syzbot: bpf subsystem

bpf subsystem

List(s): bpf@vger.kernel.org
Maintainer(s): andrii@kernel.org, ast@kernel.org, daniel@iogearbox.net
Fixed bugs: 278
Parent subsystem(s): kernel (72)

open (44):
Title	Repro	Cause bisect	Fix bisect	Count	Last	Reported	Discussions
KASAN: slab-use-after-free Read in sk_psock_verdict_data_ready (2) bpf net				1	11d	7d15h
possible deadlock in work_grab_pending (2) bpf				1	18d	14d
WARNING: locking bug in bpf_map_put bpf	C	done		139	1h11m	19d	💬 5 [16d]
WARNING: locking bug in trie_delete_elem bpf	C	done		3000	1h40m	20d	PATCH [4d05h]
KASAN: slab-out-of-bounds Read in bpf_inode_storage_free bpf				2	35d	32d
possible deadlock in debug_check_no_obj_freed bpf				1	37d	33d	💬 3 [7d19h]
KASAN: slab-use-after-free Read in page_pool_put_unrefed_netmem bpf net				1	42d	38d
WARNING in acquire_reference_state bpf	C	done		9	48d	45d
KFENCE: memory corruption in pskb_expand_head bpf net	C	done		5	44d	46d	💬 1 [46d]
possible deadlock in __put_partials bpf				1	51d	47d	💬 3 [7d19h]
BUG: MAX_STACK_TRACE_ENTRIES too low! (4) bpf	syz	done		5	3d07h	55d
possible deadlock in __mod_timer (4) bpf trace	C			4	48d	59d	💬 6 [36d]
possible deadlock in htab_map_delete_elem bpf	C			3	60d	70d
KASAN: slab-use-after-free Read in sk_filter_trim_cap bpf net				2	18d	77d
WARNING in sock_map_destroy bpf net	C	error		6	18d	85d	PATCH [54d]
BUG: unable to handle kernel NULL pointer dereference in tcp_bpf_sendmsg bpf net				2	88d	85d
WARNING in bpf_get_stack_raw_tp bpf trace	C	error		63	2d06h	86d	💬 6 [36d]
INFO: rcu detected stall in kcov_close bpf mm				64	2d07h	100d
possible deadlock in htab_lock_bucket (2) bpf	C	error		4	10d	107d
INFO: rcu detected stall in sys_bpf (9) bpf	C	error		60	1h33m	176d
possible deadlock in __lock_task_sighand (3) bpf	C	done	inconclusive	112	114d	178d
possible deadlock in get_partial_node bpf				19	36d	182d	PATCH [3d05h]
KMSAN: uninit-value in dev_map_hash_lookup_elem bpf net	C			20	160d	186d
INFO: rcu detected stall in handle_softirqs bpf virt wireguard	C	done		33	10d	193d	💬 1 [193d]
WARNING in bpf_map_lookup_percpu_elem bpf	C	done		2116	19d	205d
possible deadlock in stack_depot_save_flags bpf				7	58d	209d	💬 3 [7d19h]
INFO: rcu detected stall in sys_close (7) bpf kernfs	C	error		5	30d	216d
possible deadlock in __stack_map_get bpf	C	error		49	13d	216d	💬 2 [36d]
possible deadlock in queue_stack_map_push_elem bpf	C	error		57	13h23m	217d
possible deadlock in get_page_from_freelist bpf				17	57d	220d	💬 8 [7d19h]
possible deadlock in __queue_map_get bpf	C	error		162	10d	222d	PATCH [188d]
INFO: rcu detected stall in sys_clone (8) bpf mm	C	error		143	14h36m	237d	💬 10 [67d]
possible deadlock in trie_update_elem bpf				137	16d	238d	💬 3 [7d19h]
INFO: rcu detected stall in kauditd_thread (4) audit bpf	C	error		18	14d	238d	💬 6 [234d]
possible deadlock in trie_delete_elem bpf	C	done		21023	3h29m	245d	PATCH [166d]
possible deadlock in sock_map_delete_elem bpf net	C	error	done	869	163d	247d
UBSAN: array-index-out-of-bounds in bpf_prog_select_runtime bpf	C	done		20	9h43m	251d	PATCH [198d]
possible deadlock in __bpf_ringbuf_reserve bpf	C	error		1704	8m	253d	💬 6 [36d]
KASAN: slab-out-of-bounds Read in btf_datasec_check_meta bpf	C	done		16010	60d	254d	PATCH [254d]
KMSAN: uninit-value in ___bpf_prog_run (4) bpf	C			264	3d20h	330d
WARNING in format_decode (3) bpf trace	C	done		1226	3d05h	365d	PATCH [1d20h]
INFO: rcu detected stall in sys_unshare (9) bpf net	C	inconclusive		15	2d19h	376d	💬 1 [254d]
possible deadlock in task_fork_fair bpf trace	C	done		9106	27d	410d	💬 1 [67d]
INFO: rcu detected stall in watchdog bpf usb	C	error		7	15d	825d

moderation (5):
Title	Repro	Count	Last	Reported
KCSAN: data-race in bpf_lru_pop_free / htab_lru_percpu_map_lookup_percpu_elem (2) bpf		1	10d	10d
KCSAN: data-race in __queue_delayed_work / kvfree_call_rcu kernfs bpf		3	34d	50d
general protection fault in drain_mem_cache (2) bpf		1	75d	71d
KCSAN: data-race in pcpu_alloc_noprof / pcpu_block_update_hint_alloc netfilter bpf	syz	197	5h14m	185d
KCSAN: data-race in pcpu_alloc / pcpu_block_update_hint_alloc netfilter bpf	syz	1228	187d	1841d