syzbot

 sign-in | mailing list | source | docs
🐞 Open [105]
🐞 Fixed [280]
🐞 Invalid [852]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

Instances [tested repos]:
Name Last active Uptime Corpus Coverage 🛈 Crashes Execs Kernel build syzkaller build Bugs
Commit Config Freshness Status Commit Freshness Status All Only
ci-openbsd-main now 2h33m 7903 43481 918 2436105 d908cbc5d051 .config 20h10m 552876f8 5h31m all only
ci-openbsd-multicore now 5h07m 8087 46431 1574 2926301 96fb1b485f5f .config 1d00h 552876f8 5h31m all only
ci-openbsd-setuid now 2h41m 4486 29348 3980 1109722 d908cbc5d051 .config 20h10m 552876f8 5h31m all only
upstream (105):
Title Repro Cause bisect Fix bisect Count Last Reported Last activity
panic: vrele: v_writecount != NUM 1 14h59m 14h59m 14h59m
multicore test error: SYZFATAL: image testing failed w/o kernel bug (2) 1 1d02h 1d02h 1d02h
uvm_fault: mtx_enter 4 2d21h 6d13h 6d13h
witness: nd6_resolve: something odd happens 1 9d20h 9d20h 9d20h
panic: softclock: invalid to_clock: ADDR (3) 1 11d 11d 11d
uvm_fault: refcnt_rele 1 11d 11d 11d
uvm_fault: dt_ioctl_record_stop 63 now 11d 11d
panic: uvm_fault_unwire_locked: address not in map (5) 6 2d17h 15d 15d
panic: ffs_valloc: dup alloc (3) 2 33d 34d 34d
panic: Connection to us-central1-ssh-serialport.googleapis.com closed by remote host. (2) 1 35d 35d 35d
panic: trap type NUM, code=NUM, pc=bd4f9 1 36d 36d 36d
panic: mtx ADDR: locking against myself (2) 90 6h44m 37d 37d
panic: Data modified on freelist: word NUM of object ADDR size 0x188 previous type free (0x6563 != ADDR) 1 37d 37d 37d
panic: uvm_fault_unwir 1 37d 37d 37d
pool: free list modified: aobjpl (2) 1 38d 38d 38d
assert "info->rti_ifa->ifa_ifp != NULL" failed in route.c 8 2d00h 39d 39d
panic: ffs2_balloc: unwind failed (2) 1 45d 45d 45d
lock order reversal: 1 46d 46d 46d
protection_fault: rw_do_enter_write 1 47d 47d 47d
assert "va >= entry->start" failed in WARNING: SPL NOT LOWERED ON SYSCALL NUM ADDR EXIT NUM NUMStopped at savect 1 53d 53d 53d
panic: kernel diagnostic assertion "info->rti_ifa->ifa_ifp != NULL" fai 1 53d 53d 53d
panic: chgproccnt: procs < NUM 1 54d 54d 54d
SYZFAIL: tun: can't open device (5) 82 40d 55d 55d
protection_fault: icmp_mtudisc_timeout (3) 1 55d 55d 55d
uvm_fault: savectx (3) 11 22h48m 56d 56d
SYZFAIL: repeatedly failed to execute the program (2) 1 57d 57d 57d
panic: trap type NUM, code=NUM, pc=NUM (4) 4 2d17h 57d 57d
SYZFAIL: coverage filter is full (3) 8813 14h02m 58d 58d
panic: softclock: invalid to_clock: -ADDR (2) 1 59d 59d 59d
protection_fault: bpfdetach 7 6d03h 59d 59d
witness: reversal: sbufsnd inode (2) 19 8d16h 59d 59d
assert "cifp != NULL" failed in route.c (4) 3 50d 60d 60d
uvm_fault: x86_ipi_db (9) 17 22h44m 61d 61d
assert "kd_lookup(kd->kd_unit) == NULL" failed in kcov.c (2) 1 63d 63d 63d
SYZFAIL: SIGBUS (2) 4 4d18h 64d 64d
assert "rdomain == rtable_l2(rdomain)" failed in route.c (2) 2 49d 65d 65d
assert "sc->sc_dev == NUM" failed in if_tun.c (6) 16 10h05m 66d 66d
protection_fault: malloc 1 66d 66d 66d
witness: reversal: fdlock inode 3 14d 66d 66d
panic: kernel diagnostic assertion "ps->ps_uvncount == NUM" failed: file "/syzkaller/managers/multicore/kernel/sys/kern/ 1 67d 67d 67d
witness: reversal: sbufrcv inode (2) 7 11d 67d 67d
assert "refs != ~NUM" failed in kern_synch.c 131 5h37m 68d 68d
panic: ffs_blkfree: bad size (5) 8 39d 68d 68d
SYZFAIL: too many calls in output (2) 24 27m 69d 69d
panic: malloc: allocation too large, type = NUM, size = ADDR (4) 13 12d 69d 69d
kernel: protection fault trap, code=NUM (8) 7 32d 69d 69d
SYZFAIL: posix_spawnp failed 118 12h04m 69d 69d
assert "map->limit == rtmap_limit" failed in rtable.c (2) 27 1d09h 69d 69d
uvm_fault: proc_trampoline (2) 8 1d09h 70d 70d
protection_fault: witness_checkorder (5) 4 45d 70d 70d
uvm_fault: ufs_direnter (4) 1 70d 70d 70d
uvm_fault: kcov_remote_enter (3) 1 70d 70d 70d
panic: pledge_namei: ni_pledge (2) 2 8d23h 70d 70d
uvm_fault: arp_rtrequest (3) 98 9h47m 70d 70d
protection_fault: copyout 5 15d 71d 71d
pool: free list modified: shmpl (6) 154 33m 72d 72d
uvm_fault: db_enter (6) 207 19h39m 72d 72d
assert "uvm_page_owner_locked_p(pg, TRUE)" failed in uvm_page.c 5 71d 72d 72d
can't ssh into the instance (2) 309 1h00m 72d 72d
suppressed report (2) 1062 1h27m 72d 72d
panic: missing alias (6) 39 1d00h 72d 72d
SYZFAIL: failed to recv rpc (4) 259 8m 72d 72d
panic: trap type NUM, code=NUM, pc=ADDR (3) 87 8h25m 72d 72d
corrupted report (7) 540 13m 73d 73d
assert "pg->wire_count == NUM" failed in vfs_biomem.c (4) 3 72d 73d 73d
witness: reversal: lock order data missing (5) 54515 now 73d 73d
SYZFAIL: ioctl remote attach failed (6) 7781 27m 73d 73d
SYZFAIL: failed to mkdtemp (2) 8031 1h01m 73d 73d
SYZFAIL: failed to send rpc (2) 10155 5m 73d 73d
SYZFAIL: tun_id out of range (4) 484596 now 73d 73d
SYZFAIL: failed to mkdir (2) 926 1d00h 73d 73d
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (25) 15 2d04h 127d 120d
uvm_fault: ffs2_balloc (5) 4 4d05h 151d 151d
multicore build error (19) 21 73d 240d 240d
SYZFAIL: too much cover 21 1d10h 242d 242d
SYZFAIL: pipe failed 19 32d 277d 277d
pool: free list modified: rttmr 19 6d17h 391d 391d
protection_fault: lf_advlock (4) C 11 6d09h 394d 394d
protection_fault: sys_semop C 39 3h39m 413d 413d
uvm_fault: ktrops (2) C 111 4d16h 566d 566d
uvm_fault: schedclock syz 11 224d 592d 415d
kernel: page fault trap, code=NUM (3) C 73 17d 622d 380d
malloc: free list modified: free (4) C 21 17d 644d 643d
witness: lock_object uninitialized: ADDR (3) C 6417 63d 747d 605d
uvm_fault: hardclock (5) syz 4 623d 775d 775d
panic: ufsdirhash_lookup: bad offset in hash array (3) C 79 9d17h 787d 492d
protection_fault: sys_msgrcv (2) C 78 1d06h 917d 674d
uvm_fault: memcpy (5) C 21 16d 921d 921d
assert "uvn->u_obj.uo_refs == NUM" failed in uvm_vnode.c (2) syz 2 925d 925d 925d
panic: pmap_unwire: invalid PDE syz 6 336d 979d 921d
no output from test machine (8) C 573843 now 988d 985d
uvm_fault: ffs_indirtrunc C 5 4d14h 1032d 1032d
witness: reversal: vmmaplk inode (3) C 1060 57d 1064d 1015d
SYZFATAL: executor NUM failed NUM times: executor NUM: exit status NUM syz 175427 3d00h 1087d 1087d
panic: bad dir (3) C 112 3d05h 1094d 921d
uvm_fault: ufs_lookup C 93 4d06h 1189d 541d
kernel: double fault trap, code=NUM (2) C 34 246d 1189d 1140d
protection_fault: ktrops C 259 250d 1199d 1179d
protection_fault: sblock syz 38 1023d 1202d 1202d
uvm_fault: fifo_write (2) C 3430 224d 1210d 894d
SYZFAIL: tun: read failed syz 135610 now 1227d 1195d
uvm_fault: memset C 86 4d07h 1348d 1348d
SYZFAIL: command failed syz 13062 11d 1515d 1198d
panic: ufs_rename: lost dir entry C 121 8d09h 1889d 1127d
lost connection to test machine (2) 852961 1h32m 2306d never