syzbot


Applied filters: Label=subsystems:sctp (drop)
Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Closed Patch
KMSAN: uninit-value in sctp_inq_pop (2) sctp 7 C 4089 15d 1328d 24/29 never fd60d8a08619 sctp: linearize cloned gso packets in sctp_rcv
KMSAN: uninit-value in sctp_assoc_bh_rcv sctp 7 C 258 15d 145d 24/29 never fd60d8a08619 sctp: linearize cloned gso packets in sctp_rcv
KMSAN: uninit-value in __sctp_v6_cmp_addr (2) sctp 7 C 9 3d04h 2d13h 1/29 never sctp: initialize more fields in sctp_v6_from_sk()
KMSAN: uninit-value in sctp_sf_ootb sctp 7 C 18 299d 367d 28/29 260d 0ead60804b64 sctp: properly validate chunk size in sctp_sf_ootb()
general protection fault in sctp_inet_listen sctp 2 1 349d 335d 28/29 289d 8beee4d8dee7 sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start
INFO: rcu detected stall in rtnl_newlink (4) sctp fs 1 C error 9 470d 546d 25/29 463d b1f532a3b1e6 batman-adv: Avoid infinite loop trying to resize local TT
memory leak in sctp_packet_transmit sctp 3 C 14 645d 1863d 25/29 520d 4e45170d9acc net: sctp: fix skb leak in sctp_inq_free()
KCSAN: data-race in sctp_poll / sctp_wfree (3) sctp 6 1 732d 731d 23/29 686d dc9511dd6f37 sctp: annotate data-races around sk->sk_wmem_queued
general protection fault in sctp_outq_tail sctp 8 C error 5 878d 890d 22/29 812d 2584024b2355 sctp: check send stream number after wait_for_sndbuf
memory leak in sctp_sched_prio_set sctp 3 C 2 1009d 1014d 22/29 916d 9ed7bfc79542 sctp: fix memory leak in sctp_stream_outq_migrate()
KASAN: use-after-free Write in sctp_auth_shkey_hold (2) sctp 24 C inconclusive 7 1068d 1067d 22/29 916d 022152aaebe1 sctp: handle the error returned from sctp_auth_asoc_init_active_key
kernel panic: stack is corrupted in __kmalloc integrity lsm sctp 2 4 921d 1175d 22/29 916d b81d591386c3 riscv: Increase stack size under KASAN
general protection fault in sctp_rcv sctp 2 2 1435d 1438d 20/29 1269d f7e745f8e944 sctp: break out if skb_header_pointer returns NULL in sctp_rcv_ootb
KASAN: use-after-free Read in __lock_sock sctp 19 syz done error 26 1661d 2476d 20/29 1269d 5ec7d18d1813 sctp: use call_rcu to free endpoint
KASAN: use-after-free Read in sctp_do_8_2_transport_strike sctp 19 1 1592d 1591d 20/29 1388d 35b4f24415c8 sctp: do asoc update earlier in sctp_sf_do_dupcook_a
KASAN: use-after-free Write in sctp_auth_shkey_hold sctp 24 C done 4 1500d 1508d 20/29 1388d 58acd1009226 sctp: update active_key for asoc when old key is being replaced
possible deadlock in sctp_addr_wq_timeout_handler sctp 4 C done 8 1580d 1581d 20/29 1388d 01bfe5e8e428 Revert "net/sctp: fix race condition in sctp_destroy_sock"
KASAN: use-after-free Read in sctp_auth_free sctp 19 C done 4 1784d 1786d 15/29 1746d d42ee76ecb6c net-backports: sctp: fix sctp_auth_init_hmacs() error path
KASAN: slab-out-of-bounds Write in sctp_setsockopt sctp 23 C error 590 1858d 1863d 15/29 1807d dfd3d5266dc1 sctp: fix slab-out-of-bounds in SCTP_DELAYED_SACK processing
KASAN: wild-memory-access Read in sctp_setsockopt sctp 17 C 2 1841d 1841d 15/29 1807d 519a8a6cf91d net: Revert "net: optimize the sockptr_t for unified kernel/user address spaces"
WARNING: refcount bug in sctp_wfree sctp 13 C done 20 1977d 1998d 15/29 1936d 5c3e82fe1596 sctp: fix refcount bug in sctp_wfree
memory leak in _sctp_make_chunk sctp 3 C 1 2082d 2082d 15/29 2018d be7a77292077 sctp: free cmd->obj.chunk for the unprocessed SCTP_CMD_REPLY
memory leak in sctp_stream_init sctp 3 C 1 2084d 2083d 15/29 2023d 951c6db954a1 sctp: fix memleak on err handling of stream initialization
general protection fault in sctp_stream_free (2) sctp 2 C done 25 2068d 2078d 15/29 2023d 61d5d4062876 sctp: fix err handling of stream initialization
KCSAN: data-race in sctp_assoc_migrate / sctp_hash_obj sctp 6 12 2094d 2121d 15/29 2086d 312434617cb1 sctp: cache netns in sctp_ep_common
memory leak in sctp_get_port_local (3) sctp 3 C 4 2139d 2146d 13/29 2124d 63dfb7938b13 sctp: change sctp_prot .no_autobind with true
memory leak in sctp_stream_init_ext sctp 3 C 34 2146d 2281d 13/29 2131d 3c52b0af059e lib/generic-radix-tree.c: add kmemleak annotations
kernel BUG at include/linux/skbuff.h:LINE! (2) sctp -1 C done 58 2194d 2204d 13/29 2144d c7a42eb49212 net: ipv6: fix listify ip6_rcv_finish in case of forwarding
KASAN: slab-out-of-bounds Read in sctp_inq_pop sctp 17 1 2196d 2194d 13/29 2144d c7a42eb49212 net: ipv6: fix listify ip6_rcv_finish in case of forwarding
general protection fault in sctp_inq_pop sctp 2 4 2195d 2198d 13/29 2144d c7a42eb49212 net: ipv6: fix listify ip6_rcv_finish in case of forwarding
memory leak in sctp_get_port_local (2) sctp 3 C 34 2154d 2212d 13/29 2150d 29b99f54a8e6 sctp: destroy bucket if failed to bind addr
memory leak in sctp_send_reset_streams sctp 3 C 7 2204d 2281d 13/29 2155d 6d5afe20397b sctp: fix memleak in sctp_send_reset_streams
memory leak in sctp_get_port_local sctp 3 C 28 2217d 2284d 12/29 2215d 9b6c08878e23 sctp: not bind the socket in sctp_connect
general protection fault in sctp_sched_prio_sched sctp 2 C done 3 2252d 2266d 12/29 2215d 4d1415811e49 sctp: fix error handling on stream scheduler initialization
memory leak in sctp_v6_create_accept_sk sctp 3 C 1 2279d 2279d 12/29 2222d 25bff6d5478b sctp: change to hold sk after auth shkey is created successfully
memory leak in sctp_v4_create_accept_sk sctp 3 C 1 2259d 2257d 12/29 2222d 25bff6d5478b sctp: change to hold sk after auth shkey is created successfully
memory leak in sctp_process_init sctp 3 C 10 2265d 2285d 12/29 2241d 0a8dd9f67cd0 Fix memory leak in sctp_process_init ce950f1050ce sctp: Free cookie before we memdup a new one
general protection fault in sctp_sched_dequeue_common (2) sctp 2 C done 3 2359d 2359d 12/29 2258d 2e990dfd1397 sctp: remove sched init from sctp_stream_init
KMSAN: kernel-infoleak in sctp_getsockopt (3) sctp 9 syz 11 2333d 2345d 12/29 2330d 09279e615c81 sctp: initialize _pad of sockaddr_in before copying to user memory
general protection fault in sctp_assoc_rwnd_increase sctp 2 C done 28 2346d 2361d 12/29 2332d 636d25d557d1 sctp: not copy sctp_sock pd_lobby in sctp_copy_descendant
general protection fault in sctp_sched_rr_dequeue sctp 2 C done 11 2358d 2368d 11/29 2345d 2e990dfd1397 sctp: remove sched init from sctp_stream_init
KASAN: use-after-free Read in sctp_outq_tail sctp 19 1 2389d 2389d 11/29 2367d af98c5a78517 sctp: set stream ext to NULL after freeing it in sctp_stream_outq_migrate
KASAN: invalid-free in sctp_stream_free sctp 22 C 5 2389d 2397d 11/29 2367d af98c5a78517 sctp: set stream ext to NULL after freeing it in sctp_stream_outq_migrate
general protection fault in sctp_sched_dequeue_common sctp 2 6 2383d 2472d 11/29 2367d cfe4bd7a257f sctp: check and update stream->out_curr when allocating stream_out
KMSAN: kernel-infoleak in sctp_getsockopt (2) sctp 9 C 16 2367d 2418d 11/29 2367d 400b8b9a2a17 sctp: allocate sctp_sockaddr_entry with kzalloc
KMSAN: kernel-infoleak in sctp_getsockopt sctp 9 syz 147 2422d 2458d 11/29 2422d 4a2eb0c37b47 sctp: initialize sin6_flowinfo for ipv6 addrs in sctp_inet6addr_event
KASAN: use-after-free Read in sctp_hash_transport sctp 19 1 2476d 2475d 11/29 2445d fb6df5a6234c sctp: kfree_rcu asoc
KASAN: use-after-free Read in sctp_epaddr_lookup_transport sctp 19 syz 5 2476d 2477d 11/29 2445d fb6df5a6234c sctp: kfree_rcu asoc
KASAN: slab-out-of-bounds Read in sctp_getsockopt sctp 17 C 9 2499d 2498d 11/29 2481d 713358369382 sctp: check policy more carefully when getting pr status
KASAN: use-after-free Read in sctp_outq_select_transport sctp 19 1 2501d 2501d 11/29 2481d df132eff4638 sctp: clear the transport of some out_chunk_list chunks in sctp_assoc_rm_peer
KASAN: use-after-free Read in sctp_id2assoc sctp 19 1 2521d 2520d 11/29 2495d b336decab221 sctp: fix race on sctp_id2asoc
KASAN: use-after-free Read in sctp_transport_get_next sctp 19 C 6 2559d 2561d 10/29 2543d bab1be79a516 sctp: hold transport before accessing its asoc in sctp_transport_get_next
WARNING in sctp_assoc_update_frag_point sctp -1 5 2599d 2620d 8/29 2578d a65925475571 sctp: fix the issue that pathmtu may be set lower than MINSEGMENT
INFO: rcu detected stall in kmem_cache_alloc_node_trace sctp 1 1 2695d 2677d 8/29 2607d 1d88ba1ebb27 sctp: not allow transport timeout value less than HZ/5 for hb_timer
INFO: rcu detected stall in sctp_packet_transmit sctp 1 1 2662d 2661d 8/29 2607d 1d88ba1ebb27 sctp: not allow transport timeout value less than HZ/5 for hb_timer
INFO: rcu detected stall in sctp_chunk_put sctp 1 1 2646d 2645d 8/29 2607d 1d88ba1ebb27 sctp: not allow transport timeout value less than HZ/5 for hb_timer
INFO: rcu detected stall in sctp_generate_heartbeat_event sctp 1 2 2660d 2669d 8/29 2607d 1d88ba1ebb27 sctp: not allow transport timeout value less than HZ/5 for hb_timer
INFO: rcu detected stall in save_stack_trace sctp 1 C 1 2658d 2656d 8/29 2607d 1d88ba1ebb27 sctp: not allow transport timeout value less than HZ/5 for hb_timer
KASAN: use-after-free Read in sctp_do_sm sctp 19 2 2669d 2669d 5/29 2660d 6910e25de225 sctp: remove sctp_chunk_put from fail_mark err path in sctp_ulpevent_make_rcvmsg
KMSAN: uninit-value in __sctp_v6_cmp_addr sctp 7 C 1109 2661d 2662d 5/29 2661d d625329b06e4 sctp: handle two v4 addrs comparison in sctp_inet6_cmp_addr
KASAN: slab-out-of-bounds Read in __sctp_v6_cmp_addr sctp 17 C 3202 2673d 2685d 5/29 2661d d625329b06e4 sctp: handle two v4 addrs comparison in sctp_inet6_cmp_addr
KMSAN: uninit-value in sctp_sendmsg sctp 7 syz 27 2670d 2699d 5/29 2669d 81e98370293a sctp: sctp_sockaddr_af must check minimal addr length for AF_INET6
KMSAN: uninit-value in sctp_do_bind sctp 7 C 31 2669d 2699d 5/29 2669d 81e98370293a sctp: sctp_sockaddr_af must check minimal addr length for AF_INET6
BUG: corrupted list in sctp_association_free sctp 8 1 2729d 2725d 5/29 2669d d98985dd6c2d sctp: fix error return code in sctp_sendmsg_new_asoc()
KASAN: use-after-free Read in sctp_association_free (2) sctp 19 C 2 2729d 2729d 5/29 2669d 0aee4c259849 sctp: Fix double free in sctp_sendmsg_to_asoc
WARNING in refcount_sub_and_test sctp -1 C 75150 2764d 2865d 4/29 2726d d04adf1b3551 sctp: reset owner sk for data chunks on out queues when migrating a sock
KASAN: slab-out-of-bounds Read in sctp_send_reset_streams sctp 17 C 73 2808d 2819d 4/29 2765d 2342b8d95bca sctp: make sure stream nums can match optlen in sctp_setsockopt_reset_streams
KASAN: use-after-free Read in sctp_association_free sctp 19 C 20 2842d 2857d 4/29 2765d ca3af4dd28cf sctp: do not free asoc when it is already dead in sctp_sendmsg
general protection fault in sctp_stream_free sctp 2 17 2812d 2853d 4/29 2767d 79d0895140e9 sctp: fix error path in sctp_stream_init
BUG: unable to handle kernel NULL pointer dereference in sctp_stream_free sctp 10 2 2810d 2808d 4/29 2767d 79d0895140e9 sctp: fix error path in sctp_stream_init
general protection fault in skb_segment sctp 2 C 7 2789d 2799d 4/29 2768d 121d57af308d gso: validate gso_type in GSO handlers
general protection fault in sctp_v6_get_dst sctp 2 C 6 2787d 2787d 4/29 2775d c5006b8aa745 sctp: do not allow the v4 socket to bind a v4mapped v6 address
WARNING: held lock freed! sctp -1 C 497 2779d 2790d 4/29 2775d a0ff660058b8 sctp: return error if the asoc has been peeled off in sctp_wait_for_sndbuf
kernel BUG at net/core/skbuff.c:LINE! sctp -1 5 2865d 2936d 3/29 2862d c780a049f9bf ipv4: better IP_MAX_MTU enforcement