 444 300d 330d 279d 4c21daae tipc: Fix NULL pointer dereference in __tipc_sendstream() 5e9eeccc tipc: fix NULL pointer dereference in streaming
net test error: BUG: using smp_processor_id() in preemptible code in corrupted 3 310d 312d 279d 81198536 ext4: mballoc: Use this_cpu_read instead of this_cpu_ptr
KASAN: use-after-free Read in ath9k_wmi_ctrl_rx C 1 392d 391d 279d abeaa850 ath9k: Fix use-after-free Read in ath9k_wmi_ctrl_rx
upstream test error: BUG: using smp_processor_id() in preemptible code in ext4_map_blocks 1 313d 313d 279d 81198536 ext4: mballoc: Use this_cpu_read instead of this_cpu_ptr
general protection fault in sock_hash_free 1 324d 324d 279d 75e68e5b bpf, sockhash: Synchronize delete from bucket list on map free
KASAN: slab-out-of-bounds Read in skb_gso_transport_seglen C done 4 349d 368d 279d 9274124f net: stricter validation of untrusted gso packets
BUG: unable to handle kernel NULL pointer dereference in local_bh_disable 1 310d 310d 279d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
BUG: unable to handle kernel NULL pointer dereference in generic_perform_write (2) C done 3 376d 374d 279d 829b37b8 ext4: avoid race conditions when remounting with options that change dax
BUG: stack guard page was hit in update_stack_state 5 430d 444d 279d dd912306 net: fix a potential recursive NETDEV_FEAT_CHANGE
WARNING: locking bug in dev_mc_seq_show C done 3 320d 331d 279d 845e0ebb net: change addr_list_lock back to static key
general protection fault in inet_diag_bc_sk 12 354d 357d 279d ee1bd483 inet_diag: bc: read cgroup id only for full sockets
general protection fault in selinux_socket_recvmsg C done 4 335d 335d 279d 0a82e230 mptcp: avoid NULL-ptr derefence on fallback
KMSAN: uninit-value in skbprio_enqueue syz 11 294d 357d 279d 2761121a net_sched: sch_skbprio: add message validation to skbprio_change()
general protection fault in ath9k_hif_usb_rx_cb C 913 279d 392d 279d 2bbcaaee ath9k: Fix general protection fault in ath9k_hif_usb_rx_cb
BUG: soft lockup in wg_packet_tx_worker 1 351d 351d 279d df4953e4 sch_sfq: validate silly quantum values
INFO: rcu detected stall in wg_packet_tx_worker C done 24 308d 361d 279d df4953e4 sch_sfq: validate silly quantum values
linux-next test error: KASAN: use-after-free Write in afs_wake_up_async_call 111 305d 314d 279d 0041cd5a rxrpc: Fix notification call on completion of discarded calls
BUG: unable to handle kernel NULL pointer dereference in smp_call_function_many_cond (2) 1 303d 303d 279d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
KASAN: slab-out-of-bounds Read in br_mrp_parse C done 5 336d 337d 279d 617504c6 bridge: mrp: Fix out-of-bounds read in br_mrp_parse
BUG: unable to handle kernel NULL pointer dereference in __ext4_journal_start_sb 1 309d 309d 279d 3021e692 kcov: check kcov_softirq in kcov_remote_stop()
INFO: task hung in blkdev_issue_flush (2) C done error 3 502d 660d 296d 2b5c8f00 nbd: replace kill_bdev() with __invalidate_device() again
KASAN: use-after-free Read in blkdev_direct_IO C done error 8 624d 629d 296d 0eb6ddfb block: Fix __blkdev_direct_IO() for bio fragments
KASAN: use-after-free Read in blkdev_bio_end_io C done error 13 615d 626d 296d 7b6620d7 block: remove REQ_NOWAIT_INLINE
KCSAN: data-race in tcp_add_backlog / tcp_try_rmem_schedule 3 558d 563d 296d ebb3b78d tcp: annotate sk->sk_rcvbuf lockless reads
memory leak in bio_clone_fast C 1 618d 618d 296d 7b6620d7 block: remove REQ_NOWAIT_INLINE
WARNING: refcount bug in blk_mq_free_request (2) C done error 5 626d 626d 296d de6346ec nbd: protect cmd->status with cmd->lock
memory leak in bio_copy_user_iov C done 34 489d 674d 296d 3b7995a9 block: fix memleak when __blk_rq_map_user_iov() is failed
WARNING in sk_stream_kill_queues (4) C done done 6 419d 423d 296d b6f61189 ipv6: restrict IPV6_ADDRFORM operation
WARNING: bad unlock balance in get_user_pages_unlocked 1 384d 379d 298d c7b6a566 mm/gup: Mark lock taken only after a successful retake
WARNING in __mmdrop syz done 14 634d 644d 298d 3d2c7d37 Revert "vhost: access vq metadata through kernel virtual address"
WARNING in wa_nep_create/usb_submit_urb C 114 368d 652d 298d caa6772d Staging: remove wusbcore and UWB from the kernel tree.
upstream boot error: KASAN: slab-out-of-bounds Write in virtio_gpu_object_create 6 373d 382d 298d b513b0d4 drm/virtio: fix OOB in virtio_gpu_object_create
WARNING in kfree (2) syz done done 1 409d 408d 298d 0d1c3530 net_sched: keep alloc_hash updated after hash allocation
WARNING in hwarc_neep_init/usb_submit_urb C 1 403d 402d 298d caa6772d Staging: remove wusbcore and UWB from the kernel tree.
BUG: corrupted list in __uwb_rc_neh_rm C 9 374d 409d 298d caa6772d Staging: remove wusbcore and UWB from the kernel tree.
KASAN: null-ptr-deref Write in blk_mq_map_swqueue C done 3 392d 392d 301d d0930bb8 blk-mq: Fix a recently introduced regression in blk_mq_realloc_hw_ctxs()
KASAN: use-after-free Read in chaoskey_disconnect C 44 512d 540d 308d 93ddb1f5 USB: chaoskey: fix use-after-free on release
KMSAN: uninit-value in etf_enqueue_timesortedlist 3 350d 357d 308d a1211bf9 sched: etf: do not assume all sockets are full blown
KMSAN: uninit-value in audit_log_vformat (2) C 104 348d 368d 308d 763dafc5 audit: check the length of userspace generated audit records
general protection fault in macvlan_device_event 86 357d 371d 308d 4dee15b4 macvlan: fix null dereference in macvlan_device_event()
WARNING in __vm_enough_memory (2) syz done 6 369d 373d 308d dadbd85f mm: Fix MREMAP_DONTUNMAP accounting on VMA merge
WARNING in hwsim_new_radio_nl C done 3 375d 377d 308d 7ea86204 mac80211_hwsim: Use kstrndup() in place of kasprintf()
KASAN: invalid-free in nf_tables_newset C done 21 371d 387d 308d 7fb6f78d netfilter: nf_tables: do not leave dangling pointer in nf_tables_set_alloc_name
WARNING: bad unlock balance in mptcp_poll C done 10 373d 376d 308d e154659b mptcp: fix double-unlock in mptcp_poll
KASAN: use-after-free Read in dput (2) syz done 4 372d 372d 308d 4fa3b1c4 proc: Handle umounts cleanly
possible deadlock in user_shm_lock 12 336d 374d 308d ea0dfeb4 shmem: fix possible deadlocks on shmlock_user_lock
possible deadlock in shmem_mfill_atomic_pte C done 82 336d 387d 308d 94b7cc01 mm: shmem: disable interrupt when acquiring info->lock in userfaultfd_copy path
KASAN: slab-out-of-bounds Read in __kvm_gfn_to_hva_cache_init C done 1537 335d 380d 308d b6467ab1 KVM: Check validity of resolved slot when searching memslots
WARNING in set_precision (2) C done 117 370d 468d 308d 7ea86204 mac80211_hwsim: Use kstrndup() in place of kasprintf()
INFO: rcu detected stall in io_uring_release syz 15 328d 369d 308d 3fd44c86 io_uring: use cond_resched() in io_ring_ctx_wait_and_kill()
KASAN: use-after-free Read in report_sock_error 2 362d 366d 308d a1211bf9 sched: etf: do not assume all sockets are full blown
linux-next test error: WARNING: suspicious RCU usage in ovs_ct_exit 132 367d 405d 308d 27de77ce net: openvswitch: ovs_ct_exit to be done under ovs_lock
WARNING in nf_nat_unregister_fn 1 371d 371d 308d b4faef17 netfilter: nat: fix error handling upon registering inet hook
possible deadlock in shmem_uncharge C done 101 337d 376d 308d ea0dfeb4 shmem: fix possible deadlocks on shmlock_user_lock
possible deadlock in ext4_evict_inode syz error error 38 921d 959d 335d e5bfad3d smack: use GFP_NOFS while holding inode_smack::smk_lock
general protection fault in kobject_get 4 351d 417d 347d 5bdfa854 RDMA/mad: Do not crash if the rdma device does not have a umad interface
KASAN: use-after-free Write in tcindex_set_parms C done 13 388d 408d 347d 0d1c3530 net_sched: keep alloc_hash updated after hash allocation
WARNING: kobject bug in add_one_compat_dev 2 419d 421d 347d f2f2b3bb RDMA/core: Fix missing error check on dev_set_name()
possible deadlock in io_submit_one (3) syz done 45 377d 385d 347d 63f818f4 proc: Use a dedicated lock in struct pid
INFO: task hung in io_queue_file_removal C done 16 390d 398d 347d 4afdb733 io-uring: drop completion when removing file
KASAN: slab-out-of-bounds Write in tcindex_set_parms C done 10 389d 410d 347d 0d1c3530 net_sched: keep alloc_hash updated after hash allocation
KASAN: use-after-free Read in tcindex_dump syz 1 410d 408d 347d b1be2e8c net_sched: hold rtnl lock in tcindex_partial_destroy_work()
KMSAN: uninit-value in simple_attr_read C 6 351d 421d 347d a65cab7d libfs: fix infoleak in simple_attr_read()
general protection fault in macsec_upd_offload C done 5 386d 385d 347d aa81700c macsec: fix NULL dereference in macsec_upd_offload()
general protection fault in hfsc_unbind_tcf 1 400d 396d 347d ef299cc3 net_sched: cls_route: remove the right filter from hashtable
memory leak in erase_aeb C 109 348d 501d 347d c16f39d1 ubi: fastmap: Free unused fastmap anchor peb during detach
BUG: unable to handle kernel NULL pointer dereference in handle_external_interrupt_irqoff C done 6404 392d 397d 347d 428b8f1d KVM: VMX: don't allow memory operands for inline asm that modifies SP
possible deadlock in send_sigurg C done 65 371d 385d 347d 63f818f4 proc: Use a dedicated lock in struct pid
WARNING: bad unlock balance in ucma_event_handler C done 143 380d 1044d 347d 7c119107 RDMA/ucma: Put a lock around every call to the rdma_cm layer
WARNING in geneve_exit_batch_net (2) C done 9 395d 419d 347d 0fda7600 geneve: move debug check after netdev unregister
general protection fault in fbcon_switch 1 392d 391d 347d b139f8b0 fbcon: fix null-ptr-deref in fbcon_switch
KASAN: invalid-free in tcf_exts_destroy C done 1 411d 410d 347d 0d1c3530 net_sched: keep alloc_hash updated after hash allocation
KASAN: use-after-free Read in __hrtimer_run_queues C done 299 380d 387d 347d 73d20564 hrtimer: Don't dereference the hrtimer pointer after the callback
WARNING: bad unlock balance in ucma_destroy_id syz done 44 415d 968d 347d 7c119107 RDMA/ucma: Put a lock around every call to the rdma_cm layer
WARNING: bad unlock balance in __get_user_pages_remote C done 15 380d 380d 347d c7b6a566 mm/gup: Mark lock taken only after a successful retake
INFO: trying to register non-static key in __io_uring_register C done 39 379d 381d 347d f7fe9346 io_uring: initialize fixed_file_data lock
KASAN: slab-out-of-bounds Read in selinux_xfrm_alloc_user C done 1 389d 388d 347d a1a7e3a3 xfrm: add the missing verify_sec_ctx_len check in xfrm_add_acquire
KASAN: stack-out-of-bounds Write in mpol_to_str C done 23 389d 393d 347d aa9f7d51 mm: mempolicy: require at least one nodeid for MPOL_PREFERRED
general protection fault in do_tcp_getsockopt (2) C done 1 400d 400d 347d 6cd6cbf5 net-backports: tcp: repair: fix TCP_QUEUE_SEQ implementation
KASAN: use-after-free Read in addr_handler syz done 12 379d 861d 347d 7c119107 RDMA/ucma: Put a lock around every call to the rdma_cm layer
INFO: trying to register non-static key in io_cqring_ev_posted (2) C done 42 351d 388d 347d 10bea96d io_uring: add missing finish_wait() in io_sq_thread()
KASAN: use-after-free Read in cma_cancel_operation C done 617 435d 1116d 347d 7c119107 RDMA/ucma: Put a lock around every call to the rdma_cm layer
BUG: unable to handle kernel paging request in kernel_get_mempolicy C done 1 384d 381d 347d ba841078 mm/mempolicy: Allow lookup_node() to handle fatal signal
WARNING: ODEBUG bug in rfcomm_dev_ioctl 1 412d 412d 347d 71811cac Bluetooth: RFCOMM: fix ODEBUG bug in rfcomm_dev_ioctl
KASAN: slab-out-of-bounds Read in cgroup_file_notify C done 1 412d 408d 347d 726b7bbe hugetlb_cgroup: fix illegal access to memory
WARNING: refcount bug in __tcf_action_put syz 1 409d 408d 347d 0d1c3530 net_sched: keep alloc_hash updated after hash allocation
KASAN: use-after-free Read in rdma_listen (2) C done 354 386d 755d 347d 7c119107 RDMA/ucma: Put a lock around every call to the rdma_cm layer
WARNING: kobject bug in ib_register_device C done 14 385d 424d 347d 7aefa623 RDMA/nl: Do not permit empty devices names during RDMA_NLDEV_CMD_NEWLINK/SET
general protection fault in ethnl_parse_header C done 9 394d 399d 347d 55b474c4 netlink: check for null extack in cookie helpers
WARNING in vcpu_enter_guest syz done 19 397d 511d 347d d3329454 KVM: x86: remove bogus user-triggerable WARN_ON
general protection fault in hsr_addr_is_self (2) 1 399d 399d 347d 3a303cfd hsr: fix general protection fault in hsr_addr_is_self()
linux-next test error: KASAN: use-after-free Read in l2cap_sock_release 12 442d 444d 347d 2a154903 Bluetooth: prefetch channel before killing sock
possible deadlock in send_sigio C done 7 375d 384d 347d 63f818f4 proc: Use a dedicated lock in struct pid
WARNING: ODEBUG bug in __init_work syz done 1 396d 395d 347d ef299cc3 net_sched: cls_route: remove the right filter from hashtable
WARNING in call_rcu C done 8 401d 408d 347d ef299cc3 net_sched: cls_route: remove the right filter from hashtable
WARNING: ODEBUG bug in prism2sta_disconnect_usb 1 397d 395d 347d a1f165a6 staging: wlan-ng: fix ODEBUG bug in prism2sta_disconnect_usb
WARNING: ODEBUG bug in tcf_queue_work C done 30 413d 413d 347d ef299cc3 net_sched: cls_route: remove the right filter from hashtable
WARNING in __blk_mq_delay_run_hw_queue C done error 6 461d 566d 347d 6e66b493 blk-mq: Keep set->nr_hw_queues and set->map[].nr_queues in sync
general protection fault in qdisc_hash_add C done 47 406d 407d 347d 7c4046b1 Revert "net: sched: make newly activated qdiscs visible"
WARNING: refcount bug in tcindex_data_put C done 27 384d 385d 347d a8eab6d3 net_sched: fix a missing refcnt in tcindex_init()
KASAN: use-after-free Read in route4_get C 8 376d 406d 347d ef299cc3 net_sched: cls_route: remove the right filter from hashtable
KASAN: use-after-free Read in __list_del_entry_valid (4) C done 16 436d 1124d 347d 7c119107 RDMA/ucma: Put a lock around every call to the rdma_cm layer
general protection fault in erspan_netlink_parms C done 5 403d 403d 347d 32ca98fe net: ip_gre: Accept IFLA_INFO_DATA-less configuration
WARNING in kernfs_create_dir_ns C done done 3 402d 663d 347d 810507fe locking/lockdep: Reuse freed chain_hlocks entries
WARNING in af_alg_make_sg C done 13 379d 380d 347d ae46d2aa mm/gup: Let __get_user_pages_locked() return -EINTR for fatal signal
general protection fault in rdma_listen (2) syz done 104 386d 897d 347d 7c119107 RDMA/ucma: Put a lock around every call to the rdma_cm layer
WARNING in kernfs_new_node C done done 2 402d 626d 347d 810507fe locking/lockdep: Reuse freed chain_hlocks entries
possible deadlock in cma_netdev_callback C done 1399 380d 422d 347d 33fb27fd RDMA/siw: Fix passive connection establishment
WARNING: refcount bug in sctp_wfree C done 20 388d 409d 347d 5c3e82fe sctp: fix refcount bug in sctp_wfree
WARNING in ext4_write_inode 13 415d 422d 347d 10a98cb1 xfs: clear PF_MEMALLOC before exiting xfsaild thread
BUG: corrupted list in rdma_listen C 202 520d 1099d 347d 7c119107 RDMA/ucma: Put a lock around every call to the rdma_cm layer
possible deadlock in free_ioctx_users (2) C done 44 377d 385d 347d 63f818f4 proc: Use a dedicated lock in struct pid
WARNING: ODEBUG bug in route4_change C done 68 384d 408d 347d ef299cc3 net_sched: cls_route: remove the right filter from hashtable
KASAN: use-after-free Read in tty_open C done done 8 394d 506d 347d ca4463bf vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console
KASAN: slab-out-of-bounds Read in edge_interrupt_callback C 1 396d 395d 347d 57aa9f29 USB: serial: io_edgeport: fix slab-out-of-bounds read in edge_interrupt_callback
KMSAN: uninit-value in tcf_exts_change C 5 399d 408d 347d 0d1c3530 net_sched: keep alloc_hash updated after hash allocation
BUG: sleeping function called from invalid context in kmem_cache_alloc_node_trace C done 364 409d 411d 347d 138470a9 net/sched: act_ct: fix lockdep splat in tcf_ct_flow_table_get
KASAN: use-after-free Write in release_tty C done 591 384d 506d 347d ca4463bf vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console
WARNING: ODEBUG bug in tcindex_destroy_work (3) syz done 13 387d 423d 347d 304e0242 net_sched: add a temporary refcnt for struct tcindex_data
KASAN: slab-out-of-bounds Read in hfa384x_usbin_callback C 1 398d 398d 347d 1165dd73 staging: wlan-ng: fix use-after-free Read in hfa384x_usbin_callback
KMSAN: uninit-value in macsec_handle_frame 1 397d 397d 347d b06d072c macsec: restrict to ethernet devices
WARNING: refcount bug in igmp_start_timer syz done done 19 613d 978d 370d 323ebb61 net: use listified RX for handling GRO_NORMAL skbs
possible deadlock in sch_direct_xmit C done done 1548 514d 1192d 370d 323ebb61 net: use listified RX for handling GRO_NORMAL skbs
KASAN: use-after-free Read in alloc_netdev_mqs 1 434d 434d 372d e08ad805 net: add strict checks in netdev_name_node_alt_destroy()
KMSAN: uninit-value in __iptunnel_pull_header C 12 404d 412d 372d 17c25caf gre: fix uninit-value in __iptunnel_pull_header
KASAN: use-after-free Read in inet_gifconf 24 426d 432d 372d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
INFO: task hung in hashlimit_mt_check_common C done 20 429d 468d 372d 8d0015a7 netfilter: xt_hashlimit: limit the max size of hashtable c4a3922d netfilter: xt_hashlimit: reduce hashlimit_mutex scope for htable_put()
divide error in wg_packet_encrypt_worker C done 12 426d 434d 372d 175f1ca9 wireguard: send: account for mtu=0 devices
WARNING in idr_destroy C done 5 401d 416d 372d b216a8e7 drm/lease: fix WARNING in idr_destroy
BUG: soft lockup in sys_exit_group C 6 397d 420d 372d d683469b ALSA: line6: Fix endless MIDI read loop
KASAN: use-after-free Read in ipv6_get_ifaddr 1 430d 430d 372d e08ad805 net: add strict checks in netdev_name_node_alt_destroy()
KASAN: use-after-free Read in inet_lookup_ifaddr_rcu 2 426d 428d 372d e08ad805 net: add strict checks in netdev_name_node_alt_destroy()
KASAN: use-after-free Write in hiddev_disconnect 20 400d 464d 372d 5c02c447 HID: hiddev: Fix race in in hiddev_disconnect()
KMSAN: use-after-free in netdev_state_change 2 416d 416d 372d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
KMSAN: uninit-value in audit_receive C 4 423d 424d 372d 75612528 audit: always check the netlink payload length in audit_receive_msg()
WARNING: lock held when returning to user space in ovl_write_iter C done 6 402d 417d 372d c8536804 ovl: fix lockdep warning for async write
general protection fault in vt_ioctl 1 438d 438d 372d 6cd1ed50 net-backports: vt: vt_ioctl: fix race in VT_RESIZEX
KASAN: use-after-free Read in percpu_ref_switch_to_atomic_rcu 5 418d 441d 372d c1e2148f io_uring: free fixed_file_data after RCU grace period
KASAN: use-after-free Read in rtnl_fill_ifinfo (2) 2 431d 432d 372d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
INFO: task hung in hashlimit_net_exit syz done 53 426d 435d 372d 8d0015a7 netfilter: xt_hashlimit: limit the max size of hashtable
kernel BUG at arch/x86/mm/physaddr.c:LINE! (4) C 18 391d 426d 372d 2ad3e17e audit: fix error handling in audit_data_to_entry()
KMSAN: uninit-value in slhc_compress C 3 415d 415d 372d 110a40df slip: make slhc_compress() more robust against malicious packets
WARNING: proc registration bug in hashlimit_mt_check_common C done 320 412d 437d 372d 99b79c39 netfilter: xt_hashlimit: unregister proc file before releasing mutex
linux-next test error: WARNING in snd_pcm_plug_alloc 3 406d 406d 372d 5461e053 ALSA: pcm: oss: Remove WARNING from snd_pcm_plug_alloc() checks
WARNING: ODEBUG bug in smc_ib_remove_dev 52 403d 417d 372d ece0d7bd net/smc: cancel event worker during device removal
memory leak in dma_buf_ioctl C done 129 423d 639d 372d d1f37226 dma-buf: free dmabuf->name in dma_buf_release()
KASAN: use-after-free Read in netdev_state_change 2 431d 432d 372d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
KCSAN: data-race in snd_seq_check_queue / snd_seq_control_queue 97 373d 471d 372d bb51e669 ALSA: seq: Avoid concurrent access to queue flags
INFO: trying to register non-static key in xa_destroy C done 46 395d 423d 372d 12e5eef0 RDMA/siw: Fix failure handling during device creation
BUG: unable to handle kernel NULL pointer dereference in inet_release syz 3 422d 423d 372d b6f61189 ipv6: restrict IPV6_ADDRFORM operation
INFO: rcu detected stall in ip_set_uadd C done 11 417d 454d 372d f66ee041 netfilter: ipset: Fix "INFO: rcu detected stall in hash_xxx" reports
general protection fault in batadv_iv_ogm_schedule 2 426d 439d 372d 8e8ce081 batman-adv: Don't schedule OGM for disabled interface
INFO: task hung in paste_selection C inconclusive done 8 439d 504d 372d e8c75a30 vt: selection, push sel_lock up
BUG: unable to handle kernel paging request in ethnl_update_bitset32 C 168 412d 424d 372d e34f1753 ethtool: limit bitset size
KASAN: use-after-free Read in ipv6_chk_addr_and_flags 1 431d 431d 372d e08ad805 net: add strict checks in netdev_name_node_alt_destroy()
KMSAN: use-after-free in find_match C 52 402d 432d 372d e08ad805 net-backports: net: add strict checks in netdev_name_node_alt_destroy()
KASAN: use-after-free Read in vgem_gem_dumb_create C done 15 435d 447d 372d 4b848f20 drm/vgem: Close use-after-free race in vgem_gem_create
KMSAN: uninit-value in bpf_skb_load_helper_32_no_cache 2 442d 441d 372d 457fed77 net/smc: fix leak of kernel memory to user space
memory leak in nf_tables_parse_netdev_hooks (2) C 2 412d 416d 372d 2d285f26 netfilter: nf_tables: free flowtable hooks on hook register error
KMSAN: uninit-value in bond_alb_xmit syz 3 413d 415d 372d b7469e83 bonding/alb: make sure arp header is pulled before accessing it
divide error in encrypt_packet C done 89 426d 434d 372d 175f1ca9 wireguard: send: account for mtu=0 devices
general protection fault in smc_ib_remove_dev C done 98 412d 424d 372d a2f2ef4a net/smc: check for valid ib_client_data
possible deadlock in htab_lru_map_delete_node C done 264 425d 431d 372d b9aff38d bpf: Fix a potential deadlock with bpf_map_do_batch
KMSAN: use-after-free in inet_gifconf 10 403d 426d 372d e08ad805 net-backports: net: add strict checks in netdev_name_node_alt_destroy()
KMSAN: use-after-free in ip6_dst_destroy C 2 405d 417d 372d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
KASAN: use-after-free Read in raw_notifier 3 431d 432d 372d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
memory leak in fasync_helper C 14 441d 502d 372d 67f562e3 net/smc: transfer fasync_list in case of fallback
possible deadlock in tty_unthrottle 3 396d 421d 372d e8c75a30 vt: selection, push sel_lock up
possible deadlock in inet_csk_accept C done 992 407d 408d 372d 06669ea3 net: memcg: fix lockdep splat in inet_csk_accept()
KASAN: slab-out-of-bounds Read in ethnl_update_bitset32 syz 2 418d 424d 372d e34f1753 ethtool: limit bitset size
KMSAN: uninit-value in audit_log_vformat C 220 372d 424d 372d 75612528 audit: always check the netlink payload length in audit_receive_msg()
KASAN: use-after-free Read in dev_get_by_index_rcu 1 427d 427d 372d e08ad805 net: add strict checks in netdev_name_node_alt_destroy()
INFO: rcu detected stall in hash_ip4_gc C done 1 454d 452d 372d f66ee041 netfilter: ipset: Fix "INFO: rcu detected stall in hash_xxx" reports
KCSAN: data-race in queue_access_lock / snd_seq_check_queue 58 412d 454d 372d bb51e669 ALSA: seq: Avoid concurrent access to queue flags
KMSAN: kernel-infoleak in tty_compat_ioctl C 162 394d 424d 372d 17329563 tty: fix compat TIOCGSERIAL leaking uninitialized memory
BUG: sleeping function called from invalid context in __kmalloc C done 5 434d 440d 372d b27a939e ceph: canonicalize server path in place
INFO: rcu detected stall in ip_set_udel C done 12 432d 454d 372d f66ee041 netfilter: ipset: Fix "INFO: rcu detected stall in hash_xxx" reports
general protection fault in ip_set_comment_free C done 19 415d 452d 372d 8af1c6fb netfilter: ipset: Fix forceadd evaluation path
possible deadlock in bond_get_stats (3) syz done 2 427d 427d 372d b3e80d44 bonding: fix lockdep warning in bond_get_stats()
general protection fault in batadv_iv_ogm_schedule_buff 24 409d 431d 372d 8e8ce081 batman-adv: Don't schedule OGM for disabled interface
KMSAN: use-after-free in veth_xmit 8 403d 418d 372d e08ad805 net-backports: net: add strict checks in netdev_name_node_alt_destroy()
KMSAN: uninit-value in kstrdup C 8 408d 435d 372d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
possible deadlock in sidtab_sid2str_put C done 1382 434d 451d 372d 39a706fb selinux: fix sidtab string cache locking
KCSAN: data-race in __snd_rawmidi_transmit_ack / snd_rawmidi_write 168 373d 499d 372d dfa9a5ef ALSA: rawmidi: Avoid bit fields for state flags
KASAN: use-after-free Read in vsscanf 2 429d 431d 372d e08ad805 net: add strict checks in netdev_name_node_alt_destroy()
KASAN: use-after-free Read in n_tty_receive_buf_common C done 68 427d 503d 372d 07e6124a vt: selection, close sel_buffer race
KASAN: use-after-free Read in ethnl_update_bitset32 C done 6 416d 424d 372d e34f1753 ethtool: limit bitset size
KASAN: use-after-free Read in fib_nexthop_info 1 431d 431d 372d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
general protection fault in nf_flow_table_offload_setup C done done 835 426d 459d 372d a7da92c2 netfilter: flowtable: skip offload setup if disabled
memory leak in nfs_fs_context_parse_monolithic C 18 407d 433d 372d 75a9b917 NFS: Fix leak of ctx->nfs_server.hostname
KASAN: slab-out-of-bounds Read in inet_gifconf 2 432d 432d 372d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
KASAN: use-after-free Read in find_match C done 142 426d 432d 372d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
KMSAN: uninit-value in fat_evict_inode C 256 402d 426d 372d bc87302a fat: fix uninit-memory access for partial initialized inode
KASAN: use-after-free Read in br_dev_xmit 1 422d 422d 372d 823d81b0 net: bridge: fix stale eth hdr pointer in br_dev_xmit
KASAN: use-after-free Read in ip6_dst_destroy C done 1 432d 432d 372d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
WARNING: bad unlock balance in ovl_llseek C done 4 404d 417d 372d 531d3040 ovl: fix lock in ovl_llseek()
KASAN: use-after-free Read in l3mdev_master_ifindex_rcu C done done 13 428d 434d 372d e08ad805 net: add strict checks in netdev_name_node_alt_destroy()
KASAN: slab-out-of-bounds Read in resample_shrink C done 5 394d 413d 372d f2ecf903 ALSA: pcm: oss: Avoid plugin buffer overflow
general protection fault in nldev_stat_set_doit C done 8 406d 423d 372d 78f34a16 RDMA/nldev: Fix crash when set a QP to a new counter but QPN is missing
kernel panic: stack is corrupted in vhost_net_ioctl C done 2 432d 519d 372d 42d84c84 vhost: Check docket sk_family instead of call getname
KASAN: use-after-free Read in __neigh_notify 2 431d 432d 372d 44bfa9c5 net: rtnetlink: fix bugs in rtnl_alt_ifname()
BUG: unable to handle kernel NULL pointer dereference in cipso_v4_sock_setattr C done 8 413d 423d 372d dc24f8b4 mptcp: add dummy icsk_sync_mss()
INFO: task hung in lock_sock_nested (2) C done 418 412d 425d 372d 3f74957f vsock: fix potential deadlock in transport->release()
KMSAN: use-after-free in l3mdev_master_ifindex_rcu C 5 403d 426d 372d e08ad805 net: add strict checks in netdev_name_node_alt_destroy()
unregister_netdevice: waiting for DEV to become free (3) C 1864 372d 434d 372d e34f1753 ethtool: limit bitset size
KMSAN: use-after-free in dev_alloc_name_ns 3 403d 416d 372d e08ad805 net: add strict checks in netdev_name_node_alt_destroy()
KCSAN: data-race in snd_seq_prioq_cell_out / snd_seq_timer_interrupt 118 373d 467d 372d dc749779 ALSA: seq: Fix concurrent access to queue current tick/time
KASAN: use-after-free Read in mld_in_v1_mode C done 3 431d 434d 372d e08ad805 net-backports: net: add strict checks in netdev_name_node_alt_destroy()
possible deadlock in bpf_lru_push_free C done 609 425d 431d 372d b9aff38d bpf: Fix a potential deadlock with bpf_map_do_batch
WARNING in switch_fpu_return syz done done 11 444d 477d 393d 2620fe26 KVM: x86: Revert "KVM: X86: Fix fpu state crash in kvm guest"
KMSAN: use-after-free in rdma_listen C 26 413d 559d 393d 5fc01fb8 RDMA/cma: Rollback source IP address if failing to acquire device
KMSAN: uninit-value in rdma_listen C 28 570d 935d 393d 5fc01fb8 RDMA/cma: Rollback source IP address if failing to acquire device
KASAN: slab-out-of-bounds Read in bitmap_ip_add syz done done 7 449d 460d 393d 32c72165 netfilter: ipset: use bitmap infrastructure completely
general protection fault in __nf_tables_chain_type_lookup 1 458d 458d 399d 82603549 netfilter: nf_tables: add __nft_chain_type_get()
KASAN: slab-out-of-bounds Read in bitmap_ip_ext_cleanup C done done 8 443d 459d 401d 32c72165 netfilter: ipset: use bitmap infrastructure completely
KASAN: slab-out-of-bounds Read in bitmap_port_ext_cleanup C done done 10 451d 460d 401d 32c72165 netfilter: ipset: use bitmap infrastructure completely
BUG: corrupted list in __nf_tables_abort C done done 29 453d 461d 401d eb014de4 netfilter: nf_tables: autoload modules from the abort path
KASAN: slab-out-of-bounds Read in bitmap_ipmac_destroy C done done 2 454d 454d 401d 32c72165 netfilter: ipset: use bitmap infrastructure completely
KASAN: slab-out-of-bounds Read in bitmap_ipmac_gc C done done 70 442d 458d 401d 32c72165 netfilter: ipset: use bitmap infrastructure completely
BUG: unable to handle kernel paging request in ion_heap_sglist_zero 1 507d 507d 401d d98c9e83 kasan: fix crashes on access to memory mapped by vm_map_ram()
KASAN: slab-out-of-bounds Read in bitmap_ipmac_ext_cleanup C unreliable done 15 443d 459d 401d 32c72165 netfilter: ipset: use bitmap infrastructure completely
KASAN: slab-out-of-bounds Read in bitmap_port_destroy C done done 2 455d 455d 401d 32c72165 netfilter: ipset: use bitmap infrastructure completely
general protection fault in gcmaes_crypt_by_sg (2) C error done 28 459d 506d 407d db885e66 net/tls: fix async operation
possible deadlock in wg_noise_handshake_create_initiation C done 11 441d 444d 407d ec31c267 wireguard: noise: reject peers with low order public keys
KASAN: use-after-free Read in slcan_open C done 2 508d 507d 407d 9ebd796e can: slcan: Fix use-after-free Read in slcan_open
kernel BUG at fs/btrfs/volumes.c:LINE! 130 513d 1051d 407d 321f69f8 btrfs: reset device back to allocation state when removing
BUG: unable to handle kernel paging request in slhc_free C done done 177 728d 846d 407d baf76f0c slip: make slhc_free() silently accept an error pointer
WARNING in _chaoskey_fill/usb_submit_urb C 15 524d 577d 407d 92aa5986 USB: chaoskey: fix error case of a timeout
KASAN: slab-out-of-bounds Read in iov_iter_alignment C error error 79 507d 504d 407d e0ff126e pipe: Fix bogus dereference in iov_iter_alignment()
possible deadlock in wg_set_device C done 33 439d 444d 407d ec31c267 wireguard: noise: reject peers with low order public keys
WARNING: ODEBUG bug in io_sqe_files_unregister C done 964 442d 489d 407d 2faf852d io_uring: cleanup fixed file data table references
WARNING in flexcop_usb_probe/usb_submit_urb C 4 573d 610d 407d 1b976fc6 media: b2c2-flexcop-usb: add sanity checking
linux-next build error (7) 7 452d 456d 407d ac6119e7 efi/x86: Disable instrumentation in the EFI runtime handling code
BUG: unable to handle kernel paging request in xfs_sb_read_verify 69 490d 510d 412d d98c9e83 kasan: fix crashes on access to memory mapped by vm_map_ram()
BUG: unable to handle kernel paging request in ion_heap_clear_pages C 4378 490d 510d 412d d98c9e83 kasan: fix crashes on access to memory mapped by vm_map_ram()
KASAN: use-after-free Read in bitmap_ip_ext_cleanup C done done 2 459d 459d 425d 32c72165 netfilter: ipset: use bitmap infrastructure completely
KASAN: use-after-free Read in bitmap_ipmac_ext_cleanup C done done 2 459d 459d 425d 32c72165 netfilter: ipset: use bitmap infrastructure completely
KASAN: slab-out-of-bounds Write in bitmap_ip_del C done done 7 457d 459d 425d 32c72165 netfilter: ipset: use bitmap infrastructure completely
KASAN: use-after-free Read in bitmap_ip_destroy C done done 1 459d 459d 428d 32c72165 netfilter: ipset: use bitmap infrastructure completely
upstream boot error: KASAN: slab-out-of-bounds Write in hpet_alloc 33 447d 449d 429d 98c49f17 char: hpet: Fix out-of-bounds read bug
KMSAN: uninit-value in setup_udp_tunnel_sock C 1 458d 457d 429d 940ba149 net-backports: gtp: make sure only SOCK_DGRAM UDP sockets are accepted
WARNING in nft_request_module C done 7 463d 463d 429d 9332d27d netfilter: nf_tables: remove WARN and add NLA_STRING upper limits
memory leak in reiserfs_fill_super C 20 448d 498d 429d 5474ca7d reiserfs: Fix memory leak of journal device string
WARNING: lock held when returning to user space in tun_get_user (2) 7 446d 456d 429d 1efba987 net-backports: tun: add mutex_unlock() call and napi.skb clearing in tun_get_user()
memory leak in kobject_set_name_vargs (2) C done 47 455d 639d 429d cb626bf5 net-sysfs: Fix reference count leak
KCSAN: data-race in __rcu_read_unlock / sync_rcu_exp_select_cpus 7 441d 535d 429d c51f83c3 rcu: Use READ_ONCE() for ->expmask in rcu_read_unlock_special()
KASAN: slab-out-of-bounds Read in bitmap_port_gc C done 197 443d 460d 429d 32c72165 netfilter: ipset: use bitmap infrastructure completely
KMSAN: uninit-value in can_receive C 14 432d 521d 429d e7153bf7 can: can_dropped_invalid_skb(): ensure an initialized headroom in outgoing CAN sk_buffs
memory leak in _sctp_make_chunk C 1 493d 493d 429d be7a7729 sctp: free cmd->obj.chunk for the unprocessed SCTP_CMD_REPLY
WARNING in devlink_port_type_warn 2340 460d 532d 429d 4c582234 devlink: Wait longer before warning about unset port type
BUG: unable to handle kernel NULL pointer dereference in x25_connect 1 503d 503d 429d e21dba7a net/x25: fix nonblocking connect
KASAN: user-memory-access Write in video_usercopy 3 470d 471d 429d 1dc8b65c media: v4l2-core: only zero-out ioctl-read buffers
BUG: unable to handle kernel NULL pointer dereference in cfg80211_wext_siwrts 3 459d 468d 429d 24953de0 cfg80211: check for set_wiphy_params
KASAN: null-ptr-deref Write in x25_connect 1 508d 504d 429d e21dba7a net/x25: fix nonblocking connect
KASAN: slab-out-of-bounds Read in bitmap_ip_list C 85 444d 461d 429d 32c72165 netfilter: ipset: use bitmap infrastructure completely
kernel BUG at fs/namei.c:LINE! 3593 465d 465d 429d c64cd6e3 reimplement path_mountpoint() with less magic
KASAN: use-after-free Read in bitmap_port_ext_cleanup C done 11 459d 468d 429d c1209593 netfilter: fix a use-after-free in mtype_destroy()
KMSAN: uninit-value in sd_init (2) C 94 535d 531d 429d de89d086 media: gspca: zero usb_buf
KMSAN: uninit-value in __request_module (3) C 58 430d 458d 429d 36d79af7 net-backports: net_sched: use validated TCA_KIND attribute in tc_new_tfilter()
KMSAN: uninit-value in rsvp_change C 4 450d 451d 429d cb3c0e6b cls_rsvp: fix rsvp_policy
BUG: unable to handle kernel paging request in rhashtable_replace_fast 2 455d 463d 429d 41cdc741 netdevsim: fix nsim_fib6_rt_create() error path
KASAN: use-after-free Read in __nf_tables_abort C done 3 456d 458d 429d eb014de4 netfilter: nf_tables: autoload modules from the abort path
KASAN: use-after-free Read in rsi_rx_done_handler 8 468d 597d 429d e93cd351 rsi: fix use-after-free on failed probe and unbind
general protection fault in hsr_addr_is_self 3 431d 447d 429d 2b5b8251 net: hsr: fix possible NULL deref in hsr_handle_frame()
WARNING: suspicious RCU usage in find_set_and_id syz done 6 454d 457d 429d 50385171 netfilter: ipset: fix suspicious RCU usage in find_set_and_id
BUG: corrupted list in nft_obj_del C done 7 461d 463d 429d 335178d5 netfilter: nf_tables: fix flowtable list del corruption
BUG: corrupted list in nf_tables_commit C done 8 463d 463d 429d 335178d5 netfilter: nf_tables: fix flowtable list del corruption
kernel panic: stack is corrupted in __lock_acquire (4) syz error error 75 525d 683d 429d 4da6a196 bpf: Sockmap/tls, during free we may call tcp_bpf_unhash() in loop
INFO: rcu detected stall in addrconf_rs_timer (3) C inconclusive done 81 490d 486d 429d d9e15a27 pkt_sched: fq: do not accept silly TCA_FQ_QUANTUM
KASAN: slab-out-of-bounds Read in bitmap_ipmac_list C done 108 445d 461d 429d 32c72165 netfilter: ipset: use bitmap infrastructure completely
BUG: corrupted list in __dentry_kill (2) C done 4945 498d 498d 429d a3d1e7eb simple_recursive_removal(): kernel-side rm -rf for ramfs-style filesystems
KASAN: slab-out-of-bounds Write in setup_udp_tunnel_sock (2) C done 8 456d 458d 429d 940ba149 net-backports: gtp: make sure only SOCK_DGRAM UDP sockets are accepted
BUG: sleeping function called from invalid context in lock_sock_nested C 1232 429d 505d 429d 37f96694 crypto: af_alg - Use bh_lock_sock in sk_destruct
general protection fault in dccp_timeout_nlattr_to_obj C done 7 469d 472d 429d 1d9a7acd netfilter: conntrack: dccp, sctp: handle null timeout argument
memory leak in vlan_dev_set_egress_priority C 1 472d 472d 429d 9bbd917e vlan: fix memory leak in vlan_dev_set_egress_priority
general protection fault in nft_parse_register 1 461d 461d 429d 7eaecf79 netfilter: nft_osf: add missing check for DREG attribute
WARNING in sk_psock_drop 157 452d 461d 429d 58c8db92 net, sk_msg: Don't check if sock is locked when tearing down psock
KCSAN: data-race in __rcu_read_unlock / rcu_report_exp_cpu_mult 21 445d 505d 429d c51f83c3 rcu: Use READ_ONCE() for ->expmask in rcu_read_unlock_special()
KCSAN: data-race in tomoyo_supervisor / tomoyo_supervisor (3) 142 434d 486d 429d a8772fad tomoyo: Use atomic_t for statistics counter
KMSAN: uninit-value in macvlan_broadcast C 2 472d 472d 429d 96cc4b69 macvlan: do not assume mac_header is set in macvlan_broadcast()
general protection fault in xt_rateest_tg_checkentry C done 12 473d 483d 429d 1b789577 netfilter: arp_tables: init netns pointer in xt_tgchk_param struct
general protection fault in hash_netiface6_uadt 1 469d 469d 429d 22dad713 netfilter: ipset: avoid null deref when IPSET_ATTR_LINENO is present
WARNING in tcp_ack C done 3 470d 471d 429d 90d72256 gtp: fix bad unlock balance in gtp_encap_enable_socket
memory leak in em_nbyte_change C 1 454d 454d 429d 55cd9f67 net_sched: ematch: reject invalid TCF_EM_SIMPLE
KCSAN: data-race in __skb_try_recv_from_queue / unix_dgram_sendmsg 61 445d 463d 429d 86b18aaa skbuff: fix a data race in skb_queue_len()
KMSAN: uninit-value in digitv_rc_query C 4 548d 531d 429d eecc70d2 media: digitv: don't continue if remote control state can't be read 569bc8d6 media: dvb-usb/dvb-usb-urb.c: initialize actlen to 0
general protection fault in xt_rateest_put C done 97 460d 467d 429d 212e7f56 netfilter: arp_tables: init netns pointer in xt_tgdtor_param struct
KCSAN: data-race in rcu_gp_fqs_check_wake / rcu_preempt_deferred_qs_irqrestore 99 441d 562d 429d 6935c398 rcu: Avoid data-race in rcu_gp_fqs_check_wake()
BUG: sleeping function called from invalid context in tpk_write C done 12 461d 502d 429d 9a655c77 ttyprintk: fix a potential deadlock in interrupt context issue
KCSAN: data-race in rcu_gp_fqs_check_wake / rcu_note_context_switch 51 441d 554d 429d 6935c398 rcu: Avoid data-race in rcu_gp_fqs_check_wake()
memory leak in snd_pcm_hw_params C 25 442d 449d 429d 66f2d19f ALSA: pcm: Fix memory leak at closing a stream without hw_free
KASAN: slab-out-of-bounds Read in macvlan_broadcast C done 10 470d 472d 429d 96cc4b69 macvlan: do not assume mac_header is set in macvlan_broadcast()
KMSAN: uninit-value in number C 190 434d 531d 429d 51d0c99b media: af9005: uninitialized variable printked
KCSAN: data-race in find_next_bit / rcu_report_exp_cpu_mult 203 441d 564d 429d 15c7c972 rcu: Use *_ONCE() to protect lockless ->expmask accesses
KMSAN: uninit-value in __tipc_nl_compat_dumpit C 4428 429d 498d 429d a7869e5f tipc: eliminate KMSAN: uninit-value in __tipc_nl_compat_dumpit error
KASAN: slab-out-of-bounds Read in nla_put_nohdr C done 1 457d 457d 429d 61678d28 net_sched: fix datalen for ematch
general protection fault in path_openat C done 7 447d 447d 429d 6404674a vfs: fix do_last() regression
general protection fault in free_verifier_state (3) C 5 457d 464d 429d f59bbfc2 bpf: Fix error path under memory pressure
WARNING: bad unlock balance in release_sock 1 471d 471d 429d 90d72256 gtp: fix bad unlock balance in gtp_encap_enable_socket
KASAN: use-after-free Read in tcp_fastretrans_alert C done 1 460d 460d 429d 2bec445f net-backports: tcp: do not leave dangling pointers in tp->highest_sack
KASAN: use-after-free Read in root_remove_peer_lists C done 2 446d 446d 429d 9981159f wireguard: allowedips: fix use-after-free in root_remove_peer_lists
KASAN: use-after-free Read in snd_timer_resolution C 5 445d 463d 429d 60adcfde ALSA: seq: Fix racy access for queue timer in proc read
KMSAN: uninit-value in i2c_w (2) C 3 543d 531d 429d de89d086 media: gspca: zero usb_buf
KCSAN: data-race in tick_do_update_jiffies64 / tick_do_update_jiffies64 (4) 394 434d 505d 429d de95a991 net-backports: tick/sched: Annotate lockless access to last_jiffies_update
general protection fault in hash_netnet6_uadt 1 470d 470d 429d 22dad713 netfilter: ipset: avoid null deref when IPSET_ATTR_LINENO is present
BUG: unable to handle kernel paging request in rhashtable_jhash2 C done 6 462d 463d 429d 41cdc741 netdevsim: fix nsim_fib6_rt_create() error path
memory leak in tcf_ctinfo_init C 2 459d 460d 429d 09d4f10a net: sched: act_ctinfo: fix memory leak
WARNING in do_dentry_open (2) C done 17 449d 447d 429d a37f4958 debugfs: Return -EPERM when locked down
KASAN: slab-out-of-bounds Read in __nla_put_nohdr C done 4 457d 457d 429d 61678d28 net_sched: fix datalen for ematch
INFO: rcu detected stall in br_handle_frame (2) C done 2 489d 485d 429d d9e15a27 pkt_sched: fq: do not accept silly TCA_FQ_QUANTUM
memory leak in nf_tables_parse_netdev_hooks C 6 433d 463d 429d cd77e75b netfilter: nf_tables: fix memory leak in nf_tables_parse_netdev_hooks()
KCSAN: data-race in process_srcu / synchronize_srcu 112 441d 535d 429d 844a378d srcu: Apply *_ONCE() to ->srcu_last_gp_end
WARNING in __proc_create (2) C done 4 457d 457d 429d a45ea48e afs: Fix characters allowed into cell names
INFO: rcu detected stall in netlink_sendmsg (3) C done 6 437d 490d 429d d9e15a27 pkt_sched: fq: do not accept silly TCA_FQ_QUANTUM
general protection fault in timer_is_static_object C 2 513d 510d 429d cb222aed Input: add safety guards to input_set_keycode()
KASAN: null-ptr-deref Write in queue_work_on C done error 5 614d 610d 429d 0ace17d5 can, slip: Protect tty->disc_data in write_wakeup and close with RCU
WARNING in cbq_destroy_class C done 7 434d 457d 429d 2e24cd75 net_sched: fix ops->bind_class() implementations
WARNING in tracepoint_probe_register_prio (3) syz done 979 433d 1070d 429d 64ae572b tracing: Fix sched switch start/stop refcount racy updates
kernel BUG at arch/x86/kvm/mmu/mmu.c:LINE! C done 6 486d 493d 429d 005ba37c mm: thp: KVM: Explicitly check for THP when populating secondary MMU
BUG: spinlock already unlocked in input_set_keycode C 2 523d 521d 429d cb222aed Input: add safety guards to input_set_keycode()
WARNING: refcount bug in cdev_get C done 105 471d 611d 429d 68faa679 chardev: Avoid potential use-after-free in 'chrdev_open()'
KMSAN: uninit-value in read_sensor_register (2) C 44 537d 554d 429d de89d086 media: gspca: zero usb_buf
inconsistent lock state in rxrpc_put_client_conn C done 18198 438d 444d 429d 963485d4 rxrpc: Fix call RCU cleanup using non-bh-safe locks
general protection fault in hash_ipmark6_uadt 2 469d 469d 429d 22dad713 netfilter: ipset: avoid null deref when IPSET_ATTR_LINENO is present
WARNING in cbq_destroy C done 1 457d 457d 429d 2e24cd75 net_sched: fix ops->bind_class() implementations
WARNING in dln2_start_rx_urbs/usb_submit_urb C 44 445d 533d 429d 2b8bd606 mfd: dln2: More sanity checking for endpoints
KASAN: use-after-free Read in tcp_check_sack_reordering C done 2 452d 461d 429d 2bec445f net-backports: tcp: do not leave dangling pointers in tp->highest_sack
BUG: unable to handle kernel NULL pointer dereference in cfg80211_wext_siwfrag C done 8 460d 472d 429d 24953de0 cfg80211: check for set_wiphy_params
WARNING in cgroup_apply_control_enable C done 178 466d 1018d 429d 3bc0bb36 cgroup: Prevent double killing of css when enabling threaded cgroup
KASAN: slab-out-of-bounds Read in hid_field_extract C 6 470d 503d 429d 8ec321e9 HID: Fix slab-out-of-bounds read in hid_field_extract
general protection fault in nft_chain_parse_hook C done 48 448d 463d 429d 82603549 netfilter: nf_tables: add __nft_chain_type_get()
WARNING in nf_tables_table_destroy C done done 1 461d 461d 429d eb014de4 netfilter: nf_tables: autoload modules from the abort path
KASAN: slab-out-of-bounds Write in mpol_parse_str C done 3 468d 464d 429d c7a91bc7 mm/mempolicy.c: fix out of bounds write in mpol_parse_str()
KASAN: slab-out-of-bounds Read in bitmap_ip_gc C done 15 442d 460d 429d 32c72165 netfilter: ipset: use bitmap infrastructure completely
WARNING: ODEBUG bug in rsi_probe C 10487 443d 739d 429d 92aafe77 rsi: fix use-after-free on probe errors
KASAN: use-after-free Read in macvlan_broadcast C done 12 470d 472d 429d 96cc4b69 macvlan: do not assume mac_header is set in macvlan_broadcast()
general protection fault in nft_tunnel_get_init C done 7 463d 463d 429d 1c702bf9 netfilter: nft_tunnel: fix null-attribute check
KASAN: slab-out-of-bounds Read in bitmap_port_add syz done 9 454d 461d 429d 32c72165 netfilter: ipset: use bitmap infrastructure completely
WARNING: bad unlock balance in gtp_encap_enable_socket C done 8 469d 473d 429d 90d72256 net-backports: gtp: fix bad unlock balance in gtp_encap_enable_socket
WARNING: bad unlock balance in sch_direct_xmit C done 35 459d 506d 429d 53d37497 net: avoid updating qdisc_xmit_lock_key in netdev_update_lockdep_key()
general protection fault in inet6_set_link_af C done 8 439d 443d 429d db3fa271 ipv6/addrconf: fix potential NULL deref in inet6_set_link_af()
general protection fault in tcf_ife_cleanup C done 111 444d 468d 429d 44c23d71 net/sched: act_ife: initalize ife->metalist earlier
BUG: unable to handle kernel paging request in do_csum (2) C done 6 453d 454d 429d 6cd021a5 udp: segment looped gso packets correctly
KASAN: use-after-free Write in hci_sock_bind 4 431d 464d 429d 11eb85ec Bluetooth: Fix race condition in hci_release_sock()
KASAN: use-after-free Write in __alloc_skb (2) C done 7 480d 497d 429d d836f5c6 net-backports: net: rtnetlink: validate IFLA_MTU attribute in rtnl_create_link()
KASAN: slab-out-of-bounds Read in bitmap_ip_test syz 10 450d 460d 429d 32c72165 netfilter: ipset: use bitmap infrastructure completely
WARNING in geneve_exit_batch_net 15 429d 455d 429d 760d228e net_sched: walk through all child classes in tc_bind_tclass()
KASAN: slab-out-of-bounds Read in tcf_exts_destroy C done error 8 552d 455d 429d 599be01e net_sched: fix an OOB access in cls_tcindex
general protection fault in hash_ipportnet4_uadt C done 13 469d 471d 429d 22dad713 netfilter: ipset: avoid null deref when IPSET_ATTR_LINENO is present
KASAN: use-after-free Write in percpu_ref_switch_to_percpu 1 444d 443d 429d 2faf852d io_uring: cleanup fixed file data table references
KASAN: slab-out-of-bounds Read in bitmap_port_list C 152 452d 461d 429d 32c72165 netfilter: ipset: use bitmap infrastructure completely
WARNING in uvc_scan_chain_forward C 6 469d 493d 429d 68035c80 media: uvcvideo: Avoid cyclic entity chains due to malformed USB descriptors
WARNING: ODEBUG bug in tcindex_destroy_work (2) 5 434d 445d 429d 599be01e net_sched: fix an OOB access in cls_tcindex
inconsistent lock state in rxrpc_put_client_connection_id C done 473 438d 444d 429d 963485d4 rxrpc: Fix call RCU cleanup using non-bh-safe locks
INFO: task hung in aead_recvmsg C done 11991 456d 1229d 429d bbefa1dd crypto: pcrypt - Avoid deadlock by using per-instance padata queues
KASAN: use-after-free Read in bitmap_port_destroy C 1 460d 460d 429d c1209593 netfilter: fix a use-after-free in mtype_destroy()
KASAN: null-ptr-deref Read in tcf_generic_walker C done 6 433d 452d 429d 760d228e net_sched: walk through all child classes in tc_bind_tclass()
WARNING: refcount bug in chrdev_open C inconclusive done 15 509d 611d 429d 68faa679 chardev: Avoid potential use-after-free in 'chrdev_open()'
KMSAN: uninit-value in dvb_usb_adapter_dvb_init 1 539d 531d 429d 26cff637 media: vp7045: do not read uninitialized values if usb transfer fails
INFO: task hung in __generic_file_fsync (2) C done done 28 476d 477d 429d 85a8ce62 block: add bio_truncate to fix guard_bio_eod
WARNING in tcp_enter_loss (2) C done unreliable 4 1087d 1137d 429d 16ae6aa1 tcp: ignore Fast Open on repair mode
KASAN: null-ptr-deref Read in refcount_sub_and_test_checked (2) C inconclusive done 916 689d 891d 429d 62dcb4f4 media: vb2: check memory model for VIDIOC_CREATE_BUFS
BUG: unable to handle kernel paging request in xfs_sb_quiet_read_verify C done 6 490d 490d 434d d98c9e83 kasan: fix crashes on access to memory mapped by vm_map_ram()
KASAN: vmalloc-out-of-bounds Write in pcpu_alloc C done 31 482d 506d 434d 253a496d kasan: don't assume percpu shadow allocations will succeed
KASAN: use-after-free Read in iov_iter_alignment C error 3 508d 507d 434d e0ff126e pipe: Fix bogus dereference in iov_iter_alignment()
memory leak in sctp_stream_init C 1 495d 494d 434d 951c6db9 sctp: fix memleak on err handling of stream initialization
general protection fault in gigaset_probe C 6 518d 637d 434d 53f35a39 staging: gigaset: fix general protection fault on probe
KASAN: use-after-free Read in ext4_xattr_set_entry (2) C done 19 493d 902d 434d 9803387c ext4: validate the debug_want_extra_isize mount option at parse time
KMSAN: uninit-value in __crc32c_le_base syz 567 470d 516d 434d b6f3320b sctp: fully initialize v4 addr in some functions
unregister_netdevice: waiting for DEV to become free (2) C done 385621 434d 981d 434d ddd9b5e3 net-sysfs: Call dev_hold always in rx_queue_add_kobject
KMSAN: uninit-value in br_nf_forward_arp (3) 2 510d 502d 434d 56042858 net-backports: netfilter: bridge: make sure to pull arp header in br_nf_forward_arp()
KCSAN: data-race in taskstats_exit / taskstats_exit 157 434d 566d 434d 0b8d616f taskstats: fix data-race
WARNING in azx_rirb_get_response 4 492d 494d 434d 475feec0 ALSA: hda - Downgrade error message for single-cmd fallback
INFO: task hung in sync_inodes_sb (3) C done 6 475d 483d 434d 85a8ce62 block: add bio_truncate to fix guard_bio_eod
linux-next boot error: general protection fault in do_mount_root 9 493d 493d 434d 7de7de7c Fix root mounting with no mount options
upstream boot error: general protection fault in do_mount_root 12 494d 494d 434d 7de7de7c Fix root mounting with no mount options
KMSAN: uninit-value in bond_neigh_setup 64 478d 502d 434d f394722f net-backports: neighbour: remove neigh_cleanup() method
KASAN: use-after-free Read in tomoyo_realpath_from_path syz error error 7 494d 687d 434d 6f7c4137 tomoyo: Don't use nifty names on sockets.
KASAN: slab-out-of-bounds Read in hsr_debugfs_rename C done 18 473d 482d 434d 04b69426 hsr: fix slab-out-of-bounds Read in hsr_debugfs_rename()
general protection fault in j1939_sk_bind syz done done 22 509d 535d 434d 00d4e14d can: j1939: j1939_sk_bind(): take priv after lock is held
BUG: unable to handle kernel paging request in pcpu_alloc C done 24 487d 506d 434d 253a496d kasan: don't assume percpu shadow allocations will succeed
general protection fault in sctp_stream_free (2) C done 25 479d 490d 434d 61d5d406 sctp: fix err handling of stream initialization
inconsistent lock state in sp_get C done 2 497d 497d 434d 5c9934b6 6pack,mkiss: fix possible deadlock
general protection fault in j1939_jsk_del (2) syz 21 493d 510d 434d 00d4e14d can: j1939: j1939_sk_bind(): take priv after lock is held
KASAN: vmalloc-out-of-bounds Read in compat_copy_entries C done 3 495d 495d 434d e608f631 netfilter: ebtables: compat: reject all padding in matches/watchers
WARNING in ovl_rename C done done 5 726d 722d 434d 6889ee5a ovl: relax WARN_ON() on rename to self
possible deadlock in mon_bin_vma_fault C done 11427 496d 962d 434d 19e6317d usb: mon: Fix a deadlock in usbmon between mmap and read
WARNING: refcount bug in smc_release (2) C done 9 491d 515d 434d 86434744 net/smc: add fallback check to connect()
BUG: corrupted list in hsr_add_node 1 536d 535d 434d 92a35678 hsr: fix a race condition in node list insertion and deletion
BUG: Bad rss-counter state (3) C unreliable done 438 634d 1100d 447d 173d9d9f mm/huge_memory: splitting set mapping+index before unfreeze
possible deadlock in flush_workqueue (2) C done done 256 482d 915d 447d e7c58097 hugetlbfs: revert "Use i_mmap_rwsem to fix page fault/truncate race"
KASAN: slab-out-of-bounds Read in build_audio_procunit (2) C 1 533d 532d 455d 976a68f0 ALSA: usb-audio: Fix incorrect size check for processing/extension units
KASAN: use-after-free Read in j1939_xtp_rx_abort_one C done done 11 527d 535d 460d ddeeb7d4 can: j1939: j1939_can_recv(): add priv refcounting
memory leak in fdb_create (2) C 1 507d 507d 471d c4b4c421 net: bridge: deny dev_set_mac_address() when unregistering
KMSAN: uninit-value in __request_module (2) 3 490d 502d 471d 2dd5616e net-backports: net_sched: validate TCA_KIND attribute in tc_chain_tmplt_add()
KASAN: vmalloc-out-of-bounds Write in kvm_dev_ioctl_get_cpuid C 41 505d 506d 471d 433f4ba1 KVM: x86: fix out-of-bounds write in KVM_GET_EMULATED_CPUID (CVE-2019-19332)
kernel BUG at include/linux/mm.h:LINE! (5) C done done 129 710d 780d 471d 9354544c net/tls: fix page double free on TX cleanup
KASAN: use-after-free Read in __queue_work (2) C done done 577 665d 1019d 471d 430ac66e net/9p/trans_fd.c: fix race-condition by flushing workqueue before the kfree()
KASAN: slab-out-of-bounds Read in bpf_prog_create C done 447 501d 583d 471d 0033b34a ppp: fix out-of-bounds access in bpf_prog_create()
memory leak in register_netdevice C 19 502d 507d 471d 42c17fa6 net: fix a leak in register_netdevice()
KASAN: slab-out-of-bounds Read in vcs_scr_readw C done done 16 506d 506d 471d 0c9acb1a vcs: prevent write access to vcsu devices
kernel BUG at fs/pipe.c:LINE! C done 693 501d 508d 471d 8c7b8c34 pipe: Remove assertion from pipe_poll()
KMSAN: uninit-value in usbnet_probe C 1 687d 687d 471d 78226f6e net: usb: asix: init MAC address buffers
KMSAN: uninit-value in nf_conntrack_tcp_packet syz 3 505d 508d 471d 9424e2e7 net-backports: tcp: md5: fix potential overestimation of TCP option space
KASAN: slab-out-of-bounds Read in linear_transfer (3) C done 5 504d 506d 471d 4cc8d650 ALSA: pcm: oss: Avoid potential buffer overflows
KCSAN: data-race in mod_timer / run_timer_softirq 4 487d 553d 471d 56144737 net-backports: hrtimer: Annotate lockless access to timer->state
KASAN: slab-out-of-bounds Write in pipe_write C done 40 503d 508d 471d 8f868d68 pipe: Fix missing mask update after pipe_wait()
WARNING in tty_set_termios C done done 1997 631d 831d 471d b36a1552 Bluetooth: hci_uart: check for missing tty operations
general protection fault in override_creds C done 6 504d 508d 471d 0b8c0ec7 io_uring: use current task creds instead of allocating a new one
WARNING in drm_mode_createblob_ioctl C done 7 533d 557d 471d 5bf8bec3 drm: limit to INT_MAX in create_blob ioctl
WARNING: refcount bug in skb_set_owner_w C done 2 507d 508d 471d 501a90c9 net-backports: inet: protect against too small mtu values.
KASAN: use-after-free Read in xlog_alloc_log (2) 55 502d 510d 471d 798a9cad xfs: fix mount failure crash on invalid iclog memory access
KMSAN: use-after-free in netlink_recvmsg C 1 527d 527d 497d cf94da6f Bluetooth: Fix invalid-free in bcsp_close()
KMSAN: use-after-free in kfree_skb syz 34 514d 562d 497d cf94da6f Bluetooth: Fix invalid-free in bcsp_close()
general protection fault in io_commit_cqring C done 3 526d 526d 497d 15dff286 io_uring: check for validity of ->rings in teardown
general protection fault in ext4_writepages C done 18 520d 529d 497d 4d06bfb9 ext4: Add error handling for io_end_vec struct allocation
KMSAN: use-after-free in __skb_try_recv_from_queue C 4 526d 549d 497d cf94da6f Bluetooth: Fix invalid-free in bcsp_close()
general protection fault in ip_sublist_rcv C done 287 540d 550d 497d 51210ad5 inet: do not call sublist_rcv on empty list
kernel BUG at include/linux/scatterlist.h:LINE! C done 307 508d 701d 497d d10523d0 net/tls: free the record on encryption error
KASAN: use-after-free Read in snd_timer_open C done 87 528d 528d 497d 0c4f09ce ALSA: timer: Fix the breakage of slave link open
linux-next boot error: general protection fault in __x64_sys_settimeofday 6 525d 525d 497d 5e0fb1b5 y2038: time: avoid timespec usage in settimeofday()
INFO: task hung in io_wq_destroy C done 20 511d 542d 497d b60fda60 io-wq: wait for io_wq_create() to setup necessary workers
INFO: trying to register non-static key in io_cqring_ev_posted C done 6 512d 524d 497d eb065d30 io_uring: io_allocate_scq_urings() should return a sane state
KASAN: global-out-of-bounds Write in kbd_event C 6 511d 533d 497d b2b2dd71 tty: vt: keyboard: reject invalid keycodes
KCSAN: data-race in __ip4_datagram_connect / raw_bind 1 545d 545d 497d 25c7a6d1 net: avoid potential false sharing in neighbor related code
KASAN: slab-out-of-bounds Write in __ext4_expand_extra_isize 16 620d 963d 497d 4ea99936 ext4: add more paranoia checking in ext4_expand_extra_isize handling
KASAN: use-after-free Read in tipc_nl_node_dump_monitor_peer C done 3 562d 562d 497d ab5b526d net: genetlink: always allocate separate attrs for dumpit ops
KCSAN: data-race in __dev_queue_xmit / __dev_queue_xmit 40 497d 547d 497d 90b2be27 net/sched: annotate lockless accesses to qdisc->empty
general protection fault in tss_update_io_bitmap C done 65 513d 519d 497d e3cb0c71 x86/ioperm: Fix use of deprecated config option
general protection fault in ip6_sublist_rcv C done 327 540d 542d 497d 51210ad5 inet: do not call sublist_rcv on empty list
KCSAN: data-race in inet_putpeer / inet_putpeer 20 530d 547d 497d 71685eb4 inetpeer: fix data-race in inet_putpeer / inet_putpeer
KASAN: use-after-free Write in __ext4_expand_extra_isize (2) 14 532d 550d 497d 4ea99936 ext4: add more paranoia checking in ext4_expand_extra_isize handling
general protection fault in flexcop_usb_probe C 403 511d 741d 497d 1b976fc6 media: b2c2-flexcop-usb: add sanity checking
KCSAN: data-race in __remove_hrtimer / __tcp_ack_snd_check 4 512d 533d 497d 56144737 hrtimer: Annotate lockless access to timer->state
KCSAN: data-race in eth_header_cache / neigh_resolve_output 1 534d 534d 497d c305c6ae net-backports: net: add annotations on hh->hh_len lockless accesses
KMSAN: use-after-free in sk_forced_mem_schedule 2 520d 528d 497d cf94da6f Bluetooth: Fix invalid-free in bcsp_close()
WARNING in iov_iter_pipe C done 1117 515d 532d 497d 419e9c38 iomap: Fix pipe page leakage during splicing
kernel BUG at kernel/time/timer.c:LINE! (4) syz 1 567d 563d 497d f3f5ba42 media: imon: invalid dereference in imon_touch_event
general protection fault in devlink_get_from_attrs C 7 564d 563d 497d 82a843de net: devlink: fix reporter dump dumpit
KASAN: use-after-free Read in appledisplay_bl_get_brightness C 1 580d 577d 497d 91feb015 appledisplay: fix error handling in the scheduled work
general protection fault in vti6_ioctl 1 555d 555d 497d 9077f052 net: propagate errors correctly in register_netdevice()
INFO: trying to register non-static key in ida_destroy C 4272 510d 633d 497d 8c279e93 media: uvcvideo: Fix error path in control parsing failure
KCSAN: data-race in tun_get_user / tun_net_get_stats64 1 542d 542d 497d de7d5084 net-backports: net: provide dev_lstats_read() helper
KCSAN: data-race in sk_wait_data / tcp_queue_rcv 4 536d 533d 497d f8cc62ca net: add a READ_ONCE() in skb_peek_tail()
KCSAN: data-race in __remove_hrtimer / tcp_pacing_check 1 536d 533d 497d 56144737 hrtimer: Annotate lockless access to timer->state
KMSAN: use-after-free in __netif_receive_skb_core 1 527d 527d 497d cf94da6f Bluetooth: Fix invalid-free in bcsp_close()
KCSAN: data-race in tcp_add_backlog / tcp_recvmsg (2) 47 497d 533d 497d 9ed498c6 net-backports: net: silence data-races on sk_backlog.tail
KCSAN: data-race in sk_wait_data / skb_queue_tail 3 544d 545d 497d f8cc62ca net-backports: net: add a READ_ONCE() in skb_peek_tail()
KMSAN: use-after-free in skb_dequeue C 1 557d 557d 497d cf94da6f Bluetooth: Fix invalid-free in bcsp_close()
KASAN: use-after-free Read in tipc_nl_publ_dump C 2 564d 563d 497d ab5b526d net: genetlink: always allocate separate attrs for dumpit ops
KCSAN: data-race in ip_finish_output2 / ip_finish_output2 26 501d 546d 497d 25c7a6d1 net: avoid potential false sharing in neighbor related code
general protection fault in snd_usb_create_mixer C 1 520d 518d 497d 9435f2bb ALSA: usb-audio: Fix NULL dereference at parsing BADD
general protection fault in tipc_nl_publ_dump C 135 561d 563d 497d 6ea67769 net: tipc: prepare attrs in __tipc_nl_compat_dumpit()
KASAN: use-after-free Read in nf_ct_deliver_cached_events C done 169 543d 548d 497d ad88b7a6 netfilter: ecache: don't look for ecache extension on dying/unconfirmed conntracks
general protection fault in veth_get_stats64 C done 2 568d 568d 497d 9077f052 net: propagate errors correctly in register_netdevice()
KCSAN: data-race in icmp_global_allow / icmp_global_allow 29 497d 548d 497d bbab7ef2 net-backports: net: icmp: fix data-race in cmp_global_allow()
general protection fault in usb_set_interface C 3 582d 584d 497d c7a19146 media: usbvision: Fix invalid accesses after device disconnect
KCSAN: data-race in __dev_queue_xmit / pfifo_fast_dequeue 6 511d 548d 497d 90b2be27 net/sched: annotate lockless accesses to qdisc->empty
KCSAN: data-race in tcp_chrono_stop / tcp_recvmsg 3 532d 533d 497d a5a7daa5 net-backports: tcp: fix data-race in tcp_recvmsg()
KCSAN: data-race in gro_normal_list.part.0 / napi_busy_loop 1 530d 530d 497d c39e342a net-backports: tun: fix data-race in gro_normal_list()
KASAN: use-after-free Read in slip_open C done 3 515d 517d 497d e58c1912 slip: Fix use-after-free Read in slip_open
KCSAN: data-race in fanout_demux_rollover / fanout_demux_rollover 1 532d 532d 497d b756ad92 net-backports: packet: fix data-race in fanout_flow_is_huge()
WARNING in __rtnl_newlink C done 2 567d 567d 497d 9077f052 net: propagate errors correctly in register_netdevice()
BUG: unable to handle kernel paging request in __ext4_expand_extra_isize 6 570d 550d 497d 4ea99936 ext4: add more paranoia checking in ext4_expand_extra_isize handling
KASAN: use-after-free Read in shmem_fault (2) 5 541d 601d 497d 8897c1b1 shmem: pin the file in shmem_fault() if mmap_sem is dropped
BUG: unable to handle kernel paging request in io_wq_cancel_all C done 2 541d 541d 497d 975c99a5 io_uring: io_wq_create() returns an error pointer, not NULL
KASAN: invalid-free in io_sqe_files_unregister C done 3 529d 530d 497d 46568e9b io_uring: fix error clear of ->file_table in io_sqe_files_register()
KASAN: invalid-free in skb_free_head C done 1 538d 538d 497d cf94da6f Bluetooth: Fix invalid-free in bcsp_close()
general protection fault in ovs_vport_add C done 5 559d 567d 497d 9077f052 net: propagate errors correctly in register_netdevice()
KASAN: use-after-free Read in nl8NUM_dump_wpan_phy C done 6 562d 563d 497d ab5b526d net: genetlink: always allocate separate attrs for dumpit ops
KASAN: use-after-free Read in tipc_udp_nl_dump_remoteip C done 3 562d 563d 497d ab5b526d net: genetlink: always allocate separate attrs for dumpit ops
KASAN: use-after-free Read in __cfg8NUM_wpan_dev_from_attrs C done 3 564d 563d 497d ab5b526d net: genetlink: always allocate separate attrs for dumpit ops
WARNING: ODEBUG bug in free_netdev C done 2 566d 566d 497d 11fc7d5a tun: fix memory leak in error path
KCSAN: data-race in sctp_assoc_migrate / sctp_hash_obj 12 505d 532d 497d 31243461 sctp: cache netns in sctp_ep_common
general protection fault in ip6_tnl_ioctl C done 7 556d 567d 497d 9077f052 net: propagate errors correctly in register_netdevice()
KCSAN: data-race in __dev_queue_xmit / net_tx_action 1 532d 532d 497d 90b2be27 net/sched: annotate lockless accesses to qdisc->empty
KMSAN: use-after-free in copyout C 1 562d 562d 497d cf94da6f Bluetooth: Fix invalid-free in bcsp_close()
general protection fault in virtio_transport_release C done 7 519d 520d 497d 039fccca vsock: avoid to assign transport if its initialization fails
BUG: workqueue lockup (4) C 47 522d 928d 497d 7e7c005b rtc: disable uie before setting time and enable after
WARNING in port100_send_cmd_async/usb_submit_urb C 83 512d 652d 499d 5f9f0b11 nfc: port100: handle command failure cleanly
general protection fault in kvm_coalesced_mmio_init syz done 48 527d 536d 510d 8a44119a KVM: Fix NULL-ptr deref after kvm_create_vm fails
general protection fault in j1939_netdev_notify syz done 11 523d 535d 510d c48c8c1e can: j1939: main: j1939_ndev_to_priv(): avoid crash if can_ml_priv is NULL
KASAN: use-after-free Read in j1939_sk_recv C done 2 529d 529d 510d ddeeb7d4 can: j1939: j1939_can_recv(): add priv refcounting
KASAN: use-after-free Read in j1939_session_deactivate syz done 1 531d 531d 510d ddeeb7d4 can: j1939: j1939_can_recv(): add priv refcounting
WARNING in smc_unhash_sk (3) C done 362 514d 604d 510d 8204df72 net/smc: fix fastopen for non-blocking connect()
KASAN: use-after-free Read in do_mount syz done 6 555d 563d 510d 0ecee669 fs/namespace.c: fix use-after-free of mount in mnt_warn_timestamp_expiry()
general protection fault in j1939_jsk_del syz done 132 511d 535d 510d fd81ebfe can: j1939: socket: rework socket locking for j1939_sk_release() and j1939_sk_sendmsg()
memory leak in smc_create C 19 523d 536d 510d 6d6dd528 net/smc: fix refcount non-blocking connect() -part 2
KASAN: use-after-free Read in j1939_session_get_by_addr_locked C done 1 529d 529d 510d ddeeb7d4 can: j1939: j1939_can_recv(): add priv refcounting
INFO: task hung in synchronize_rcu syz done 1206 510d 537d 510d 8a44119a KVM: Fix NULL-ptr deref after kvm_create_vm fails
KMSAN: uninit-value in ax88172a_bind C 5 542d 556d 510d a9a51bd7 ax88172a: fix information leak on short answers
KMSAN: uninit-value in gf128mul_4k_lle (3) C 2958 516d 881d 510d 683916f6 net/tls: fix sk_msg trim on fallback to copy mode
KMSAN: uninit-value in aesti_encrypt C 54 564d 665d 510d 683916f6 net/tls: fix sk_msg trim on fallback to copy mode
WARNING: suspicious RCU usage in kvm_dev_ioctl C done 333 527d 537d 510d e2d3fcaf KVM: fix placement of refcount initialization
KMSAN: use-after-free in build_audio_procunit C 2 548d 548d 510d 976a68f0 ALSA: usb-audio: Fix incorrect size check for processing/extension units
WARNING: refcount bug in j1939_netdev_start syz done 6 513d 534d 510d fd81ebfe can: j1939: socket: rework socket locking for j1939_sk_release() and j1939_sk_sendmsg()
KMSAN: uninit-value in get_min_max_with_quirks C 11 543d 531d 510d 167beb17 ALSA: usb-audio: Fix missing error check at mixer resolution test
WARNING: ODEBUG bug in input_ff_destroy C 6 519d 526d 510d fa3a5a18 Input: ff-memless - kill timer in destroy()
general protection fault in memcg_flush_percpu_vmstats C error 19 540d 603d 510d 7961eee3 mm: memcontrol: fix NULL-ptr deref in percpu stats flush
KCSAN: data-race in neigh_resolve_output / neigh_resolve_output 4 532d 546d 510d 1b53d644 net-backports: net: fix data-race in neigh_event_send()
KCSAN: data-race in find_match / find_match 2 533d 536d 510d 1bef4c22 net-backports: ipv6: fixes rt6_probe() and fib6_nh->last_probe init
INFO: task hung in mpage_prepare_extent_to_map syz done 18606 534d 542d 510d 4655e5e5 mm,thp: recheck each page before collapsing file THP
KMSAN: uninit-value in cdc_ncm_set_dgram_size C 4 541d 540d 510d 332f989a CDC-NCM: handle incomplete transfer of MTU
KASAN: use-after-free Read in mcba_usb_disconnect C 2 537d 570d 510d 4d663649 can: mcba_usb: fix use-after-free on disconnect
KMSAN: kernel-usb-infoleak in pcan_usb_wait_rsp C 2 554d 554d 510d f7a1337f can: peak_usb: fix slab info leak
KASAN: invalid-free in rsi_91x_deinit C 109 583d 730d 511d 8b51dc72 rsi: fix a double free bug in rsi_91x_deinit()
WARNING in generic_make_request_checks C done 7760 512d 988d 511d 8b2ded1c block: don't warn when doing fsync on read-only devices
BUG: spinlock recursion in release_sock C done 116 637d 638d 512d 5d92e631 net/tls: partially revert fix transition through disconnect with close
KMSAN: use-after-free in adu_disconnect C 16 556d 562d 513d 44efc269 USB: adutux: fix use-after-free on disconnect
KMSAN: use-after-free in mutex_spin_on_owner C 1 562d 562d 513d edc4746f USB: iowarrior: fix use-after-free on disconnect
KMSAN: use-after-free in iowarrior_disconnect C 21 556d 562d 513d edc4746f USB: iowarrior: fix use-after-free on disconnect
KMSAN: use-after-free in usb_autopm_put_interface C 63 542d 556d 513d 7a759197 USB: usblp: fix use-after-free on disconnect
KMSAN: use-after-free in __pm_runtime_resume 1 562d 562d 513d 5f924277 HID: logitech: Fix general protection fault caused by Logitech driver
KMSAN: use-after-free in hidraw_ioctl 1 562d 562d 513d 416dacb8 HID: hidraw: Fix invalid read in hidraw_ioctl
KMSAN: use-after-free in rxrpc_put_peer 1 553d 553d 513d 91fcfbe8 rxrpc: Fix call crypto state cleanup
KMSAN: uninit-value in lg4ff_set_autocenter_default C 1 543d 542d 513d d9d4b1e4 HID: Fix assumption that devices have inputs
WARNING in sk_stream_kill_queues (3) C done 622 684d 1043d 513d 9354544c net/tls: fix page double free on TX cleanup
KCSAN: data-race in udp_set_dev_scratch / udpv6_recvmsg 5 536d 547d 517d a793183c udp: fix data-race in udp_set_dev_scratch()
KCSAN: data-race in __skb_wait_for_more_packets / skb_queue_tail 1 540d 540d 517d 7c422d0c net: add READ_ONCE() annotation in __skb_wait_for_more_packets()
KASAN: use-after-free Read in batadv_iv_ogm_queue_add 3 539d 570d 517d 40e220b4 batman-adv: Avoid free/alloc race when handling OGM buffer
WARNING: refcount bug in smc_release C done 8 523d 547d 517d 301428ea net/smc: fix refcounting for non-blocking connect()
INFO: trying to register non-static key in bond_3ad_update_lacp_rate C done 26 540d 542d 517d ad9bd8da bonding: fix using uninitialized mode_lock
KCSAN: data-race in datagram_poll / skb_queue_tail 5 536d 545d 517d 3ef7cf57 net-backports: net: use skb_queue_empty_lockless() in poll() handlers
general protection fault in process_one_work 2 542d 542d 517d 6d6f0383 netdevsim: Fix use-after-free during device dismantle
KASAN: use-after-free Read in fuse_request_end syz done 6 548d 552d 517d 2b319d1f fuse: don't dereference req->args on finished request
KCSAN: data-race in udp6_lib_lookup2 / udpv6_queue_rcv_one_skb 1 546d 546d 517d 7170a977 net: annotate accesses to sk->sk_incoming_cpu
KCSAN: data-race in tcp_v4_rcv / tcp_v4_rcv 4 536d 540d 517d 7170a977 net-backports: net: annotate accesses to sk->sk_incoming_cpu
memory leak in internal_dev_create C 88 539d 626d 517d 9464cc37 net: openvswitch: free vport unless register_netdevice() succeeds
divide error in dummy_timer C 3 541d 546d 517d 54f83b8c USB: gadget: Reject endpoints with 0 maxpacket value
KCSAN: data-race in __skb_recv_udp / __udp_enqueue_schedule_skb 7 535d 548d 517d 137a0dbe net-backports: udp: use skb_queue_empty_lockless()
KCSAN: data-race in first_packet_length / udp_poll 2 539d 545d 517d 137a0dbe net-backports: udp: use skb_queue_empty_lockless()
memory leak in copy_net_ns C done 422 538d 576d 517d 82ecff65 keys: Fix memory leak in copy_net_ns
KCSAN: data-race in update_defense_level / update_defense_level (2) 20 535d 548d 517d c24b75e0 ipvs: move old_secure_tcp into struct netns_ipvs
INFO: trying to register non-static key in bond_3ad_update_ad_actor_settings C done 69 540d 542d 517d ad9bd8da bonding: fix using uninitialized mode_lock
KASAN: use-after-free Read in bpf_prog_kallsyms_find (2) C done 9 546d 557d 517d cd7455f1 bpf: Fix use after free in subprog's jited symbol removal
KASAN: use-after-free Read in is_bpf_text_address C done 3 547d 548d 517d cd7455f1 bpf: Fix use after free in subprog's jited symbol removal
KCSAN: data-race in __skb_wait_for_more_packets / __sock_queue_rcv_skb 10 536d 546d 517d 7c422d0c net: add READ_ONCE() annotation in __skb_wait_for_more_packets()
KASAN: use-after-free Read in io_uring_setup syz error 1 543d 543d 517d 044c1ab3 io_uring: don't touch ctx in setup after ring fd install
KCSAN: data-race in udpv6_queue_rcv_one_skb / udpv6_queue_rcv_one_skb 1 543d 542d 517d ee8d153d net-backports: net: annotate lockless accesses to sk->sk_napi_id
BUG: unable to handle kernel paging request in is_bpf_text_address C done 2 553d 553d 517d cd7455f1 bpf: Fix use after free in subprog's jited symbol removal
INFO: task hung in ld_usb_write C 831 535d 548d 517d 52403cfb USB: ldusb: fix control-message timeout
KCSAN: data-race in __skb_recv_udp / datagram_poll 1 536d 536d 517d 3f926af3 net: use skb_queue_empty_lockless() in busy poll contexts
KCSAN: data-race in __skb_wait_for_more_packets / __udp_enqueue_schedule_skb 2 540d 547d 517d 7c422d0c net-backports: net: add READ_ONCE() annotation in __skb_wait_for_more_packets()
general protection fault in kernfs_add_one C done 98 626d 949d 517d ac43432c driver core: Fix use-after-free and double free on glue directory
KASAN: use-after-free Read in ep_scan_ready_list C done 39 981d 1016d 519d 430ac66e net/9p/trans_fd.c: fix race-condition by flushing workqueue before the kfree()
KASAN: use-after-free Read in iowarrior_disconnect C 3056 557d 612d 519d edc4746f USB: iowarrior: fix use-after-free on disconnect
WARNING in kernfs_get C done 316 627d 956d 519d ac43432c driver core: Fix use-after-free and double free on glue directory
KASAN: use-after-free Read in __schedule (2) C done 961 776d 994d 519d 26b471c7 KVM: nVMX: Fix bad cleanup on error of get/set nested state IOCTLs
divide error in usbtmc_generic_read C 2 618d 617d 519d de7b9aa6 usbtmc: more sanity checking for packet size
KASAN: use-after-free Read in p9_fd_poll C done 8 984d 1016d 519d 430ac66e net/9p/trans_fd.c: fix race-condition by flushing workqueue before the kfree()
KASAN: use-after-free Read in vhci_hub_control C done 41 917d 963d 519d 81f7567c usb: usbip: Fix BUG: KASAN: slab-out-of-bounds in vhci_hub_control()
INFO: task hung in vivid_stop_generating_vid_cap C done done 81 903d 907d 528d d65842f7 media: vb2: add waiting_in_dqbuf flag
WARNING in event_function_local C unreliable 15451 925d 1181d 528d 214ff83d KVM: x86: hyperv: implement PV IPI send hypercalls
BUG: MAX_LOCK_DEPTH too low! (2) C done 5 1015d 1045d 528d bab2c80e nsh: set mac len based on inner packet
inconsistent lock state in ila_xlat_nl_cmd_del_mapping C unreliable 2496 977d 983d 528d 7494de04 mfd: da9063: Replace regmap_add_irq_chip with devm counterpart
INFO: task hung in fuse_reverse_inval_entry C done 23 992d 1005d 528d c59fd85e fuse: change interrupt requests allocation algorithm
BUG: corrupted list in p9_conn_cancel C done 18 918d 1018d 528d 9f476d7c net/9p/trans_fd.c: fix race by holding the lock
general protection fault in p9_conn_cancel C done 2 998d 1016d 528d 9f476d7c net/9p/trans_fd.c: fix race by holding the lock
WARNING: ODEBUG bug in p9_fd_close C done 82 979d 1019d 528d 430ac66e net/9p/trans_fd.c: fix race-condition by flushing workqueue before the kfree()
general protection fault in vb2_mmap C inconclusive done 21 849d 894d 528d cd26d1c4 media: vb2: vb2_mmap: move lock up
KASAN: stack-out-of-bounds Read in xfrm_state_find (5) C done 654 815d 1117d 528d 32bf94fb xfrm: validate template mode
KASAN: slab-out-of-bounds Write in end_requests C done 2 993d 997d 528d 45ff350b fuse: fix unlocked access to processing queue
KASAN: use-after-free Read in uprobe_perf_close C done 54 797d 1116d 528d 621b6d2e perf/core: Fix use-after-free in uprobe_perf_close()
KASAN: use-after-free Read in _decode_session4 C done 3 1119d 1119d 528d c6741fbe vti6: Properly adjust vti6 MTU from MTU of lower device
general protection fault in tcp_cleanup_ulp syz done done 6 944d 960d 528d 5607fff3 bpf: sockmap only allow ESTABLISHED sock state
WARNING in request_end C done done 14 905d 941d 528d 4c316f2f fuse: set FR_SENT while locked
WARNING in dma_buf_vunmap C done done 17 854d 892d 528d 62dcb4f4 media: vb2: check memory model for VIDIOC_CREATE_BUFS
BUG: corrupted list in p9_write_work C done 5 941d 987d 528d 728356de 9p: Add refcount to p9_req_t
KASAN: use-after-free Read in tick_sched_handle (3) C done 12 830d 885d 530d bc6e019b fou: Prevent unbounded recursion in GUE error handler also with UDP-Lite
general protection fault in qca_setup C done done 6 801d 801d 530d b36a1552 Bluetooth: hci_uart: check for missing tty operations
general protection fault in tcp_splice_read C done done 23 745d 854d 530d 07603b23 net/smc: propagate file from SMC to TCP socket
KASAN: use-after-free Read in crypto_gcm_init_common C done done 14 833d 898d 532d 9354544c net/tls: fix page double free on TX cleanup
KASAN: slab-out-of-bounds Read in find_first_zero_bit C done 1 1118d 1118d 532d d1877155 bfs: extra sanity checking and static inode bitmap
kernel BUG at net/ipv4/ip_output.c:LINE! C done 28225 824d 1015d 532d e7c87bd6 bpf: in __bpf_redirect_no_mac pull mac only if present
general protection fault in put_pid syz done done 3 854d 863d 532d a8e911d1 x86_64: increase stack size for KASAN_EXTRA
suspicious RCU usage at ./include/net/inet_sock.h:LINE C done 171 1174d 1265d 532d 3f32d0be tipc: lock wakeup & inputq at tipc_link_reset()
KASAN: use-after-free Read in _decode_session6 C done 4 891d 959d 532d e7c87bd6 bpf: in __bpf_redirect_no_mac pull mac only if present
general protection fault in propagate_entity_cfs_rq C done 1 1015d 1015d 532d bab2c80e nsh: set mac len based on inner packet
KASAN: use-after-free Write in __vb2_cleanup_fileio C done inconclusive 2 904d 906d 532d d65842f7 media: vb2: add waiting_in_dqbuf flag
KCSAN: data-race in sk_stream_wait_memory / tcp_shifted_skb 1 545d 533d 533d ab4e846a tcp: annotate sk->sk_wmem_queued lockless reads
KCSAN: data-race in sk_stream_wait_memory / tcp_fragment 1 536d 533d 533d ab4e846a tcp: annotate sk->sk_wmem_queued lockless reads
KCSAN: data-race in tcp_sendmsg_locked / tcp_stream_memory_free 2 544d 533d 533d 0f317464 tcp: annotate tp->write_seq lockless reads
KCSAN: data-race in tcp_event_new_data_sent / tcp_stream_memory_free 3 537d 533d 533d e0d694d6 tcp: annotate tp->snd_nxt lockless reads
KCSAN: data-race in tcp_ack / tcp_poll (2) 5 541d 533d 533d ab4e846a tcp: annotate sk->sk_wmem_queued lockless reads
KCSAN: data-race in sk_stream_wait_memory / tcp_ack 2 538d 533d 533d ab4e846a tcp: annotate sk->sk_wmem_queued lockless reads
KASAN: slab-out-of-bounds Read in ld_usb_read (3) C 74 543d 554d 533d 7a6f22d7 USB: ldusb: fix read info leaks
KASAN: slab-out-of-bounds Read in build_audio_procunit C 6 539d 548d 533d ba8bf096 ALSA: usb-audio: Fix copy&paste error in the validator
KASAN: slab-out-of-bounds Write in ga_probe C 5 563d 584d 533d d9d4b1e4 HID: Fix assumption that devices have inputs
INFO: task hung in nbd_ioctl C done 71 535d 570d 533d cf1b2326 nbd: verify socket is supported during setup
KASAN: use-after-free Read in usb_autopm_put_interface C 2373 542d 555d 533d 7a759197 USB: usblp: fix use-after-free on disconnect
memory leak in gfs2_init_fs_context C 13 546d 568d 533d 30aecae8 gfs2: Fix memory leak when gfs2meta's fs_context is freed
KMSAN: uninit-value in sr9800_bind C 27 545d 568d 535d 77b6d09f net: usb: sr9800: fix uninitialized local variable
WARNING in filldir64 76 553d 563d 535d b9959c7a filldir[64]: remove WARN_ON_ONCE() for bad directory entries
memory leak in llc_ui_create (2) C done 19 552d 671d 535d c6ee11c3 llc: fix sk_buff leak in llc_sap_state_process()
KCSAN: data-race in tcp_add_backlog / tcp_rcv_space_adjust (2) 18 548d 554d 535d ebb3b78d tcp: annotate sk->sk_rcvbuf lockless reads
KCSAN: data-race in __nf_ct_refresh_acct / __nf_ct_refresh_acct 2460 535d 566d 535d e37542ba net-backports: netfilter: conntrack: avoid possible false sharing
BUG: unable to handle kernel NULL pointer dereference in xsk_poll C done 10 553d 571d 535d df551058 xsk: Fix crash in poll when device does not support ndo_xsk_wakeup
KASAN: use-after-free Read in rxrpc_release_call syz done 13 553d 608d 535d 91fcfbe8 rxrpc: Fix call crypto state cleanup
KASAN: use-after-free Read in rxrpc_send_keepalive C error 694 550d 622d 535d c48fc11b rxrpc: Fix call ref leak
KCSAN: data-race in __tcp_select_window / tcp_add_backlog 23502 535d 566d 535d 70c26558 net: silence KCSAN warnings about sk->sk_backlog.len reads
memory leak in sctp_get_port_local (3) C 4 551d 557d 535d 63dfb793 sctp: change sctp_prot .no_autobind with true
memory leak in llc_ui_sendmsg C 125 551d 702d 535d c6ee11c3 llc: fix sk_buff leak in llc_sap_state_process()
KCSAN: data-race in tcp_add_backlog / tcp_recvmsg 17719 536d 566d 535d 8265792b net-backports: net: silence KCSAN warnings around sk_add_backlog() calls
INFO: task hung in addrconf_verify_work (2) C 22 557d 557d 535d 39f13ea2 net: avoid potential infinite loop in tc_ctl_action()
KASAN: use-after-free Read in pn533_send_complete C 4 543d 563d 535d 6af3aa57 NFC: pn533: fix use-after-free and memleaks
KCSAN: data-race in tcp_poll / tcp_recvmsg (2) 22 548d 554d 535d 7db48e98 tcp: annotate tp->copied_seq lockless reads
KASAN: use-after-free Read in rxrpc_put_peer C error 38 551d 603d 535d 55f6c98e rxrpc: Fix trace-after-put looking at the put peer record 9ebeddef rxrpc: rxrpc_peer needs to hold a ref on the rxrpc_local record
KCSAN: data-race in tcp_poll / tcp_queue_rcv 1897 535d 566d 535d dba7d9b8 net-backports: tcp: annotate tp->rcv_nxt lockless reads
memory leak in llc_conn_ac_send_sabme_cmd_p_set_x C 225 551d 702d 535d b74555de llc: fix sk_buff leak in llc_conn_service()
general protection fault in rxrpc_error_report C done 6 551d 563d 535d f0308fb0 rxrpc: Fix possible NULL pointer access in ICMP handling
KCSAN: data-race in tcp_add_backlog / tcp_grow_window.isra.0 21713 535d 566d 535d 70c26558 net-backports: net: silence KCSAN warnings about sk->sk_backlog.len reads
WARNING: suspicious RCU usage in xfrm_alloc_userspi C done error 86 764d 765d 536d f10e0010 net: xfrm: Add '_rcu' tag for rcu protected pointer in netns_xfrm
general protection fault in get_work_pool C done 24 744d 1147d 536d 07bf7908 xfrm: Validate address prefix lengths in the xfrm selector.
general protection fault in xfrm_init_replay syz inconclusive done 2 1134d 1133d 536d d97ca5d7 xfrm_user: uncoditionally validate esn replay attribute struct
WARNING: suspicious RCU usage in xfrm_get_spdinfo C done error 46 764d 765d 536d f10e0010 net: xfrm: Add '_rcu' tag for rcu protected pointer in netns_xfrm
WARNING: suspicious RCU usage in xfrm_get_sadinfo C done error 28 764d 765d 536d f10e0010 net: xfrm: Add '_rcu' tag for rcu protected pointer in netns_xfrm
WARNING: suspicious RCU usage in xfrm_get_policy syz done error 8 765d 765d 536d f10e0010 net: xfrm: Add '_rcu' tag for rcu protected pointer in netns_xfrm
memory leak in sctp_stream_init_ext C 34 557d 692d 542d 3c52b0af lib/generic-radix-tree.c: add kmemleak annotations
possible deadlock in usb_deregister_dev (2) C 956 556d 584d 543d 33a78132 USB: legousbtower: fix deadlock on disconnect
KMSAN: uninit-value in mts_usb_probe C 29 562d 568d 543d 177238c3 USB: microtek: fix info-leak at probe
WARNING in mark_lock (2) 14 549d 577d 543d 8e00c4e9 writeback: fix use-after-free in finish_writeback_work()
BUG: bad usercopy in read_rio 2 558d 561d 543d 015664d1 USB: rio500: Remove Rio 500 kernel driver
KMSAN: uninit-value in iowarrior_disconnect C 18 561d 567d 543d edc4746f USB: iowarrior: fix use-after-free on disconnect
general protection fault in open_rio 2 575d 576d 543d 015664d1 USB: rio500: Remove Rio 500 kernel driver
KASAN: use-after-free Read in adu_disconnect C 5304 556d 626d 543d 44efc269 USB: adutux: fix use-after-free on disconnect
INFO: rcu detected stall in dummy_timer C 16 558d 622d 543d 32a0721c USB: yurex: Don't retry on unexpected errors
KASAN: invalid-free in disconnect_rio (2) C 51 560d 581d 543d 015664d1 USB: rio500: Remove Rio 500 kernel driver
general protection fault in finish_writeback_work 10 552d 577d 543d 8e00c4e9 writeback: fix use-after-free in finish_writeback_work()
INFO: trying to register non-static key in finish_writeback_work syz error 1 579d 576d 543d 8e00c4e9 writeback: fix use-after-free in finish_writeback_work()
INFO: rcu detected stall in rt6_probe_deferred 336 585d 590d 549d d4d6ec6d sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
INFO: rcu detected stall in addrconf_rs_timer (2) 362 568d 590d 549d d4d6ec6d sch_hhf: ensure quantum and hhf_non_hh_weight are non-zero
general protection fault in bpf_tcp_close (2) C done 26 972d 1016d 549d e06fa9c1 bpf, sockmap: fix potential use after free in bpf_tcp_close
BUG: unable to handle kernel NULL pointer dereference in rds_bind C done 51 573d 584d 555d 05733434 net/rds: Check laddr_check before calling it
divide error in tabledist 3 572d 581d 555d b41d936b sch_netem: fix a divide by zero in tabledist()
WARNING: lock held when returning to user space in rcu_lock_acquire C done 3 568d 568d 555d 73956fc0 membarrier: Fix RCU locking bug caused by faulty merge
memory leak in v9fs_cache_session_get_cookie C 242 555d 702d 555d 962a991c 9p/cache.c: Fix memory leak in v9fs_cache_session_get_cookie
WARNING in em28xx_usb_disconnect C 8 590d 622d 555d 46e4a266 media: em28xx: modules workqueue not inited for 2nd device
KASAN: use-after-free Read in si470x_int_in_callback C 25 564d 653d 555d 0d616f2a media: radio/si470x: kill urb on error
kernel BUG at include/linux/skbuff.h:LINE! (2) C done 58 605d 615d 555d c7a42eb4 net: ipv6: fix listify ip6_rcv_finish in case of forwarding
general protection fault in make_kuid C done 4 615d 640d 555d 1dd9bc08 vfs: set fs_context::user_ns for reconfigure
general protection fault in ath6kl_usb_alloc_urb_from_pipe C 1160 581d 741d 555d 39d170b3 ath6kl: fix a NULL-ptr-deref bug in ath6kl_usb_alloc_urb_from_pipe()
KMSAN: uninit-value in read_sensor_register C 25 555d 685d 555d 4843a543 media: gspca: zero usb_buf on error
WARNING in rcu_note_context_switch C done 1 570d 570d 555d 73956fc0 membarrier: Fix RCU locking bug caused by faulty merge
KMSAN: kernel-usb-infoleak in ttusb_dec_send_command C 2 623d 633d 555d a10feaf8 media: ttusb-dec: Fix info-leak in ttusb_dec_send_command()
KASAN: use-after-free Read in atusb_disconnect C 112 556d 597d 555d 7fd25e6f ieee802154: atusb: fix use-after-free at disconnect
possible deadlock in io_submit_one (2) 353 575d 613d 555d 76e43c8c fuse: fix deadlock with aio poll and fuse_iqueue::waitq.lock
BUG: using smp_processor_id() in preemptible [ADDR] code: mime_typevmnet0/NUM 1 599d 597d 555d 00d9e47f posix-cpu-timers: Always clear head pointer on dequeue
KMSAN: uninit-value in inet_ehash_insert C 7 564d 571d 555d 6af1799a net-backports: ipv6: drop incoming packets having a v4mapped source address
KASAN: slab-out-of-bounds Read in hdpvr_probe C 10 592d 667d 555d 8b8900b7 media: hdpvr: add terminating 0 at end of string
BUG: assuming atomic context at net/kcm/kcmsock.c:LINE C done 178 571d 577d 555d 0355d6c1 net-backports: kcm: disable preemption in kcm_parse_func_strparser()
WARNING: suspicious RCU usage in netem_enqueue C done 16 573d 587d 555d 159d2c7d net-backports: sch_netem: fix rcu splat in netem_enqueue()
general protection fault in xsk_poll C done 430 585d 612d 555d 42fddcc7 xsk: use state member for socket synchronization
INFO: task syz-executor can't die for more than 143 seconds. C done 61 572d 680d 555d 8619e5bd /dev/mem: Bail out upon SIGKILL. 7c3a6aed kexec: bail out upon SIGKILL when allocating memory. 8f9e86ee staging: android: ion: Bail out upon SIGKILL when allocating memory.
BUG: sleeping function called from invalid context in tcf_chain0_head_change_cb_del C done 187 571d 584d 555d e3ae1f96 net: sched: sch_sfb: don't call qdisc_put() while holding tree lock
KASAN: global-out-of-bounds Read in load_next_firmware_from_table C 5 604d 653d 555d 764f3f1e libertas: Add missing sentinel at end of if_usb.c fw_table
WARNING in handle_desc C done 6 581d 589d 555d 3ca94192 KVM: X86: Fix userspace set invalid CR4
KASAN: use-after-free Read in ext4_data_block_valid 108 639d 1086d 555d 7727ae52 ext4: fix potential use after free after remounting with noblock_validity
general protection fault in kstrtouint (2) C done 40 602d 644d 555d 74983ac2 vfs: Make fs_parse() handle fs_param_is_fd-type params better
BUG: corrupted list in __netif_receive_skb_list_core 3 563d 616d 555d c7a42eb4 net: ipv6: fix listify ip6_rcv_finish in case of forwarding
divide error in usbnet_update_max_qlen C 17 572d 584d 555d 280ceaed usbnet: sanity checking of packet sizes and device mtu
KASAN: slab-out-of-bounds Read in technisat_usb2_rc_query C 2236 601d 739d 555d 0c4df39e media: technisat-usb2: break out of loop at end of buffer
KASAN: slab-out-of-bounds Read in do_tcp_getsockopt 3 579d 598d 555d 3afb0961 tcp: fix slab-out-of-bounds in tcp_zerocopy_receive()
general protection fault in __apic_accept_irq C done 69 583d 596d 555d a073d7e3 KVM: hyperv: Fix Direct Synthetic timers assert an interrupt w/o lapic_in_kernel
INFO: rcu detected stall in pie_timer C 19 556d 591d 555d 4ce70b4a net-backports: net: sched: sch_htb: don't call qdisc_put() while holding tree lock
KASAN: global-out-of-bounds Read in dvb_pll_attach C 2 593d 652d 555d c268e7ad media: dvb-frontends: use ida for pll number
general protection fault in pk_probe C 2 601d 597d 555d 98375b86 HID: prodikeys: Fix general protection fault during probe
possible deadlock in free_ioctx_users C 509 575d 956d 555d 76e43c8c fuse: fix deadlock with aio poll and fuse_iqueue::waitq.lock
KASAN: use-after-free Read in cbq_enqueue C done 4 563d 565d 555d e9789c7c sch_cbq: validate TCA_CBQ_WRROPT to avoid crash
general protection fault in dsmark_init C done 3 564d 566d 555d 474f0813 sch_dsmark: fix potential NULL deref in dsmark_init()
KASAN: global-out-of-bounds Read in hdpvr_probe C 15 608d 721d 555d d4a6a953 media: hdpvr: Add device num check and handling
KASAN: slab-out-of-bounds Read in sctp_inq_pop 1 608d 605d 555d c7a42eb4 net: ipv6: fix listify ip6_rcv_finish in case of forwarding
WARNING: lock held when returning to user space in membarrier_private_expedited C done 7 568d 570d 555d 73956fc0 membarrier: Fix RCU locking bug caused by faulty merge
WARNING in blk_mq_sched_free_requests (2) 7 573d 577d 555d 284b94be blk-mq: move lockdep_assert_held() into elevator_exit
WARNING: ODEBUG bug in usbhid_disconnect (2) C 48 575d 597d 555d 2bcdacb7 HID: sony: Fix memory corruption issue on cleanup.
KASAN: slab-out-of-bounds Read in usb_reset_and_verify_device syz 1 606d 597d 555d 3dd550a2 USB: usbcore: Fix slab-out-of-bounds bug during device reset
general protection fault in sctp_inq_pop 4 606d 609d 555d c7a42eb4 net: ipv6: fix listify ip6_rcv_finish in case of forwarding
KMSAN: uninit-value in i2c_w C 2 689d 688d 555d 4843a543 media: gspca: zero usb_buf on error
BUG: MAX_STACK_TRACE_ENTRIES too low! (2) C done 5045 587d 755d 555d 12593b74 locking/lockdep: Reduce space occupied by stack traces
possible deadlock in open_rio (3) C 169 581d 583d 555d 9472aff1 USB: rio500: Fix lockdep violation
WARNING in kfree C