2025/07/31 14:58:51 extracted 302733 symbol hashes for base and 302733 for patched 2025/07/31 14:58:51 adding modified_functions to focus areas: ["nvmet_execute_disc_identify"] 2025/07/31 14:58:51 adding directly modified files to focus areas: ["tools/testing/selftests/kvm/Makefile" "tools/testing/selftests/kvm/Makefile.kvm"] 2025/07/31 14:58:54 downloaded the corpus from https://storage.googleapis.com/syzkaller/corpus/ci-upstream-kasan-gce-root-corpus.db 2025/07/31 14:59:51 runner 1 connected 2025/07/31 14:59:51 runner 8 connected 2025/07/31 14:59:51 runner 9 connected 2025/07/31 14:59:51 runner 0 connected 2025/07/31 14:59:52 runner 0 connected 2025/07/31 14:59:52 runner 3 connected 2025/07/31 14:59:52 runner 5 connected 2025/07/31 14:59:52 runner 2 connected 2025/07/31 14:59:52 runner 7 connected 2025/07/31 14:59:52 runner 1 connected 2025/07/31 14:59:52 runner 4 connected 2025/07/31 14:59:58 executor cover filter: 0 PCs 2025/07/31 14:59:58 initializing coverage information... 2025/07/31 15:00:00 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 165/8048 2025/07/31 15:00:00 base: machine check complete 2025/07/31 15:00:02 discovered 7668 source files, 337507 symbols 2025/07/31 15:00:02 coverage filter: nvmet_execute_disc_identify: [nvmet_execute_disc_identify] 2025/07/31 15:00:02 coverage filter: tools/testing/selftests/kvm/Makefile: [] 2025/07/31 15:00:02 coverage filter: tools/testing/selftests/kvm/Makefile.kvm: [] 2025/07/31 15:00:02 area "symbols": 15 PCs in the cover filter 2025/07/31 15:00:02 area "files": 0 PCs in the cover filter 2025/07/31 15:00:02 area "": 0 PCs in the cover filter 2025/07/31 15:00:02 executor cover filter: 0 PCs 2025/07/31 15:00:03 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 165/8048 2025/07/31 15:00:03 new: machine check complete 2025/07/31 15:00:07 new: adding 2126 seeds 2025/07/31 15:00:25 triaged 100.0% of the corpus 2025/07/31 15:00:25 triaged 100.0% of the corpus 2025/07/31 15:00:25 starting bug reproductions 2025/07/31 15:00:25 starting bug reproductions (max 10 VMs, 7 repros) 2025/07/31 15:03:55 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "corpus": 700, "corpus [files]": 0, "corpus [symbols]": 0, "coverage": 9954, "distributor delayed": 472, "distributor undelayed": 472, "distributor violated": 0, "exec candidate": 2126, "exec collide": 3675, "exec fuzz": 6870, "exec gen": 385, "exec hints": 1182, "exec inject": 0, "exec minimize": 9578, "exec retries": 0, "exec seeds": 1972, "exec smash": 7610, "exec total [base]": 18490, "exec total [new]": 41652, "exec triage": 1937, "executor restarts": 44, "fault jobs": 0, "fuzzer jobs": 823, "fuzzing VMs [base]": 3, "fuzzing VMs [new]": 8, "hints jobs": 176, "max signal": 10234, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 5143, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 818, "no exec duration": 20377000000, "no exec requests": 93, "pending": 0, "prog exec time": 200, "reproducing": 0, "rpc recv": 788506716, "rpc sent": 71687688, "signal": 9437, "smash jobs": 635, "triage jobs": 12, "vm output": 176092, "vm restarts [base]": 3, "vm restarts [new]": 8 } 2025/07/31 15:08:55 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "corpus": 922, "corpus [files]": 0, "corpus [symbols]": 0, "coverage": 11096, "distributor delayed": 609, "distributor undelayed": 609, "distributor violated": 0, "exec candidate": 2126, "exec collide": 8263, "exec fuzz": 15789, "exec gen": 840, "exec hints": 3245, "exec inject": 0, "exec minimize": 13443, "exec retries": 0, "exec seeds": 2744, "exec smash": 18732, "exec total [base]": 31101, "exec total [new]": 74048, "exec triage": 2550, "executor restarts": 44, "fault jobs": 0, "fuzzer jobs": 600, "fuzzing VMs [base]": 3, "fuzzing VMs [new]": 8, "hints jobs": 140, "max signal": 11472, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 7000, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1090, "no exec duration": 20377000000, "no exec requests": 93, "pending": 0, "prog exec time": 237, "reproducing": 0, "rpc recv": 1094185108, "rpc sent": 163363928, "signal": 10573, "smash jobs": 449, "triage jobs": 11, "vm output": 309622, "vm restarts [base]": 3, "vm restarts [new]": 8 } 2025/07/31 15:09:49 runner 2 connected 2025/07/31 15:09:50 runner 6 connected 2025/07/31 15:09:50 runner 3 connected 2025/07/31 15:13:55 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "corpus": 1124, "corpus [files]": 0, "corpus [symbols]": 0, "coverage": 12534, "distributor delayed": 690, "distributor undelayed": 690, "distributor violated": 0, "exec candidate": 2126, "exec collide": 13855, "exec fuzz": 26467, "exec gen": 1438, "exec hints": 8347, "exec inject": 0, "exec minimize": 17164, "exec retries": 0, "exec seeds": 3396, "exec smash": 28202, "exec total [base]": 45680, "exec total [new]": 110345, "exec triage": 3028, "executor restarts": 50, "fault jobs": 0, "fuzzer jobs": 24, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 12, "max signal": 12903, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 8704, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1310, "no exec duration": 20377000000, "no exec requests": 93, "pending": 0, "prog exec time": 264, "reproducing": 0, "rpc recv": 1457979856, "rpc sent": 272004624, "signal": 11948, "smash jobs": 7, "triage jobs": 5, "vm output": 571650, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/07/31 15:18:55 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "corpus": 1264, "corpus [files]": 0, "corpus [symbols]": 0, "coverage": 13011, "distributor delayed": 745, "distributor undelayed": 745, "distributor violated": 0, "exec candidate": 2126, "exec collide": 21914, "exec fuzz": 41622, "exec gen": 2274, "exec hints": 11463, "exec inject": 0, "exec minimize": 19577, "exec retries": 0, "exec seeds": 3825, "exec smash": 31754, "exec total [base]": 59937, "exec total [new]": 144249, "exec triage": 3375, "executor restarts": 50, "fault jobs": 0, "fuzzer jobs": 22, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 6, "max signal": 13405, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 9787, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1469, "no exec duration": 20377000000, "no exec requests": 93, "pending": 0, "prog exec time": 276, "reproducing": 0, "rpc recv": 1665762808, "rpc sent": 381850008, "signal": 12445, "smash jobs": 7, "triage jobs": 9, "vm output": 787511, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/07/31 15:23:55 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "corpus": 1354, "corpus [files]": 0, "corpus [symbols]": 0, "coverage": 13383, "distributor delayed": 787, "distributor undelayed": 787, "distributor violated": 0, "exec candidate": 2126, "exec collide": 30172, "exec fuzz": 57265, "exec gen": 3106, "exec hints": 12849, "exec inject": 0, "exec minimize": 21344, "exec retries": 0, "exec seeds": 4098, "exec smash": 34116, "exec total [base]": 72622, "exec total [new]": 175046, "exec triage": 3652, "executor restarts": 50, "fault jobs": 0, "fuzzer jobs": 12, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 2, "max signal": 13783, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 10607, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1583, "no exec duration": 20377000000, "no exec requests": 93, "pending": 0, "prog exec time": 300, "reproducing": 0, "rpc recv": 1861472104, "rpc sent": 486383664, "signal": 12764, "smash jobs": 4, "triage jobs": 6, "vm output": 983040, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/07/31 15:28:55 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "corpus": 1435, "corpus [files]": 0, "corpus [symbols]": 0, "coverage": 13618, "distributor delayed": 829, "distributor undelayed": 829, "distributor violated": 0, "exec candidate": 2126, "exec collide": 38290, "exec fuzz": 72897, "exec gen": 3929, "exec hints": 13502, "exec inject": 0, "exec minimize": 23058, "exec retries": 0, "exec seeds": 4340, "exec smash": 36096, "exec total [base]": 84655, "exec total [new]": 204466, "exec triage": 3908, "executor restarts": 50, "fault jobs": 0, "fuzzer jobs": 16, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 3, "max signal": 14162, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 11380, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1686, "no exec duration": 20384000000, "no exec requests": 94, "pending": 0, "prog exec time": 286, "reproducing": 0, "rpc recv": 2026900668, "rpc sent": 586027264, "signal": 12973, "smash jobs": 5, "triage jobs": 8, "vm output": 1190831, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/07/31 15:30:25 fuzzer has not reached the modified code in 30m0s, aborting 2025/07/31 15:30:25 syz-diff (base): kernel context loop terminated 2025/07/31 15:30:25 syz-diff (new): kernel context loop terminated 2025/07/31 15:30:25 diff fuzzing terminated 2025/07/31 15:30:25 bug reporting terminated 2025/07/31 15:30:25 status reporting terminated 2025/07/31 15:30:25 fuzzing is finished 2025/07/31 15:30:25 status at the end: Title On-Base On-Patched