2025/08/05 11:51:51 extracted 302733 symbol hashes for base and 302733 for patched 2025/08/05 11:51:51 adding modified_functions to focus areas: ["nvmet_execute_disc_identify"] 2025/08/05 11:51:51 adding directly modified files to focus areas: ["arch/s390/kvm/kvm-s390.c" "arch/s390/kvm/pv.c"] 2025/08/05 11:51:52 downloaded the corpus from https://storage.googleapis.com/syzkaller/corpus/ci-upstream-kasan-gce-root-corpus.db 2025/08/05 11:52:50 runner 3 connected 2025/08/05 11:52:50 runner 8 connected 2025/08/05 11:52:50 runner 5 connected 2025/08/05 11:52:50 runner 2 connected 2025/08/05 11:52:51 runner 4 connected 2025/08/05 11:52:51 runner 3 connected 2025/08/05 11:52:57 runner 6 connected 2025/08/05 11:52:57 runner 1 connected 2025/08/05 11:52:57 runner 0 connected 2025/08/05 11:52:58 runner 2 connected 2025/08/05 11:52:58 runner 7 connected 2025/08/05 11:52:58 initializing coverage information... 2025/08/05 11:52:58 executor cover filter: 0 PCs 2025/08/05 11:52:59 runner 0 connected 2025/08/05 11:53:01 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 165/8048 2025/08/05 11:53:01 base: machine check complete 2025/08/05 11:53:04 discovered 7668 source files, 337507 symbols 2025/08/05 11:53:04 coverage filter: nvmet_execute_disc_identify: [nvmet_execute_disc_identify] 2025/08/05 11:53:04 coverage filter: arch/s390/kvm/kvm-s390.c: [] 2025/08/05 11:53:04 coverage filter: arch/s390/kvm/pv.c: [] 2025/08/05 11:53:04 area "symbols": 15 PCs in the cover filter 2025/08/05 11:53:04 area "files": 0 PCs in the cover filter 2025/08/05 11:53:04 area "": 0 PCs in the cover filter 2025/08/05 11:53:04 executor cover filter: 0 PCs 2025/08/05 11:53:06 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 165/8048 2025/08/05 11:53:06 new: machine check complete 2025/08/05 11:53:10 new: adding 2209 seeds 2025/08/05 11:53:24 triaged 97.3% of the corpus 2025/08/05 11:53:24 starting bug reproductions 2025/08/05 11:53:24 starting bug reproductions (max 10 VMs, 7 repros) 2025/08/05 11:53:54 triaged 100.0% of the corpus 2025/08/05 11:56:54 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "corpus": 665, "corpus [files]": 0, "corpus [symbols]": 0, "coverage": 9319, "distributor delayed": 442, "distributor undelayed": 442, "distributor violated": 0, "exec candidate": 2209, "exec collide": 2944, "exec fuzz": 5615, "exec gen": 284, "exec hints": 772, "exec inject": 0, "exec minimize": 8579, "exec retries": 0, "exec seeds": 1814, "exec smash": 6046, "exec total [base]": 22053, "exec total [new]": 36686, "exec triage": 1872, "executor restarts": 44, "fault jobs": 0, "fuzzer jobs": 819, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 8, "hints jobs": 160, "max signal": 9762, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 4571, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 778, "no exec duration": 17251000000, "no exec requests": 18, "pending": 0, "prog exec time": 267, "reproducing": 0, "rpc recv": 736352260, "rpc sent": 45269824, "signal": 8893, "smash jobs": 643, "triage jobs": 16, "vm output": 192590, "vm restarts [base]": 4, "vm restarts [new]": 8 } 2025/08/05 12:01:54 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "corpus": 929, "corpus [files]": 0, "corpus [symbols]": 0, "coverage": 11234, "distributor delayed": 616, "distributor undelayed": 616, "distributor violated": 0, "exec candidate": 2209, "exec collide": 6722, "exec fuzz": 12644, "exec gen": 627, "exec hints": 1997, "exec inject": 0, "exec minimize": 13152, "exec retries": 0, "exec seeds": 2675, "exec smash": 15111, "exec total [base]": 36488, "exec total [new]": 64312, "exec triage": 2622, "executor restarts": 44, "fault jobs": 0, "fuzzer jobs": 930, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 8, "hints jobs": 158, "max signal": 11651, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 6725, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1093, "no exec duration": 17251000000, "no exec requests": 18, "pending": 0, "prog exec time": 281, "reproducing": 0, "rpc recv": 1086303884, "rpc sent": 113670808, "signal": 10853, "smash jobs": 765, "triage jobs": 7, "vm output": 360294, "vm restarts [base]": 4, "vm restarts [new]": 8 } 2025/08/05 12:02:56 runner 9 connected 2025/08/05 12:06:54 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "corpus": 1088, "corpus [files]": 0, "corpus [symbols]": 0, "coverage": 11866, "distributor delayed": 713, "distributor undelayed": 713, "distributor violated": 0, "exec candidate": 2209, "exec collide": 10590, "exec fuzz": 20124, "exec gen": 1029, "exec hints": 3793, "exec inject": 0, "exec minimize": 15956, "exec retries": 0, "exec seeds": 3229, "exec smash": 24508, "exec total [base]": 49315, "exec total [new]": 91107, "exec triage": 3115, "executor restarts": 47, "fault jobs": 0, "fuzzer jobs": 362, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 9, "hints jobs": 87, "max signal": 12344, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 7990, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1296, "no exec duration": 17251000000, "no exec requests": 18, "pending": 0, "prog exec time": 359, "reproducing": 0, "rpc recv": 1406807812, "rpc sent": 189128416, "signal": 11389, "smash jobs": 265, "triage jobs": 10, "vm output": 528638, "vm restarts [base]": 4, "vm restarts [new]": 9 } 2025/08/05 12:11:54 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "corpus": 1233, "corpus [files]": 0, "corpus [symbols]": 0, "coverage": 12341, "distributor delayed": 793, "distributor undelayed": 793, "distributor violated": 0, "exec candidate": 2209, "exec collide": 16221, "exec fuzz": 30922, "exec gen": 1618, "exec hints": 7088, "exec inject": 0, "exec minimize": 18409, "exec retries": 0, "exec seeds": 3694, "exec smash": 30683, "exec total [base]": 62839, "exec total [new]": 120870, "exec triage": 3473, "executor restarts": 47, "fault jobs": 0, "fuzzer jobs": 21, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 9, "hints jobs": 6, "max signal": 12793, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 9078, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1454, "no exec duration": 17251000000, "no exec requests": 18, "pending": 0, "prog exec time": 277, "reproducing": 0, "rpc recv": 1664060272, "rpc sent": 279276168, "signal": 11773, "smash jobs": 9, "triage jobs": 6, "vm output": 665400, "vm restarts [base]": 4, "vm restarts [new]": 9 } 2025/08/05 12:12:54 runner 1 connected 2025/08/05 12:16:54 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "corpus": 1324, "corpus [files]": 0, "corpus [symbols]": 0, "coverage": 12777, "distributor delayed": 831, "distributor undelayed": 831, "distributor violated": 0, "exec candidate": 2209, "exec collide": 24582, "exec fuzz": 46642, "exec gen": 2465, "exec hints": 9435, "exec inject": 0, "exec minimize": 19857, "exec retries": 0, "exec seeds": 3969, "exec smash": 33004, "exec total [base]": 75971, "exec total [new]": 152441, "exec triage": 3722, "executor restarts": 50, "fault jobs": 0, "fuzzer jobs": 17, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 3, "max signal": 13295, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 9730, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1566, "no exec duration": 17251000000, "no exec requests": 18, "pending": 0, "prog exec time": 335, "reproducing": 0, "rpc recv": 1842899272, "rpc sent": 375928472, "signal": 12192, "smash jobs": 6, "triage jobs": 8, "vm output": 831352, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/05 12:21:54 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "corpus": 1401, "corpus [files]": 0, "corpus [symbols]": 0, "coverage": 12996, "distributor delayed": 869, "distributor undelayed": 869, "distributor violated": 0, "exec candidate": 2209, "exec collide": 33226, "exec fuzz": 62948, "exec gen": 3389, "exec hints": 10171, "exec inject": 0, "exec minimize": 21517, "exec retries": 0, "exec seeds": 4198, "exec smash": 34929, "exec total [base]": 88296, "exec total [new]": 183078, "exec triage": 3937, "executor restarts": 50, "fault jobs": 0, "fuzzer jobs": 19, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 2, "max signal": 13526, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 10542, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1660, "no exec duration": 17251000000, "no exec requests": 18, "pending": 0, "prog exec time": 276, "reproducing": 0, "rpc recv": 1996316012, "rpc sent": 471006392, "signal": 12420, "smash jobs": 5, "triage jobs": 12, "vm output": 977465, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/05 12:23:54 fuzzer has not reached the modified code in 30m0s, aborting 2025/08/05 12:23:54 syz-diff (base): kernel context loop terminated 2025/08/05 12:23:54 syz-diff (new): kernel context loop terminated 2025/08/05 12:23:54 diff fuzzing terminated 2025/08/05 12:23:54 status reporting terminated 2025/08/05 12:23:54 bug reporting terminated 2025/08/05 12:23:54 fuzzing is finished 2025/08/05 12:23:54 status at the end: Title On-Base On-Patched