2025/08/11 02:53:44 extracted 303683 symbol hashes for base and 303683 for patched 2025/08/11 02:53:45 adding modified_functions to focus areas: ["nvmet_execute_disc_identify"] 2025/08/11 02:53:45 adding directly modified files to focus areas: ["arch/loongarch/include/asm/kvm_pch_pic.h" "arch/loongarch/kvm/intc/pch_pic.c"] 2025/08/11 02:53:46 downloaded the corpus from https://storage.googleapis.com/syzkaller/corpus/ci-upstream-kasan-gce-root-corpus.db 2025/08/11 02:54:28 runner 0 connected 2025/08/11 02:54:34 initializing coverage information... 2025/08/11 02:54:34 runner 5 connected 2025/08/11 02:54:34 runner 0 connected 2025/08/11 02:54:34 runner 2 connected 2025/08/11 02:54:35 runner 7 connected 2025/08/11 02:54:35 runner 4 connected 2025/08/11 02:54:35 runner 1 connected 2025/08/11 02:54:35 runner 1 connected 2025/08/11 02:54:35 runner 9 connected 2025/08/11 02:54:35 runner 8 connected 2025/08/11 02:54:35 runner 3 connected 2025/08/11 02:54:35 runner 2 connected 2025/08/11 02:54:36 runner 3 connected 2025/08/11 02:54:38 discovered 7697 source files, 338543 symbols 2025/08/11 02:54:38 coverage filter: nvmet_execute_disc_identify: [nvmet_execute_disc_identify] 2025/08/11 02:54:38 coverage filter: arch/loongarch/include/asm/kvm_pch_pic.h: [] 2025/08/11 02:54:38 coverage filter: arch/loongarch/kvm/intc/pch_pic.c: [] 2025/08/11 02:54:38 area "symbols": 15 PCs in the cover filter 2025/08/11 02:54:38 area "files": 0 PCs in the cover filter 2025/08/11 02:54:38 area "": 0 PCs in the cover filter 2025/08/11 02:54:38 executor cover filter: 0 PCs 2025/08/11 02:54:40 executor cover filter: 0 PCs 2025/08/11 02:54:41 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 165/8048 2025/08/11 02:54:41 new: machine check complete 2025/08/11 02:54:41 machine check: disabled the following syscalls: openat$sev : failed to open /dev/sev: no such file or directory syz_kvm_setup_cpu$ppc64 : unsupported arch transitively disabled the following syscalls (missing resource [creating syscalls]): close$binfmt : fd_binfmt [openat$binfmt] close$fd_v4l2_buffer : fd_v4l2_buffer [ioctl$VIDIOC_QUERYBUF_DMABUF] close$ibv_device : fd_rdma [openat$uverbs0] ioctl$KVM_CAP_SGX_ATTRIBUTE : fd_sgx_provision [openat$sgx_provision] ioctl$KVM_SEV_CERT_EXPORT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_DECRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_DBG_ENCRYPT : fd_sev [openat$sev] ioctl$KVM_SEV_ES_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_GET_ATTESTATION_REPORT : fd_sev [openat$sev] ioctl$KVM_SEV_GUEST_STATUS : fd_sev [openat$sev] ioctl$KVM_SEV_INIT : fd_sev [openat$sev] ioctl$KVM_SEV_INIT2 : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_MEASURE : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_SECRET : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_LAUNCH_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_LAUNCH_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_START : sev_handle [ioctl$KVM_SEV_GUEST_STATUS ioctl$KVM_SEV_LAUNCH_START ioctl$KVM_SEV_RECEIVE_START] ioctl$KVM_SEV_RECEIVE_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_RECEIVE_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_CANCEL : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_START : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_DATA : fd_sev [openat$sev] ioctl$KVM_SEV_SEND_UPDATE_VMSA : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_FINISH : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_START : fd_sev [openat$sev] ioctl$KVM_SEV_SNP_LAUNCH_UPDATE : fd_sev [openat$sev] BinFmtMisc : enabled Comparisons : enabled Coverage : enabled DelayKcovMmap : enabled DevlinkPCI : PCI device 0000:00:10.0 is not available ExtraCoverage : enabled Fault : enabled KCSAN : write(/sys/kernel/debug/kcsan, on) failed KcovResetIoctl : kernel does not support ioctl(KCOV_RESET_TRACE) LRWPANEmulation : enabled Leak : failed to write(kmemleak, "scan=off") NetDevices : enabled NetInjection : enabled NicVF : PCI device 0000:00:11.0 is not available SandboxAndroid : setfilecon: setxattr failed. (errno 1: Operation not permitted). . process exited with status 67. SandboxNamespace : enabled SandboxNone : enabled SandboxSetuid : enabled Swap : enabled USBEmulation : enabled VhciInjection : enabled WifiEmulation : enabled syscalls : 165/8048 2025/08/11 02:54:41 base: machine check complete 2025/08/11 02:54:43 new: adding 2041 seeds 2025/08/11 02:54:47 triaged 97.3% of the corpus 2025/08/11 02:54:47 starting bug reproductions 2025/08/11 02:54:47 starting bug reproductions (max 10 VMs, 7 repros) 2025/08/11 02:55:17 triaged 100.0% of the corpus 2025/08/11 02:58:47 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 7, "corpus": 814, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 5, "coverage": 9980, "distributor delayed": 525, "distributor undelayed": 525, "distributor violated": 0, "exec candidate": 2041, "exec collide": 5242, "exec fuzz": 10011, "exec gen": 518, "exec hints": 1579, "exec inject": 0, "exec minimize": 11031, "exec retries": 0, "exec seeds": 2345, "exec smash": 11634, "exec total [base]": 27677, "exec total [new]": 52589, "exec triage": 2117, "executor restarts": 46, "fault jobs": 0, "fuzzer jobs": 842, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 9, "hints jobs": 146, "max signal": 10428, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 5926, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 917, "no exec duration": 10834000000, "no exec requests": 345, "pending": 0, "prog exec time": 190, "reproducing": 0, "rpc recv": 898310968, "rpc sent": 85707280, "signal": 9516, "smash jobs": 688, "triage jobs": 8, "vm output": 221867, "vm restarts [base]": 4, "vm restarts [new]": 9 } 2025/08/11 03:03:47 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 52, "corpus": 1090, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 247, "coverage": 12185, "distributor delayed": 672, "distributor undelayed": 672, "distributor violated": 0, "exec candidate": 2041, "exec collide": 10599, "exec fuzz": 20048, "exec gen": 1051, "exec hints": 3967, "exec inject": 0, "exec minimize": 15564, "exec retries": 0, "exec seeds": 3255, "exec smash": 24252, "exec total [base]": 44846, "exec total [new]": 89686, "exec triage": 2840, "executor restarts": 46, "fault jobs": 0, "fuzzer jobs": 405, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 9, "hints jobs": 111, "max signal": 12554, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 8043, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1236, "no exec duration": 10834000000, "no exec requests": 345, "pending": 0, "prog exec time": 258, "reproducing": 0, "rpc recv": 1273604004, "rpc sent": 179176944, "signal": 11653, "smash jobs": 284, "triage jobs": 10, "vm output": 447774, "vm restarts [base]": 4, "vm restarts [new]": 9 } 2025/08/11 03:03:52 new: boot error: can't ssh into the instance 2025/08/11 03:04:34 runner 6 connected 2025/08/11 03:08:47 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 101, "corpus": 1307, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 485, "coverage": 12952, "distributor delayed": 783, "distributor undelayed": 783, "distributor violated": 0, "exec candidate": 2041, "exec collide": 16102, "exec fuzz": 30353, "exec gen": 1588, "exec hints": 7914, "exec inject": 0, "exec minimize": 19839, "exec retries": 0, "exec seeds": 3954, "exec smash": 32791, "exec total [base]": 58978, "exec total [new]": 124049, "exec triage": 3394, "executor restarts": 49, "fault jobs": 0, "fuzzer jobs": 34, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 7, "max signal": 13411, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 10021, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1481, "no exec duration": 10834000000, "no exec requests": 345, "pending": 0, "prog exec time": 266, "reproducing": 0, "rpc recv": 1710156760, "rpc sent": 267573288, "signal": 12404, "smash jobs": 16, "triage jobs": 11, "vm output": 675467, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/11 03:13:47 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 140, "corpus": 1435, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 654, "coverage": 13335, "distributor delayed": 846, "distributor undelayed": 846, "distributor violated": 0, "exec candidate": 2041, "exec collide": 23628, "exec fuzz": 44921, "exec gen": 2326, "exec hints": 9240, "exec inject": 0, "exec minimize": 22434, "exec retries": 0, "exec seeds": 4341, "exec smash": 36111, "exec total [base]": 71592, "exec total [new]": 154882, "exec triage": 3767, "executor restarts": 49, "fault jobs": 0, "fuzzer jobs": 17, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 8, "max signal": 13808, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 11205, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1637, "no exec duration": 10834000000, "no exec requests": 345, "pending": 0, "prog exec time": 276, "reproducing": 0, "rpc recv": 1970585524, "rpc sent": 371943704, "signal": 12754, "smash jobs": 5, "triage jobs": 4, "vm output": 932376, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/11 03:18:47 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 159, "corpus": 1520, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 862, "coverage": 13500, "distributor delayed": 897, "distributor undelayed": 897, "distributor violated": 0, "exec candidate": 2041, "exec collide": 31600, "exec fuzz": 60102, "exec gen": 3129, "exec hints": 9900, "exec inject": 0, "exec minimize": 24176, "exec retries": 0, "exec seeds": 4591, "exec smash": 38204, "exec total [base]": 83438, "exec total [new]": 183838, "exec triage": 4021, "executor restarts": 49, "fault jobs": 0, "fuzzer jobs": 14, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 3, "max signal": 14009, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 12057, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1744, "no exec duration": 10834000000, "no exec requests": 345, "pending": 0, "prog exec time": 301, "reproducing": 0, "rpc recv": 2142171184, "rpc sent": 483741952, "signal": 12909, "smash jobs": 5, "triage jobs": 6, "vm output": 1150106, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/11 03:23:47 STAT { "buffer too small": 0, "candidate triage jobs": 0, "candidates": 0, "comps overflows": 167, "corpus": 1587, "corpus [files]": 0, "corpus [symbols]": 0, "cover overflows": 969, "coverage": 13877, "distributor delayed": 926, "distributor undelayed": 926, "distributor violated": 0, "exec candidate": 2041, "exec collide": 39375, "exec fuzz": 75161, "exec gen": 3930, "exec hints": 10061, "exec inject": 0, "exec minimize": 25301, "exec retries": 0, "exec seeds": 4797, "exec smash": 39886, "exec total [base]": 94429, "exec total [new]": 210826, "exec triage": 4202, "executor restarts": 49, "fault jobs": 0, "fuzzer jobs": 15, "fuzzing VMs [base]": 4, "fuzzing VMs [new]": 10, "hints jobs": 3, "max signal": 14696, "minimize: array": 0, "minimize: buffer": 0, "minimize: call": 12561, "minimize: filename": 0, "minimize: integer": 0, "minimize: pointer": 0, "minimize: props": 0, "minimize: resource": 0, "modules [base]": 1, "modules [new]": 1, "new inputs": 1826, "no exec duration": 10834000000, "no exec requests": 345, "pending": 0, "prog exec time": 341, "reproducing": 0, "rpc recv": 2266004040, "rpc sent": 593001608, "signal": 13278, "smash jobs": 5, "triage jobs": 7, "vm output": 1339180, "vm restarts [base]": 4, "vm restarts [new]": 10 } 2025/08/11 03:25:17 fuzzer has not reached the modified code in 30m0s, aborting 2025/08/11 03:25:17 syz-diff (base): kernel context loop terminated 2025/08/11 03:25:17 syz-diff (new): kernel context loop terminated 2025/08/11 03:25:17 diff fuzzing terminated 2025/08/11 03:25:17 bug reporting terminated 2025/08/11 03:25:17 status reporting terminated 2025/08/11 03:25:17 fuzzing is finished 2025/08/11 03:25:17 status at the end: Title On-Base On-Patched