syzbot


Applied filters: Label=subsystems:bpf (drop)
Title Repro Cause bisect Fix bisect Count Last Reported Patched Closed Patch
general protection fault in dev_map_enqueue bpf net C 625 1h40m 53d 25/26 never 5bcf0dcbf906 xdp: use flags field to disambiguate broadcast redirect
possible deadlock in force_sig_info_to_task bpf trace C error 6 16d 23d 25/26 never 02b670c1f88e x86/mm: Remove broken vsyscall emulation code from the page fault code
KASAN: slab-use-after-free Read in htab_map_alloc (2) bpf 224 8d08h 14d 0/26 never net/sched: unregister lockdep keys in qdisc_create/qdisc_alloc
WARNING in vmap_pages_range_noflush (2) bpf net C error 250 634d 636d 1/26 never mm/gup.c: Fix return value for __gup_longterm_locked()
possible deadlock in lock_timer_base bpf net C 109 12d 1231d 1/26 never kfence: fix potential deadlock due to wake_up()
WARNING in sock_hash_delete_elem bpf net C done 16982 22d 61d 25/26 never ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
KASAN: slab-out-of-bounds Read in xsk_setsockopt bpf net C 17 35d 44d 25/26 never 237f3cf13b20 xsk: validate user input for XDP_{UMEM|COMPLETION}_FILL_RING
KASAN: slab-use-after-free Read in bpf_link_free bpf syz 168 4h48m 44d 25/26 never 1a80dbcb2dba bpf: support deferring bpf_link dealloc to after RCU grace period
KASAN: slab-use-after-free Read in bpf_trace_run4 bpf trace C error 169 40d 58d 25/26 never 1a80dbcb2dba bpf: support deferring bpf_link dealloc to after RCU grace period
KASAN: slab-use-after-free Read in bpf_trace_run2 bpf trace C error 653 40d 58d 25/26 never 1a80dbcb2dba bpf: support deferring bpf_link dealloc to after RCU grace period
KASAN: slab-use-after-free Read in bpf_trace_run1 bpf trace C error 78 40d 55d 25/26 never 1a80dbcb2dba bpf: support deferring bpf_link dealloc to after RCU grace period
WARNING in __mark_chain_precision (4) bpf C 8 27d 47d 23/26 never 1f2a74b41ea8 bpf: prevent r10 register from being marked as precise
UBSAN: array-index-out-of-bounds in check_stack_range_initialized bpf C error 21 27d 60d 25/26 never ecc6a2101840 bpf: Protect against int overflow for stack access size
KMSAN: uninit-value in __bpf_strtoull bpf C 56 9h45m 60d 23/26 never e8742081db7d bpf: Mark bpf prog stack with kmsan_unposion_memory in interpreter mode
KMSAN: uninit-value in trie_delete_elem bpf C 38 3d12h 53d 23/26 never e8742081db7d bpf: Mark bpf prog stack with kmsan_unposion_memory in interpreter mode
KMSAN: uninit-value in dev_map_lookup_elem bpf net C 3 47d 54d 23/26 never e8742081db7d bpf: Mark bpf prog stack with kmsan_unposion_memory in interpreter mode
KMSAN: uninit-value in trie_lookup_elem bpf C 12 40d 58d 23/26 never e8742081db7d bpf: Mark bpf prog stack with kmsan_unposion_memory in interpreter mode
KMSAN: uninit-value in array_map_lookup_elem bpf C 10 37d 57d 23/26 never e8742081db7d bpf: Mark bpf prog stack with kmsan_unposion_memory in interpreter mode
KMSAN: uninit-value in sock_map_delete_elem bpf net C 39 1h06m 54d 23/26 never e8742081db7d bpf: Mark bpf prog stack with kmsan_unposion_memory in interpreter mode
KASAN: stack-out-of-bounds Read in hash bpf C done 5 35d 42d 25/26 never a8d89feba7e5 bpf: Check bloom filter map value size
possible deadlock in kvfree_call_rcu bpf C 1363 1d20h 53d 23/26 never 59f2f841179a bpf: Avoid kfree_rcu() under lock in bpf_lpm_trie.
BUG: unable to handle kernel paging request in bpf_prog_ADDR (2) bpf C 3 25d 39d 23/26 never 543576ec15b1 bpf: Add BPF_PROG_TYPE_CGROUP_SKB attach type enforcement in BPF_LINK_CREATE
possible deadlock in tty_port_tty_get (2) bpf net 3 39d 57d 25/26 never ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in put_pwq_unlocked trace bpf 3 33d 32d 25/26 never ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
WARNING in sock_map_delete_elem bpf net C 17183 22d 61d 25/26 never ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in scheduler_tick (3) bpf net C 1179 23d 59d 25/26 never ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in pit_timer_fn bpf net 7 33d 44d 25/26 never ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in rcu_exp_handler bpf net C 1 36d 32d 25/26 never ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
KCSAN: data-race in sk_psock_drop / sk_psock_skb_ingress_enqueue bpf net 1 64d 57d 25/26 never 6648e613226e bpf, skmsg: Fix NULL pointer dereference in sk_psock_skb_ingress_enqueue
possible deadlock in rcu_report_exp_cpu_mult net bpf C done 30 23d 61d 25/26 never ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in drm_handle_vblank bpf net 30 34d 59d 25/26 never ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in try_to_wake_up (4) bpf net C error 17 1d15h 61d 25/26 never ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in ahci_single_level_irq_intr bpf net C 10 44d 52d 25/26 never ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
WARNING in sock_map_unref bpf net C error 97 23d 37d 25/26 never ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in __lock_task_sighand (2) bpf net C 1469 3h05m 61d 25/26 never ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in hrtimer_run_queues net bpf C error 592 23d 60d 25/26 never ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in swake_up_one bpf net C 4 34d 33d 25/26 never ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in pwq_dec_nr_in_flight trace bpf 1 38d 34d 25/26 never ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
WARNING in _prb_commit net bpf 4 33d 29d 25/26 never ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
possible deadlock in posix_timer_fn (2) net bpf 1 37d 33d 25/26 never ff9105993240 bpf, sockmap: Prevent lock inversion deadlock in map delete elem
linux-next boot error: WARNING in register_btf_kfunc_id_set bpf 9 106d 107d 26/26 38d a05e90427ef6 bpf: btf: Add BTF_KFUNCS_START/END macro pair
general protection fault in bpf_struct_ops_find_value bpf C done 9 111d 114d 26/26 38d e6be8cd5d3cf bpf: Fix error checks against bpf_get_btf_vmlinux().
BUG: unable to handle kernel NULL pointer dereference in dev_map_hash_update_elem bpf net C 2 82d 90d 26/26 38d 281d464a34f5 bpf: Fix DEVMAP_HASH overflow check on 32-bit arches
general protection fault in btf_is_module bpf C error 318 110d 114d 26/26 38d e6be8cd5d3cf bpf: Fix error checks against bpf_get_btf_vmlinux().
BUG: unable to handle kernel NULL pointer dereference in unix_stream_sendmsg bpf net C 1 81d 81d 26/26 46d 4cd12c6065df bpf, sockmap: Fix NULL pointer dereference in sk_psock_verdict_data_ready()
BUG: unable to handle kernel NULL pointer dereference in sk_psock_verdict_data_ready net bpf C unreliable 15 77d 197d 26/26 46d 4cd12c6065df bpf, sockmap: Fix NULL pointer dereference in sk_psock_verdict_data_ready()
WARNING in __mark_chain_precision (3) bpf C done 19 139d 160d 26/26 108d 482d548d40b0 bpf: handle fake register spill to stack with BPF_ST_MEM instruction
KASAN: slab-use-after-free Read in nla_find bpf net C done 4 153d 152d 26/26 109d 2130c519a401 bpf: Use nla_ok() instead of checking nla_len directly
WARNING: locking bug in corrupted (2) bpf reiserfs C done done 1 159d 313d 26/26 109d 6f861765464f fs: Block writes to mounted block devices
WARNING in __sk_msg_free bpf net C done 4 135d 134d 26/26 109d dc9dfc8dc629 net: tls, fix WARNIING in __sk_msg_free
kernel BUG in prog_array_map_poke_run bpf C done done 35 152d 193d 25/26 117d 4b7de801606e bpf: Fix prog_array_map_poke_run map poke update
KASAN: null-ptr-deref Write in unix_stream_bpf_update_proto bpf net C done 54 140d 170d 25/26 119d 8d6650646ce4 bpf: syzkaller found null ptr deref in unix_bpf proto add
WARNING in bpf_mprog_pos_after bpf 3 235d 243d 25/26 149d f9b0e1088bbf bpf, mprog: Fix maximum program check on mprog attachment
WARNING: zero-size vmalloc in xskq_create bpf net 20 219d 227d 25/26 149d a12bbb3cccf0 xdp: Fix zero-size allocation warning in xskq_create()
WARNING: zero-size vmalloc in print_tainted bpf net C 79 342d 376d 25/26 149d a12bbb3cccf0 xdp: Fix zero-size allocation warning in xskq_create()
WARNING in bpf_mprog_attach bpf C 3 227d 235d 25/26 149d f9b0e1088bbf bpf, mprog: Fix maximum program check on mprog attachment
WARNING in bpf_mprog_pos_before bpf C done 26 227d 235d 25/26 149d f9b0e1088bbf bpf, mprog: Fix maximum program check on mprog attachment
general protection fault in bpf_prog_offload_verifier_prep bpf C done 31 239d 258d 25/26 149d 1a49f4195d34 bpf: Avoid dummy bpf_offload_netdev in __bpf_prog_dev_bound_init
WARNING: refcount bug in xp_put_pool bpf net C done 2 294d 292d 23/26 219d 85c2c79a0730 xsk: fix refcount underflow in error path
KASAN: slab-use-after-free Read in xsk_diag_dump net bpf C done 9 254d 263d 23/26 219d 3e019d8a05a3 xsk: Fix xsk_diag use-after-free error during socket cleanup
UBSAN: array-index-out-of-bounds in bpf_mprog_detach bpf 3 288d 294d 23/26 219d d210f9735e13 bpf: Fix mprog detachment for empty mprog entry
KCSAN: data-race in bpf_percpu_array_update / bpf_percpu_array_update (2) bpf 1 264d 263d 23/26 219d 6a86b5b5cd76 bpf: Annotate bpf_long_memcpy with data_race
WARNING in tcx_uninstall bpf net C done 7 293d 297d 23/26 219d 079082c60aff tcx: Fix splat during dev unregister
WARNING in bpf_xdp_adjust_tail (4) bpf C error 466 285d 495d 23/26 219d d14eea09edf4 net: core: remove unnecessary frame_sz check in bpf_xdp_adjust_tail()
KMSAN: uninit-value in ieee802154_subif_start_xmit bpf C done 119 290d 286d 23/26 219d db2baf82b098 bpf: Fix an incorrect verification success with movsx insn
WARNING: ODEBUG bug in tcx_uninstall net bpf C done 38 299d 303d 23/26 219d dc644b540a2d tcx: Fix splat in ingress_destroy upon tcx_entry_free
INFO: rcu detected stall in ext4_file_write_iter (7) mm bpf ext4 3 261d 303d 23/26 219d 8c21ab1bae94 net/sched: fq_pie: avoid stalls in fq_pie_timer()
UBSAN: array-index-out-of-bounds in print_bpf_insn bpf C done 9 291d 292d 23/26 219d e99688eba2e9 bpf: Fix an array-index-out-of-bounds issue in disasm.c
KCSAN: data-race in __bpf_lru_list_rotate / __htab_lru_percpu_map_update_elem (5) bpf 13 327d 389d 23/26 233d ee9fd0ac3017 bpf: Address KCSAN report on bpf_lru_list
WARNING in btf_type_id_size (2) bpf C error 8 329d 360d 23/26 233d e6c2f594ed96 bpf: Silence a warning in btf_type_id_size()
WARNING: bad unlock balance in bpf bpf C done 12 358d 358d 23/26 233d 4266f41feaee bpf: Fix bad unlock balance on freeze_mutex
WARNING in bpf_verifier_vlog bpf C inconclusive 6 381d 617d 23/26 233d cff36398bd4c bpf: drop unnecessary user-triggerable WARN_ONCE in verifierl log
BUG: unable to handle kernel NULL pointer dereference in __build_skb_around net bpf C done 29 425d 430d 22/26 345d e5995bc7e2ba bpf, test_run: fix crashes due to XDP frame overwriting/corruption
KASAN: slab-out-of-bounds Write in copy_array (2) bpf 108 345d 374d 22/26 345d 45435d8da71f bpf: Always use maximal size for copy_array()
riscv/fixes boot error: WARNING in __apply_to_page_range (2) bpf 5 452d 514d 22/26 345d 96f9d4daf745 riscv: Rework kasan population functions
general protection fault in bpf_struct_ops_link_create bpf net C done 17 419d 421d 22/26 345d 55fbae05476d bpf: Check IS_ERR for the bpf_map_get() return value
WARNING in sock_map_del_link bpf net 91 401d 401d 22/26 345d 8c5c2a4898e3 bpf, sockmap: Revert buggy deadlock fix in the sockhash and sockmap
KASAN: slab-out-of-bounds Write in copy_verifier_state bpf C error done 825 498d 516d 22/26 345d 45435d8da71f bpf: Always use maximal size for copy_array()
BUG: stack guard page was hit in inet6_release bpf net C done 4 480d 529d 22/26 345d ddce1e091757 bpf, sockmap: Check for any of tcp_bpf_prots when cloning a listener
possible deadlock in bpf_trace_printk bpf trace C done done 68 454d 709d 22/26 422d 05b24ff9b2cf bpf: Prevent bpf program recursion for raw tracepoint probes
KASAN: vmalloc-out-of-bounds Read in bpf_jit_free bpf C 68 648d 824d 22/26 449d 1d5f82d9dd47 bpf, x86: fix freeing of not-finalized bpf_prog_pack d24d2a2b0a81 bpf: bpf_prog_pack: Set proper size before freeing ro_header
WARNING: kmalloc bug in xdp_umem_create (2) bpf net C done 21 828d 894d 22/26 449d 0708a0afe291 mm: Consider __GFP_NOWARN flag for oversized kvmalloc() calls
BUG: sleeping function called from invalid context in sk_psock_skb_ingress_self net bpf C done 151 559d 581d 22/26 449d 2d1f274b95c6 skmsg: pass gfp argument to alloc_sk_msg()
WARNING in bpf_skb_load_helper_16_no_cache bpf C done 6 656d 686d 22/26 449d 0326195f523a bpf: Make sure mac_header was set before using it
KASAN: vmalloc-out-of-bounds Write in ringbuf_map_alloc bpf C done 541 834d 837d 22/26 449d b293dcc473d2 bpf: Use VM_MAP instead of VM_ALLOC for ringbuf
bpf-next boot error: WARNING in bpf_prog_pack_free bpf 12 788d 789d 22/26 449d 96805674e562 bpf: Fix bpf_prog_pack for multi-node setup
KASAN: slab-out-of-bounds Write in bpf_prog_test_run_xdp bpf net C done 18 825d 842d 22/26 449d a6763080856f bpf: test_run: Fix OOB access in bpf_prog_test_run_xdp
general protection fault in do_check_common bpf C done 5 681d 685d 22/26 449d d1a6edecc1fd bpf: Check attach_func_proto more carefully in check_return_code
WARNING in bpf_test_finish net bpf C done 3 811d 811d 22/26 449d 530e214c5b5a bpf, test_run: Fix overflow in XDP frags bpf_test_finish
KMSAN: uninit-value in ___bpf_prog_run (3) bpf C 5 763d 765d 22/26 449d 99c07327ae11 netlink: reset network and mac headers in netlink_dump()
general protection fault in check_helper_call bpf C done 4 668d 673d 22/26 449d d1a6edecc1fd bpf: Check attach_func_proto more carefully in check_return_code
general protection fault in btf_decl_tag_resolve bpf C done 6 835d 835d 22/26 449d d7e7b42f4f95 bpf: Fix a btf decl_tag bug when tagging a function
BUG: missing reserved tailroom bpf net C done 2 800d 800d 22/26 449d b6f1f780b393 bpf, test_run: Fix packet size check for live packet mode
KASAN: slab-out-of-bounds Write in __build_skb_around bpf net C error 2536 522d 537d 22/26 449d ce098da1497c skbuff: Introduce slab_build_skb()
WARNING in btf_type_id_size bpf C done 10 509d 580d 22/26 449d ea68376c8bed bpf: prevent decl_tag from being referenced in func_proto
WARNING: ODEBUG bug in htab_map_alloc bpf C 6456 592d 617d 22/26 449d cf7de6a53600 bpf: add missing percpu_counter_destroy() in htab_map_alloc()
WARNING: kmalloc bug in bpf bpf C done done 562 787d 904d 22/26 449d 0708a0afe291 mm: Consider __GFP_NOWARN flag for oversized kvmalloc() calls
WARNING in bpf_skb_load_helper_32 bpf C done 9 650d 681d 22/26 449d 0326195f523a bpf: Make sure mac_header was set before using it
WARNING in bpf_bprintf_prepare (2) bpf C 2 583d 622d 22/26 449d 05b24ff9b2cf bpf: Prevent bpf program recursion for raw tracepoint probes
WARNING in check_map_prog_compatibility bpf C inconclusive done 128 601d 764d 22/26 449d 34dd3bad1a6f bpf: Relax the requirement to use preallocated hash maps in tracing progs.
bpf-next boot error: KASAN: global-out-of-bounds Read in task_iter_init bpf 42 918d 922d 20/26 802d 9e2ad638ae36 bpf: Extend BTF_ID_LIST_GLOBAL with parameter for number of IDs
general protection fault in bpf_skb_cgroup_id bpf net C inconclusive 107 958d 974d 20/26 802d 435b08ec0094 bpf, test, cgroup: Use sk_{alloc,free} for test cases
general protection fault in bpf_skb_ancestor_cgroup_id bpf net C unreliable 232 958d 974d 20/26 802d 435b08ec0094 bpf, test, cgroup: Use sk_{alloc,free} for test cases
general protection fault in dev_get_by_index_rcu (2) bpf net C error 18 862d 862d 20/26 802d 382778edc826 xdp: check prog type before updating BPF link
WARNING: kmalloc bug in bpf_check bpf C done 34 975d 988d 20/26 802d 0e6491b55970 bpf: Add oversize check before call kvcalloc()
KASAN: vmalloc-out-of-bounds Read in bpf_prog_put bpf C done 2 882d 880d 20/26 802d 218d747a4142 bpf, sockmap: Fix double bpf_prog_put on error case in map_link
WARNING in bpf_bprintf_prepare bpf C unreliable 96 1066d 1104d 20/26 921d e2d5b2bb769f bpf: Fix nested bpf_bprintf_prepare with more per-cpu buffers
UBSAN: shift-out-of-bounds in ___bpf_prog_run bpf C unreliable 38 1054d 1165d 20/26 921d 28131e9d9333 bpf: Fix up register-based shifts in interpreter to silence KUBSAN
KASAN: use-after-free Write in sk_psock_stop bpf net syz done 74 1119d 1138d 20/26 921d aadb2bb83ff7 sock_map: Fix a potential use-after-free in sock_map_close()
memory leak in bpf (2) bpf C 3 1075d 1144d 20/26 921d ccff81e1d028 bpf: Fix false positive kmemleak report in bpf_ringbuf_area_alloc()
general protection fault in btf_type_id_size bpf C unreliable 6 1171d 1168d 20/26 921d 350a5c4dd245 bpf: Dont allow vmlinux BTF to be used in map_create and prog_load.
WARNING: suspicious RCU usage in tcp_bpf_update_proto bpf net C done 539 1119d 1139d 20/26 921d 51e0158a5432 skmsg: Pass psock pointer to ->psock_update_sk_prot()
WARNING: suspicious RCU usage in bpf_get_current_cgroup_id bpf C done 764 991d 1029d 20/26 921d 2d3a1e3615c5 bpf: Add rcu_read_lock in bpf_get_current_[ancestor_]cgroup_id() helpers
WARNING in tracepoint_add_func bpf trace C done 20635 1036d 1420d 20/26 921d 9913d5745bd7 tracepoint: Add tracepoint_probe_register_may_exist() for BPF tracing
KASAN: vmalloc-out-of-bounds Read in bpf_trace_run2 trace bpf C done done 5 1177d 1335d 20/26 1131d befe6d946551 tracepoint: Do not fail unregistering a probe due to memory failure
BUG: unable to handle kernel paging request in bpf_trace_run2 bpf trace C done done 10 1174d 1335d 20/26 1131d befe6d946551 tracepoint: Do not fail unregistering a probe due to memory failure
KMSAN: uninit-value in bpf_iter_prog_supported bpf 4479 1135d 1196d 20/26 1135d 17d8beda277a bpf: Fix an unitialized value in bpf_iter
KCSAN: data-race in bpf_lru_pop_free / bpf_lru_push_free bpf 237 1183d 1370d 20/26 1135d 6df8fb83301d bpf_lru_list: Read double-checked variable once without lock
KCSAN: data-race in __bpf_lru_list_rotate / bpf_lru_push_free (2) bpf 32 1189d 1258d 20/26 1135d 6df8fb83301d bpf_lru_list: Read double-checked variable once without lock
KASAN: vmalloc-out-of-bounds Read in bpf_trace_run3 bpf trace C done 6 1191d 1293d 20/26 1135d befe6d946551 tracepoint: Do not fail unregistering a probe due to memory failure
BUG: unable to handle kernel paging request in bpf_trace_run3 bpf trace C done 40 1182d 1304d 20/26 1135d befe6d946551 tracepoint: Do not fail unregistering a probe due to memory failure
memory leak in xskq_create bpf net C 7 1231d 1252d 19/26 1166d 8bee68338408 xsk: Fix memory leak for failed bind
BUG: unable to handle kernel paging request in htab_map_alloc (2) bpf C unreliable 8 1252d 1261d 19/26 1166d e1868b9e36d0 bpf: Avoid overflows involving hash elem_size
BUG: unable to handle kernel paging request in bpf_lru_populate bpf C done 12 1252d 1258d 19/26 1166d e1868b9e36d0 bpf: Avoid overflows involving hash elem_size
general protection fault in xsk_recvmsg bpf net C done unreliable 1800 1250d 1220d 19/26 1166d 3546b9b8eced xsk: Validate socket state in xsk_recvmsg, prior touching socket members
KASAN: vmalloc-out-of-bounds Write in pcpu_freelist_populate bpf 6 1254d 1258d 19/26 1166d e1868b9e36d0 bpf: Avoid overflows involving hash elem_size
KASAN: use-after-free Read in htab_map_alloc bpf C done 38 1293d 1296d 19/26 1166d 8aaeed81fcb9 bpf: Fix error path in htab_map_alloc()
BUG: unable to handle kernel paging request in htab_free_elems bpf 1 1259d 1259d 19/26 1166d e1868b9e36d0 bpf: Avoid overflows involving hash elem_size
KASAN: vmalloc-out-of-bounds Write in htab_map_alloc bpf 6 1253d 1261d 19/26 1166d e1868b9e36d0 bpf: Avoid overflows involving hash elem_size
BUG: unable to handle kernel paging request in pcpu_freelist_populate bpf C unreliable 42 1251d 1262d 19/26 1166d e1868b9e36d0 bpf: Avoid overflows involving hash elem_size
KASAN: vmalloc-out-of-bounds Read in htab_free_elems bpf C unreliable 7 1258d 1260d 19/26 1166d e1868b9e36d0 bpf: Avoid overflows involving hash elem_size
KASAN: vmalloc-out-of-bounds Write in bpf_lru_populate bpf C unreliable 19 1252d 1262d 19/26 1166d e1868b9e36d0 bpf: Avoid overflows involving hash elem_size
general protection fault in xsk_release bpf net C done 2 1331d 1331d 15/26 1279d 1fd17c8cd0aa xsk: Fix possible crash in socket_release when out-of-memory
KASAN: use-after-free Write in xp_put_pool bpf net C done 50 1332d 1354d 15/26 1279d 83cf5c68d663 xsk: Fix use-after-free in failed shared_umem bind
general protection fault in xsk_is_setup_for_bpf_map bpf net C error 294 1332d 1354d 15/26 1279d 968be23ceaca xsk: Fix possible segfault at xskmap entry insertion
WARNING in bpf_raw_tp_link_fill_link_info bpf C error 56 1332d 1346d 15/26 1279d b474959d5afd bpf: Fix a buffer out-of-bound access when filling raw_tp link_info
memory leak in xdp_umem_create net bpf C 17 1283d 1303d 15/26 1279d e5e1a4bc916d xsk: Fix possible memory leak at socket close
general protection fault in xsk_diag_dump (2) bpf net C 354 1336d 1354d 15/26 1279d 53ea2076d851 xsk: Fix possible segfault in xsk umem diagnostics
general protection fault in __btf_resolve_helper_id bpf C 17 1404d 1413d 15/26 1340d 5b801dfb7feb bpf: Fix NULL pointer dereference in __btf_resolve_helper_id()
KASAN: use-after-free Write in bpf_link_put bpf 2 1477d 1479d 15/26 1401d 138c67677ff5 bpf: Fix use-after-free of bpf_link when priming half-fails
general protection fault in sock_hash_free net bpf 1 1446d 1446d 15/26 1401d 75e68e5bf2c7 bpf, sockhash: Synchronize delete from bucket list on map free
BUG: unable to handle kernel NULL pointer dereference in smp_call_function_many_cond (2) bpf 1 1424d 1424d 15/26 1401d 3021e69219e2 kcov: check kcov_softirq in kcov_remote_stop()
KMSAN: uninit-value in bpf_skb_load_helper_32_no_cache net bpf 2 1564d 1562d 15/26 1494d 457fed775c97 net/smc: fix leak of kernel memory to user space
possible deadlock in htab_lru_map_delete_node bpf C done 264 1547d 1552d 15/26 1494d b9aff38de2cb bpf: Fix a potential deadlock with bpf_map_do_batch
possible deadlock in bpf_lru_push_free bpf C done 609 1547d 1553d 15/26 1494d b9aff38de2cb bpf: Fix a potential deadlock with bpf_map_do_batch
BUG: sleeping function called from invalid context in lock_sock_nested bpf net C 1232 1551d 1626d 15/26 1551d 37f96694cf73 crypto: af_alg - Use bh_lock_sock in sk_destruct
WARNING in sk_psock_drop bpf net 157 1574d 1583d 15/26 1551d 58c8db929db1 net, sk_msg: Don't check if sock is locked when tearing down psock
general protection fault in free_verifier_state (3) bpf C 5 1579d 1585d 15/26 1551d f59bbfc2f609 bpf: Fix error path under memory pressure
KASAN: vmalloc-out-of-bounds Write in pcpu_alloc bpf C done 31 1603d 1627d 15/26 1556d 253a496d8e57 kasan: don't assume percpu shadow allocations will succeed
BUG: unable to handle kernel paging request in pcpu_alloc bpf C done 24 1609d 1627d 15/26 1556d 253a496d8e57 kasan: don't assume percpu shadow allocations will succeed
KASAN: slab-out-of-bounds Read in bpf_prog_create bpf net C done 447 1623d 1705d 15/26 1593d 0033b34a03ec ppp: fix out-of-bounds access in bpf_prog_create()
KASAN: use-after-free Read in bpf_prog_kallsyms_find (2) bpf C done 9 1668d 1678d 13/26 1638d cd7455f1013e bpf: Fix use after free in subprog's jited symbol removal
KASAN: use-after-free Read in is_bpf_text_address bpf C done 3 1669d 1670d 13/26 1638d cd7455f1013e bpf: Fix use after free in subprog's jited symbol removal
BUG: unable to handle kernel paging request in is_bpf_text_address bpf C done 2 1674d 1674d 13/26 1638d cd7455f1013e bpf: Fix use after free in subprog's jited symbol removal
BUG: unable to handle kernel NULL pointer dereference in xsk_poll bpf net C done 10 1674d 1692d 13/26 1657d df551058f7a3 xsk: Fix crash in poll when device does not support ndo_xsk_wakeup
general protection fault in bpf_tcp_close (2) bpf C done 26 2094d 2138d 13/26 1671d e06fa9c16ce4 bpf, sockmap: fix potential use after free in bpf_tcp_close
general protection fault in xsk_poll bpf net C done 430 1706d 1734d 13/26 1677d 42fddcc7c64b xsk: use state member for socket synchronization
general protection fault in xsk_map_update_elem bpf C done 12 1696d 1699d 13/26 1677d fcd30ae0665c bpf/xskmap: Return ERR_PTR for failure case instead of NULL.
general protection fault in dev_map_hash_update_elem bpf net C done 4 1710d 1717d 13/26 1677d af58e7ee6a8d xdp: Fix race in dev_map_hash_update_elem() when replacing element
WARNING in __mark_chain_precision (2) bpf C done 18 1706d 1724d 13/26 1683d 2339cd6cd0b5 bpf: fix precision tracking of stack slots
WARNING: suspicious RCU usage (4) bpf trace C done 1 2086d 2084d 13/26 1688d 865e63b04e9b tracing: Add back in rcu_irq_enter/exit_irqson() for rcuidle tracepoints
WARNING: suspicious RCU usage in trace_call_bpf bpf trace C done 327 2067d 2084d 13/26 1688d 865e63b04e9b tracing: Add back in rcu_irq_enter/exit_irqson() for rcuidle tracepoints
KASAN: use-after-free Read in psock_map_pop bpf C done 204 2034d 2077d 13/26 1688d 5607fff30363 bpf: sockmap only allow ESTABLISHED sock state
KASAN: slab-out-of-bounds Read in sock_hash_ctx_update_elem bpf C done 5 2119d 2119d 13/26 1688d b845c898b2f1 bpf, sockmap: fix sock_hash_alloc and reject zero-sized keys
general protection fault in smap_list_hash_remove bpf C done 52 2126d 2145d 13/26 1688d 99ba2b5aba24 bpf: sockhash, disallow bpf_tcp_close and update in parallel
WARNING in bpf_jit_free bpf C done 21697 1716d 2133d 12/26 1716d c751798aa224 bpf: fix use after free in prog symbol exposure
WARNING in bpf_prog_kallsyms_add bpf syz done done 2 1758d 1961d 12/26 1716d c751798aa224 bpf: fix use after free in prog symbol exposure
BUG: unable to handle kernel paging request in bpf_prog_kallsyms_find bpf syz done inconclusive 3 1933d 2008d 12/26 1716d c751798aa224 bpf: fix use after free in prog symbol exposure
BUG: unable to handle kernel paging request in bpf_prog_kallsyms_add bpf syz error 234 1717d 2077d 12/26 1716d c751798aa224 bpf: fix use after free in prog symbol exposure
KASAN: use-after-free Read in bpf_prog_kallsyms_del bpf syz done inconclusive 3 1964d 2042d 12/26 1716d c751798aa224 bpf: fix use after free in prog symbol exposure
KASAN: use-after-free Read in bpf_get_prog_name bpf 1 1759d 1758d 12/26 1716d c751798aa224 bpf: fix use after free in prog symbol exposure
WARNING in bpf_prog_kallsyms_find bpf C error 5632 1716d 1837d 12/26 1716d c751798aa224 bpf: fix use after free in prog symbol exposure
WARNING in is_bpf_text_address bpf C done 104 1726d 1793d 12/26 1716d c751798aa224 bpf: fix use after free in prog symbol exposure
KASAN: use-after-free Read in bpf_prog_kallsyms_add bpf syz error inconclusive 120 1843d 2077d 12/26 1716d c751798aa224 bpf: fix use after free in prog symbol exposure
BUG: unable to handle kernel paging request in __do_softirq bpf syz done done 1 1796d 1795d 12/26 1726d 95fa145479fb bpf: sockmap/tls, close can race with map free
BUG: unable to handle kernel paging request in tls_prots net bpf syz done 1 1788d 1788d 12/26 1726d 95fa145479fb bpf: sockmap/tls, close can race with map free
possible deadlock in xsk_notifier bpf net C done 495 1765d 1776d 12/26 1740d 5464c3a0e9a0 xdp: fix potential deadlock on socket mutex
general protection fault in btf_array_resolve bpf C error 109 1773d 1795d 12/26 1748d e4f07120210a bpf: fix NULL deref in btf_type_is_resolve_source_only
general protection fault in btf_struct_resolve bpf C error 49 1773d 1795d 12/26 1748d e4f07120210a bpf: fix NULL deref in btf_type_is_resolve_source_only
KASAN: use-after-free Read in __dev_map_entry_free bpf net C 473 1878d 2159d 12/26 1796d 2baae3545327 bpf: devmap: fix use-after-free Read in __dev_map_entry_free
general protection fault in xsk_diag_dump bpf net C 5 1896d 1901d 11/26 1878d 915905f8b1d4 xsk: fix potential crash in xsk_diag_put_umem()
KASAN: use-after-free Read in bpf_cgroup_storage_release bpf C 2 2116d 2116d 11/26 1917d 82c018d734a7 Merge branch 'bpf-cgroup-local-storage'
WARNING in __debug_object_init (3) bpf net C 1557 2028d 2029d 11/26 1944d 2cb494a36c98 bpf: add tests for direct packet access from CGROUP_SKB
KASAN: slab-out-of-bounds Write in queue_stack_map_push_elem bpf C 30 1999d 2001d 11/26 1989d 813961de3ee6 bpf: fix integer overflow in queue_stack_map
WARNING in bpf_check (2) bpf C 9 2012d 2011d 11/26 1989d afd594240806 bpf: fix off-by-one error in adjust_subprog_starts
KASAN: slab-out-of-bounds Read in refcount_inc_not_zero_checked bpf net 2 2039d 2040d 11/26 2014d 5032d079909d bpf: skmsg, fix psock create on existing kcm/tls port
BUG: sleeping function called from invalid context at net/core/dev.c:LINE bpf syz 8 2040d 2049d 11/26 2028d cee271678d0e xsk: do not call synchronize_net() under RCU read lock
WARNING in pcpu_alloc bpf C 4 2047d 2056d 11/26 2046d b0584ea66d73 bpf: don't accept cgroup local storage with zero value size
WARNING: suspicious RCU usage in bpf_prog_array_copy_core bpf C 22873 2090d 2104d 8/26 2090d 965931e3a803 bpf: fix a rcu usage warning in bpf_prog_array_copy_core()
KASAN: out-of-bounds Read in bpf_test_finish bpf net 9 2134d 2140d 8/26 2111d 6e6fddc78323 bpf: fix panic due to oob in bpf_prog_test_run_skb
WARNING: refcount bug in smap_release_sock bpf C 55 2127d 2166d 8/26 2111d 7ebc14d507b4 bpf: sockmap, consume_skb in close path 547b3aa451ae bpf: sockmap, error path can not release psock in multi-map case
KASAN: stack-out-of-bounds Read in bpf_tcp_close bpf C 1 2131d 2131d 8/26 2111d 99ba2b5aba24 bpf: sockhash, disallow bpf_tcp_close and update in parallel
WARNING in bpf_check bpf 3 2131d 2137d 8/26 2111d c7a897843224 bpf: don't leave partial mangled prog in jit_subprogs error path
WARNING in do_debug (2) bpf 1 2132d 2131d 8/26 2111d 99ba2b5aba24 bpf: sockhash, disallow bpf_tcp_close and update in parallel
KASAN: use-after-free Read in bpf_test_finish bpf net C 1211 2126d 2140d 8/26 2111d 6e6fddc78323 bpf: fix panic due to oob in bpf_prog_test_run_skb
WARNING in bpf_int_jit_compile bpf net syz 11 2148d 2184d 8/26 2140d 9facc336876f bpf: reject any prog that failed read-only lock
possible deadlock in sock_hash_free bpf C 45 2182d 2182d 8/26 2140d e9db4ef6bf4c bpf: sockhash fix omitted bucket lock in sock_close
WARNING: ODEBUG bug in sock_hash_free bpf 1 2154d 2153d 8/26 2140d e9db4ef6bf4c bpf: sockhash fix omitted bucket lock in sock_close
KASAN: slab-out-of-bounds Read in bpf_csum_update bpf net C 2 2178d 2176d 8/26 2140d 58990d1ff3f7 bpf: reject passing modified ctx to helper functions
INFO: rcu detected stall in is_bpf_text_address bpf C 1 2191d 2191d 8/26 2140d 1d88ba1ebb27 sctp: not allow transport timeout value less than HZ/5 for hb_timer
KASAN: use-after-free Read in bpf_skb_change_proto bpf net 1 2170d 2169d 8/26 2140d 58990d1ff3f7 bpf: reject passing modified ctx to helper functions
WARNING in bpf_prog_select_runtime bpf syz 45 2164d 2165d 8/26 2140d 9facc336876f bpf: reject any prog that failed read-only lock
KASAN: slab-out-of-bounds Read in bpf_skb_vlan_push bpf net syz 2 2166d 2166d 8/26 2140d 58990d1ff3f7 bpf: reject passing modified ctx to helper functions
KASAN: use-after-free Read in skb_ensure_writable bpf net C 4 2169d 2176d 8/26 2140d 58990d1ff3f7 bpf: reject passing modified ctx to helper functions
KASAN: use-after-free Read in bpf_tcp_close bpf C 1748 2145d 2184d 8/26 2140d e9db4ef6bf4c bpf: sockhash fix omitted bucket lock in sock_close
BUG: unable to handle kernel paging request in bpf_prog_select_runtime bpf 1 2156d 2155d 8/26 2140d 85782e037f8a bpf: undo prog rejection on read-only lock failure
WARNING: kmalloc bug in xdp_umem_create bpf net C 7 2164d 2170d 8/26 2140d a343993c518c xsk: silence warning on memory allocation failure
KASAN: slab-out-of-bounds Read in bpf_skb_change_proto bpf net C 2 2169d 2169d 8/26 2140d 58990d1ff3f7 bpf: reject passing modified ctx to helper functions
KASAN: slab-out-of-bounds Read in skb_ensure_writable bpf net C 9 2166d 2176d 8/26 2140d 58990d1ff3f7 bpf: reject passing modified ctx to helper functions
KASAN: use-after-free Read in bpf_csum_update bpf net C 1 2178d 2176d 8/26 2140d 58990d1ff3f7 bpf: reject passing modified ctx to helper functions
BUG: unable to handle kernel paging request in bpf_int_jit_compile bpf net syz 2 2152d 2155d 8/26 2140d 85782e037f8a bpf: undo prog rejection on read-only lock failure
KASAN: use-after-free Write in bpf_tcp_close bpf C 67 2147d 2183d 8/26 2140d e9db4ef6bf4c bpf: sockhash fix omitted bucket lock in sock_close
general protection fault in bpf_tcp_close bpf C 421 2141d 2184d 8/26 2140d e9db4ef6bf4c bpf: sockhash fix omitted bucket lock in sock_close 54fedb42c653 bpf: sockmap, fix smap_list_map_remove when psock is in many maps
KASAN: slab-out-of-bounds Read in bpf_skb_change_head bpf net C 2 2166d 2166d 8/26 2140d 58990d1ff3f7 bpf: reject passing modified ctx to helper functions
WARNING: kmalloc bug in map_get_next_key bpf C 5 2193d 2194d 8/26 2140d 683d2ac3904c bpf: fix sock hashmap kmalloc warning
KASAN: null-ptr-deref Write in xdp_umem_unaccount_pages bpf net C 25 2168d 2172d 8/26 2140d c09290c56376 bpf, xdp: fix crash in xdp_umem_unaccount_pages
WARNING: kmalloc bug in memdup_user (3) bpf C 137 2193d 2194d 8/26 2140d 683d2ac3904c bpf: fix sock hashmap kmalloc warning
possible deadlock in bpf_tcp_close bpf C 152 2182d 2182d 8/26 2140d e9db4ef6bf4c bpf: sockhash fix omitted bucket lock in sock_close
possible deadlock in perf_event_detach_bpf_prog bpf trace 1 2243d 2242d 5/26 2202d 3a38bb98d9ab bpf/tracing: fix a deadlock in perf_event_detach_bpf_prog
general protection fault in SyS_bpf (2) bpf C 1065 2273d 2287d 4/26 2273d 952fad8e3239 bpf: fix sock_map_alloc() error path
WARNING: kmalloc bug in cpu_map_update_elem bpf net C 2677 2273d 2284d 4/26 2273d 7fc17e909edf bpf: cpumap: use GFP_KERNEL instead of GFP_ATOMIC in __cpu_map_entry_alloc()
WARNING in kvmalloc_node bpf net C 513 2280d 2286d 4/26 2273d 7fc17e909edf bpf: cpumap: use GFP_KERNEL instead of GFP_ATOMIC in __cpu_map_entry_alloc()
WARNING: kmalloc bug in bpf_prog_array_copy_info bpf C 4424 2273d 2286d 4/26 2273d 9c481b908b01 bpf: fix bpf_prog_array_copy_to_user warning from perf event prog query
general protection fault in ___bpf_prog_run bpf C 8 2293d 2300d 4/26 2287d 65073a67331d bpf: fix null pointer deref in bpf_prog_test_run_xdp
general protection fault in trie_get_next_key bpf C 3 2304d 2305d 4/26 2297d 6dd1ec6c7a2c bpf: fix kernel page fault in lpm map trie_get_next_key
KASAN: use-after-free Read in map_lookup_elem bpf C 6 2314d 2318d 4/26 2298d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
KASAN: use-after-free Read in __bpf_prog_put bpf 1 2319d 2319d 4/26 2298d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
BUG: unable to handle kernel paging request in check_memory_region bpf C 10 2315d 2318d 4/26 2298d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
suspicious RCU usage at mm/slab.h:LINE bpf 1 2307d 2307d 4/26 2298d 2310035fa03f bpf: fix incorrect kmalloc usage in lpm_trie MAP_GET_NEXT_KEY rcu region
general protection fault in free_verifier_state (2) bpf C 2 2322d 2322d 4/26 2298d 5896351ea936 bpf: fix verifier GPF in kmalloc failure path
general protection fault in copy_verifier_state bpf C 2 2332d 2328d 4/26 2298d 5896351ea936 bpf: fix verifier GPF in kmalloc failure path
BUG: sleeping function called from invalid context at mm/slab.h:LINE (2) bpf 2 2307d 2307d 4/26 2298d 2310035fa03f bpf: fix incorrect kmalloc usage in lpm_trie MAP_GET_NEXT_KEY rcu region
WARNING in xdp_rxq_info_unreg bpf net C 198 2307d 2308d 4/26 2298d c13da21cdb80 tun: avoid calling xdp_rxq_info_unreg() twice
suspicious RCU usage at ./include/linux/rcupdate.h:LINE (3) bpf C 5087 2299d 2308d 4/26 2298d 2310035fa03f bpf: fix incorrect kmalloc usage in lpm_trie MAP_GET_NEXT_KEY rcu region
KASAN: slab-out-of-bounds Read in map_lookup_elem bpf C 6 2315d 2318d 4/26 2307d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
WARNING in ___bpf_prog_run bpf C 28 2313d 2320d 4/26 2308d 7891a87efc71 bpf: arsh is not supported in 32 bit alu thus reject it
KASAN: use-after-free Write in array_map_update_elem bpf C 11 2313d 2315d 4/26 2308d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
KASAN: slab-out-of-bounds Write in array_map_update_elem bpf C 6 2316d 2315d 4/26 2308d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
BUG: unable to handle kernel paging request in bpf_fd_array_map_lookup_elem bpf 5 2314d 2318d 4/26 2308d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
KASAN: slab-out-of-bounds Read in perf_event_fd_array_release bpf C 96 2313d 2320d 4/26 2308d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
general protection fault in __bpf_prog_put bpf C 212 2313d 2320d 4/26 2308d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
BUG: unable to handle kernel paging request in fd_array_map_delete_elem bpf 11 2314d 2320d 4/26 2308d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
divide error in ___bpf_prog_run bpf C 28 2310d 2318d 4/26 2308d 68fda450a7df bpf: fix 32-bit divide by zero
WARNING in adjust_ptr_min_max_vals bpf C 252 2310d 2327d 4/26 2308d 6f16101e6a8b bpf: mark dst unknown on inconsistent {s, u}bounds adjustments
general protection fault in cgroup_fd_array_put_ptr bpf C 219 2313d 2320d 4/26 2308d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
KASAN: use-after-free Read in bpf_fd_array_map_lookup_elem bpf 21 2314d 2320d 4/26 2308d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
general protection fault in __bpf_map_put bpf C 331 2313d 2320d 4/26 2308d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
BUG: unable to handle kernel paging request in __bpf_map_put bpf 1 2317d 2317d 4/26 2308d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
KASAN: slab-out-of-bounds Read in bpf_fd_array_map_lookup_elem bpf 7 2315d 2319d 4/26 2308d bbeb6e4323da bpf, array: fix overflow in max_entries and undefined behavior in index_mask
general protection fault in free_verifier_state bpf C 2 2340d 2340d 3/26 2334d 8c01c4f896aa bpf: fix verifier NULL pointer dereference
general protection fault in bpf_check bpf 3 2384d 2389d 3/26 2363d 8c01c4f896aa bpf: fix verifier NULL pointer dereference