syzbot

 sign-in | mailing list | source | docs
🐞 Open [43]
🐞 Fixed [374]
🐞 Invalid [476]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

Out of 476 bugs, 368 were automatically obsoleted (1 due to revoked reproducers), 108 were invalidated by users.
Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported
panic: Assertion error == NUM || error == EINTR || error == ERESTART failed at /syzkaller/managers/main/kernel/sys/net/i 2 7 90d 197d
SYZFAIL: ioctl init trace write failed -1 2 91d 98d
panic: mld_change_state: bad ifp 2 24 93d 418d
panic: No memory for IFA 2 7 97d 255d
panic: Assertion error == NUM || error == EINTR || error == ERESTART failed at /syzkaller/managers/i386/kernel/sys/net/i 2 1 100d 100d
syzkaller: make host failed: failed to run ["gmake" "host" "ci" "agent"]: exit status 2 -1 70 62d 77d
SYZFAIL: clone failed (2) -1 29 109d 411d
SYZFAIL: repeatedly failed to execute the program -1 22 111d 308d
panic: pfi_kkif_attach: null kif 2 12 114d 333d
panic: failed to r[e ctlhairmea mde pmoidr y8 t 2 1 115d 115d
panic: witness_warn (4) 2 3 115d 137d
Fatal trap NUM: page fault in in6_selecthlim (5) -1 1 120d 120d
Fatal trap NUM: page fault in inm_disconnect -1 2 124d 124d
panic: igmp_change_state: no igmp_ifsoftc for ifp ADDR (2) 2 1 124d 124d
panic: No memory for IFN 2 7 127d 246d
SYZFAIL: cover mmap failed (2) -1 10657 88d 598d
SYZFAIL: posix_spawnp failed -1 161707 88d 450d
SYZFAIL: tun: read failed (4) -1 13755 88d 138d
panic: a thread waited too long to allocate a page 2 65708 88d 1560d
SYZFAIL: open of /dev/kcov failed -1 27124 88d 328d
SYZFAIL: SIGILL (2) -1 1137 88d 420d
SYZFAIL: invalid kcov comp type (4) -1 6983 88d 436d
panic: sleeping thread holds tun_mtx 2 1005 88d 321d
SYZFAIL: SIGFPE (2) -1 975 88d 422d
panic: mq notifiers left (3) 2 1248 88d 412d
SYZFAIL: too much cover (3) -1 5788 88d 487d
panic: ASan: Invalid access, NUM-byte read at ADDR, StackMiddle(f2) (3) 2 162 88d 357d
SYZFAIL: SIGSEGV -1 115 89d 395d
SYZFAIL: SIGBUS (2) -1 139 89d 394d
SYZFAIL: failed to send rpc -1 1034 89d 644d
suppressed report (4) -1 20305 89d 1003d
can't ssh into the instance -1 27462 89d 701d
SYZFAIL: too many calls in output -1 392 89d 643d
SYZFAIL: child stopped (2) -1 147 90d 410d
corrupted report (5) -1 1399 91d 856d
panic: brelse: non-VMIO buffer marked NOREUSE 2 1333 92d 324d
panic: vnode_pager_generic_getpages_done: page ADDR is mapped 2 25 133d 406d
Fatal trap NUM: page fault in igmp_ifdetach -1 1 136d 136d
panic: vm_object_terminate_single_page: page ADDR does not belong to a queue 2 145 107d 548d
Fatal trap NUM: page fault in mld_change_state -1 12 149d 418d
panic: pmap_remove_all: page ADDR is not managed 2 3304 111d 239d
panic: tcp_input_with_port: unspecified destination v4 address 2 29 111d 175d
panic: /syzkaller/managers/main/kernel/sys/kern/kern_timeout.c:LINE: _callout_stop_safe: Bad link elm ADDR prev->next != (2) 2 1 171d 171d
panic: vm_page_wire_mapped: wiring unreferenced page ADDR 2 1 174d 174d
Fatal trap NUM: page fault in witness_checkorder (2) -1 6 176d 194d
panic: if_freemulti: refcount -NUM 2 1 178d 178d
panic: negative vmsize for uid NUM 2 36 166d 360d
Fatal trap NUM: general protection fault in pfi_kkif_update (4) -1 1 185d 185d
panic: vm_object_unwire: missing page 2 8 194d 336d
panic: Assertion uio->uio_resid < NUM failed at /syzkaller/managers/i386/kernel/sys/netlink/netlink_domain.c:LINE 2 2 213d 213d
freebsd build error (22) -1 142 174d 202d
Fatal trap NUM: page fault in pfi_kkif_update (4) -1 1 214d 214d
panic: deadlkres: possible deadlock detected on allproc_lock 2 1 215d 215d
panic: /syzkaller/managers/i386/kernel/sys/kern/kern_timeout.c:LINE: callout_cc_add: Bad list head ADDR first->prev != h (2) 2 216 179d 243d
panic: CURVNET_SET at /syzkaller/managers/main/kernel/sys/netinet6/in6_mcast.c:LINE inp_gcmoptions() curvnet=ADDR vnet=N 2 3 219d 276d
panic: igmp_change_state: no igmp_ifsoftc for ifp ADDR 2 2 219d 271d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (12) -1 226 185d 667d
panic: inconsistent boundary count NUM 2 6 228d 370d
Fatal trap NUM: page fault in in_pcbremhash_locked (2) -1 45 189d 293d
Fatal trap NUM: page fault in ip6_freemoptions -1 1 236d 236d
panic: flush_newblk_dep: Bad newblk ADDR 2 3 238d 238d
panic: vm_page_grab_zero_partial: page ADDR is invalid 2 1 240d 240d
Fatal trap NUM: page fault in in_joingroup_locked -1 2 243d 296d
SYZFAIL: failed to mkdir -1 2 255d 255d
panic: /syzkaller/managers/i386/kernel/sys/kern/uipc_usrreq.c:LINE: uipc_sosend_stream_or_seqpacket: Empty stailq ADDR-> 2 1298 226d 352d
panic: sleeping thread[ htholredsa d tpuin_dm 2tx ti 2 1 272d 272d
Fatal trap NUM: page fault in in6_selecthlim (4) -1 1 276d 276d
Fatal trap NUM: page fault in link_elf_search_symbol -1 1 280d 280d
panic: deadlres_td_sleep_q: possible deadlock detected for ADDR (syz-executor), blocked for ADDR ticks 2 1 284d 284d
panic: starting DAD on non-tentative address ADDR 2 1 287d 287d
panic: ASan: Invalid access, NUM-byte read at ADDR, MallocRedZone(fb) (4) 2 1 287d 287d
panic: witness_warn (3) 2 1 290d 290d
panic: proc_dtor: non-empty p_ktr 2 1 301d 301d
panic: Assertion done != job_total_nbytes failed at /syzkaller/managers/i386/kernel/sys/kern/sys_socket.c:LINE (3) 2 3 307d 333d
panic: vm_page_dirty: page is invalid! 2 2 314d 356d
SYZFAIL: ShmemBuilder: too large output offset -1 1 314d 314d
panic: /syzkaller/managers/main/kernel/sys/kern/kern_timeout.c:LINE: _callout_stop_safe: Bad link elm ADDR prev->next != 2 2 314d 346d
panic: pmap_demote_pde: a wired mapping is missing PG_A 2 67 275d 501d
freebsd test error: SYZFATAL: image testing failed w/o kernel bug (2) -1 3 315d 351d
panic: Assertion pd->pcksum failed at /syzkaller/managers/main/kernel/sys/netpfil/pf/pf.c:LINE 2 7 316d 353d
panic: /syzkaller/managers/main/kernel/sys/netinet/in_pcb.c:LINE: in_pcblbgroup_insert: Bad list head ADDR first->prev ! 2 3 317d 355d
panic: negative vmsize for uid -NUM 2 1 342d 342d
panic: /syzkaller/managers/i386/kernel/sys/kern/kern_timeout.c:LINE: callout_process: Bad tailq NEXT(ADDR->tqh_last) != 2 1 345d 345d
Fatal trap NUM: page fault in witness_checkorder -1 4 345d 360d
panic: mutex so_rcv not owned at /syzkaller/managers/i386/kernel/sys/kern/uipc_usrreq.c:LINE 2 6 345d 348d
panic: /syzkaller/managers/i386/kernel/sys/netinet/in_pcb.c:LINE: in_pcblbgroup_insert: Bad list head ADDR first->prev ! 2 1 347d 347d
panic: pmap_growkernel: no memory to grow kernel (5) 2 457 309d 422d
panic: /syzkaller/managers/main/kernel/sys/kern/kern_timeout.c:LINE: callout_process: Bad tailq NEXT(ADDR->tqh_last) != 2 1 349d 349d
freebsd test error: can't ssh into the instance -1 11 309d 309d
panic: /syzkaller/managers/main/kernel/sys/netinet/in_pcb.c:LINE: in_pcbremlbgrouphash: Bad link elm ADDR next->prev != 2 1 355d 355d
panic: Assertion pd->pcksum failed at /syzkaller/managers/i386/kernel/sys/netpfil/pf/pf.c:LINE 2 1 357d 357d
Fatal trap NUM: page fault in __mtx_lock_flags (4) -1 1 360d 360d
panic: ip6_deletefraghdr: ext headers not contigous in mbuf ADDR m_len NUM >= offset NUM + NUM 2 686 321d 370d
panic: executing segment marked as unreachable at /syzkaller/managers/main/kernel/sys/netinet/in_pcb.c:LINE (in_pcbremlb 2 1 369d 369d
panic: /syzkaller/managers/i386/kernel/sys/kern/kern_timeout.c:LINE: callout_cc_add: Bad list head ADDR first->prev != h 2 202 331d 360d
panic: tcp_do_segment: sent too much 2 13 357d 389d
panic: Bad list head ADDR first->prev != head (2) 2 113 360d 388d
freebsd test error: lost connection to test machine (7) -1 2 406d 490d
SYZFAIL: coverage filter is full (2) -1 198808 419d 546d
freebsd test error: SYZFATAL: image testing failed w/o kernel bug -1 300 426d 457d
panic: mq notifiers left (2) 2 9 508d 514d
Fatal trap NUM: page fault in __mtx_lock_flags (3) -1 1 508d 508d
Fatal trap NUM: page fault in callout_process (3) -1 1 520d 520d
panic: pf_reassemble6: short mbuf chain 2 1 524d 524d
freebsd build error (19) -1 23 492d 493d
SYZFAIL: posix_spawn failed -1 4902 500d 643d
panic: pmap_growkernel: no memory to grow kernel (4) 2 29 508d 614d
panic: prefix ADDR has referencing addresses (6) 2 3 548d 631d
panic: mtx_lock() of destroyed mutex at sys/netinet/sctp_output.c:LINE (4) 2 1 559d 559d
SYZFAIL: SIGILL -1 101 521d 640d
Fatal trap NUM: page fault in in6_selecthlim (3) -1 739 531d 882d
SYZFAIL: child stopped -1 1 588d 588d
SYZFAIL: SIGBUS -1 8 588d 603d
SYZFAIL: clone failed -1 1 595d 595d
panic: strq ADDR not scheduled (4) 2 1 613d 613d
panic: if_ref: ifp ADDR has NUM refs 2 1 614d 614d
SYZFAIL: invalid kcov comp type (3) -1 1 625d 625d
SYZFAIL: SIGFPE -1 19 588d 628d
Fatal trap NUM: page fault in callout_process (2) -1 1 629d 629d
panic: mq notifiers left 2 21 589d 599d
Fatal trap NUM: pageJul NUM NUM:NUM:NUM fault in ip6_output -1 1 642d 642d
SYZFAIL: coverage filter is full -1 85109 604d 639d
panic: tcp_close: inp_socket NULL 2 4 644d 644d
freebsd test error: panic: ASan: Invalid access, NUM-byte write at ADDR, MallocRedZone(fb) -1 80 630d 636d
freebsd test error: lost connection to test machine (6) -1 7 693d 693d
panic: ASan: Invalid access, NUM-byte read at ADDR, MallocRedZone(fb) (3) 2 1 703d 703d
freebsd boot error: can't ssh into the instance (4) -1 3 707d 707d
Fatal trap NUM: page fault in sctp_free_assoc -1 35 672d 738d
panic: mtx_lock() of destroyed mutex at sys/netinet/sctp_output.c:LINE (3) 2 3 712d 755d
freebsd test error: SYZFATAL: failed to connect to host: dial tcp IP:NUM: i/o timeout -1 54 699d 701d
panic: rsm:ADDR nrsm:ADDR hit at soff:NUM null m (2) 2 3 741d 741d
Fatal trap NUM: page fault in __asan_load8_noabort (2) -1 8 745d 745d
panic: mb_free_extpg: m ADDR is not multipage! 2 1 745d 745d
Fatal trap NUM: page fault in m_free -1 2 745d 745d
Fatal trap NUM: page fault in kasan_atomic_fetchadd_int -1 1 745d 745d
Fatal trap NUM: page fault in callout_process -1 1 745d 745d
panic: Assertion mtx_unowned(m) failed at /syzkaller/managers/i386/kernel/sys/kern/kern_mutex.c:LINE (4) 2 2 747d 751d
panic: prefix ADDR has referencing addresses (5) 2 4 750d 788d
panic: pmap_growkernel: no memory to grow kernel (3) 2 965 714d 1646d
panic: vm_fault_lookup: fault on nofault entry, addr: ADDR (4) 2 18 716d 779d
syzkaller: make target failed: failed to run ["gmake" "target"]: exit status 2 (2) -1 10 667d 668d
Fatal trap NUM: page fault while in kernel mode (5) -1 15 745d 821d
panic: Assertion v != tid failed at /syzkaller/managers/i386/kernel/sys/kern/kern_mutex.c:LINE (2) 2 72 766d 1388d
panic: lock (sleep mutex) sctp-inp not locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctp_pcb.c:LINE 2 6 766d 769d
Fatal trap NUM: page fault in in6_unlink_ifa (4) -1 1 768d 768d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (11) -1 18 737d 763d
Fatal trap NUM: page fault in sctp_ss_default_add (3) -1 1 782d 782d
Fatal trap NUM: page fault in m_tag_delete_chain -1 21 745d 745d
syzkaller: make host failed: failed to run ["gmake" "host" "ci"]: exit status 2 (4) -1 118 708d 727d
freebsd build error (18) -1 8 746d 747d
panic: mtx_lock_spin: recursed on non-recursive mutex msgbuf @ /syzkaller/managers/i386/kernel/sys/kern/subr_msgbuf.c:LI 2 6 820d 846d
panic: deadlres_td_on_lock: possible deadlock detected for ADDR (syz-executor), blocked for NUM ticks 2 1 827d 827d
panic: Assertion mtx_unowned(m) failed at /syzkaller/managers/main/kernel/sys/kern/kern_mutex.c:LINE (4) 2 1 830d 830d
panic: mtx_lock() of destroyed mutex at sys/netinet/sctp_output.c:LINE (2) 2 1 847d 847d
panic: mtx_lock_spin: recursed on non-recursive mutex msgbuf @ /syzkaller/managers/main/kernel/sys/kern/subr_msgbuf.c:LI (2) 2 12 818d 847d
freebsd test error: lost connection to test machine (5) -1 1 889d 889d
panic: Assertion mtx_unowned(m) failed at /syzkaller/managers/i386/kernel/sys/kern/kern_mutex.c:LINE (3) 2 1 890d 890d
panic: prefix ADDR has referencing addresses (4) 2 2 900d 953d
panic: Assertion curthread->td_wantedlock == NULL failed at /syzkaller/managers/main/kernel/sys/kern/kern_mutex.c:LINE 2 4 913d 914d
panic: size_on_reasm_queue is NUM (3) 2 1 916d 916d
panic: Assertion done != job_total_nbytes failed at /syzkaller/managers/i386/kernel/sys/kern/sys_socket.c:LINE (2) 2 1 940d 940d
corrupted report (4) -1 21 970d 1506d
freebsd build error (17) -1 8 980d 1017d
Fatal trap NUM: page fault in in6_unlink_ifa (3) -1 1 990d 990d
Fatal trap NUM: page fault in nd6_dad_timer (5) -1 2 994d 1065d
panic: mutex Giant owned at /syzkaller/managers/i386/kernel/sys/kern/kern_thread.c:LINE 2 252 964d 1024d
panic: in6_pcblookup_hash_locked: invalid foreign address 2 syz 62 1125d 1175d
panic: prot 0x3 is not subset of max_prot NUM 2 C 2 983d 983d
SYZFAIL: child failed -1 syz 286 1469d 1887d
SYZFAIL: command failed -1 syz 34 1462d 1886d
panic: _mtx_lock_sleep: recursed on non-recursive mutex process lock @ /syzkaller/managers/main/kernel/sys/kern/kern_for 2 C 2 1352d 1352d
Fatal trap NUM: page fault while in kernel mode (4) -1 C 7 1161d 1487d
panic: huh, cumack ADDR greater than high-tsn ADDR in map 2 1 1028d 1028d
panic: _mtx_lock_sleep: recursed on non-recursive mutex sctp-tcb @ /syzkaller/managers/i386/kernel/sys/netinet/sctp_pcb. (3) 2 1 1030d 1030d
panic: size_on_reasm_queue is NUM (2) 2 1 1036d 1036d
syzkaller: make host failed: failed to run ["gmake" "host" "ci"]: exit status 2 (3) -1 506 1009d 1154d
Fatal trap NUM: general protection fault in pfi_kkif_update (3) -1 1 1061d 1061d
Fatal trap NUM: page fault in in6_selecthlim (2) -1 1 1083d 1083d
Fatal trap NUM: page fault in sctp_ss_default_add (2) -1 1 1100d 1100d
panic: Assertion done != job_total_nbytes failed at /syzkaller/managers/main/kernel/sys/kern/sys_socket.c:LINE (3) 2 1 1106d 1106d
panic: Rack:ADDR sb:ADDR rsm:ADDR -- first rsm mbuf not aligned to sb 2 1 1111d 1111d
panic: Assertion mtx_unowned(m) failed at /syzkaller/managers/main/kernel/sys/kern/kern_mutex.c:LINE (3) 2 1 1118d 1118d
panic: size_on_reasm_queue is NUM 2 1 1141d 1141d
panic: vtopde on a uva/gpa 0x1000 2 1 1152d 1152d
Fatal trap NUM: page fault in nd6_dad_timer (4) -1 2 1178d 1239d
suppressed report (3) -1 2 1189d 1274d
freebsd boot error: Fatal trap NUM: page fault while in kernel mode -1 159 1162d 1164d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 2 (3) -1 4 1225d 1225d
panic: prefix ADDR has referencing addresses (3) 2 1 1244d 1244d
freebsd boot error: can't ssh into the instance (3) -1 1 1256d 1256d
freebsd build error (15) -1 1099 1183d 1298d
panic: About to free ctl:ADDR so:ADDR and its in 1 2 C 20 1538d 1982d
Fatal trap NUM: page fault in in6_selecthlim -1 15 1300d 1663d
panic: Assertion mtx_unowned(m) failed at /syzkaller/managers/main/kernel/sys/kern/kern_mutex.c:LINE (2) 2 1 1307d 1307d
Fatal trap NUM: page fault in nd6_dad_timer (3) -1 3 1344d 1440d
panic: mtx_lock_spin: recursed on non-recursive mutex msgbuf @ /syzkaller/managers/main/kernel/sys/kern/subr_msgbuf.c:LI 2 1 1352d 1352d
freebsd boot error: can't ssh into the instance (2) -1 1 1372d 1372d
freebsd test error: SYZFATAL: BUG: executor version returned bad result: "" -1 52 1344d 1345d
suppressed report (2) -1 2 1392d 1398d
Fatal trap NUM: page fault in pfi_kkif_update (3) -1 1 1393d 1393d
panic: ASan: Invalid access, NUM-byte read at ADDR, StackLeft(f1) (2) 2 1 1395d 1395d
panic: _mtx_lock_sleep: recursed on non-recursive mutex sctp-tcb @ /syzkaller/managers/i386/kernel/sys/netinet/sctp_pcb. (2) 2 1 1398d 1398d
Fatal trap NUM: page fault in knlist_remove_kq -1 1 1402d 1402d
Fatal trap NUM: page fault in sctp_notify_stream_reset_add -1 1 1409d 1409d
freebsd build error (14) -1 18 1392d 1393d
panic: ASan: Invalid access, NUM-byte write at ADDR, UseAfterScope(f8) (2) 2 1 1425d 1425d
panic: ASan: Invalid access, NUM-byte read in kvprintf 2 C 5 1634d 1654d
panic: Assertion done != job_total_nbytes failed at /syzkaller/managers/i386/kernel/sys/kern/sys_socket.c:LINE 2 1 1438d 1438d
panic: rack_output:NUM: r.start:ADDR < SND.UNA:ADDR; tp:ADDR, rack:ADDR, rsm:ADDR 2 C 270 1412d 1809d
panic: vm_fault_lookup: fault on nofault entry, addr: ADDR (3) 2 1 1447d 1447d
panic: prefix ADDR has referencing addresses (2) 2 3 1454d 1562d
Fatal trap NUM: page fault in sctp_wakeup_the_read_socket (4) -1 1 1457d 1457d
panic: Assertion task->ta_pending == NUM failed at /syzkaller/managers/i386/kernel/sys/kern/sys_socket.c:LINE 2 1 1460d 1460d
panic: Assertion mtx_unowned(m) failed at /syzkaller/managers/i386/kernel/sys/kern/kern_mutex.c:LINE (2) 2 2 1465d 1533d
Fatal trap NUM: page fault in kasan_atomic_load_int (2) -1 3 1466d 1535d
Fatal trap NUM: page fault in in6_unlink_ifa (2) -1 1 1475d 1475d
Fatal trap NUM: page fault in __asan_load8_noabort -1 1 1485d 1485d
SYZFAIL: too much cover (2) -1 120 1456d 1513d
Fatal trap NUM: page fault in memcpy_erms (2) -1 1 1493d 1493d
SYZFAIL: cover mmap failed -1 1 1495d 1495d
panic: ASan: Invalid access, NUM-byte read at ADDR, UMAUseAfterFree(fd) (3) 2 C 58 1410d 1463d
SYZFAIL: tun: read failed (3) -1 1 1508d 1508d
panic: strq ADDR not scheduled (3) 2 1 1509d 1509d
Fatal trap NUM: general protection fault in pfi_kkif_update (2) -1 1 1523d 1523d
panic: spin lock held too long (2) 2 1 1524d 1524d
SYZFAIL: invalid kcov comp type (2) -1 1 1526d 1526d
panic: ASan: Invalid access, NUM-byte read at ADDR, StackMiddle(f2) 2 1 1527d 1527d
panic: Don't own TCB lock 2 1 1530d 1530d
Fatal trap NUM: page fault in nd6_dad_timer (2) -1 1 1534d 1534d
syzkaller: make host failed: failed to run ["gmake" "host" "ci"]: exit status 2 (2) -1 106 1456d 1518d
freebsd build error (12) -1 2 1496d 1496d
panic: pmap_kasan_enter_alloc_4k: no memory to grow shadow map (2) 2 C 602 1638d 1687d
panic: out of swap space 2 C 15036 1560d 1803d
panic: ASan: Invalid access, NUM-byte read at ADDR, UseAfterScope(f8) 2 syz 7 1535d 1616d
panic: Queues are not empty when handling SHUTDOWN-ACK 2 syz 142 1568d 2138d
SYZFAIL: output overflow (2) -1 syz 14 1573d 1743d
panic: hpts_sane_input_insert: hpts:ADDR inp:ADDR incorrect CPU 2 C 186 1593d 1750d
SYZFAIL: tun: can't open device -1 syz 159 1694d 1887d
panic: m_copydata, offset > size of mbuf chain 2 syz 11 1689d 1692d
panic: hpts_sane_input_remove: hpts:ADDR inp:ADDR incorrect CPU 2 syz 5 1700d 1744d
panic: ASan: Invalid access, 2-byte read in sctp_common_input_processing 2 syz 8 1699d 1747d
panic: mtx_lock() of destroyed mutex at sys/netinet/sctp_pcb.c:LINE 2 syz 24 1758d 2184d
Fatal trap 9: general protection fault in __mtx_lock_sleep -1 syz 295 1752d 2426d
Fatal trap 9: general protection fault in sctp_timer_stop -1 syz 232 1753d 2066d
Fatal trap NUM: page fault in sctp_ss_default_add -1 1 1536d 1536d
panic: ASan: Invalid access, 8-byte read in __mtx_lock_sleep 2 syz 23 1655d 1738d
panic: ASan: Invalid access, 8-byte read in sctp_lower_sosend 2 syz 49 1622d 1730d
panic: ASan: Invalid access, 1-byte write in sctp_lower_sosend 2 syz 332 1644d 1748d
Fatal trap 12: page fault in __mtx_lock_sleep -1 syz 151 1753d 2401d
panic: Warning: Last msg marked incomplete, yet nothing left? 2 C 34 1549d 1802d
Fatal trap NUM: page fault in pfi_kkif_update (2) -1 1 1559d 1559d
panic: TCP stack bbr requested tcp_drop(ADDR) at connect() 2 1 1563d 1563d
panic: ASan: Invalid access, NUM-byte read in __mtx_lock_flags 2 C 188 1622d 1689d
panic: ASan: Invalid access, 8-byte write in sctp_timer_stop 2 C 269 1622d 1748d
Fatal trap 9: general protection fault in sctp_lower_sosend (2) -1 C 446 1752d 2072d
panic: ASan: Invalid access, NUM-byte read in sctp_ss_default_select 2 C 1 1691d 1691d
Fatal trap NUM: page fault while in kernel mode (3) -1 3 1578d 1591d
freebsd test error: lost connection to test machine (4) -1 896 1557d 1618d
panic: ASan: Invalid access, NUM-byte write at ADDR, StackMiddle(f2) 2 1 1592d 1592d
panic: ASan: Invalid access, NUM-byte read at ADDR, StackLeft(f1) 2 2 1600d 1610d
Fatal trap NUM: page fault in __mtx_lock_flags -1 2 1601d 1606d
freebsd build error (11) -1 1 1521d 1521d
panic: lock (sleep mutex) sctp-tcb not locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:LINE (3) 2 1 1611d 1611d
panic: ASan: Invalid access, 4-byte read in sctp_timer_stop 2 27 1622d 1748d
panic: ASan: Invalid access, NUM-byte write in vn_read_from_obj 2 5 1622d 1665d
panic: ASan: Invalid access, NUM-byte read in sctp_ss_default_add 2 27 1622d 1675d
panic: ASan: Invalid access, NUM-byte read in sctp_free_assoc 2 3 1624d 1695d
panic: ASan: Invalid access, NUM-byte read in ip6_input 2 1 1625d 1625d
panic: ASan: Invalid access, NUM-byte read in witness_checkorder 2 3 1634d 1684d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (10) -1 2 1550d 1550d
SYZFAIL: tun: read failed (2) -1 19 1640d 1673d
panic: mtx_lock() of destroyed mutex at sys/netinet/sctp_output.c:LINE 2 1 1644d 1644d
panic: ASan: Invalid access, 8-byte read in callout_process 2 5 1648d 1747d
panic: ASan: Invalid access, NUM-byte write in devfs_get_cdevpriv 2 1 1650d 1650d
panic: ASan: Invalid access, NUM-byte read in __cap_rights_is_set 2 1 1655d 1655d
panic: prefix ADDR has referencing addresses 2 1 1656d 1656d
panic: strq ADDR not scheduled (2) 2 1 1660d 1660d
Fatal trap NUM: page fault in sctp_wakeup_the_read_socket -1 2 1660d 1676d
Fatal trap NUM: page fault in in6_unlink_ifa -1 1 1663d 1663d
Fatal trap NUM: page fault in pfi_kkif_update -1 1 1666d 1666d
Fatal trap NUM: general protection fault in pfi_kkif_update -1 1 1670d 1670d
panic: ASan: Invalid access, 4-byte read in sctp_gather_internal_ifa_flags 2 14 1676d 1747d
Fatal trap NUM: page fault in nd6_dad_timer -1 1 1676d 1676d
freebsd build error (10) -1 1 1592d 1592d
corrupted report (3) -1 3 1688d 1802d
panic: sctp_timer_start of type 5: inp = ADDR, stcb->sctp_ep ADDR 2 10 1697d 1749d
panic: ASan: Invalid access, 2-byte read in sctp_chunk_output 2 4 1698d 1742d
panic: ASan: Invalid access, 2-byte read in sctp_ss_fcfs_select 2 3 1704d 1732d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:LINE (3) 2 7 1704d 1923d
panic: sctp_timeout_handler of type 5: inp = ADDR, stcb->sctp_ep ADDR 2 2 1705d 1737d
panic: ASan: Invalid access, NUM-byte read in sctp_ss_default_remove 2 1 1706d 1706d
panic: ASan: Invalid access, NUM-byte read in callout_cc_add 2 1 1712d 1712d
panic: ASan: Invalid access, NUM-byte read in smp_targeted_tlb_shootdown 2 2 1665d 1667d
panic: ASan: Invalid access, NUM-byte read in smp_masked_invlpg_range 2 C 1 1642d 1642d
panic: size_on_reasm_queue is 1412 2 1 1723d 1723d
freebsd test error: lost connection to test machine (3) -1 105 1695d 1747d
panic: ASan: Invalid access, 4-byte read at ADDR, RedZonePartial(3) 2 9 1741d 1752d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (9) -1 6 1659d 1661d
panic: 2 chunks left for stream 0. 2 1 1746d 1746d
panic: H:ADDR p_prev_slot:NUM not equal to p_cur_slot:NUM 2 15 1751d 1916d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/i386/kernel/sys/netinet/sctp_pcb.c:LINE 2 23 1752d 2008d
panic: ASan: Invalid access, 4-byte read at ADDR, UMAUseAfterFree(fd) 2 300 1722d 1752d
panic: _mtx_lock_sleep: recursed on non-recursive mutex sctp-create @ /syzkaller/managers/main/kernel/sys/netinet/sctp_p 2 1 1757d 1757d
panic: lock (sleep mutex) sctp-tcb not locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:LINE (2) 2 2 1760d 1761d
Fatal trap 12: page fault in __mtx_assert (5) -1 7 1761d 1794d
panic: rsm:ADDR nrsm:ADDR rack:ADDR -- rsm->m is NULL? 2 C 25 1807d 1813d
panic: ASan: Invalid access, 4-byte read in in6_sin6_2_sin 2 C 8 1731d 1749d
panic: ASan: Invalid access, 4-byte read in sctp_connectx_helper_find 2 10 1748d 1748d
panic: Most recently used by in6_mfilter 2 3 1813d 1813d
panic: Most recently used by tcp_fsb 2 C 149 1812d 1813d
panic: rack_output: IP version incorrect: 0 2 C 31 1812d 1813d
panic: Most recently used by xform 2 C 115 1812d 1813d
Fatal trap 9: general protection fault in pfi_kkif_update -1 3 1772d 1814d
panic: _mtx_lock_sleep: recursed on non-recursive mutex sctp-tcb @ /syzkaller/managers/main/kernel/sys/netinet/sctp_pcb. (2) 2 3 1773d 1822d
Fatal trap 12: page fault in sctp_add_to_readq -1 1 1773d 1773d
Fatal trap 12: page fault in in6_unlink_ifa (2) -1 syz 20 1759d 2146d
suppressed report -1 8 1710d 1847d
panic: ASan: Invalid access, 8-byte read at ADDR, UMAUseAfterFree(fd) 2 88 1749d 1752d
panic: ASan: Invalid access, 8-byte write at ADDR, UMAUseAfterFree(fd) 2 19 1749d 1750d
panic: size_on_reasm_queue is 1244 2 1 1781d 1781d
panic: H:ADDR p_prev_slot:LINE not equal to p_cur_slot:LINE 2 1 1785d 1785d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (8) -1 10 1715d 1888d
freebsd build error (8) -1 1 1748d 1747d
SYZFAIL: invalid kcov comp type -1 1443 1757d 1887d
panic: 1 chunks left for stream 0. 2 1 1792d 1792d
Fatal trap 9: general protection fault in sctp_ss_fb_clear -1 1 1800d 1800d
Fatal trap 12: page fault in callout_process (3) -1 1 1802d 1802d
Fatal trap 9: general protection fault in m_tag_locate -1 1 1807d 1807d
Fatal trap 12: page fault in sctp_inpcb_free -1 4 1825d 1926d
panic: mtx_unlock() of destroyed mutex at sys/netinet/sctp_usrreq.c:LINE 2 1 1827d 1827d
Fatal trap 12: page fault in exit1 -1 1 1840d 1840d
freebsd boot error: panic: ASan: Invalid access, 8-byte write at ADDR, MallocRedZone(fb) -1 18 1752d 1752d
freebsd build error (7) -1 2 1752d 1752d
Fatal trap 12: page fault in sctp_free_assoc -1 2 1849d 1903d
SYZFAIL: too much cover -1 2 1852d 1853d
freebsd build error (6) -1 6 1786d 1786d
panic: interrupts enabled 2 C 191 1787d 1787d
Fatal trap 12: page fault in sctp_is_vtag_good -1 1 1884d 1884d
panic: H:ADDR p_prev_slot:LINE not equal to p_cur_slot:NUM 2 1 1889d 1889d
Fatal trap 9: general protection fault in sctp_cmpaddr -1 13 1891d 2026d
Fatal trap 12: page fault in __mtx_assert (4) -1 2 1892d 1907d
panic: Memory modified after free ADDR(736) val=0 @ ADDR 2 21 1893d 2027d
SYZFAIL: output overflow -1 syz 38 1809d 1887d
SYZFAIL: tun: read failed -1 syz 1040 1806d 1887d
panic: sbflush_internal: ccc 0 mb 0 mbcnt 256 2 C 23 2501d 2592d
freebsd build error (5) -1 12 1883d 1913d
freebsd boot error: Fatal trap 12: page fault while in kernel mode -1 78 1828d 1829d
panic: _mtx_lock_sleep: recursed on non-recursive mutex sctp-create @ /syzkaller/managers/i386/kernel/sys/netinet/sctp_p 2 1 1900d 1900d
panic: Counter goes negative (2) 2 2 1904d 1925d
panic: lock (sleep mutex) sctp-tcb not locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:LINE 2 1 1909d 1909d
Fatal trap 9: general protection fault in sctp_chunk_output -1 17 1911d 2028d
freebsd test error: lost connection to test machine (2) -1 45 1823d 1823d
panic: Most recently used by sctp_stro 2 1 1920d 1920d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/i386/kernel/sys/kern/uipc_socket.c:LINE 2 1 1921d 1921d
panic: H:ADDR p_prev_slot:NUM not equal to p_cur_slot:ADDR 2 1 1924d 1924d
Fatal trap 12: page fault in sctp_ss_default_add -1 1 1929d 1929d
Fatal trap 9: general protection fault in sctp_is_vtag_good -1 2 1937d 2016d
panic: Assertion owner->td_proc->p_magic == P_MAGIC failed at /syzkaller/managers/i386/kernel/sys/kern/subr_turnstile.c: 2 3 1949d 1997d
Fatal trap 9: general protection fault in udp6_common_ctlinput (2) -1 1 1964d 1964d
panic: size_on_reasm_queue is 4 2 1 1969d 1969d
panic: _mtx_lock_sleep: recursed on non-recursive mutex sctp-tcb @ /syzkaller/managers/main/kernel/sys/netinet/sctp_pcb. 2 3 1970d 2002d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (7) -1 8 1889d 1907d
Fatal trap 9: general protection fault in ck_epoch_poll_deferred (2) -1 4 1990d 2167d
Fatal trap 12: page fault in __mtx_assert (3) -1 3 2002d 2036d
panic: pfi_dynaddr_setup: non-NULL dyn 2 C 35 1942d 2183d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:LINE (2) 2 2 2016d 2017d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/i386/kernel/sys/kern/uipc_ktls.c:LINE 2 C 6 1937d 2138d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (6) -1 34 1943d 2040d
Fatal trap 9: general protection fault in memcmp (2) -1 1 1987d 1987d
freebsd build error (4) -1 6 1932d 1962d
panic: Most recently used by kdtrace 2 5 2018d 2019d
panic: Flight size-express incorrect? 2 2 2022d 2025d
panic: sleepq_add: td ADDR to sleep on wchan ADDR with sleeping prohibited 2 C 6804 2014d 2052d
panic: pfi_kif_unref: ADDR has zero refs 2 C 2 2019d 2019d
panic: thread with borrowed priority returning to userland 2 syz 8 2142d 2176d
panic: tp:ADDR rc_sacked:LINE > out:LINE 2 C 185 2169d 2180d
panic: m_copydata, length > size of mbuf chain 2 C 93 2180d 2200d
panic: sbsndptr_noadv: sb_mb is NULL 2 C 686 2180d 2200d
panic: mtx_lock() of destroyed mutex at sys/kern/sys_socket.c:LINE 2 syz 43 2229d 2540d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/i386/kernel/sys/kern/sys_socket.c:LINE 2 syz 3 2263d 2278d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/main/kernel/sys/netinet/in_pcb.c:LINE 2 C 9 2283d 2283d
panic: _mtx_lock_sleep: recursed on non-recursive mutex rtentry @ /syzkaller/managers/main/kernel/sys/net/route.c:LINE 2 C 4 2329d 2516d
panic: mutex pcbinfohash not owned at /syzkaller/managers/i386/kernel/sys/netinet6/in6_pcb.c:LINE 2 syz 6 2358d 2358d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/main/kernel/sys/netinet6/in6_ifattach.c:LINE 2 syz 4 2380d 2381d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/i386/kernel/sys/netinet6/in6_ifattach.c:LINE (2) 2 syz 1 2381d 2381d
Fatal trap 12: page fault in thread_lock_validate -1 syz 1 2395d 2395d
panic: inp_leave_group: imf_sources not empty (2) 2 C 70 2500d 2534d
panic: non-kernel pmap pmap ADDR cpu 0 pcid 0 2 syz 1 2510d 2510d
panic: _mtx_lock_sleep: recursed on non-recursive mutex rtentry @ /syzkaller/managers/i386/kernel/sys/net/route.c:LINE 2 syz 1 2516d 2516d
panic: sbflush_internal: ccc 0 mb 0 mbcnt 512 2 syz 5 2516d 2574d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/main/kernel/sys/kern/sys_socket.c:LINE 2 syz 5 2530d 2540d
panic: Memory modified after free ADDR(256) val=0 @ ADDR 2 syz 6 2533d 2540d
panic: m_uiotombuf: progress != total 2 syz 2 2592d 2592d
panic: Bad tailq NEXT(ADDR->tqh_last) != NULL (2) 2 C 2194 1977d 2199d
panic: sx_try_xlock() of destroyed sx at sys/kern/uipc_sockbuf.c:LINE 2 8 2113d 2282d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:LINE 2 1 2118d 2118d
corrupted report (2) -1 4 2124d 2156d
Fatal trap 12: page fault in tdq_notify -1 1 2130d 2130d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (5) -1 2 2079d 2079d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 2 (2) -1 28 2047d 2049d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/main/kernel/sys/netinet/sctp_pcb.c:LINE 2 1 2150d 2150d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/main/kernel/sys/dev/hyperv/hvsock/hv_sock.c:LINE 2 2 2162d 2163d
panic: _mtx_lock_sleep: recursed on non-recursive mutex so_snd @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c: 2 1 2163d 2163d
panic: size_on_all_streams smaller than control length 2 1 2167d 2167d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (4) -1 4 2079d 2079d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (3) -1 222 2085d 2410d
freebsd test error: lost connection to test machine -1 1269 2142d 2214d
freebsd build error (3) -1 13 2149d 2169d
Fatal trap 9: general protection fault in route_output -1 5 2188d 2189d
Fatal trap 9: general protection fault in fib4_lookup_nh_ext -1 4 2188d 2189d
Fatal trap 9: general protection fault in fib6_lookup_nh_basic -1 2 2189d 2189d
Fatal trap 9: general protection fault in pfi_kif_update -1 1 2189d 2189d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/main/kernel/sys/modules/tcp/rack/../../../netinet/tcp_stack 2 1 2195d 2195d
panic: refcount ADDR wraparound (2) 2 3883 2188d 2189d
Fatal trap 9: general protection fault in fib6_lookup -1 1494 2188d 2189d
Fatal trap 9: general protection fault in ip_output -1 624 2188d 2189d
Fatal trap 9: general protection fault in fib4_lookup -1 826 2188d 2189d
Fatal trap 9: general protection fault in nhop_free -1 110 2188d 2189d
Fatal trap 9: general protection fault while in kernel mode (2) -1 18 2188d 2189d
Fatal trap 9: general protection fault in sctp_source_address_selection -1 23 2188d 2189d
freebsd test error: timed out (3) -1 1 2239d 2239d
freebsd build error (2) -1 10 2268d 2324d
syzkaller: make host failed: failed to run ["gmake" "host" "ci"]: exit status 2 -1 2 2184d 2184d
panic: Memory modified after free ADDR(112) val=ADDR @ ADDR 2 1 2278d 2278d
panic: Bad link elm ADDR next->prev != elm (2) 2 1 2282d 2282d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/i386/kernel/sys/netinet/in_pcb.c:LINE 2 7 2283d 2283d
corrupted report -1 1 2283d 2283d
panic: uma_zalloc: Bucket pointer mangled. 2 1 2285d 2285d
panic: vm_page_free_prep: freeing wired page ADDR 2 C 2 2533d 2533d
freebsd boot error: Fatal trap 12: page fault in _thread_lock -1 1 2230d 2230d
Fatal trap 12: page fault in sctp_inpcb_bind -1 1 2314d 2314d
Fatal trap 9: general protection fault in ck_epoch_poll_deferred -1 1 2321d 2321d
Fatal trap 12: page fault in in6_unlink_ifa -1 1 2334d 2334d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/main/kernel/sys/netinet6/in6.c:LINE 2 1 2366d 2366d
freebsd test error: timed out (2) -1 3 2376d 2376d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/i386/kernel/sys/netinet6/in6.c:LINE 2 1 2385d 2385d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/main/kernel/sys/netinet/igmp.c:LINE 2 2 2388d 2388d
panic: uma: Freed item ADDR did not belong to zone mbuf_cluster 2 1 2394d 2394d
Fatal trap 12: page fault in callout_process -1 2 2395d 2510d
Fatal trap 12: page fault while in kernel mode (2) -1 2 2395d 2512d
panic: map ADDR end = ADDR, next->start = 0 2 1 2399d 2399d
Fatal trap 12: page fault in pmap_activate_sw -1 1 2417d 2417d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/main/kernel/sys/netinet/in_mcast.c:LINE 2 15 2388d 2388d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/i386/kernel/sys/netinet/in_mcast.c:LINE 2 21 2388d 2388d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/i386/kernel/sys/net/if.c:LINE 2 1669 2388d 2389d
freebsd boot error: panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/main/kernel/sys/net/if.c:LINE -1 24 2389d 2389d
panic: cap_rights_is_vset:LINE (2) 2 1 2429d 2429d
Fatal trap 9: general protection fault in udp6_common_ctlinput -1 1 2436d 2436d
freebsd build error -1 4 2438d 2439d
panic: pmap_growkernel: no memory to grow kernel 2 4 2528d 2549d
panic: Most recently used by temp 2 4 2537d 2541d
panic: Bad tailq NEXT(ADDR->tqh_last) != NULL 2 1 2542d 2542d
panic: Assertion lock == sq->sq_lock failed at /syzkaller/managers/main/kernel/sys/kern/subr_sleepqueue.c:LINE 2 1 2540d 2540d
panic: Duplicate free of ADDR from zone ADDR(16) slab ADDR(241) 2 1 2535d 2535d
Fatal trap 12: page fault in fifo_close -1 58 2528d 2539d
Fatal trap 12: page fault in __mtx_assert (2) -1 1 2535d 2535d
panic: pmap_demote_pde: firstpte and newpte map different physical addresses 2 2 2521d 2521d
panic: Bad link elm ADDR next->prev != elm 2 11 2531d 2548d
panic: Most recently used by ip6opt 2 3 2514d 2545d
Fatal trap 12: page fault in uma_dbg_free -1 1 2535d 2535d
Fatal trap 12: page fault in uma_dbg_alloc -1 1 2540d 2540d
Fatal trap 9: general protection fault in sys_nlm_syscall -1 2 2536d 2538d
panic: sctp: no chunks on the queues 2 188 2498d 2589d
Fatal trap 12: page fault in ip_output -1 2 2540d 2541d
Fatal trap 9: general protection fault in memcmp -1 23 2528d 2551d
Fatal trap 12: page fault in link_elf_search_symbol -1 5 2501d 2540d
Fatal trap 12: page fault in pmap_remove_pte -1 1 2528d 2528d
freebsd test error: timed out -1 14 2557d 2585d
Fatal trap 9: general protection fault in sbfree -1 2 2577d 2583d
Fatal trap 9: general protection fault in unp_gc -1 1 2591d 2591d
panic: sbready: sb ADDR NULL fnrdy 2 1 2593d 2593d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 2 -1 4 2576d 2576d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (2) -1 2 2519d 2519d
syzkaller: make target failed: failed to run ["gmake" "target"]: exit status 2 -1 4 2521d 2521d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 -1 1 2582d 2582d
lost connection to test machine -1 10 2596d 2596d