2025/09/05 22:42:57 extracted 327254 text symbol hashes for base and 327254 for patched 2025/09/05 22:42:57 symbol "cpuid_bits" has different values in base vs patch 2025/09/05 22:42:57 binaries are different, continuing fuzzing 2025/09/05 22:42:58 adding directly modified files to focus areas: ["Documentation/admin-guide/kernel-parameters.txt" "Documentation/filesystems/resctrl.rst" "MAINTAINERS" "arch/x86/include/asm/cpufeatures.h" "arch/x86/include/asm/msr-index.h" "arch/x86/include/asm/resctrl.h" "arch/x86/kernel/cpu/resctrl/core.c" "arch/x86/kernel/cpu/resctrl/internal.h" "arch/x86/kernel/cpu/resctrl/monitor.c" "arch/x86/kernel/cpu/scattered.c" "fs/resctrl/ctrlmondata.c" "fs/resctrl/internal.h" "fs/resctrl/monitor.c" "fs/resctrl/rdtgroup.c" "include/linux/resctrl.h" "include/linux/resctrl_types.h"] 2025/09/05 22:42:59 downloaded the corpus from https://storage.googleapis.com/syzkaller/corpus/ci-upstream-kasan-gce-root-corpus.db 2025/09/05 22:43:56 runner 0 connected 2025/09/05 22:43:56 runner 1 connected 2025/09/05 22:43:56 runner 1 connected 2025/09/05 22:43:56 runner 5 connected 2025/09/05 22:43:56 runner 0 connected 2025/09/05 22:43:56 runner 2 connected 2025/09/05 22:43:56 runner 3 connected 2025/09/05 22:43:56 runner 3 connected 2025/09/05 22:43:56 runner 9 connected 2025/09/05 22:43:56 runner 4 connected 2025/09/05 22:43:57 runner 2 connected 2025/09/05 22:43:57 runner 6 connected 2025/09/05 22:44:03 initializing coverage information... 2025/09/05 22:44:03 runner 8 connected 2025/09/05 22:44:03 executor cover filter: 0 PCs 2025/09/05 22:44:03 runner 7 connected 2025/09/05 22:44:05 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 165/8054 2025/09/05 22:44:05 base: machine check complete 2025/09/05 22:44:08 discovered 7699 source files, 338653 symbols 2025/09/05 22:44:08 coverage filter: Documentation/admin-guide/kernel-parameters.txt: [] 2025/09/05 22:44:08 coverage filter: Documentation/filesystems/resctrl.rst: [] 2025/09/05 22:44:08 coverage filter: MAINTAINERS: [] 2025/09/05 22:44:08 coverage filter: arch/x86/include/asm/cpufeatures.h: [] 2025/09/05 22:44:08 coverage filter: arch/x86/include/asm/msr-index.h: [] 2025/09/05 22:44:08 coverage filter: arch/x86/include/asm/resctrl.h: [] 2025/09/05 22:44:08 coverage filter: arch/x86/kernel/cpu/resctrl/core.c: [] 2025/09/05 22:44:08 coverage filter: arch/x86/kernel/cpu/resctrl/internal.h: [] 2025/09/05 22:44:08 coverage filter: arch/x86/kernel/cpu/resctrl/monitor.c: [] 2025/09/05 22:44:08 coverage filter: arch/x86/kernel/cpu/scattered.c: [arch/x86/kernel/cpu/scattered.c] 2025/09/05 22:44:08 coverage filter: fs/resctrl/ctrlmondata.c: [] 2025/09/05 22:44:08 coverage filter: fs/resctrl/internal.h: [] 2025/09/05 22:44:08 coverage filter: fs/resctrl/monitor.c: [] 2025/09/05 22:44:08 coverage filter: fs/resctrl/rdtgroup.c: [] 2025/09/05 22:44:08 coverage filter: include/linux/resctrl.h: [] 2025/09/05 22:44:08 coverage filter: include/linux/resctrl_types.h: [] 2025/09/05 22:44:08 area "files": 15 PCs in the cover filter 2025/09/05 22:44:08 area "": 0 PCs in the cover filter 2025/09/05 22:44:08 executor cover filter: 0 PCs 2025/09/05 22:44:09 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 165/8054 2025/09/05 22:44:09 new: machine check complete 2025/09/05 22:44:13 new: adding 2319 seeds 2025/09/05 22:44:30 triaged 97.1% of the corpus 2025/09/05 22:44:30 starting bug reproductions 2025/09/05 22:44:30 starting bug reproductions (max 10 VMs, 7 repros) 2025/09/05 22:45:00 triaged 100.0% of the corpus 2025/09/05 22:48:00 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 3, "corpus": 705, "corpus [files]": 0, "cover overflows": 0, "coverage": 9756, "distributor delayed": 404, "distributor undelayed": 404, "distributor violated": 0, "exec candidate": 2319, "exec collide": 4618, "exec fuzz": 8475, "exec gen": 433, "exec hints": 1346, "exec inject": 0, "exec minimize": 9064, "exec retries": 0, "exec seeds": 1998, "exec smash": 9939, "exec total [base]": 21202, "exec total [new]": 46985, "exec triage": 1898, "executor restarts [base]": 33, "executor restarts [new]": 52, "fault jobs": 0, "fuzzer jobs": 758, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 133, "max signal": 10136, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 4870, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 802, "no exec duration": 23050000000, "no exec requests": 30, "pending": 0, "prog exec time": 185, "reproducing": 0, "rpc recv": 1415906932, "rpc sent": 60369544, "signal": 9302, "smash jobs": 614, "triage jobs": 11, "vm output": 187244, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/09/05 22:53:00 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 31, "corpus": 972, "corpus [files]": 0, "cover overflows": 66, "coverage": 11736, "distributor delayed": 534, "distributor undelayed": 534, "distributor violated": 0, "exec candidate": 2319, "exec collide": 9855, "exec fuzz": 18212, "exec gen": 953, "exec hints": 3647, "exec inject": 0, "exec minimize": 13333, "exec retries": 0, "exec seeds": 2900, "exec smash": 22233, "exec total [base]": 35946, "exec total [new]": 83016, "exec triage": 2667, "executor restarts [base]": 33, "executor restarts [new]": 52, "fault jobs": 0, "fuzzer jobs": 285, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 71, "max signal": 12137, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 6835, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1125, "no exec duration": 23050000000, "no exec requests": 30, "pending": 0, "prog exec time": 259, "reproducing": 0, "rpc recv": 2579840760, "rpc sent": 139086104, "signal": 11277, "smash jobs": 212, "triage jobs": 2, "vm output": 283569, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/09/05 22:58:00 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 39, "corpus": 1136, "corpus [files]": 0, "cover overflows": 107, "coverage": 12505, "distributor delayed": 609, "distributor undelayed": 609, "distributor violated": 0, "exec candidate": 2319, "exec collide": 16502, "exec fuzz": 30524, "exec gen": 1611, "exec hints": 7609, "exec inject": 0, "exec minimize": 15903, "exec retries": 0, "exec seeds": 3419, "exec smash": 28429, "exec total [base]": 49164, "exec total [new]": 116346, "exec triage": 3135, "executor restarts [base]": 33, "executor restarts [new]": 52, "fault jobs": 0, "fuzzer jobs": 17, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 1, "max signal": 13000, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 8034, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1327, "no exec duration": 23050000000, "no exec requests": 30, "pending": 0, "prog exec time": 332, "reproducing": 0, "rpc recv": 3524640476, "rpc sent": 213142184, "signal": 12017, "smash jobs": 9, "triage jobs": 7, "vm output": 426496, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/09/05 23:03:00 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 48, "corpus": 1249, "corpus [files]": 0, "cover overflows": 170, "coverage": 12815, "distributor delayed": 665, "distributor undelayed": 665, "distributor violated": 0, "exec candidate": 2319, "exec collide": 23862, "exec fuzz": 44930, "exec gen": 2362, "exec hints": 7929, "exec inject": 0, "exec minimize": 18153, "exec retries": 0, "exec seeds": 3759, "exec smash": 31167, "exec total [base]": 60429, "exec total [new]": 144858, "exec triage": 3481, "executor restarts [base]": 33, "executor restarts [new]": 52, "fault jobs": 0, "fuzzer jobs": 27, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 2, "max signal": 13333, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 9125, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1471, "no exec duration": 23050000000, "no exec requests": 30, "pending": 0, "prog exec time": 301, "reproducing": 0, "rpc recv": 4396045500, "rpc sent": 282146392, "signal": 12357, "smash jobs": 13, "triage jobs": 12, "vm output": 529782, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/09/05 23:08:00 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 68, "corpus": 1363, "corpus [files]": 0, "cover overflows": 261, "coverage": 13089, "distributor delayed": 720, "distributor undelayed": 720, "distributor violated": 0, "exec candidate": 2319, "exec collide": 30967, "exec fuzz": 58198, "exec gen": 3078, "exec hints": 8451, "exec inject": 0, "exec minimize": 20159, "exec retries": 0, "exec seeds": 4104, "exec smash": 34048, "exec total [base]": 71175, "exec total [new]": 172007, "exec triage": 3786, "executor restarts [base]": 33, "executor restarts [new]": 52, "fault jobs": 0, "fuzzer jobs": 21, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 0, "max signal": 13621, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 10087, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1602, "no exec duration": 23050000000, "no exec requests": 30, "pending": 0, "prog exec time": 334, "reproducing": 0, "rpc recv": 5240310912, "rpc sent": 353089984, "signal": 12600, "smash jobs": 11, "triage jobs": 10, "vm output": 652953, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/09/05 23:13:00 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 84, "corpus": 1438, "corpus [files]": 0, "cover overflows": 318, "coverage": 13378, "distributor delayed": 782, "distributor undelayed": 782, "distributor violated": 0, "exec candidate": 2319, "exec collide": 38283, "exec fuzz": 72186, "exec gen": 3846, "exec hints": 8575, "exec inject": 0, "exec minimize": 21576, "exec retries": 0, "exec seeds": 4327, "exec smash": 36004, "exec total [base]": 81440, "exec total [new]": 198034, "exec triage": 4021, "executor restarts [base]": 33, "executor restarts [new]": 52, "fault jobs": 0, "fuzzer jobs": 16, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 1, "max signal": 14040, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 10766, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1699, "no exec duration": 23050000000, "no exec requests": 30, "pending": 0, "prog exec time": 346, "reproducing": 0, "rpc recv": 6023018260, "rpc sent": 423465400, "signal": 12838, "smash jobs": 5, "triage jobs": 10, "vm output": 762893, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/09/05 23:15:00 fuzzer has not reached the modified code in 30m0s, aborting 2025/09/05 23:15:00 syz-diff (new): kernel context loop terminated 2025/09/05 23:15:00 syz-diff (base): kernel context loop terminated 2025/09/05 23:15:00 diff fuzzing terminated 2025/09/05 23:15:00 bug reporting terminated 2025/09/05 23:15:00 status reporting terminated 2025/09/05 23:15:00 fuzzing is finished 2025/09/05 23:15:00 status at the end: Title On-Base On-Patched