syzbot

 sign-in | mailing list | source | docs
🐞 Open [86]
🐞 Fixed [346]
🐞 Invalid [378]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

Instances [tested repos]:
Name Last active Uptime Corpus Coverage 🛈 Crashes Execs Kernel build syzkaller build Bugs
Commit Config Freshness Status Commit Freshness Status All Only
ci-freebsd-i386 now 7h19m 9128 182604 725 457560 19fb56b19244 .config 15h08m 3d2f584d 22h38m all only
ci-freebsd-main now 7h58m 9029 106262 1848 483567 19fb56b19244 .config 15h08m 3d2f584d 22h38m all only
upstream (86):
Title Repro Cause bisect Fix bisect Count Last Reported Last activity
panic: Assertion done != job_total_nbytes failed at /syzkaller/managers/i386/kernel/sys/kern/sys_socket.c:LINE (3) 1 3d10h 3d10h 3d10h
panic: pfi_kkif_attach: null kif 1 3d11h 3d11h 3d11h
panic: vm_object_unwire: missing page 1 6d17h 6d17h 6d17h
panic: negative vmsize for uid -NUM 1 12d 12d 12d
panic: /syzkaller/managers/i386/kernel/sys/kern/kern_timeout.c:LINE: callout_process: Bad tailq NEXT(ADDR->tqh_last) != 1 15d 15d 15d
panic: /syzkaller/managers/main/kernel/sys/kern/kern_timeout.c:LINE: _callout_stop_safe: Bad link elm ADDR prev->next != 1 17d 17d 17d
panic: /syzkaller/managers/i386/kernel/sys/netinet/in_pcb.c:LINE: in_pcblbgroup_insert: Bad list head ADDR first->prev ! 1 17d 17d 17d
panic: mutex so_rcv not owned at /syzkaller/managers/i386/kernel/sys/kern/uipc_usrreq.c:LINE 6 15d 18d 18d
panic: /syzkaller/managers/main/kernel/sys/kern/kern_timeout.c:LINE: callout_process: Bad tailq NEXT(ADDR->tqh_last) != 1 19d 19d 19d
panic: /syzkaller/managers/main/kernel/sys/kern/kern_timeout.c:LINE: _callout_stop_safe: Bad link elm ADDR next->prev != syz 2 19d 19d 19d
freebsd test error: SYZFATAL: image testing failed w/o kernel bug (2) 1 21d 21d 21d
panic: /syzkaller/managers/i386/kernel/sys/kern/uipc_usrreq.c:LINE: uipc_sosend_stream_or_seqpacket: Empty stailq ADDR-> 140 48m 23d 23d
panic: Assertion m->m_flags & M_BLOCKED failed at /syzkaller/managers/main/kernel/sys/kern/uipc_usrreq.c:LINE C 33 7d10h 23d 23d
panic: Assertion pd->pcksum failed at /syzkaller/managers/main/kernel/sys/netpfil/pf/pf.c:LINE 6 4d04h 23d 23d
panic: tcp_do_segment: sent too much: NUM>NUM 26 1d11h 24d 24d
panic: /syzkaller/managers/main/kernel/sys/netinet/in_pcb.c:LINE: in_pcblbgroup_insert: Bad list head ADDR first->prev ! 2 14d 25d 25d
panic: /syzkaller/managers/main/kernel/sys/netinet/in_pcb.c:LINE: in_pcbremlbgrouphash: Bad link elm ADDR next->prev != 1 25d 25d 25d
panic: vm_page_dirty: page is invalid! 1 26d 26d 26d
panic: Assertion pd->pcksum failed at /syzkaller/managers/i386/kernel/sys/netpfil/pf/pf.c:LINE 1 27d 27d 27d
panic: ASan: Invalid access, NUM-byte read at ADDR, StackMiddle(f2) (3) 3 18d 27d 27d
panic: negative vmsize for uid NUM 6 1d11h 30d 30d
Fatal trap NUM: page fault in witness_checkorder 4 15d 30d 30d
Fatal trap NUM: page fault in __mtx_lock_flags (4) 1 30d 30d 30d
panic: /syzkaller/managers/main/kernel/sys/kern/kern_timeout.c:LINE: callout_cc_add: Bad list head ADDR first->prev != h syz 379 10d 30d 30d
panic: /syzkaller/managers/i386/kernel/sys/kern/kern_timeout.c:LINE: callout_cc_add: Bad list head ADDR first->prev != h 202 1d15h 30d 30d
panic: executing segment marked as unreachable at /syzkaller/managers/main/kernel/sys/netinet/in_pcb.c:LINE (in_pcbremlb 1 39d 39d 39d
panic: inconsistent boundary count NUM 1 40d 40d 40d
panic: ip6_deletefraghdr: ext headers not contigous in mbuf ADDR m_len NUM >= offset NUM + NUM 580 1h37m 41d 41d
Fatal trap NUM: page fault in callout_process (4) syz 3563 9d01h 44d 42d
panic: Bad list head ADDR first->prev != head (2) 113 30d 58d 58d
panic: tcp_do_segment: sent too much 13 27d 59d 59d
SYZFAIL: SIGBUS (2) 18 1d04h 64d 64d
SYZFAIL: SIGSEGV 24 3d15h 66d 66d
panic: if_ref: ifp ADDR has NUM refs (2) 1 67d 67d 67d
panic: vnode_pager_generic_getpages_done: page ADDR is mapped 1 76d 76d 76d
SYZFAIL: child stopped (2) 19 2d16h 80d 80d
SYZFAIL: clone failed (2) 3 11d 81d 81d
panic: mq notifiers left (3) 97 10h15m 82d 82d
panic: mld_change_state: bad ifp 4 11d 88d 88d
Fatal trap NUM: page fault in mld_change_state 4 43d 88d 88d
SYZFAIL: SIGILL (2) 161 22h31m 90d 90d
panic: pmap_growkernel: no memory to grow kernel (5) 315 2h45m 92d 92d
SYZFAIL: SIGFPE (2) 135 6h19m 92d 92d
Fatal trap NUM: page fault in in_pcbremhash_locked C 157 3h12m 96d 88d
SYZFAIL: invalid kcov comp type (4) 810 42m 106d 106d
SYZFAIL: posix_spawnp failed 25692 now 120d 120d
SYZFAIL: too much cover (3) 224 52m 158d 158d
freebsd test error: lost connection to test machine (7) 2 76d 160d 160d
panic: pmap_demote_pde: a wired mapping is missing PG_A 43 18h43m 171d 171d
panic: vm_object_terminate_single_page: page ADDR does not belong to a queue 24 14h18m 218d 218d
SYZFAIL: cover mmap failed (2) 701 20m 269d 269d
panic: Assertion done != job_total_nbytes failed at /syzkaller/managers/main/kernel/sys/kern/sys_socket.c:LINE (4) C 24 11d 273d 273d
Fatal trap NUM: page fault in in6m_disconnect_locked syz 11 34m 284d 284d
SYZFAIL: too many calls in output 102 23h51m 313d 313d
Fatal trap NUM: page fault while in kernel mode (6) syz 154 16d 313d 284d
SYZFAIL: failed to send rpc 257 9m 314d 314d
SYZFAIL: failed to recv rpc 78744 now 315d 315d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (12) 126 10d 337d 337d
can't ssh into the instance 3200 1h45m 371d 371d
SYZFAIL: leak checking is not implemented syz 76 370d 378d 378d
Fatal trap NUM: page fault in soisconnected C 2 414d 414d 414d
panic: size_on_reasm_queue is NUM (4) C 5 418d 496d 496d
SYZFAIL: child failed (2) syz 3563 2h43m 501d 501d
corrupted report (5) 255 5h12m 526d 526d
SYZFAIL: command failed (2) syz 10 16d 530d 530d
Fatal trap NUM: page fault in nd6_dad_timer (6) syz 13 227d 549d 492d
Fatal trap NUM: page fault in in_pcbbind_setup C 1 614d 614d 614d
suppressed report (4) 9069 1h48m 673d 673d
SYZFAIL: tun: can't open device (2) syz 16 18h30m 674d 674d
panic: mutex Giant owned at /syzkaller/managers/main/kernel/sys/kern/kern_thread.c:LINE C 1112 634d 694d 694d
Fatal trap NUM: page fault in kasan_atomic_load_int (3) C 14 420d 980d 966d
panic: _mtx_lock_sleep: recursed on non-recursive mutex sctp-tcb @ /syzkaller/managers/main/kernel/sys/netinet/sctp_pcb. (3) syz 7 490d 990d 990d
Fatal trap NUM: page fault in ip6_output syz 20012 2d12h 1043d 1024d
panic: Assertion v != tid failed at /syzkaller/managers/main/kernel/sys/kern/kern_mutex.c:LINE (2) syz 262 13d 1063d 1063d
panic: ASan: Invalid access, NUM-byte write at ADDR, MallocRedZone(fb) C 1 1072d 1072d 1072d
panic: ASan: Invalid access, NUM-byte read at ADDR, UMAUseAfterFree(fd) (4) C 1306 1d03h 1075d 949d
Fatal trap NUM: page fault in __mtx_assert C 242 453d 1091d 991d
panic: ASan: Invalid access, NUM-byte write at ADDR, UMAUseAfterFree(fd) (2) C 69 3h54m 1095d 527d
SYZFATAL: Manager.Poll call failed: connection is shut down syz 78758 337d 1126d 1123d
panic: a thread waited too long to allocate a page 14172 now 1230d 1230d
panic: failed to reclaim memory C 217275 now 1230d 1212d
panic: pmap_san_enter_alloc_4k: no memory to grow shadow map C 111893 now 1302d 612d
panic: Going nowhere without my init! C 731 3h23m 1453d 1453d
panic: size_on_all_streams smaller than control length (2) C 2080 34d 1744d 1744d
lost connection to test machine (2) syz 697863 now 2265d 311d
no output from test machine C 319193 now 2267d 1750d