|
KASAN: slab-use-after-free Read in ib_register_device
rdma
|
19 |
|
|
|
1 |
108d |
104d
|
29/29 |
35d |
d0706bfd3ee4
RDMA/core: Fix "KASAN: slab-use-after-free Read in ib_register_device" problem
|
|
INFO: trying to register non-static key in rxe_qp_do_cleanup
rdma
|
-1 |
|
|
|
7 |
74d |
116d
|
29/29 |
35d |
1c7eec4d5f3b
RDMA/rxe: Fix "trying to register non-static key in rxe_qp_do_cleanup" bug
|
|
KASAN: slab-use-after-free Read in nla_put (2)
rdma
|
19 |
|
|
|
1 |
162d |
157d
|
28/29 |
63d |
1d6a9e7449e2
RDMA/core: Fix use-after-free when rename device name
|
|
KASAN: slab-use-after-free Read in dev_get_flags
rdma
|
19 |
|
|
|
7 |
263d |
249d
|
28/29 |
97d |
2ac5415022d1
RDMA/rxe: Remove the direct link to net_device
16b87037b488
RDMA/siw: Remove direct link to net_device
|
|
WARNING in gid_table_release_one (2)
rdma
|
-1 |
|
|
|
1 |
348d |
344d
|
28/29 |
292d |
1403c8b14765
IB/core: Fix ib_cache_setup_one error flow cleanup
|
|
general protection fault in rxe_completer
rdma
|
2 |
|
|
|
281 |
704d |
785d
|
23/29 |
670d |
5993b75d0bc7
RDMA/rxe: Fix unsafe drain work queue code
|
|
INFO: trying to register non-static key in skb_dequeue (2)
rdma
|
-1 |
syz |
error |
|
123 |
788d |
832d
|
23/29 |
683d |
2a62b6210ce8
RDMA/rxe: Fix the use-before-initialization error of resp_pkts
|
|
INFO: trying to register non-static key in rxe_cleanup_task (2)
rdma
|
-1 |
|
|
|
148 |
830d |
896d
|
22/29 |
796d |
b2b1ddc45745
RDMA/rxe: Fix the error "trying to register non-static key in rxe_cleanup_task"
|
|
possible deadlock in worker_thread
rdma
|
4 |
|
|
|
1 |
1282d |
1278d
|
22/29 |
900d |
081bdc9fe05b
RDMA/ib_srp: Fix a deadlock
bf23747ee053
loop: revert "make autoclear operation asynchronous"
|
|
KASAN: use-after-free Read in ucma_destroy_private_ctx
rdma
|
19 |
|
|
|
1 |
1323d |
1317d
|
22/29 |
900d |
36e8169ec973
RDMA/ucma: Protect mc during concurrent multicast leaves
|
|
BUG: sleeping function called from invalid context in smc_pnet_apply_ib
rdma
|
5 |
C |
inconclusive |
|
92 |
1264d |
1272d
|
22/29 |
900d |
7ff57e98fb78
net/smc: Use a mutex for locking "struct smc_pnettable"
|
|
INFO: trying to register non-static key in rxe_cleanup_task
rdma
|
-1 |
syz |
|
|
299 |
901d |
1177d
|
22/29 |
900d |
fd5382c5805c
RDMA/rxe: Fix error unwind in rxe_create_qp()
|
|
WARNING: refcount bug in nldev_newlink
rdma
|
13 |
C |
|
|
33 |
973d |
978d
|
22/29 |
900d |
e42f9c2e6aad
RDMA: Add missed netdev_put() for the netdevice_tracker
|
|
WARNING: refcount bug in free_netdevs
rdma
|
13 |
|
|
|
3 |
973d |
977d
|
22/29 |
900d |
e42f9c2e6aad
RDMA: Add missed netdev_put() for the netdevice_tracker
|
|
BUG: unable to handle kernel NULL pointer dereference in __rxe_do_task
rdma
|
10 |
syz |
|
|
120 |
1026d |
1095d
|
22/29 |
900d |
a625ca30eff8
RDMA/rxe: Fix "kernel NULL pointer dereference" error
|
|
BUG: corrupted list in rdma_listen (2)
rdma
|
19 |
C |
inconclusive |
|
5 |
1281d |
1347d
|
22/29 |
900d |
22e9f71072fa
RDMA/cma: Do not change route.addr.src_addr outside state checks
|
|
WARNING: refcount bug in put_gid_ndev
rdma
|
13 |
|
|
|
3 |
977d |
977d
|
22/29 |
900d |
e42f9c2e6aad
RDMA: Add missed netdev_put() for the netdevice_tracker
|
|
upstream boot error: WARNING in alloc_workqueue
net
rdma
|
-1 |
|
|
|
1 |
1094d |
1094d
|
22/29 |
900d |
9993a4f989c7
virtio: Revert "virtio: find_vqs() add arg sizes"
|
|
KMSAN: kernel-infoleak in ucma_init_qp_attr
rdma
|
9 |
|
|
|
1 |
1326d |
1316d
|
20/29 |
1253d |
b35a0f4dd544
RDMA/core: Don't infoleak GRH fields
|
|
general protection fault in nldev_stat_set_doit (2)
rdma
|
2 |
|
|
|
12 |
1358d |
1366d
|
20/29 |
1253d |
d821f7c13ca0
RDMA/nldev: Check stat attribute before accessing it
|
|
KASAN: use-after-free Read in rxe_queue_cleanup
rdma
|
19 |
|
|
|
65 |
1335d |
1362d
|
20/29 |
1253d |
84b01721e804
RDMA: Fix use-after-free in rxe_queue_cleanup
|
|
WARNING: refcount bug in rxe_qp_do_cleanup
rdma
|
13 |
|
|
|
1 |
1557d |
1555d
|
20/29 |
1371d |
67f29896fdc8
RDMA/rxe: Clear all QP fields if creation failed
|
|
BUG: sleeping function called from invalid context in rxe_alloc_nl
rdma
|
5 |
C |
done |
|
475 |
1652d |
1665d
|
20/29 |
1585d |
c4369575b2bc
RDMA/rxe: Fix bug in rxe_alloc()
|
|
possible deadlock in _destroy_id
rdma
|
4 |
C |
unreliable |
|
28 |
1720d |
1728d
|
19/29 |
1616d |
dd37d2f59eb8
RDMA/cma: Fix deadlock on &lock in rdma_cma_listen_on_all() error unwind
|
|
KASAN: use-after-free Read in ucma_close (2)
rdma
|
19 |
syz |
done |
|
1 |
1797d |
1797d
|
15/29 |
1730d |
f5449e74802c
RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy
|
|
KASAN: use-after-free Write in addr_resolve
rdma
|
24 |
|
|
|
1 |
1891d |
1889d
|
15/29 |
1790d |
f6a9d47ae685
RDMA/cma: Execute rdma_cm destruction from a handler properly
|
|
KASAN: use-after-free Read in addr_handler (2)
rdma
|
19 |
|
|
|
2 |
1845d |
1889d
|
15/29 |
1790d |
f6a9d47ae685
RDMA/cma: Execute rdma_cm destruction from a handler properly
|
|
WARNING in ib_unregister_device_queued
rdma
|
-1 |
|
|
|
2 |
1922d |
1934d
|
15/29 |
1790d |
0cb42c026583
RDMA/core: Fix bogus WARN_ON during ib_unregister_device_queued()
|
|
KMSAN: uninit-value in ucma_connect
rdma
|
7 |
C |
|
|
138 |
1795d |
1847d
|
15/29 |
1790d |
31142a4ba617
RDMA/cm: Add min length checks to user structure copies
|
|
KMSAN: uninit-value in xa_load
rdma
|
7 |
C |
|
|
208 |
1791d |
1847d
|
15/29 |
1790d |
31142a4ba617
RDMA/cm: Add min length checks to user structure copies
|
|
KASAN: use-after-free Read in addr_handler
rdma
|
19 |
syz |
done |
|
12 |
1952d |
2434d
|
15/29 |
1920d |
7c11910783a1
RDMA/ucma: Put a lock around every call to the rdma_cm layer
|
|
KASAN: use-after-free Read in cma_cancel_operation
rdma
|
19 |
C |
done |
|
617 |
2008d |
2688d
|
15/29 |
1920d |
7c11910783a1
RDMA/ucma: Put a lock around every call to the rdma_cm layer
|
|
KASAN: use-after-free Read in rdma_listen (2)
rdma
|
19 |
C |
done |
|
354 |
1958d |
2327d
|
15/29 |
1920d |
7c11910783a1
RDMA/ucma: Put a lock around every call to the rdma_cm layer
|
|
KASAN: use-after-free Read in __list_del_entry_valid (4)
rdma
|
19 |
C |
done |
|
16 |
2008d |
2696d
|
15/29 |
1920d |
7c11910783a1
RDMA/ucma: Put a lock around every call to the rdma_cm layer
|
|
general protection fault in rdma_listen (2)
rdma
|
2 |
syz |
done |
|
104 |
1958d |
2469d
|
15/29 |
1920d |
7c11910783a1
RDMA/ucma: Put a lock around every call to the rdma_cm layer
|
|
possible deadlock in cma_netdev_callback
rdma
|
4 |
C |
done |
|
1399 |
1952d |
1994d
|
15/29 |
1920d |
33fb27fd5446
RDMA/siw: Fix passive connection establishment
|
|
BUG: corrupted list in rdma_listen
rdma
|
8 |
C |
|
|
202 |
2092d |
2672d
|
15/29 |
1920d |
7c11910783a1
RDMA/ucma: Put a lock around every call to the rdma_cm layer
|
|
INFO: trying to register non-static key in xa_destroy
rdma
|
-1 |
C |
done |
|
46 |
1968d |
1995d
|
15/29 |
1945d |
12e5eef0f4d8
RDMA/siw: Fix failure handling during device creation
|
|
general protection fault in nldev_stat_set_doit
rdma
|
2 |
C |
done |
|
8 |
1978d |
1995d
|
15/29 |
1945d |
78f34a16c286
RDMA/nldev: Fix crash when set a QP to a new counter but QPN is missing
|
|
KMSAN: use-after-free in rdma_listen
rdma
|
18 |
C |
|
|
26 |
1986d |
2131d
|
15/29 |
1965d |
5fc01fb846bc
RDMA/cma: Rollback source IP address if failing to acquire device
|
|
KMSAN: uninit-value in rdma_listen
rdma
|
7 |
C |
|
|
28 |
2143d |
2507d
|
15/29 |
1965d |
5fc01fb846bc
RDMA/cma: Rollback source IP address if failing to acquire device
|
|
WARNING in cma_exit_net
rdma
|
-1 |
|
|
|
25 |
2323d |
2324d
|
12/29 |
2250d |
061ccb52d23c
RDMA/cma: Set proper port number as index
|
|
KASAN: use-after-free Read in rdma_listen
rdma
|
19 |
C |
|
|
1548 |
2329d |
2689d
|
11/29 |
2329d |
5fc01fb846bc
RDMA/cma: Rollback source IP address if failing to acquire device
|
|
KASAN: use-after-free Read in alloc_workqueue
rdma
|
19 |
C |
|
|
37 |
2341d |
2353d
|
11/29 |
2329d |
009bb421b6ce
workqueue, lockdep: Fix an alloc_workqueue() error path
|
|
KASAN: use-after-free Read in rdma_resolve_addr
rdma
|
19 |
|
|
|
1 |
2512d |
2512d
|
11/29 |
2364d |
5fe23f262e05
ucma: fix a use-after-free in ucma_resolve_ip()
|
|
KASAN: use-after-free Read in cma_acquire_dev
rdma
|
19 |
|
|
|
1 |
2594d |
2593d
|
11/29 |
2364d |
5fe23f262e05
ucma: fix a use-after-free in ucma_resolve_ip()
|
|
KASAN: use-after-free Read in wait_for_completion
rdma
|
19 |
|
|
|
1 |
2488d |
2487d
|
11/29 |
2364d |
5fe23f262e05
ucma: fix a use-after-free in ucma_resolve_ip()
|
|
KASAN: use-after-free Read in __list_add_valid (5)
rdma
|
19 |
C |
|
|
16 |
2690d |
2696d
|
11/29 |
2364d |
5fe23f262e05
ucma: fix a use-after-free in ucma_resolve_ip()
|
|
general protection fault in addr_resolve
rdma
|
2 |
C |
|
|
32 |
2500d |
2517d
|
11/29 |
2464d |
fe33507ec38a
RDMA/core: Check error status of rdma_find_ndev_for_src_ip_rcu
|
|
KASAN: use-after-free Write in ucma_put_ctx
rdma
|
24 |
syz |
|
|
11 |
2512d |
2531d
|
11/29 |
2497d |
5fe23f262e05
ucma: fix a use-after-free in ucma_resolve_ip()
|
|
KASAN: use-after-free Read in cma_bind_port
rdma
|
19 |
syz |
|
|
2 |
2526d |
2531d
|
11/29 |
2497d |
5fe23f262e05
ucma: fix a use-after-free in ucma_resolve_ip()
|
|
INFO: task hung in ucma_destroy_id
rdma
|
1 |
C |
|
|
46 |
2672d |
2709d
|
5/29 |
2595d |
ef95a90ae6f4
RDMA/ucma: ucma_context reference leak in error path
|
|
WARNING: kmalloc bug in memdup_user (2)
rdma
|
-1 |
|
|
|
1 |
2696d |
2695d
|
5/29 |
2647d |
5f3e3b85cc0a
RDMA/ucma: Correct option size check using optlen
|
|
general protection fault in rdma_addr_size
rdma
|
2 |
C |
|
|
2 |
2705d |
2698d
|
5/29 |
2647d |
e8980d67d601
RDMA/ucma: Ensure that CM_ID exists prior to access it
|
|
general protection fault in ucma_set_ib_path (2)
rdma
|
2 |
C |
|
|
6 |
2680d |
2688d
|
5/29 |
2652d |
8435168d50e6
RDMA/ucma: Don't allow setting RDMA_OPTION_IB_PATH without an RDMA device
|
|
general protection fault in rdma_init_qp_attr (2)
rdma
|
2 |
C |
|
|
753 |
2692d |
2698d
|
5/29 |
2685d |
4b658d1bbc16
RDMA/ucma: Check that device is connected prior to access it
|
|
general protection fault in rdma_notify
rdma
|
2 |
C |
|
|
3 |
2701d |
2698d
|
5/29 |
2685d |
c8d3bcbfc5ea
RDMA/ucma: Check that device exists prior to accessing it
|
|
kernel BUG at lib/string.c:LINE! (3)
rdma
|
-1 |
C |
|
|
5 |
2693d |
2694d
|
5/29 |
2685d |
84652aefb347
RDMA/ucma: Introduce safer rdma_addr_size() variants
|
|
general protection fault in rdma_join_multicast
rdma
|
2 |
C |
|
|
258 |
2701d |
2715d
|
4/29 |
2698d |
7688f2c3bbf5
RDMA/ucma: Fix access to non-initialized CM_ID object
|
|
KASAN: use-after-free Read in ucma_close
rdma
|
19 |
C |
|
|
176 |
2701d |
2715d
|
4/29 |
2698d |
ed65a4dc2208
RDMA/ucma: Fix use-after-free access in ucma_close
|
|
kernel BUG at lib/string.c:LINE! (2)
rdma
|
-1 |
syz |
|
|
2 |
2709d |
2709d
|
4/29 |
2698d |
0c81ffc60d52
RDMA/ucma: Don't allow join attempts for unsupported AF family
|
|
WARNING: kmalloc bug in memdup_user
rdma
|
-1 |
C |
|
|
441 |
2699d |
2715d
|
4/29 |
2698d |
6a21dfc0d0db
RDMA/ucma: Limit possible option size
|
|
general protection fault in ucma_connect
rdma
|
2 |
C |
|
|
2 |
2706d |
2705d
|
4/29 |
2698d |
e8980d67d601
RDMA/ucma: Ensure that CM_ID exists prior to access it
|
|
KASAN: null-ptr-deref Write in rdma_resolve_addr
rdma
|
12 |
C |
|
|
66 |
2701d |
2712d
|
4/29 |
2698d |
2975d5de6428
RDMA/ucma: Check AF family prior resolving address
|
|
general protection fault in rdma_init_qp_attr
rdma
|
2 |
C |
|
|
2096 |
2698d |
2715d
|
4/29 |
2698d |
a5880b844303
RDMA/ucma: Check that user doesn't overflow QP state
|