syzbot

 sign-in | mailing list | source | docs
🐞 Open [1668]
Subsystems
🐞 Fixed [6092]
🐞 Invalid [15159]
Missing Backports [162]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

Applied filters: Label=subsystems:crypto (drop)
Title Repro Cause bisect Fix bisect Count Last Reported Patched Closed Patch
BUG: sleeping function called from invalid context in crypto_put_default_null_skcipher crypto C error 5 73d 73d 27/28 never 5b0af621c3f6 net: restrict SO_REUSEPORT to inet sockets
general protection fault in crypto_skcipher_encrypt crypto bcachefs C error 66 276d 303d 25/28 275d c06a8b75679d bcachefs: Fix bch2_alloc_ciphers()
inconsistent lock state in padata_do_parallel (2) crypto 2 346d 346d 25/28 281d 58329c431203 padata: Disable BH when taking works lock on MT path
KMSAN: uninit-value in des3_ede_decrypt crypto 1 391d 387d 25/28 350d 7cfc2ab3f025 crypto: lskcipher - Copy IV in lskcipher glue code always
KMSAN: uninit-value in af_alg_free_sg (2) crypto 1 430d 424d 25/28 353d 24c890dd712f crypto: algif_hash - Remove bogus SGL free on zero-length error path
KASAN: invalid-access Read in neon_aes_ctr_encrypt arm crypto C 3 380d 391d 25/28 353d 1c0cf6d19690 crypto: arm64/neonbs - fix out-of-bounds access on short input
BUG: unable to handle kernel NULL pointer dereference in crypto_arc4_crypt crypto C done 4 411d 409d 25/28 353d 69fba378edca crypto: cbc - Ensure statesize is zero
general protection fault in scatterwalk_copychunks (5) crypto C done 2920 436d 443d 25/28 408d 744e1885922a crypto: scomp - fix req->dst buffer overflow
KASAN: slab-out-of-bounds Read in arc4_crypt crypto C done 6 440d 451d 25/28 408d 37c6fc323a81 crypto: skcipher - Pass statesize for simple lskcipher instances
INFO: task hung in hwrng_fillfn crypto C error 27 410d 474d 25/28 408d 78aafb3884f6 hwrng: core - Fix page fault dead lock on mmap-ed hwrng
general protection fault in scatterwalk_copychunks (4) net crypto C done done 1341 447d 1458d 25/28 447d cfaa80c91f6f net/tls: do not free tls_rec on async operation in bpf_exec_tx_verdict()
KCSAN: data-race in random_recv_done / virtio_read (3) crypto 13 628d 692d 23/28 518d ac52578d6e8d hwrng: virtio - Fix race on data_avail and actual data
KMSAN: uninit-value in af_alg_free_resources crypto C 156 571d 608d 23/28 518d 080aa61e370b crypto: fix uninit-value in af_alg_free_resources
KASAN: slab-out-of-bounds Read in extract_iter_to_sg crypto C done 13 635d 640d 23/28 532d 4380499218c6 crypto: Fix af_alg_sendmsg(MSG_SPLICE_PAGES) sglist limit b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in shash_async_final crypto C done 13 632d 640d 23/28 532d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in crypto_shash_final crypto C done 2 643d 640d 23/28 532d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
WARNING in extract_iter_to_sg crypto 1 617d 617d 23/28 532d 3fc40265ae2b iov_iter: Kill ITER_PIPE
general protection fault in shash_async_update crypto C done done 12 632d 629d 23/28 532d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in shash_ahash_update crypto C done done 5 633d 633d 23/28 532d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in shash_async_export crypto C done 25 634d 640d 23/28 532d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in cryptd_hash_export crypto C done done 12 632d 640d 23/28 532d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in crypto_shash_finup crypto C done 6 633d 640d 23/28 532d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in __aria_aesni_avx_gfni_crypt_16way crypto C 49 659d 675d 22/28 621d 6ab39f99927e crypto: x86/aria - Use 16 byte alignment for GFNI constant vectors
net boot error: INFO: task hung in add_early_randomness crypto 18 1001d 1007d 22/28 748d 228432551bd8 virtio-rng: make device ready before making request
memory leak in crypto_create_tfm_node ext4 crypto C 3 878d 884d 22/28 748d ccd30a476f8e fscrypt: fix keyring memory leak on mount failure
inconsistent lock state in padata_do_serial (2) crypto 1 911d 907d 22/28 748d 34c3a47d20ae padata: Always leave BHs disabled when running ->parallel()
usb-testing boot error: INFO: task hung in add_early_randomness crypto 7 1004d 1010d 22/28 748d 228432551bd8 virtio-rng: make device ready before making request
net-next boot error: INFO: task hung in add_early_randomness crypto 23 1001d 1007d 22/28 748d 228432551bd8 virtio-rng: make device ready before making request
upstream boot error: INFO: task hung in hwrng_register crypto 23 1006d 1013d 22/28 748d 228432551bd8 virtio-rng: make device ready before making request
bpf boot error: INFO: task hung in add_early_randomness crypto 13 999d 1007d 22/28 748d 228432551bd8 virtio-rng: make device ready before making request
riscv/fixes boot error: INFO: task hung in add_early_randomness crypto 8 950d 1001d 22/28 748d 228432551bd8 virtio-rng: make device ready before making request
linux-next boot error: WARNING in kthread_should_stop crypto 6 856d 856d 22/28 748d db516da95ce4 hw_random: use add_hwgenerator_randomness() for early entropy
KASAN: use-after-free Write in null_skcipher_crypt crypto C done 3 1106d 1304d 22/28 748d ebe48d368e97 esp: Fix possible buffer overflow in ESP transformation
linux-next boot error: INFO: task hung in add_early_randomness (2) crypto 14 1009d 1015d 22/28 748d 228432551bd8 virtio-rng: make device ready before making request
INFO: task hung in add_early_randomness (2) usb crypto C done 182 796d 1014d 22/28 748d 228432551bd8 virtio-rng: make device ready before making request
upstream boot error: INFO: task hung in add_early_randomness crypto 125 1006d 1013d 22/28 748d 228432551bd8 virtio-rng: make device ready before making request
KASAN: use-after-free Read in __crypto_xor crypto C done 9 1256d 1288d 20/28 1101d 68b6dea802ce crypto: pcrypt - Delay write to padata->info da353fac65fe net/tls: Fix flipped sign in tls_err_abort() calls
INFO: task hung in set_current_rng crypto usb C unreliable done 1 1228d 1346d 20/28 1101d 2bb31abdbe55 hwrng: virtio - don't wait on cleanup
INFO: task hung in hwrng_register crypto usb syz unreliable done 1 1248d 1304d 20/28 1101d 2bb31abdbe55 hwrng: virtio - don't wait on cleanup
general protection fault in crypto_destroy_tfm crypto syz unreliable 57 1434d 1475d 20/28 1220d 83681f2bebb3 crypto: api - check for ERR pointers in crypto_destroy_tfm()
UBSAN: array-index-out-of-bounds in alg_bind crypto C error 700 1550d 1609d 19/28 1465d 92eb6c3060eb crypto: af_alg - avoid undefined behavior accessing salg_name
INFO: rcu detected stall in sys_open (2) crypto C done done 42 1584d 1935d 15/28 1541d 1d0e850a49a5 afs: Fix cell removal
inconsistent lock state in padata_do_parallel crypto 9 1634d 1654d 15/28 1616d 1b0df11fde0f padata: fix possible padata_works_lock deadlock
WARNING: refcount bug in crypto_mod_get crypto C done 2 1766d 1777d 15/28 1700d 6603523bf5e4 crypto: api - Fix use-after-free and race in crypto_spawn_alg
BUG: unable to handle kernel NULL pointer dereference in mpihelp_addmul_1 crypto 1 1730d 1730d 15/28 1700d 3021e69219e2 kcov: check kcov_softirq in kcov_remote_stop()
memory leak in crypto_create_tfm crypto C 14 1728d 1744d 15/28 1700d 819966c06b75 crypto: drbg - always try to free Jitter RNG instance
WARNING: refcount bug in crypto_destroy_tfm crypto C done 4 1779d 1802d 15/28 1700d 6603523bf5e4 crypto: api - Fix use-after-free and race in crypto_spawn_alg
KASAN: use-after-free Read in chaoskey_disconnect crypto usb C 44 1933d 1961d 15/28 1729d 93ddb1f56ae1 USB: chaoskey: fix use-after-free on release
WARNING in af_alg_make_sg crypto C done 13 1800d 1800d 15/28 1768d ae46d2aa6a7f mm/gup: Let __get_user_pages_locked() return -EINTR for fatal signal
general protection fault in gcmaes_crypt_by_sg (2) crypto C error done 28 1879d 1926d 15/28 1828d db885e66d268 net/tls: fix async operation
INFO: task hung in aead_recvmsg crypto C done 11991 1876d 2650d 15/28 1850d bbefa1dd6a6d crypto: pcrypt - Avoid deadlock by using per-instance padata queues
KMSAN: uninit-value in __crc32c_le_base crypto syz 567 1891d 1937d 15/28 1855d b6f3320b1d52 sctp: fully initialize v4 addr in some functions
KMSAN: uninit-value in gf128mul_4k_lle (3) crypto C 2958 1937d 2302d 14/28 1931d 683916f6a840 net/tls: fix sk_msg trim on fallback to copy mode
KMSAN: uninit-value in aesti_encrypt crypto C 54 1985d 2086d 14/28 1931d 683916f6a840 net/tls: fix sk_msg trim on fallback to copy mode
KASAN: use-after-free Read in crypto_gcm_init_common crypto C done done 14 2254d 2319d 13/28 1952d 9354544cbccf net/tls: fix page double free on TX cleanup
memory leak in mpihelp_mul_karatsuba_case crypto C 2 2089d 2089d 12/28 2054d c8ea9fce2baf lib/mpi: Fix karactx leak in mpi_powm
BUG: sleeping function called from invalid context at crypto/skcipher.c:LINE crypto 1 2161d 2160d 12/28 2117d 44427c0fbc09 crypto: xts - Fix atomic sleep when walking skcipher
general protection fault in crypto_remove_spawns (2) crypto 2 2244d 2250d 11/28 2199d 6db43410179b crypto: adiantum - initialize crypto_spawn::inst
general protection fault in gcmaes_crypt_by_sg crypto 3 2342d 2350d 11/28 2207d d829e9c4112b tls: convert to generic sk_msg interface
KASAN: use-after-free Read in skcipher_recvmsg crypto 6 2300d 2324d 11/28 2254d f7d76e05d058 crypto: user - fix use_after_free of struct xxx_request
BUG: sleeping function called from invalid context at mm/slab.h:LINE (4) crypto C 36 2278d 2439d 11/28 2254d f9c9bdb5131e crypto: x86/chacha - avoid sleeping under kernel_fpu_begin()
BUG: unable to handle kernel NULL pointer dereference in sha256_mb_mgr_get_comp_job_avx2 crypto 1 2347d 2346d 11/28 2313d ab8085c130ed crypto: x86 - remove SHA multibuffer routines and mcryptd
KASAN: use-after-free Read in sha_complete_job crypto 1 2352d 2351d 11/28 2313d ab8085c130ed crypto: x86 - remove SHA multibuffer routines and mcryptd
KASAN: use-after-free Read in sha512_ctx_mgr_resubmit crypto C 4 2352d 2402d 11/28 2313d ab8085c130ed crypto: x86 - remove SHA multibuffer routines and mcryptd
BUG: unable to handle kernel NULL pointer dereference in sha1_mb_mgr_get_comp_job_avx2 crypto 1 2360d 2360d 11/28 2313d ab8085c130ed crypto: x86 - remove SHA multibuffer routines and mcryptd
KASAN: slab-out-of-bounds Write in crypto_dh_encode_key crypto C 1401 2411d 2439d 8/28 2389d 35f7d5225ffc crypto: dh - fix calculating encoded key size
KASAN: slab-out-of-bounds Write in vmac_final crypto C 2 2466d 2462d 8/28 2389d bb2964810233 crypto: vmac - separate tfm and request context
KMSAN: uninit-value in af_alg_free_areq_sgls crypto C 640 2424d 2531d 8/28 2410d 2546da99212f crypto: af_alg - Initialize sg_num_bytes in error code path
KASAN: slab-out-of-bounds Write in sha512_final crypto C 21 2451d 2469d 8/28 2439d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in rmd320_final crypto C 44 2451d 2471d 8/28 2439d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Read in crypto_morus640_decrypt_chunk crypto C 8 2458d 2465d 8/28 2439d a81ae8095712 crypto: morus640 - Fix out-of-bounds access
KASAN: slab-out-of-bounds Write in tgr192_final crypto C 30 2451d 2470d 8/28 2439d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in wp384_final crypto C 27 2451d 2470d 8/28 2439d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in crypto_sha3_final crypto C 68 2451d 2470d 8/28 2439d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in sha1_finup crypto C 119 2451d 2471d 8/28 2439d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in sha1_final crypto C 201 2451d 2471d 8/28 2439d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in tgr160_final crypto C 55 2451d 2470d 8/28 2439d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: use-after-free Read in crypto_morus640_decrypt_chunk crypto C 3 2465d 2465d 8/28 2439d a81ae8095712 crypto: morus640 - Fix out-of-bounds access
KASAN: slab-out-of-bounds Write in sha512_finup crypto C 25 2452d 2468d 8/28 2439d 3619dec5103d dh key: fix rounding up KDF output length
KMSAN: uninit-value in alg_bind crypto C 1950 2501d 2532d 5/28 2501d a466856e0b7a crypto: af_alg - fix possible uninit-value in alg_bind()
BUG: unable to handle kernel NULL pointer dereference in sha512_mb_mgr_get_comp_job_avx2 crypto syz 32 2603d 2657d 4/28 2572d eff84b379089 crypto: sha512-mb - initialize pending lengths correctly
BUG: sleeping function called from invalid context at net/core/sock.c:LINE (2) crypto 185 2662d 2659d 4/28 2597d 7d2c3f54e6f6 crypto: af_alg - remove locking in async callback
KASAN: slab-out-of-bounds Write in sha3_update (2) crypto C 49 2599d 2638d 4/28 2597d 9fa68f620041 crypto: hash - prevent using keyed hashes without setting key
general protection fault in crypto_remove_spawns crypto C 85 2625d 2663d 3/28 2611d 9a00674213a3 crypto: algapi - fix NULL dereference in crypto_remove_spawns()
KASAN: wild-memory-access Write in scatterwalk_copychunks crypto C 15 2624d 2650d 3/28 2619d e57121d08c38 crypto: chacha20poly1305 - validate the digest size
general protection fault in skcipher_walk_done crypto C 8 2621d 2641d 3/28 2619d e57121d08c38 crypto: chacha20poly1305 - validate the digest size
BUG: unable to handle kernel NULL pointer dereference in scatterwalk_copychunks crypto C 3 2645d 2646d 3/28 2619d e57121d08c38 crypto: chacha20poly1305 - validate the digest size
KASAN: use-after-free Read in __list_del_entry_valid (2) crypto C 11 2641d 2642d 3/28 2619d d76c68109f37 crypto: pcrypt - fix freeing pcrypt instances
BUG: unable to handle kernel NULL pointer dereference in blkcipher_walk_done crypto C 2 2646d 2646d 3/28 2619d e57121d08c38 crypto: chacha20poly1305 - validate the digest size
general protection fault in scatterwalk_copychunks (2) crypto C 141 2625d 2651d 3/28 2619d e57121d08c38 crypto: chacha20poly1305 - validate the digest size
general protection fault in blkcipher_walk_first crypto C 7 2638d 2649d 3/28 2627d 11edb555966e crypto: af_alg - wait for data at beginning of recvmsg
general protection fault in crypto_chacha20_crypt crypto C 2374 2631d 2662d 3/28 2627d 2b4f27c36bcd crypto: skcipher - set walk.iv for zero-length inputs
KASAN: global-out-of-bounds Read in crypto_chacha20_crypt crypto C 74 2640d 2643d 3/28 2627d 2b4f27c36bcd crypto: skcipher - set walk.iv for zero-length inputs
possible deadlock (2) crypto 2 2647d 2649d 3/28 2627d 2b4f27c36bcd crypto: skcipher - set walk.iv for zero-length inputs
KASAN: use-after-free Write in aead_recvmsg crypto C 21 2639d 2656d 3/28 2627d d53c51357923 crypto: af_alg - fix race accessing cipher request
general protection fault in blkcipher_walk_done crypto C 47 2627d 2663d 3/28 2627d 11edb555966e crypto: af_alg - wait for data at beginning of recvmsg
KASAN: use-after-free in aead_recvmsg crypto 2 2651d 2651d 3/28 2633d b32a7dc8aef1 crypto: algif_aead - fix reference counting of null skcipher
general protection fault in kfree crypto 13 2651d 2659d 3/28 2639d ecaaab564978 crypto: salsa20 - fix blkcipher_walk API usage
KASAN: use-after-free Read in aead_recvmsg crypto C 4338 2643d 2663d 3/28 2639d b32a7dc8aef1 crypto: algif_aead - fix reference counting of null skcipher
general protection fault in af_alg_free_areq_sgls crypto C 2916 2644d 2663d 3/28 2639d 887207ed9e58 crypto: af_alg - fix NULL pointer dereference in
KASAN: stack-out-of-bounds Write in sha3_update crypto C 5 2666d 2662d 3/28 2639d af3ff8045bbf crypto: hmac - require that the underlying hash algorithm is unkeyed
general protection fault in strcmp crypto keyrings 1 2660d 2660d 3/28 2639d 18026d866801 KEYS: reject NULL restriction string when type is specified
general protection fault in ___cache_free crypto 1 2650d 2645d 3/28 2639d ecaaab564978 crypto: salsa20 - fix blkcipher_walk API usage
general protection fault in scatterwalk_copychunks crypto C 414 2653d 2662d 3/28 2653d 8e1fa89aa8bc crypto: algif_aead - skip SGL entries with NULL page
KASAN: use-after-free Read in mpi_free crypto C 27 2673d 2680d 3/28 2662d 12d41a023efb crypto: dh - Fix double free of ctx->p
BUG: sleeping function called from invalid context at net/core/sock.c:LINE crypto C 407 2663d 2702d 3/28 2663d 829385f08ae9 strparser: Use delayed work instead of timer for msg timeout
general protection fault in asn1_ber_decoder crypto keyrings C 5009 2680d 2684d 3/28 2673d 624f5ab8720b KEYS: fix NULL pointer dereference during ASN.1 parsing [ver #2]
KASAN: slab-out-of-bounds Read in asn1_ber_decoder keyrings crypto C 17 2680d 2685d 3/28 2680d 2eb9eabf1e86 KEYS: fix out-of-bounds read during ASN.1 parsing