2026/01/21 23:01:34 extracted 325526 text symbol hashes for base and 325526 for patched 2026/01/21 23:01:34 symbol "cpuid_bits" has different values in base vs patch 2026/01/21 23:01:34 binaries are different, continuing fuzzing 2026/01/21 23:01:34 adding directly modified files to focus areas: ["Documentation/admin-guide/kernel-parameters.txt" "Documentation/filesystems/resctrl.rst" "arch/x86/include/asm/cpufeatures.h" "arch/x86/include/asm/msr-index.h" "arch/x86/include/asm/resctrl.h" "arch/x86/kernel/cpu/resctrl/core.c" "arch/x86/kernel/cpu/resctrl/ctrlmondata.c" "arch/x86/kernel/cpu/resctrl/internal.h" "arch/x86/kernel/cpu/resctrl/rdtgroup.c" "arch/x86/kernel/cpu/scattered.c" "fs/resctrl/ctrlmondata.c" "fs/resctrl/internal.h" "fs/resctrl/rdtgroup.c" "include/linux/resctrl.h" "include/linux/sched.h"] 2026/01/21 23:01:34 downloading corpus #1: "https://storage.googleapis.com/syzkaller/corpus/ci-upstream-kasan-gce-root-corpus.db" 2026/01/21 23:02:33 runner 4 connected 2026/01/21 23:02:33 runner 8 connected 2026/01/21 23:02:33 runner 1 connected 2026/01/21 23:02:33 runner 3 connected 2026/01/21 23:02:33 runner 7 connected 2026/01/21 23:02:33 runner 5 connected 2026/01/21 23:02:33 runner 2 connected 2026/01/21 23:02:33 runner 6 connected 2026/01/21 23:02:33 runner 2 connected 2026/01/21 23:02:34 runner 0 connected 2026/01/21 23:02:34 runner 0 connected 2026/01/21 23:02:34 runner 1 connected 2026/01/21 23:02:39 initializing coverage information... 2026/01/21 23:02:40 executor cover filter: 0 PCs 2026/01/21 23:02:42 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 172/8071 2026/01/21 23:02:42 base: machine check complete 2026/01/21 23:02:43 discovered 7654 source files, 336933 symbols 2026/01/21 23:02:44 coverage filter: Documentation/admin-guide/kernel-parameters.txt: [] 2026/01/21 23:02:44 coverage filter: Documentation/filesystems/resctrl.rst: [] 2026/01/21 23:02:44 coverage filter: arch/x86/include/asm/cpufeatures.h: [] 2026/01/21 23:02:44 coverage filter: arch/x86/include/asm/msr-index.h: [] 2026/01/21 23:02:44 coverage filter: arch/x86/include/asm/resctrl.h: [] 2026/01/21 23:02:44 coverage filter: arch/x86/kernel/cpu/resctrl/core.c: [] 2026/01/21 23:02:44 coverage filter: arch/x86/kernel/cpu/resctrl/ctrlmondata.c: [] 2026/01/21 23:02:44 coverage filter: arch/x86/kernel/cpu/resctrl/internal.h: [] 2026/01/21 23:02:44 coverage filter: arch/x86/kernel/cpu/resctrl/rdtgroup.c: [] 2026/01/21 23:02:44 coverage filter: arch/x86/kernel/cpu/scattered.c: [arch/x86/kernel/cpu/scattered.c] 2026/01/21 23:02:44 coverage filter: fs/resctrl/ctrlmondata.c: [] 2026/01/21 23:02:44 coverage filter: fs/resctrl/internal.h: [] 2026/01/21 23:02:44 coverage filter: fs/resctrl/rdtgroup.c: [] 2026/01/21 23:02:44 coverage filter: include/linux/resctrl.h: [] 2026/01/21 23:02:44 coverage filter: include/linux/sched.h: [] 2026/01/21 23:02:44 area "files": 15 PCs in the cover filter 2026/01/21 23:02:44 area "": 0 PCs in the cover filter 2026/01/21 23:02:44 executor cover filter: 0 PCs 2026/01/21 23:02:45 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 172/8071 2026/01/21 23:02:45 new: machine check complete 2026/01/21 23:02:48 new: adding 2358 seeds 2026/01/21 23:03:06 triaged 98.4% of the corpus 2026/01/21 23:03:06 starting bug reproductions 2026/01/21 23:03:06 starting bug reproductions (max 6 VMs, 4 repros) 2026/01/21 23:03:36 triaged 100.0% of the corpus 2026/01/21 23:06:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 4, "corpus": 741, "corpus [files]": 0, "cover overflows": 2, "coverage": 10164, "distributor delayed": 465, "distributor undelayed": 465, "distributor violated": 0, "exec candidate": 2358, "exec collide": 4249, "exec fuzz": 8075, "exec gen": 372, "exec hints": 1424, "exec inject": 0, "exec minimize": 9941, "exec retries": 0, "exec seeds": 2105, "exec smash": 8957, "exec total [base]": 17641, "exec total [new]": 46534, "exec triage": 2047, "executor restarts [base]": 28, "executor restarts [new]": 50, "fault jobs": 0, "fuzzer jobs": 878, "fuzzing VMs [base]": 3, "fuzzing VMs [new]": 9, "hints jobs": 153, "max signal": 10683, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 5311, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 849, "no exec duration": 21208000000, "no exec requests": 57, "pending": 0, "prog exec time": 188, "reproducing": 0, "rpc recv": 1323531192, "rpc sent": 61421696, "signal": 9694, "smash jobs": 711, "triage jobs": 14, "vm output": 188553, "vm restarts [base]": 3, "vm restarts [new]": 9 } 2026/01/21 23:11:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 36, "corpus": 980, "corpus [files]": 0, "cover overflows": 15, "coverage": 12283, "distributor delayed": 620, "distributor undelayed": 620, "distributor violated": 0, "exec candidate": 2358, "exec collide": 9273, "exec fuzz": 17524, "exec gen": 856, "exec hints": 3448, "exec inject": 0, "exec minimize": 13919, "exec retries": 0, "exec seeds": 2894, "exec smash": 21092, "exec total [base]": 29279, "exec total [new]": 81194, "exec triage": 2820, "executor restarts [base]": 28, "executor restarts [new]": 50, "fault jobs": 0, "fuzzer jobs": 429, "fuzzing VMs [base]": 3, "fuzzing VMs [new]": 9, "hints jobs": 97, "max signal": 12938, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 7106, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1152, "no exec duration": 21208000000, "no exec requests": 57, "pending": 0, "prog exec time": 242, "reproducing": 0, "rpc recv": 2297271020, "rpc sent": 133515856, "signal": 11613, "smash jobs": 324, "triage jobs": 8, "vm output": 306117, "vm restarts [base]": 3, "vm restarts [new]": 9 } 2026/01/21 23:16:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 41, "corpus": 1175, "corpus [files]": 0, "cover overflows": 72, "coverage": 13060, "distributor delayed": 749, "distributor undelayed": 749, "distributor violated": 0, "exec candidate": 2358, "exec collide": 14658, "exec fuzz": 27522, "exec gen": 1389, "exec hints": 5932, "exec inject": 0, "exec minimize": 17431, "exec retries": 0, "exec seeds": 3510, "exec smash": 29141, "exec total [base]": 39636, "exec total [new]": 112364, "exec triage": 3418, "executor restarts [base]": 28, "executor restarts [new]": 50, "fault jobs": 0, "fuzzer jobs": 21, "fuzzing VMs [base]": 3, "fuzzing VMs [new]": 9, "hints jobs": 1, "max signal": 13784, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 8711, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1402, "no exec duration": 21208000000, "no exec requests": 57, "pending": 0, "prog exec time": 275, "reproducing": 0, "rpc recv": 3152560688, "rpc sent": 205038312, "signal": 12292, "smash jobs": 12, "triage jobs": 8, "vm output": 421099, "vm restarts [base]": 3, "vm restarts [new]": 9 } 2026/01/21 23:21:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 46, "corpus": 1278, "corpus [files]": 0, "cover overflows": 126, "coverage": 13406, "distributor delayed": 810, "distributor undelayed": 810, "distributor violated": 0, "exec candidate": 2358, "exec collide": 22228, "exec fuzz": 41954, "exec gen": 2142, "exec hints": 6242, "exec inject": 0, "exec minimize": 19269, "exec retries": 0, "exec seeds": 3822, "exec smash": 31769, "exec total [base]": 49011, "exec total [new]": 140530, "exec triage": 3736, "executor restarts [base]": 28, "executor restarts [new]": 50, "fault jobs": 0, "fuzzer jobs": 18, "fuzzing VMs [base]": 3, "fuzzing VMs [new]": 9, "hints jobs": 3, "max signal": 14174, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 9545, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1531, "no exec duration": 21208000000, "no exec requests": 57, "pending": 0, "prog exec time": 290, "reproducing": 0, "rpc recv": 3869715420, "rpc sent": 275574232, "signal": 12623, "smash jobs": 7, "triage jobs": 8, "vm output": 615822, "vm restarts [base]": 3, "vm restarts [new]": 9 } 2026/01/21 23:25:29 base crash: INFO: rcu detected stall in corrupted 2026/01/21 23:26:27 runner 1 connected 2026/01/21 23:26:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 52, "corpus": 1351, "corpus [files]": 0, "cover overflows": 196, "coverage": 13604, "distributor delayed": 848, "distributor undelayed": 848, "distributor violated": 0, "exec candidate": 2358, "exec collide": 29877, "exec fuzz": 56325, "exec gen": 2846, "exec hints": 6369, "exec inject": 0, "exec minimize": 20683, "exec retries": 0, "exec seeds": 4047, "exec smash": 33672, "exec total [base]": 56090, "exec total [new]": 167145, "exec triage": 3960, "executor restarts [base]": 28, "executor restarts [new]": 50, "fault jobs": 0, "fuzzer jobs": 9, "fuzzing VMs [base]": 3, "fuzzing VMs [new]": 9, "hints jobs": 0, "max signal": 14384, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 10183, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1623, "no exec duration": 21208000000, "no exec requests": 57, "pending": 0, "prog exec time": 309, "reproducing": 0, "rpc recv": 4442782668, "rpc sent": 339754608, "signal": 12814, "smash jobs": 4, "triage jobs": 5, "vm output": 820945, "vm restarts [base]": 4, "vm restarts [new]": 9 } 2026/01/21 23:31:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 65, "corpus": 1435, "corpus [files]": 0, "cover overflows": 237, "coverage": 13854, "distributor delayed": 890, "distributor undelayed": 890, "distributor violated": 0, "exec candidate": 2358, "exec collide": 37160, "exec fuzz": 70417, "exec gen": 3547, "exec hints": 6581, "exec inject": 0, "exec minimize": 22136, "exec retries": 0, "exec seeds": 4297, "exec smash": 35738, "exec total [base]": 64615, "exec total [new]": 193451, "exec triage": 4209, "executor restarts [base]": 31, "executor restarts [new]": 50, "fault jobs": 0, "fuzzer jobs": 10, "fuzzing VMs [base]": 3, "fuzzing VMs [new]": 9, "hints jobs": 1, "max signal": 14686, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 10846, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1725, "no exec duration": 21208000000, "no exec requests": 57, "pending": 0, "prog exec time": 345, "reproducing": 0, "rpc recv": 5081988324, "rpc sent": 408634280, "signal": 13043, "smash jobs": 7, "triage jobs": 2, "vm output": 1052744, "vm restarts [base]": 4, "vm restarts [new]": 9 } 2026/01/21 23:33:36 fuzzer has not reached the modified code in 30m0s, aborting 2026/01/21 23:33:36 repro loop terminated 2026/01/21 23:33:36 base: rpc server terminaled 2026/01/21 23:33:36 new: rpc server terminaled 2026/01/21 23:33:37 base: pool terminated 2026/01/21 23:33:37 base: kernel context loop terminated 2026/01/21 23:33:37 new: pool terminated 2026/01/21 23:33:37 new: kernel context loop terminated 2026/01/21 23:33:37 diff fuzzing terminated 2026/01/21 23:33:37 bug reporting terminated 2026/01/21 23:33:37 status reporting terminated 2026/01/21 23:33:37 fuzzing is finished 2026/01/21 23:33:37 status at the end: Title On-Base On-Patched INFO: rcu detected stall in corrupted 1 crashes