syzbot

 sign-in | mailing list | source | docs
🐞 Open [80]
🐞 Fixed [374]
🐞 Invalid [438]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

Out of 438 bugs, 330 were automatically obsoleted (1 due to revoked reproducers), 108 were invalidated by users.
Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported
panic: vm_object_terminate_single_page: page ADDR does not belong to a queue 2 145 51d 492d
Fatal trap NUM: page fault in mld_change_state -1 12 94d 363d
panic: pmap_remove_all: page ADDR is not managed 2 3304 56d 184d
panic: tcp_input_with_port: unspecified destination v4 address 2 29 56d 119d
panic: /syzkaller/managers/main/kernel/sys/kern/kern_timeout.c:LINE: _callout_stop_safe: Bad link elm ADDR prev->next != (2) 2 1 115d 115d
panic: vm_page_wire_mapped: wiring unreferenced page ADDR 2 1 119d 119d
Fatal trap NUM: page fault in witness_checkorder (2) -1 6 121d 139d
panic: if_freemulti: refcount -NUM 2 1 123d 123d
panic: negative vmsize for uid NUM 2 36 110d 304d
Fatal trap NUM: general protection fault in pfi_kkif_update (4) -1 1 130d 130d
panic: vm_object_unwire: missing page 2 8 139d 281d
panic: Assertion uio->uio_resid < NUM failed at /syzkaller/managers/i386/kernel/sys/netlink/netlink_domain.c:LINE 2 2 158d 158d
freebsd build error (22) -1 142 119d 147d
Fatal trap NUM: page fault in pfi_kkif_update (4) -1 1 159d 159d
panic: deadlkres: possible deadlock detected on allproc_lock 2 1 159d 159d
panic: /syzkaller/managers/i386/kernel/sys/kern/kern_timeout.c:LINE: callout_cc_add: Bad list head ADDR first->prev != h (2) 2 216 123d 188d
panic: CURVNET_SET at /syzkaller/managers/main/kernel/sys/netinet6/in6_mcast.c:LINE inp_gcmoptions() curvnet=ADDR vnet=N 2 3 164d 220d
panic: igmp_change_state: no igmp_ifsoftc for ifp ADDR 2 2 164d 216d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (12) -1 226 130d 612d
panic: inconsistent boundary count NUM 2 6 172d 315d
Fatal trap NUM: page fault in in_pcbremhash_locked (2) -1 45 134d 238d
Fatal trap NUM: page fault in ip6_freemoptions -1 1 181d 181d
panic: flush_newblk_dep: Bad newblk ADDR 2 3 183d 183d
panic: vm_page_grab_zero_partial: page ADDR is invalid 2 1 185d 185d
Fatal trap NUM: page fault in in_joingroup_locked -1 2 188d 241d
SYZFAIL: failed to mkdir -1 2 199d 199d
panic: /syzkaller/managers/i386/kernel/sys/kern/uipc_usrreq.c:LINE: uipc_sosend_stream_or_seqpacket: Empty stailq ADDR-> 2 1298 171d 297d
panic: sleeping thread[ htholredsa d tpuin_dm 2tx ti 2 1 217d 217d
Fatal trap NUM: page fault in in6_selecthlim (4) -1 1 221d 221d
Fatal trap NUM: page fault in link_elf_search_symbol -1 1 225d 225d
panic: deadlres_td_sleep_q: possible deadlock detected for ADDR (syz-executor), blocked for ADDR ticks 2 1 228d 228d
panic: starting DAD on non-tentative address ADDR 2 1 232d 232d
panic: ASan: Invalid access, NUM-byte read at ADDR, MallocRedZone(fb) (4) 2 1 232d 232d
panic: witness_warn (3) 2 1 235d 235d
panic: proc_dtor: non-empty p_ktr 2 1 246d 246d
panic: Assertion done != job_total_nbytes failed at /syzkaller/managers/i386/kernel/sys/kern/sys_socket.c:LINE (3) 2 3 251d 278d
panic: vm_page_dirty: page is invalid! 2 2 258d 300d
SYZFAIL: ShmemBuilder: too large output offset -1 1 258d 258d
panic: /syzkaller/managers/main/kernel/sys/kern/kern_timeout.c:LINE: _callout_stop_safe: Bad link elm ADDR prev->next != 2 2 258d 291d
panic: pmap_demote_pde: a wired mapping is missing PG_A 2 67 220d 446d
freebsd test error: SYZFATAL: image testing failed w/o kernel bug (2) -1 3 260d 296d
panic: Assertion pd->pcksum failed at /syzkaller/managers/main/kernel/sys/netpfil/pf/pf.c:LINE 2 7 261d 298d
panic: /syzkaller/managers/main/kernel/sys/netinet/in_pcb.c:LINE: in_pcblbgroup_insert: Bad list head ADDR first->prev ! 2 3 262d 299d
panic: negative vmsize for uid -NUM 2 1 286d 286d
panic: /syzkaller/managers/i386/kernel/sys/kern/kern_timeout.c:LINE: callout_process: Bad tailq NEXT(ADDR->tqh_last) != 2 1 289d 289d
Fatal trap NUM: page fault in witness_checkorder -1 4 289d 305d
panic: mutex so_rcv not owned at /syzkaller/managers/i386/kernel/sys/kern/uipc_usrreq.c:LINE 2 6 290d 293d
panic: /syzkaller/managers/i386/kernel/sys/netinet/in_pcb.c:LINE: in_pcblbgroup_insert: Bad list head ADDR first->prev ! 2 1 292d 292d
panic: pmap_growkernel: no memory to grow kernel (5) 2 457 253d 367d
panic: /syzkaller/managers/main/kernel/sys/kern/kern_timeout.c:LINE: callout_process: Bad tailq NEXT(ADDR->tqh_last) != 2 1 293d 293d
freebsd test error: can't ssh into the instance -1 11 254d 254d
panic: /syzkaller/managers/main/kernel/sys/netinet/in_pcb.c:LINE: in_pcbremlbgrouphash: Bad link elm ADDR next->prev != 2 1 299d 299d
panic: Assertion pd->pcksum failed at /syzkaller/managers/i386/kernel/sys/netpfil/pf/pf.c:LINE 2 1 301d 301d
Fatal trap NUM: page fault in __mtx_lock_flags (4) -1 1 305d 305d
panic: ip6_deletefraghdr: ext headers not contigous in mbuf ADDR m_len NUM >= offset NUM + NUM 2 686 266d 315d
panic: executing segment marked as unreachable at /syzkaller/managers/main/kernel/sys/netinet/in_pcb.c:LINE (in_pcbremlb 2 1 314d 314d
panic: /syzkaller/managers/i386/kernel/sys/kern/kern_timeout.c:LINE: callout_cc_add: Bad list head ADDR first->prev != h 2 202 276d 305d
panic: tcp_do_segment: sent too much 2 13 302d 334d
panic: Bad list head ADDR first->prev != head (2) 2 113 305d 333d
freebsd test error: lost connection to test machine (7) -1 2 350d 435d
SYZFAIL: coverage filter is full (2) -1 198808 364d 491d
freebsd test error: SYZFATAL: image testing failed w/o kernel bug -1 300 371d 402d
panic: mq notifiers left (2) 2 9 453d 459d
Fatal trap NUM: page fault in __mtx_lock_flags (3) -1 1 453d 453d
Fatal trap NUM: page fault in callout_process (3) -1 1 465d 465d
panic: pf_reassemble6: short mbuf chain 2 1 469d 469d
freebsd build error (19) -1 23 437d 438d
SYZFAIL: posix_spawn failed -1 4902 445d 588d
panic: pmap_growkernel: no memory to grow kernel (4) 2 29 452d 558d
panic: prefix ADDR has referencing addresses (6) 2 3 492d 576d
panic: mtx_lock() of destroyed mutex at sys/netinet/sctp_output.c:LINE (4) 2 1 504d 504d
SYZFAIL: SIGILL -1 101 466d 585d
Fatal trap NUM: page fault in in6_selecthlim (3) -1 739 476d 827d
SYZFAIL: child stopped -1 1 533d 533d
SYZFAIL: SIGBUS -1 8 533d 548d
SYZFAIL: clone failed -1 1 539d 539d
panic: strq ADDR not scheduled (4) 2 1 558d 558d
panic: if_ref: ifp ADDR has NUM refs 2 1 559d 559d
SYZFAIL: invalid kcov comp type (3) -1 1 570d 570d
SYZFAIL: SIGFPE -1 19 533d 573d
Fatal trap NUM: page fault in callout_process (2) -1 1 574d 574d
panic: mq notifiers left 2 21 534d 543d
Fatal trap NUM: pageJul NUM NUM:NUM:NUM fault in ip6_output -1 1 587d 587d
SYZFAIL: coverage filter is full -1 85109 548d 584d
panic: tcp_close: inp_socket NULL 2 4 589d 589d
freebsd test error: panic: ASan: Invalid access, NUM-byte write at ADDR, MallocRedZone(fb) -1 80 575d 581d
freebsd test error: lost connection to test machine (6) -1 7 638d 638d
panic: ASan: Invalid access, NUM-byte read at ADDR, MallocRedZone(fb) (3) 2 1 647d 647d
freebsd boot error: can't ssh into the instance (4) -1 3 652d 652d
Fatal trap NUM: page fault in sctp_free_assoc -1 35 617d 682d
panic: mtx_lock() of destroyed mutex at sys/netinet/sctp_output.c:LINE (3) 2 3 657d 699d
freebsd test error: SYZFATAL: failed to connect to host: dial tcp IP:NUM: i/o timeout -1 54 644d 646d
panic: rsm:ADDR nrsm:ADDR hit at soff:NUM null m (2) 2 3 685d 685d
Fatal trap NUM: page fault in __asan_load8_noabort (2) -1 8 689d 690d
panic: mb_free_extpg: m ADDR is not multipage! 2 1 690d 690d
Fatal trap NUM: page fault in m_free -1 2 690d 690d
Fatal trap NUM: page fault in kasan_atomic_fetchadd_int -1 1 690d 690d
Fatal trap NUM: page fault in callout_process -1 1 690d 690d
panic: Assertion mtx_unowned(m) failed at /syzkaller/managers/i386/kernel/sys/kern/kern_mutex.c:LINE (4) 2 2 692d 696d
panic: prefix ADDR has referencing addresses (5) 2 4 695d 733d
panic: pmap_growkernel: no memory to grow kernel (3) 2 965 658d 1591d
panic: vm_fault_lookup: fault on nofault entry, addr: ADDR (4) 2 18 661d 724d
syzkaller: make target failed: failed to run ["gmake" "target"]: exit status 2 (2) -1 10 612d 613d
Fatal trap NUM: page fault while in kernel mode (5) -1 15 689d 766d
panic: Assertion v != tid failed at /syzkaller/managers/i386/kernel/sys/kern/kern_mutex.c:LINE (2) 2 72 711d 1332d
panic: lock (sleep mutex) sctp-inp not locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctp_pcb.c:LINE 2 6 711d 714d
Fatal trap NUM: page fault in in6_unlink_ifa (4) -1 1 713d 713d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (11) -1 18 682d 708d
Fatal trap NUM: page fault in sctp_ss_default_add (3) -1 1 726d 726d
Fatal trap NUM: page fault in m_tag_delete_chain -1 21 689d 690d
syzkaller: make host failed: failed to run ["gmake" "host" "ci"]: exit status 2 (4) -1 118 653d 672d
freebsd build error (18) -1 8 691d 692d
panic: mtx_lock_spin: recursed on non-recursive mutex msgbuf @ /syzkaller/managers/i386/kernel/sys/kern/subr_msgbuf.c:LI 2 6 765d 791d
panic: deadlres_td_on_lock: possible deadlock detected for ADDR (syz-executor), blocked for NUM ticks 2 1 771d 771d
panic: Assertion mtx_unowned(m) failed at /syzkaller/managers/main/kernel/sys/kern/kern_mutex.c:LINE (4) 2 1 775d 775d
panic: mtx_lock() of destroyed mutex at sys/netinet/sctp_output.c:LINE (2) 2 1 792d 792d
panic: mtx_lock_spin: recursed on non-recursive mutex msgbuf @ /syzkaller/managers/main/kernel/sys/kern/subr_msgbuf.c:LI (2) 2 12 762d 792d
freebsd test error: lost connection to test machine (5) -1 1 834d 834d
panic: Assertion mtx_unowned(m) failed at /syzkaller/managers/i386/kernel/sys/kern/kern_mutex.c:LINE (3) 2 1 835d 835d
panic: prefix ADDR has referencing addresses (4) 2 2 844d 898d
panic: Assertion curthread->td_wantedlock == NULL failed at /syzkaller/managers/main/kernel/sys/kern/kern_mutex.c:LINE 2 4 858d 858d
panic: size_on_reasm_queue is NUM (3) 2 1 861d 861d
panic: Assertion done != job_total_nbytes failed at /syzkaller/managers/i386/kernel/sys/kern/sys_socket.c:LINE (2) 2 1 885d 885d
corrupted report (4) -1 21 915d 1451d
freebsd build error (17) -1 8 924d 962d
Fatal trap NUM: page fault in in6_unlink_ifa (3) -1 1 935d 935d
Fatal trap NUM: page fault in nd6_dad_timer (5) -1 2 938d 1010d
panic: mutex Giant owned at /syzkaller/managers/i386/kernel/sys/kern/kern_thread.c:LINE 2 252 908d 969d
panic: in6_pcblookup_hash_locked: invalid foreign address 2 syz 62 1070d 1119d
panic: prot 0x3 is not subset of max_prot NUM 2 C 2 927d 927d
SYZFAIL: child failed -1 syz 286 1414d 1832d
SYZFAIL: command failed -1 syz 34 1406d 1831d
panic: _mtx_lock_sleep: recursed on non-recursive mutex process lock @ /syzkaller/managers/main/kernel/sys/kern/kern_for 2 C 2 1297d 1297d
Fatal trap NUM: page fault while in kernel mode (4) -1 C 7 1106d 1431d
panic: huh, cumack ADDR greater than high-tsn ADDR in map 2 1 973d 973d
panic: _mtx_lock_sleep: recursed on non-recursive mutex sctp-tcb @ /syzkaller/managers/i386/kernel/sys/netinet/sctp_pcb. (3) 2 1 975d 975d
panic: size_on_reasm_queue is NUM (2) 2 1 981d 981d
syzkaller: make host failed: failed to run ["gmake" "host" "ci"]: exit status 2 (3) -1 506 954d 1099d
Fatal trap NUM: general protection fault in pfi_kkif_update (3) -1 1 1006d 1006d
Fatal trap NUM: page fault in in6_selecthlim (2) -1 1 1028d 1028d
Fatal trap NUM: page fault in sctp_ss_default_add (2) -1 1 1045d 1045d
panic: Assertion done != job_total_nbytes failed at /syzkaller/managers/main/kernel/sys/kern/sys_socket.c:LINE (3) 2 1 1051d 1051d
panic: Rack:ADDR sb:ADDR rsm:ADDR -- first rsm mbuf not aligned to sb 2 1 1056d 1056d
panic: Assertion mtx_unowned(m) failed at /syzkaller/managers/main/kernel/sys/kern/kern_mutex.c:LINE (3) 2 1 1062d 1062d
panic: size_on_reasm_queue is NUM 2 1 1086d 1086d
panic: vtopde on a uva/gpa 0x1000 2 1 1097d 1097d
Fatal trap NUM: page fault in nd6_dad_timer (4) -1 2 1122d 1183d
suppressed report (3) -1 2 1134d 1218d
freebsd boot error: Fatal trap NUM: page fault while in kernel mode -1 159 1107d 1109d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 2 (3) -1 4 1169d 1169d
panic: prefix ADDR has referencing addresses (3) 2 1 1188d 1188d
freebsd boot error: can't ssh into the instance (3) -1 1 1201d 1201d
freebsd build error (15) -1 1099 1128d 1242d
panic: About to free ctl:ADDR so:ADDR and its in 1 2 C 20 1483d 1926d
Fatal trap NUM: page fault in in6_selecthlim -1 15 1245d 1608d
panic: Assertion mtx_unowned(m) failed at /syzkaller/managers/main/kernel/sys/kern/kern_mutex.c:LINE (2) 2 1 1251d 1251d
Fatal trap NUM: page fault in nd6_dad_timer (3) -1 3 1289d 1384d
panic: mtx_lock_spin: recursed on non-recursive mutex msgbuf @ /syzkaller/managers/main/kernel/sys/kern/subr_msgbuf.c:LI 2 1 1297d 1297d
freebsd boot error: can't ssh into the instance (2) -1 1 1317d 1317d
freebsd test error: SYZFATAL: BUG: executor version returned bad result: "" -1 52 1289d 1290d
suppressed report (2) -1 2 1337d 1343d
Fatal trap NUM: page fault in pfi_kkif_update (3) -1 1 1338d 1338d
panic: ASan: Invalid access, NUM-byte read at ADDR, StackLeft(f1) (2) 2 1 1340d 1340d
panic: _mtx_lock_sleep: recursed on non-recursive mutex sctp-tcb @ /syzkaller/managers/i386/kernel/sys/netinet/sctp_pcb. (2) 2 1 1343d 1343d
Fatal trap NUM: page fault in knlist_remove_kq -1 1 1346d 1346d
Fatal trap NUM: page fault in sctp_notify_stream_reset_add -1 1 1354d 1354d
freebsd build error (14) -1 18 1337d 1338d
panic: ASan: Invalid access, NUM-byte write at ADDR, UseAfterScope(f8) (2) 2 1 1370d 1370d
panic: ASan: Invalid access, NUM-byte read in kvprintf 2 C 5 1579d 1598d
panic: Assertion done != job_total_nbytes failed at /syzkaller/managers/i386/kernel/sys/kern/sys_socket.c:LINE 2 1 1383d 1383d
panic: rack_output:NUM: r.start:ADDR < SND.UNA:ADDR; tp:ADDR, rack:ADDR, rsm:ADDR 2 C 270 1357d 1753d
panic: vm_fault_lookup: fault on nofault entry, addr: ADDR (3) 2 1 1392d 1392d
panic: prefix ADDR has referencing addresses (2) 2 3 1399d 1507d
Fatal trap NUM: page fault in sctp_wakeup_the_read_socket (4) -1 1 1401d 1401d
panic: Assertion task->ta_pending == NUM failed at /syzkaller/managers/i386/kernel/sys/kern/sys_socket.c:LINE 2 1 1405d 1405d
panic: Assertion mtx_unowned(m) failed at /syzkaller/managers/i386/kernel/sys/kern/kern_mutex.c:LINE (2) 2 2 1409d 1477d
Fatal trap NUM: page fault in kasan_atomic_load_int (2) -1 3 1411d 1480d
Fatal trap NUM: page fault in in6_unlink_ifa (2) -1 1 1420d 1420d
Fatal trap NUM: page fault in __asan_load8_noabort -1 1 1429d 1429d
SYZFAIL: too much cover (2) -1 120 1401d 1457d
Fatal trap NUM: page fault in memcpy_erms (2) -1 1 1438d 1438d
SYZFAIL: cover mmap failed -1 1 1440d 1440d
panic: ASan: Invalid access, NUM-byte read at ADDR, UMAUseAfterFree(fd) (3) 2 C 58 1355d 1408d
SYZFAIL: tun: read failed (3) -1 1 1453d 1453d
panic: strq ADDR not scheduled (3) 2 1 1454d 1454d
Fatal trap NUM: general protection fault in pfi_kkif_update (2) -1 1 1467d 1467d
panic: spin lock held too long (2) 2 1 1468d 1468d
SYZFAIL: invalid kcov comp type (2) -1 1 1471d 1471d
panic: ASan: Invalid access, NUM-byte read at ADDR, StackMiddle(f2) 2 1 1472d 1472d
panic: Don't own TCB lock 2 1 1475d 1475d
Fatal trap NUM: page fault in nd6_dad_timer (2) -1 1 1479d 1479d
syzkaller: make host failed: failed to run ["gmake" "host" "ci"]: exit status 2 (2) -1 106 1401d 1463d
freebsd build error (12) -1 2 1441d 1441d
panic: pmap_kasan_enter_alloc_4k: no memory to grow shadow map (2) 2 C 602 1583d 1632d
panic: out of swap space 2 C 15036 1505d 1748d
panic: ASan: Invalid access, NUM-byte read at ADDR, UseAfterScope(f8) 2 syz 7 1479d 1561d
panic: Queues are not empty when handling SHUTDOWN-ACK 2 syz 142 1512d 2082d
SYZFAIL: output overflow (2) -1 syz 14 1518d 1688d
panic: hpts_sane_input_insert: hpts:ADDR inp:ADDR incorrect CPU 2 C 186 1537d 1695d
SYZFAIL: tun: can't open device -1 syz 159 1639d 1831d
panic: m_copydata, offset > size of mbuf chain 2 syz 11 1634d 1637d
panic: hpts_sane_input_remove: hpts:ADDR inp:ADDR incorrect CPU 2 syz 5 1644d 1689d
panic: ASan: Invalid access, 2-byte read in sctp_common_input_processing 2 syz 8 1644d 1692d
panic: mtx_lock() of destroyed mutex at sys/netinet/sctp_pcb.c:LINE 2 syz 24 1703d 2129d
Fatal trap 9: general protection fault in __mtx_lock_sleep -1 syz 295 1697d 2371d
Fatal trap 9: general protection fault in sctp_timer_stop -1 syz 232 1697d 2011d
Fatal trap NUM: page fault in sctp_ss_default_add -1 1 1481d 1481d
panic: ASan: Invalid access, 8-byte read in __mtx_lock_sleep 2 syz 23 1600d 1683d
panic: ASan: Invalid access, 8-byte read in sctp_lower_sosend 2 syz 49 1567d 1675d
panic: ASan: Invalid access, 1-byte write in sctp_lower_sosend 2 syz 332 1588d 1693d
Fatal trap 12: page fault in __mtx_lock_sleep -1 syz 151 1698d 2346d
panic: Warning: Last msg marked incomplete, yet nothing left? 2 C 34 1493d 1747d
Fatal trap NUM: page fault in pfi_kkif_update (2) -1 1 1504d 1504d
panic: TCP stack bbr requested tcp_drop(ADDR) at connect() 2 1 1508d 1508d
panic: ASan: Invalid access, NUM-byte read in __mtx_lock_flags 2 C 188 1567d 1633d
panic: ASan: Invalid access, 8-byte write in sctp_timer_stop 2 C 269 1567d 1693d
Fatal trap 9: general protection fault in sctp_lower_sosend (2) -1 C 446 1697d 2017d
panic: ASan: Invalid access, NUM-byte read in sctp_ss_default_select 2 C 1 1636d 1636d
Fatal trap NUM: page fault while in kernel mode (3) -1 3 1522d 1536d
freebsd test error: lost connection to test machine (4) -1 896 1502d 1563d
panic: ASan: Invalid access, NUM-byte write at ADDR, StackMiddle(f2) 2 1 1537d 1537d
panic: ASan: Invalid access, NUM-byte read at ADDR, StackLeft(f1) 2 2 1545d 1555d
Fatal trap NUM: page fault in __mtx_lock_flags -1 2 1546d 1550d
freebsd build error (11) -1 1 1466d 1466d
panic: lock (sleep mutex) sctp-tcb not locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:LINE (3) 2 1 1556d 1556d
panic: ASan: Invalid access, 4-byte read in sctp_timer_stop 2 27 1566d 1693d
panic: ASan: Invalid access, NUM-byte write in vn_read_from_obj 2 5 1567d 1610d
panic: ASan: Invalid access, NUM-byte read in sctp_ss_default_add 2 27 1567d 1620d
panic: ASan: Invalid access, NUM-byte read in sctp_free_assoc 2 3 1568d 1640d
panic: ASan: Invalid access, NUM-byte read in ip6_input 2 1 1570d 1570d
panic: ASan: Invalid access, NUM-byte read in witness_checkorder 2 3 1579d 1629d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (10) -1 2 1495d 1495d
SYZFAIL: tun: read failed (2) -1 19 1584d 1618d
panic: mtx_lock() of destroyed mutex at sys/netinet/sctp_output.c:LINE 2 1 1589d 1589d
panic: ASan: Invalid access, 8-byte read in callout_process 2 5 1593d 1692d
panic: ASan: Invalid access, NUM-byte write in devfs_get_cdevpriv 2 1 1594d 1594d
panic: ASan: Invalid access, NUM-byte read in __cap_rights_is_set 2 1 1600d 1600d
panic: prefix ADDR has referencing addresses 2 1 1601d 1601d
panic: strq ADDR not scheduled (2) 2 1 1604d 1604d
Fatal trap NUM: page fault in sctp_wakeup_the_read_socket -1 2 1605d 1621d
Fatal trap NUM: page fault in in6_unlink_ifa -1 1 1608d 1608d
Fatal trap NUM: page fault in pfi_kkif_update -1 1 1611d 1611d
Fatal trap NUM: general protection fault in pfi_kkif_update -1 1 1615d 1615d
panic: ASan: Invalid access, 4-byte read in sctp_gather_internal_ifa_flags 2 14 1621d 1692d
Fatal trap NUM: page fault in nd6_dad_timer -1 1 1621d 1621d
freebsd build error (10) -1 1 1537d 1537d
corrupted report (3) -1 3 1633d 1747d
panic: sctp_timer_start of type 5: inp = ADDR, stcb->sctp_ep ADDR 2 10 1642d 1694d
panic: ASan: Invalid access, 2-byte read in sctp_chunk_output 2 4 1643d 1687d
panic: ASan: Invalid access, 2-byte read in sctp_ss_fcfs_select 2 3 1648d 1676d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:LINE (3) 2 7 1649d 1868d
panic: sctp_timeout_handler of type 5: inp = ADDR, stcb->sctp_ep ADDR 2 2 1650d 1681d
panic: ASan: Invalid access, NUM-byte read in sctp_ss_default_remove 2 1 1651d 1651d
panic: ASan: Invalid access, NUM-byte read in callout_cc_add 2 1 1656d 1656d
panic: ASan: Invalid access, NUM-byte read in smp_targeted_tlb_shootdown 2 2 1610d 1612d
panic: ASan: Invalid access, NUM-byte read in smp_masked_invlpg_range 2 C 1 1586d 1586d
panic: size_on_reasm_queue is 1412 2 1 1667d 1667d
freebsd test error: lost connection to test machine (3) -1 105 1639d 1692d
panic: ASan: Invalid access, 4-byte read at ADDR, RedZonePartial(3) 2 9 1686d 1696d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (9) -1 6 1604d 1606d
panic: 2 chunks left for stream 0. 2 1 1690d 1690d
panic: H:ADDR p_prev_slot:NUM not equal to p_cur_slot:NUM 2 15 1695d 1861d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/i386/kernel/sys/netinet/sctp_pcb.c:LINE 2 23 1697d 1952d
panic: ASan: Invalid access, 4-byte read at ADDR, UMAUseAfterFree(fd) 2 300 1667d 1696d
panic: _mtx_lock_sleep: recursed on non-recursive mutex sctp-create @ /syzkaller/managers/main/kernel/sys/netinet/sctp_p 2 1 1702d 1702d
panic: lock (sleep mutex) sctp-tcb not locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:LINE (2) 2 2 1704d 1705d
Fatal trap 12: page fault in __mtx_assert (5) -1 7 1706d 1739d
panic: rsm:ADDR nrsm:ADDR rack:ADDR -- rsm->m is NULL? 2 C 25 1752d 1757d
panic: ASan: Invalid access, 4-byte read in in6_sin6_2_sin 2 C 8 1676d 1694d
panic: ASan: Invalid access, 4-byte read in sctp_connectx_helper_find 2 10 1693d 1693d
panic: Most recently used by in6_mfilter 2 3 1757d 1757d
panic: Most recently used by tcp_fsb 2 C 149 1757d 1757d
panic: rack_output: IP version incorrect: 0 2 C 31 1757d 1757d
panic: Most recently used by xform 2 C 115 1757d 1757d
Fatal trap 9: general protection fault in pfi_kkif_update -1 3 1717d 1759d
panic: _mtx_lock_sleep: recursed on non-recursive mutex sctp-tcb @ /syzkaller/managers/main/kernel/sys/netinet/sctp_pcb. (2) 2 3 1718d 1767d
Fatal trap 12: page fault in sctp_add_to_readq -1 1 1718d 1718d
Fatal trap 12: page fault in in6_unlink_ifa (2) -1 syz 20 1703d 2091d
suppressed report -1 8 1655d 1792d
panic: ASan: Invalid access, 8-byte read at ADDR, UMAUseAfterFree(fd) 2 88 1694d 1696d
panic: ASan: Invalid access, 8-byte write at ADDR, UMAUseAfterFree(fd) 2 19 1694d 1695d
panic: size_on_reasm_queue is 1244 2 1 1725d 1725d
panic: H:ADDR p_prev_slot:LINE not equal to p_cur_slot:LINE 2 1 1730d 1730d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (8) -1 10 1660d 1833d
freebsd build error (8) -1 1 1693d 1692d
SYZFAIL: invalid kcov comp type -1 1443 1701d 1832d
panic: 1 chunks left for stream 0. 2 1 1737d 1737d
Fatal trap 9: general protection fault in sctp_ss_fb_clear -1 1 1745d 1745d
Fatal trap 12: page fault in callout_process (3) -1 1 1746d 1746d
Fatal trap 9: general protection fault in m_tag_locate -1 1 1752d 1752d
Fatal trap 12: page fault in sctp_inpcb_free -1 4 1770d 1870d
panic: mtx_unlock() of destroyed mutex at sys/netinet/sctp_usrreq.c:LINE 2 1 1771d 1771d
Fatal trap 12: page fault in exit1 -1 1 1785d 1785d
freebsd boot error: panic: ASan: Invalid access, 8-byte write at ADDR, MallocRedZone(fb) -1 18 1697d 1697d
freebsd build error (7) -1 2 1697d 1697d
Fatal trap 12: page fault in sctp_free_assoc -1 2 1793d 1848d
SYZFAIL: too much cover -1 2 1796d 1798d
freebsd build error (6) -1 6 1731d 1731d
panic: interrupts enabled 2 C 191 1732d 1732d
Fatal trap 12: page fault in sctp_is_vtag_good -1 1 1829d 1829d
panic: H:ADDR p_prev_slot:LINE not equal to p_cur_slot:NUM 2 1 1834d 1834d
Fatal trap 9: general protection fault in sctp_cmpaddr -1 13 1836d 1971d
Fatal trap 12: page fault in __mtx_assert (4) -1 2 1837d 1852d
panic: Memory modified after free ADDR(736) val=0 @ ADDR 2 21 1838d 1971d
SYZFAIL: output overflow -1 syz 38 1754d 1832d
SYZFAIL: tun: read failed -1 syz 1040 1751d 1832d
panic: sbflush_internal: ccc 0 mb 0 mbcnt 256 2 C 23 2446d 2537d
freebsd build error (5) -1 12 1828d 1857d
freebsd boot error: Fatal trap 12: page fault while in kernel mode -1 78 1773d 1774d
panic: _mtx_lock_sleep: recursed on non-recursive mutex sctp-create @ /syzkaller/managers/i386/kernel/sys/netinet/sctp_p 2 1 1845d 1845d
panic: Counter goes negative (2) 2 2 1849d 1870d
panic: lock (sleep mutex) sctp-tcb not locked @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:LINE 2 1 1854d 1854d
Fatal trap 9: general protection fault in sctp_chunk_output -1 17 1856d 1973d
freebsd test error: lost connection to test machine (2) -1 45 1767d 1768d
panic: Most recently used by sctp_stro 2 1 1864d 1864d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/i386/kernel/sys/kern/uipc_socket.c:LINE 2 1 1865d 1865d
panic: H:ADDR p_prev_slot:NUM not equal to p_cur_slot:ADDR 2 1 1869d 1869d
Fatal trap 12: page fault in sctp_ss_default_add -1 1 1874d 1874d
Fatal trap 9: general protection fault in sctp_is_vtag_good -1 2 1882d 1960d
panic: Assertion owner->td_proc->p_magic == P_MAGIC failed at /syzkaller/managers/i386/kernel/sys/kern/subr_turnstile.c: 2 3 1893d 1942d
Fatal trap 9: general protection fault in udp6_common_ctlinput (2) -1 1 1908d 1908d
panic: size_on_reasm_queue is 4 2 1 1914d 1914d
panic: _mtx_lock_sleep: recursed on non-recursive mutex sctp-tcb @ /syzkaller/managers/main/kernel/sys/netinet/sctp_pcb. 2 3 1915d 1947d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (7) -1 8 1834d 1851d
Fatal trap 9: general protection fault in ck_epoch_poll_deferred (2) -1 4 1934d 2111d
Fatal trap 12: page fault in __mtx_assert (3) -1 3 1946d 1981d
panic: pfi_dynaddr_setup: non-NULL dyn 2 C 35 1887d 2128d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:LINE (2) 2 2 1961d 1962d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/i386/kernel/sys/kern/uipc_ktls.c:LINE 2 C 6 1882d 2083d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (6) -1 34 1888d 1984d
Fatal trap 9: general protection fault in memcmp (2) -1 1 1932d 1932d
freebsd build error (4) -1 6 1877d 1907d
panic: Most recently used by kdtrace 2 5 1963d 1964d
panic: Flight size-express incorrect? 2 2 1967d 1970d
panic: sleepq_add: td ADDR to sleep on wchan ADDR with sleeping prohibited 2 C 6804 1959d 1997d
panic: pfi_kif_unref: ADDR has zero refs 2 C 2 1964d 1964d
panic: thread with borrowed priority returning to userland 2 syz 8 2087d 2121d
panic: tp:ADDR rc_sacked:LINE > out:LINE 2 C 185 2114d 2124d
panic: m_copydata, length > size of mbuf chain 2 C 93 2124d 2145d
panic: sbsndptr_noadv: sb_mb is NULL 2 C 686 2124d 2145d
panic: mtx_lock() of destroyed mutex at sys/kern/sys_socket.c:LINE 2 syz 43 2173d 2485d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/i386/kernel/sys/kern/sys_socket.c:LINE 2 syz 3 2208d 2223d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/main/kernel/sys/netinet/in_pcb.c:LINE 2 C 9 2228d 2228d
panic: _mtx_lock_sleep: recursed on non-recursive mutex rtentry @ /syzkaller/managers/main/kernel/sys/net/route.c:LINE 2 C 4 2274d 2461d
panic: mutex pcbinfohash not owned at /syzkaller/managers/i386/kernel/sys/netinet6/in6_pcb.c:LINE 2 syz 6 2302d 2303d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/main/kernel/sys/netinet6/in6_ifattach.c:LINE 2 syz 4 2324d 2326d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/i386/kernel/sys/netinet6/in6_ifattach.c:LINE (2) 2 syz 1 2326d 2326d
Fatal trap 12: page fault in thread_lock_validate -1 syz 1 2339d 2339d
panic: inp_leave_group: imf_sources not empty (2) 2 C 70 2445d 2478d
panic: non-kernel pmap pmap ADDR cpu 0 pcid 0 2 syz 1 2454d 2454d
panic: _mtx_lock_sleep: recursed on non-recursive mutex rtentry @ /syzkaller/managers/i386/kernel/sys/net/route.c:LINE 2 syz 1 2461d 2461d
panic: sbflush_internal: ccc 0 mb 0 mbcnt 512 2 syz 5 2461d 2519d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/main/kernel/sys/kern/sys_socket.c:LINE 2 syz 5 2474d 2485d
panic: Memory modified after free ADDR(256) val=0 @ ADDR 2 syz 6 2478d 2485d
panic: m_uiotombuf: progress != total 2 syz 2 2537d 2537d
panic: Bad tailq NEXT(ADDR->tqh_last) != NULL (2) 2 C 2194 1922d 2144d
panic: sx_try_xlock() of destroyed sx at sys/kern/uipc_sockbuf.c:LINE 2 8 2057d 2227d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/i386/kernel/sys/netinet/sctputil.c:LINE 2 1 2063d 2063d
corrupted report (2) -1 4 2069d 2101d
Fatal trap 12: page fault in tdq_notify -1 1 2075d 2075d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (5) -1 2 2024d 2024d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 2 (2) -1 28 1992d 1994d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/main/kernel/sys/netinet/sctp_pcb.c:LINE 2 1 2094d 2094d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/main/kernel/sys/dev/hyperv/hvsock/hv_sock.c:LINE 2 2 2107d 2107d
panic: _mtx_lock_sleep: recursed on non-recursive mutex so_snd @ /syzkaller/managers/main/kernel/sys/kern/uipc_socket.c: 2 1 2108d 2108d
panic: size_on_all_streams smaller than control length 2 1 2112d 2112d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (4) -1 4 2024d 2024d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (3) -1 222 2030d 2355d
freebsd test error: lost connection to test machine -1 1269 2087d 2159d
freebsd build error (3) -1 13 2094d 2114d
Fatal trap 9: general protection fault in route_output -1 5 2133d 2134d
Fatal trap 9: general protection fault in fib4_lookup_nh_ext -1 4 2133d 2134d
Fatal trap 9: general protection fault in fib6_lookup_nh_basic -1 2 2133d 2134d
Fatal trap 9: general protection fault in pfi_kif_update -1 1 2134d 2134d
panic: mtx_lock() of spin mutex (null) @ /syzkaller/managers/main/kernel/sys/modules/tcp/rack/../../../netinet/tcp_stack 2 1 2140d 2140d
panic: refcount ADDR wraparound (2) 2 3883 2133d 2134d
Fatal trap 9: general protection fault in fib6_lookup -1 1494 2133d 2134d
Fatal trap 9: general protection fault in ip_output -1 624 2133d 2134d
Fatal trap 9: general protection fault in fib4_lookup -1 826 2133d 2134d
Fatal trap 9: general protection fault in nhop_free -1 110 2133d 2134d
Fatal trap 9: general protection fault while in kernel mode (2) -1 18 2133d 2134d
Fatal trap 9: general protection fault in sctp_source_address_selection -1 23 2133d 2134d
freebsd test error: timed out (3) -1 1 2184d 2184d
freebsd build error (2) -1 10 2213d 2269d
syzkaller: make host failed: failed to run ["gmake" "host" "ci"]: exit status 2 -1 2 2129d 2129d
panic: Memory modified after free ADDR(112) val=ADDR @ ADDR 2 1 2223d 2223d
panic: Bad link elm ADDR next->prev != elm (2) 2 1 2227d 2227d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/i386/kernel/sys/netinet/in_pcb.c:LINE 2 7 2227d 2228d
corrupted report -1 1 2228d 2228d
panic: uma_zalloc: Bucket pointer mangled. 2 1 2230d 2230d
panic: vm_page_free_prep: freeing wired page ADDR 2 C 2 2478d 2478d
freebsd boot error: Fatal trap 12: page fault in _thread_lock -1 1 2175d 2175d
Fatal trap 12: page fault in sctp_inpcb_bind -1 1 2259d 2259d
Fatal trap 9: general protection fault in ck_epoch_poll_deferred -1 1 2266d 2266d
Fatal trap 12: page fault in in6_unlink_ifa -1 1 2279d 2279d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/main/kernel/sys/netinet6/in6.c:LINE 2 1 2311d 2311d
freebsd test error: timed out (2) -1 3 2321d 2321d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/i386/kernel/sys/netinet6/in6.c:LINE 2 1 2330d 2330d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/main/kernel/sys/netinet/igmp.c:LINE 2 2 2333d 2333d
panic: uma: Freed item ADDR did not belong to zone mbuf_cluster 2 1 2338d 2338d
Fatal trap 12: page fault in callout_process -1 2 2339d 2454d
Fatal trap 12: page fault while in kernel mode (2) -1 2 2340d 2456d
panic: map ADDR end = ADDR, next->start = 0 2 1 2344d 2344d
Fatal trap 12: page fault in pmap_activate_sw -1 1 2361d 2361d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/main/kernel/sys/netinet/in_mcast.c:LINE 2 15 2333d 2333d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/i386/kernel/sys/netinet/in_mcast.c:LINE 2 21 2333d 2333d
panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/i386/kernel/sys/net/if.c:LINE 2 1669 2333d 2334d
freebsd boot error: panic: Assertion in_epoch(net_epoch_preempt) failed at /syzkaller/managers/main/kernel/sys/net/if.c:LINE -1 24 2334d 2334d
panic: cap_rights_is_vset:LINE (2) 2 1 2374d 2374d
Fatal trap 9: general protection fault in udp6_common_ctlinput -1 1 2380d 2380d
freebsd build error -1 4 2383d 2383d
panic: pmap_growkernel: no memory to grow kernel 2 4 2473d 2493d
panic: Most recently used by temp 2 4 2482d 2486d
panic: Bad tailq NEXT(ADDR->tqh_last) != NULL 2 1 2487d 2487d
panic: Assertion lock == sq->sq_lock failed at /syzkaller/managers/main/kernel/sys/kern/subr_sleepqueue.c:LINE 2 1 2484d 2484d
panic: Duplicate free of ADDR from zone ADDR(16) slab ADDR(241) 2 1 2480d 2480d
Fatal trap 12: page fault in fifo_close -1 58 2472d 2484d
Fatal trap 12: page fault in __mtx_assert (2) -1 1 2480d 2480d
panic: pmap_demote_pde: firstpte and newpte map different physical addresses 2 2 2466d 2466d
panic: Bad link elm ADDR next->prev != elm 2 11 2475d 2493d
panic: Most recently used by ip6opt 2 3 2459d 2490d
Fatal trap 12: page fault in uma_dbg_free -1 1 2479d 2479d
Fatal trap 12: page fault in uma_dbg_alloc -1 1 2485d 2485d
Fatal trap 9: general protection fault in sys_nlm_syscall -1 2 2480d 2483d
panic: sctp: no chunks on the queues 2 188 2442d 2534d
Fatal trap 12: page fault in ip_output -1 2 2485d 2486d
Fatal trap 9: general protection fault in memcmp -1 23 2473d 2496d
Fatal trap 12: page fault in link_elf_search_symbol -1 5 2446d 2485d
Fatal trap 12: page fault in pmap_remove_pte -1 1 2473d 2473d
freebsd test error: timed out -1 14 2502d 2529d
Fatal trap 9: general protection fault in sbfree -1 2 2522d 2528d
Fatal trap 9: general protection fault in unp_gc -1 1 2536d 2536d
panic: sbready: sb ADDR NULL fnrdy 2 1 2538d 2538d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 2 -1 4 2520d 2521d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (2) -1 2 2464d 2464d
syzkaller: make target failed: failed to run ["gmake" "target"]: exit status 2 -1 4 2466d 2466d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 -1 1 2527d 2527d
lost connection to test machine -1 10 2541d 2541d