2025/10/01 09:40:33 extracted 327394 text symbol hashes for base and 327394 for patched 2025/10/01 09:40:33 binaries are different, continuing fuzzing 2025/10/01 09:40:33 adding modified_functions to focus areas: ["__apic_read" "__kvm_x2apic_icr_write" "advance_periodic_target_expiration" "apic_set_eoi" "apic_timer_fn" "apic_update_ppr" "kvm_apic_ack_interrupt" "kvm_apic_local_deliver" "kvm_apic_nmi_wd_deliver" "kvm_apic_set_state" "kvm_apic_update_hwapic_isr" "kvm_inject_apic_timer_irqs" "kvm_lapic_expired_hv_timer" "kvm_lapic_reg_write" "kvm_lapic_reset" "kvm_lapic_set_tpr" "kvm_lapic_sync_from_vapic" "restart_apic_timer" "start_sw_timer"] 2025/10/01 09:40:33 adding directly modified files to focus areas: ["arch/x86/kvm/lapic.c"] 2025/10/01 09:40:34 downloaded the corpus from https://storage.googleapis.com/syzkaller/corpus/ci-upstream-kasan-gce-root-corpus.db 2025/10/01 09:41:39 runner 3 connected 2025/10/01 09:41:39 runner 2 connected 2025/10/01 09:41:40 runner 3 connected 2025/10/01 09:41:40 runner 1 connected 2025/10/01 09:41:40 runner 6 connected 2025/10/01 09:41:40 runner 8 connected 2025/10/01 09:41:40 runner 7 connected 2025/10/01 09:41:40 runner 5 connected 2025/10/01 09:41:40 runner 2 connected 2025/10/01 09:41:40 runner 1 connected 2025/10/01 09:41:41 runner 9 connected 2025/10/01 09:41:41 runner 0 connected 2025/10/01 09:41:41 runner 4 connected 2025/10/01 09:41:41 runner 0 connected 2025/10/01 09:41:47 initializing coverage information... 2025/10/01 09:41:47 executor cover filter: 0 PCs 2025/10/01 09:41:49 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 166/8055 2025/10/01 09:41:49 base: machine check complete 2025/10/01 09:41:53 discovered 7699 source files, 338797 symbols 2025/10/01 09:41:53 coverage filter: __apic_read: [__apic_read] 2025/10/01 09:41:53 coverage filter: __kvm_x2apic_icr_write: [__kvm_x2apic_icr_write] 2025/10/01 09:41:53 coverage filter: advance_periodic_target_expiration: [advance_periodic_target_expiration] 2025/10/01 09:41:53 coverage filter: apic_set_eoi: [apic_set_eoi kvm_apic_set_eoi_accelerated kvm_lapic_set_eoi] 2025/10/01 09:41:53 coverage filter: apic_timer_fn: [apic_timer_fn] 2025/10/01 09:41:53 coverage filter: apic_update_ppr: [apic_update_ppr kvm_apic_update_ppr] 2025/10/01 09:41:53 coverage filter: kvm_apic_ack_interrupt: [kvm_apic_ack_interrupt] 2025/10/01 09:41:53 coverage filter: kvm_apic_local_deliver: [kvm_apic_local_deliver] 2025/10/01 09:41:53 coverage filter: kvm_apic_nmi_wd_deliver: [kvm_apic_nmi_wd_deliver] 2025/10/01 09:41:53 coverage filter: kvm_apic_set_state: [kvm_apic_set_state] 2025/10/01 09:41:53 coverage filter: kvm_apic_update_hwapic_isr: [kvm_apic_update_hwapic_isr] 2025/10/01 09:41:53 coverage filter: kvm_inject_apic_timer_irqs: [kvm_inject_apic_timer_irqs] 2025/10/01 09:41:53 coverage filter: kvm_lapic_expired_hv_timer: [kvm_lapic_expired_hv_timer] 2025/10/01 09:41:53 coverage filter: kvm_lapic_reg_write: [kvm_lapic_reg_write] 2025/10/01 09:41:53 coverage filter: kvm_lapic_reset: [kvm_lapic_reset] 2025/10/01 09:41:53 coverage filter: kvm_lapic_set_tpr: [kvm_lapic_set_tpr] 2025/10/01 09:41:53 coverage filter: kvm_lapic_sync_from_vapic: [kvm_lapic_sync_from_vapic] 2025/10/01 09:41:53 coverage filter: restart_apic_timer: [restart_apic_timer] 2025/10/01 09:41:53 coverage filter: start_sw_timer: [start_sw_timer] 2025/10/01 09:41:53 coverage filter: arch/x86/kvm/lapic.c: [arch/x86/kvm/lapic.c] 2025/10/01 09:41:53 area "symbols": 576 PCs in the cover filter 2025/10/01 09:41:53 area "files": 1878 PCs in the cover filter 2025/10/01 09:41:53 area "": 0 PCs in the cover filter 2025/10/01 09:41:53 executor cover filter: 0 PCs 2025/10/01 09:41:54 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 166/8055 2025/10/01 09:41:54 new: machine check complete 2025/10/01 09:41:58 new: adding 2403 seeds 2025/10/01 09:42:06 triaged 97.1% of the corpus 2025/10/01 09:42:06 starting bug reproductions 2025/10/01 09:42:06 starting bug reproductions (max 10 VMs, 7 repros) 2025/10/01 09:42:36 triaged 100.0% of the corpus 2025/10/01 09:45:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 0, "corpus": 724, "corpus [files]": 114, "corpus [symbols]": 25, "cover overflows": 0, "coverage": 9868, "distributor delayed": 367, "distributor undelayed": 367, "distributor violated": 0, "exec candidate": 2403, "exec collide": 3464, "exec fuzz": 6660, "exec gen": 328, "exec hints": 1116, "exec inject": 0, "exec minimize": 9499, "exec retries": 0, "exec seeds": 2009, "exec smash": 7094, "exec total [base]": 18958, "exec total [new]": 41724, "exec triage": 2002, "executor restarts [base]": 33, "executor restarts [new]": 50, "fault jobs": 0, "fuzzer jobs": 881, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 174, "max signal": 10255, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 5103, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 839, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 206, "reproducing": 0, "rpc recv": 1413560300, "rpc sent": 67197968, "signal": 9370, "smash jobs": 699, "triage jobs": 8, "vm output": 238649, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/10/01 09:50:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 16, "corpus": 1017, "corpus [files]": 253, "corpus [symbols]": 38, "cover overflows": 3, "coverage": 11736, "distributor delayed": 520, "distributor undelayed": 520, "distributor violated": 0, "exec candidate": 2403, "exec collide": 8397, "exec fuzz": 15976, "exec gen": 859, "exec hints": 2986, "exec inject": 0, "exec minimize": 14039, "exec retries": 0, "exec seeds": 2990, "exec smash": 19022, "exec total [base]": 32843, "exec total [new]": 76601, "exec triage": 2779, "executor restarts [base]": 33, "executor restarts [new]": 50, "fault jobs": 0, "fuzzer jobs": 779, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 160, "max signal": 12235, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 7145, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1180, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 269, "reproducing": 0, "rpc recv": 2570767876, "rpc sent": 160020016, "signal": 11262, "smash jobs": 615, "triage jobs": 4, "vm output": 416104, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/10/01 09:55:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 32, "corpus": 1198, "corpus [files]": 346, "corpus [symbols]": 44, "cover overflows": 5, "coverage": 12361, "distributor delayed": 623, "distributor undelayed": 623, "distributor violated": 0, "exec candidate": 2403, "exec collide": 13047, "exec fuzz": 25021, "exec gen": 1321, "exec hints": 6080, "exec inject": 0, "exec minimize": 17011, "exec retries": 0, "exec seeds": 3598, "exec smash": 29479, "exec total [base]": 45439, "exec total [new]": 108366, "exec triage": 3254, "executor restarts [base]": 33, "executor restarts [new]": 50, "fault jobs": 0, "fuzzer jobs": 86, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 25, "max signal": 12843, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 8530, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1389, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 280, "reproducing": 0, "rpc recv": 3636985856, "rpc sent": 244851264, "signal": 11801, "smash jobs": 55, "triage jobs": 6, "vm output": 616889, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/10/01 10:00:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 34, "corpus": 1303, "corpus [files]": 387, "corpus [symbols]": 46, "cover overflows": 7, "coverage": 12702, "distributor delayed": 667, "distributor undelayed": 667, "distributor violated": 0, "exec candidate": 2403, "exec collide": 20237, "exec fuzz": 38473, "exec gen": 2046, "exec hints": 9467, "exec inject": 0, "exec minimize": 18592, "exec retries": 0, "exec seeds": 3921, "exec smash": 32550, "exec total [base]": 57445, "exec total [new]": 138346, "exec triage": 3507, "executor restarts [base]": 33, "executor restarts [new]": 50, "fault jobs": 0, "fuzzer jobs": 16, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 4, "max signal": 13176, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 9278, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1502, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 317, "reproducing": 0, "rpc recv": 4476244800, "rpc sent": 330344352, "signal": 12108, "smash jobs": 10, "triage jobs": 2, "vm output": 837829, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/10/01 10:05:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 37, "corpus": 1405, "corpus [files]": 432, "corpus [symbols]": 48, "cover overflows": 7, "coverage": 13006, "distributor delayed": 719, "distributor undelayed": 719, "distributor violated": 0, "exec candidate": 2403, "exec collide": 27744, "exec fuzz": 52695, "exec gen": 2790, "exec hints": 10261, "exec inject": 0, "exec minimize": 20148, "exec retries": 0, "exec seeds": 4230, "exec smash": 35096, "exec total [base]": 68560, "exec total [new]": 166284, "exec triage": 3766, "executor restarts [base]": 33, "executor restarts [new]": 50, "fault jobs": 0, "fuzzer jobs": 16, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 3, "max signal": 13485, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 10016, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1617, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 292, "reproducing": 0, "rpc recv": 5279811360, "rpc sent": 417798272, "signal": 12385, "smash jobs": 9, "triage jobs": 4, "vm output": 1029150, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/10/01 10:10:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 41, "corpus": 1493, "corpus [files]": 477, "corpus [symbols]": 50, "cover overflows": 9, "coverage": 13220, "distributor delayed": 767, "distributor undelayed": 767, "distributor violated": 0, "exec candidate": 2403, "exec collide": 35189, "exec fuzz": 66746, "exec gen": 3521, "exec hints": 11148, "exec inject": 0, "exec minimize": 21787, "exec retries": 0, "exec seeds": 4505, "exec smash": 37501, "exec total [base]": 79617, "exec total [new]": 193943, "exec triage": 3994, "executor restarts [base]": 33, "executor restarts [new]": 50, "fault jobs": 0, "fuzzer jobs": 11, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 3, "max signal": 13720, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 10793, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1720, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 312, "reproducing": 0, "rpc recv": 6096346936, "rpc sent": 504461248, "signal": 12580, "smash jobs": 4, "triage jobs": 4, "vm output": 1239461, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/10/01 10:12:36 fuzzer has reached the modified code (51 + 491 + 0), continuing fuzzing 2025/10/01 10:15:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 45, "corpus": 1548, "corpus [files]": 512, "corpus [symbols]": 52, "cover overflows": 9, "coverage": 13364, "distributor delayed": 802, "distributor undelayed": 802, "distributor violated": 0, "exec candidate": 2403, "exec collide": 43120, "exec fuzz": 81521, "exec gen": 4346, "exec hints": 11904, "exec inject": 0, "exec minimize": 22707, "exec retries": 0, "exec seeds": 4671, "exec smash": 38917, "exec total [base]": 90480, "exec total [new]": 220904, "exec triage": 4165, "executor restarts [base]": 33, "executor restarts [new]": 50, "fault jobs": 0, "fuzzer jobs": 8, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 1, "max signal": 13921, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 11220, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1793, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 331, "reproducing": 0, "rpc recv": 6819297684, "rpc sent": 589077312, "signal": 12719, "smash jobs": 1, "triage jobs": 6, "vm output": 1463093, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/10/01 10:20:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 48, "corpus": 1593, "corpus [files]": 530, "corpus [symbols]": 52, "cover overflows": 10, "coverage": 13512, "distributor delayed": 824, "distributor undelayed": 824, "distributor violated": 0, "exec candidate": 2403, "exec collide": 51242, "exec fuzz": 96986, "exec gen": 5150, "exec hints": 12336, "exec inject": 0, "exec minimize": 23437, "exec retries": 0, "exec seeds": 4806, "exec smash": 40043, "exec total [base]": 101090, "exec total [new]": 247849, "exec triage": 4294, "executor restarts [base]": 33, "executor restarts [new]": 50, "fault jobs": 0, "fuzzer jobs": 6, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 1, "max signal": 14051, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 11576, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1847, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 347, "reproducing": 0, "rpc recv": 7529977368, "rpc sent": 678243376, "signal": 12867, "smash jobs": 2, "triage jobs": 3, "vm output": 1703992, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/10/01 10:25:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 54, "corpus": 1635, "corpus [files]": 549, "corpus [symbols]": 54, "cover overflows": 12, "coverage": 13596, "distributor delayed": 845, "distributor undelayed": 845, "distributor violated": 0, "exec candidate": 2403, "exec collide": 59191, "exec fuzz": 112229, "exec gen": 5961, "exec hints": 12590, "exec inject": 0, "exec minimize": 24122, "exec retries": 0, "exec seeds": 4935, "exec smash": 41118, "exec total [base]": 111452, "exec total [new]": 274115, "exec triage": 4415, "executor restarts [base]": 33, "executor restarts [new]": 50, "fault jobs": 0, "fuzzer jobs": 4, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 0, "max signal": 14177, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 11879, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1899, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 349, "reproducing": 0, "rpc recv": 8237914440, "rpc sent": 765259440, "signal": 12965, "smash jobs": 1, "triage jobs": 3, "vm output": 1927310, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/10/01 10:30:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 57, "corpus": 1675, "corpus [files]": 565, "corpus [symbols]": 55, "cover overflows": 15, "coverage": 13732, "distributor delayed": 859, "distributor undelayed": 859, "distributor violated": 0, "exec candidate": 2403, "exec collide": 67434, "exec fuzz": 127791, "exec gen": 6771, "exec hints": 12679, "exec inject": 0, "exec minimize": 24725, "exec retries": 0, "exec seeds": 5055, "exec smash": 42052, "exec total [base]": 121854, "exec total [new]": 300570, "exec triage": 4512, "executor restarts [base]": 33, "executor restarts [new]": 50, "fault jobs": 0, "fuzzer jobs": 8, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 1, "max signal": 14299, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 12159, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1942, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 318, "reproducing": 0, "rpc recv": 8922736612, "rpc sent": 853747896, "signal": 13093, "smash jobs": 5, "triage jobs": 2, "vm output": 2153348, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/10/01 10:35:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 64, "corpus": 1718, "corpus [files]": 592, "corpus [symbols]": 55, "cover overflows": 41, "coverage": 13849, "distributor delayed": 883, "distributor undelayed": 883, "distributor violated": 0, "exec candidate": 2403, "exec collide": 75283, "exec fuzz": 142733, "exec gen": 7545, "exec hints": 12806, "exec inject": 0, "exec minimize": 25655, "exec retries": 0, "exec seeds": 5190, "exec smash": 43189, "exec total [base]": 132010, "exec total [new]": 326599, "exec triage": 4646, "executor restarts [base]": 33, "executor restarts [new]": 50, "fault jobs": 0, "fuzzer jobs": 4, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 0, "max signal": 14425, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 12595, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1995, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 342, "reproducing": 0, "rpc recv": 9643274856, "rpc sent": 942281904, "signal": 13223, "smash jobs": 4, "triage jobs": 0, "vm output": 2391232, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/10/01 10:40:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 64, "corpus": 1758, "corpus [files]": 607, "corpus [symbols]": 55, "cover overflows": 66, "coverage": 13952, "distributor delayed": 904, "distributor undelayed": 904, "distributor violated": 0, "exec candidate": 2403, "exec collide": 83305, "exec fuzz": 157947, "exec gen": 8348, "exec hints": 12933, "exec inject": 0, "exec minimize": 26394, "exec retries": 0, "exec seeds": 5305, "exec smash": 44167, "exec total [base]": 142334, "exec total [new]": 352715, "exec triage": 4762, "executor restarts [base]": 33, "executor restarts [new]": 50, "fault jobs": 0, "fuzzer jobs": 7, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 3, "max signal": 14604, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 12919, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2043, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 358, "reproducing": 0, "rpc recv": 10356318916, "rpc sent": 1032239704, "signal": 13331, "smash jobs": 4, "triage jobs": 0, "vm output": 2614241, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/10/01 10:42:35 runner 2 connected 2025/10/01 10:42:36 runner 3 connected 2025/10/01 10:42:36 runner 6 connected 2025/10/01 10:42:36 runner 1 connected 2025/10/01 10:42:36 runner 8 connected 2025/10/01 10:42:36 runner 7 connected 2025/10/01 10:42:37 runner 2 connected 2025/10/01 10:42:37 runner 1 connected 2025/10/01 10:42:37 runner 5 connected 2025/10/01 10:42:37 runner 3 connected 2025/10/01 10:42:37 runner 4 connected 2025/10/01 10:42:38 runner 9 connected 2025/10/01 10:42:39 runner 0 connected 2025/10/01 10:42:39 runner 0 connected 2025/10/01 10:45:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 71, "corpus": 1785, "corpus [files]": 619, "corpus [symbols]": 55, "cover overflows": 74, "coverage": 14035, "distributor delayed": 924, "distributor undelayed": 924, "distributor violated": 0, "exec candidate": 2403, "exec collide": 89155, "exec fuzz": 168893, "exec gen": 8942, "exec hints": 12960, "exec inject": 0, "exec minimize": 27132, "exec retries": 0, "exec seeds": 5394, "exec smash": 44878, "exec total [base]": 149831, "exec total [new]": 371807, "exec triage": 4869, "executor restarts [base]": 45, "executor restarts [new]": 80, "fault jobs": 0, "fuzzer jobs": 11, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 1, "max signal": 14724, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 13277, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2087, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 412, "reproducing": 0, "rpc recv": 11328621828, "rpc sent": 1101446992, "signal": 13392, "smash jobs": 5, "triage jobs": 5, "vm output": 2938150, "vm restarts [base]": 8, "vm restarts [new]": 20 } 2025/10/01 10:50:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 71, "corpus": 1812, "corpus [files]": 634, "corpus [symbols]": 58, "cover overflows": 104, "coverage": 14102, "distributor delayed": 942, "distributor undelayed": 942, "distributor violated": 0, "exec candidate": 2403, "exec collide": 97199, "exec fuzz": 183972, "exec gen": 9757, "exec hints": 12988, "exec inject": 0, "exec minimize": 27558, "exec retries": 0, "exec seeds": 5475, "exec smash": 45607, "exec total [base]": 159777, "exec total [new]": 397090, "exec triage": 4950, "executor restarts [base]": 45, "executor restarts [new]": 80, "fault jobs": 0, "fuzzer jobs": 4, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 0, "max signal": 14794, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 13461, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2120, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 370, "reproducing": 0, "rpc recv": 11994272412, "rpc sent": 1194517128, "signal": 13458, "smash jobs": 1, "triage jobs": 3, "vm output": 3186313, "vm restarts [base]": 8, "vm restarts [new]": 20 } 2025/10/01 10:55:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 73, "corpus": 1848, "corpus [files]": 657, "corpus [symbols]": 60, "cover overflows": 143, "coverage": 14167, "distributor delayed": 965, "distributor undelayed": 965, "distributor violated": 0, "exec candidate": 2403, "exec collide": 104969, "exec fuzz": 198668, "exec gen": 10538, "exec hints": 13340, "exec inject": 0, "exec minimize": 28300, "exec retries": 0, "exec seeds": 5586, "exec smash": 46517, "exec total [base]": 169754, "exec total [new]": 422544, "exec triage": 5044, "executor restarts [base]": 45, "executor restarts [new]": 80, "fault jobs": 0, "fuzzer jobs": 7, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 1, "max signal": 14861, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 13810, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2160, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 343, "reproducing": 0, "rpc recv": 12709752884, "rpc sent": 1286788200, "signal": 13517, "smash jobs": 3, "triage jobs": 3, "vm output": 3423065, "vm restarts [base]": 8, "vm restarts [new]": 20 } 2025/10/01 11:00:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 87, "corpus": 1885, "corpus [files]": 682, "corpus [symbols]": 60, "cover overflows": 222, "coverage": 14273, "distributor delayed": 990, "distributor undelayed": 990, "distributor violated": 0, "exec candidate": 2403, "exec collide": 112573, "exec fuzz": 213499, "exec gen": 11322, "exec hints": 13595, "exec inject": 0, "exec minimize": 29098, "exec retries": 0, "exec seeds": 5696, "exec smash": 47412, "exec total [base]": 179680, "exec total [new]": 447921, "exec triage": 5143, "executor restarts [base]": 45, "executor restarts [new]": 80, "fault jobs": 0, "fuzzer jobs": 7, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 1, "max signal": 14964, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 14152, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2200, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 374, "reproducing": 0, "rpc recv": 13439650440, "rpc sent": 1380091464, "signal": 13605, "smash jobs": 5, "triage jobs": 1, "vm output": 3654064, "vm restarts [base]": 8, "vm restarts [new]": 20 } 2025/10/01 11:05:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 89, "corpus": 1914, "corpus [files]": 693, "corpus [symbols]": 60, "cover overflows": 283, "coverage": 14334, "distributor delayed": 1008, "distributor undelayed": 1008, "distributor violated": 0, "exec candidate": 2403, "exec collide": 120567, "exec fuzz": 228533, "exec gen": 12133, "exec hints": 13664, "exec inject": 0, "exec minimize": 29615, "exec retries": 0, "exec seeds": 5778, "exec smash": 48133, "exec total [base]": 189511, "exec total [new]": 473250, "exec triage": 5243, "executor restarts [base]": 45, "executor restarts [new]": 80, "fault jobs": 0, "fuzzer jobs": 12, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 2, "max signal": 15112, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 14396, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2242, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 345, "reproducing": 0, "rpc recv": 14099124824, "rpc sent": 1472962624, "signal": 13647, "smash jobs": 4, "triage jobs": 6, "vm output": 3887643, "vm restarts [base]": 8, "vm restarts [new]": 20 } 2025/10/01 11:10:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 99, "corpus": 1940, "corpus [files]": 706, "corpus [symbols]": 60, "cover overflows": 366, "coverage": 14643, "distributor delayed": 1023, "distributor undelayed": 1023, "distributor violated": 0, "exec candidate": 2403, "exec collide": 128380, "exec fuzz": 243316, "exec gen": 12861, "exec hints": 13765, "exec inject": 0, "exec minimize": 30179, "exec retries": 0, "exec seeds": 5862, "exec smash": 48842, "exec total [base]": 199273, "exec total [new]": 498117, "exec triage": 5329, "executor restarts [base]": 45, "executor restarts [new]": 80, "fault jobs": 0, "fuzzer jobs": 2, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 0, "max signal": 15321, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 14647, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2275, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 373, "reproducing": 0, "rpc recv": 14789068924, "rpc sent": 1563126136, "signal": 13887, "smash jobs": 2, "triage jobs": 0, "vm output": 4126751, "vm restarts [base]": 8, "vm restarts [new]": 20 } 2025/10/01 11:14:41 patched crashed: KASAN: slab-use-after-free Write in kvm_gmem_release [need repro = true] 2025/10/01 11:14:41 scheduled a reproduction of 'KASAN: slab-use-after-free Write in kvm_gmem_release' 2025/10/01 11:14:41 start reproducing 'KASAN: slab-use-after-free Write in kvm_gmem_release' 2025/10/01 11:15:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 101, "corpus": 1956, "corpus [files]": 714, "corpus [symbols]": 63, "cover overflows": 412, "coverage": 14674, "distributor delayed": 1032, "distributor undelayed": 1032, "distributor violated": 0, "exec candidate": 2403, "exec collide": 136128, "exec fuzz": 257788, "exec gen": 13643, "exec hints": 13797, "exec inject": 0, "exec minimize": 30460, "exec retries": 0, "exec seeds": 5910, "exec smash": 49248, "exec total [base]": 209231, "exec total [new]": 521934, "exec triage": 5381, "executor restarts [base]": 45, "executor restarts [new]": 80, "fault jobs": 0, "fuzzer jobs": 2, "fuzzing VMs [base]": 3, "fuzzing VMs [new]": 7, "hints jobs": 0, "max signal": 15361, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 14775, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2297, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 348, "reproducing": 1, "rpc recv": 15426536248, "rpc sent": 1653305536, "signal": 13916, "smash jobs": 1, "triage jobs": 1, "vm output": 4350575, "vm restarts [base]": 8, "vm restarts [new]": 20 } 2025/10/01 11:15:38 runner 8 connected 2025/10/01 11:15:40 base crash: KASAN: slab-use-after-free Write in kvm_gmem_release 2025/10/01 11:16:09 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:16:37 runner 3 connected 2025/10/01 11:16:42 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:17:38 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:19:10 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:20:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 101, "corpus": 1980, "corpus [files]": 721, "corpus [symbols]": 64, "cover overflows": 456, "coverage": 14720, "distributor delayed": 1046, "distributor undelayed": 1046, "distributor violated": 0, "exec candidate": 2403, "exec collide": 142500, "exec fuzz": 269643, "exec gen": 14272, "exec hints": 14092, "exec inject": 0, "exec minimize": 30904, "exec retries": 0, "exec seeds": 5982, "exec smash": 49819, "exec total [base]": 218567, "exec total [new]": 542239, "exec triage": 5446, "executor restarts [base]": 48, "executor restarts [new]": 83, "fault jobs": 0, "fuzzer jobs": 7, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 8, "hints jobs": 1, "max signal": 15418, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 14995, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2326, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 377, "reproducing": 1, "rpc recv": 16101546892, "rpc sent": 1730299808, "signal": 13959, "smash jobs": 2, "triage jobs": 4, "vm output": 4689051, "vm restarts [base]": 9, "vm restarts [new]": 21 } 2025/10/01 11:23:21 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:24:07 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:24:51 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:25:36 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:25:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 109, "corpus": 2003, "corpus [files]": 733, "corpus [symbols]": 67, "cover overflows": 560, "coverage": 14779, "distributor delayed": 1057, "distributor undelayed": 1057, "distributor violated": 0, "exec candidate": 2403, "exec collide": 148749, "exec fuzz": 281283, "exec gen": 14897, "exec hints": 14133, "exec inject": 0, "exec minimize": 31428, "exec retries": 0, "exec seeds": 6050, "exec smash": 50402, "exec total [base]": 228261, "exec total [new]": 562021, "exec triage": 5498, "executor restarts [base]": 48, "executor restarts [new]": 83, "fault jobs": 0, "fuzzer jobs": 3, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 8, "hints jobs": 1, "max signal": 15458, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 15245, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2348, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 360, "reproducing": 1, "rpc recv": 16779588532, "rpc sent": 1808506440, "signal": 14008, "smash jobs": 1, "triage jobs": 1, "vm output": 4983724, "vm restarts [base]": 9, "vm restarts [new]": 21 } 2025/10/01 11:26:26 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:27:08 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:27:57 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:28:40 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:29:29 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:30:11 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:30:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 110, "corpus": 2016, "corpus [files]": 743, "corpus [symbols]": 71, "cover overflows": 619, "coverage": 14833, "distributor delayed": 1070, "distributor undelayed": 1070, "distributor violated": 0, "exec candidate": 2403, "exec collide": 155100, "exec fuzz": 293451, "exec gen": 15563, "exec hints": 14139, "exec inject": 0, "exec minimize": 31708, "exec retries": 0, "exec seeds": 6090, "exec smash": 50697, "exec total [base]": 238082, "exec total [new]": 581875, "exec triage": 5545, "executor restarts [base]": 48, "executor restarts [new]": 83, "fault jobs": 0, "fuzzer jobs": 5, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 8, "hints jobs": 0, "max signal": 15517, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 15374, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2367, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 367, "reproducing": 1, "rpc recv": 17447455364, "rpc sent": 1892288304, "signal": 14061, "smash jobs": 3, "triage jobs": 2, "vm output": 5304189, "vm restarts [base]": 9, "vm restarts [new]": 21 } 2025/10/01 11:30:57 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:31:39 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:32:27 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:33:08 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:33:59 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:34:36 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:35:28 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:35:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 113, "corpus": 2027, "corpus [files]": 751, "corpus [symbols]": 71, "cover overflows": 684, "coverage": 14858, "distributor delayed": 1077, "distributor undelayed": 1077, "distributor violated": 0, "exec candidate": 2403, "exec collide": 161362, "exec fuzz": 305324, "exec gen": 16242, "exec hints": 14139, "exec inject": 0, "exec minimize": 32021, "exec retries": 0, "exec seeds": 6123, "exec smash": 51025, "exec total [base]": 247834, "exec total [new]": 601397, "exec triage": 5580, "executor restarts [base]": 48, "executor restarts [new]": 83, "fault jobs": 0, "fuzzer jobs": 1, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 8, "hints jobs": 0, "max signal": 15539, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 15514, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2380, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 383, "reproducing": 1, "rpc recv": 18109183884, "rpc sent": 1973663520, "signal": 14081, "smash jobs": 0, "triage jobs": 1, "vm output": 5603637, "vm restarts [base]": 9, "vm restarts [new]": 21 } 2025/10/01 11:36:06 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:36:59 reproducing crash 'KASAN: slab-use-after-free Write in kvm_gmem_release': failed to symbolize report: failed to start scripts/get_maintainer.pl [scripts/get_maintainer.pl --git-min-percent=15 -f virt/kvm/guest_memfd.c]: fork/exec scripts/get_maintainer.pl: no such file or directory 2025/10/01 11:36:59 repro finished 'KASAN: slab-use-after-free Write in kvm_gmem_release', repro=true crepro=false desc='KASAN: slab-use-after-free Write in kvm_gmem_release' hub=false from_dashboard=false 2025/10/01 11:36:59 found repro for "KASAN: slab-use-after-free Write in kvm_gmem_release" (orig title: "-SAME-", reliability: 1), took 22.28 minutes 2025/10/01 11:36:59 "KASAN: slab-use-after-free Write in kvm_gmem_release": saved crash log into 1759318619.crash.log 2025/10/01 11:36:59 "KASAN: slab-use-after-free Write in kvm_gmem_release": saved repro log into 1759318619.repro.log 2025/10/01 11:37:05 runner 1 connected 2025/10/01 11:37:57 runner 0 connected 2025/10/01 11:38:29 attempt #0 to run "KASAN: slab-use-after-free Write in kvm_gmem_release" on base: crashed with KASAN: slab-use-after-free Write in kvm_gmem_release 2025/10/01 11:38:29 crashes both: KASAN: slab-use-after-free Write in kvm_gmem_release / KASAN: slab-use-after-free Write in kvm_gmem_release 2025/10/01 11:39:26 runner 0 connected 2025/10/01 11:40:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 120, "corpus": 2036, "corpus [files]": 758, "corpus [symbols]": 72, "cover overflows": 749, "coverage": 14875, "distributor delayed": 1086, "distributor undelayed": 1086, "distributor violated": 0, "exec candidate": 2403, "exec collide": 168529, "exec fuzz": 319054, "exec gen": 16946, "exec hints": 14242, "exec inject": 0, "exec minimize": 32264, "exec retries": 0, "exec seeds": 6150, "exec smash": 51241, "exec total [base]": 255916, "exec total [new]": 623634, "exec triage": 5621, "executor restarts [base]": 51, "executor restarts [new]": 89, "fault jobs": 0, "fuzzer jobs": 2, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 0, "max signal": 15583, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 15626, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2396, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 397, "reproducing": 0, "rpc recv": 18774467220, "rpc sent": 2059490824, "signal": 14097, "smash jobs": 1, "triage jobs": 1, "vm output": 5881254, "vm restarts [base]": 10, "vm restarts [new]": 23 } 2025/10/01 11:43:31 runner 2 connected 2025/10/01 11:43:32 runner 6 connected 2025/10/01 11:43:32 runner 7 connected 2025/10/01 11:43:33 runner 3 connected 2025/10/01 11:43:33 runner 5 connected 2025/10/01 11:43:33 runner 1 connected 2025/10/01 11:43:34 runner 4 connected 2025/10/01 11:43:34 runner 2 connected 2025/10/01 11:43:35 runner 9 connected 2025/10/01 11:45:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 123, "corpus": 2053, "corpus [files]": 770, "corpus [symbols]": 75, "cover overflows": 798, "coverage": 14918, "distributor delayed": 1103, "distributor undelayed": 1103, "distributor violated": 1, "exec candidate": 2403, "exec collide": 174757, "exec fuzz": 330996, "exec gen": 17584, "exec hints": 14295, "exec inject": 0, "exec minimize": 32658, "exec retries": 0, "exec seeds": 6201, "exec smash": 51635, "exec total [base]": 264150, "exec total [new]": 643427, "exec triage": 5693, "executor restarts [base]": 57, "executor restarts [new]": 110, "fault jobs": 0, "fuzzer jobs": 9, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 1, "max signal": 15654, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 15799, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2424, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 386, "reproducing": 0, "rpc recv": 19646467444, "rpc sent": 2137687608, "signal": 14135, "smash jobs": 4, "triage jobs": 4, "vm output": 6175833, "vm restarts [base]": 12, "vm restarts [new]": 30 } 2025/10/01 11:50:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 125, "corpus": 2069, "corpus [files]": 779, "corpus [symbols]": 77, "cover overflows": 857, "coverage": 14998, "distributor delayed": 1109, "distributor undelayed": 1109, "distributor violated": 1, "exec candidate": 2403, "exec collide": 182432, "exec fuzz": 345788, "exec gen": 18356, "exec hints": 14307, "exec inject": 0, "exec minimize": 33006, "exec retries": 0, "exec seeds": 6252, "exec smash": 52100, "exec total [base]": 273622, "exec total [new]": 667589, "exec triage": 5741, "executor restarts [base]": 57, "executor restarts [new]": 110, "fault jobs": 0, "fuzzer jobs": 0, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 0, "max signal": 15732, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 15966, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2442, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 378, "reproducing": 0, "rpc recv": 20318626444, "rpc sent": 2231431696, "signal": 14215, "smash jobs": 0, "triage jobs": 0, "vm output": 6419166, "vm restarts [base]": 12, "vm restarts [new]": 30 } 2025/10/01 11:55:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 128, "corpus": 2081, "corpus [files]": 787, "corpus [symbols]": 77, "cover overflows": 891, "coverage": 15015, "distributor delayed": 1116, "distributor undelayed": 1116, "distributor violated": 1, "exec candidate": 2403, "exec collide": 190146, "exec fuzz": 360175, "exec gen": 19138, "exec hints": 14317, "exec inject": 0, "exec minimize": 33274, "exec retries": 0, "exec seeds": 6285, "exec smash": 52366, "exec total [base]": 282843, "exec total [new]": 691095, "exec triage": 5787, "executor restarts [base]": 57, "executor restarts [new]": 110, "fault jobs": 0, "fuzzer jobs": 8, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 1, "max signal": 15769, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 16103, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2462, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 351, "reproducing": 0, "rpc recv": 20949623984, "rpc sent": 2324240120, "signal": 14232, "smash jobs": 2, "triage jobs": 5, "vm output": 6651227, "vm restarts [base]": 12, "vm restarts [new]": 30 } 2025/10/01 12:00:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 131, "corpus": 2097, "corpus [files]": 795, "corpus [symbols]": 79, "cover overflows": 974, "coverage": 15061, "distributor delayed": 1122, "distributor undelayed": 1122, "distributor violated": 1, "exec candidate": 2403, "exec collide": 197804, "exec fuzz": 374740, "exec gen": 19920, "exec hints": 14381, "exec inject": 0, "exec minimize": 33623, "exec retries": 0, "exec seeds": 6336, "exec smash": 52786, "exec total [base]": 292314, "exec total [new]": 715028, "exec triage": 5829, "executor restarts [base]": 57, "executor restarts [new]": 110, "fault jobs": 0, "fuzzer jobs": 3, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 0, "max signal": 15806, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 16270, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2479, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 376, "reproducing": 0, "rpc recv": 21605580444, "rpc sent": 2419105064, "signal": 14275, "smash jobs": 2, "triage jobs": 1, "vm output": 6967096, "vm restarts [base]": 12, "vm restarts [new]": 30 } 2025/10/01 12:05:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 137, "corpus": 2115, "corpus [files]": 805, "corpus [symbols]": 80, "cover overflows": 1078, "coverage": 15095, "distributor delayed": 1126, "distributor undelayed": 1126, "distributor violated": 1, "exec candidate": 2403, "exec collide": 205185, "exec fuzz": 388663, "exec gen": 20646, "exec hints": 14491, "exec inject": 0, "exec minimize": 34087, "exec retries": 0, "exec seeds": 6390, "exec smash": 53229, "exec total [base]": 301446, "exec total [new]": 738182, "exec triage": 5884, "executor restarts [base]": 57, "executor restarts [new]": 110, "fault jobs": 0, "fuzzer jobs": 6, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 1, "max signal": 15854, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 16479, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2503, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 340, "reproducing": 0, "rpc recv": 22285496288, "rpc sent": 2513138912, "signal": 14304, "smash jobs": 1, "triage jobs": 4, "vm output": 7371753, "vm restarts [base]": 12, "vm restarts [new]": 30 } 2025/10/01 12:10:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 140, "corpus": 2126, "corpus [files]": 812, "corpus [symbols]": 80, "cover overflows": 1148, "coverage": 15123, "distributor delayed": 1133, "distributor undelayed": 1133, "distributor violated": 1, "exec candidate": 2403, "exec collide": 212649, "exec fuzz": 402938, "exec gen": 21429, "exec hints": 14676, "exec inject": 0, "exec minimize": 34351, "exec retries": 0, "exec seeds": 6423, "exec smash": 53525, "exec total [base]": 310782, "exec total [new]": 761515, "exec triage": 5921, "executor restarts [base]": 57, "executor restarts [new]": 110, "fault jobs": 0, "fuzzer jobs": 2, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 0, "max signal": 15895, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 16597, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2516, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 391, "reproducing": 0, "rpc recv": 22959524188, "rpc sent": 2609260544, "signal": 14331, "smash jobs": 0, "triage jobs": 2, "vm output": 7773711, "vm restarts [base]": 12, "vm restarts [new]": 30 } 2025/10/01 12:15:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 140, "corpus": 2132, "corpus [files]": 816, "corpus [symbols]": 80, "cover overflows": 1218, "coverage": 15165, "distributor delayed": 1137, "distributor undelayed": 1137, "distributor violated": 1, "exec candidate": 2403, "exec collide": 220396, "exec fuzz": 417642, "exec gen": 22188, "exec hints": 14676, "exec inject": 0, "exec minimize": 34454, "exec retries": 0, "exec seeds": 6441, "exec smash": 53675, "exec total [base]": 319911, "exec total [new]": 785022, "exec triage": 5942, "executor restarts [base]": 57, "executor restarts [new]": 110, "fault jobs": 0, "fuzzer jobs": 1, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 0, "max signal": 15945, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 16648, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2524, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 386, "reproducing": 0, "rpc recv": 23601019580, "rpc sent": 2706023832, "signal": 14390, "smash jobs": 0, "triage jobs": 1, "vm output": 8179471, "vm restarts [base]": 12, "vm restarts [new]": 30 } 2025/10/01 12:16:35 runner 8 connected 2025/10/01 12:17:33 runner 3 connected 2025/10/01 12:20:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 140, "corpus": 2146, "corpus [files]": 828, "corpus [symbols]": 84, "cover overflows": 1292, "coverage": 15190, "distributor delayed": 1142, "distributor undelayed": 1142, "distributor violated": 1, "exec candidate": 2403, "exec collide": 228000, "exec fuzz": 431947, "exec gen": 22969, "exec hints": 14706, "exec inject": 0, "exec minimize": 34657, "exec retries": 0, "exec seeds": 6482, "exec smash": 53997, "exec total [base]": 328737, "exec total [new]": 808352, "exec triage": 5985, "executor restarts [base]": 60, "executor restarts [new]": 113, "fault jobs": 0, "fuzzer jobs": 3, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 1, "max signal": 15984, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 16736, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2542, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 347, "reproducing": 0, "rpc recv": 24296392268, "rpc sent": 2799745024, "signal": 14414, "smash jobs": 2, "triage jobs": 0, "vm output": 8589650, "vm restarts [base]": 13, "vm restarts [new]": 31 } 2025/10/01 12:25:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 141, "corpus": 2152, "corpus [files]": 834, "corpus [symbols]": 84, "cover overflows": 1370, "coverage": 15202, "distributor delayed": 1145, "distributor undelayed": 1145, "distributor violated": 1, "exec candidate": 2403, "exec collide": 235581, "exec fuzz": 446796, "exec gen": 23704, "exec hints": 14719, "exec inject": 0, "exec minimize": 34793, "exec retries": 0, "exec seeds": 6501, "exec smash": 54175, "exec total [base]": 338151, "exec total [new]": 831888, "exec triage": 6007, "executor restarts [base]": 60, "executor restarts [new]": 113, "fault jobs": 0, "fuzzer jobs": 1, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 0, "max signal": 16007, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 16799, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2551, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 385, "reproducing": 0, "rpc recv": 24969843004, "rpc sent": 2898472248, "signal": 14423, "smash jobs": 0, "triage jobs": 1, "vm output": 8984295, "vm restarts [base]": 13, "vm restarts [new]": 31 } 2025/10/01 12:30:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 144, "corpus": 2160, "corpus [files]": 838, "corpus [symbols]": 87, "cover overflows": 1425, "coverage": 15230, "distributor delayed": 1151, "distributor undelayed": 1151, "distributor violated": 1, "exec candidate": 2403, "exec collide": 243345, "exec fuzz": 461236, "exec gen": 24473, "exec hints": 14776, "exec inject": 0, "exec minimize": 34935, "exec retries": 0, "exec seeds": 6525, "exec smash": 54355, "exec total [base]": 347428, "exec total [new]": 855291, "exec triage": 6037, "executor restarts [base]": 60, "executor restarts [new]": 113, "fault jobs": 0, "fuzzer jobs": 2, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 1, "max signal": 16035, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 16862, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2563, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 381, "reproducing": 0, "rpc recv": 25615664756, "rpc sent": 2992098712, "signal": 14448, "smash jobs": 1, "triage jobs": 0, "vm output": 9394512, "vm restarts [base]": 13, "vm restarts [new]": 31 } 2025/10/01 12:35:36 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 150, "corpus": 2173, "corpus [files]": 846, "corpus [symbols]": 88, "cover overflows": 1524, "coverage": 15259, "distributor delayed": 1157, "distributor undelayed": 1157, "distributor violated": 1, "exec candidate": 2403, "exec collide": 250836, "exec fuzz": 475482, "exec gen": 25276, "exec hints": 14798, "exec inject": 0, "exec minimize": 35323, "exec retries": 0, "exec seeds": 6564, "exec smash": 54695, "exec total [base]": 356659, "exec total [new]": 878660, "exec triage": 6075, "executor restarts [base]": 60, "executor restarts [new]": 113, "fault jobs": 0, "fuzzer jobs": 2, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 0, "max signal": 16066, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 17043, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 2579, "no exec duration": 22048000000, "no exec requests": 23, "pending": 0, "prog exec time": 374, "reproducing": 0, "rpc recv": 26291754964, "rpc sent": 3088275032, "signal": 14486, "smash jobs": 2, "triage jobs": 0, "vm output": 9783499, "vm restarts [base]": 13, "vm restarts [new]": 31 } 2025/10/01 12:38:01 runner 1 connected 2025/10/01 12:38:53 runner 0 connected 2025/10/01 12:40:22 runner 0 connected 2025/10/01 12:40:31 bug reporting terminated 2025/10/01 12:40:31 status reporting terminated 2025/10/01 12:40:31 syz-diff (new): kernel context loop terminated 2025/10/01 12:40:31 failed to send *flatrpc.InfoReplyRawT: write tcp 127.0.0.1:39969->127.0.0.1:44920: use of closed network connection 2025/10/01 12:40:31 syz-diff (base): kernel context loop terminated 2025/10/01 12:40:31 diff fuzzing terminated 2025/10/01 12:40:31 fuzzing is finished 2025/10/01 12:40:31 status at the end: Title On-Base On-Patched KASAN: slab-use-after-free Write in kvm_gmem_release 2 crashes 1 crashes[reproduced]