syzbot


Applied filters: Label=subsystems:bridge (drop)
Title Repro Cause bisect Fix bisect Count Last Reported Patched Closed Patch
INFO: rcu detected stall in br_handle_frame (5) bridge syz 24 92d 121d 28/28 89d a1494d532e28 netdevsim: use cond_resched() in nsim_dev_trap_report_work()
KASAN: slab-use-after-free Read in br_multicast_port_group_expired bridge 1 228d 227d 28/28 129d 92c4ee25208d net: bridge: mcast: wait for previous gc cycles when removing port
WARNING: suspicious RCU usage in br_mst_set_state (2) bridge 10 235d 246d 26/28 215d 546ceb1dfdac net: bridge: mst: fix suspicious rcu usage in br_mst_set_state 36c92936e868 net: bridge: mst: pass vlan group directly to br_mst_vlan_set_state
KMSAN: uninit-value in br_dev_xmit (2) bridge C 2 277d 273d 25/28 249d 8bd67ebb50c0 net: bridge: xmit: make sure we have at least eth header len bytes
WARNING: suspicious RCU usage in br_mst_set_state bridge 45 249d 283d 25/28 249d 3a7c1661ae13 net: bridge: mst: fix vlan use-after-free
KASAN: slab-out-of-bounds Read in update_counters bridge netfilter C 3 310d 310d 25/28 263d 0c83842df40f netfilter: validate user input for expected length
KCSAN: data-race in br_handle_frame_finish / br_handle_frame_finish (8) bridge 1 512d 511d 25/28 417d 44bdb313da57 net: bridge: use DEV_STATS_INC()
WARNING in dev_index_reserve bridge C done 7120 488d 543d 23/28 486d f534f6581ec0 net: validate veth and vxcan peer ifindexes 30188bd7838c rtnetlink: Reject negative ifindexes in RTM_NEWLINK
KASAN: vmalloc-out-of-bounds Read in __ebt_unregister_table bridge netfilter C error 4 723d 723d 22/28 612d e58a171d35e3 netfilter: ebtables: fix table blob use-after-free
general protection fault in br_mst_info_size bridge C error 26 1053d 1056d 22/28 716d cde3fc244b3d net: bridge: mst: prevent NULL deref in br_mst_info_size()
memory leak in do_replace netfilter bridge C 1 878d 874d 22/28 716d 62ce44c4fff9 netfilter: ebtables: fix memory leak when blob is malformed
KASAN: slab-out-of-bounds Read in add_del_if bridge C unreliable 970 1279d 1255d 20/28 1188d 9384eacd80f3 net: core: don't call SIOCBRADD/DELIF for non-bridge devices
general protection fault in br_switchdev_fdb_notify bridge C error 82 1283d 1288d 20/28 1188d 0541a6293298 net: bridge: validate the NUD_PERMANENT bit when adding an extern_learn FDB entry
WARNING in compat_do_ebt_get_ctl bridge netfilter C done 15 1637d 1648d 15/28 1607d 5c04da55c754 netfilter: ebtables: reject bogus getopt len value
KASAN: slab-out-of-bounds Read in br_mrp_parse bridge C done 5 1725d 1726d 15/28 1668d 617504c67e01 bridge: mrp: Fix out-of-bounds read in br_mrp_parse
KASAN: use-after-free Read in br_dev_xmit bridge 1 1811d 1811d 15/28 1761d 823d81b0fa2c net: bridge: fix stale eth hdr pointer in br_dev_xmit
KMSAN: uninit-value in br_nf_forward_arp (3) bridge netfilter 2 1899d 1891d 15/28 1823d 5604285839aa net-backports: netfilter: bridge: make sure to pull arp header in br_nf_forward_arp()
KASAN: vmalloc-out-of-bounds Read in compat_copy_entries netfilter bridge C done 3 1884d 1884d 15/28 1823d e608f631f0ba netfilter: ebtables: compat: reject all padding in matches/watchers
memory leak in fdb_create (2) bridge C 1 1896d 1896d 15/28 1860d c4b4c421857d net: bridge: deny dev_set_mac_address() when unregistering
memory leak in fdb_create bridge C done 4 2018d 2058d 12/28 1993d d7bae09fa008 net: bridge: delete local fdb on device init failure
KASAN: use-after-free Read in brnf_exit_net bridge netfilter syz done 3 2059d 2062d 12/28 2015d 7e6daf50e1f4 netfilter: bridge: prevent UAF in brnf_exit_net()
KASAN: use-after-free Read in br_mdb_ip_get bridge 1 2205d 2205d 12/28 2081d 1515a63fc413 net: bridge: always clear mcast matching struct on reports and leaves
KMSAN: uninit-value in br_mdb_ip_get bridge 5 2145d 2204d 12/28 2081d 1515a63fc413 net: bridge: always clear mcast matching struct on reports and leaves
KASAN: use-after-free Read in br_multicast_rcv bridge 1 2164d 2164d 11/28 2145d 083b78a9ed64 ip: fix ip_mc_may_pull() return value
general protection fault in fdb_find_rcu bridge C 3 2238d 2234d 11/28 2217d f989d03ef25d net: rtnetlink: address is mandatory for rtnl_fdb_get
KASAN: use-after-free Read in nbp_vlan_rcu_free bridge 1 2282d 2282d 11/28 2256d 9d332e69c1dc net: bridge: fix vlan stats use-after-free on destruction
KMSAN: uninit-value in br_nf_forward_arp bridge netfilter 1 2446d 2442d 8/28 2399d b84bbaf7a6c8 packet: in packet_snd start writing at link layer allocation
KMSAN: uninit-value in ebt_stp_mt_check (2) bridge netfilter C 222 2407d 2439d 8/28 2407d c568503ef020 netfilter: x_tables: initialise match/target check parameter struct
WARNING in ebt_do_table bridge netfilter C 13 2416d 2441d 8/28 2407d 11ff7288beb2 netfilter: ebtables: reject non-bridge targets
KMSAN: uninit-value in ebt_stp_mt_check bridge netfilter C 211 2440d 2484d 5/28 2439d a4995684a949 netfilter: bridge: stp fix reference to uninitialized data
KASAN: stack-out-of-bounds Write in compat_copy_entries bridge netfilter syz 10 2444d 2483d 5/28 2439d 94c752f99954 netfilter: ebtables: handle string from userspace with care
WARNING: kobject bug in br_add_if bridge 41 2469d 2496d 5/28 2461d e8238fc2bd7b bridge: check iface upper dev when setting master via ioctl 3e14c6abbfb5 kobject: don't use WARN for registration failures
BUG: unable to handle kernel paging request in compat_copy_entries bridge netfilter syz 5 2535d 2533d 5/28 2483d b71812168571 netfilter: ebtables: CONFIG_COMPAT: don't trust userland offsets
BUG: unable to handle kernel paging request in ebt_among_mt_check (2) bridge netfilter C 946 2515d 2531d 4/28 2515d c8d70a700a5b netfilter: bridge: ebt_among: add more missing match size checks
WARNING in compat_copy_entries bridge netfilter C 434 2532d 2548d 4/28 2532d b71812168571 netfilter: ebtables: CONFIG_COMPAT: don't trust userland offsets
BUG: unable to handle kernel paging request in ebt_among_mt_check bridge netfilter C 823 2532d 2548d 4/28 2532d c4585a2823ed netfilter: bridge: ebt_among: add missing match size checks