syzbot

 sign-in | mailing list | source | docs
🐞 Open [110]
🐞 Fixed [281]
🐞 Invalid [868]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

Instances [tested repos]:
Name Last active Uptime Corpus Coverage 🛈 Crashes Execs Kernel build syzkaller build Bugs
Commit Config Freshness Status Commit Freshness Status All Only
ci-openbsd-main now 9h43m 7542 42978 478 broken 7d4d50d32b3e .config 15h30m 3d2f584d 10h36m all only
ci-openbsd-multicore now 9h36m 7788 45716 482 broken 7d4d50d32b3e .config 15h30m 3d2f584d 10h36m all only
ci-openbsd-setuid now 9h29m 4623 29801 426 128027 7d4d50d32b3e .config 15h30m 3d2f584d 10h36m all only
upstream (110):
Title Repro Cause bisect Fix bisect Count Last Reported Last activity
assert "next != NULL && next->start <= entry->end" failed in uvm_fault.c (5) 2 7d17h 8d23h 8d23h
witness: userret: mlockall 2 9d19h 10d 10d
uvm_fault: witness_checkorder (6) 2 10d 12d 12d
witness: reversal: &sched_lock &cq->cq_mtx 1 13d 13d 13d
assert "uvm_page_owner_locked_p(pg, TRUE)" failed in uvm_page.c (2) 1 14d 14d 14d
assert "kd_lookup(kd->kd_unit) == NULL" failed in kcov.c (3) 1 15d 15d 15d
SYZFAIL: dup2(NUM, kInPipeFd) failed (2) 1 16d 16d 16d
assert "rn != NULL" failed in pipex.c 1 18d 18d 18d
assert "refs != ~NUM" failed in kerneWARNING: SPL NOT LOWERED ON SYSCALL NUM NUM EXIT NUM aStopped at savectx+0xae 1 21d 21d 21d
uvm_fault: mtx_enter_try 2 8d20h 22d 22d
uvm_fault: _copyinstr 3 15d 25d 25d
assert "(sih->sih_state & SIS_RESTART) == NUM" failed in kern_softintr.c 1 28d 28d 28d
openbsd build error (23) 9 7d06h 28d 28d
openbsd test error: SYZFATAL: image testing failed w/o kernel bug (2) 1 28d 28d 28d
protection_fault: __x86_indirect_thunk_r11 (4) 2 19d 29d 29d
SYZFAIL: can't reallocate 2 30d 30d 30d
SYZFAIL: invalid kcov comp type 4 2d12h 33d 33d
witness: denied attempt to set clock forward to ADDR (2) 1 34d 34d 34d
witness: reversal: &cq->cq_mtx &sched_lock 6 1d08h 36d 36d
uvm_fault: copyout 24 1d09h 36d 36d
uvm_fault: mld6_fasttimeo 1 36d 36d 36d
panic: vrele: v_writecount != NUM 1 42d 42d 42d
multicore test error: SYZFATAL: image testing failed w/o kernel bug (2) 1 42d 42d 42d
uvm_fault: mtx_enter 12 6d12h 48d 48d
witness: nd6_resolve: something odd happens 1 51d 51d 51d
panic: softclock: invalid to_clock: ADDR (3) 1 52d 52d 52d
uvm_fault: refcnt_rele 2 19d 52d 52d
uvm_fault: dt_ioctl_record_stop 433 8h37m 52d 52d
panic: uvm_fault_unwire_locked: address not in map (5) 9 12d 56d 56d
panic: ffs_valloc: dup alloc (3) 2 74d 76d 76d
panic: Connection to us-central1-ssh-serialport.googleapis.com closed by remote host. (2) 1 76d 76d 76d
panic: trap type NUM, code=NUM, pc=bd4f9 1 77d 77d 77d
panic: mtx ADDR: locking against myself (2) 203 1d07h 78d 78d
panic: Data modified on freelist: word NUM of object ADDR size 0x188 previous type free (0x6563 != ADDR) 1 78d 78d 78d
panic: uvm_fault_unwir 1 79d 79d 79d
pool: free list modified: aobjpl (2) 1 79d 79d 79d
assert "info->rti_ifa->ifa_ifp != NULL" failed in route.c 11 34d 80d 80d
panic: ffs2_balloc: unwind failed (2) 1 86d 86d 86d
lock order reversal: 1 88d 88d 88d
protection_fault: rw_do_enter_write 1 89d 89d 89d
panic: chgproccnt: procs < NUM 3 11d 95d 95d
uvm_fault: savectx (3) 42 3d04h 97d 97d
SYZFAIL: repeatedly failed to execute the program (2) 4 20h04m 98d 98d
panic: trap type NUM, code=NUM, pc=NUM (4) 8 3d03h 98d 98d
SYZFAIL: coverage filter is full (3) 274511 now 99d 99d
protection_fault: bpfdetach 9 11d 101d 101d
uvm_fault: x86_ipi_db (9) 80 3d18h 103d 103d
SYZFAIL: SIGBUS (2) 4 46d 105d 105d
assert "rdomain == rtable_l2(rdomain)" failed in route.c (2) 3 15d 107d 107d
assert "sc->sc_dev == NUM" failed in if_tun.c (6) 23 6d02h 107d 107d
witness: reversal: fdlock inode 3 55d 108d 108d
witness: reversal: sbufrcv inode (2) 10 8d00h 108d 108d
assert "refs != ~NUM" failed in kern_synch.c 188 3d03h 109d 109d
panic: ffs_blkfree: bad size (5) 8 81d 110d 110d
SYZFAIL: too many calls in output (2) 47 1d10h 110d 110d
panic: malloc: allocation too large, type = NUM, size = ADDR (4) 22 13d 110d 110d
kernel: protection fault trap, code=NUM (8) 7 74d 110d 110d
SYZFAIL: posix_spawnp failed 220 8h33m 111d 111d
assert "map->limit == rtmap_limit" failed in rtable.c (2) 57 7d04h 111d 111d
uvm_fault: proc_trampoline (2) 41 20h49m 111d 111d
protection_fault: witness_checkorder (5) 5 6d21h 111d 111d
panic: pledge_namei: ni_pledge (2) 2 50d 112d 112d
uvm_fault: arp_rtrequest (3) 165 3d23h 112d 112d
protection_fault: copyout 5 56d 112d 112d
pool: free list modified: shmpl (6) 257 20h13m 113d 113d
uvm_fault: db_enter (6) 284 6d04h 113d 113d
can't ssh into the instance (2) 1388 now 114d 114d
suppressed report (2) 2312 2h05m 114d 114d
panic: missing alias (6) 108 20h52m 114d 114d
SYZFAIL: failed to recv rpc (4) 505 1d15h 114d 114d
panic: trap type NUM, code=NUM, pc=ADDR (3) 142 5h16m 114d 114d
corrupted report (7) 1384 1h15m 114d 114d
witness: reversal: lock order data missing (5) 83721 9h27m 114d 114d
SYZFAIL: ioctl remote attach failed (6) 10351 4h03m 114d 114d
SYZFAIL: failed to mkdtemp (2) 9946 4h10m 114d 114d
SYZFAIL: failed to send rpc (2) 11802 5h09m 114d 114d
SYZFAIL: tun_id out of range (4) 800550 now 114d 114d
SYZFAIL: failed to mkdir (2) 1106 4h27m 114d 114d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (25) 18 41d 168d 162d
uvm_fault: ffs2_balloc (5) 4 45d 193d 193d
SYZFAIL: too much cover 90 8h15m 283d 283d
SYZFAIL: pipe failed 25 3d03h 318d 318d
pool: free list modified: rttmr 21 28d 433d 433d
protection_fault: lf_advlock (4) C 12 10d 435d 435d
protection_fault: sys_semop C 64 4d09h 454d 454d
uvm_fault: ktrops (2) C 123 6d18h 607d 607d
uvm_fault: schedclock syz 11 265d 633d 456d
kernel: page fault trap, code=NUM (3) C 73 58d 664d 421d
malloc: free list modified: free (4) C 21 58d 685d 684d
uvm_fault: hardclock (5) syz 4 665d 817d 817d
panic: ufsdirhash_lookup: bad offset in hash array (3) C 79 27d 828d 534d
protection_fault: sys_msgrcv (2) C 84 3d05h 959d 715d
uvm_fault: memcpy (5) C 21 58d 963d 963d
assert "uvn->u_obj.uo_refs == NUM" failed in uvm_vnode.c (2) syz 2 966d 967d 966d
panic: pmap_unwire: invalid PDE syz 6 377d 1021d 962d
no output from test machine (8) C 598300 56m 1030d 1026d
uvm_fault: ffs_indirtrunc C 5 46d 1074d 1074d
witness: reversal: vmmaplk inode (3) C 1060 99d 1106d 1056d
SYZFATAL: executor NUM failed NUM times: executor NUM: exit status NUM syz 175427 2d10h 1129d 1129d
panic: bad dir (3) C 130 7d14h 1135d 963d
uvm_fault: ufs_lookup C 93 45d 1230d 582d
kernel: double fault trap, code=NUM (2) C 34 287d 1230d 1182d
protection_fault: ktrops C 259 291d 1240d 1220d
protection_fault: sblock syz 38 1064d 1244d 1243d
uvm_fault: fifo_write (2) C 3430 265d 1251d 936d
SYZFAIL: tun: read failed syz 169533 3h58m 1269d 1237d
uvm_fault: memset C 86 45d 1389d 1389d
SYZFAIL: command failed syz 13063 12d 1557d 1239d
panic: ufs_rename: lost dir entry C 121 35d 1930d 1169d
lost connection to test machine (2) 854864 1h23m 2347d never