2025/08/06 21:32:14 extracted 302733 symbol hashes for base and 302733 for patched 2025/08/06 21:32:14 adding modified_functions to focus areas: ["nvmet_execute_disc_identify"] 2025/08/06 21:32:14 adding directly modified files to focus areas: ["arch/x86/boot/compressed/sev.c" "arch/x86/boot/compressed/sev.h" "arch/x86/boot/cpucheck.c" "arch/x86/boot/msr.h" "arch/x86/coco/sev/vc-shared.c" "arch/x86/include/asm/shared/msr.h" "arch/x86/include/asm/svm.h"] 2025/08/06 21:32:15 downloaded the corpus from https://storage.googleapis.com/syzkaller/corpus/ci-upstream-kasan-gce-root-corpus.db 2025/08/06 21:33:04 runner 2 connected 2025/08/06 21:33:04 runner 4 connected 2025/08/06 21:33:04 runner 0 connected 2025/08/06 21:33:04 runner 7 connected 2025/08/06 21:33:04 runner 8 connected 2025/08/06 21:33:05 runner 6 connected 2025/08/06 21:33:05 runner 2 connected 2025/08/06 21:33:05 runner 1 connected 2025/08/06 21:33:05 runner 5 connected 2025/08/06 21:33:05 runner 1 connected 2025/08/06 21:33:06 runner 3 connected 2025/08/06 21:33:06 runner 9 connected 2025/08/06 21:33:06 runner 0 connected 2025/08/06 21:33:09 initializing coverage information... 2025/08/06 21:33:10 executor cover filter: 0 PCs 2025/08/06 21:33:12 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 165/8048 2025/08/06 21:33:12 base: machine check complete 2025/08/06 21:33:14 discovered 7668 source files, 337507 symbols 2025/08/06 21:33:14 coverage filter: nvmet_execute_disc_identify: [nvmet_execute_disc_identify] 2025/08/06 21:33:14 coverage filter: arch/x86/boot/compressed/sev.c: [] 2025/08/06 21:33:14 coverage filter: arch/x86/boot/compressed/sev.h: [] 2025/08/06 21:33:14 coverage filter: arch/x86/boot/cpucheck.c: [] 2025/08/06 21:33:14 coverage filter: arch/x86/boot/msr.h: [] 2025/08/06 21:33:14 coverage filter: arch/x86/coco/sev/vc-shared.c: [] 2025/08/06 21:33:14 coverage filter: arch/x86/include/asm/shared/msr.h: [] 2025/08/06 21:33:14 coverage filter: arch/x86/include/asm/svm.h: [] 2025/08/06 21:33:14 area "symbols": 15 PCs in the cover filter 2025/08/06 21:33:14 area "files": 0 PCs in the cover filter 2025/08/06 21:33:14 area "": 0 PCs in the cover filter 2025/08/06 21:33:14 executor cover filter: 0 PCs 2025/08/06 21:33:15 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 165/8048 2025/08/06 21:33:15 new: machine check complete 2025/08/06 21:33:16 triaged 100.0% of the corpus 2025/08/06 21:33:16 triaged 100.0% of the corpus 2025/08/06 21:33:16 starting bug reproductions 2025/08/06 21:33:16 starting bug reproductions (max 10 VMs, 7 repros) 2025/08/06 21:33:18 new: adding 1971 seeds 2025/08/06 21:37:16 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 0, "corpus": 782, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 3, "coverage": 9640, "distributor delayed": 483, "distributor undelayed": 483, "distributor violated": 0, "exec candidate": 1971, "exec collide": 4983, "exec fuzz": 9509, "exec gen": 503, "exec hints": 1554, "exec inject": 0, "exec minimize": 10147, "exec retries": 0, "exec seeds": 2193, "exec smash": 11032, "exec total [base]": 26508, "exec total [new]": 49806, "exec triage": 2053, "executor restarts": 48, "fault jobs": 0, "fuzzer jobs": 870, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 9, "hints jobs": 150, "max signal": 10087, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 5391, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 887, "no exec duration": 19113000000, "no exec requests": 224, "pending": 0, "prog exec time": 163, "reproducing": 0, "rpc recv": 848081228, "rpc sent": 94390192, "signal": 9153, "smash jobs": 703, "triage jobs": 17, "vm output": 190496, "vm restarts [base]": 4, "vm restarts [new]": 9 } 2025/08/06 21:42:16 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 15, "corpus": 1078, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 42, "coverage": 11900, "distributor delayed": 650, "distributor undelayed": 650, "distributor violated": 0, "exec candidate": 1971, "exec collide": 10692, "exec fuzz": 20639, "exec gen": 1048, "exec hints": 4406, "exec inject": 0, "exec minimize": 14706, "exec retries": 0, "exec seeds": 3186, "exec smash": 24575, "exec total [base]": 44791, "exec total [new]": 89891, "exec triage": 2808, "executor restarts": 48, "fault jobs": 0, "fuzzer jobs": 326, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 9, "hints jobs": 97, "max signal": 12388, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 7501, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1227, "no exec duration": 19113000000, "no exec requests": 224, "pending": 0, "prog exec time": 207, "reproducing": 0, "rpc recv": 1211806912, "rpc sent": 205432984, "signal": 11417, "smash jobs": 216, "triage jobs": 13, "vm output": 335207, "vm restarts [base]": 4, "vm restarts [new]": 9 } 2025/08/06 21:42:22 new: boot error: can't ssh into the instance 2025/08/06 21:43:03 runner 3 connected 2025/08/06 21:47:16 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 32, "corpus": 1310, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 101, "coverage": 12712, "distributor delayed": 752, "distributor undelayed": 752, "distributor violated": 0, "exec candidate": 1971, "exec collide": 17977, "exec fuzz": 34814, "exec gen": 1775, "exec hints": 8772, "exec inject": 0, "exec minimize": 18043, "exec retries": 0, "exec seeds": 3912, "exec smash": 32344, "exec total [base]": 60901, "exec total [new]": 128868, "exec triage": 3399, "executor restarts": 51, "fault jobs": 0, "fuzzer jobs": 40, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 16, "max signal": 13280, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 9002, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1489, "no exec duration": 19113000000, "no exec requests": 224, "pending": 0, "prog exec time": 229, "reproducing": 0, "rpc recv": 1568923728, "rpc sent": 310653656, "signal": 12196, "smash jobs": 17, "triage jobs": 7, "vm output": 590858, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/06 21:52:16 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 48, "corpus": 1436, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 119, "coverage": 13472, "distributor delayed": 801, "distributor undelayed": 801, "distributor violated": 0, "exec candidate": 1971, "exec collide": 27040, "exec fuzz": 51905, "exec gen": 2632, "exec hints": 9656, "exec inject": 0, "exec minimize": 20564, "exec retries": 0, "exec seeds": 4293, "exec smash": 35650, "exec total [base]": 75128, "exec total [new]": 163286, "exec triage": 3715, "executor restarts": 51, "fault jobs": 0, "fuzzer jobs": 21, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 2, "max signal": 14043, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 10197, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1630, "no exec duration": 19113000000, "no exec requests": 224, "pending": 0, "prog exec time": 256, "reproducing": 0, "rpc recv": 1805567028, "rpc sent": 413983240, "signal": 12894, "smash jobs": 14, "triage jobs": 5, "vm output": 778243, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/06 21:57:16 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 62, "corpus": 1537, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 143, "coverage": 13775, "distributor delayed": 844, "distributor undelayed": 844, "distributor violated": 0, "exec candidate": 1971, "exec collide": 36273, "exec fuzz": 69334, "exec gen": 3543, "exec hints": 9943, "exec inject": 0, "exec minimize": 22348, "exec retries": 0, "exec seeds": 4605, "exec smash": 38306, "exec total [base]": 88641, "exec total [new]": 196143, "exec triage": 3958, "executor restarts": 51, "fault jobs": 0, "fuzzer jobs": 15, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 3, "max signal": 14362, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 11048, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1742, "no exec duration": 19113000000, "no exec requests": 224, "pending": 0, "prog exec time": 269, "reproducing": 0, "rpc recv": 2007042428, "rpc sent": 513517016, "signal": 13163, "smash jobs": 7, "triage jobs": 5, "vm output": 986726, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/06 22:02:16 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 75, "corpus": 1629, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 161, "coverage": 14002, "distributor delayed": 889, "distributor undelayed": 889, "distributor violated": 0, "exec candidate": 1971, "exec collide": 45076, "exec fuzz": 86198, "exec gen": 4441, "exec hints": 10213, "exec inject": 0, "exec minimize": 24202, "exec retries": 0, "exec seeds": 4881, "exec smash": 40623, "exec total [base]": 101530, "exec total [new]": 227663, "exec triage": 4197, "executor restarts": 51, "fault jobs": 0, "fuzzer jobs": 8, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 0, "max signal": 14609, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 11920, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1844, "no exec duration": 19113000000, "no exec requests": 224, "pending": 0, "prog exec time": 300, "reproducing": 0, "rpc recv": 2196665064, "rpc sent": 612377112, "signal": 13354, "smash jobs": 5, "triage jobs": 3, "vm output": 1194114, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/06 22:03:16 fuzzer has not reached the modified code in 30m0s, aborting 2025/08/06 22:03:16 syz-diff (base): kernel context loop terminated 2025/08/06 22:03:16 syz-diff (new): kernel context loop terminated 2025/08/06 22:03:16 diff fuzzing terminated 2025/08/06 22:03:16 bug reporting terminated 2025/08/06 22:03:16 status reporting terminated 2025/08/06 22:03:16 fuzzing is finished 2025/08/06 22:03:16 status at the end: Title On-Base On-Patched