2025/08/11 09:07:31 extracted 303683 symbol hashes for base and 303683 for patched 2025/08/11 09:07:31 adding modified_functions to focus areas: ["nvmet_execute_disc_identify"] 2025/08/11 09:07:31 adding directly modified files to focus areas: ["tools/testing/selftests/kvm/Makefile.kvm"] 2025/08/11 09:07:32 downloaded the corpus from https://storage.googleapis.com/syzkaller/corpus/ci-upstream-kasan-gce-root-corpus.db 2025/08/11 09:08:30 runner 8 connected 2025/08/11 09:08:30 runner 1 connected 2025/08/11 09:08:30 runner 4 connected 2025/08/11 09:08:30 runner 0 connected 2025/08/11 09:08:30 runner 3 connected 2025/08/11 09:08:30 runner 5 connected 2025/08/11 09:08:30 runner 2 connected 2025/08/11 09:08:30 runner 3 connected 2025/08/11 09:08:30 runner 2 connected 2025/08/11 09:08:31 runner 7 connected 2025/08/11 09:08:31 runner 6 connected 2025/08/11 09:08:32 runner 9 connected 2025/08/11 09:08:32 runner 1 connected 2025/08/11 09:08:37 initializing coverage information... 2025/08/11 09:08:37 executor cover filter: 0 PCs 2025/08/11 09:08:40 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 165/8048 2025/08/11 09:08:40 base: machine check complete 2025/08/11 09:08:43 discovered 7697 source files, 338543 symbols 2025/08/11 09:08:43 coverage filter: nvmet_execute_disc_identify: [nvmet_execute_disc_identify] 2025/08/11 09:08:43 coverage filter: tools/testing/selftests/kvm/Makefile.kvm: [] 2025/08/11 09:08:43 area "symbols": 15 PCs in the cover filter 2025/08/11 09:08:43 area "files": 0 PCs in the cover filter 2025/08/11 09:08:43 area "": 0 PCs in the cover filter 2025/08/11 09:08:43 executor cover filter: 0 PCs 2025/08/11 09:08:45 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 165/8048 2025/08/11 09:08:45 new: machine check complete 2025/08/11 09:08:49 new: adding 2072 seeds 2025/08/11 09:09:03 triaged 97.3% of the corpus 2025/08/11 09:09:03 starting bug reproductions 2025/08/11 09:09:03 starting bug reproductions (max 10 VMs, 7 repros) 2025/08/11 09:09:33 triaged 100.0% of the corpus 2025/08/11 09:12:33 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 0, "corpus": 719, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 0, "coverage": 9976, "distributor delayed": 440, "distributor undelayed": 440, "distributor violated": 0, "exec candidate": 2072, "exec collide": 3890, "exec fuzz": 7454, "exec gen": 414, "exec hints": 1307, "exec inject": 0, "exec minimize": 9526, "exec retries": 0, "exec seeds": 2010, "exec smash": 8202, "exec total [base]": 22130, "exec total [new]": 42945, "exec triage": 1905, "executor restarts": 50, "fault jobs": 0, "fuzzer jobs": 827, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 9, "hints jobs": 165, "max signal": 10325, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 5134, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 814, "no exec duration": 19000000000, "no exec requests": 19, "pending": 0, "prog exec time": 203, "reproducing": 0, "rpc recv": 867552636, "rpc sent": 65272504, "signal": 9453, "smash jobs": 653, "triage jobs": 9, "vm output": 176916, "vm restarts [base]": 4, "vm restarts [new]": 9 } 2025/08/11 09:17:33 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 33, "corpus": 1033, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 56, "coverage": 12081, "distributor delayed": 609, "distributor undelayed": 609, "distributor violated": 0, "exec candidate": 2072, "exec collide": 8757, "exec fuzz": 16594, "exec gen": 900, "exec hints": 3304, "exec inject": 0, "exec minimize": 14987, "exec retries": 0, "exec seeds": 2995, "exec smash": 19713, "exec total [base]": 38600, "exec total [new]": 78292, "exec triage": 2803, "executor restarts": 50, "fault jobs": 0, "fuzzer jobs": 684, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 9, "hints jobs": 167, "max signal": 12484, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 7669, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1196, "no exec duration": 19000000000, "no exec requests": 19, "pending": 0, "prog exec time": 339, "reproducing": 0, "rpc recv": 1320593384, "rpc sent": 152741616, "signal": 11581, "smash jobs": 502, "triage jobs": 15, "vm output": 334519, "vm restarts [base]": 4, "vm restarts [new]": 9 } 2025/08/11 09:17:39 new: boot error: can't ssh into the instance 2025/08/11 09:22:33 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 58, "corpus": 1220, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 86, "coverage": 12592, "distributor delayed": 702, "distributor undelayed": 702, "distributor violated": 0, "exec candidate": 2072, "exec collide": 12850, "exec fuzz": 24595, "exec gen": 1312, "exec hints": 5833, "exec inject": 0, "exec minimize": 18221, "exec retries": 0, "exec seeds": 3651, "exec smash": 29036, "exec total [base]": 51770, "exec total [new]": 107030, "exec triage": 3292, "executor restarts": 50, "fault jobs": 0, "fuzzer jobs": 214, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 9, "hints jobs": 51, "max signal": 13041, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 9149, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1406, "no exec duration": 19000000000, "no exec requests": 19, "pending": 0, "prog exec time": 345, "reproducing": 0, "rpc recv": 1647305228, "rpc sent": 226713896, "signal": 12090, "smash jobs": 157, "triage jobs": 6, "vm output": 548643, "vm restarts [base]": 4, "vm restarts [new]": 9 } 2025/08/11 09:27:33 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 66, "corpus": 1321, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 91, "coverage": 12837, "distributor delayed": 765, "distributor undelayed": 765, "distributor violated": 0, "exec candidate": 2072, "exec collide": 17822, "exec fuzz": 33951, "exec gen": 1785, "exec hints": 10645, "exec inject": 0, "exec minimize": 19960, "exec retries": 0, "exec seeds": 3963, "exec smash": 32924, "exec total [base]": 63575, "exec total [new]": 132864, "exec triage": 3578, "executor restarts": 50, "fault jobs": 0, "fuzzer jobs": 19, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 9, "hints jobs": 8, "max signal": 13392, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 9959, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1526, "no exec duration": 19000000000, "no exec requests": 19, "pending": 0, "prog exec time": 334, "reproducing": 0, "rpc recv": 1805205260, "rpc sent": 290366368, "signal": 12322, "smash jobs": 8, "triage jobs": 3, "vm output": 744166, "vm restarts [base]": 4, "vm restarts [new]": 9 } 2025/08/11 09:27:45 new: boot error: can't ssh into the instance 2025/08/11 09:28:42 runner 0 connected 2025/08/11 09:32:33 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 73, "corpus": 1389, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 93, "coverage": 13006, "distributor delayed": 814, "distributor undelayed": 814, "distributor violated": 0, "exec candidate": 2072, "exec collide": 24394, "exec fuzz": 46347, "exec gen": 2401, "exec hints": 13142, "exec inject": 0, "exec minimize": 21301, "exec retries": 0, "exec seeds": 4164, "exec smash": 34651, "exec total [base]": 74644, "exec total [new]": 158437, "exec triage": 3795, "executor restarts": 53, "fault jobs": 0, "fuzzer jobs": 14, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 5, "max signal": 13609, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 10576, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1618, "no exec duration": 19000000000, "no exec requests": 19, "pending": 0, "prog exec time": 331, "reproducing": 0, "rpc recv": 1972866892, "rpc sent": 358057408, "signal": 12473, "smash jobs": 5, "triage jobs": 4, "vm output": 967445, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/11 09:37:33 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 78, "corpus": 1448, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 104, "coverage": 13127, "distributor delayed": 853, "distributor undelayed": 853, "distributor violated": 0, "exec candidate": 2072, "exec collide": 31574, "exec fuzz": 59944, "exec gen": 3137, "exec hints": 13694, "exec inject": 0, "exec minimize": 22266, "exec retries": 0, "exec seeds": 4344, "exec smash": 36069, "exec total [base]": 84848, "exec total [new]": 183282, "exec triage": 4011, "executor restarts": 53, "fault jobs": 0, "fuzzer jobs": 20, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 2, "max signal": 13818, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 11028, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1704, "no exec duration": 19000000000, "no exec requests": 19, "pending": 0, "prog exec time": 372, "reproducing": 0, "rpc recv": 2083468416, "rpc sent": 427846496, "signal": 12581, "smash jobs": 12, "triage jobs": 6, "vm output": 1187238, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/11 09:39:33 fuzzer has not reached the modified code in 30m0s, aborting 2025/08/11 09:39:34 syz-diff (base): kernel context loop terminated 2025/08/11 09:39:34 syz-diff (new): kernel context loop terminated 2025/08/11 09:39:34 diff fuzzing terminated 2025/08/11 09:39:34 bug reporting terminated 2025/08/11 09:39:34 status reporting terminated 2025/08/11 09:39:34 fuzzing is finished 2025/08/11 09:39:34 status at the end: Title On-Base On-Patched