syzbot

 sign-in | mailing list | source | docs
🐞 Open [83]
🐞 Fixed [374]
🐞 Invalid [435]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

Out of 435 bugs, 327 were automatically obsoleted (1 due to revoked reproducers), 108 were invalidated by users.
Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported
panic: tcp_input_with_port: unspecified destination v4 address 2 29 50d 113d
panic: /syzkaller/managers/main/kernel/sys/kern/kern_timeout.c:LINE: _callout_stop_safe: Bad link elm ADDR prev->next != (2) 2 1 109d 109d
panic: vm_page_wire_mapped: wiring unreferenced page ADDR 2 1 113d 113d
Fatal trap NUM: page fault in witness_checkorder (2) -1 6 114d 132d
panic: if_freemulti: refcount -NUM 2 1 117d 117d
panic: negative vmsize for uid NUM 2 36 104d 298d
Fatal trap NUM: general protection fault in pfi_kkif_update (4) -1 1 124d 124d
panic: vm_object_unwire: missing page 2 8 132d 274d
panic: Assertion uio->uio_resid < NUM failed at /syzkaller/managers/i386/kernel/sys/netlink/netlink_domain.c:LINE 2 2 151d 151d
freebsd build error (22) -1 142 112d 140d
Fatal trap NUM: page fault in pfi_kkif_update (4) -1 1 153d 153d
panic: deadlkres: possible deadlock detected on allproc_lock 2 1 153d 153d
panic: /syzkaller/managers/i386/kernel/sys/kern/kern_timeout.c:LINE: callout_cc_add: Bad list head ADDR first->prev != h (2) 2 216 117d 182d
panic: CURVNET_SET at /syzkaller/managers/main/kernel/sys/netinet6/in6_mcast.c:LINE inp_gcmoptions() curvnet=ADDR vnet=N 2 3 157d 214d
panic: igmp_change_state: no igmp_ifsoftc for ifp ADDR 2 2 158d 210d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (12) -1 226 124d 606d
panic: inconsistent boundary count NUM 2 6 166d 308d
Fatal trap NUM: page fault in in_pcbremhash_locked (2) -1 45 128d 232d
Fatal trap NUM: page fault in ip6_freemoptions -1 1 175d 175d
panic: flush_newblk_dep: Bad newblk ADDR 2 3 176d 176d
panic: vm_page_grab_zero_partial: page ADDR is invalid 2 1 179d 179d
Fatal trap NUM: page fault in in_joingroup_locked -1 2 181d 234d
SYZFAIL: failed to mkdir -1 2 193d 193d
panic: /syzkaller/managers/i386/kernel/sys/kern/uipc_usrreq.c:LINE: uipc_sosend_stream_or_seqpacket: Empty stailq ADDR-> 2 1298 165d 291d
panic: sleeping thread[ htholredsa d tpuin_dm 2tx ti 2 1 210d 210d
Fatal trap NUM: page fault in in6_selecthlim (4) -1 1 215d 215d
Fatal trap NUM: page fault in link_elf_search_symbol -1 1 218d 218d
panic: deadlres_td_sleep_q: possible deadlock detected for ADDR (syz-executor), blocked for ADDR ticks 2 1 222d 222d
panic: starting DAD on non-tentative address ADDR 2 1 225d 225d
panic: ASan: Invalid access, NUM-byte read at ADDR, MallocRedZone(fb) (4) 2 1 225d 225d
panic: witness_warn (3) 2 1 229d 229d
panic: proc_dtor: non-empty p_ktr 2 1 239d 239d
panic: Assertion done != job_total_nbytes failed at /syzkaller/managers/i386/kernel/sys/kern/sys_socket.c:LINE (3) 2 3 245d 271d
panic: vm_page_dirty: page is invalid! 2 2 252d 294d
SYZFAIL: ShmemBuilder: too large output offset -1 1 252d 252d
panic: /syzkaller/managers/main/kernel/sys/kern/kern_timeout.c:LINE: _callout_stop_safe: Bad link elm ADDR prev->next != 2 2 252d 285d
panic: pmap_demote_pde: a wired mapping is missing PG_A 2 67 213d 439d
freebsd test error: SYZFATAL: image testing failed w/o kernel bug (2) -1 3 253d 290d
panic: Assertion pd->pcksum failed at /syzkaller/managers/main/kernel/sys/netpfil/pf/pf.c:LINE 2 7 255d 291d
panic: /syzkaller/managers/main/kernel/sys/netinet/in_pcb.c:LINE: in_pcblbgroup_insert: Bad list head ADDR first->prev ! 2 3 256d 293d
panic: negative vmsize for uid -NUM 2 1 280d 280d
panic: /syzkaller/managers/i386/kernel/sys/kern/kern_timeout.c:LINE: callout_process: Bad tailq NEXT(ADDR->tqh_last) != 2 1 283d 283d
Fatal trap NUM: page fault in witness_checkorder -1 4 283d 298d
panic: mutex so_rcv not owned at /syzkaller/managers/i386/kernel/sys/kern/uipc_usrreq.c:LINE 2 6 283d 286d
panic: /syzkaller/managers/i386/kernel/sys/netinet/in_pcb.c:LINE: in_pcblbgroup_insert: Bad list head ADDR first->prev ! 2 1 285d 285d
panic: pmap_growkernel: no memory to grow kernel (5) 2 457 247d 361d
panic: /syzkaller/managers/main/kernel/sys/kern/kern_timeout.c:LINE: callout_process: Bad tailq NEXT(ADDR->tqh_last) != 2 1 287d 287d
freebsd test error: can't ssh into the instance -1 11 247d 248d
panic: /syzkaller/managers/main/kernel/sys/netinet/in_pcb.c:LINE: in_pcbremlbgrouphash: Bad link elm ADDR next->prev != 2 1 293d 293d
panic: Assertion pd->pcksum failed at /syzkaller/managers/i386/kernel/sys/netpfil/pf/pf.c:LINE 2 1 295d 295d
Fatal trap NUM: page fault in __mtx_lock_flags (4) -1 1 298d 298d
panic: ip6_deletefraghdr: ext headers not contigous in mbuf ADDR m_len NUM >= offset NUM + NUM 2 686 259d 309d
panic: executing segment marked as unreachable at /syzkaller/managers/main/kernel/sys/netinet/in_pcb.c:LINE (in_pcbremlb 2 1 307d 307d
panic: /syzkaller/managers/i386/kernel/sys/kern/kern_timeout.c:LINE: callout_cc_add: Bad list head ADDR first->prev != h 2 202 269d 298d
panic: tcp_do_segment: sent too much 2 13 295d 328d
panic: Bad list head ADDR first->prev != head (2) 2 113 298d 326d
freebsd test error: lost connection to test machine (7) -1 2 344d 429d
SYZFAIL: coverage filter is full (2) -1 198808 357d 484d
freebsd test error: SYZFATAL: image testing failed w/o kernel bug -1 300 365d 395d
panic: mq notifiers left (2) 2 9 446d 452d
Fatal trap NUM: page fault in __mtx_lock_flags (3) -1 1 447d 447d
Fatal trap NUM: page fault in callout_process (3) -1 1 459d 459d
panic: pf_reassemble6: short mbuf chain 2 1 463d 463d
freebsd build error (19) -1 23 431d 432d
SYZFAIL: posix_spawn failed -1 4902 438d 581d
panic: pmap_growkernel: no memory to grow kernel (4) 2 29 446d 552d
panic: prefix ADDR has referencing addresses (6) 2 3 486d 569d
panic: mtx_lock() of destroyed mutex at sys/netinet/sctp_output.c:LINE (4) 2 1 497d 497d
SYZFAIL: SIGILL -1 101 459d 578d
Fatal trap NUM: page fault in in6_selecthlim (3) -1 739 470d 821d
SYZFAIL: child stopped -1 1 526d 526d
SYZFAIL: SIGBUS -1 8 527d 541d
SYZFAIL: clone failed -1 1 533d 533d
panic: strq ADDR not scheduled (4) 2 1 552d 552d
panic: if_ref: ifp ADDR has NUM refs 2 1 553d 553d
SYZFAIL: invalid kcov comp type (3) -1 1 563d 563d
SYZFAIL: SIGFPE -1 19 527d 567d
Fatal trap NUM: page fault in callout_process (2) -1 1 567d 567d
panic: mq notifiers left 2 21 528d 537d
Fatal trap NUM: pageJul NUM NUM:NUM:NUM fault in ip6_output -1 1 580d 580d
SYZFAIL: coverage filter is full -1 85109 542d 577d
panic: tcp_close: inp_socket NULL 2 4 582d 583d
freebsd test error: panic: ASan: Invalid access, NUM-byte write at ADDR, MallocRedZone(fb) -1 80 568d 574d
freebsd test error: lost connection to test machine (6) -1 7 631d 631d
panic: ASan: Invalid access, NUM-byte read at ADDR, MallocRedZone(fb) (3) 2 1 641d 641d
freebsd boot error: can't ssh into the instance (4) -1 3 645d 645d
Fatal trap NUM: page fault in sctp_free_assoc -1 35 610d 676d
panic: mtx_lock() of destroyed mutex at sys/netinet/sctp_output.c:LINE (3) 2 3 650d 693d
freebsd test error: SYZFATAL: failed to connect to host: dial tcp IP:NUM: i/o timeout -1 54 638d 640d
panic: rsm:ADDR nrsm:ADDR hit at soff:NUM null m (2) 2 3 679d 679d
Fatal trap NUM: page fault in __asan_load8_noabort (2) -1 8 683d 683d
panic: mb_free_extpg: m ADDR is not multipage! 2 1 683d 683d
Fatal trap NUM: page fault in m_free -1 2 683d 683d
Fatal trap NUM: page fault in kasan_atomic_fetchadd_int -1 1 683d 683d
Fatal trap NUM: page fault in callout_process -1 1 683d 683d
panic: Assertion mtx_unowned(m) failed at /syzkaller/managers/i386/kernel/sys/kern/kern_mutex.c:LINE (4) 2 2 685d 689d
panic: prefix ADDR has referencing addresses (5) 2 4 689d 727d
panic: pmap_growkernel: no memory to grow kernel (3) 2 965 652d 1585d
panic: vm_fault_lookup: fault on nofault entry, addr: ADDR (4) 2 18 654d 718d
syzkaller: make target failed: failed to run ["gmake" "target"]: exit status 2 (2) -1 10 606d 607d
Fatal trap NUM: page fault while in kernel mode (5) -1 15 683d 759d
panic: Assertion v != tid failed at /syzkaller/managers/i386/kernel/sys/kern/kern_mutex.c:LINE (2) 2 72 704d 1326d
panic: lock (sleep mutex) sctp-inp not locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctp_pcb.c:LINE 2 6 705d 707d
Fatal trap NUM: page fault in in6_unlink_ifa (4) -1 1 706d 706d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (11) -1 18 675d 701d
Fatal trap NUM: page fault in sctp_ss_default_add (3) -1 1 720d 720d
Fatal trap NUM: page fault in m_tag_delete_chain -1 21 683d 683d
syzkaller: make host failed: failed to run ["gmake" "host" "ci"]: exit status 2 (4) -1 118 647d 665d
freebsd build error (18) -1 8 684d 685d
panic: mtx_lock_spin: recursed on non-recursive mutex msgbuf @ /syzkaller/managers/i386/kernel/sys/kern/subr_msgbuf.c:LI 2 6 758d 785d
panic: deadlres_td_on_lock: possible deadlock detected for ADDR (syz-executor), blocked for NUM ticks 2 1 765d 765d
panic: Assertion mtx_unowned(m) failed at /syzkaller/managers/main/kernel/sys/kern/kern_mutex.c:LINE (4) 2 1 769d 769d
panic: mtx_lock() of destroyed mutex at sys/netinet/sctp_output.c:LINE (2) 2 1 785d 785d
panic: mtx_lock_spin: recursed on non-recursive mutex msgbuf @ /syzkaller/managers/main/kernel/sys/kern/subr_msgbuf.c:LI (2) 2 12 756d 786d
freebsd test error: lost connection to test machine (5) -1 1 828d 828d
panic: Assertion mtx_unowned(m) failed at /syzkaller/managers/i386/kernel/sys/kern/kern_mutex.c:LINE (3) 2 1 828d 828d
panic: prefix ADDR has referencing addresses (4) 2 2 838d 892d
panic: Assertion curthread->td_wantedlock == NULL failed at /syzkaller/managers/main/kernel/sys/kern/kern_mutex.c:LINE 2 4 851d 852d
panic: size_on_reasm_queue is NUM (3) 2 1 855d 855d
panic: Assertion done != job_total_nbytes failed at /syzkaller/managers/i386/kernel/sys/kern/sys_socket.c:LINE (2) 2 1 878d 878d
corrupted report (4) -1 21 909d 1444d
freebsd build error (17) -1 8 918d 955d
Fatal trap NUM: page fault in in6_unlink_ifa (3) -1 1 928d 928d
Fatal trap NUM: page fault in nd6_dad_timer (5) -1 2 932d 1003d
panic: mutex Giant owned at /syzkaller/managers/i386/kernel/sys/kern/kern_thread.c:LINE 2 252 902d 962d
panic: in6_pcblookup_hash_locked: invalid foreign address 2 syz 62 1064d 1113d
panic: prot 0x3 is not subset of max_prot NUM 2 C 2 921d 921d
SYZFAIL: child failed -1 syz 286 1407d 1825d
SYZFAIL: command failed -1 syz 34 1400d 1824d
panic: _mtx_lock_sleep: recursed on non-recursive mutex process lock @ /syzkaller/managers/main/kernel/sys/kern/kern_for 2 C 2 1291d 1291d
Fatal trap NUM: page fault while in kernel mode (4) -1 C 7 1100d 1425d
panic: huh, cumack ADDR greater than high-tsn ADDR in map 2 1 967d 967d
panic: _mtx_lock_sleep: recursed on non-recursive mutex sctp-tcb @ /syzkaller/managers/i386/kernel/sys/netinet/sctp_pcb. (3) 2 1 968d 968d
panic: size_on_reasm_queue is NUM (2) 2 1 974d 974d
syzkaller: make host failed: failed to run ["gmake" "host" "ci"]: exit status 2 (3) -1 506 947d 1092d
Fatal trap NUM: general protection fault in pfi_kkif_update (3) -1 1 999d 999d
Fatal trap NUM: page fault in in6_selecthlim (2) -1 1 1021d 1021d
Fatal trap NUM: page fault in sctp_ss_default_add (2) -1 1 1038d 1038d
panic: Assertion done != job_total_nbytes failed at /syzkaller/managers/main/kernel/sys/kern/sys_socket.c:LINE (3) 2 1 1045d 1045d
panic: Rack:ADDR sb:ADDR rsm:ADDR -- first rsm mbuf not aligned to sb 2 1 1050d 1050d
panic: Assertion mtx_unowned(m) failed at /syzkaller/managers/main/kernel/sys/kern/kern_mutex.c:LINE (3) 2 1 1056d 1056d
panic: size_on_reasm_queue is NUM 2 1 1080d 1080d
panic: vtopde on a uva/gpa 0x1000 2 1 1090d 1090d
Fatal trap NUM: page fault in nd6_dad_timer (4) -1 2 1116d 1177d
suppressed report (3) -1 2 1127d 1212d
freebsd boot error: Fatal trap NUM: page fault while in kernel mode -1 159 1100d 1103d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 2 (3) -1 4 1163d 1163d
panic: prefix ADDR has referencing addresses (3) 2 1 1182d 1182d
freebsd boot error: can't ssh into the instance (3) -1 1 1194d 1194d
freebsd build error (15) -1 1099 1121d 1236d
panic: About to free ctl:ADDR so:ADDR and its in 1 2 C 20 1476d 1920d
Fatal trap NUM: page fault in in6_selecthlim -1 15 1238d 1602d
panic: Assertion mtx_unowned(m) failed at /syzkaller/managers/main/kernel/sys/kern/kern_mutex.c:LINE (2) 2 1 1245d 1245d
Fatal trap NUM: page fault in nd6_dad_timer (3) -1 3 1282d 1378d
panic: mtx_lock_spin: recursed on non-recursive mutex msgbuf @ /syzkaller/managers/main/kernel/sys/kern/subr_msgbuf.c:LI 2 1 1290d 1290d
freebsd boot error: can't ssh into the instance (2) -1 1 1310d 1310d
freebsd test error: SYZFATAL: BUG: executor version returned bad result: "" -1 52 1282d 1283d
suppressed report (2) -1 2 1330d 1336d
Fatal trap NUM: page fault in pfi_kkif_update (3) -1 1 1331d 1331d
panic: ASan: Invalid access, NUM-byte read at ADDR, StackLeft(f1) (2) 2 1 1333d 1333d
panic: _mtx_lock_sleep: recursed on non-recursive mutex sctp-tcb @ /syzkaller/managers/i386/kernel/sys/netinet/sctp_pcb. (2) 2 1 1336d 1336d
Fatal trap NUM: page fault in knlist_remove_kq -1 1 1340d 1340d
Fatal trap NUM: page fault in sctp_notify_stream_reset_add -1 1 1348d 1348d
freebsd build error (14) -1 18 1331d 1331d
panic: ASan: Invalid access, NUM-byte write at ADDR, UseAfterScope(f8) (2) 2 1 1364d 1364d
panic: ASan: Invalid access, NUM-byte read in kvprintf 2 C 5 1572d 1592d
panic: Assertion done != job_total_nbytes failed at /syzkaller/managers/i386/kernel/sys/kern/sys_socket.c:LINE 2 1 1376d 1376d
panic: rack_output:NUM: r.start:ADDR < SND.UNA:ADDR; tp:ADDR, rack:ADDR, rsm:ADDR 2 C 270 1350d 1747d
panic: vm_fault_lookup: fault on nofault entry, addr: ADDR (3) 2 1 1385d 1385d
panic: prefix ADDR has referencing addresses (2) 2 3 1392d 1501d
Fatal trap NUM: page fault in sctp_wakeup_the_read_socket (4) -1 1 1395d 1395d
panic: Assertion task->ta_pending == NUM failed at /syzkaller/managers/i386/kernel/sys/kern/sys_socket.c:LINE 2 1 1399d 1399d
panic: Assertion mtx_unowned(m) failed at /syzkaller/managers/i386/kernel/sys/kern/kern_mutex.c:LINE (2) 2 2 1403d 1471d
Fatal trap NUM: page fault in kasan_atomic_load_int (2) -1 3 1404d 1474d
Fatal trap NUM: page fault in in6_unlink_ifa (2) -1 1 1414d 1414d
Fatal trap NUM: page fault in __asan_load8_noabort -1 1 1423d 1423d
SYZFAIL: too much cover (2) -1 120 1394d 1451d
Fatal trap NUM: page fault in memcpy_erms (2) -1 1 1432d 1432d
SYZFAIL: cover mmap failed -1 1 1433d 1433d
panic: ASan: Invalid access, NUM-byte read at ADDR, UMAUseAfterFree(fd) (3) 2 C 58 1349d 1402d
SYZFAIL: tun: read failed (3) -1 1 1447d 1447d
panic: strq ADDR not scheduled (3) 2 1 1447d 1447d
Fatal trap NUM: general protection fault in pfi_kkif_update (2) -1 1 1461d 1461d
panic: spin lock held too long (2) 2 1 1462d 1462d
SYZFAIL: invalid kcov comp type (2) -1 1 1464d 1464d
panic: ASan: Invalid access, NUM-byte read at ADDR, StackMiddle(f2) 2 1 1466d 1466d
panic: Don't own TCB lock 2 1 1468d 1468d
Fatal trap NUM: page fault in nd6_dad_timer (2) -1 1 1473d 1473d
syzkaller: make host failed: failed to run ["gmake" "host" "ci"]: exit status 2 (2) -1 106 1395d 1456d
freebsd build error (12) -1 2 1434d 1434d
panic: pmap_kasan_enter_alloc_4k: no memory to grow shadow map (2) 2 C 602 1577d 1626d
panic: out of swap space 2 C 15036 1498d 1741d
panic: ASan: Invalid access, NUM-byte read at ADDR, UseAfterScope(f8) 2 syz 7 1473d 1554d
panic: Queues are not empty when handling SHUTDOWN-ACK 2 syz 142 1506d 2076d
SYZFAIL: output overflow (2) -1 syz 14 1511d 1682d
panic: hpts_sane_input_insert: hpts:ADDR inp:ADDR incorrect CPU 2 C 186 1531d 1688d
SYZFAIL: tun: can't open device -1 syz 159 1632d 1825d
panic: m_copydata, offset > size of mbuf chain 2 syz 11 1627d 1631d
panic: hpts_sane_input_remove: hpts:ADDR inp:ADDR incorrect CPU 2 syz 5 1638d 1682d
panic: ASan: Invalid access, 2-byte read in sctp_common_input_processing 2 syz 8 1637d 1685d
panic: mtx_lock() of destroyed mutex at sys/netinet/sctp_pcb.c:LINE 2 syz 24 1696d 2122d
Fatal trap 9: general protection fault in __mtx_lock_sleep -1 syz 295 1690d 2364d
Fatal trap 9: general protection fault in sctp_timer_stop -1 syz 232 1691d 2005d
Fatal trap NUM: page fault in sctp_ss_default_add -1 1 1474d 1474d
panic: ASan: Invalid access, 8-byte read in __mtx_lock_sleep 2 syz 23 1594d 1676d
panic: ASan: Invalid access, 8-byte read in sctp_lower_sosend 2 syz 49 1560d 1668d
panic: ASan: Invalid access, 1-byte write in sctp_lower_sosend 2 syz 332 1582d 1686d
Fatal trap 12: page fault in __mtx_lock_sleep -1 syz 151 1692d 2340d
panic: Warning: Last msg marked incomplete, yet nothing left? 2 C 34 1487d 1740d
Fatal trap NUM: page fault in pfi_kkif_update (2) -1 1 1497d 1497d
panic: TCP stack bbr requested tcp_drop(ADDR) at connect() 2 1 1501d 1501d
panic: ASan: Invalid access, NUM-byte read in __mtx_lock_flags 2 C 188 1560d 1627d
panic: ASan: Invalid access, 8-byte write in sctp_timer_stop 2 C 269 1560d 1686d
Fatal trap 9: general protection fault in sctp_lower_sosend (2) -1 C 446 1690d 2011d
panic: ASan: Invalid access, NUM-byte read in sctp_ss_default_select 2 C 1 1629d 1629d
Fatal trap NUM: page fault while in kernel mode (3) -1 3 1516d 1530d
freebsd test error: lost connection to test machine (4) -1 896 1495d 1557d
panic: ASan: Invalid access, NUM-byte write at ADDR, StackMiddle(f2) 2 1 1531d 1531d
panic: ASan: Invalid access, NUM-byte read at ADDR, StackLeft(f1) 2 2 1538d 1548d
Fatal trap NUM: page fault in __mtx_lock_flags -1 2 1540d 1544d
freebsd build error (11) -1 1 1459d 1459d
panic: lock (sleep mutex) sctp-tcb not locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:LINE (3) 2 1 1549d 1549d
panic: ASan: Invalid access, 4-byte read in sctp_timer_stop 2 27 1560d 1686d
panic: ASan: Invalid access, NUM-byte write in vn_read_from_obj 2 5 1560d 1603d
panic: ASan: Invalid access, NUM-byte read in sctp_ss_default_add 2 27 1560d 1614d
panic: ASan: Invalid access, NUM-byte read in sctp_free_assoc 2 3 1562d 1633d
panic: ASan: Invalid access, NUM-byte read in ip6_input 2 1 1563d 1563d
panic: ASan: Invalid access, NUM-byte read in witness_checkorder 2 3 1573d 1622d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (10) -1 2 1489d 1489d
SYZFAIL: tun: read failed (2) -1 19 1578d 1611d
panic: mtx_lock() of destroyed mutex at sys/netinet/sctp_output.c:LINE 2 1 1583d 1583d
panic: ASan: Invalid access, 8-byte read in callout_process 2 5 1587d 1685d
panic: ASan: Invalid access, NUM-byte write in devfs_get_cdevpriv 2 1 1588d 1588d
panic: ASan: Invalid access, NUM-byte read in __cap_rights_is_set 2 1 1594d 1594d
panic: prefix ADDR has referencing addresses 2 1 1595d 1595d
panic: strq ADDR not scheduled (2) 2 1 1598d 1598d
Fatal trap NUM: page fault in sctp_wakeup_the_read_socket -1 2 1599d 1614d
Fatal trap NUM: page fault in in6_unlink_ifa -1 1 1601d 1601d
Fatal trap NUM: page fault in pfi_kkif_update -1 1 1604d 1604d
Fatal trap NUM: general protection fault in pfi_kkif_update -1 1 1609d 1609d
panic: ASan: Invalid access, 4-byte read in sctp_gather_internal_ifa_flags 2 14 1614d 1685d
Fatal trap NUM: page fault in nd6_dad_timer -1 1 1614d 1614d
freebsd build error (10) -1 1 1531d 1531d
corrupted report (3) -1 3 1626d 1740d
panic: sctp_timer_start of type 5: inp = ADDR, stcb->sctp_ep ADDR 2 10 1635d 1687d
panic: ASan: Invalid access, 2-byte read in sctp_chunk_output 2 4 1636d 1680d
panic: ASan: Invalid access, 2-byte read in sctp_ss_fcfs_select 2 3 1642d 1670d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:LINE (3) 2 7 1643d 1862d
panic: sctp_timeout_handler of type 5: inp = ADDR, stcb->sctp_ep ADDR 2 2 1644d 1675d
panic: ASan: Invalid access, NUM-byte read in sctp_ss_default_remove 2 1 1644d 1644d
panic: ASan: Invalid access, NUM-byte read in callout_cc_add 2 1 1650d 1650d
panic: ASan: Invalid access, NUM-byte read in smp_targeted_tlb_shootdown 2 2 1604d 1606d
panic: ASan: Invalid access, NUM-byte read in smp_masked_invlpg_range 2 C 1 1580d 1580d
panic: size_on_reasm_queue is 1412 2 1 1661d 1661d
freebsd test error: lost connection to test machine (3) -1 105 1633d 1685d
panic: ASan: Invalid access, 4-byte read at ADDR, RedZonePartial(3) 2 9 1679d 1690d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (9) -1 6 1598d 1600d
panic: 2 chunks left for stream 0. 2 1 1684d 1684d
panic: H:ADDR p_prev_slot:NUM not equal to p_cur_slot:NUM 2 15 1689d 1854d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/i386/kernel/sys/netinet/sctp_pcb.c:LINE 2 23 1691d 1946d
panic: ASan: Invalid access, 4-byte read at ADDR, UMAUseAfterFree(fd) 2 300 1661d 1690d
panic: _mtx_lock_sleep: recursed on non-recursive mutex sctp-create @ /syzkaller/managers/main/kernel/sys/netinet/sctp_p 2 1 1695d 1695d
panic: lock (sleep mutex) sctp-tcb not locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:LINE (2) 2 2 1698d 1699d
Fatal trap 12: page fault in __mtx_assert (5) -1 7 1699d 1733d
panic: rsm:ADDR nrsm:ADDR rack:ADDR -- rsm->m is NULL? 2 C 25 1745d 1751d
panic: ASan: Invalid access, 4-byte read in in6_sin6_2_sin 2 C 8 1669d 1687d
panic: ASan: Invalid access, 4-byte read in sctp_connectx_helper_find 2 10 1687d 1686d
panic: Most recently used by in6_mfilter 2 3 1751d 1751d
panic: Most recently used by tcp_fsb 2 C 149 1750d 1751d
panic: rack_output: IP version incorrect: 0 2 C 31 1751d 1751d
panic: Most recently used by xform 2 C 115 1751d 1751d
Fatal trap 9: general protection fault in pfi_kkif_update -1 3 1710d 1753d
panic: _mtx_lock_sleep: recursed on non-recursive mutex sctp-tcb @ /syzkaller/managers/main/kernel/sys/netinet/sctp_pcb. (2) 2 3 1711d 1760d
Fatal trap 12: page fault in sctp_add_to_readq -1 1 1712d 1712d
Fatal trap 12: page fault in in6_unlink_ifa (2) -1 syz 20 1697d 2085d
suppressed report -1 8 1649d 1785d
panic: ASan: Invalid access, 8-byte read at ADDR, UMAUseAfterFree(fd) 2 88 1687d 1690d
panic: ASan: Invalid access, 8-byte write at ADDR, UMAUseAfterFree(fd) 2 19 1688d 1688d
panic: size_on_reasm_queue is 1244 2 1 1719d 1719d
panic: H:ADDR p_prev_slot:LINE not equal to p_cur_slot:LINE 2 1 1724d 1724d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (8) -1 10 1654d 1826d
freebsd build error (8) -1 1 1686d 1685d
SYZFAIL: invalid kcov comp type -1 1443 1695d 1825d
panic: 1 chunks left for stream 0. 2 1 1730d 1730d
Fatal trap 9: general protection fault in sctp_ss_fb_clear -1 1 1739d 1739d
Fatal trap 12: page fault in callout_process (3) -1 1 1740d 1740d
Fatal trap 9: general protection fault in m_tag_locate -1 1 1745d 1745d
Fatal trap 12: page fault in sctp_inpcb_free -1 4 1763d 1864d
panic: mtx_unlock() of destroyed mutex at sys/netinet/sctp_usrreq.c:LINE 2 1 1765d 1765d
Fatal trap 12: page fault in exit1 -1 1 1778d 1778d
freebsd boot error: panic: ASan: Invalid access, 8-byte write at ADDR, MallocRedZone(fb) -1 18 1690d 1690d
freebsd build error (7) -1 2 1690d 1690d
Fatal trap 12: page fault in sctp_free_assoc -1 2 1787d 1842d
SYZFAIL: too much cover -1 2 1790d 1792d
freebsd build error (6) -1 6 1724d 1724d
panic: interrupts enabled 2 C 191 1725d 1726d
Fatal trap 12: page fault in sctp_is_vtag_good -1 1 1823d 1823d
panic: H:ADDR p_prev_slot:LINE not equal to p_cur_slot:NUM 2 1 1828d 1828d
Fatal trap 9: general protection fault in sctp_cmpaddr -1 13 1829d 1965d
Fatal trap 12: page fault in __mtx_assert (4) -1 2 1831d 1845d
panic: Memory modified after free ADDR(736) val=0 @ ADDR 2 21 1831d 1965d
SYZFAIL: output overflow -1 syz 38 1747d 1825d
SYZFAIL: tun: read failed -1 syz 1040 1744d 1825d
panic: sbflush_internal: ccc 0 mb 0 mbcnt 256 2 C 23 2440d 2531d
freebsd build error (5) -1 12 1822d 1851d
freebsd boot error: Fatal trap 12: page fault while in kernel mode -1 78 1766d 1767d
panic: _mtx_lock_sleep: recursed on non-recursive mutex sctp-create @ /syzkaller/managers/i386/kernel/sys/netinet/sctp_p 2 1 1838d 1838d
panic: Counter goes negative (2) 2 2 1842d 1864d
panic: lock (sleep mutex) sctp-tcb not locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:LINE 2 1 1847d 1847d
Fatal trap 9: general protection fault in sctp_chunk_output -1 17 1849d 1966d
freebsd test error: lost connection to test machine (2) -1 45 1761d 1761d
panic: Most recently used by sctp_stro 2 1 1858d 1858d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/i386/kernel/sys/kern/uipc_socket.c:LINE 2 1 1859d 1859d
panic: H:ADDR p_prev_slot:NUM not equal to p_cur_slot:ADDR 2 1 1863d 1863d
Fatal trap 12: page fault in sctp_ss_default_add -1 1 1867d 1867d
Fatal trap 9: general protection fault in sctp_is_vtag_good -1 2 1875d 1954d
panic: Assertion owner->td_proc->p_magic == P_MAGIC failed at /syzkaller/managers/i386/kernel/sys/kern/subr_turnstile.c: 2 3 1887d 1935d
Fatal trap 9: general protection fault in udp6_common_ctlinput (2) -1 1 1902d 1902d
panic: size_on_reasm_queue is 4 2 1 1908d 1908d
panic: _mtx_lock_sleep: recursed on non-recursive mutex sctp-tcb @ /syzkaller/managers/main/kernel/sys/netinet/sctp_pcb. 2 3 1908d 1940d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (7) -1 8 1828d 1845d
Fatal trap 9: general protection fault in ck_epoch_poll_deferred (2) -1 4 1928d 2105d
Fatal trap 12: page fault in __mtx_assert (3) -1 3 1940d 1974d
panic: pfi_dynaddr_setup: non-NULL dyn 2 C 35 1881d 2122d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:LINE (2) 2 2 1954d 1955d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/i386/kernel/sys/kern/uipc_ktls.c:LINE 2 C 6 1876d 2076d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (6) -1 34 1882d 1978d
Fatal trap 9: general protection fault in memcmp (2) -1 1 1925d 1925d
freebsd build error (4) -1 6 1870d 1900d
panic: Most recently used by kdtrace 2 5 1957d 1957d
panic: Flight size-express incorrect? 2 2 1961d 1964d
panic: sleepq_add: td ADDR to sleep on wchan ADDR with sleeping prohibited 2 C 6804 1952d 1990d
panic: pfi_kif_unref: ADDR has zero refs 2 C 2 1957d 1957d
panic: thread with borrowed priority returning to userland 2 syz 8 2080d 2114d
panic: tp:ADDR rc_sacked:LINE > out:LINE 2 C 185 2107d 2118d
panic: m_copydata, length > size of mbuf chain 2 C 93 2118d 2138d
panic: sbsndptr_noadv: sb_mb is NULL 2 C 686 2118d 2139d
panic: mtx_lock() of destroyed mutex at sys/kern/sys_socket.c:LINE 2 syz 43 2167d 2479d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/i386/kernel/sys/kern/sys_socket.c:LINE 2 syz 3 2201d 2217d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/main/kernel/sys/netinet/in_pcb.c:LINE 2 C 9 2221d 2222d
panic: _mtx_lock_sleep: recursed on non-recursive mutex rtentry @ /syzkaller/managers/main/kernel/sys/net/route.c:LINE 2 C 4 2267d 2455d
panic: mutex pcbinfohash not owned at /syzkaller/managers/i386/kernel/sys/netinet6/in6_pcb.c:LINE 2 syz 6 2296d 2296d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/main/kernel/sys/netinet6/in6_ifattach.c:LINE 2 syz 4 2318d 2319d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/i386/kernel/sys/netinet6/in6_ifattach.c:LINE (2) 2 syz 1 2319d 2319d
Fatal trap 12: page fault in thread_lock_validate -1 syz 1 2333d 2333d
panic: inp_leave_group: imf_sources not empty (2) 2 C 70 2438d 2472d
panic: non-kernel pmap pmap ADDR cpu 0 pcid 0 2 syz 1 2448d 2448d
panic: _mtx_lock_sleep: recursed on non-recursive mutex rtentry @ /syzkaller/managers/i386/kernel/sys/net/route.c:LINE 2 syz 1 2455d 2455d
panic: sbflush_internal: ccc 0 mb 0 mbcnt 512 2 syz 5 2454d 2513d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/main/kernel/sys/kern/sys_socket.c:LINE 2 syz 5 2468d 2479d
panic: Memory modified after free ADDR(256) val=0 @ ADDR 2 syz 6 2472d 2478d
panic: m_uiotombuf: progress != total 2 syz 2 2531d 2531d
panic: Bad tailq NEXT(ADDR->tqh_last) != NULL (2) 2 C 2194 1916d 2137d
panic: sx_try_xlock() of destroyed sx at sys/kern/uipc_sockbuf.c:LINE 2 8 2051d 2220d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:LINE 2 1 2056d 2056d
corrupted report (2) -1 4 2062d 2095d
Fatal trap 12: page fault in tdq_notify -1 1 2068d 2068d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (5) -1 2 2017d 2017d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 2 (2) -1 28 1986d 1987d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/main/kernel/sys/netinet/sctp_pcb.c:LINE 2 1 2088d 2088d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/main/kernel/sys/dev/hyperv/hvsock/hv_sock.c:LINE 2 2 2100d 2101d
panic: _mtx_lock_sleep: recursed on non-recursive mutex so_snd @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c: 2 1 2101d 2101d
panic: size_on_all_streams smaller than control length 2 1 2105d 2105d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (4) -1 4 2018d 2018d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (3) -1 222 2024d 2348d
freebsd test error: lost connection to test machine -1 1269 2081d 2153d
freebsd build error (3) -1 13 2087d 2107d
Fatal trap 9: general protection fault in route_output -1 5 2126d 2127d
Fatal trap 9: general protection fault in fib4_lookup_nh_ext -1 4 2127d 2127d
Fatal trap 9: general protection fault in fib6_lookup_nh_basic -1 2 2127d 2127d
Fatal trap 9: general protection fault in pfi_kif_update -1 1 2127d 2127d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/main/kernel/sys/modules/tcp/rack/../../../netinet/tcp_stack 2 1 2133d 2133d
panic: refcount ADDR wraparound (2) 2 3883 2126d 2127d
Fatal trap 9: general protection fault in fib6_lookup -1 1494 2126d 2127d
Fatal trap 9: general protection fault in ip_output -1 624 2126d 2127d
Fatal trap 9: general protection fault in fib4_lookup -1 826 2126d 2127d
Fatal trap 9: general protection fault in nhop_free -1 110 2126d 2127d
Fatal trap 9: general protection fault while in kernel mode (2) -1 18 2126d 2127d
Fatal trap 9: general protection fault in sctp_source_address_selection -1 23 2126d 2127d
freebsd test error: timed out (3) -1 1 2177d 2177d
freebsd build error (2) -1 10 2206d 2262d
syzkaller: make host failed: failed to run ["gmake" "host" "ci"]: exit status 2 -1 2 2122d 2122d
panic: Memory modified after free ADDR(112) val=ADDR @ ADDR 2 1 2216d 2216d
panic: Bad link elm ADDR next->prev != elm (2) 2 1 2221d 2221d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/i386/kernel/sys/netinet/in_pcb.c:LINE 2 7 2221d 2222d
corrupted report -1 1 2221d 2221d
panic: uma_zalloc: Bucket pointer mangled. 2 1 2224d 2224d
panic: vm_page_free_prep: freeing wired page ADDR 2 C 2 2472d 2472d
freebsd boot error: Fatal trap 12: page fault in _thread_lock -1 1 2169d 2169d
Fatal trap 12: page fault in sctp_inpcb_bind -1 1 2252d 2252d
Fatal trap 9: general protection fault in ck_epoch_poll_deferred -1 1 2259d 2259d
Fatal trap 12: page fault in in6_unlink_ifa -1 1 2272d 2272d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/main/kernel/sys/netinet6/in6.c:LINE 2 1 2305d 2305d
freebsd test error: timed out (2) -1 3 2314d 2314d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/i386/kernel/sys/netinet6/in6.c:LINE 2 1 2323d 2323d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/main/kernel/sys/netinet/igmp.c:LINE 2 2 2326d 2327d
panic: uma: Freed item ADDR did not belong to zone mbuf_cluster 2 1 2332d 2332d
Fatal trap 12: page fault in callout_process -1 2 2333d 2448d
Fatal trap 12: page fault while in kernel mode (2) -1 2 2333d 2450d
panic: map ADDR end = ADDR, next->start = 0 2 1 2337d 2337d
Fatal trap 12: page fault in pmap_activate_sw -1 1 2355d 2355d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/main/kernel/sys/netinet/in_mcast.c:LINE 2 15 2326d 2327d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/i386/kernel/sys/netinet/in_mcast.c:LINE 2 21 2326d 2327d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/i386/kernel/sys/net/if.c:LINE 2 1669 2327d 2327d
freebsd boot error: panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/main/kernel/sys/net/if.c:LINE -1 24 2328d 2328d
panic: cap_rights_is_vset:LINE (2) 2 1 2368d 2368d
Fatal trap 9: general protection fault in udp6_common_ctlinput -1 1 2374d 2374d
freebsd build error -1 4 2377d 2377d
panic: pmap_growkernel: no memory to grow kernel 2 4 2466d 2487d
panic: Most recently used by temp 2 4 2475d 2480d
panic: Bad tailq NEXT(ADDR->tqh_last) != NULL 2 1 2480d 2480d
panic: Assertion lock == sq->sq_lock failed at /syzkaller/managers/main/kernel/sys/kern/subr_sleepqueue.c:LINE 2 1 2478d 2478d
panic: Duplicate free of ADDR from zone ADDR(16) slab ADDR(241) 2 1 2473d 2473d
Fatal trap 12: page fault in fifo_close -1 58 2466d 2477d
Fatal trap 12: page fault in __mtx_assert (2) -1 1 2473d 2473d
panic: pmap_demote_pde: firstpte and newpte map different physical addresses 2 2 2459d 2459d
panic: Bad link elm ADDR next->prev != elm 2 11 2469d 2486d
panic: Most recently used by ip6opt 2 3 2453d 2483d
Fatal trap 12: page fault in uma_dbg_free -1 1 2473d 2473d
Fatal trap 12: page fault in uma_dbg_alloc -1 1 2478d 2478d
Fatal trap 9: general protection fault in sys_nlm_syscall -1 2 2474d 2477d
panic: sctp: no chunks on the queues 2 188 2436d 2527d
Fatal trap 12: page fault in ip_output -1 2 2478d 2479d
Fatal trap 9: general protection fault in memcmp -1 23 2467d 2489d
Fatal trap 12: page fault in link_elf_search_symbol -1 5 2439d 2479d
Fatal trap 12: page fault in pmap_remove_pte -1 1 2467d 2467d
freebsd test error: timed out -1 14 2496d 2523d
Fatal trap 9: general protection fault in sbfree -1 2 2515d 2522d
Fatal trap 9: general protection fault in unp_gc -1 1 2530d 2530d
panic: sbready: sb ADDR NULL fnrdy 2 1 2532d 2532d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 2 -1 4 2514d 2514d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (2) -1 2 2457d 2457d
syzkaller: make target failed: failed to run ["gmake" "target"]: exit status 2 -1 4 2460d 2460d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 -1 1 2520d 2520d
lost connection to test machine -1 10 2535d 2535d