|
KASAN: slab-use-after-free Read in ib_register_device
rdma
|
|
|
|
1 |
70d |
65d
|
28/29 |
never |
d0706bfd3ee4
RDMA/core: Fix "KASAN: slab-use-after-free Read in ib_register_device" problem
|
|
INFO: trying to register non-static key in rxe_qp_do_cleanup
rdma
|
|
|
|
7 |
36d |
77d
|
28/29 |
never |
1c7eec4d5f3b
RDMA/rxe: Fix "trying to register non-static key in rxe_qp_do_cleanup" bug
|
|
KASAN: slab-use-after-free Read in nla_put (2)
rdma
|
|
|
|
1 |
124d |
119d
|
28/29 |
24d |
1d6a9e7449e2
RDMA/core: Fix use-after-free when rename device name
|
|
KASAN: slab-use-after-free Read in dev_get_flags
rdma
|
|
|
|
7 |
224d |
211d
|
28/29 |
59d |
2ac5415022d1
RDMA/rxe: Remove the direct link to net_device
16b87037b488
RDMA/siw: Remove direct link to net_device
|
|
WARNING in gid_table_release_one (2)
rdma
|
|
|
|
1 |
310d |
306d
|
28/29 |
254d |
1403c8b14765
IB/core: Fix ib_cache_setup_one error flow cleanup
|
|
general protection fault in rxe_completer
rdma
|
|
|
|
281 |
666d |
746d
|
23/29 |
631d |
5993b75d0bc7
RDMA/rxe: Fix unsafe drain work queue code
|
|
INFO: trying to register non-static key in skb_dequeue (2)
rdma
|
syz |
error |
|
123 |
750d |
793d
|
23/29 |
645d |
2a62b6210ce8
RDMA/rxe: Fix the use-before-initialization error of resp_pkts
|
|
INFO: trying to register non-static key in rxe_cleanup_task (2)
rdma
|
|
|
|
148 |
791d |
857d
|
22/29 |
757d |
b2b1ddc45745
RDMA/rxe: Fix the error "trying to register non-static key in rxe_cleanup_task"
|
|
possible deadlock in worker_thread
rdma
|
|
|
|
1 |
1244d |
1240d
|
22/29 |
861d |
081bdc9fe05b
RDMA/ib_srp: Fix a deadlock
bf23747ee053
loop: revert "make autoclear operation asynchronous"
|
|
KASAN: use-after-free Read in ucma_destroy_private_ctx
rdma
|
|
|
|
1 |
1284d |
1278d
|
22/29 |
861d |
36e8169ec973
RDMA/ucma: Protect mc during concurrent multicast leaves
|
|
BUG: sleeping function called from invalid context in smc_pnet_apply_ib
rdma
|
C |
inconclusive |
|
92 |
1225d |
1233d
|
22/29 |
861d |
7ff57e98fb78
net/smc: Use a mutex for locking "struct smc_pnettable"
|
|
INFO: trying to register non-static key in rxe_cleanup_task
rdma
|
syz |
|
|
299 |
863d |
1138d
|
22/29 |
861d |
fd5382c5805c
RDMA/rxe: Fix error unwind in rxe_create_qp()
|
|
WARNING: refcount bug in nldev_newlink
rdma
|
C |
|
|
33 |
935d |
940d
|
22/29 |
861d |
e42f9c2e6aad
RDMA: Add missed netdev_put() for the netdevice_tracker
|
|
WARNING: refcount bug in free_netdevs
rdma
|
|
|
|
3 |
935d |
938d
|
22/29 |
861d |
e42f9c2e6aad
RDMA: Add missed netdev_put() for the netdevice_tracker
|
|
BUG: unable to handle kernel NULL pointer dereference in __rxe_do_task
rdma
|
syz |
|
|
120 |
988d |
1057d
|
22/29 |
861d |
a625ca30eff8
RDMA/rxe: Fix "kernel NULL pointer dereference" error
|
|
BUG: corrupted list in rdma_listen (2)
rdma
|
C |
inconclusive |
|
5 |
1242d |
1308d
|
22/29 |
861d |
22e9f71072fa
RDMA/cma: Do not change route.addr.src_addr outside state checks
|
|
WARNING: refcount bug in put_gid_ndev
rdma
|
|
|
|
3 |
938d |
938d
|
22/29 |
861d |
e42f9c2e6aad
RDMA: Add missed netdev_put() for the netdevice_tracker
|
|
upstream boot error: WARNING in alloc_workqueue
rdma
|
|
|
|
1 |
1056d |
1056d
|
22/29 |
861d |
9993a4f989c7
virtio: Revert "virtio: find_vqs() add arg sizes"
|
|
KMSAN: kernel-infoleak in ucma_init_qp_attr
rdma
|
|
|
|
1 |
1287d |
1277d
|
20/29 |
1214d |
b35a0f4dd544
RDMA/core: Don't infoleak GRH fields
|
|
general protection fault in nldev_stat_set_doit (2)
rdma
|
|
|
|
12 |
1320d |
1328d
|
20/29 |
1214d |
d821f7c13ca0
RDMA/nldev: Check stat attribute before accessing it
|
|
KASAN: use-after-free Read in rxe_queue_cleanup
rdma
|
|
|
|
65 |
1296d |
1323d
|
20/29 |
1214d |
84b01721e804
RDMA: Fix use-after-free in rxe_queue_cleanup
|
|
WARNING: refcount bug in rxe_qp_do_cleanup
rdma
|
|
|
|
1 |
1519d |
1516d
|
20/29 |
1333d |
67f29896fdc8
RDMA/rxe: Clear all QP fields if creation failed
|
|
BUG: sleeping function called from invalid context in rxe_alloc_nl
rdma
|
C |
done |
|
475 |
1613d |
1627d
|
20/29 |
1547d |
c4369575b2bc
RDMA/rxe: Fix bug in rxe_alloc()
|
|
possible deadlock in _destroy_id
rdma
|
C |
unreliable |
|
28 |
1681d |
1689d
|
19/29 |
1578d |
dd37d2f59eb8
RDMA/cma: Fix deadlock on &lock in rdma_cma_listen_on_all() error unwind
|
|
KASAN: use-after-free Read in ucma_close (2)
rdma
|
syz |
done |
|
1 |
1758d |
1758d
|
15/29 |
1691d |
f5449e74802c
RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy
|
|
KASAN: use-after-free Write in addr_resolve
rdma
|
|
|
|
1 |
1853d |
1850d
|
15/29 |
1752d |
f6a9d47ae685
RDMA/cma: Execute rdma_cm destruction from a handler properly
|
|
KASAN: use-after-free Read in addr_handler (2)
rdma
|
|
|
|
2 |
1807d |
1850d
|
15/29 |
1752d |
f6a9d47ae685
RDMA/cma: Execute rdma_cm destruction from a handler properly
|
|
WARNING in ib_unregister_device_queued
rdma
|
|
|
|
2 |
1884d |
1895d
|
15/29 |
1752d |
0cb42c026583
RDMA/core: Fix bogus WARN_ON during ib_unregister_device_queued()
|
|
KMSAN: uninit-value in ucma_connect
rdma
|
C |
|
|
138 |
1757d |
1809d
|
15/29 |
1752d |
31142a4ba617
RDMA/cm: Add min length checks to user structure copies
|
|
KMSAN: uninit-value in xa_load
rdma
|
C |
|
|
208 |
1753d |
1809d
|
15/29 |
1752d |
31142a4ba617
RDMA/cm: Add min length checks to user structure copies
|
|
KASAN: use-after-free Read in addr_handler
rdma
|
syz |
done |
|
12 |
1913d |
2395d
|
15/29 |
1881d |
7c11910783a1
RDMA/ucma: Put a lock around every call to the rdma_cm layer
|
|
KASAN: use-after-free Read in cma_cancel_operation
rdma
|
C |
done |
|
617 |
1969d |
2650d
|
15/29 |
1881d |
7c11910783a1
RDMA/ucma: Put a lock around every call to the rdma_cm layer
|
|
KASAN: use-after-free Read in rdma_listen (2)
rdma
|
C |
done |
|
354 |
1920d |
2289d
|
15/29 |
1881d |
7c11910783a1
RDMA/ucma: Put a lock around every call to the rdma_cm layer
|
|
KASAN: use-after-free Read in __list_del_entry_valid (4)
rdma
|
C |
done |
|
16 |
1970d |
2658d
|
15/29 |
1881d |
7c11910783a1
RDMA/ucma: Put a lock around every call to the rdma_cm layer
|
|
general protection fault in rdma_listen (2)
rdma
|
syz |
done |
|
104 |
1920d |
2431d
|
15/29 |
1881d |
7c11910783a1
RDMA/ucma: Put a lock around every call to the rdma_cm layer
|
|
possible deadlock in cma_netdev_callback
rdma
|
C |
done |
|
1399 |
1914d |
1956d
|
15/29 |
1881d |
33fb27fd5446
RDMA/siw: Fix passive connection establishment
|
|
BUG: corrupted list in rdma_listen
rdma
|
C |
|
|
202 |
2054d |
2633d
|
15/29 |
1881d |
7c11910783a1
RDMA/ucma: Put a lock around every call to the rdma_cm layer
|
|
INFO: trying to register non-static key in xa_destroy
rdma
|
C |
done |
|
46 |
1929d |
1957d
|
15/29 |
1906d |
12e5eef0f4d8
RDMA/siw: Fix failure handling during device creation
|
|
general protection fault in nldev_stat_set_doit
rdma
|
C |
done |
|
8 |
1940d |
1957d
|
15/29 |
1906d |
78f34a16c286
RDMA/nldev: Fix crash when set a QP to a new counter but QPN is missing
|
|
KMSAN: use-after-free in rdma_listen
rdma
|
C |
|
|
26 |
1947d |
2093d
|
15/29 |
1927d |
5fc01fb846bc
RDMA/cma: Rollback source IP address if failing to acquire device
|
|
KMSAN: uninit-value in rdma_listen
rdma
|
C |
|
|
28 |
2104d |
2469d
|
15/29 |
1927d |
5fc01fb846bc
RDMA/cma: Rollback source IP address if failing to acquire device
|
|
WARNING in cma_exit_net
rdma
|
|
|
|
25 |
2285d |
2286d
|
12/29 |
2212d |
061ccb52d23c
RDMA/cma: Set proper port number as index
|
|
KASAN: use-after-free Read in rdma_listen
rdma
|
C |
|
|
1548 |
2291d |
2651d
|
11/29 |
2290d |
5fc01fb846bc
RDMA/cma: Rollback source IP address if failing to acquire device
|
|
KASAN: use-after-free Read in alloc_workqueue
rdma
|
C |
|
|
37 |
2303d |
2315d
|
11/29 |
2290d |
009bb421b6ce
workqueue, lockdep: Fix an alloc_workqueue() error path
|
|
KASAN: use-after-free Read in rdma_resolve_addr
rdma
|
|
|
|
1 |
2474d |
2473d
|
11/29 |
2325d |
5fe23f262e05
ucma: fix a use-after-free in ucma_resolve_ip()
|
|
KASAN: use-after-free Read in cma_acquire_dev
rdma
|
|
|
|
1 |
2556d |
2555d
|
11/29 |
2325d |
5fe23f262e05
ucma: fix a use-after-free in ucma_resolve_ip()
|
|
KASAN: use-after-free Read in wait_for_completion
rdma
|
|
|
|
1 |
2449d |
2448d
|
11/29 |
2325d |
5fe23f262e05
ucma: fix a use-after-free in ucma_resolve_ip()
|
|
KASAN: use-after-free Read in __list_add_valid (5)
rdma
|
C |
|
|
16 |
2651d |
2658d
|
11/29 |
2325d |
5fe23f262e05
ucma: fix a use-after-free in ucma_resolve_ip()
|
|
general protection fault in addr_resolve
rdma
|
C |
|
|
32 |
2462d |
2478d
|
11/29 |
2426d |
fe33507ec38a
RDMA/core: Check error status of rdma_find_ndev_for_src_ip_rcu
|
|
KASAN: use-after-free Write in ucma_put_ctx
rdma
|
syz |
|
|
11 |
2474d |
2493d
|
11/29 |
2458d |
5fe23f262e05
ucma: fix a use-after-free in ucma_resolve_ip()
|
|
KASAN: use-after-free Read in cma_bind_port
rdma
|
syz |
|
|
2 |
2488d |
2492d
|
11/29 |
2458d |
5fe23f262e05
ucma: fix a use-after-free in ucma_resolve_ip()
|
|
INFO: task hung in ucma_destroy_id
rdma
|
C |
|
|
46 |
2634d |
2671d
|
5/29 |
2557d |
ef95a90ae6f4
RDMA/ucma: ucma_context reference leak in error path
|
|
WARNING: kmalloc bug in memdup_user (2)
rdma
|
|
|
|
1 |
2657d |
2657d
|
5/29 |
2608d |
5f3e3b85cc0a
RDMA/ucma: Correct option size check using optlen
|
|
general protection fault in rdma_addr_size
rdma
|
C |
|
|
2 |
2666d |
2660d
|
5/29 |
2609d |
e8980d67d601
RDMA/ucma: Ensure that CM_ID exists prior to access it
|
|
general protection fault in ucma_set_ib_path (2)
rdma
|
C |
|
|
6 |
2642d |
2649d
|
5/29 |
2614d |
8435168d50e6
RDMA/ucma: Don't allow setting RDMA_OPTION_IB_PATH without an RDMA device
|
|
general protection fault in rdma_init_qp_attr (2)
rdma
|
C |
|
|
753 |
2654d |
2660d
|
5/29 |
2646d |
4b658d1bbc16
RDMA/ucma: Check that device is connected prior to access it
|
|
kernel BUG at lib/string.c:LINE! (3)
rdma
|
C |
|
|
5 |
2655d |
2656d
|
5/29 |
2646d |
84652aefb347
RDMA/ucma: Introduce safer rdma_addr_size() variants
|
|
general protection fault in rdma_notify
rdma
|
C |
|
|
3 |
2663d |
2660d
|
5/29 |
2646d |
c8d3bcbfc5ea
RDMA/ucma: Check that device exists prior to accessing it
|
|
KASAN: null-ptr-deref Write in rdma_resolve_addr
rdma
|
C |
|
|
66 |
2663d |
2674d
|
4/29 |
2660d |
2975d5de6428
RDMA/ucma: Check AF family prior resolving address
|
|
WARNING: kmalloc bug in memdup_user
rdma
|
C |
|
|
441 |
2660d |
2677d
|
4/29 |
2660d |
6a21dfc0d0db
RDMA/ucma: Limit possible option size
|
|
KASAN: use-after-free Read in ucma_close
rdma
|
C |
|
|
176 |
2663d |
2677d
|
4/29 |
2660d |
ed65a4dc2208
RDMA/ucma: Fix use-after-free access in ucma_close
|
|
kernel BUG at lib/string.c:LINE! (2)
rdma
|
syz |
|
|
2 |
2671d |
2671d
|
4/29 |
2660d |
0c81ffc60d52
RDMA/ucma: Don't allow join attempts for unsupported AF family
|
|
general protection fault in rdma_init_qp_attr
rdma
|
C |
|
|
2096 |
2660d |
2676d
|
4/29 |
2660d |
a5880b844303
RDMA/ucma: Check that user doesn't overflow QP state
|
|
general protection fault in rdma_join_multicast
rdma
|
C |
|
|
258 |
2663d |
2677d
|
4/29 |
2660d |
7688f2c3bbf5
RDMA/ucma: Fix access to non-initialized CM_ID object
|
|
general protection fault in ucma_connect
rdma
|
C |
|
|
2 |
2667d |
2667d
|
4/29 |
2660d |
e8980d67d601
RDMA/ucma: Ensure that CM_ID exists prior to access it
|