syzbot

 sign-in | mailing list | source | docs
🐞 Open [1545]
Subsystems
🐞 Fixed [6437]
🐞 Invalid [16309]
Missing Backports [199]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

Applied filters: Label=subsystems:v9fs (drop)
Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Closed Patch
KASAN: use-after-free Read in p9_req_put v9fs 19 239 2d08h 1068d 1/29 never 9p: p9_client_create: use p9_client_destroy on failure
KCSAN: data-race in p9_conn_cancel / p9_poll_workfn (9) v9fs 6 2 124d 163d 28/29 39d fbc0283fbeae 9p/trans_fd: mark concurrent read and writes to p9_conn->err
KCSAN: data-race in p9_conn_cancel / p9_write_work (7) v9fs 6 2 134d 158d 28/29 39d fbc0283fbeae 9p/trans_fd: mark concurrent read and writes to p9_conn->err
general protection fault in p9_client_walk v9fs 2 C 3 116d 132d 28/29 39d 3f61ac7c65bd fs/9p: fix NULL pointer dereference on mkdir
BUG: stack guard page was hit in sys_open mm v9fs -1 C 11 214d 251d 28/29 74d 4acb665cf4f3 netfs: Work around recursion by abandoning retry if nothing read
WARNING in p9_client_create (2) v9fs -1 C done 26070 264d 301d 28/29 249d 79efebae4afc 9p: Avoid creating multiple slab caches with the same name
KASAN: slab-use-after-free Read in p9_fid_destroy v9fs 19 C 13 419d 500d 25/29 404d f89ea63f1c65 netfs, 9p: Fix race between umount and async request completion
KASAN: slab-use-after-free Read in p9_client_destroy v9fs 19 7 422d 435d 25/29 404d f89ea63f1c65 netfs, 9p: Fix race between umount and async request completion
KASAN: slab-use-after-free Write in v9fs_free_request v9fs 24 9 419d 433d 25/29 404d f89ea63f1c65 netfs, 9p: Fix race between umount and async request completion
KMSAN: uninit-value in p9_client_rpc (2) v9fs 7 C 5 443d 477d 25/29 404d 25460d6f3902 net/9p: fix uninit-value in p9_client_rpc()
KMSAN: uninit-value in v9fs_evict_inode v9fs 7 C 5206 479d 491d 25/29 423d 6630036b7c22 fs/9p: fix uninitialized values during inode evict
KASAN: slab-use-after-free Read in v9fs_stat2inode_dotl v9fs 19 C done 585 479d 534d 25/29 423d 11763a8598f8 fs/9p: fix uaf in in v9fs_stat2inode_dotl
KASAN: wild-memory-access Write in v9fs_get_acl v9fs 23 C 7 832d 865d 22/29 772d 707823e7f22f 9P FS: Fix wild-memory-access write in v9fs_get_acl
BUG: corrupted list in p9_fd_cancel (2) v9fs fuse 8 C error 8 975d 1001d 22/29 876d 11c10956515b 9p/fd: fix issue of list_del corruption in p9_fd_cancel()
KFENCE: memory corruption in p9_req_put v9fs 20 2 974d 976d 22/29 876d 26273ade77f5 9p: set req refcount to zero to avoid uninitialized usage
inconsistent lock state in p9_req_put v9fs 4 181 1019d 1069d 22/29 876d 296ab4a81384 net/9p: use a dedicated spinlock for trans_fd
INFO: task hung in p9_fd_close v9fs 1 C error error 484 986d 2150d 22/29 876d ef575281b21e 9p/trans_fd: always use O_NONBLOCK read/write
KMSAN: uninit-value in p9pdu_readf v9fs 7 14 1264d 1379d 20/29 1229d 27eb4c3144f7 9p/net: fix missing error check in p9_check_errors
KASAN: invalid-free in p9_client_create (2) v9fs 22 C done 3 1634d 1634d 19/29 1593d 757fed1d0898 Revert "mm/slub: fix a memory leak in sysfs_slab_add()"
WARNING: refcount bug in p9_req_put v9fs 13 syz inconclusive done 6 1886d 2438d 15/29 1707d a39c46067c84 net/9p: validate fds in p9_fd_open
BUG: corrupted list in p9_read_work (2) v9fs 8 syz done error 38 2069d 2431d 15/29 1767d 74d6a5d56629 9p/trans_fd: Fix concurrency del of req_list in p9_fd_cancelled/p9_read_work
KASAN: use-after-free Read in p9_fd_poll v9fs 19 C done 8 2533d 2565d 13/29 2068d 430ac66eb4c5 net/9p/trans_fd.c: fix race-condition by flushing workqueue before the kfree()
BUG: corrupted list in p9_conn_cancel v9fs 8 C done 18 2467d 2568d 13/29 2077d 9f476d7c540c net/9p/trans_fd.c: fix race by holding the lock
general protection fault in p9_conn_cancel v9fs 2 C done 2 2547d 2565d 13/29 2077d 9f476d7c540c net/9p/trans_fd.c: fix race by holding the lock
WARNING: ODEBUG bug in p9_fd_close v9fs -1 C done 82 2528d 2568d 13/29 2077d 430ac66eb4c5 net/9p/trans_fd.c: fix race-condition by flushing workqueue before the kfree()
BUG: corrupted list in p9_write_work v9fs 8 C done 5 2490d 2536d 13/29 2077d 728356dedeff 9p: Add refcount to p9_req_t
memory leak in v9fs_cache_session_get_cookie v9fs 3 C 242 2105d 2251d 13/29 2104d 962a991c5de1 9p/cache.c: Fix memory leak in v9fs_cache_session_get_cookie
BUG: unable to handle kernel NULL pointer dereference in setup_kmem_cache_node v9fs 10 3 2390d 2391d 11/29 2328d 09c2e76ed734 slab: alien caches must not be initialized if the allocation of the alien cache failed
WARNING in kmem_cache_create_usercopy v9fs -1 C 10 2393d 2451d 11/29 2377d 574d356b7a02 9p/net: put a lower bound on msize
KASAN: invalid-free in p9stat_free v9fs 22 C 3 2519d 2519d 11/29 2441d 62e3941776fe 9p: clear dangling pointers in p9stat_free 81c99089bce6 v9fs_dir_readdir: fix double-free on p9stat_read error
KASAN: use-after-free Read in _copy_from_iter v9fs 19 C 12 2545d 2557d 11/29 2441d 728356dedeff 9p: Add refcount to p9_req_t
WARNING: kmalloc bug in __v9fs_get_acl v9fs -1 C 212 2459d 2567d 11/29 2441d 61448479a9f2 mm: don't warn about large allocations for slab
BUG: corrupted list in p9_read_work v9fs 8 syz 23 2449d 2561d 11/29 2441d e4ca13f7d075 9p/trans_fd: abort p9_read_work if req status changed
general protection fault in vsscanf v9fs 2 C 7 2536d 2566d 8/29 2511d 10aa14527f45 9p: fix multiple NULL-pointer-dereferences
KASAN: slab-out-of-bounds Read in pdu_read v9fs 17 C 267 2533d 2568d 8/29 2517d f984579a01d8 9p: validate PDU length 7913690dcc5e net/9p/client.c: version pointer uninitialized
general protection fault in p9_fd_create_unix v9fs 2 C 4 2563d 2567d 8/29 2517d 10aa14527f45 9p: fix multiple NULL-pointer-dereferences
BUG: corrupted list in p9_fd_cancel v9fs 8 C 34 2554d 2567d 8/29 2517d 9f476d7c540c net/9p/trans_fd.c: fix race by holding the lock
KASAN: use-after-free Read in p9_poll_workfn v9fs 19 C 148 2528d 2568d 8/29 2517d 430ac66eb4c5 net/9p/trans_fd.c: fix race-condition by flushing workqueue before the kfree()