2025/08/06 20:02:01 extracted 302733 symbol hashes for base and 302733 for patched 2025/08/06 20:02:01 adding modified_functions to focus areas: ["nvmet_execute_disc_identify"] 2025/08/06 20:02:01 adding directly modified files to focus areas: ["tools/testing/selftests/kvm/Makefile.kvm" "tools/testing/selftests/kvm/arm64/kvm-uuid.c"] 2025/08/06 20:02:02 downloaded the corpus from https://storage.googleapis.com/syzkaller/corpus/ci-upstream-kasan-gce-root-corpus.db 2025/08/06 20:02:51 runner 5 connected 2025/08/06 20:02:51 runner 2 connected 2025/08/06 20:02:51 runner 2 connected 2025/08/06 20:02:51 runner 0 connected 2025/08/06 20:02:51 runner 8 connected 2025/08/06 20:02:51 runner 9 connected 2025/08/06 20:02:52 runner 1 connected 2025/08/06 20:02:52 runner 0 connected 2025/08/06 20:02:52 runner 3 connected 2025/08/06 20:02:52 runner 6 connected 2025/08/06 20:02:52 runner 3 connected 2025/08/06 20:02:52 runner 1 connected 2025/08/06 20:02:52 runner 7 connected 2025/08/06 20:02:56 initializing coverage information... 2025/08/06 20:02:57 executor cover filter: 0 PCs 2025/08/06 20:02:58 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 165/8048 2025/08/06 20:02:58 base: machine check complete 2025/08/06 20:03:00 discovered 7668 source files, 337507 symbols 2025/08/06 20:03:00 coverage filter: nvmet_execute_disc_identify: [nvmet_execute_disc_identify] 2025/08/06 20:03:00 coverage filter: tools/testing/selftests/kvm/Makefile.kvm: [] 2025/08/06 20:03:00 coverage filter: tools/testing/selftests/kvm/arm64/kvm-uuid.c: [] 2025/08/06 20:03:00 area "symbols": 15 PCs in the cover filter 2025/08/06 20:03:00 area "files": 0 PCs in the cover filter 2025/08/06 20:03:00 area "": 0 PCs in the cover filter 2025/08/06 20:03:00 executor cover filter: 0 PCs 2025/08/06 20:03:01 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 165/8048 2025/08/06 20:03:01 new: machine check complete 2025/08/06 20:03:03 triaged 100.0% of the corpus 2025/08/06 20:03:03 starting bug reproductions 2025/08/06 20:03:03 starting bug reproductions (max 10 VMs, 7 repros) 2025/08/06 20:03:03 triaged 100.0% of the corpus 2025/08/06 20:03:04 new: adding 2034 seeds 2025/08/06 20:07:03 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 1, "corpus": 770, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 6, "coverage": 9830, "distributor delayed": 452, "distributor undelayed": 452, "distributor violated": 0, "exec candidate": 2034, "exec collide": 4682, "exec fuzz": 8651, "exec gen": 464, "exec hints": 1474, "exec inject": 0, "exec minimize": 10182, "exec retries": 0, "exec seeds": 2146, "exec smash": 9941, "exec total [base]": 25396, "exec total [new]": 47676, "exec triage": 2061, "executor restarts": 47, "fault jobs": 0, "fuzzer jobs": 882, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 9, "hints jobs": 154, "max signal": 10337, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 5491, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 877, "no exec duration": 23976000000, "no exec requests": 355, "pending": 0, "prog exec time": 269, "reproducing": 0, "rpc recv": 873601740, "rpc sent": 78217816, "signal": 9387, "smash jobs": 717, "triage jobs": 11, "vm output": 230822, "vm restarts [base]": 4, "vm restarts [new]": 9 } 2025/08/06 20:12:03 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 20, "corpus": 1059, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 33, "coverage": 11830, "distributor delayed": 601, "distributor undelayed": 601, "distributor violated": 0, "exec candidate": 2034, "exec collide": 9675, "exec fuzz": 18016, "exec gen": 962, "exec hints": 3714, "exec inject": 0, "exec minimize": 14879, "exec retries": 0, "exec seeds": 3069, "exec smash": 21633, "exec total [base]": 41716, "exec total [new]": 82848, "exec triage": 2826, "executor restarts": 47, "fault jobs": 0, "fuzzer jobs": 537, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 9, "hints jobs": 139, "max signal": 12320, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 7681, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1212, "no exec duration": 23976000000, "no exec requests": 355, "pending": 0, "prog exec time": 258, "reproducing": 0, "rpc recv": 1221934228, "rpc sent": 159714552, "signal": 11337, "smash jobs": 386, "triage jobs": 12, "vm output": 389871, "vm restarts [base]": 4, "vm restarts [new]": 9 } 2025/08/06 20:12:09 new: boot error: can't ssh into the instance 2025/08/06 20:13:06 runner 4 connected 2025/08/06 20:17:03 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 43, "corpus": 1257, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 36, "coverage": 12647, "distributor delayed": 702, "distributor undelayed": 702, "distributor violated": 0, "exec candidate": 2034, "exec collide": 14286, "exec fuzz": 26851, "exec gen": 1401, "exec hints": 7058, "exec inject": 0, "exec minimize": 18404, "exec retries": 0, "exec seeds": 3732, "exec smash": 30945, "exec total [base]": 55029, "exec total [new]": 114139, "exec triage": 3386, "executor restarts": 50, "fault jobs": 0, "fuzzer jobs": 33, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 13, "max signal": 13165, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 9325, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1450, "no exec duration": 23976000000, "no exec requests": 355, "pending": 0, "prog exec time": 274, "reproducing": 0, "rpc recv": 1572464444, "rpc sent": 234943688, "signal": 12125, "smash jobs": 12, "triage jobs": 8, "vm output": 647983, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/06 20:22:03 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 52, "corpus": 1334, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 36, "coverage": 12900, "distributor delayed": 738, "distributor undelayed": 738, "distributor violated": 0, "exec candidate": 2034, "exec collide": 21579, "exec fuzz": 40757, "exec gen": 2162, "exec hints": 10413, "exec inject": 0, "exec minimize": 19807, "exec retries": 0, "exec seeds": 3966, "exec smash": 32955, "exec total [base]": 66877, "exec total [new]": 143318, "exec triage": 3603, "executor restarts": 50, "fault jobs": 0, "fuzzer jobs": 15, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 5, "max signal": 13457, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 9979, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1540, "no exec duration": 23976000000, "no exec requests": 355, "pending": 0, "prog exec time": 390, "reproducing": 0, "rpc recv": 1712378176, "rpc sent": 312397376, "signal": 12366, "smash jobs": 8, "triage jobs": 2, "vm output": 921932, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/06 20:27:03 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 61, "corpus": 1408, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 37, "coverage": 13108, "distributor delayed": 771, "distributor undelayed": 771, "distributor violated": 0, "exec candidate": 2034, "exec collide": 28997, "exec fuzz": 54870, "exec gen": 2895, "exec hints": 11980, "exec inject": 0, "exec minimize": 21085, "exec retries": 0, "exec seeds": 4188, "exec smash": 34837, "exec total [base]": 78053, "exec total [new]": 170745, "exec triage": 3818, "executor restarts": 50, "fault jobs": 0, "fuzzer jobs": 17, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 3, "max signal": 13761, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 10578, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1632, "no exec duration": 23976000000, "no exec requests": 355, "pending": 0, "prog exec time": 329, "reproducing": 0, "rpc recv": 1828409140, "rpc sent": 388325512, "signal": 12566, "smash jobs": 9, "triage jobs": 5, "vm output": 1197243, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/06 20:32:03 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 72, "corpus": 1477, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 37, "coverage": 13295, "distributor delayed": 808, "distributor undelayed": 808, "distributor violated": 0, "exec candidate": 2034, "exec collide": 35994, "exec fuzz": 68322, "exec gen": 3602, "exec hints": 12965, "exec inject": 0, "exec minimize": 22542, "exec retries": 0, "exec seeds": 4395, "exec smash": 36539, "exec total [base]": 88561, "exec total [new]": 196458, "exec triage": 4019, "executor restarts": 50, "fault jobs": 0, "fuzzer jobs": 15, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 4, "max signal": 13966, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 11268, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1716, "no exec duration": 23976000000, "no exec requests": 355, "pending": 0, "prog exec time": 326, "reproducing": 0, "rpc recv": 1953421584, "rpc sent": 461020432, "signal": 12741, "smash jobs": 6, "triage jobs": 5, "vm output": 1496018, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/06 20:33:03 fuzzer has not reached the modified code in 30m0s, aborting 2025/08/06 20:33:04 syz-diff (base): kernel context loop terminated 2025/08/06 20:33:04 syz-diff (new): kernel context loop terminated 2025/08/06 20:33:04 diff fuzzing terminated 2025/08/06 20:33:04 bug reporting terminated 2025/08/06 20:33:04 status reporting terminated 2025/08/06 20:33:04 fuzzing is finished 2025/08/06 20:33:04 status at the end: Title On-Base On-Patched