2025/08/06 20:09:36 extracted 302733 symbol hashes for base and 302733 for patched 2025/08/06 20:09:36 adding modified_functions to focus areas: ["nvmet_execute_disc_identify"] 2025/08/06 20:09:36 adding directly modified files to focus areas: ["MAINTAINERS" "drivers/vfio/fsl-mc/Kconfig" "drivers/vfio/fsl-mc/vfio_fsl_mc.c" "drivers/vfio/platform/Kconfig" "drivers/vfio/platform/reset/Kconfig" "drivers/vfio/platform/vfio_amba.c" "drivers/vfio/platform/vfio_platform.c"] 2025/08/06 20:09:37 downloaded the corpus from https://storage.googleapis.com/syzkaller/corpus/ci-upstream-kasan-gce-root-corpus.db 2025/08/06 20:10:34 runner 2 connected 2025/08/06 20:10:34 runner 8 connected 2025/08/06 20:10:34 runner 2 connected 2025/08/06 20:10:34 runner 5 connected 2025/08/06 20:10:34 runner 9 connected 2025/08/06 20:10:34 runner 7 connected 2025/08/06 20:10:35 runner 1 connected 2025/08/06 20:10:35 runner 6 connected 2025/08/06 20:10:35 runner 0 connected 2025/08/06 20:10:36 runner 0 connected 2025/08/06 20:10:36 runner 3 connected 2025/08/06 20:10:36 runner 4 connected 2025/08/06 20:10:36 runner 3 connected 2025/08/06 20:10:36 runner 1 connected 2025/08/06 20:10:41 initializing coverage information... 2025/08/06 20:10:42 executor cover filter: 0 PCs 2025/08/06 20:10:44 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 165/8048 2025/08/06 20:10:44 base: machine check complete 2025/08/06 20:10:46 discovered 7668 source files, 337507 symbols 2025/08/06 20:10:46 coverage filter: nvmet_execute_disc_identify: [nvmet_execute_disc_identify] 2025/08/06 20:10:46 coverage filter: MAINTAINERS: [] 2025/08/06 20:10:46 coverage filter: drivers/vfio/fsl-mc/Kconfig: [] 2025/08/06 20:10:46 coverage filter: drivers/vfio/fsl-mc/vfio_fsl_mc.c: [] 2025/08/06 20:10:46 coverage filter: drivers/vfio/platform/Kconfig: [] 2025/08/06 20:10:46 coverage filter: drivers/vfio/platform/reset/Kconfig: [] 2025/08/06 20:10:46 coverage filter: drivers/vfio/platform/vfio_amba.c: [] 2025/08/06 20:10:46 coverage filter: drivers/vfio/platform/vfio_platform.c: [] 2025/08/06 20:10:46 area "symbols": 15 PCs in the cover filter 2025/08/06 20:10:46 area "files": 0 PCs in the cover filter 2025/08/06 20:10:46 area "": 0 PCs in the cover filter 2025/08/06 20:10:46 executor cover filter: 0 PCs 2025/08/06 20:10:47 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 165/8048 2025/08/06 20:10:47 new: machine check complete 2025/08/06 20:10:50 new: adding 2034 seeds 2025/08/06 20:11:08 triaged 99.9% of the corpus 2025/08/06 20:11:08 triaged 99.9% of the corpus 2025/08/06 20:11:08 starting bug reproductions 2025/08/06 20:11:08 starting bug reproductions (max 10 VMs, 7 repros) 2025/08/06 20:14:38 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 0, "corpus": 753, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 0, "coverage": 9293, "distributor delayed": 410, "distributor undelayed": 410, "distributor violated": 0, "exec candidate": 2034, "exec collide": 4921, "exec fuzz": 9372, "exec gen": 495, "exec hints": 1473, "exec inject": 0, "exec minimize": 9706, "exec retries": 0, "exec seeds": 2116, "exec smash": 10925, "exec total [base]": 22214, "exec total [new]": 49096, "exec triage": 2012, "executor restarts": 52, "fault jobs": 0, "fuzzer jobs": 770, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 136, "max signal": 9669, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 5212, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 863, "no exec duration": 24108000000, "no exec requests": 37, "pending": 0, "prog exec time": 201, "reproducing": 0, "rpc recv": 869059604, "rpc sent": 79085064, "signal": 8774, "smash jobs": 623, "triage jobs": 11, "vm output": 189447, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/06 20:19:38 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 22, "corpus": 1053, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 0, "coverage": 11672, "distributor delayed": 531, "distributor undelayed": 531, "distributor violated": 0, "exec candidate": 2034, "exec collide": 10658, "exec fuzz": 20406, "exec gen": 1042, "exec hints": 4753, "exec inject": 0, "exec minimize": 14132, "exec retries": 0, "exec seeds": 3083, "exec smash": 24007, "exec total [base]": 39011, "exec total [new]": 88946, "exec triage": 2788, "executor restarts": 52, "fault jobs": 0, "fuzzer jobs": 273, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 79, "max signal": 12074, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 7233, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1211, "no exec duration": 24108000000, "no exec requests": 37, "pending": 0, "prog exec time": 285, "reproducing": 0, "rpc recv": 1228697732, "rpc sent": 173453752, "signal": 11147, "smash jobs": 183, "triage jobs": 11, "vm output": 370392, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/06 20:24:38 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 50, "corpus": 1248, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 0, "coverage": 12598, "distributor delayed": 636, "distributor undelayed": 636, "distributor violated": 0, "exec candidate": 2034, "exec collide": 16332, "exec fuzz": 31470, "exec gen": 1628, "exec hints": 10686, "exec inject": 0, "exec minimize": 17432, "exec retries": 0, "exec seeds": 3703, "exec smash": 30728, "exec total [base]": 53201, "exec total [new]": 123406, "exec triage": 3350, "executor restarts": 52, "fault jobs": 0, "fuzzer jobs": 27, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 12, "max signal": 13132, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 8704, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1443, "no exec duration": 24108000000, "no exec requests": 37, "pending": 0, "prog exec time": 301, "reproducing": 0, "rpc recv": 1566491712, "rpc sent": 266420328, "signal": 12013, "smash jobs": 10, "triage jobs": 5, "vm output": 569974, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/06 20:29:38 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 72, "corpus": 1362, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 0, "coverage": 12871, "distributor delayed": 684, "distributor undelayed": 684, "distributor violated": 0, "exec candidate": 2034, "exec collide": 23374, "exec fuzz": 45048, "exec gen": 2377, "exec hints": 15233, "exec inject": 0, "exec minimize": 19223, "exec retries": 0, "exec seeds": 4047, "exec smash": 33656, "exec total [base]": 66278, "exec total [new]": 154702, "exec triage": 3668, "executor restarts": 52, "fault jobs": 0, "fuzzer jobs": 16, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 4, "max signal": 13437, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 9500, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1580, "no exec duration": 24108000000, "no exec requests": 37, "pending": 0, "prog exec time": 313, "reproducing": 0, "rpc recv": 1730972040, "rpc sent": 356884720, "signal": 12298, "smash jobs": 5, "triage jobs": 7, "vm output": 755077, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/06 20:34:38 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 85, "corpus": 1450, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 8, "coverage": 13201, "distributor delayed": 719, "distributor undelayed": 719, "distributor violated": 0, "exec candidate": 2034, "exec collide": 31398, "exec fuzz": 59984, "exec gen": 3167, "exec hints": 16893, "exec inject": 0, "exec minimize": 20683, "exec retries": 0, "exec seeds": 4306, "exec smash": 35815, "exec total [base]": 78596, "exec total [new]": 184232, "exec triage": 3908, "executor restarts": 52, "fault jobs": 0, "fuzzer jobs": 18, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 6, "max signal": 13770, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 10207, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1685, "no exec duration": 24108000000, "no exec requests": 37, "pending": 0, "prog exec time": 259, "reproducing": 0, "rpc recv": 1878206116, "rpc sent": 450358528, "signal": 12596, "smash jobs": 7, "triage jobs": 5, "vm output": 980352, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/06 20:39:38 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 100, "corpus": 1544, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 23, "coverage": 13430, "distributor delayed": 762, "distributor undelayed": 762, "distributor violated": 0, "exec candidate": 2034, "exec collide": 40153, "exec fuzz": 76842, "exec gen": 4057, "exec hints": 18020, "exec inject": 0, "exec minimize": 22250, "exec retries": 0, "exec seeds": 4596, "exec smash": 38206, "exec total [base]": 91786, "exec total [new]": 216352, "exec triage": 4149, "executor restarts": 52, "fault jobs": 0, "fuzzer jobs": 14, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 2, "max signal": 14029, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 10955, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1791, "no exec duration": 24108000000, "no exec requests": 37, "pending": 0, "prog exec time": 316, "reproducing": 0, "rpc recv": 2023736760, "rpc sent": 550842016, "signal": 12806, "smash jobs": 9, "triage jobs": 3, "vm output": 1187607, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/06 20:41:08 fuzzer has not reached the modified code in 30m0s, aborting 2025/08/06 20:41:08 syz-diff (base): kernel context loop terminated 2025/08/06 20:41:08 syz-diff (new): kernel context loop terminated 2025/08/06 20:41:08 diff fuzzing terminated 2025/08/06 20:41:08 bug reporting terminated 2025/08/06 20:41:08 status reporting terminated 2025/08/06 20:41:08 fuzzing is finished 2025/08/06 20:41:08 status at the end: Title On-Base On-Patched