syzbot

 sign-in | mailing list | source | docs
🐞 Open [1518]
Subsystems
🐞 Fixed [6479]
🐞 Invalid [16456]
Missing Backports [199]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

Applied filters: Label=subsystems:crypto (drop)
Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Closed Patch
KASAN: use-after-free Write in __crypto_shash_import crypto 24 C done 40 67d 68d 29/29 26d 0a84874c7e7d crypto: shash - Fix buffer overrun in import function
BUG: sleeping function called from invalid context in crypto_put_default_null_skcipher crypto 5 C error 5 215d 215d 28/29 53d dcc47a028c24 crypto: null - Use spin lock instead of mutex 5b0af621c3f6 net: restrict SO_REUSEPORT to inet sockets
possible deadlock in crypto_exit_scomp_ops_async crypto 4 2 150d 159d 28/29 53d c11bcbc0a517 mm: zswap: fix crypto_free_acomp() deadlock in zswap_cpu_comp_dead()
general protection fault in crypto_skcipher_encrypt crypto 8 C error 66 418d 445d 25/29 418d c06a8b75679d bcachefs: Fix bch2_alloc_ciphers()
inconsistent lock state in padata_do_parallel (2) crypto 4 2 489d 488d 25/29 423d 58329c431203 padata: Disable BH when taking works lock on MT path
KMSAN: uninit-value in des3_ede_decrypt crypto 7 1 533d 529d 25/29 492d 7cfc2ab3f025 crypto: lskcipher - Copy IV in lskcipher glue code always
KMSAN: uninit-value in af_alg_free_sg (2) crypto 7 1 572d 566d 25/29 495d 24c890dd712f crypto: algif_hash - Remove bogus SGL free on zero-length error path
KASAN: invalid-access Read in neon_aes_ctr_encrypt arm crypto 17 C 3 522d 533d 25/29 495d 1c0cf6d19690 crypto: arm64/neonbs - fix out-of-bounds access on short input
BUG: unable to handle kernel NULL pointer dereference in crypto_arc4_crypt crypto 10 C done 4 553d 551d 25/29 495d 69fba378edca crypto: cbc - Ensure statesize is zero
general protection fault in scatterwalk_copychunks (5) crypto 2 C done 2920 578d 585d 25/29 550d 744e1885922a crypto: scomp - fix req->dst buffer overflow
KASAN: slab-out-of-bounds Read in arc4_crypt crypto 17 C done 6 582d 593d 25/29 550d 37c6fc323a81 crypto: skcipher - Pass statesize for simple lskcipher instances
INFO: task hung in hwrng_fillfn crypto 1 C error 27 552d 616d 25/29 550d 78aafb3884f6 hwrng: core - Fix page fault dead lock on mmap-ed hwrng
general protection fault in scatterwalk_copychunks (4) net crypto 19 C done done 1341 589d 1600d 25/29 589d cfaa80c91f6f net/tls: do not free tls_rec on async operation in bpf_exec_tx_verdict()
KCSAN: data-race in random_recv_done / virtio_read (3) crypto 6 13 770d 834d 23/29 660d ac52578d6e8d hwrng: virtio - Fix race on data_avail and actual data
KMSAN: uninit-value in af_alg_free_resources crypto 7 C 156 713d 750d 23/29 660d 080aa61e370b crypto: fix uninit-value in af_alg_free_resources
KASAN: slab-out-of-bounds Read in extract_iter_to_sg crypto 17 C done 13 778d 782d 23/29 674d 4380499218c6 crypto: Fix af_alg_sendmsg(MSG_SPLICE_PAGES) sglist limit b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in shash_async_final crypto 2 C done 13 774d 782d 23/29 674d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in crypto_shash_final crypto 2 C done 2 785d 782d 23/29 674d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
WARNING in extract_iter_to_sg crypto -1 1 759d 759d 23/29 674d 3fc40265ae2b iov_iter: Kill ITER_PIPE
general protection fault in shash_async_update crypto 2 C done done 12 774d 771d 23/29 674d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in shash_ahash_update crypto 2 C done done 5 775d 775d 23/29 674d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in shash_async_export crypto 2 C done 25 776d 782d 23/29 674d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in cryptd_hash_export crypto 2 C done done 12 774d 782d 23/29 674d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in crypto_shash_finup crypto 2 C done 6 775d 782d 23/29 674d b6d972f68983 crypto: af_alg/hash: Fix recvmsg() after sendmsg(MSG_MORE)
general protection fault in __aria_aesni_avx_gfni_crypt_16way crypto 2 C 49 801d 817d 22/29 763d 6ab39f99927e crypto: x86/aria - Use 16 byte alignment for GFNI constant vectors
net boot error: INFO: task hung in add_early_randomness crypto -1 18 1143d 1149d 22/29 890d 228432551bd8 virtio-rng: make device ready before making request
memory leak in crypto_create_tfm_node ext4 crypto 3 C 3 1021d 1026d 22/29 890d ccd30a476f8e fscrypt: fix keyring memory leak on mount failure
inconsistent lock state in padata_do_serial (2) crypto 4 1 1053d 1049d 22/29 890d 34c3a47d20ae padata: Always leave BHs disabled when running ->parallel()
usb-testing boot error: INFO: task hung in add_early_randomness crypto -1 7 1146d 1152d 22/29 890d 228432551bd8 virtio-rng: make device ready before making request
net-next boot error: INFO: task hung in add_early_randomness crypto -1 23 1143d 1149d 22/29 890d 228432551bd8 virtio-rng: make device ready before making request
upstream boot error: INFO: task hung in hwrng_register crypto -1 23 1148d 1155d 22/29 890d 228432551bd8 virtio-rng: make device ready before making request
bpf boot error: INFO: task hung in add_early_randomness crypto -1 13 1142d 1149d 22/29 890d 228432551bd8 virtio-rng: make device ready before making request
riscv/fixes boot error: INFO: task hung in add_early_randomness crypto -1 8 1092d 1143d 22/29 890d 228432551bd8 virtio-rng: make device ready before making request
linux-next boot error: WARNING in kthread_should_stop crypto -1 6 998d 998d 22/29 890d db516da95ce4 hw_random: use add_hwgenerator_randomness() for early entropy
KASAN: use-after-free Write in null_skcipher_crypt crypto 24 C done 3 1248d 1446d 22/29 890d ebe48d368e97 esp: Fix possible buffer overflow in ESP transformation
linux-next boot error: INFO: task hung in add_early_randomness (2) crypto -1 14 1152d 1157d 22/29 890d 228432551bd8 virtio-rng: make device ready before making request
INFO: task hung in add_early_randomness (2) usb crypto 1 C done 182 938d 1156d 22/29 890d 228432551bd8 virtio-rng: make device ready before making request
upstream boot error: INFO: task hung in add_early_randomness crypto -1 125 1148d 1155d 22/29 890d 228432551bd8 virtio-rng: make device ready before making request
KASAN: use-after-free Read in __crypto_xor crypto 19 C done 9 1399d 1430d 20/29 1243d 68b6dea802ce crypto: pcrypt - Delay write to padata->info da353fac65fe net/tls: Fix flipped sign in tls_err_abort() calls
INFO: task hung in set_current_rng crypto usb 1 C unreliable done 1 1370d 1488d 20/29 1243d 2bb31abdbe55 hwrng: virtio - don't wait on cleanup
INFO: task hung in hwrng_register crypto usb 1 syz unreliable done 1 1390d 1446d 20/29 1243d 2bb31abdbe55 hwrng: virtio - don't wait on cleanup
general protection fault in crypto_destroy_tfm crypto 2 syz unreliable 57 1576d 1617d 20/29 1362d 83681f2bebb3 crypto: api - check for ERR pointers in crypto_destroy_tfm()
UBSAN: array-index-out-of-bounds in alg_bind crypto 15 C error 700 1692d 1751d 19/29 1607d 92eb6c3060eb crypto: af_alg - avoid undefined behavior accessing salg_name
INFO: rcu detected stall in sys_open (2) crypto 1 C done done 42 1726d 2077d 15/29 1683d 1d0e850a49a5 afs: Fix cell removal
inconsistent lock state in padata_do_parallel crypto 4 9 1776d 1796d 15/29 1758d 1b0df11fde0f padata: fix possible padata_works_lock deadlock
WARNING: refcount bug in crypto_mod_get crypto 13 C done 2 1908d 1919d 15/29 1842d 6603523bf5e4 crypto: api - Fix use-after-free and race in crypto_spawn_alg
BUG: unable to handle kernel NULL pointer dereference in mpihelp_addmul_1 crypto 10 1 1872d 1872d 15/29 1842d 3021e69219e2 kcov: check kcov_softirq in kcov_remote_stop()
memory leak in crypto_create_tfm crypto 3 C 14 1870d 1887d 15/29 1842d 819966c06b75 crypto: drbg - always try to free Jitter RNG instance
WARNING: refcount bug in crypto_destroy_tfm crypto 13 C done 4 1922d 1944d 15/29 1842d 6603523bf5e4 crypto: api - Fix use-after-free and race in crypto_spawn_alg
KASAN: use-after-free Read in chaoskey_disconnect crypto usb 19 C 44 2075d 2103d 15/29 1871d 93ddb1f56ae1 USB: chaoskey: fix use-after-free on release
WARNING in af_alg_make_sg crypto -1 C done 13 1942d 1942d 15/29 1910d ae46d2aa6a7f mm/gup: Let __get_user_pages_locked() return -EINTR for fatal signal
general protection fault in gcmaes_crypt_by_sg (2) crypto 2 C error done 28 2022d 2068d 15/29 1970d db885e66d268 net/tls: fix async operation
INFO: task hung in aead_recvmsg crypto 1 C done 11991 2019d 2792d 15/29 1992d bbefa1dd6a6d crypto: pcrypt - Avoid deadlock by using per-instance padata queues
KMSAN: uninit-value in __crc32c_le_base crypto 7 syz 567 2033d 2079d 15/29 1997d b6f3320b1d52 sctp: fully initialize v4 addr in some functions
KMSAN: uninit-value in gf128mul_4k_lle (3) crypto 7 C 2958 2079d 2444d 14/29 2073d 683916f6a840 net/tls: fix sk_msg trim on fallback to copy mode
KMSAN: uninit-value in aesti_encrypt crypto 7 C 54 2127d 2228d 14/29 2073d 683916f6a840 net/tls: fix sk_msg trim on fallback to copy mode
KASAN: use-after-free Read in crypto_gcm_init_common crypto 19 C done done 14 2396d 2461d 13/29 2094d 9354544cbccf net/tls: fix page double free on TX cleanup
memory leak in mpihelp_mul_karatsuba_case crypto 3 C 2 2231d 2231d 12/29 2196d c8ea9fce2baf lib/mpi: Fix karactx leak in mpi_powm
BUG: sleeping function called from invalid context at crypto/skcipher.c:LINE crypto -1 1 2303d 2302d 12/29 2259d 44427c0fbc09 crypto: xts - Fix atomic sleep when walking skcipher
general protection fault in crypto_remove_spawns (2) crypto 2 2 2387d 2392d 11/29 2341d 6db43410179b crypto: adiantum - initialize crypto_spawn::inst
general protection fault in gcmaes_crypt_by_sg crypto 2 3 2484d 2492d 11/29 2349d d829e9c4112b tls: convert to generic sk_msg interface
KASAN: use-after-free Read in skcipher_recvmsg crypto 19 6 2442d 2466d 11/29 2396d f7d76e05d058 crypto: user - fix use_after_free of struct xxx_request
BUG: sleeping function called from invalid context at mm/slab.h:LINE (4) crypto -1 C 36 2421d 2581d 11/29 2396d f9c9bdb5131e crypto: x86/chacha - avoid sleeping under kernel_fpu_begin()
BUG: unable to handle kernel NULL pointer dereference in sha256_mb_mgr_get_comp_job_avx2 crypto 10 1 2489d 2488d 11/29 2455d ab8085c130ed crypto: x86 - remove SHA multibuffer routines and mcryptd
KASAN: use-after-free Read in sha_complete_job crypto 19 1 2494d 2493d 11/29 2455d ab8085c130ed crypto: x86 - remove SHA multibuffer routines and mcryptd
KASAN: use-after-free Read in sha512_ctx_mgr_resubmit crypto 19 C 4 2494d 2544d 11/29 2455d ab8085c130ed crypto: x86 - remove SHA multibuffer routines and mcryptd
BUG: unable to handle kernel NULL pointer dereference in sha1_mb_mgr_get_comp_job_avx2 crypto 10 1 2502d 2502d 11/29 2455d ab8085c130ed crypto: x86 - remove SHA multibuffer routines and mcryptd
KASAN: slab-out-of-bounds Write in crypto_dh_encode_key crypto 23 C 1401 2553d 2581d 8/29 2531d 35f7d5225ffc crypto: dh - fix calculating encoded key size
KASAN: slab-out-of-bounds Write in vmac_final crypto 23 C 2 2608d 2604d 8/29 2531d bb2964810233 crypto: vmac - separate tfm and request context
KMSAN: uninit-value in af_alg_free_areq_sgls crypto 7 C 640 2566d 2673d 8/29 2552d 2546da99212f crypto: af_alg - Initialize sg_num_bytes in error code path
KASAN: slab-out-of-bounds Write in sha512_final crypto 23 C 21 2593d 2611d 8/29 2581d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in rmd320_final crypto 23 C 44 2593d 2613d 8/29 2581d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Read in crypto_morus640_decrypt_chunk crypto 17 C 8 2600d 2607d 8/29 2581d a81ae8095712 crypto: morus640 - Fix out-of-bounds access
KASAN: slab-out-of-bounds Write in tgr192_final crypto 23 C 30 2593d 2612d 8/29 2581d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in wp384_final crypto 23 C 27 2593d 2612d 8/29 2581d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in crypto_sha3_final crypto 23 C 68 2593d 2612d 8/29 2581d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in sha1_finup crypto 23 C 119 2593d 2613d 8/29 2581d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in sha1_final crypto 23 C 201 2593d 2613d 8/29 2581d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: slab-out-of-bounds Write in tgr160_final crypto 23 C 55 2593d 2613d 8/29 2581d 3619dec5103d dh key: fix rounding up KDF output length
KASAN: use-after-free Read in crypto_morus640_decrypt_chunk crypto 19 C 3 2607d 2607d 8/29 2581d a81ae8095712 crypto: morus640 - Fix out-of-bounds access
KASAN: slab-out-of-bounds Write in sha512_finup crypto 23 C 25 2594d 2610d 8/29 2581d 3619dec5103d dh key: fix rounding up KDF output length
KMSAN: uninit-value in alg_bind crypto 7 C 1950 2643d 2674d 5/29 2643d a466856e0b7a crypto: af_alg - fix possible uninit-value in alg_bind()
BUG: unable to handle kernel NULL pointer dereference in sha512_mb_mgr_get_comp_job_avx2 crypto 10 syz 32 2745d 2799d 4/29 2714d eff84b379089 crypto: sha512-mb - initialize pending lengths correctly
BUG: sleeping function called from invalid context at net/core/sock.c:LINE (2) crypto -1 185 2804d 2801d 4/29 2739d 7d2c3f54e6f6 crypto: af_alg - remove locking in async callback
KASAN: slab-out-of-bounds Write in sha3_update (2) crypto 23 C 49 2741d 2780d 4/29 2739d 9fa68f620041 crypto: hash - prevent using keyed hashes without setting key
general protection fault in crypto_remove_spawns crypto 2 C 85 2767d 2805d 3/29 2753d 9a00674213a3 crypto: algapi - fix NULL dereference in crypto_remove_spawns()
general protection fault in scatterwalk_copychunks (2) crypto 2 C 141 2767d 2793d 3/29 2761d e57121d08c38 crypto: chacha20poly1305 - validate the digest size
general protection fault in skcipher_walk_done crypto 2 C 8 2763d 2783d 3/29 2761d e57121d08c38 crypto: chacha20poly1305 - validate the digest size
KASAN: use-after-free Read in __list_del_entry_valid (2) crypto 19 C 11 2783d 2785d 3/29 2761d d76c68109f37 crypto: pcrypt - fix freeing pcrypt instances
KASAN: wild-memory-access Write in scatterwalk_copychunks crypto 23 C 15 2766d 2792d 3/29 2761d e57121d08c38 crypto: chacha20poly1305 - validate the digest size
BUG: unable to handle kernel NULL pointer dereference in blkcipher_walk_done crypto 10 C 2 2788d 2788d 3/29 2761d e57121d08c38 crypto: chacha20poly1305 - validate the digest size
BUG: unable to handle kernel NULL pointer dereference in scatterwalk_copychunks crypto 10 C 3 2787d 2788d 3/29 2761d e57121d08c38 crypto: chacha20poly1305 - validate the digest size
general protection fault in blkcipher_walk_first crypto 2 C 7 2780d 2791d 3/29 2769d 11edb555966e crypto: af_alg - wait for data at beginning of recvmsg
KASAN: global-out-of-bounds Read in crypto_chacha20_crypt crypto 17 C 74 2782d 2786d 3/29 2769d 2b4f27c36bcd crypto: skcipher - set walk.iv for zero-length inputs
general protection fault in crypto_chacha20_crypt crypto 2 C 2374 2773d 2804d 3/29 2769d 2b4f27c36bcd crypto: skcipher - set walk.iv for zero-length inputs
KASAN: use-after-free Write in aead_recvmsg crypto 24 C 21 2781d 2798d 3/29 2769d d53c51357923 crypto: af_alg - fix race accessing cipher request
general protection fault in blkcipher_walk_done crypto 2 C 47 2769d 2805d 3/29 2769d 11edb555966e crypto: af_alg - wait for data at beginning of recvmsg
possible deadlock (2) crypto -1 2 2789d 2791d 3/29 2769d 2b4f27c36bcd crypto: skcipher - set walk.iv for zero-length inputs
KASAN: use-after-free in aead_recvmsg crypto 19 2 2793d 2793d 3/29 2775d b32a7dc8aef1 crypto: algif_aead - fix reference counting of null skcipher
general protection fault in strcmp crypto keyrings 2 1 2802d 2802d 3/29 2782d 18026d866801 KEYS: reject NULL restriction string when type is specified
KASAN: use-after-free Read in aead_recvmsg crypto 19 C 4338 2786d 2805d 3/29 2782d b32a7dc8aef1 crypto: algif_aead - fix reference counting of null skcipher
general protection fault in af_alg_free_areq_sgls crypto 2 C 2916 2786d 2805d 3/29 2782d 887207ed9e58 crypto: af_alg - fix NULL pointer dereference in
general protection fault in kfree crypto 2 13 2793d 2801d 3/29 2782d ecaaab564978 crypto: salsa20 - fix blkcipher_walk API usage
KASAN: stack-out-of-bounds Write in sha3_update crypto 23 C 5 2808d 2804d 3/29 2782d af3ff8045bbf crypto: hmac - require that the underlying hash algorithm is unkeyed
general protection fault in ___cache_free crypto 2 1 2792d 2787d 3/29 2782d ecaaab564978 crypto: salsa20 - fix blkcipher_walk API usage
general protection fault in scatterwalk_copychunks crypto 2 C 414 2795d 2804d 3/29 2795d 8e1fa89aa8bc crypto: algif_aead - skip SGL entries with NULL page
KASAN: use-after-free Read in mpi_free crypto 19 C 27 2815d 2823d 3/29 2805d 12d41a023efb crypto: dh - Fix double free of ctx->p
BUG: sleeping function called from invalid context at net/core/sock.c:LINE crypto -1 C 407 2805d 2845d 3/29 2805d 829385f08ae9 strparser: Use delayed work instead of timer for msg timeout
general protection fault in asn1_ber_decoder crypto keyrings 2 C 5009 2822d 2826d 3/29 2815d 624f5ab8720b KEYS: fix NULL pointer dereference during ASN.1 parsing [ver #2]
KASAN: slab-out-of-bounds Read in asn1_ber_decoder keyrings crypto 17 C 17 2822d 2827d 3/29 2822d 2eb9eabf1e86 KEYS: fix out-of-bounds read during ASN.1 parsing