syzbot

 sign-in | mailing list | source | docs | 🏰
🐞 Open [1318]
Subsystems
🐞 Fixed [7176]
🐞 Invalid [18954]
Missing Backports [221]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
✨ AI
💬 Send us feedback

Applied filters: Label=subsystems:bpf (drop)
Extra filters: [With Repro]
Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Closed Patch
KASAN: slab-use-after-free Read in sk_msg_recvmsg bpf net prio:normal 19 C error error 3 129d 123d 22/29 never c010995b29c8 sockmap: Fix use-after-free in udp_bpf_recvmsg()
WARNING in vmap_pages_range_noflush (2) bpf net -1 C error 250 1396d 1398d 1/29 never mm/gup.c: Fix return value for __gup_longterm_locked()
possible deadlock in lock_timer_base trace bpf 4 C 142 519d 1993d 1/29 never kfence: fix potential deadlock due to wake_up()
inconsistent lock state in bpf_lru_push_free bpf prio:low 4 C error 313 7d18h 178d 23/29 never 89edbdfc5d03 bpf: Fix NMI/tracepoint re-entry deadlock on lru locks
possible deadlock in bpf_lru_push_free (2) prio:low bpf 4 C error inconclusive 1 104d 218d 23/29 never 89edbdfc5d03 bpf: Fix NMI/tracepoint re-entry deadlock on lru locks
WARNING in sock_map_destroy (3) bpf net -1 C done error 5 57d 77d 29/29 28d 6451d58a3556 sockmap: Fix sk_psock_drop() race vs sock_map_{unhash,close,destroy}().
general protection fault in bq_flush_to_queue (2) net bpf 2 C error error 6 111d 193d 29/29 29d 869c63d5975d bpf: Fix race in cpumap on PREEMPT_RT 7ef83bf1712b net: move promiscuity handling into netdev_rx_mode_work
WARNING in reg_bounds_sanity_check (2) bpf -1 C done 20146 66d 287d 29/29 29d b254c6d816e5 bpf: Simulate branches to prune based on range violations
KASAN: slab-use-after-free Read in sk_psock_verdict_data_ready (4) bpf net prio:normal 19 1 81d 79d 29/29 29d ad8391d37f33 bpf: sockmap: Fix use-after-free of sk->sk_socket in sk_psock_verdict_data_ready().
KMSAN: uninit-value in bpf_prog_test_run_skb bpf prio:high 7 C 4 89d 170d 29/29 29d 12bec2bd4b76 bpf: reject short IPv4/IPv6 inputs in bpf_prog_test_run_skb
KASAN: slab-out-of-bounds Read in strnchr bpf 17 C error 14 159d 165d 29/29 43d 9df5fad801c5 bpf: Reject BPF_MAP_TYPE_INSN_ARRAY in check_reg_const_str()
WARNING: refcount bug in __add_used_btf bpf 13 C error 6 123d 135d 29/29 43d ccd2d799ed44 bpf: Fix a potential use-after-free of BTF object
KCSAN: data-race in sk_psock_drop / unix_stream_sendmsg bpf net 6 1 120d 114d 29/29 43d 2ef2b20cf4e0 net: annotate data-races around sk->sk_{data_ready,write_space}
KASAN: stack-out-of-bounds Write in dev_map_redirect_multi bpf net 21 2 116d 128d 29/29 43d b7bf516c3ecd bpf: Fix stack-out-of-bounds write in devmap
KASAN: stack-out-of-bounds Write in dev_map_enqueue_multi bpf net 21 1 107d 107d 29/29 43d b7bf516c3ecd bpf: Fix stack-out-of-bounds write in devmap
KASAN: invalid-access Write in do_bad_area bpf -1 C 34838 171d 257d 29/29 144d 007f5da43b3d mm/kasan: fix incorrect unpoisoning in vrealloc for KASAN
KASAN: slab-use-after-free Write in defer_free bpf 22 C 238 180d 193d 29/29 149d 53ca00a19d34 mm/slub: reset KASAN tag in defer_free() before accessing freed memory
KASAN: slab-out-of-bounds Write in __bpf_get_stackid bpf 21 C error 170 230d 325d 29/29 163d 23f852daa4ba bpf: Fix stackmap overflow check in __bpf_get_stackid()
memory leak in map_create bpf 3 C 1 219d 215d 29/29 163d 688b745401ab bpf: Fix exclusive map memory leak
WARNING in bpf_bprintf_prepare (3) bpf -1 C done 6 217d 241d 29/29 163d c1da3df7191f bpf: Prevent nesting overflow in bpf_try_get_buffers
BUG: sleeping function called from invalid context in sock_map_delete_elem net bpf 5 C error 58 243d 295d 29/29 213d 7c33e97a6ef5 bpf: Do not disable preemption in bpf_test_run().
INFO: rcu detected stall in watchdog bpf 1 C error done 14 278d 1400d 29/29 217d eecd203ada43 media: imon: make send_packet() more robust
general protection fault in print_reg_state bpf 2 C done 4 263d 269d 29/29 232d 34904582b502 bpf: Skip scalar adjustment for BPF_NEG if dst is a pointer
WARNING in convert_ctx_accesses (2) bpf -1 C 16 264d 279d 29/29 232d 6fabca2fc94d bpf: Explicitly check accesses to bpf_sock_addr
WARNING in maybe_exit_scc bpf -1 C done 59 261d 276d 29/29 232d a3c73d629ea1 bpf: dont report verifier bug for missing bpf_scc_visit on speculative path
WARNING in do_misc_fixups bpf -1 C 7604 281d 319d 29/29 232d e4414b01c1cd bpf: Check the helper function is valid in get_helper_proto
possible deadlock in task_fork_fair bpf trace 4 C done done 9106 571d 985d 29/29 247d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in xsk_diag_dump (2) net bpf 4 1 319d 318d 29/29 253d c64237960819 hamradio: ignore ops-locked netdevs
possible deadlock in xsk_notifier (3) bpf net 4 3 309d 359d 29/29 253d 53898ebabe84 net: lapbether: ignore ops-locked netdevs
WARNING in bpf_check (4) bpf -1 C done 5241 288d 394d 29/29 287d e09299225d5b bpf: Reject narrower access to pointer ctx fields
KASAN: slab-use-after-free Read in do_check bpf 19 C 15 371d 373d 29/29 287d 3d71b8b9abae bpf: Fix state use-after-free on push_stack() err
WARNING in reg_bounds_sanity_check bpf -1 C done 6525 288d 352d 29/29 287d 6279846b9b25 bpf: Forget ranges when refining tnum after JSET
WARNING in do_check bpf -1 C error 51 299d 371d 29/29 287d 3157f7e29996 bpf: handle jset (if a & b ...) as a jump in CFG computation
WARNING in check_helper_call bpf -1 C done 7 310d 352d 29/29 287d 65fdafd6765f bpf: Avoid warning on multiple referenced args in call
WARNING in format_decode (3) bpf trace -1 C done 2248 333d 940d 29/29 287d f8242745871f bpf: Reject %p% format string in bprintf-like helpers
WARNING in record_func_key bpf -1 C 90 350d 352d 29/29 287d 032547272eb0 bpf: Avoid warning on unexpected map for tail call
WARNING: kernel/bpf/verifier.c:LINE at do_check, CPU: syz.NUM.NUM/NUM bpf -1 syz done 5 367d 359d 29/29 287d dadb59104c64 bpf: Fix aux usage after do_check_insn()
WARNING in convert_ctx_accesses bpf -1 C done 80 301d 323d 29/29 287d ead3d7b2b6af bpf: Check flow_dissector ctx accesses are aligned
WARNING in bpf_map_lookup_percpu_elem bpf -1 C done 2116 396d 780d 29/29 346d d4965578267e bpf: Check rcu_read_lock_trace_held() in bpf_map_lookup_percpu_elem()
WARNING in get_bpf_raw_tp_regs bpf trace -1 C 2 400d 403d 29/29 346d 3880cdbed1c4 bpf: Fix WARN() in get_bpf_raw_tp_regs
WARNING in __bpf_prog_ret0_warn bpf -1 C 9 387d 411d 29/29 346d 86bc9c742426 bpf: Avoid __bpf_prog_ret0_warn when jit fails
possible deadlock in trie_delete_elem bpf 4 C done done 21444 446d 821d 28/29 368d 47979314c0fe bpf: Convert lpm_trie.c to rqspinlock
possible deadlock in __bpf_ringbuf_reserve bpf 4 C error 2490 424d 828d 28/29 374d a650d38915c1 bpf: Convert ringbuf map to rqspinlock
WARNING in dev_xdp_install bpf -1 C 245 441d 448d 28/29 374d d996e412b2df bpf: add missing ops lock around dev_xdp_attach_link
KMSAN: uninit-value in ___bpf_prog_run (4) bpf 7 C 322 492d 906d 28/29 374d 4c2d14c40a68 ppp: Fix KMSAN uninit-value warning with bpf
possible deadlock in xsk_diag_dump net bpf 4 4 430d 437d 28/29 374d f0433eea4688 net: don't mix device locking in dev_close_many() calls
UBSAN: array-index-out-of-bounds in bpf_prog_select_runtime bpf 15 C done 1160 445d 827d 28/29 374d 6ebc5030e0c5 bpf: Fix array bounds error with may_goto
KASAN: slab-out-of-bounds Read in atomic_ptr_type_ok bpf 17 C done 4 466d 462d 28/29 374d 9aa8fe29f624 Merge branch 'bpf-fix-oob-read-and-add-tests-for-load-acquire-store-release' c03bb2fa327e bpf: Fix out-of-bounds read in check_atomic_load/store()
possible deadlock in queue_stack_map_push_elem bpf 4 C error 78 440d 792d 28/29 374d 2f41503d6476 bpf: Convert queue_stack map to rqspinlock
possible deadlock in __queue_map_get bpf 4 C error 180 438d 797d 28/29 374d 2f41503d6476 bpf: Convert queue_stack map to rqspinlock
general protection fault in bpf_map_offload_map_alloc bpf 2 494 468d 469d 28/29 374d 0a5c8b2c8ccb bpf: fix a possible NULL deref in bpf_map_offload_map_alloc()
possible deadlock in bpf_map_mmap bpf 4 1 519d 515d 28/29 374d bc27c52eea18 bpf: avoid holding freeze_mutex during mmap operation
KASAN: vmalloc-out-of-bounds Write in push_insn_history bpf 21 136 557d 570d 28/29 408d d699440f58ce mm: fix vrealloc()'s KASAN poisoning logic
KASAN: vmalloc-out-of-bounds Write in vrealloc_noprof bpf 21 C done 440 408d 571d 28/29 408d d699440f58ce mm: fix vrealloc()'s KASAN poisoning logic
general protection fault in bpf_prog_array_delete_safe bpf 2 C done 5 558d 560d 28/29 409d 978c4486cca5 bpf,perf: Fix invalid prog_array access in perf_event_detach_bpf_prog
KASAN: slab-use-after-free Read in bpf_trace_run2 (2) bpf trace 19 syz error 123 592d 609d 28/29 409d 2e8a12b82c40 tracing: Fix syscall tracepoint use-after-free
WARNING: locking bug in __lock_task_sighand bpf trace 4 C unreliable 89 511d 568d 28/29 409d 87c544108b61 bpf: Send signals asynchronously if !preemptible
BUG: using smp_processor_id() in preemptible code in bpf_mem_alloc bpf 4 C done 12 581d 578d 28/29 549d 4ff04abf9d5b bpf: Add necessary migrate_disable to range_tree.
WARNING in push_jmp_history bpf -1 C done 5 620d 619d 28/29 582d aa30eb3260b2 bpf: Force checkpoint when jmp history is too long
general protection fault in dev_map_enqueue (2) bpf net 19 C error done 336 687d 753d 28/29 583d 09d88791c7cd bpf: Make sure internal and UAPI bpf_redirect flags don't overlap
WARNING in sock_map_close (2) bpf net -1 C done 3 666d 666d 28/29 605d 1461f5a3d810 l2tp: avoid overriding sk->sk_user_data
BUG: unable to handle kernel paging request in bpf_prog_ADDR (3) bpf net 8 C done 6 706d 706d 28/29 605d 92de36080c93 bpf: Fail verification for sign-extension of packet data/data_end/data_meta
KASAN: slab-use-after-free Read in htab_map_alloc (2) bpf 19 224 769d 776d 27/29 645d 86735b57c905 net/sched: unregister lockdep keys in qdisc_create/qdisc_alloc error path
KASAN: stack-out-of-bounds Read in xdp_do_check_flushed bpf net 17 C done 127 686d 706d 27/29 665d 9da49aa80d68 tun: Add missing bpf_net_ctx_clear() in do_xdp_generic()
general protection fault in __dev_flush net bpf 19 C 35 686d 700d 27/29 665d 9da49aa80d68 tun: Add missing bpf_net_ctx_clear() in do_xdp_generic()
general protection fault in bq_flush_to_queue bpf net 17 22 686d 695d 27/29 665d 9da49aa80d68 tun: Add missing bpf_net_ctx_clear() in do_xdp_generic()
KASAN: slab-use-after-free Read in bq_xmit_all bpf net 19 C done 29 686d 700d 27/29 665d 9da49aa80d68 tun: Add missing bpf_net_ctx_clear() in do_xdp_generic()
general protection fault in __xsk_map_flush net bpf 19 C done 26 686d 703d 27/29 665d 9da49aa80d68 tun: Add missing bpf_net_ctx_clear() in do_xdp_generic()
general protection fault in __cpu_map_flush bpf net 10 C inconclusive 25 687d 700d 27/29 665d 9da49aa80d68 tun: Add missing bpf_net_ctx_clear() in do_xdp_generic()
general protection fault in xdp_do_generic_redirect net bpf 2 8 710d 714d 27/29 674d fecef4cd42c6 tun: Assign missing bpf_net_context.
general protection fault in dev_map_redirect bpf net 2 C 362 710d 717d 27/29 674d fecef4cd42c6 tun: Assign missing bpf_net_context.
stack segment fault in dev_hash_map_redirect bpf net 2 C done 29 710d 717d 27/29 674d fecef4cd42c6 tun: Assign missing bpf_net_context.
general protection fault in xdp_do_redirect net bpf 2 15 711d 717d 27/29 674d fecef4cd42c6 tun: Assign missing bpf_net_context.
stack segment fault in bpf_xdp_redirect bpf net 2 C 181 710d 717d 27/29 674d fecef4cd42c6 tun: Assign missing bpf_net_context.
stack segment fault in cpu_map_redirect bpf net 2 C done 11 710d 709d 27/29 674d fecef4cd42c6 tun: Assign missing bpf_net_context.
WARNING in bpf_lwt_seg6_adjust_srh net bpf -1 C done 30 709d 723d 27/29 674d c13fda93aca1 bpf: Remove tst_run from lwt_seg6local_prog_ops.
possible deadlock in console_flush_all (2) trace bpf 4 C error 52996 710d 985d 26/29 709d ae01e52da244 serial: drop debugging WARN_ON_ONCE() from uart_write()
WARNING in skb_ensure_writable bpf net -1 C done 2893 710d 788d 26/29 709d 2bbe3e5a2f4e bpf: Avoid splat in pskb_pull_reason
INFO: task hung in bpf_prog_dev_bound_destroy bpf 1 94 729d 740d 26/29 709d d864319871b0 net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()
possible deadlock in __sock_map_delete net bpf 4 C 14 752d 796d 26/29 718d 98e948fb60d4 bpf: Allow delete from sockmap/sockhash only if update is allowed
general protection fault in bpf_get_attach_cookie_tracing trace bpf 2 C error 7 744d 775d 26/29 731d d0d1df8ba18a bpf: Set run context for rawtp test_run callback
KASAN: slab-use-after-free Read in bpf_link_free (2) bpf 19 syz 52 741d 753d 26/29 731d 2884dc7d08d9 bpf: Fix a potential use-after-free in bpf_link_free()
WARNING in sock_map_close bpf net -1 C error 182 738d 801d 25/29 738d 4b4647add7d3 sock_map: avoid race between sock_map_close and sk_psock_put
possible deadlock in sock_hash_delete_elem (2) bpf net 4 C 1127 739d 821d 25/29 738d 98e948fb60d4 bpf: Allow delete from sockmap/sockhash only if update is allowed
KMSAN: uninit-value in __bpf_strtoull bpf 7 C 119 745d 821d 25/29 744d e8742081db7d bpf: Mark bpf prog stack with kmsan_unposion_memory in interpreter mode
KMSAN: uninit-value in trie_delete_elem bpf 7 C 52 745d 814d 25/29 744d e8742081db7d bpf: Mark bpf prog stack with kmsan_unposion_memory in interpreter mode
KMSAN: uninit-value in dev_map_lookup_elem bpf net 7 C 3 809d 816d 25/29 744d e8742081db7d bpf: Mark bpf prog stack with kmsan_unposion_memory in interpreter mode
KMSAN: uninit-value in trie_lookup_elem bpf 7 C 12 802d 820d 25/29 744d e8742081db7d bpf: Mark bpf prog stack with kmsan_unposion_memory in interpreter mode
possible deadlock in kvfree_call_rcu bpf 4 C 1431 745d 814d 25/29 744d 59f2f841179a bpf: Avoid kfree_rcu() under lock in bpf_lpm_trie.
BUG: unable to handle kernel paging request in bpf_prog_ADDR (2) bpf 8 C 3 787d 801d 25/29 744d 543576ec15b1 bpf: Add BPF_PROG_TYPE_CGROUP_SKB attach type enforcement in BPF_LINK_CREATE
KMSAN: uninit-value in array_map_lookup_elem bpf 7 C 10 799d 819d 25/29 744d e8742081db7d bpf: Mark bpf prog stack with kmsan_unposion_memory in interpreter mode
KMSAN: uninit-value in sock_map_delete_elem bpf net 7 C 44 745d 816d 25/29 744d e8742081db7d bpf: Mark bpf prog stack with kmsan_unposion_memory in interpreter mode
WARNING in __mark_chain_precision (4) bpf -1 C 8 789d 808d 25/29 744d 1f2a74b41ea8 bpf: prevent r10 register from being marked as precise
KASAN: stack-out-of-bounds Read in hash bpf 17 C done 5 796d 804d 25/29 757d a8d89feba7e5 bpf: Check bloom filter map value size
possible deadlock in force_sig_info_to_task bpf trace 4 C error 6 777d 785d 25/29 757d 02b670c1f88e x86/mm: Remove broken vsyscall emulation code from the page fault code
KCSAN: data-race in sk_psock_drop / sk_psock_skb_ingress_enqueue bpf net 6 1 826d 818d 25/29 757d 6648e613226e bpf, skmsg: Fix NULL pointer dereference in sk_psock_skb_ingress_enqueue
possible deadlock in tty_port_tty_get (2) net bpf 4 3 800d 819d 25/29 757d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in put_pwq_unlocked trace bpf 4 3 795d 794d 25/29 757d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
WARNING in sock_map_delete_elem bpf net -1 C 17183 784d 823d 25/29 757d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in scheduler_tick (3) bpf net 4 C 1179 784d 820d 25/29 757d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in pit_timer_fn net bpf 4 7 795d 806d 25/29 757d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in rcu_exp_handler net bpf 4 C 1 798d 794d 25/29 757d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in rcu_report_exp_cpu_mult net bpf 4 C done 30 785d 823d 25/29 757d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in try_to_wake_up (4) bpf net 4 C error 19 760d 823d 25/29 757d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in ahci_single_level_irq_intr bpf net 4 C 10 806d 814d 25/29 757d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
WARNING in sock_map_unref bpf net -1 C error 97 785d 798d 25/29 757d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in __lock_task_sighand (2) bpf 4 C 1476 759d 822d 25/29 757d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
WARNING in sock_hash_delete_elem bpf net -1 C done 16982 784d 822d 25/29 757d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in hrtimer_run_queues bpf net 4 C error 592 784d 821d 25/29 757d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in swake_up_one bpf net 4 C 4 796d 794d 25/29 757d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in pwq_dec_nr_in_flight trace bpf 4 1 800d 796d 25/29 757d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
WARNING in _prb_commit bpf net -1 4 795d 791d 25/29 757d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in posix_timer_fn (2) net bpf 4 1 798d 794d 25/29 757d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in drm_handle_vblank net bpf 4 30 795d 821d 25/29 757d ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
KASAN: slab-out-of-bounds Read in xsk_setsockopt bpf net 17 C 17 797d 805d 25/29 757d 237f3cf13b20 xsk: validate user input for XDP_{UMEM|COMPLETION}_FILL_RING
UBSAN: array-index-out-of-bounds in check_stack_range_initialized bpf 15 C error 21 788d 821d 25/29 757d ecc6a2101840 bpf: Protect against int overflow for stack access size
general protection fault in dev_map_enqueue net bpf 19 C 676 757d 814d 25/29 757d 5bcf0dcbf906 xdp: use flags field to disambiguate broadcast redirect
KASAN: slab-use-after-free Read in bpf_link_free bpf 19 syz 181 757d 805d 25/29 757d 1a80dbcb2dba bpf: support deferring bpf_link dealloc to after RCU grace period
KASAN: slab-use-after-free Read in bpf_trace_run4 bpf trace 19 C error 169 802d 820d 25/29 757d 1a80dbcb2dba bpf: support deferring bpf_link dealloc to after RCU grace period
KASAN: slab-use-after-free Read in bpf_trace_run2 bpf trace 19 C error 653 802d 820d 25/29 757d 1a80dbcb2dba bpf: support deferring bpf_link dealloc to after RCU grace period
KASAN: slab-use-after-free Read in bpf_trace_run1 bpf trace 19 C error 78 802d 816d 25/29 757d 1a80dbcb2dba bpf: support deferring bpf_link dealloc to after RCU grace period
linux-next boot error: WARNING in register_btf_kfunc_id_set bpf -1 9 868d 868d 25/29 799d a05e90427ef6 bpf: btf: Add BTF_KFUNCS_START/END macro pair
general protection fault in bpf_struct_ops_find_value bpf 2 C done 9 873d 875d 25/29 800d e6be8cd5d3cf bpf: Fix error checks against bpf_get_btf_vmlinux().
BUG: unable to handle kernel NULL pointer dereference in dev_map_hash_update_elem net bpf 10 C 2 844d 851d 25/29 800d 281d464a34f5 bpf: Fix DEVMAP_HASH overflow check on 32-bit arches
general protection fault in btf_is_module bpf 2 C error 318 872d 876d 25/29 800d e6be8cd5d3cf bpf: Fix error checks against bpf_get_btf_vmlinux().
BUG: unable to handle kernel NULL pointer dereference in unix_stream_sendmsg net bpf 10 C 1 843d 843d 25/29 808d 4cd12c6065df bpf, sockmap: Fix NULL pointer dereference in sk_psock_verdict_data_ready()
BUG: unable to handle kernel NULL pointer dereference in sk_psock_verdict_data_ready bpf net 10 C unreliable 15 838d 958d 25/29 808d 4cd12c6065df bpf, sockmap: Fix NULL pointer dereference in sk_psock_verdict_data_ready()
WARNING in __mark_chain_precision (3) bpf -1 C done 19 900d 922d 25/29 870d 482d548d40b0 bpf: handle fake register spill to stack with BPF_ST_MEM instruction
KASAN: slab-use-after-free Read in nla_find bpf net 19 C done 4 914d 914d 25/29 871d 2130c519a401 bpf: Use nla_ok() instead of checking nla_len directly
WARNING: locking bug in corrupted (2) bpf 4 C done done 1 921d 1074d 25/29 871d 6f861765464f fs: Block writes to mounted block devices
WARNING in __sk_msg_free bpf net -1 C done 4 897d 895d 25/29 871d dc9dfc8dc629 net: tls, fix WARNIING in __sk_msg_free
kernel BUG in prog_array_map_poke_run bpf -1 C done done 35 914d 955d 25/29 878d 4b7de801606e bpf: Fix prog_array_map_poke_run map poke update
KASAN: null-ptr-deref Write in unix_stream_bpf_update_proto bpf net 12 C done 54 902d 931d 25/29 880d 8d6650646ce4 bpf: syzkaller found null ptr deref in unix_bpf proto add
WARNING in bpf_mprog_pos_after bpf -1 3 997d 1005d 25/29 911d f9b0e1088bbf bpf, mprog: Fix maximum program check on mprog attachment
WARNING: zero-size vmalloc in xskq_create net bpf -1 20 980d 988d 25/29 911d a12bbb3cccf0 xdp: Fix zero-size allocation warning in xskq_create()
WARNING: zero-size vmalloc in print_tainted bpf net -1 C 79 1104d 1137d 25/29 911d a12bbb3cccf0 xdp: Fix zero-size allocation warning in xskq_create()
WARNING in bpf_mprog_attach bpf -1 C 3 989d 996d 25/29 911d f9b0e1088bbf bpf, mprog: Fix maximum program check on mprog attachment
WARNING in bpf_mprog_pos_before bpf -1 C done 26 989d 996d 25/29 911d f9b0e1088bbf bpf, mprog: Fix maximum program check on mprog attachment
general protection fault in bpf_prog_offload_verifier_prep bpf 8 C done 31 1001d 1019d 25/29 911d 1a49f4195d34 bpf: Avoid dummy bpf_offload_netdev in __bpf_prog_dev_bound_init
WARNING: refcount bug in xp_put_pool bpf net 13 C done 2 1056d 1054d 23/29 981d 85c2c79a0730 xsk: fix refcount underflow in error path
KASAN: slab-use-after-free Read in xsk_diag_dump net bpf 19 C done 9 1016d 1025d 23/29 981d 3e019d8a05a3 xsk: Fix xsk_diag use-after-free error during socket cleanup
UBSAN: array-index-out-of-bounds in bpf_mprog_detach bpf 15 3 1049d 1055d 23/29 981d d210f9735e13 bpf: Fix mprog detachment for empty mprog entry
KCSAN: data-race in bpf_percpu_array_update / bpf_percpu_array_update (2) bpf 6 1 1025d 1025d 23/29 981d 6a86b5b5cd76 bpf: Annotate bpf_long_memcpy with data_race
WARNING in tcx_uninstall net bpf -1 C done 7 1055d 1059d 23/29 981d 079082c60aff tcx: Fix splat during dev unregister
WARNING in bpf_xdp_adjust_tail (4) bpf -1 C error 466 1046d 1256d 23/29 981d d14eea09edf4 net: core: remove unnecessary frame_sz check in bpf_xdp_adjust_tail()
KMSAN: uninit-value in ieee802154_subif_start_xmit bpf 8 C done 119 1051d 1047d 23/29 981d db2baf82b098 bpf: Fix an incorrect verification success with movsx insn
WARNING: ODEBUG bug in tcx_uninstall bpf net -1 C done 38 1060d 1065d 23/29 981d dc644b540a2d tcx: Fix splat in ingress_destroy upon tcx_entry_free
INFO: rcu detected stall in ext4_file_write_iter (7) mm bpf ext4 1 3 1022d 1065d 23/29 981d 8c21ab1bae94 net/sched: fq_pie: avoid stalls in fq_pie_timer()
UBSAN: array-index-out-of-bounds in print_bpf_insn bpf 15 C done 9 1052d 1054d 23/29 981d e99688eba2e9 bpf: Fix an array-index-out-of-bounds issue in disasm.c
KCSAN: data-race in __bpf_lru_list_rotate / __htab_lru_percpu_map_update_elem (5) bpf 6 13 1089d 1151d 23/29 994d ee9fd0ac3017 bpf: Address KCSAN report on bpf_lru_list
WARNING in btf_type_id_size (2) bpf -1 C error 8 1090d 1121d 23/29 994d e6c2f594ed96 bpf: Silence a warning in btf_type_id_size()
WARNING: bad unlock balance in bpf bpf 4 C done 12 1120d 1120d 23/29 994d 4266f41feaee bpf: Fix bad unlock balance on freeze_mutex
WARNING in bpf_verifier_vlog bpf -1 C inconclusive 6 1142d 1379d 23/29 994d cff36398bd4c bpf: drop unnecessary user-triggerable WARN_ONCE in verifierl log
BUG: unable to handle kernel NULL pointer dereference in __build_skb_around bpf net 10 C done 29 1186d 1192d 22/29 1107d e5995bc7e2ba bpf, test_run: fix crashes due to XDP frame overwriting/corruption
KASAN: slab-out-of-bounds Write in copy_array (2) bpf 21 108 1107d 1135d 22/29 1107d 45435d8da71f bpf: Always use maximal size for copy_array()
riscv/fixes boot error: WARNING in __apply_to_page_range (2) bpf riscv -1 5 1214d 1276d 22/29 1107d 96f9d4daf745 riscv: Rework kasan population functions
general protection fault in bpf_struct_ops_link_create bpf net 2 C done 17 1180d 1183d 22/29 1107d 55fbae05476d bpf: Check IS_ERR for the bpf_map_get() return value
WARNING in sock_map_del_link bpf net -1 91 1162d 1163d 22/29 1107d 8c5c2a4898e3 bpf, sockmap: Revert buggy deadlock fix in the sockhash and sockmap
KASAN: slab-out-of-bounds Write in copy_verifier_state bpf 21 C error done 825 1260d 1278d 22/29 1107d 45435d8da71f bpf: Always use maximal size for copy_array()
BUG: stack guard page was hit in inet6_release bpf net -1 C done 4 1241d 1290d 22/29 1107d ddce1e091757 bpf, sockmap: Check for any of tcp_bpf_prots when cloning a listener
possible deadlock in bpf_trace_printk bpf trace 4 C done done 68 1215d 1470d 22/29 1183d 05b24ff9b2cf bpf: Prevent bpf program recursion for raw tracepoint probes
KASAN: vmalloc-out-of-bounds Read in bpf_jit_free bpf 17 C 68 1410d 1585d 22/29 1211d 1d5f82d9dd47 bpf, x86: fix freeing of not-finalized bpf_prog_pack d24d2a2b0a81 bpf: bpf_prog_pack: Set proper size before freeing ro_header
WARNING: kmalloc bug in xdp_umem_create (2) bpf net -1 C done 21 1590d 1656d 22/29 1211d 0708a0afe291 mm: Consider __GFP_NOWARN flag for oversized kvmalloc() calls
BUG: sleeping function called from invalid context in sk_psock_skb_ingress_self bpf net 5 C done 151 1320d 1342d 22/29 1211d 2d1f274b95c6 skmsg: pass gfp argument to alloc_sk_msg()
WARNING in bpf_skb_load_helper_16_no_cache bpf -1 C done 6 1417d 1447d 22/29 1211d 0326195f523a bpf: Make sure mac_header was set before using it
KASAN: vmalloc-out-of-bounds Write in ringbuf_map_alloc bpf 21 C done 541 1596d 1599d 22/29 1211d b293dcc473d2 bpf: Use VM_MAP instead of VM_ALLOC for ringbuf
bpf-next boot error: WARNING in bpf_prog_pack_free bpf -1 12 1550d 1551d 22/29 1211d 96805674e562 bpf: Fix bpf_prog_pack for multi-node setup
KASAN: slab-out-of-bounds Write in bpf_prog_test_run_xdp net bpf 21 C done 18 1586d 1604d 22/29 1211d a6763080856f bpf: test_run: Fix OOB access in bpf_prog_test_run_xdp
general protection fault in do_check_common bpf 2 C done 5 1443d 1447d 22/29 1211d d1a6edecc1fd bpf: Check attach_func_proto more carefully in check_return_code
WARNING in bpf_test_finish bpf net -1 C done 3 1572d 1572d 22/29 1211d 530e214c5b5a bpf, test_run: Fix overflow in XDP frags bpf_test_finish
KMSAN: uninit-value in ___bpf_prog_run (3) bpf 7 C 5 1525d 1527d 22/29 1211d 99c07327ae11 netlink: reset network and mac headers in netlink_dump()
general protection fault in check_helper_call bpf 2 C done 4 1430d 1435d 22/29 1211d d1a6edecc1fd bpf: Check attach_func_proto more carefully in check_return_code
general protection fault in btf_decl_tag_resolve bpf 2 C done 6 1597d 1597d 22/29 1211d d7e7b42f4f95 bpf: Fix a btf decl_tag bug when tagging a function
BUG: missing reserved tailroom bpf net -1 C done 2 1562d 1561d 22/29 1211d b6f1f780b393 bpf, test_run: Fix packet size check for live packet mode
KASAN: slab-out-of-bounds Write in __build_skb_around net bpf 21 C error 2536 1284d 1299d 22/29 1211d ce098da1497c skbuff: Introduce slab_build_skb()
WARNING in btf_type_id_size bpf -1 C done 10 1271d 1342d 22/29 1211d ea68376c8bed bpf: prevent decl_tag from being referenced in func_proto
WARNING: ODEBUG bug in htab_map_alloc bpf -1 C 6456 1354d 1378d 22/29 1211d cf7de6a53600 bpf: add missing percpu_counter_destroy() in htab_map_alloc()
WARNING: kmalloc bug in bpf bpf -1 C done done 562 1549d 1666d 22/29 1211d 0708a0afe291 mm: Consider __GFP_NOWARN flag for oversized kvmalloc() calls
WARNING in bpf_skb_load_helper_32 bpf -1 C done 9 1412d 1443d 22/29 1211d 0326195f523a bpf: Make sure mac_header was set before using it
WARNING in bpf_bprintf_prepare (2) bpf -1 C 2 1344d 1383d 22/29 1211d 05b24ff9b2cf bpf: Prevent bpf program recursion for raw tracepoint probes
WARNING in check_map_prog_compatibility bpf -1 C inconclusive done 128 1362d 1525d 22/29 1211d 34dd3bad1a6f bpf: Relax the requirement to use preallocated hash maps in tracing progs.
bpf-next boot error: KASAN: global-out-of-bounds Read in task_iter_init bpf -1 42 1680d 1683d 20/29 1564d 9e2ad638ae36 bpf: Extend BTF_ID_LIST_GLOBAL with parameter for number of IDs
general protection fault in bpf_skb_cgroup_id net bpf 2 C inconclusive 107 1720d 1735d 20/29 1564d 435b08ec0094 bpf, test, cgroup: Use sk_{alloc,free} for test cases
general protection fault in bpf_skb_ancestor_cgroup_id net bpf 2 C unreliable 232 1719d 1735d 20/29 1564d 435b08ec0094 bpf, test, cgroup: Use sk_{alloc,free} for test cases
general protection fault in dev_get_by_index_rcu (2) bpf net 2 C error 18 1623d 1624d 20/29 1564d 382778edc826 xdp: check prog type before updating BPF link
WARNING: kmalloc bug in bpf_check bpf -1 C done 34 1737d 1749d 20/29 1564d 0e6491b55970 bpf: Add oversize check before call kvcalloc()
KASAN: vmalloc-out-of-bounds Read in bpf_prog_put bpf 17 C done 2 1643d 1642d 20/29 1564d 218d747a4142 bpf, sockmap: Fix double bpf_prog_put on error case in map_link
WARNING in bpf_bprintf_prepare bpf -1 C unreliable 96 1828d 1865d 20/29 1682d e2d5b2bb769f bpf: Fix nested bpf_bprintf_prepare with more per-cpu buffers
UBSAN: shift-out-of-bounds in ___bpf_prog_run bpf -1 C unreliable 38 1816d 1927d 20/29 1682d 28131e9d9333 bpf: Fix up register-based shifts in interpreter to silence KUBSAN
KASAN: use-after-free Write in sk_psock_stop bpf net 22 syz done 74 1880d 1900d 20/29 1682d aadb2bb83ff7 sock_map: Fix a potential use-after-free in sock_map_close()
memory leak in bpf (2) bpf 3 C 3 1837d 1905d 20/29 1682d ccff81e1d028 bpf: Fix false positive kmemleak report in bpf_ringbuf_area_alloc()
general protection fault in btf_type_id_size bpf 2 C unreliable 6 1933d 1929d 20/29 1682d 350a5c4dd245 bpf: Dont allow vmlinux BTF to be used in map_create and prog_load.
WARNING: suspicious RCU usage in tcp_bpf_update_proto bpf net 4 C done 539 1880d 1900d 20/29 1682d 51e0158a5432 skmsg: Pass psock pointer to ->psock_update_sk_prot()
WARNING: suspicious RCU usage in bpf_get_current_cgroup_id bpf 4 C done 764 1753d 1791d 20/29 1682d 2d3a1e3615c5 bpf: Add rcu_read_lock in bpf_get_current_[ancestor_]cgroup_id() helpers
WARNING in tracepoint_add_func trace bpf -1 C done 20635 1798d 2182d 20/29 1682d 9913d5745bd7 tracepoint: Add tracepoint_probe_register_may_exist() for BPF tracing
KASAN: vmalloc-out-of-bounds Read in bpf_trace_run2 trace bpf 17 C done done 5 1939d 2097d 20/29 1892d befe6d946551 tracepoint: Do not fail unregistering a probe due to memory failure
BUG: unable to handle kernel paging request in bpf_trace_run2 trace bpf 8 C done done 10 1936d 2097d 20/29 1892d befe6d946551 tracepoint: Do not fail unregistering a probe due to memory failure
KMSAN: uninit-value in bpf_iter_prog_supported bpf 7 4479 1896d 1958d 20/29 1896d 17d8beda277a bpf: Fix an unitialized value in bpf_iter
KCSAN: data-race in bpf_lru_pop_free / bpf_lru_push_free bpf 6 237 1945d 2131d 20/29 1896d 6df8fb83301d bpf_lru_list: Read double-checked variable once without lock
KCSAN: data-race in __bpf_lru_list_rotate / bpf_lru_push_free (2) bpf 6 32 1951d 2020d 20/29 1896d 6df8fb83301d bpf_lru_list: Read double-checked variable once without lock
KASAN: vmalloc-out-of-bounds Read in bpf_trace_run3 bpf trace 17 C done 6 1953d 2055d 20/29 1896d befe6d946551 tracepoint: Do not fail unregistering a probe due to memory failure
BUG: unable to handle kernel paging request in bpf_trace_run3 bpf trace 8 C done 40 1944d 2066d 20/29 1896d befe6d946551 tracepoint: Do not fail unregistering a probe due to memory failure
memory leak in xskq_create bpf net 3 C 7 1993d 2014d 19/29 1927d 8bee68338408 xsk: Fix memory leak for failed bind
BUG: unable to handle kernel paging request in htab_map_alloc (2) bpf 8 C unreliable 8 2014d 2022d 19/29 1927d e1868b9e36d0 bpf: Avoid overflows involving hash elem_size
BUG: unable to handle kernel paging request in bpf_lru_populate bpf 8 C done 12 2014d 2020d 19/29 1927d e1868b9e36d0 bpf: Avoid overflows involving hash elem_size
general protection fault in xsk_recvmsg bpf net 2 C done unreliable 1800 2012d 1981d 19/29 1927d 3546b9b8eced xsk: Validate socket state in xsk_recvmsg, prior touching socket members
KASAN: vmalloc-out-of-bounds Write in pcpu_freelist_populate bpf 21 6 2016d 2019d 19/29 1927d e1868b9e36d0 bpf: Avoid overflows involving hash elem_size
KASAN: use-after-free Read in htab_map_alloc bpf 19 C done 38 2054d 2057d 19/29 1927d 8aaeed81fcb9 bpf: Fix error path in htab_map_alloc()
BUG: unable to handle kernel paging request in htab_free_elems bpf 8 1 2021d 2021d 19/29 1927d e1868b9e36d0 bpf: Avoid overflows involving hash elem_size
KASAN: vmalloc-out-of-bounds Write in htab_map_alloc bpf 21 6 2014d 2023d 19/29 1927d e1868b9e36d0 bpf: Avoid overflows involving hash elem_size
BUG: unable to handle kernel paging request in pcpu_freelist_populate bpf 8 C unreliable 42 2012d 2023d 19/29 1927d e1868b9e36d0 bpf: Avoid overflows involving hash elem_size
KASAN: vmalloc-out-of-bounds Read in htab_free_elems bpf 17 C unreliable 7 2020d 2021d 19/29 1927d e1868b9e36d0 bpf: Avoid overflows involving hash elem_size
KASAN: vmalloc-out-of-bounds Write in bpf_lru_populate bpf 21 C unreliable 19 2013d 2024d 19/29 1927d e1868b9e36d0 bpf: Avoid overflows involving hash elem_size
general protection fault in xsk_release bpf net 2 C done 2 2093d 2093d 15/29 2041d 1fd17c8cd0aa xsk: Fix possible crash in socket_release when out-of-memory
KASAN: use-after-free Write in xp_put_pool bpf net 22 C done 50 2094d 2116d 15/29 2041d 83cf5c68d663 xsk: Fix use-after-free in failed shared_umem bind
general protection fault in xsk_is_setup_for_bpf_map net bpf 2 C error 294 2093d 2116d 15/29 2041d 968be23ceaca xsk: Fix possible segfault at xskmap entry insertion
WARNING in bpf_raw_tp_link_fill_link_info bpf -1 C error 56 2093d 2108d 15/29 2041d b474959d5afd bpf: Fix a buffer out-of-bound access when filling raw_tp link_info
memory leak in xdp_umem_create bpf net 3 C 17 2045d 2065d 15/29 2041d e5e1a4bc916d xsk: Fix possible memory leak at socket close
general protection fault in xsk_diag_dump (2) bpf net 2 C 354 2097d 2116d 15/29 2041d 53ea2076d851 xsk: Fix possible segfault in xsk umem diagnostics
general protection fault in __btf_resolve_helper_id bpf 2 C 17 2166d 2174d 15/29 2101d 5b801dfb7feb bpf: Fix NULL pointer dereference in __btf_resolve_helper_id()
KASAN: use-after-free Write in bpf_link_put bpf 22 2 2239d 2241d 15/29 2162d 138c67677ff5 bpf: Fix use-after-free of bpf_link when priming half-fails
general protection fault in sock_hash_free bpf net 2 1 2207d 2207d 15/29 2162d 75e68e5bf2c7 bpf, sockhash: Synchronize delete from bucket list on map free
BUG: unable to handle kernel NULL pointer dereference in smp_call_function_many_cond (2) bpf 10 1 2186d 2186d 15/29 2162d 3021e69219e2 kcov: check kcov_softirq in kcov_remote_stop()
KMSAN: uninit-value in bpf_skb_load_helper_32_no_cache bpf net 7 2 2326d 2324d 15/29 2255d 457fed775c97 net/smc: fix leak of kernel memory to user space
possible deadlock in htab_lru_map_delete_node bpf 4 C done 264 2309d 2314d 15/29 2255d b9aff38de2cb bpf: Fix a potential deadlock with bpf_map_do_batch
possible deadlock in bpf_lru_push_free bpf 4 C done 609 2309d 2315d 15/29 2255d b9aff38de2cb bpf: Fix a potential deadlock with bpf_map_do_batch
BUG: sleeping function called from invalid context in lock_sock_nested net bpf 5 C 1232 2313d 2388d 15/29 2313d 37f96694cf73 crypto: af_alg - Use bh_lock_sock in sk_destruct
WARNING in sk_psock_drop net bpf -1 157 2336d 2344d 15/29 2313d 58c8db929db1 net, sk_msg: Don't check if sock is locked when tearing down psock
general protection fault in free_verifier_state (3) bpf 2 C 5 2340d 2347d 15/29 2313d f59bbfc2f609 bpf: Fix error path under memory pressure
KASAN: vmalloc-out-of-bounds Write in pcpu_alloc bpf 21 C done 31 2365d 2389d 15/29 2317d 253a496d8e57 kasan: don't assume percpu shadow allocations will succeed
BUG: unable to handle kernel paging request in pcpu_alloc bpf 8 C done 24 2370d 2389d 15/29 2317d 253a496d8e57 kasan: don't assume percpu shadow allocations will succeed
KASAN: slab-out-of-bounds Read in bpf_prog_create net bpf 17 C done 447 2385d 2466d 15/29 2354d 0033b34a03ec ppp: fix out-of-bounds access in bpf_prog_create()
KASAN: use-after-free Read in bpf_prog_kallsyms_find (2) bpf 19 C done 9 2429d 2440d 13/29 2400d cd7455f1013e bpf: Fix use after free in subprog's jited symbol removal
KASAN: use-after-free Read in is_bpf_text_address bpf 19 C done 3 2430d 2432d 13/29 2400d cd7455f1013e bpf: Fix use after free in subprog's jited symbol removal
BUG: unable to handle kernel paging request in is_bpf_text_address bpf 8 C done 2 2436d 2436d 13/29 2400d cd7455f1013e bpf: Fix use after free in subprog's jited symbol removal
BUG: unable to handle kernel NULL pointer dereference in xsk_poll bpf net 10 C done 10 2436d 2454d 13/29 2419d df551058f7a3 xsk: Fix crash in poll when device does not support ndo_xsk_wakeup
general protection fault in bpf_tcp_close (2) bpf 2 C done 26 2856d 2899d 13/29 2433d e06fa9c16ce4 bpf, sockmap: fix potential use after free in bpf_tcp_close
general protection fault in xsk_poll net bpf 2 C done 430 2468d 2495d 13/29 2438d 42fddcc7c64b xsk: use state member for socket synchronization
general protection fault in xsk_map_update_elem bpf 2 C done 12 2458d 2461d 13/29 2438d fcd30ae0665c bpf/xskmap: Return ERR_PTR for failure case instead of NULL.
general protection fault in dev_map_hash_update_elem net bpf 2 C done 4 2472d 2478d 13/29 2438d af58e7ee6a8d xdp: Fix race in dev_map_hash_update_elem() when replacing element
WARNING in __mark_chain_precision (2) bpf -1 C done 18 2467d 2486d 13/29 2445d 2339cd6cd0b5 bpf: fix precision tracking of stack slots
WARNING: suspicious RCU usage (4) bpf trace -1 C done 1 2847d 2846d 13/29 2450d 865e63b04e9b tracing: Add back in rcu_irq_enter/exit_irqson() for rcuidle tracepoints
WARNING: suspicious RCU usage in trace_call_bpf bpf trace 4 C done 327 2828d 2846d 13/29 2450d 865e63b04e9b tracing: Add back in rcu_irq_enter/exit_irqson() for rcuidle tracepoints
KASAN: use-after-free Read in psock_map_pop bpf 19 C done 204 2796d 2839d 13/29 2450d 5607fff30363 bpf: sockmap only allow ESTABLISHED sock state
KASAN: slab-out-of-bounds Read in sock_hash_ctx_update_elem bpf 17 C done 5 2880d 2881d 13/29 2450d b845c898b2f1 bpf, sockmap: fix sock_hash_alloc and reject zero-sized keys
general protection fault in smap_list_hash_remove bpf 2 C done 52 2888d 2907d 13/29 2450d 99ba2b5aba24 bpf: sockhash, disallow bpf_tcp_close and update in parallel
WARNING in bpf_jit_free bpf -1 C done 21697 2477d 2895d 12/29 2477d c751798aa224 bpf: fix use after free in prog symbol exposure
WARNING in bpf_prog_kallsyms_add bpf -1 syz done done 2 2520d 2723d 12/29 2477d c751798aa224 bpf: fix use after free in prog symbol exposure
BUG: unable to handle kernel paging request in bpf_prog_kallsyms_find bpf 8 syz done inconclusive 3 2695d 2769d 12/29 2477d c751798aa224 bpf: fix use after free in prog symbol exposure
BUG: unable to handle kernel paging request in bpf_prog_kallsyms_add bpf 8 syz error 234 2478d 2839d 12/29 2477d c751798aa224 bpf: fix use after free in prog symbol exposure
KASAN: use-after-free Read in bpf_prog_kallsyms_del bpf 19 syz done inconclusive 3 2725d 2804d 12/29 2477d c751798aa224 bpf: fix use after free in prog symbol exposure
KASAN: use-after-free Read in bpf_get_prog_name bpf 19 1 2520d 2520d 12/29 2477d c751798aa224 bpf: fix use after free in prog symbol exposure
WARNING in bpf_prog_kallsyms_find bpf -1 C error 5632 2477d 2599d 12/29 2477d c751798aa224 bpf: fix use after free in prog symbol exposure
WARNING in is_bpf_text_address bpf -1 C done 104 2488d 2555d 12/29 2477d c751798aa224 bpf: fix use after free in prog symbol exposure
KASAN: use-after-free Read in bpf_prog_kallsyms_add bpf 19 syz error inconclusive 120 2604d 2839d 12/29 2477d c751798aa224 bpf: fix use after free in prog symbol exposure
BUG: unable to handle kernel paging request in __do_softirq bpf 8 syz done done 1 2557d 2557d 12/29 2487d 95fa145479fb bpf: sockmap/tls, close can race with map free
BUG: unable to handle kernel paging request in tls_prots net bpf 8 syz done 1 2550d 2550d 12/29 2487d 95fa145479fb bpf: sockmap/tls, close can race with map free
possible deadlock in xsk_notifier net bpf 4 C done 495 2526d 2538d 12/29 2501d 5464c3a0e9a0 xdp: fix potential deadlock on socket mutex
general protection fault in btf_array_resolve bpf 2 C error 109 2534d 2557d 12/29 2510d e4f07120210a bpf: fix NULL deref in btf_type_is_resolve_source_only
general protection fault in btf_struct_resolve bpf 2 C error 49 2534d 2557d 12/29 2510d e4f07120210a bpf: fix NULL deref in btf_type_is_resolve_source_only
KASAN: use-after-free Read in __dev_map_entry_free bpf net 19 C 473 2640d 2921d 12/29 2557d 2baae3545327 bpf: devmap: fix use-after-free Read in __dev_map_entry_free
general protection fault in xsk_diag_dump net bpf 2 C 5 2657d 2663d 11/29 2640d 915905f8b1d4 xsk: fix potential crash in xsk_diag_put_umem()
KASAN: use-after-free Read in bpf_cgroup_storage_release bpf 19 C 2 2877d 2877d 11/29 2679d 82c018d734a7 Merge branch 'bpf-cgroup-local-storage'
WARNING in __debug_object_init (3) bpf net -1 C 1557 2790d 2791d 11/29 2706d 2cb494a36c98 bpf: add tests for direct packet access from CGROUP_SKB
KASAN: slab-out-of-bounds Write in queue_stack_map_push_elem bpf 21 C 30 2760d 2763d 11/29 2751d 813961de3ee6 bpf: fix integer overflow in queue_stack_map
WARNING in bpf_check (2) bpf -1 C 9 2773d 2773d 11/29 2751d afd594240806 bpf: fix off-by-one error in adjust_subprog_starts
KASAN: slab-out-of-bounds Read in refcount_inc_not_zero_checked bpf net 17 2 2801d 2802d 11/29 2775d 5032d079909d bpf: skmsg, fix psock create on existing kcm/tls port
BUG: sleeping function called from invalid context at net/core/dev.c:LINE bpf -1 syz 8 2802d 2811d 11/29 2789d cee271678d0e xsk: do not call synchronize_net() under RCU read lock
WARNING in pcpu_alloc bpf -1 C 4 2809d 2817d 11/29 2808d b0584ea66d73 bpf: don't accept cgroup local storage with zero value size
WARNING: suspicious RCU usage in bpf_prog_array_copy_core bpf 4 C 22873 2852d 2866d 8/29 2851d 965931e3a803 bpf: fix a rcu usage warning in bpf_prog_array_copy_core()
KASAN: out-of-bounds Read in bpf_test_finish net bpf 17 9 2895d 2902d 8/29 2873d 6e6fddc78323 bpf: fix panic due to oob in bpf_prog_test_run_skb
WARNING: refcount bug in smap_release_sock bpf 13 C 55 2889d 2927d 8/29 2873d 7ebc14d507b4 bpf: sockmap, consume_skb in close path 547b3aa451ae bpf: sockmap, error path can not release psock in multi-map case
KASAN: stack-out-of-bounds Read in bpf_tcp_close bpf 17 C 1 2892d 2892d 8/29 2873d 99ba2b5aba24 bpf: sockhash, disallow bpf_tcp_close and update in parallel
WARNING in bpf_check bpf -1 3 2893d 2899d 8/29 2873d c7a897843224 bpf: don't leave partial mangled prog in jit_subprogs error path
WARNING in do_debug (2) bpf -1 1 2893d 2893d 8/29 2873d 99ba2b5aba24 bpf: sockhash, disallow bpf_tcp_close and update in parallel
KASAN: use-after-free Read in bpf_test_finish bpf net 19 C 1211 2887d 2902d 8/29 2873d 6e6fddc78323 bpf: fix panic due to oob in bpf_prog_test_run_skb
WARNING in bpf_int_jit_compile bpf net -1 syz 11 2909d 2946d 8/29 2901d 9facc336876f bpf: reject any prog that failed read-only lock
possible deadlock in sock_hash_free bpf 4 C 45 2943d 2943d 8/29 2901d e9db4ef6bf4c bpf: sockhash fix omitted bucket lock in sock_close
WARNING: ODEBUG bug in sock_hash_free bpf -1 1 2915d 2915d 8/29 2901d e9db4ef6bf4c bpf: sockhash fix omitted bucket lock in sock_close
KASAN: slab-out-of-bounds Read in bpf_csum_update bpf net 17 C 2 2939d 2937d 8/29 2901d 58990d1ff3f7 bpf: reject passing modified ctx to helper functions
INFO: rcu detected stall in is_bpf_text_address bpf 1 C 1 2953d 2953d 8/29 2901d 1d88ba1ebb27 sctp: not allow transport timeout value less than HZ/5 for hb_timer
KASAN: use-after-free Read in bpf_skb_change_proto bpf net 19 1 2931d 2931d 8/29 2901d 58990d1ff3f7 bpf: reject passing modified ctx to helper functions
WARNING in bpf_prog_select_runtime bpf -1 syz 45 2926d 2927d 8/29 2901d 9facc336876f bpf: reject any prog that failed read-only lock
KASAN: slab-out-of-bounds Read in bpf_skb_vlan_push bpf net 17 syz 2 2928d 2928d 8/29 2901d 58990d1ff3f7 bpf: reject passing modified ctx to helper functions
KASAN: use-after-free Read in skb_ensure_writable net bpf 19 C 4 2930d 2937d 8/29 2901d 58990d1ff3f7 bpf: reject passing modified ctx to helper functions
KASAN: use-after-free Read in bpf_tcp_close bpf 19 C 1748 2907d 2946d 8/29 2901d e9db4ef6bf4c bpf: sockhash fix omitted bucket lock in sock_close
BUG: unable to handle kernel paging request in bpf_prog_select_runtime bpf 8 1 2917d 2917d 8/29 2901d 85782e037f8a bpf: undo prog rejection on read-only lock failure
WARNING: kmalloc bug in xdp_umem_create net bpf -1 C 7 2925d 2931d 8/29 2901d a343993c518c xsk: silence warning on memory allocation failure
KASAN: slab-out-of-bounds Read in bpf_skb_change_proto net bpf 17 C 2 2931d 2931d 8/29 2901d 58990d1ff3f7 bpf: reject passing modified ctx to helper functions
KASAN: slab-out-of-bounds Read in skb_ensure_writable bpf net 17 C 9 2928d 2937d 8/29 2901d 58990d1ff3f7 bpf: reject passing modified ctx to helper functions
KASAN: use-after-free Read in bpf_csum_update bpf net 19 C 1 2939d 2937d 8/29 2901d 58990d1ff3f7 bpf: reject passing modified ctx to helper functions
BUG: unable to handle kernel paging request in bpf_int_jit_compile bpf net 8 syz 2 2914d 2917d 8/29 2901d 85782e037f8a bpf: undo prog rejection on read-only lock failure
KASAN: use-after-free Write in bpf_tcp_close bpf 22 C 67 2909d 2944d 8/29 2901d e9db4ef6bf4c bpf: sockhash fix omitted bucket lock in sock_close
general protection fault in bpf_tcp_close bpf 2 C 421 2902d 2946d 8/29 2901d e9db4ef6bf4c bpf: sockhash fix omitted bucket lock in sock_close 54fedb42c653 bpf: sockmap, fix smap_list_map_remove when psock is in many maps
KASAN: slab-out-of-bounds Read in bpf_skb_change_head net bpf 17 C 2 2927d 2927d 8/29 2901d 58990d1ff3f7 bpf: reject passing modified ctx to helper functions
WARNING: kmalloc bug in map_get_next_key bpf -1 C 5 2955d 2956d 8/29 2901d 683d2ac3904c bpf: fix sock hashmap kmalloc warning
KASAN: null-ptr-deref Write in xdp_umem_unaccount_pages bpf net 12 C 25 2930d 2933d 8/29 2901d c09290c56376 bpf, xdp: fix crash in xdp_umem_unaccount_pages
WARNING: kmalloc bug in memdup_user (3) bpf -1 C 137 2955d 2956d 8/29 2901d 683d2ac3904c bpf: fix sock hashmap kmalloc warning
possible deadlock in bpf_tcp_close bpf 4 C 152 2943d 2944d 8/29 2901d e9db4ef6bf4c bpf: sockhash fix omitted bucket lock in sock_close
possible deadlock in perf_event_detach_bpf_prog trace bpf 4 1 3004d 3003d 5/29 2963d 3a38bb98d9ab bpf/tracing: fix a deadlock in perf_event_detach_bpf_prog
general protection fault in SyS_bpf (2) bpf 2 C 1065 3034d 3048d 4/29 3034d 952fad8e3239 bpf: fix sock_map_alloc() error path
WARNING: kmalloc bug in cpu_map_update_elem bpf net -1 C 2677 3034d 3046d 4/29 3034d 7fc17e909edf bpf: cpumap: use GFP_KERNEL instead of GFP_ATOMIC in __cpu_map_entry_alloc()
WARNING in kvmalloc_node net bpf -1 C 513 3041d 3047d 4/29 3034d 7fc17e909edf bpf: cpumap: use GFP_KERNEL instead of GFP_ATOMIC in __cpu_map_entry_alloc()
WARNING: kmalloc bug in bpf_prog_array_copy_info bpf -1 C 4424 3034d 3047d 4/29 3034d 9c481b908b01 bpf: fix bpf_prog_array_copy_to_user warning from perf event prog query
general protection fault in ___bpf_prog_run bpf 2 C 8 3054d 3061d 4/29 3048d 65073a67331d bpf: fix null pointer deref in bpf_prog_test_run_xdp
general protection fault in trie_get_next_key bpf 2 C 3 3066d 3066d 4/29 3059d 6dd1ec6c7a2c bpf: fix kernel page fault in lpm map trie_get_next_key
BUG: unable to handle kernel paging request in check_memory_region bpf 8 C 10 3076d 3079d 4/29 3060d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
KASAN: use-after-free Read in map_lookup_elem bpf 19 C 6 3075d 3079d 4/29 3060d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
KASAN: use-after-free Read in __bpf_prog_put bpf 19 1 3081d 3081d 4/29 3060d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
WARNING in xdp_rxq_info_unreg bpf net -1 C 198 3069d 3069d 4/29 3060d c13da21cdb80 tun: avoid calling xdp_rxq_info_unreg() twice
general protection fault in copy_verifier_state bpf 2 C 2 3093d 3089d 4/29 3060d 5896351ea936 bpf: fix verifier GPF in kmalloc failure path
BUG: sleeping function called from invalid context at mm/slab.h:LINE (2) bpf -1 2 3069d 3069d 4/29 3060d 2310035fa03f bpf: fix incorrect kmalloc usage in lpm_trie MAP_GET_NEXT_KEY rcu region
general protection fault in free_verifier_state (2) bpf 2 C 2 3084d 3084d 4/29 3060d 5896351ea936 bpf: fix verifier GPF in kmalloc failure path
suspicious RCU usage at mm/slab.h:LINE bpf -1 1 3069d 3069d 4/29 3060d 2310035fa03f bpf: fix incorrect kmalloc usage in lpm_trie MAP_GET_NEXT_KEY rcu region
suspicious RCU usage at ./include/linux/rcupdate.h:LINE (3) bpf -1 C 5087 3061d 3070d 4/29 3060d 2310035fa03f bpf: fix incorrect kmalloc usage in lpm_trie MAP_GET_NEXT_KEY rcu region
KASAN: slab-out-of-bounds Read in map_lookup_elem bpf 17 C 6 3076d 3079d 4/29 3069d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
general protection fault in cgroup_fd_array_put_ptr bpf 2 C 219 3075d 3082d 4/29 3070d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
BUG: unable to handle kernel paging request in fd_array_map_delete_elem bpf 8 11 3075d 3082d 4/29 3070d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
KASAN: slab-out-of-bounds Read in perf_event_fd_array_release bpf 17 C 96 3075d 3082d 4/29 3070d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
BUG: unable to handle kernel paging request in __bpf_map_put bpf 8 1 3079d 3078d 4/29 3070d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
divide error in ___bpf_prog_run bpf 2 C 28 3072d 3079d 4/29 3070d 68fda450a7df bpf: fix 32-bit divide by zero
general protection fault in __bpf_map_put bpf 2 C 331 3075d 3082d 4/29 3070d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
WARNING in adjust_ptr_min_max_vals bpf -1 C 252 3072d 3089d 4/29 3070d 6f16101e6a8b bpf: mark dst unknown on inconsistent {s, u}bounds adjustments
general protection fault in __bpf_prog_put bpf 2 C 212 3075d 3082d 4/29 3070d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
KASAN: use-after-free Write in array_map_update_elem bpf 22 C 11 3075d 3077d 4/29 3070d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
KASAN: slab-out-of-bounds Write in array_map_update_elem bpf 21 C 6 3077d 3077d 4/29 3070d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
WARNING in ___bpf_prog_run bpf -1 C 28 3075d 3081d 4/29 3070d 7891a87efc71 bpf: arsh is not supported in 32 bit alu thus reject it
KASAN: use-after-free Read in bpf_fd_array_map_lookup_elem bpf 19 21 3075d 3081d 4/29 3070d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
BUG: unable to handle kernel paging request in bpf_fd_array_map_lookup_elem bpf 8 5 3075d 3079d 4/29 3070d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
KASAN: slab-out-of-bounds Read in bpf_fd_array_map_lookup_elem bpf 17 7 3076d 3080d 4/29 3070d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
general protection fault in free_verifier_state bpf 2 C 2 3102d 3102d 3/29 3096d 8c01c4f896aa bpf: fix verifier NULL pointer dereference
general protection fault in bpf_check bpf 2 3 3146d 3151d 3/29 3125d 8c01c4f896aa bpf: fix verifier NULL pointer dereference