2025/09/03 13:49:16 extracted 327254 text symbol hashes for base and 327254 for patched 2025/09/03 13:49:17 symbol "cpuid_bits" has different values in base vs patch 2025/09/03 13:49:17 binaries are different, continuing fuzzing 2025/09/03 13:49:17 adding directly modified files to focus areas: ["Documentation/admin-guide/kernel-parameters.txt" "Documentation/filesystems/resctrl.rst" "arch/x86/include/asm/cpufeatures.h" "arch/x86/include/asm/msr-index.h" "arch/x86/kernel/cpu/cpuid-deps.c" "arch/x86/kernel/cpu/resctrl/core.c" "arch/x86/kernel/cpu/resctrl/ctrlmondata.c" "arch/x86/kernel/cpu/resctrl/internal.h" "arch/x86/kernel/cpu/scattered.c" "fs/resctrl/ctrlmondata.c" "fs/resctrl/internal.h" "fs/resctrl/rdtgroup.c" "include/linux/resctrl.h"] 2025/09/03 13:49:18 downloaded the corpus from https://storage.googleapis.com/syzkaller/corpus/ci-upstream-kasan-gce-root-corpus.db 2025/09/03 13:50:16 runner 4 connected 2025/09/03 13:50:16 runner 7 connected 2025/09/03 13:50:16 runner 1 connected 2025/09/03 13:50:16 runner 5 connected 2025/09/03 13:50:16 runner 3 connected 2025/09/03 13:50:16 runner 2 connected 2025/09/03 13:50:16 runner 0 connected 2025/09/03 13:50:16 runner 8 connected 2025/09/03 13:50:16 runner 1 connected 2025/09/03 13:50:16 runner 9 connected 2025/09/03 13:50:16 runner 3 connected 2025/09/03 13:50:16 runner 0 connected 2025/09/03 13:50:16 runner 6 connected 2025/09/03 13:50:16 runner 2 connected 2025/09/03 13:50:23 initializing coverage information... 2025/09/03 13:50:23 executor cover filter: 0 PCs 2025/09/03 13:50:24 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 165/8054 2025/09/03 13:50:24 base: machine check complete 2025/09/03 13:50:27 discovered 7699 source files, 338653 symbols 2025/09/03 13:50:27 coverage filter: Documentation/admin-guide/kernel-parameters.txt: [] 2025/09/03 13:50:27 coverage filter: Documentation/filesystems/resctrl.rst: [] 2025/09/03 13:50:27 coverage filter: arch/x86/include/asm/cpufeatures.h: [] 2025/09/03 13:50:27 coverage filter: arch/x86/include/asm/msr-index.h: [] 2025/09/03 13:50:27 coverage filter: arch/x86/kernel/cpu/cpuid-deps.c: [arch/x86/kernel/cpu/cpuid-deps.c] 2025/09/03 13:50:27 coverage filter: arch/x86/kernel/cpu/resctrl/core.c: [] 2025/09/03 13:50:27 coverage filter: arch/x86/kernel/cpu/resctrl/ctrlmondata.c: [] 2025/09/03 13:50:27 coverage filter: arch/x86/kernel/cpu/resctrl/internal.h: [] 2025/09/03 13:50:27 coverage filter: arch/x86/kernel/cpu/scattered.c: [arch/x86/kernel/cpu/scattered.c] 2025/09/03 13:50:27 coverage filter: fs/resctrl/ctrlmondata.c: [] 2025/09/03 13:50:27 coverage filter: fs/resctrl/internal.h: [] 2025/09/03 13:50:27 coverage filter: fs/resctrl/rdtgroup.c: [] 2025/09/03 13:50:27 coverage filter: include/linux/resctrl.h: [] 2025/09/03 13:50:27 area "files": 51 PCs in the cover filter 2025/09/03 13:50:27 area "": 0 PCs in the cover filter 2025/09/03 13:50:27 executor cover filter: 0 PCs 2025/09/03 13:50:28 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 165/8054 2025/09/03 13:50:28 new: machine check complete 2025/09/03 13:50:32 new: adding 2363 seeds 2025/09/03 13:50:49 triaged 97.9% of the corpus 2025/09/03 13:50:49 starting bug reproductions 2025/09/03 13:50:49 starting bug reproductions (max 10 VMs, 7 repros) 2025/09/03 13:51:19 triaged 100.0% of the corpus 2025/09/03 13:54:19 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 0, "corpus": 724, "corpus [files]": 0, "cover overflows": 0, "coverage": 9905, "distributor delayed": 419, "distributor undelayed": 419, "distributor violated": 0, "exec candidate": 2363, "exec collide": 5057, "exec fuzz": 9377, "exec gen": 565, "exec hints": 1458, "exec inject": 0, "exec minimize": 9259, "exec retries": 0, "exec seeds": 2058, "exec smash": 11196, "exec total [base]": 21606, "exec total [new]": 50306, "exec triage": 1954, "executor restarts [base]": 33, "executor restarts [new]": 52, "fault jobs": 0, "fuzzer jobs": 764, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 123, "max signal": 10259, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 4890, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 828, "no exec duration": 24012000000, "no exec requests": 27, "pending": 0, "prog exec time": 246, "reproducing": 0, "rpc recv": 1477259284, "rpc sent": 80131920, "signal": 9277, "smash jobs": 632, "triage jobs": 9, "vm output": 236515, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/09/03 13:59:19 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 25, "corpus": 1024, "corpus [files]": 0, "cover overflows": 0, "coverage": 12043, "distributor delayed": 558, "distributor undelayed": 558, "distributor violated": 0, "exec candidate": 2363, "exec collide": 10670, "exec fuzz": 20272, "exec gen": 1133, "exec hints": 4563, "exec inject": 0, "exec minimize": 14022, "exec retries": 0, "exec seeds": 3039, "exec smash": 24191, "exec total [base]": 37819, "exec total [new]": 90015, "exec triage": 2743, "executor restarts [base]": 33, "executor restarts [new]": 52, "fault jobs": 0, "fuzzer jobs": 173, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 54, "max signal": 12472, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 7007, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1176, "no exec duration": 24012000000, "no exec requests": 27, "pending": 0, "prog exec time": 265, "reproducing": 0, "rpc recv": 2712448056, "rpc sent": 173482088, "signal": 11495, "smash jobs": 107, "triage jobs": 12, "vm output": 353518, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/09/03 14:04:19 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 50, "corpus": 1214, "corpus [files]": 0, "cover overflows": 0, "coverage": 12658, "distributor delayed": 662, "distributor undelayed": 662, "distributor violated": 0, "exec candidate": 2363, "exec collide": 16918, "exec fuzz": 32226, "exec gen": 1797, "exec hints": 7557, "exec inject": 0, "exec minimize": 17145, "exec retries": 0, "exec seeds": 3636, "exec smash": 30167, "exec total [base]": 50708, "exec total [new]": 122118, "exec triage": 3289, "executor restarts [base]": 33, "executor restarts [new]": 52, "fault jobs": 0, "fuzzer jobs": 19, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 3, "max signal": 13335, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 8452, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1405, "no exec duration": 24012000000, "no exec requests": 27, "pending": 0, "prog exec time": 406, "reproducing": 0, "rpc recv": 3767866268, "rpc sent": 251374656, "signal": 12047, "smash jobs": 11, "triage jobs": 5, "vm output": 589899, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/09/03 14:09:19 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 68, "corpus": 1346, "corpus [files]": 0, "cover overflows": 1, "coverage": 13058, "distributor delayed": 726, "distributor undelayed": 726, "distributor violated": 0, "exec candidate": 2363, "exec collide": 23952, "exec fuzz": 45578, "exec gen": 2428, "exec hints": 8058, "exec inject": 0, "exec minimize": 19397, "exec retries": 0, "exec seeds": 4029, "exec smash": 33518, "exec total [base]": 61835, "exec total [new]": 149994, "exec triage": 3652, "executor restarts [base]": 33, "executor restarts [new]": 52, "fault jobs": 0, "fuzzer jobs": 14, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 1, "max signal": 13713, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 9464, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1559, "no exec duration": 24012000000, "no exec requests": 27, "pending": 0, "prog exec time": 331, "reproducing": 0, "rpc recv": 4696976844, "rpc sent": 346323896, "signal": 12376, "smash jobs": 6, "triage jobs": 7, "vm output": 744497, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/09/03 14:14:19 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 76, "corpus": 1413, "corpus [files]": 0, "cover overflows": 1, "coverage": 13256, "distributor delayed": 768, "distributor undelayed": 768, "distributor violated": 0, "exec candidate": 2363, "exec collide": 31602, "exec fuzz": 59945, "exec gen": 3221, "exec hints": 8273, "exec inject": 0, "exec minimize": 20717, "exec retries": 0, "exec seeds": 4236, "exec smash": 35279, "exec total [base]": 72253, "exec total [new]": 176534, "exec triage": 3879, "executor restarts [base]": 33, "executor restarts [new]": 52, "fault jobs": 0, "fuzzer jobs": 10, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 1, "max signal": 13921, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 10069, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1649, "no exec duration": 24012000000, "no exec requests": 27, "pending": 0, "prog exec time": 339, "reproducing": 0, "rpc recv": 5507268336, "rpc sent": 440720320, "signal": 12552, "smash jobs": 2, "triage jobs": 7, "vm output": 926787, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/09/03 14:19:19 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 81, "corpus": 1482, "corpus [files]": 0, "cover overflows": 1, "coverage": 13459, "distributor delayed": 809, "distributor undelayed": 809, "distributor violated": 0, "exec candidate": 2363, "exec collide": 38887, "exec fuzz": 73779, "exec gen": 3940, "exec hints": 8539, "exec inject": 0, "exec minimize": 22333, "exec retries": 0, "exec seeds": 4441, "exec smash": 36974, "exec total [base]": 82356, "exec total [new]": 202372, "exec triage": 4095, "executor restarts [base]": 33, "executor restarts [new]": 52, "fault jobs": 0, "fuzzer jobs": 10, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 2, "max signal": 14202, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 10825, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1738, "no exec duration": 24012000000, "no exec requests": 27, "pending": 0, "prog exec time": 329, "reproducing": 0, "rpc recv": 6323782328, "rpc sent": 534875552, "signal": 12743, "smash jobs": 3, "triage jobs": 5, "vm output": 1106320, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/09/03 14:21:19 fuzzer has not reached the modified code in 30m0s, aborting 2025/09/03 14:21:20 syz-diff (new): kernel context loop terminated 2025/09/03 14:21:20 syz-diff (base): kernel context loop terminated 2025/09/03 14:21:20 diff fuzzing terminated 2025/09/03 14:21:20 bug reporting terminated 2025/09/03 14:21:20 status reporting terminated 2025/09/03 14:21:20 fuzzing is finished 2025/09/03 14:21:20 status at the end: Title On-Base On-Patched