syzbot

 sign-in | mailing list | source | docs
🐞 Open [1505]
Subsystems
🐞 Fixed [6511]
🐞 Invalid [16559]
Missing Backports [204]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

Applied filters: Label=subsystems:crypto (drop)
Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Closed Patch
KASAN: use-after-free Write in __crypto_shash_import crypto 24 C done 40 80d 82d 29/29 39d 0a84874c7e7d crypto: shash - Fix buffer overrun in import function
BUG: sleeping function called from invalid context in crypto_put_default_null_skcipher crypto 5 C error 5 228d 228d 28/29 66d dcc47a028c24 crypto: null - Use spin lock instead of mutex 5b0af621c3f6 net: restrict SO_REUSEPORT to inet sockets
possible deadlock in crypto_exit_scomp_ops_async crypto 4 2 163d 172d 28/29 66d c11bcbc0a517 mm: zswap: fix crypto_free_acomp() deadlock in zswap_cpu_comp_dead()
general protection fault in crypto_skcipher_encrypt crypto 8 C error 66 431d 458d 25/29 431d c06a8b75679d bcachefs: Fix bch2_alloc_ciphers()
inconsistent lock state in padata_do_parallel (2) crypto 4 2 502d 501d 25/29 437d 58329c431203 padata: Disable BH when taking works lock on MT path
KMSAN: uninit-value in des3_ede_decrypt crypto 7 1 546d 542d 25/29 506d 7cfc2ab3f025 crypto: lskcipher - Copy IV in lskcipher glue code always
KMSAN: uninit-value in af_alg_free_sg (2) crypto 7 1 585d 580d 25/29 508d 24c890dd712f crypto: algif_hash - Remove bogus SGL free on zero-length error path
KASAN: invalid-access Read in neon_aes_ctr_encrypt arm crypto 17 C 3 535d 546d 25/29 508d 1c0cf6d19690 crypto: arm64/neonbs - fix out-of-bounds access on short input
BUG: unable to handle kernel NULL pointer dereference in crypto_arc4_crypt crypto 10 C done 4 566d 565d 25/29 509d 69fba378edca crypto: cbc - Ensure statesize is zero
general protection fault in scatterwalk_copychunks (5) crypto 2 C done 2920 592d 598d 25/29 563d 744e1885922a crypto: scomp - fix req->dst buffer overflow
KASAN: slab-out-of-bounds Read in arc4_crypt crypto 17 C done 6 596d 606d 25/29 563d 37c6fc323a81 crypto: skcipher - Pass statesize for simple lskcipher instances
INFO: task hung in hwrng_fillfn crypto 1 C error 27 566d 630d 25/29 563d 78aafb3884f6 hwrng: core - Fix page fault dead lock on mmap-ed hwrng
general protection fault in scatterwalk_copychunks (4) net crypto 19 C done done 1341 602d 1614d 25/29 602d cfaa80c91f6f net/tls: do not free tls_rec on async operation in bpf_exec_tx_verdict()
KCSAN: data-race in random_recv_done / virtio_read (3) crypto 6 13 783d 847d 23/29 674d ac52578d6e8d hwrng: virtio - Fix race on data_avail and actual data
KMSAN: uninit-value in af_alg_free_resources crypto 7 C 156 726d 764d 23/29 674d 080aa61e370b crypto: fix uninit-value in af_alg_free_resources
KASAN: slab-out-of-bounds Read in extract_iter_to_sg crypto 17 C done 13 791d 796d 23/29 687d 4380499218c6 crypto: Fix af_alg_sendmsg(MSG_SPLICE_PAGES) sglist limit b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in shash_async_final crypto 2 C done 13 788d 796d 23/29 687d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in crypto_shash_final crypto 2 C done 2 799d 796d 23/29 687d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
WARNING in extract_iter_to_sg crypto -1 1 772d 772d 23/29 687d 3fc40265ae2b iov_iter: Kill ITER_PIPE
general protection fault in shash_async_update crypto 2 C done done 12 787d 784d 23/29 687d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in shash_ahash_update crypto 2 C done done 5 789d 788d 23/29 687d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in shash_async_export crypto 2 C done 25 790d 796d 23/29 687d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in cryptd_hash_export crypto 2 C done done 12 788d 796d 23/29 687d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in crypto_shash_finup crypto 2 C done 6 788d 796d 23/29 687d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in __aria_aesni_avx_gfni_crypt_16way crypto 2 C 49 814d 831d 22/29 776d 6ab39f99927e crypto: x86/aria - Use 16 byte alignment for GFNI constant vectors
net boot error: INFO: task hung in add_early_randomness crypto -1 18 1156d 1163d 22/29 904d 228432551bd8 virtio-rng: make device ready before making request
memory leak in crypto_create_tfm_node ext4 crypto 3 C 3 1034d 1039d 22/29 904d ccd30a476f8e fscrypt: fix keyring memory leak on mount failure
inconsistent lock state in padata_do_serial (2) crypto 4 1 1066d 1062d 22/29 904d 34c3a47d20ae padata: Always leave BHs disabled when running ->parallel()
usb-testing boot error: INFO: task hung in add_early_randomness crypto -1 7 1159d 1166d 22/29 904d 228432551bd8 virtio-rng: make device ready before making request
net-next boot error: INFO: task hung in add_early_randomness crypto -1 23 1156d 1163d 22/29 904d 228432551bd8 virtio-rng: make device ready before making request
upstream boot error: INFO: task hung in hwrng_register crypto -1 23 1162d 1169d 22/29 904d 228432551bd8 virtio-rng: make device ready before making request
bpf boot error: INFO: task hung in add_early_randomness crypto -1 13 1155d 1163d 22/29 904d 228432551bd8 virtio-rng: make device ready before making request
riscv/fixes boot error: INFO: task hung in add_early_randomness crypto -1 8 1106d 1156d 22/29 904d 228432551bd8 virtio-rng: make device ready before making request
linux-next boot error: WARNING in kthread_should_stop crypto -1 6 1011d 1011d 22/29 904d db516da95ce4 hw_random: use add_hwgenerator_randomness() for early entropy
KASAN: use-after-free Write in null_skcipher_crypt crypto 24 C done 3 1261d 1459d 22/29 904d ebe48d368e97 esp: Fix possible buffer overflow in ESP transformation
linux-next boot error: INFO: task hung in add_early_randomness (2) crypto -1 14 1165d 1171d 22/29 904d 228432551bd8 virtio-rng: make device ready before making request
INFO: task hung in add_early_randomness (2) usb crypto 1 C done 182 951d 1170d 22/29 904d 228432551bd8 virtio-rng: make device ready before making request
upstream boot error: INFO: task hung in add_early_randomness crypto -1 125 1161d 1169d 22/29 904d 228432551bd8 virtio-rng: make device ready before making request
KASAN: use-after-free Read in __crypto_xor crypto 19 C done 9 1412d 1443d 20/29 1256d 68b6dea802ce crypto: pcrypt - Delay write to padata->info da353fac65fe net/tls: Fix flipped sign in tls_err_abort() calls
INFO: task hung in set_current_rng crypto usb 1 C unreliable done 1 1383d 1501d 20/29 1256d 2bb31abdbe55 hwrng: virtio - don't wait on cleanup
INFO: task hung in hwrng_register crypto usb 1 syz unreliable done 1 1403d 1459d 20/29 1256d 2bb31abdbe55 hwrng: virtio - don't wait on cleanup
general protection fault in crypto_destroy_tfm crypto 2 syz unreliable 57 1589d 1630d 20/29 1375d 83681f2bebb3 crypto: api - check for ERR pointers in crypto_destroy_tfm()
UBSAN: array-index-out-of-bounds in alg_bind crypto 15 C error 700 1705d 1765d 19/29 1620d 92eb6c3060eb crypto: af_alg - avoid undefined behavior accessing salg_name
INFO: rcu detected stall in sys_open (2) crypto 1 C done done 42 1740d 2090d 15/29 1697d 1d0e850a49a5 afs: Fix cell removal
inconsistent lock state in padata_do_parallel crypto 4 9 1789d 1809d 15/29 1771d 1b0df11fde0f padata: fix possible padata_works_lock deadlock
WARNING: refcount bug in crypto_mod_get crypto 13 C done 2 1921d 1932d 15/29 1855d 6603523bf5e4 crypto: api - Fix use-after-free and race in crypto_spawn_alg
BUG: unable to handle kernel NULL pointer dereference in mpihelp_addmul_1 crypto 10 1 1886d 1886d 15/29 1855d 3021e69219e2 kcov: check kcov_softirq in kcov_remote_stop()
memory leak in crypto_create_tfm crypto 3 C 14 1883d 1900d 15/29 1855d 819966c06b75 crypto: drbg - always try to free Jitter RNG instance
WARNING: refcount bug in crypto_destroy_tfm crypto 13 C done 4 1935d 1957d 15/29 1855d 6603523bf5e4 crypto: api - Fix use-after-free and race in crypto_spawn_alg
KASAN: use-after-free Read in chaoskey_disconnect crypto usb 19 C 44 2088d 2117d 15/29 1884d 93ddb1f56ae1 USB: chaoskey: fix use-after-free on release
WARNING in af_alg_make_sg crypto -1 C done 13 1955d 1956d 15/29 1924d ae46d2aa6a7f mm/gup: Let __get_user_pages_locked() return -EINTR for fatal signal
general protection fault in gcmaes_crypt_by_sg (2) crypto 2 C error done 28 2035d 2082d 15/29 1983d db885e66d268 net/tls: fix async operation
INFO: task hung in aead_recvmsg crypto 1 C done 11991 2032d 2806d 15/29 2005d bbefa1dd6a6d crypto: pcrypt - Avoid deadlock by using per-instance padata queues
KMSAN: uninit-value in __crc32c_le_base crypto 7 syz 567 2047d 2092d 15/29 2010d b6f3320b1d52 sctp: fully initialize v4 addr in some functions
KMSAN: uninit-value in gf128mul_4k_lle (3) crypto 7 C 2958 2092d 2457d 14/29 2086d 683916f6a840 net/tls: fix sk_msg trim on fallback to copy mode
KMSAN: uninit-value in aesti_encrypt crypto 7 C 54 2140d 2241d 14/29 2086d 683916f6a840 net/tls: fix sk_msg trim on fallback to copy mode
KASAN: use-after-free Read in crypto_gcm_init_common crypto 19 C done done 14 2409d 2474d 13/29 2108d 9354544cbccf net/tls: fix page double free on TX cleanup
memory leak in mpihelp_mul_karatsuba_case crypto 3 C 2 2244d 2245d 12/29 2210d c8ea9fce2baf lib/mpi: Fix karactx leak in mpi_powm
BUG: sleeping function called from invalid context at crypto/skcipher.c:LINE crypto -1 1 2317d 2316d 12/29 2273d 44427c0fbc09 crypto: xts - Fix atomic sleep when walking skcipher
general protection fault in crypto_remove_spawns (2) crypto 2 2 2400d 2406d 11/29 2355d 6db43410179b crypto: adiantum - initialize crypto_spawn::inst
general protection fault in gcmaes_crypt_by_sg crypto 2 3 2497d 2506d 11/29 2362d d829e9c4112b tls: convert to generic sk_msg interface
KASAN: use-after-free Read in skcipher_recvmsg crypto 19 6 2455d 2479d 11/29 2409d f7d76e05d058 crypto: user - fix use_after_free of struct xxx_request
BUG: sleeping function called from invalid context at mm/slab.h:LINE (4) crypto -1 C 36 2434d 2595d 11/29 2409d f9c9bdb5131e crypto: x86/chacha - avoid sleeping under kernel_fpu_begin()
BUG: unable to handle kernel NULL pointer dereference in sha256_mb_mgr_get_comp_job_avx2 crypto 10 1 2502d 2502d 11/29 2468d ab8085c130ed crypto: x86 - remove SHA multibuffer routines and mcryptd
KASAN: use-after-free Read in sha_complete_job crypto 19 1 2508d 2506d 11/29 2468d ab8085c130ed crypto: x86 - remove SHA multibuffer routines and mcryptd
KASAN: use-after-free Read in sha512_ctx_mgr_resubmit crypto 19 C 4 2507d 2557d 11/29 2468d ab8085c130ed crypto: x86 - remove SHA multibuffer routines and mcryptd
BUG: unable to handle kernel NULL pointer dereference in sha1_mb_mgr_get_comp_job_avx2 crypto 10 1 2516d 2515d 11/29 2468d ab8085c130ed crypto: x86 - remove SHA multibuffer routines and mcryptd
KASAN: slab-out-of-bounds Write in crypto_dh_encode_key crypto 23 C 1401 2567d 2595d 8/29 2544d 35f7d5225ffc crypto: dh - fix calculating encoded key size
KASAN: slab-out-of-bounds Write in vmac_final crypto 23 C 2 2622d 2618d 8/29 2544d bb2964810233 crypto: vmac - separate tfm and request context
KMSAN: uninit-value in af_alg_free_areq_sgls crypto 7 C 640 2580d 2687d 8/29 2566d 2546da99212f crypto: af_alg - Initialize sg_num_bytes in error code path
KASAN: slab-out-of-bounds Write in sha512_final crypto 23 C 21 2607d 2624d 8/29 2594d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in rmd320_final crypto 23 C 44 2606d 2626d 8/29 2594d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Read in crypto_morus640_decrypt_chunk crypto 17 C 8 2614d 2621d 8/29 2594d a81ae8095712 crypto: morus640 - Fix out-of-bounds access
KASAN: slab-out-of-bounds Write in tgr192_final crypto 23 C 30 2606d 2625d 8/29 2594d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in wp384_final crypto 23 C 27 2607d 2626d 8/29 2594d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in crypto_sha3_final crypto 23 C 68 2607d 2626d 8/29 2594d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in sha1_finup crypto 23 C 119 2606d 2627d 8/29 2594d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in sha1_final crypto 23 C 201 2606d 2626d 8/29 2594d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in tgr160_final crypto 23 C 55 2607d 2626d 8/29 2594d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: use-after-free Read in crypto_morus640_decrypt_chunk crypto 19 C 3 2620d 2621d 8/29 2594d a81ae8095712 crypto: morus640 - Fix out-of-bounds access
KASAN: slab-out-of-bounds Write in sha512_finup crypto 23 C 25 2607d 2624d 8/29 2594d 3619dec5103d dh key: fix rounding up KDF output length
KMSAN: uninit-value in alg_bind crypto 7 C 1950 2656d 2688d 5/29 2656d a466856e0b7a crypto: af_alg - fix possible uninit-value in alg_bind()
BUG: unable to handle kernel NULL pointer dereference in sha512_mb_mgr_get_comp_job_avx2 crypto 10 syz 32 2759d 2812d 4/29 2727d eff84b379089 crypto: sha512-mb - initialize pending lengths correctly
KASAN: slab-out-of-bounds Write in sha3_update (2) crypto 23 C 49 2754d 2793d 4/29 2753d 9fa68f620041 crypto: hash - prevent using keyed hashes without setting key
BUG: sleeping function called from invalid context at net/core/sock.c:LINE (2) crypto -1 185 2817d 2815d 4/29 2753d 7d2c3f54e6f6 crypto: af_alg - remove locking in async callback
general protection fault in crypto_remove_spawns crypto 2 C 85 2780d 2818d 3/29 2766d 9a00674213a3 crypto: algapi - fix NULL dereference in crypto_remove_spawns()
KASAN: use-after-free Read in __list_del_entry_valid (2) crypto 19 C 11 2796d 2798d 3/29 2774d d76c68109f37 crypto: pcrypt - fix freeing pcrypt instances
general protection fault in skcipher_walk_done crypto 2 C 8 2776d 2796d 3/29 2774d e57121d08c38 crypto: chacha20poly1305 - validate the digest size
BUG: unable to handle kernel NULL pointer dereference in blkcipher_walk_done crypto 10 C 2 2801d 2801d 3/29 2774d e57121d08c38 crypto: chacha20poly1305 - validate the digest size
BUG: unable to handle kernel NULL pointer dereference in scatterwalk_copychunks crypto 10 C 3 2800d 2802d 3/29 2774d e57121d08c38 crypto: chacha20poly1305 - validate the digest size
KASAN: wild-memory-access Write in scatterwalk_copychunks crypto 23 C 15 2779d 2806d 3/29 2774d e57121d08c38 crypto: chacha20poly1305 - validate the digest size
general protection fault in scatterwalk_copychunks (2) crypto 2 C 141 2780d 2807d 3/29 2774d e57121d08c38 crypto: chacha20poly1305 - validate the digest size
general protection fault in blkcipher_walk_first crypto 2 C 7 2793d 2804d 3/29 2782d 11edb555966e crypto: af_alg - wait for data at beginning of recvmsg
general protection fault in crypto_chacha20_crypt crypto 2 C 2374 2786d 2817d 3/29 2782d 2b4f27c36bcd crypto: skcipher - set walk.iv for zero-length inputs
KASAN: global-out-of-bounds Read in crypto_chacha20_crypt crypto 17 C 74 2796d 2799d 3/29 2782d 2b4f27c36bcd crypto: skcipher - set walk.iv for zero-length inputs
general protection fault in blkcipher_walk_done crypto 2 C 47 2783d 2818d 3/29 2782d 11edb555966e crypto: af_alg - wait for data at beginning of recvmsg
possible deadlock (2) crypto -1 2 2803d 2805d 3/29 2782d 2b4f27c36bcd crypto: skcipher - set walk.iv for zero-length inputs
KASAN: use-after-free Write in aead_recvmsg crypto 24 C 21 2794d 2811d 3/29 2782d d53c51357923 crypto: af_alg - fix race accessing cipher request
KASAN: use-after-free in aead_recvmsg crypto 19 2 2806d 2806d 3/29 2789d b32a7dc8aef1 crypto: algif_aead - fix reference counting of null skcipher
general protection fault in af_alg_free_areq_sgls crypto 2 C 2916 2799d 2818d 3/29 2795d 887207ed9e58 crypto: af_alg - fix NULL pointer dereference in
general protection fault in kfree crypto 2 13 2806d 2815d 3/29 2795d ecaaab564978 crypto: salsa20 - fix blkcipher_walk API usage
KASAN: use-after-free Read in aead_recvmsg crypto 19 C 4338 2799d 2818d 3/29 2795d b32a7dc8aef1 crypto: algif_aead - fix reference counting of null skcipher
general protection fault in strcmp crypto keyrings 2 1 2816d 2815d 3/29 2795d 18026d866801 KEYS: reject NULL restriction string when type is specified
general protection fault in ___cache_free crypto 2 1 2805d 2801d 3/29 2795d ecaaab564978 crypto: salsa20 - fix blkcipher_walk API usage
KASAN: stack-out-of-bounds Write in sha3_update crypto 23 C 5 2821d 2818d 3/29 2795d af3ff8045bbf crypto: hmac - require that the underlying hash algorithm is unkeyed
general protection fault in scatterwalk_copychunks crypto 2 C 414 2808d 2817d 3/29 2808d 8e1fa89aa8bc crypto: algif_aead - skip SGL entries with NULL page
KASAN: use-after-free Read in mpi_free crypto 19 C 27 2828d 2836d 3/29 2818d 12d41a023efb crypto: dh - Fix double free of ctx->p
BUG: sleeping function called from invalid context at net/core/sock.c:LINE crypto -1 C 407 2819d 2858d 3/29 2819d 829385f08ae9 strparser: Use delayed work instead of timer for msg timeout
general protection fault in asn1_ber_decoder crypto keyrings 2 C 5009 2835d 2839d 3/29 2828d 624f5ab8720b KEYS: fix NULL pointer dereference during ASN.1 parsing [ver #2]
KASAN: slab-out-of-bounds Read in asn1_ber_decoder keyrings crypto 17 C 17 2836d 2841d 3/29 2835d 2eb9eabf1e86 KEYS: fix out-of-bounds read during ASN.1 parsing