syzbot

 sign-in | mailing list | source | docs
🐞 Open [197]
🐞 Fixed [376]
🐞 Invalid [1346]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

Instances [tested repos]:
Name Last active Uptime Corpus Coverage 🛈 Crashes Execs Kernel build syzkaller build Bugs
Commit Config Freshness Status Commit Freshness Status All Only
ci2-netbsd 388d broken ef911aaccf6f .config 388d failing 0d1223f1 9h18m all only
ci2-netbsd-kmsan 388d broken ef911aaccf6f .config 388d failing 0d1223f1 9h18m all only
ci2-netbsd-kubsan 388d broken 1cd85761873a .config 397d failing 0d1223f1 9h18m all only
upstream (197):
Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Last activity
netbsd test error: SYZFATAL: image testing failed w/o kernel bug (2) -1 35 5h12m 69d 69d
netbsd test error: MSan: Uninitialized Memory in fpu_clear -1 342 5h25m 81d 81d
netbsd test error: UBSan: Undefined Behavior in AcpiRsSetResourceHeader -1 688 5h51m 142d 142d
netbsd test error: SYZFAIL: posix_spawnp failed -1 1842 8d05h 211d 211d
SYZFAIL: leak checking is not implemented -1 syz 402 388d 427d 427d
UBSan: Undefined Behavior in VFS_STATVFS -1 syz 2 424d 428d 428d
ASan: Unauthorized Access in sin_print -1 C 10 425d 429d 429d
UBSan: Undefined Behavior in mutex_obj_hold -1 C 4 429d 429d 429d
UBSan: Undefined Behavior in kpsignal (3) -1 syz 8 389d 429d 429d
MSan: Uninitialized Memory in layer_lookup -1 C 17 388d 433d 433d
page fault in tmpfs_loadvnode (2) -1 C 7 407d 433d 433d
UBSan: Undefined Behavior in tmpfs_loadvnode -1 C 12 390d 438d 432d
panic: pmap_pp_remove: mapping not present 2 C 2 430d 448d 448d
MSan: Uninitialized Memory in mount_domount -1 syz 13 396d 452d 452d
panic: ufsdirhash_dirtrunc: blocks in use 2 C 102 388d 453d 439d
assert failed: !samepage (3) -1 C 2 452d 454d 452d
ASan: Unauthorized Access in uao_swap_off (2) -1 C 3 403d 456d 450d
panic: LOCKDEBUG: Reader / writer lock error: rw_vector_exit,NUM: no shared locks held by LWP 2 C 19 390d 456d 435d
MSan: Uninitialized Memory in rip6_ctlinput -1 C 1 578d 578d 578d
panic: kernel diagnosan-NUM.c.syzkallertic assertion "sn->sn_opencnt" failed: file "/syzkaller/managers/ci2-netbsd-kubsa 2 C 1 614d 614d 614d
MSan: Uninitialized Memory in ufs_rmdir -1 syz 5 398d 624d 624d
assert failed: fli->fli_trans_cnt == NUM (2) -1 syz 62 388d 632d 564d
ASan: Unauthorized Access in ufs_rmdir -1 syz 54 389d 654d 654d
page fault in uao_swap_off -1 C 6 430d 681d 676d
SYZFAIL: failed to mkdir (2) -1 syz 3 614d 681d 681d
MSan: Uninitialized Memory in uao_detach -1 C 3 571d 682d 622d
MSan: Uninitialized Memory in fd_getfile -1 C 8 390d 685d 685d
panic: hook_disestablish: hook ADDR not established 2 syz 1 688d 688d 688d
UBSan: Undefined Behavior in _icmp6_input.cold -1 C 2 690d 690d 690d
panic: cpu0: found cpu1 heart stopped beating and unresponsive 2 C 22 401d 692d 626d
UBSan: Undefined Behavior in union_revoke -1 C 1 717d 717d 717d
page fault in union_revoke -1 C 3 715d 717d 717d
assert failed: rt->rt_ifp != NULL -1 syz 12 549d 717d 582d
panic: LOCKDEBUG: Reader / writer lock error: rw_destroy,NUM: assertion failed: (rw->rw_owner & ~RW_NODEBUG) == NUM 2 C 16 393d 723d 711d
panic: cpu1: time has not advanced in NUM heartbeats 2 C 390 376d 729d 729d
panic: cpu0: softints stuck for NUM seconds 2 C 1043 358d 732d 732d
panic: cpu1: softints stuck for NUM seconds 2 C 342 358d 732d 614d
page fault in Xintr_x2apic_ltimer (2) -1 C 10 389d 733d 656d
page fault in uvm_pgflcache_alloc -1 C 1 739d 739d 739d
ASan: Unauthorized Access in sl_compress_setup (2) -1 C 8 388d 739d 739d
UBSan: Undefined Behavior in union_parsepath -1 syz 3 410d 751d 750d
UBSan: Undefined Behavior in uao_swap_off -1 C 7 400d 754d 688d
UBSan: Undefined Behavior in uioskip -1 C 2 755d 755d 755d
ASan: Unauthorized Access in uao_detach -1 C 32 392d 756d 756d
UBSan: Undefined Behavior in uao_detach (2) -1 C 40 392d 756d 756d
page fault in uao_detach -1 C 30 389d 756d 756d
ASan: Unauthorized Access in callout_hardclock -1 C 22 388d 756d 756d
SYZFAIL: failed to mkdtemp -1 syz 9 591d 762d 759d
assert failed: mutex_owned(&tty_lock) -1 C 37 442d 767d 767d
UBSan: Undefined Behavior in device_xname (2) -1 C 4 696d 774d 754d
assert failed: dev == sc->sc_dev -1 C 2 701d 774d 774d
ASan: Unauthorized Access in config_detach_release -1 C 1 774d 774d 774d
MSan: Uninitialized Memory in sysctl_rtable -1 C 124 402d 785d 785d
assert failed: KERNEL_LOCKED_P() (2) -1 C 46 786d 786d 786d
MSan: Uninitialized Memory in union_statvfs -1 syz 1 796d 796d 796d
ASan: Unauthorized Access in dkwedge_add -1 C 16 555d 796d 754d
ASan: Unauthorized Access in lf_advlock -1 syz 3 389d 797d 797d
ASan: Unauthorized Access in in6pcb_notify -1 C 184 388d 798d 798d
MSan: Uninitialized Memory in callout_softclock -1 C 16 389d 799d 787d
MSan: Uninitialized Memory in sysctl_dumpentry -1 C 2 667d 801d 801d
panic: stack overflow detected; terminated (2) 2 C 6 391d 801d 801d
assert failed: entry->next->start <= entry->end -1 C 28 399d 804d 804d
ASan: Unauthorized Access in callout_softclock -1 C 14 389d 819d 787d
ASan: Unauthorized Access in rt_msg2 -1 C 22 390d 819d 785d
panic: vrelel: bad ref count (2) 2 C 788 388d 825d 808d
assert failed: (use & VUSECOUNT_MASK) > NUM (2) -1 syz 82 388d 835d 755d
ASan: Unauthorized Access in ifreq_setaddr (3) -1 C 510 388d 839d 839d
MSan: Uninitialized Memory in ifreq_setaddr (2) -1 C 201 388d 839d 839d
UBSan: Undefined Behavior in psref_release -1 C 185 388d 839d 839d
panic: The psref isn't in the list (releasing unused psref?): psref=ADDR target=ADDR 2 C 535 388d 839d 839d
MSan: Uninitialized Memory in psref_release -1 C 202 388d 839d 839d
panic: state is LOADED, usecount NUM, expected ACTIVE at genfs_lock:NUM 2 C 20 389d 840d 840d
assert failed: c->c_func != NULL -1 C 12 390d 852d 726d
panic: kmem_free(ADDR, NUM) != allocated size NUM; overwrote? (2) 2 C 7 400d 858d 433d
UBSan: Undefined Behavior in physio_done.cold -1 C 2 859d 859d 859d
MSan: Uninitialized Memory in compat_43_sys_recvmsg -1 C 9 747d 862d 862d
ASan: Unauthorized Access in ttioctl (3) -1 syz 30 389d 864d 760d
ASan: Unauthorized Access in rn_match -1 C 2 865d 865d 865d
assert failed: np->netc_anon == NULL -1 C 4 412d 868d 868d
assert failed: ne->ne_defexported.netc_anon == NULL -1 C 6 412d 868d 867d
ASan: Unauthorized Access in export -1 C 37 388d 872d 872d
protection fault in xrstor64 -1 C 110 866d 872d 872d
ASan: Unauthorized Access in m_copyback_internal -1 C 11 398d 881d 881d
MSan: Uninitialized Memory in kpreempt -1 C 1 887d 887d 887d
ASan: Unauthorized Access in union_statvfs -1 syz 34 389d 891d 879d
MSan: Uninitialized Memory in db_frame_info -1 C 13 401d 896d 839d
UBSan: Undefined Behavior in compat_43_sys_getdirentries -1 C 2 896d 896d 896d
MSan: Uninitialized Memory in ttwrite -1 C 1 905d 905d 905d
page fault in __asan_load4 (4) -1 C 69 388d 934d 934d
page fault in ptyfs_unmount -1 syz 1 937d 937d 937d
panic: LOCKDEBUG: Mutex error: mutex_vector_enter,NUM: locking against myself 2 C 1178 388d 942d 942d
page fault in iostat_free -1 C 2 950d 950d 950d
ASan: Unauthorized Access in callout_stop (2) -1 syz 13 389d 961d 931d
page fault in sl_compress_setup -1 C 83 389d 993d 993d
UBSan: Undefined Behavior in ffs_realloccg.cold (2) -1 C 4 412d 1007d 1007d
assert failed: !dev->dv_detach_done -1 C 10 799d 1022d 1022d
ASan: Unauthorized Access in config_detach -1 C 11 841d 1023d 1020d
UBSan: Undefined Behavior in sys_modctl -1 C 15 407d 1026d 1026d
page fault in kasan_kcopy -1 C 1 1033d 1033d 1033d
page fault in __asan_store1 (2) -1 C 24 408d 1039d 1007d
MSan: Uninitialized Memory in ksyms_getname -1 C 26 442d 1047d 987d
assert failed: sn->sn_opencnt (2) -1 C 3106 388d 1047d 1032d
panic: sw_reg_strategy: swap to sparse file 2 C 1800 388d 1050d 585d
page fault in __asan_load8 (7) -1 C 280 388d 1053d 1030d
panic: LOCKDEBUG: Reader / writer lock error: rw_vector_enter,NUM: locking against myself 2 C 36454 388d 1053d 1053d
MSan: Uninitialized Memory in quota1_handle_cmd_put -1 C 36 596d 1058d 1058d
MSan: Uninitialized Memory in export -1 C 27 392d 1058d 1058d
MSan: Uninitialized Memory in kauth_cred_setgroups -1 C 46 391d 1058d 1044d
ASan: Unauthorized Access in nfs_export_update_30 (2) -1 C 383 388d 1058d 1058d
MSan: Uninitialized Memory in cpu_softintr_p -1 C 1 1062d 1062d 1062d
MSan: Uninitialized Memory in db_nextframe -1 C 82 401d 1062d 1059d
UBSan: Undefined Behavior in compat_ifconf (2) -1 C 630 388d 1063d 1051d
assert failed: (cnp->cn_flags & LOCKPARENT) == NUM || searchdir == NULL || VOP_ISLOCKED(searchdir) == LK_EXCLUSIVE (2) -1 C 40 431d 1081d 1079d
assert failed: mp->mnt_refcnt > NUM || mutex_owned(&mountlist_lock) -1 C 40 391d 1087d 937d
assert failed: !dev->dv_detached -1 C 2 1054d 1089d 1089d
panic: ASan: Unauthorized Access In ADDR: Addr ADDR [NUM bytes, read, PoolUseAfterFree] 2 C 7 436d 1095d 1092d
panic: bpf_change_type 2 C 21 403d 1147d 1147d
panic: pmap_get_physpage: out of memory (4) 2 C 114351 388d 1162d 928d
UBSan: Undefined Behavior in hardupdate -1 C 112 392d 1174d 840d
SYZFATAL: executor NUM failed NUM times: failed to start executor binary: fork/exec /root/syz-executor: permission denie -1 syz 159713 388d 1179d 1179d
assert failed: dev->ud_ifaces == NULL -1 C 8901 391d 1215d 1116d
ASan: Unauthorized Access in psignal (3) -1 C 17 398d 1215d 1215d
page fault in Xintr_legacy8 -1 C 6 389d 1272d 1272d
assert failed: sn->sn_opencnt == NUM -1 C 15 1190d 1274d 1162d
UBSan: Undefined Behavior in wsmouse_do_ioctl -1 C 41 824d 1290d 1290d
ASan: Unauthorized Access in wsmouse_do_ioctl -1 C 48 823d 1290d 1290d
assert failed: (pg->pqflags & (PQ_INTENT_MASK | PQ_INTENT_SET)) != (PQ_INTENT_D | PQ_INTENT_SET) (2) -1 C 93 411d 1301d 627d
assert failed: c->c_magic == CALLOUT_MAGIC (2) -1 C 141 388d 1302d 789d
UBSan: Undefined Behavior in uaudio_attach -1 C 5 1156d 1302d 1302d
UBSan: Undefined Behavior in mutex_enter -1 C 7 429d 1305d 1305d
SYZFAIL: %s (2) -1 syz 51 932d 1308d 1305d
page fault in __asan_load1 (2) -1 C 116 1215d 1317d 1317d
page fault in usb_free_device -1 C 97 1216d 1317d 1315d
UBSan: Undefined Behavior in usb_free_device (2) -1 C 117 1216d 1317d 1317d
page fault in __asan_loadN (2) -1 C 7 1188d 1354d 1354d
UBSan: Undefined Behavior in addupc_task -1 C 3 950d 1423d 1423d
panic: LOCKDEBUG: Mutex error: kmem_intr_free,286: allocation contains active lock (2) 2 C 67 391d 1495d 1222d
panic: uvm_fault(ADDR, ADDR, 1) -> e (2) 2 C 2 1522d 1522d 1522d
UBSan: Undefined Behavior in itimer_callout.cold -1 C 12 657d 1552d 1102d
integer divide fault in itimer_callout -1 C 39 611d 1552d 1552d
panic: kmsan_md_addr_to_shad: impossible, va=ADDR (2) 2 C 9 402d 1574d 1574d
page fault in intrfastexit: addb %al,0(%rax)?intrfastexit() at netbsd:intrfastexitx86_stihlt() at netbsd:x86_st -1 syz 1 1576d 1576d 1576d
panic: rw_vector_enter,305: uninitialized lock (lock=ADDR, from=ADDR) 2 C 57 389d 1577d 1577d
MSan: Uninitialized Memory in mutex_enter -1 syz 1 1577d 1577d 1112d
SYZFAIL: clone failed -1 syz 11742 547d 1584d 1295d
UBSan: Undefined Behavior in midisyn_notify.cold -1 C 143 598d 1587d 1587d
assert failed: nmp == NULL || nmp == mp -1 C 607 388d 1589d 1589d
SYZFAIL: syz_usb_connect: vhci_open failed -1 syz 2309 603d 1607d 1607d
UBSan: Undefined Behavior in spec_close -1 C 94 388d 1632d 1185d
panic: LOCKDEBUG: Kernel lock error: _kernel_lock,240: spinout 2 C 1383 388d 1668d 1066d
panic: LOCKDEBUG: Mutex error: _mutex_init,359: already initialized 2 C 53 572d 1677d 1677d
page fault in mutex_dump -1 C 266 450d 1677d 1677d
assert failed: (mp->mnt_iflag & IMNT_GONE) == 0 -1 C 43 1106d 1698d 1113d
page fault in wskbd_do_ioctl -1 C 44 817d 1712d 1712d
ASan: Unauthorized Access in wskbd_do_ioctl -1 C 116 819d 1712d 1712d
UBSan: Undefined Behavior in wskbd_do_ioctl -1 C 71 821d 1712d 1712d
assert failed: vrefcnt(vp) > 0 -1 C 1536 388d 1728d 1185d
panic: LOCKDEBUG: Reader / writer lock error: mi_userret,116: sleep lock heldWARNING: defaulted mmap() share type to MAP 2 C 1 1734d 1734d 1734d
assert failed: fp != NULL (2) -1 C 16 675d 1751d 1685d
panic: mutex_vector_enter,512: uninitialized lock (lock=ADDR, from=ADDR) 2 C 204 388d 1756d 1698d
UBSan: Undefined Behavior in VFS_ROOT -1 C 6 1276d 1756d 1703d
panic: kmsan_md_addr_to_shad: impossible, va=0x0 (2) 2 C 47 844d 1756d 1756d
assert failed: bytes != 0 (2) -1 C 14 406d 1763d 1624d
UBSan: Undefined Behavior in mfs_doio -1 C 23 399d 1770d 1770d
page fault in virtio_pci_msix_queue_intr: addb %al,0(%rax)?virtio_pci_msix_queue_intr() at netbsd:virtio_pci_m -1 C 2 1771d 1771d 1771d
UBSan: Undefined Behavior in wsmousedoioctl -1 C 9 1687d 1772d 1772d
page fault in wsmousedoioctl -1 C 71 827d 1772d 1772d
ASan: Unauthorized Access in wsmousedoioctl -1 C 5 1734d 1772d 1772d
page fault in usb_event_thread -1 C 1 1056d 1776d 1222d
page fault in wsmux_do_ioctl -1 C 26 433d 1780d 1780d
UBSan: Undefined Behavior in wsmux_do_ioctl -1 C 64 388d 1780d 1780d
ASan: Unauthorized Access in wsmux_do_ioctl -1 C 127 389d 1780d 1780d
ASan: Unauthorized Access in mount_domount -1 C 8086 388d 1783d 1725d
assert failed: (PHYS_TO_VM_PAGE(pmap_pte2pa(opte)) == NULL) -1 C 46 388d 1786d 1786d
panic: kmsan_intr_enter: lwp->ctx = 16 2 C 8 999d 1805d 1805d
page fault in mutex_enter -1 C 28 696d 1808d 1727d
UBSan: Undefined Behavior in uvm_page_owner_locked_p -1 C 235 388d 1809d 1809d
panic: LOCKDEBUG: Reader / writer lock error: mi_userret,116: sleep lock held 2 C 729 388d 1811d 1811d
assert failed: ks->ks_pshared_proc == NULL -1 C 1043 388d 1814d 1813d
panic: LOCKDEBUG: Mutex error: rw_vector_enter,309: spin lock held 2 C 634 388d 1814d 1814d
assert failed: ps->ps_endoffset != endoffset -1 C 4592 388d 1847d 1847d
panic: LOCKDEBUG: Kernel lock error: _kernel_lock,244: spinout 2 C 92 1668d 1886d 1066d
fault in supervisor mode (2) -1 C 4394 388d 1888d 1805d
ASan: Unauthorized Access in pmap_growkernel -1 C 4650 388d 1899d 1881d
assert failed: hispgrp->pg_jobc > 0 -1 C 16700 388d 1901d 1901d
assert failed: pgrp->pg_jobc > 0 -1 C 2051 423d 1901d 1901d
assert failed: c->c_cpu->cc_lwp == curlwp || c->c_cpu->cc_active != c (3) -1 syz 138 751d 1951d 1743d
panic: fpudna from kernel, ip ADDR, trapframe ADDR 2 syz 5019 388d 1962d 1103d
MSan: Uninitialized Memory in uiomove -1 C 1650 388d 1963d 1109d
assert failed: rv (2) -1 C 163 392d 2091d 1951d
assert failed: pg->wire_count != 0 (3) -1 C 268 399d 2105d 2103d
assert failed: proccnt >= 0 -1 C 215 390d 2203d 1114d
panic: uvm_fault_unwire_locked: address not in map 2 C 55 388d 2210d 2210d
assert failed: entry->next != &map->header && entry->next->start <= entry->end -1 C 114 825d 2219d 2219d
assert failed: (so2->so_options & SO_ACCEPTCONN) == 0 || so2->so_lock == uipc_lock -1 C 258 405d 2329d 2214d
assert failed: lwpcnt >= 0 -1 C 16033 388d 2333d 1185d
no output from test machine -1 C 2096861 367d 2336d 2326d