2025/08/18 07:00:41 extracted 303751 symbol hashes for base and 303751 for patched 2025/08/18 07:00:41 adding modified_functions to focus areas: ["cpu_parse_topology_amd" "nvmet_execute_disc_identify"] 2025/08/18 07:00:41 adding directly modified files to focus areas: ["arch/x86/include/asm/msr-index.h" "arch/x86/kernel/cpu/topology_amd.c"] 2025/08/18 07:00:42 downloaded the corpus from https://storage.googleapis.com/syzkaller/corpus/ci-upstream-kasan-gce-root-corpus.db 2025/08/18 07:01:39 runner 3 connected 2025/08/18 07:01:39 runner 3 connected 2025/08/18 07:01:39 runner 1 connected 2025/08/18 07:01:39 runner 9 connected 2025/08/18 07:01:39 runner 0 connected 2025/08/18 07:01:39 runner 7 connected 2025/08/18 07:01:39 runner 8 connected 2025/08/18 07:01:39 runner 0 connected 2025/08/18 07:01:40 runner 1 connected 2025/08/18 07:01:40 runner 6 connected 2025/08/18 07:01:40 runner 2 connected 2025/08/18 07:01:40 runner 2 connected 2025/08/18 07:01:46 initializing coverage information... 2025/08/18 07:01:46 executor cover filter: 0 PCs 2025/08/18 07:01:48 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 165/8048 2025/08/18 07:01:48 base: machine check complete 2025/08/18 07:01:50 discovered 7699 source files, 338620 symbols 2025/08/18 07:01:50 coverage filter: cpu_parse_topology_amd: [cpu_parse_topology_amd] 2025/08/18 07:01:50 coverage filter: nvmet_execute_disc_identify: [nvmet_execute_disc_identify] 2025/08/18 07:01:50 coverage filter: arch/x86/include/asm/msr-index.h: [] 2025/08/18 07:01:50 coverage filter: arch/x86/kernel/cpu/topology_amd.c: [arch/x86/kernel/cpu/topology_amd.c] 2025/08/18 07:01:50 area "symbols": 68 PCs in the cover filter 2025/08/18 07:01:50 area "files": 59 PCs in the cover filter 2025/08/18 07:01:50 area "": 0 PCs in the cover filter 2025/08/18 07:01:50 executor cover filter: 0 PCs 2025/08/18 07:01:51 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 165/8048 2025/08/18 07:01:51 new: machine check complete 2025/08/18 07:01:54 new: adding 2289 seeds 2025/08/18 07:02:13 triaged 98.0% of the corpus 2025/08/18 07:02:13 starting bug reproductions 2025/08/18 07:02:13 starting bug reproductions (max 10 VMs, 7 repros) 2025/08/18 07:02:43 triaged 100.0% of the corpus 2025/08/18 07:05:43 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 0, "corpus": 707, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 0, "coverage": 10425, "distributor delayed": 444, "distributor undelayed": 444, "distributor violated": 0, "exec candidate": 2289, "exec collide": 3406, "exec fuzz": 6598, "exec gen": 331, "exec hints": 1004, "exec inject": 0, "exec minimize": 9436, "exec retries": 0, "exec seeds": 1974, "exec smash": 7120, "exec total [base]": 24581, "exec total [new]": 40896, "exec triage": 1932, "executor restarts": 44, "fault jobs": 0, "fuzzer jobs": 868, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 8, "hints jobs": 158, "max signal": 11053, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 5018, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 814, "no exec duration": 19200000000, "no exec requests": 58, "pending": 0, "prog exec time": 229, "reproducing": 0, "rpc recv": 785727972, "rpc sent": 83369552, "signal": 9937, "smash jobs": 695, "triage jobs": 15, "vm output": 208803, "vm restarts [base]": 4, "vm restarts [new]": 8 } 2025/08/18 07:10:43 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 18, "corpus": 981, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 2, "coverage": 12171, "distributor delayed": 584, "distributor undelayed": 584, "distributor violated": 0, "exec candidate": 2289, "exec collide": 7909, "exec fuzz": 15064, "exec gen": 766, "exec hints": 2503, "exec inject": 0, "exec minimize": 13740, "exec retries": 0, "exec seeds": 2859, "exec smash": 18142, "exec total [base]": 41420, "exec total [new]": 72709, "exec triage": 2632, "executor restarts": 44, "fault jobs": 0, "fuzzer jobs": 761, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 8, "hints jobs": 149, "max signal": 12740, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 7024, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1126, "no exec duration": 19200000000, "no exec requests": 58, "pending": 0, "prog exec time": 292, "reproducing": 0, "rpc recv": 1119745668, "rpc sent": 174386344, "signal": 11679, "smash jobs": 598, "triage jobs": 14, "vm output": 386626, "vm restarts [base]": 4, "vm restarts [new]": 8 } 2025/08/18 07:10:49 new: boot error: can't ssh into the instance 2025/08/18 07:10:49 new: boot error: can't ssh into the instance 2025/08/18 07:11:37 runner 5 connected 2025/08/18 07:15:43 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 35, "corpus": 1149, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 4, "coverage": 12683, "distributor delayed": 682, "distributor undelayed": 682, "distributor violated": 0, "exec candidate": 2289, "exec collide": 12497, "exec fuzz": 23634, "exec gen": 1196, "exec hints": 5336, "exec inject": 0, "exec minimize": 16608, "exec retries": 0, "exec seeds": 3446, "exec smash": 28306, "exec total [base]": 55708, "exec total [new]": 103217, "exec triage": 3097, "executor restarts": 47, "fault jobs": 0, "fuzzer jobs": 79, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 9, "hints jobs": 23, "max signal": 13299, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 8344, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1321, "no exec duration": 19200000000, "no exec requests": 58, "pending": 0, "prog exec time": 332, "reproducing": 0, "rpc recv": 1419085848, "rpc sent": 259518856, "signal": 12161, "smash jobs": 49, "triage jobs": 7, "vm output": 578109, "vm restarts [base]": 4, "vm restarts [new]": 9 } 2025/08/18 07:20:43 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 38, "corpus": 1267, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 5, "coverage": 13023, "distributor delayed": 730, "distributor undelayed": 730, "distributor violated": 0, "exec candidate": 2289, "exec collide": 19249, "exec fuzz": 36629, "exec gen": 1861, "exec hints": 10126, "exec inject": 0, "exec minimize": 18252, "exec retries": 0, "exec seeds": 3807, "exec smash": 31686, "exec total [base]": 69725, "exec total [new]": 134083, "exec triage": 3379, "executor restarts": 47, "fault jobs": 0, "fuzzer jobs": 10, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 9, "hints jobs": 5, "max signal": 13602, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 9109, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1446, "no exec duration": 19200000000, "no exec requests": 58, "pending": 0, "prog exec time": 296, "reproducing": 0, "rpc recv": 1570549820, "rpc sent": 342986528, "signal": 12459, "smash jobs": 3, "triage jobs": 2, "vm output": 768072, "vm restarts [base]": 4, "vm restarts [new]": 9 } 2025/08/18 07:20:54 new: boot error: can't ssh into the instance 2025/08/18 07:21:43 runner 4 connected 2025/08/18 07:25:43 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 45, "corpus": 1348, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 5, "coverage": 13226, "distributor delayed": 757, "distributor undelayed": 757, "distributor violated": 0, "exec candidate": 2289, "exec collide": 27522, "exec fuzz": 52556, "exec gen": 2632, "exec hints": 11544, "exec inject": 0, "exec minimize": 19451, "exec retries": 0, "exec seeds": 4048, "exec smash": 33641, "exec total [base]": 82346, "exec total [new]": 164079, "exec triage": 3586, "executor restarts": 50, "fault jobs": 0, "fuzzer jobs": 13, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 2, "max signal": 13817, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 9678, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1540, "no exec duration": 19200000000, "no exec requests": 58, "pending": 0, "prog exec time": 355, "reproducing": 0, "rpc recv": 1710726820, "rpc sent": 431991824, "signal": 12642, "smash jobs": 8, "triage jobs": 3, "vm output": 977820, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/18 07:30:43 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 54, "corpus": 1408, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 5, "coverage": 13384, "distributor delayed": 787, "distributor undelayed": 787, "distributor violated": 0, "exec candidate": 2289, "exec collide": 36046, "exec fuzz": 69081, "exec gen": 3489, "exec hints": 12113, "exec inject": 0, "exec minimize": 20448, "exec retries": 0, "exec seeds": 4233, "exec smash": 35227, "exec total [base]": 94373, "exec total [new]": 193514, "exec triage": 3775, "executor restarts": 50, "fault jobs": 0, "fuzzer jobs": 10, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 1, "max signal": 14005, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 10145, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1621, "no exec duration": 19200000000, "no exec requests": 58, "pending": 0, "prog exec time": 317, "reproducing": 0, "rpc recv": 1815544592, "rpc sent": 521235552, "signal": 12783, "smash jobs": 5, "triage jobs": 4, "vm output": 1175533, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/18 07:32:43 fuzzer has not reached the modified code in 30m0s, aborting 2025/08/18 07:32:43 syz-diff (base): kernel context loop terminated 2025/08/18 07:32:43 syz-diff (new): kernel context loop terminated 2025/08/18 07:32:43 diff fuzzing terminated 2025/08/18 07:32:43 bug reporting terminated 2025/08/18 07:32:43 status reporting terminated 2025/08/18 07:32:43 fuzzing is finished 2025/08/18 07:32:43 status at the end: Title On-Base On-Patched