syzbot

 sign-in | mailing list | source | docs
🐞 Open [1516]
Subsystems
🐞 Fixed [6640]
🐞 Invalid [17016]
Missing Backports [214]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
Total Repo Heatmap Subsystems Heatmap
💬 Send us feedback

Applied filters: Label=subsystems:v9fs (drop)
Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Closed Patch
KASAN: use-after-free Read in p9_req_put v9fs 19 257 7d09h 1152d 1/29 never 9p: p9_client_create: use p9_client_destroy on failure
KCSAN: data-race in p9_conn_cancel / p9_poll_workfn (9) v9fs 6 2 208d 246d 28/29 123d fbc0283fbeae 9p/trans_fd: mark concurrent read and writes to p9_conn->err
KCSAN: data-race in p9_conn_cancel / p9_write_work (7) v9fs 6 2 217d 242d 28/29 123d fbc0283fbeae 9p/trans_fd: mark concurrent read and writes to p9_conn->err
general protection fault in p9_client_walk v9fs 2 C 3 200d 216d 28/29 123d 3f61ac7c65bd fs/9p: fix NULL pointer dereference on mkdir
BUG: stack guard page was hit in sys_open mm v9fs -1 C 11 298d 335d 28/29 158d 4acb665cf4f3 netfs: Work around recursion by abandoning retry if nothing read
WARNING in p9_client_create (2) v9fs -1 C done 26070 348d 384d 28/29 333d 79efebae4afc 9p: Avoid creating multiple slab caches with the same name
KASAN: slab-use-after-free Read in p9_fid_destroy v9fs 19 C 13 503d 584d 25/29 488d f89ea63f1c65 netfs, 9p: Fix race between umount and async request completion
KASAN: slab-use-after-free Read in p9_client_destroy v9fs 19 7 506d 519d 25/29 488d f89ea63f1c65 netfs, 9p: Fix race between umount and async request completion
KASAN: slab-use-after-free Write in v9fs_free_request v9fs 24 9 503d 517d 25/29 488d f89ea63f1c65 netfs, 9p: Fix race between umount and async request completion
KMSAN: uninit-value in p9_client_rpc (2) v9fs 7 C 5 527d 561d 25/29 488d 25460d6f3902 net/9p: fix uninit-value in p9_client_rpc()
KMSAN: uninit-value in v9fs_evict_inode v9fs 7 C 5206 563d 575d 25/29 507d 6630036b7c22 fs/9p: fix uninitialized values during inode evict
KASAN: slab-use-after-free Read in v9fs_stat2inode_dotl v9fs 19 C done 585 563d 618d 25/29 507d 11763a8598f8 fs/9p: fix uaf in in v9fs_stat2inode_dotl
KASAN: wild-memory-access Write in v9fs_get_acl v9fs 23 C 7 916d 949d 22/29 856d 707823e7f22f 9P FS: Fix wild-memory-access write in v9fs_get_acl
BUG: corrupted list in p9_fd_cancel (2) v9fs fuse 8 C error 8 1059d 1085d 22/29 960d 11c10956515b 9p/fd: fix issue of list_del corruption in p9_fd_cancel()
KFENCE: memory corruption in p9_req_put v9fs 20 2 1058d 1060d 22/29 960d 26273ade77f5 9p: set req refcount to zero to avoid uninitialized usage
inconsistent lock state in p9_req_put v9fs 4 181 1102d 1153d 22/29 960d 296ab4a81384 net/9p: use a dedicated spinlock for trans_fd
INFO: task hung in p9_fd_close v9fs 1 C error error 484 1070d 2234d 22/29 960d ef575281b21e 9p/trans_fd: always use O_NONBLOCK read/write
KMSAN: uninit-value in p9pdu_readf v9fs 7 14 1348d 1463d 20/29 1313d 27eb4c3144f7 9p/net: fix missing error check in p9_check_errors
KASAN: invalid-free in p9_client_create (2) v9fs 22 C done 3 1718d 1718d 19/29 1677d 757fed1d0898 Revert "mm/slub: fix a memory leak in sysfs_slab_add()"
WARNING: refcount bug in p9_req_put v9fs 13 syz inconclusive done 6 1970d 2522d 15/29 1790d a39c46067c84 net/9p: validate fds in p9_fd_open
BUG: corrupted list in p9_read_work (2) v9fs 8 syz done error 38 2153d 2515d 15/29 1851d 74d6a5d56629 9p/trans_fd: Fix concurrency del of req_list in p9_fd_cancelled/p9_read_work
KASAN: use-after-free Read in p9_fd_poll v9fs 19 C done 8 2617d 2649d 13/29 2152d 430ac66eb4c5 net/9p/trans_fd.c: fix race-condition by flushing workqueue before the kfree()
BUG: corrupted list in p9_conn_cancel v9fs 8 C done 18 2551d 2651d 13/29 2161d 9f476d7c540c net/9p/trans_fd.c: fix race by holding the lock
general protection fault in p9_conn_cancel v9fs 2 C done 2 2631d 2649d 13/29 2161d 9f476d7c540c net/9p/trans_fd.c: fix race by holding the lock
WARNING: ODEBUG bug in p9_fd_close v9fs -1 C done 82 2612d 2652d 13/29 2161d 430ac66eb4c5 net/9p/trans_fd.c: fix race-condition by flushing workqueue before the kfree()
BUG: corrupted list in p9_write_work v9fs 8 C done 5 2574d 2620d 13/29 2161d 728356dedeff 9p: Add refcount to p9_req_t
memory leak in v9fs_cache_session_get_cookie v9fs 3 C 242 2188d 2335d 13/29 2188d 962a991c5de1 9p/cache.c: Fix memory leak in v9fs_cache_session_get_cookie
BUG: unable to handle kernel NULL pointer dereference in setup_kmem_cache_node v9fs 10 3 2474d 2474d 11/29 2412d 09c2e76ed734 slab: alien caches must not be initialized if the allocation of the alien cache failed
WARNING in kmem_cache_create_usercopy v9fs -1 C 10 2477d 2535d 11/29 2461d 574d356b7a02 9p/net: put a lower bound on msize
KASAN: invalid-free in p9stat_free v9fs 22 C 3 2603d 2603d 11/29 2525d 62e3941776fe 9p: clear dangling pointers in p9stat_free 81c99089bce6 v9fs_dir_readdir: fix double-free on p9stat_read error
KASAN: use-after-free Read in _copy_from_iter v9fs 19 C 12 2629d 2641d 11/29 2525d 728356dedeff 9p: Add refcount to p9_req_t
WARNING: kmalloc bug in __v9fs_get_acl v9fs -1 C 212 2543d 2650d 11/29 2525d 61448479a9f2 mm: don't warn about large allocations for slab
BUG: corrupted list in p9_read_work v9fs 8 syz 23 2533d 2645d 11/29 2525d e4ca13f7d075 9p/trans_fd: abort p9_read_work if req status changed
general protection fault in vsscanf v9fs 2 C 7 2620d 2650d 8/29 2595d 10aa14527f45 9p: fix multiple NULL-pointer-dereferences
KASAN: slab-out-of-bounds Read in pdu_read v9fs 17 C 267 2617d 2652d 8/29 2601d f984579a01d8 9p: validate PDU length 7913690dcc5e net/9p/client.c: version pointer uninitialized
general protection fault in p9_fd_create_unix v9fs 2 C 4 2647d 2651d 8/29 2601d 10aa14527f45 9p: fix multiple NULL-pointer-dereferences
BUG: corrupted list in p9_fd_cancel v9fs 8 C 34 2637d 2651d 8/29 2601d 9f476d7c540c net/9p/trans_fd.c: fix race by holding the lock
KASAN: use-after-free Read in p9_poll_workfn v9fs 19 C 148 2612d 2652d 8/29 2601d 430ac66eb4c5 net/9p/trans_fd.c: fix race-condition by flushing workqueue before the kfree()