syzbot

 sign-in | mailing list | source | docs
🐞 Open [1504]
Subsystems
🐞 Fixed [6514]
🐞 Invalid [16574]
Missing Backports [204]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

Applied filters: Label=subsystems:crypto (drop)
Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Closed Patch
KASAN: use-after-free Write in __crypto_shash_import crypto 24 C done 40 83d 84d 29/29 42d 0a84874c7e7d crypto: shash - Fix buffer overrun in import function
BUG: sleeping function called from invalid context in crypto_put_default_null_skcipher crypto 5 C error 5 231d 231d 28/29 69d dcc47a028c24 crypto: null - Use spin lock instead of mutex 5b0af621c3f6 net: restrict SO_REUSEPORT to inet sockets
possible deadlock in crypto_exit_scomp_ops_async crypto 4 2 166d 175d 28/29 69d c11bcbc0a517 mm: zswap: fix crypto_free_acomp() deadlock in zswap_cpu_comp_dead()
general protection fault in crypto_skcipher_encrypt crypto 8 C error 66 434d 461d 25/29 434d c06a8b75679d bcachefs: Fix bch2_alloc_ciphers()
inconsistent lock state in padata_do_parallel (2) crypto 4 2 504d 504d 25/29 439d 58329c431203 padata: Disable BH when taking works lock on MT path
KMSAN: uninit-value in des3_ede_decrypt crypto 7 1 549d 545d 25/29 508d 7cfc2ab3f025 crypto: lskcipher - Copy IV in lskcipher glue code always
KMSAN: uninit-value in af_alg_free_sg (2) crypto 7 1 588d 582d 25/29 511d 24c890dd712f crypto: algif_hash - Remove bogus SGL free on zero-length error path
KASAN: invalid-access Read in neon_aes_ctr_encrypt arm crypto 17 C 3 538d 549d 25/29 511d 1c0cf6d19690 crypto: arm64/neonbs - fix out-of-bounds access on short input
BUG: unable to handle kernel NULL pointer dereference in crypto_arc4_crypt crypto 10 C done 4 569d 567d 25/29 511d 69fba378edca crypto: cbc - Ensure statesize is zero
general protection fault in scatterwalk_copychunks (5) crypto 2 C done 2920 594d 601d 25/29 566d 744e1885922a crypto: scomp - fix req->dst buffer overflow
KASAN: slab-out-of-bounds Read in arc4_crypt crypto 17 C done 6 598d 609d 25/29 566d 37c6fc323a81 crypto: skcipher - Pass statesize for simple lskcipher instances
INFO: task hung in hwrng_fillfn crypto 1 C error 27 568d 632d 25/29 566d 78aafb3884f6 hwrng: core - Fix page fault dead lock on mmap-ed hwrng
general protection fault in scatterwalk_copychunks (4) net crypto 19 C done done 1341 605d 1616d 25/29 605d cfaa80c91f6f net/tls: do not free tls_rec on async operation in bpf_exec_tx_verdict()
KCSAN: data-race in random_recv_done / virtio_read (3) crypto 6 13 786d 850d 23/29 676d ac52578d6e8d hwrng: virtio - Fix race on data_avail and actual data
KMSAN: uninit-value in af_alg_free_resources crypto 7 C 156 729d 766d 23/29 676d 080aa61e370b crypto: fix uninit-value in af_alg_free_resources
KASAN: slab-out-of-bounds Read in extract_iter_to_sg crypto 17 C done 13 794d 798d 23/29 690d 4380499218c6 crypto: Fix af_alg_sendmsg(MSG_SPLICE_PAGES) sglist limit b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in shash_async_final crypto 2 C done 13 790d 798d 23/29 690d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in crypto_shash_final crypto 2 C done 2 801d 798d 23/29 690d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
WARNING in extract_iter_to_sg crypto -1 1 775d 775d 23/29 690d 3fc40265ae2b iov_iter: Kill ITER_PIPE
general protection fault in shash_async_update crypto 2 C done done 12 790d 787d 23/29 690d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in shash_ahash_update crypto 2 C done done 5 791d 791d 23/29 690d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in shash_async_export crypto 2 C done 25 792d 798d 23/29 690d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in cryptd_hash_export crypto 2 C done done 12 790d 798d 23/29 690d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in crypto_shash_finup crypto 2 C done 6 791d 798d 23/29 690d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in __aria_aesni_avx_gfni_crypt_16way crypto 2 C 49 817d 833d 22/29 779d 6ab39f99927e crypto: x86/aria - Use 16 byte alignment for GFNI constant vectors
net boot error: INFO: task hung in add_early_randomness crypto -1 18 1159d 1165d 22/29 906d 228432551bd8 virtio-rng: make device ready before making request
memory leak in crypto_create_tfm_node ext4 crypto 3 C 3 1036d 1042d 22/29 906d ccd30a476f8e fscrypt: fix keyring memory leak on mount failure
inconsistent lock state in padata_do_serial (2) crypto 4 1 1069d 1065d 22/29 906d 34c3a47d20ae padata: Always leave BHs disabled when running ->parallel()
usb-testing boot error: INFO: task hung in add_early_randomness crypto -1 7 1162d 1168d 22/29 906d 228432551bd8 virtio-rng: make device ready before making request
net-next boot error: INFO: task hung in add_early_randomness crypto -1 23 1159d 1165d 22/29 906d 228432551bd8 virtio-rng: make device ready before making request
upstream boot error: INFO: task hung in hwrng_register crypto -1 23 1164d 1171d 22/29 906d 228432551bd8 virtio-rng: make device ready before making request
bpf boot error: INFO: task hung in add_early_randomness crypto -1 13 1157d 1165d 22/29 906d 228432551bd8 virtio-rng: make device ready before making request
riscv/fixes boot error: INFO: task hung in add_early_randomness crypto -1 8 1108d 1159d 22/29 906d 228432551bd8 virtio-rng: make device ready before making request
linux-next boot error: WARNING in kthread_should_stop crypto -1 6 1014d 1014d 22/29 906d db516da95ce4 hw_random: use add_hwgenerator_randomness() for early entropy
KASAN: use-after-free Write in null_skcipher_crypt crypto 24 C done 3 1264d 1462d 22/29 906d ebe48d368e97 esp: Fix possible buffer overflow in ESP transformation
linux-next boot error: INFO: task hung in add_early_randomness (2) crypto -1 14 1167d 1173d 22/29 906d 228432551bd8 virtio-rng: make device ready before making request
INFO: task hung in add_early_randomness (2) usb crypto 1 C done 182 954d 1172d 22/29 906d 228432551bd8 virtio-rng: make device ready before making request
upstream boot error: INFO: task hung in add_early_randomness crypto -1 125 1164d 1171d 22/29 906d 228432551bd8 virtio-rng: make device ready before making request
KASAN: use-after-free Read in __crypto_xor crypto 19 C done 9 1414d 1446d 20/29 1259d 68b6dea802ce crypto: pcrypt - Delay write to padata->info da353fac65fe net/tls: Fix flipped sign in tls_err_abort() calls
INFO: task hung in set_current_rng crypto usb 1 C unreliable done 1 1386d 1504d 20/29 1259d 2bb31abdbe55 hwrng: virtio - don't wait on cleanup
INFO: task hung in hwrng_register crypto usb 1 syz unreliable done 1 1406d 1462d 20/29 1259d 2bb31abdbe55 hwrng: virtio - don't wait on cleanup
general protection fault in crypto_destroy_tfm crypto 2 syz unreliable 57 1592d 1633d 20/29 1378d 83681f2bebb3 crypto: api - check for ERR pointers in crypto_destroy_tfm()
UBSAN: array-index-out-of-bounds in alg_bind crypto 15 C error 700 1708d 1767d 19/29 1623d 92eb6c3060eb crypto: af_alg - avoid undefined behavior accessing salg_name
INFO: rcu detected stall in sys_open (2) crypto 1 C done done 42 1742d 2093d 15/29 1699d 1d0e850a49a5 afs: Fix cell removal
inconsistent lock state in padata_do_parallel crypto 4 9 1792d 1812d 15/29 1774d 1b0df11fde0f padata: fix possible padata_works_lock deadlock
WARNING: refcount bug in crypto_mod_get crypto 13 C done 2 1924d 1935d 15/29 1858d 6603523bf5e4 crypto: api - Fix use-after-free and race in crypto_spawn_alg
BUG: unable to handle kernel NULL pointer dereference in mpihelp_addmul_1 crypto 10 1 1888d 1888d 15/29 1858d 3021e69219e2 kcov: check kcov_softirq in kcov_remote_stop()
memory leak in crypto_create_tfm crypto 3 C 14 1886d 1903d 15/29 1858d 819966c06b75 crypto: drbg - always try to free Jitter RNG instance
WARNING: refcount bug in crypto_destroy_tfm crypto 13 C done 4 1937d 1960d 15/29 1858d 6603523bf5e4 crypto: api - Fix use-after-free and race in crypto_spawn_alg
KASAN: use-after-free Read in chaoskey_disconnect crypto usb 19 C 44 2091d 2119d 15/29 1887d 93ddb1f56ae1 USB: chaoskey: fix use-after-free on release
WARNING in af_alg_make_sg crypto -1 C done 13 1958d 1958d 15/29 1926d ae46d2aa6a7f mm/gup: Let __get_user_pages_locked() return -EINTR for fatal signal
general protection fault in gcmaes_crypt_by_sg (2) crypto 2 C error done 28 2037d 2084d 15/29 1986d db885e66d268 net/tls: fix async operation
INFO: task hung in aead_recvmsg crypto 1 C done 11991 2034d 2808d 15/29 2008d bbefa1dd6a6d crypto: pcrypt - Avoid deadlock by using per-instance padata queues
KMSAN: uninit-value in __crc32c_le_base crypto 7 syz 567 2049d 2095d 15/29 2013d b6f3320b1d52 sctp: fully initialize v4 addr in some functions
KMSAN: uninit-value in gf128mul_4k_lle (3) crypto 7 C 2958 2095d 2460d 14/29 2089d 683916f6a840 net/tls: fix sk_msg trim on fallback to copy mode
KMSAN: uninit-value in aesti_encrypt crypto 7 C 54 2143d 2244d 14/29 2089d 683916f6a840 net/tls: fix sk_msg trim on fallback to copy mode
KASAN: use-after-free Read in crypto_gcm_init_common crypto 19 C done done 14 2412d 2477d 13/29 2110d 9354544cbccf net/tls: fix page double free on TX cleanup
memory leak in mpihelp_mul_karatsuba_case crypto 3 C 2 2247d 2247d 12/29 2212d c8ea9fce2baf lib/mpi: Fix karactx leak in mpi_powm
BUG: sleeping function called from invalid context at crypto/skcipher.c:LINE crypto -1 1 2319d 2318d 12/29 2275d 44427c0fbc09 crypto: xts - Fix atomic sleep when walking skcipher
general protection fault in crypto_remove_spawns (2) crypto 2 2 2402d 2408d 11/29 2357d 6db43410179b crypto: adiantum - initialize crypto_spawn::inst
general protection fault in gcmaes_crypt_by_sg crypto 2 3 2500d 2508d 11/29 2365d d829e9c4112b tls: convert to generic sk_msg interface
KASAN: use-after-free Read in skcipher_recvmsg crypto 19 6 2458d 2482d 11/29 2412d f7d76e05d058 crypto: user - fix use_after_free of struct xxx_request
BUG: sleeping function called from invalid context at mm/slab.h:LINE (4) crypto -1 C 36 2436d 2597d 11/29 2412d f9c9bdb5131e crypto: x86/chacha - avoid sleeping under kernel_fpu_begin()
BUG: unable to handle kernel NULL pointer dereference in sha256_mb_mgr_get_comp_job_avx2 crypto 10 1 2505d 2504d 11/29 2471d ab8085c130ed crypto: x86 - remove SHA multibuffer routines and mcryptd
KASAN: use-after-free Read in sha_complete_job crypto 19 1 2510d 2509d 11/29 2471d ab8085c130ed crypto: x86 - remove SHA multibuffer routines and mcryptd
KASAN: use-after-free Read in sha512_ctx_mgr_resubmit crypto 19 C 4 2510d 2560d 11/29 2471d ab8085c130ed crypto: x86 - remove SHA multibuffer routines and mcryptd
BUG: unable to handle kernel NULL pointer dereference in sha1_mb_mgr_get_comp_job_avx2 crypto 10 1 2518d 2518d 11/29 2471d ab8085c130ed crypto: x86 - remove SHA multibuffer routines and mcryptd
KASAN: slab-out-of-bounds Write in crypto_dh_encode_key crypto 23 C 1401 2569d 2597d 8/29 2547d 35f7d5225ffc crypto: dh - fix calculating encoded key size
KASAN: slab-out-of-bounds Write in vmac_final crypto 23 C 2 2624d 2620d 8/29 2547d bb2964810233 crypto: vmac - separate tfm and request context
KMSAN: uninit-value in af_alg_free_areq_sgls crypto 7 C 640 2582d 2689d 8/29 2568d 2546da99212f crypto: af_alg - Initialize sg_num_bytes in error code path
KASAN: slab-out-of-bounds Write in sha512_final crypto 23 C 21 2609d 2627d 8/29 2597d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in rmd320_final crypto 23 C 44 2609d 2629d 8/29 2597d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Read in crypto_morus640_decrypt_chunk crypto 17 C 8 2616d 2623d 8/29 2597d a81ae8095712 crypto: morus640 - Fix out-of-bounds access
KASAN: slab-out-of-bounds Write in tgr192_final crypto 23 C 30 2609d 2628d 8/29 2597d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in wp384_final crypto 23 C 27 2609d 2628d 8/29 2597d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in crypto_sha3_final crypto 23 C 68 2609d 2628d 8/29 2597d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in sha1_finup crypto 23 C 119 2609d 2629d 8/29 2597d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in sha1_final crypto 23 C 201 2609d 2629d 8/29 2597d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in tgr160_final crypto 23 C 55 2609d 2629d 8/29 2597d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: use-after-free Read in crypto_morus640_decrypt_chunk crypto 19 C 3 2623d 2623d 8/29 2597d a81ae8095712 crypto: morus640 - Fix out-of-bounds access
KASAN: slab-out-of-bounds Write in sha512_finup crypto 23 C 25 2610d 2626d 8/29 2597d 3619dec5103d dh key: fix rounding up KDF output length
KMSAN: uninit-value in alg_bind crypto 7 C 1950 2659d 2690d 5/29 2659d a466856e0b7a crypto: af_alg - fix possible uninit-value in alg_bind()
BUG: unable to handle kernel NULL pointer dereference in sha512_mb_mgr_get_comp_job_avx2 crypto 10 syz 32 2761d 2815d 4/29 2730d eff84b379089 crypto: sha512-mb - initialize pending lengths correctly
KASAN: slab-out-of-bounds Write in sha3_update (2) crypto 23 C 49 2757d 2796d 4/29 2755d 9fa68f620041 crypto: hash - prevent using keyed hashes without setting key
BUG: sleeping function called from invalid context at net/core/sock.c:LINE (2) crypto -1 185 2820d 2817d 4/29 2755d 7d2c3f54e6f6 crypto: af_alg - remove locking in async callback
general protection fault in crypto_remove_spawns crypto 2 C 85 2783d 2821d 3/29 2769d 9a00674213a3 crypto: algapi - fix NULL dereference in crypto_remove_spawns()
BUG: unable to handle kernel NULL pointer dereference in blkcipher_walk_done crypto 10 C 2 2804d 2804d 3/29 2777d e57121d08c38 crypto: chacha20poly1305 - validate the digest size
general protection fault in skcipher_walk_done crypto 2 C 8 2779d 2799d 3/29 2777d e57121d08c38 crypto: chacha20poly1305 - validate the digest size
KASAN: use-after-free Read in __list_del_entry_valid (2) crypto 19 C 11 2799d 2800d 3/29 2777d d76c68109f37 crypto: pcrypt - fix freeing pcrypt instances
BUG: unable to handle kernel NULL pointer dereference in scatterwalk_copychunks crypto 10 C 3 2803d 2804d 3/29 2777d e57121d08c38 crypto: chacha20poly1305 - validate the digest size
KASAN: wild-memory-access Write in scatterwalk_copychunks crypto 23 C 15 2782d 2808d 3/29 2777d e57121d08c38 crypto: chacha20poly1305 - validate the digest size
general protection fault in scatterwalk_copychunks (2) crypto 2 C 141 2783d 2809d 3/29 2777d e57121d08c38 crypto: chacha20poly1305 - validate the digest size
KASAN: use-after-free Write in aead_recvmsg crypto 24 C 21 2797d 2814d 3/29 2785d d53c51357923 crypto: af_alg - fix race accessing cipher request
possible deadlock (2) crypto -1 2 2805d 2807d 3/29 2785d 2b4f27c36bcd crypto: skcipher - set walk.iv for zero-length inputs
general protection fault in blkcipher_walk_done crypto 2 C 47 2785d 2821d 3/29 2785d 11edb555966e crypto: af_alg - wait for data at beginning of recvmsg
KASAN: global-out-of-bounds Read in crypto_chacha20_crypt crypto 17 C 74 2798d 2801d 3/29 2785d 2b4f27c36bcd crypto: skcipher - set walk.iv for zero-length inputs
general protection fault in blkcipher_walk_first crypto 2 C 7 2796d 2807d 3/29 2785d 11edb555966e crypto: af_alg - wait for data at beginning of recvmsg
general protection fault in crypto_chacha20_crypt crypto 2 C 2374 2789d 2820d 3/29 2785d 2b4f27c36bcd crypto: skcipher - set walk.iv for zero-length inputs
KASAN: use-after-free in aead_recvmsg crypto 19 2 2809d 2809d 3/29 2791d b32a7dc8aef1 crypto: algif_aead - fix reference counting of null skcipher
general protection fault in af_alg_free_areq_sgls crypto 2 C 2916 2802d 2821d 3/29 2797d 887207ed9e58 crypto: af_alg - fix NULL pointer dereference in
general protection fault in strcmp crypto keyrings 2 1 2818d 2818d 3/29 2797d 18026d866801 KEYS: reject NULL restriction string when type is specified
general protection fault in kfree crypto 2 13 2809d 2817d 3/29 2797d ecaaab564978 crypto: salsa20 - fix blkcipher_walk API usage
general protection fault in ___cache_free crypto 2 1 2808d 2803d 3/29 2797d ecaaab564978 crypto: salsa20 - fix blkcipher_walk API usage
KASAN: stack-out-of-bounds Write in sha3_update crypto 23 C 5 2824d 2820d 3/29 2797d af3ff8045bbf crypto: hmac - require that the underlying hash algorithm is unkeyed
KASAN: use-after-free Read in aead_recvmsg crypto 19 C 4338 2801d 2821d 3/29 2797d b32a7dc8aef1 crypto: algif_aead - fix reference counting of null skcipher
general protection fault in scatterwalk_copychunks crypto 2 C 414 2811d 2820d 3/29 2811d 8e1fa89aa8bc crypto: algif_aead - skip SGL entries with NULL page
KASAN: use-after-free Read in mpi_free crypto 19 C 27 2831d 2838d 3/29 2821d 12d41a023efb crypto: dh - Fix double free of ctx->p
BUG: sleeping function called from invalid context at net/core/sock.c:LINE crypto -1 C 407 2821d 2860d 3/29 2821d 829385f08ae9 strparser: Use delayed work instead of timer for msg timeout
general protection fault in asn1_ber_decoder crypto keyrings 2 C 5009 2838d 2842d 3/29 2831d 624f5ab8720b KEYS: fix NULL pointer dereference during ASN.1 parsing [ver #2]
KASAN: slab-out-of-bounds Read in asn1_ber_decoder keyrings crypto 17 C 17 2838d 2843d 3/29 2838d 2eb9eabf1e86 KEYS: fix out-of-bounds read during ASN.1 parsing