|
panic: trap type NUM, WAcRoNdIeN=G: 0SPL, N OpTc =fLOffWEfRfEfDff 8O1Ne S6YSC3f8b
|
2 |
|
|
|
1 |
17d |
17d
|
17d |
|
pool: cpu free list modified: mbufpl (5)
|
-1 |
|
|
|
1 |
17d |
17d
|
17d |
|
panic: inconsistent bufpage counts (2)
|
2 |
|
|
|
1 |
17d |
17d
|
17d |
|
panic: WARtrNap ItNyGp:e S4P,L coNOTd eLOW=E0R,E pDc= fOfNf fSYSffCALfLf NUM e03 1e9EbX
|
2 |
|
|
|
1 |
18d |
18d
|
18d |
|
panic: trap type NUM, code=NUM, pc=fffWfAfRfNffI8N2Gb: fS6PLb fbNO
|
2 |
|
|
|
1 |
21d |
21d
|
21d |
|
panic: thread NUM p_stat is NUM (3)
|
2 |
|
|
|
1 |
22d |
22d
|
22d |
|
syzkaller: make host failed: failed to run ["gmake" "host" "ci" "agent"]: exit status 2
|
-1 |
|
|
|
66 |
16d |
23d
|
23d |
|
SYZFAIL: open of /dev/kcov failed (3)
|
-1 |
|
|
|
1 |
24d |
24d
|
24d |
|
assert "rdomain == rtable_l2(rdomain)" failed in route.c (3)
|
-1 |
|
|
|
1 |
26d |
26d
|
26d |
|
assert "(sih->sih_state & SIS_PENDING) == NUM" failed: file "/syzkaller/managers/mpanic: kernel diagnostic assertion "(s
|
-1 |
|
|
|
1 |
28d |
28d
|
28d |
|
pool: free list modified: tcpcb (2)
|
-1 |
|
|
|
1 |
29d |
29d
|
29d |
|
uvm_fault: pool_gc_pages (3)
|
-1 |
|
|
|
1 |
29d |
29d
|
29d |
|
uvm_fault: fill_kproc
|
-1 |
|
|
|
1 |
31d |
31d
|
31d |
|
panic: trap type NUM, code=NUM, pc=bccb9
|
2 |
|
|
|
1 |
32d |
32d
|
32d |
|
witness: lock_object uninitialized: ADDR (5)
|
-1 |
|
|
|
1 |
34d |
34d
|
34d |
|
uvm_fault: checkalias (2)
|
-1 |
|
|
|
1 |
36d |
36d
|
36d |
|
witness: reversal: sbufrcv inode (3)
|
-1 |
|
|
|
13 |
21d |
39d
|
39d |
|
protection_fault: sysctl_doproc (2)
|
-1 |
|
|
|
1 |
41d |
41d
|
41d |
|
uvm_fault: done_flush
|
-1 |
|
|
|
1 |
44d |
44d
|
44d |
|
uvm_fault: uvm_aio_aiodone
|
-1 |
|
|
|
4 |
39d |
47d
|
47d |
|
uvm_fault: sys_lchown
|
-1 |
|
|
|
1 |
50d |
50d
|
50d |
|
panic: ffs_blkfree: bad size (6)
|
2 |
|
|
|
2 |
31d |
52d
|
52d |
|
assert "bpfilter_lookup(unit) == NULL" failed in bpf.c
|
-1 |
|
|
|
1 |
52d |
52d
|
52d |
|
panic: kernel diagnostic assertion "pg->wire_count != NUM" failed: file "/syzkaller/managers/setuid/kernel/sys/uvm/uvm_p
|
2 |
|
|
|
2 |
23d |
54d
|
54d |
|
witness: shared lock of (rwlock) maddr while exclusively lo
|
-1 |
|
|
|
1 |
56d |
56d
|
56d |
|
witness: shared lock of (rwlock) pmaddr while exclausively locked
|
-1 |
|
|
|
1 |
56d |
56d
|
56d |
|
panic: maddr rwlock 0x
|
2 |
|
|
|
1 |
56d |
56d
|
56d |
|
panic: netlock rwlock ADDR: enter write deadlock
|
2 |
|
|
|
2 |
35d |
57d
|
57d |
|
witness: shared lpaock of (rwlock) mnaddr while excluisively locked
|
-1 |
|
|
|
1 |
57d |
57d
|
57d |
|
witness: shared lock of (rwlock) mpaddr while exclusively locked
|
-1 |
|
|
|
1 |
57d |
57d
|
57d |
|
panic: pool_do_get: scsiplug: page empty
|
2 |
|
|
|
1 |
60d |
60d
|
60d |
|
panic: pool_do_get: pfstkey: page empty (2)
|
2 |
|
|
|
1 |
63d |
63d
|
63d |
|
panic: uvm_vnp_uncache: vnode not locked!
|
2 |
|
|
|
2 |
43d |
64d
|
64d |
|
pool: cpu free list modified: mtagpl
|
-1 |
|
|
|
1 |
65d |
65d
|
65d |
|
pool: cpu free list modified: pvpl
|
-1 |
|
|
|
1 |
66d |
66d
|
66d |
|
uvm_fault: rn_delete
|
-1 |
|
|
|
1 |
66d |
66d
|
66d |
|
uvm_fault: km_free (3)
|
-1 |
|
|
|
1 |
67d |
67d
|
67d |
|
panic: vrele: ref cnt (2)
|
2 |
|
|
|
1 |
67d |
67d
|
67d |
|
assert "nlevel >= IPL_NONE" failed in intr.c (4)
|
-1 |
|
|
|
3 |
39d |
67d
|
67d |
|
uvm_fault: uvm_unmap_remove (3)
|
-1 |
|
|
|
2 |
23d |
68d
|
68d |
|
panic: init died (signal NUM, exit NUM)
|
2 |
|
|
|
1 |
68d |
68d
|
68d |
|
assert "pg->wire_count != NUM" failed in uvm_page.c
|
-1 |
|
|
|
8982 |
15d |
69d
|
69d |
|
panic: vref used where vget required (5)
|
2 |
|
|
|
2 |
60d |
71d
|
71d |
|
assert "pg->wire_count == NUM" failed in CuvAmLL_pa g83 e.-1c9
|
-1 |
|
|
|
1 |
71d |
71d
|
71d |
|
panic: vwakeup: neg numoutput (2)
|
2 |
|
|
|
1 |
71d |
71d
|
71d |
|
panic: kernel diagnosti
|
2 |
|
|
|
2 |
71d |
72d
|
72d |
|
panic: kernel diagnostic assertion "pg->wire_count == NUM" failed: file "/syzkaller/managers/multicore/kernel/sys/uvm/uv
|
2 |
|
|
|
2 |
69d |
72d
|
72d |
|
panic: kernel diagnostic assertion "pg->wire_count == NUM" failed: file "/syzkaller/managers/setuid/kernel/sys/uvm/uvm_p
|
2 |
|
|
|
3 |
69d |
72d
|
72d |
|
panic: amap_wipeout: corrupt amap (2)
|
2 |
|
|
|
1 |
73d |
73d
|
73d |
|
assert "(pg->pg_flags & (PQ_INACTIVE|PQ_ACTIVE)) == NUM" failed in NIuvNmG_:p aSgeP.Lc
|
-1 |
|
|
|
1 |
73d |
73d
|
73d |
|
assert "dupe == NULL" failed in uvm_pageW.cA
|
-1 |
|
|
|
1 |
73d |
73d
|
73d |
|
SYZFAIL: pselect failed
|
-1 |
|
|
|
1 |
75d |
75d
|
75d |
|
panic: kernel diaWgARnostNiIcN aGs:s SPeLr tNOioTn L"O(WpgER-E>D pONg SY_fSlCaAgLs L& NUM NUM (P16Q6_3I30NACT501IV6E E|
|
2 |
|
|
|
1 |
75d |
75d
|
75d |
|
assert "(pg->pg_flags & (PQ_INACTIVE|PQ_ACTIVE)) == NUM" failed in kernel/sys/uvm/uvm_page.c
|
-1 |
|
|
|
1 |
76d |
76d
|
76d |
|
panic:smr: dispatch took NUM.ADDRs
|
2 |
|
|
|
1 |
77d |
77d
|
77d |
|
assert "(pg->pg_flags & (PQ_INACTIVE|PQ_ACTIVE)) == NUM" failed in syzkallerWARNING: SPL NOT LOWERED ON SYSCALL NUM NUM
|
-1 |
|
|
|
1 |
78d |
78d
|
78d |
|
panic: kernel diagnostic assertion "(pg->pg_flags & (PQ_INACTIVE|PQ_ACTIVE)) == NUM" failed: file "/syzkaller/managers/m
|
2 |
|
|
|
6 |
72d |
79d
|
79d |
|
assert "(pg->pg_flags & (PQ_INACTIVE|PQ_ACTIVE)) == NUM" failed in NOuvT mL_OpageW.EcR
|
-1 |
|
|
|
1 |
80d |
80d
|
80d |
|
assert "bp->b_data != NULL" failed in vfs_biomem.c (6)
|
-1 |
|
|
|
6 |
18d |
82d
|
82d |
|
uvm_fault: statclock
|
-1 |
|
|
|
1 |
82d |
82d
|
82d |
|
uvm_fault: pvclock_get
|
-1 |
|
|
|
1 |
82d |
82d
|
82d |
|
assert "(sih->sih_state & SIS_RESTART) == NUM" failed in kern_softintr.c (2)
|
-1 |
|
|
|
6 |
33d |
82d
|
82d |
|
uvm_fault: ufsdirhash_build
|
-1 |
|
|
|
1 |
83d |
83d
|
83d |
|
uvm_fault: kcov_remote_enter (4)
|
-1 |
|
|
|
7 |
82d |
83d
|
83d |
|
assert "swap" failed in uvm_pager.c
|
-1 |
|
|
|
1 |
86d |
86d
|
86d |
|
panic: pmap_remove_pte: unmanaged page marked PG_PVLIST: va ADDR, opte ADDR (2)
|
2 |
|
|
|
1 |
87d |
87d
|
87d |
|
assert "pg->wire_count == NUM" failed in vfs_biomem.c (6)
|
-1 |
|
|
|
1 |
89d |
89d
|
89d |
|
uvm_fault: VOP_ISLOCKED (3)
|
-1 |
|
|
|
1 |
89d |
89d
|
89d |
|
syzkaller: testing failed: failed to run ["go" "test" "-short" "./..."]: exit status 1 (26)
|
-1 |
|
|
|
180 |
16d |
90d
|
90d |
|
panic: pmap_do_remove: unmanaged PTP detected
|
2 |
|
|
|
2 |
53d |
93d
|
93d |
|
kernel: protection fault trap, code=NUM (9)
|
-1 |
|
|
|
3 |
17d |
94d
|
94d |
|
assert "!pmap_is_ept(pmap)" failed in pmap.c
|
-1 |
|
|
|
2 |
43d |
94d
|
94d |
|
uvm_fault: VOP_LOCK (3)
|
-1 |
|
|
|
2 |
51d |
95d
|
95d |
|
assert "ISSET(bp->b_flags, B_BC)" failed in vfs_bio.c (2)
|
-1 |
|
|
|
2 |
18d |
97d
|
97d |
|
panic: pmap_remove_ptes: unmanaged page marked PG_PVLIST: va ADDR, opte 0x3efff (2)
|
2 |
|
|
|
2 |
50d |
97d
|
97d |
|
pool: free list modified: pdppl (5)
|
-1 |
|
|
|
4 |
36d |
98d
|
98d |
|
SYZFAIL: SIGSEGV (2)
|
-1 |
|
|
|
10 |
17d |
101d
|
101d |
|
panic: pmap_remove_ptes: unmanaged page marked PG_PVLIST: va ADDR, opte ADDR (5)
|
2 |
|
|
|
25 |
16d |
103d
|
103d |
|
protection_fault: pmap_clear_attrs
|
-1 |
|
|
|
3 |
19d |
103d
|
103d |
|
protection_fault: done_flush (4)
|
-1 |
|
|
|
914 |
15d |
105d
|
105d |
|
panic: pmap_remove_ptes: managed page without PG_PVLIST: va ADDR, opte ADDR (3)
|
2 |
|
|
|
4 |
16d |
107d
|
107d |
|
uvm_fault: pmap_page_remove (7)
|
-1 |
|
|
|
10 |
20d |
110d
|
110d |
|
assert "dupe == NULL" failed in uvm_page.c (5)
|
-1 |
|
|
|
80 |
16d |
113d
|
113d |
|
assert "pr->ps_threadcnt == NUM" failed in kern_exit.c (2)
|
-1 |
|
|
|
21 |
17d |
121d
|
121d |
|
protection_fault: mtx_enter (3)
|
-1 |
|
|
|
121 |
29d |
128d
|
128d |
|
witness: reversal: fdlock inode (2)
|
-1 |
|
|
|
7 |
39d |
128d
|
128d |
|
uvm_fault: spec_getattr (2)
|
-1 |
|
|
|
3 |
52d |
142d
|
142d |
|
SYZFAIL: tun: can't open device (7)
|
-1 |
|
|
|
200 |
17d |
145d
|
145d |
|
uvm_fault: uao_detach (2)
|
-1 |
|
|
|
3 |
56d |
145d
|
145d |
|
SYZFAIL: dup2(NUM, kInPipeFd) failed (3)
|
-1 |
|
|
|
155 |
19d |
145d
|
145d |
|
uvm_fault: sys_shmat (2)
|
-1 |
|
|
|
6 |
18d |
151d
|
151d |
|
assert "kd_lookup(kd->kd_unit) == NULL" failed in kcov.c (4)
|
-1 |
|
|
|
3 |
34d |
154d
|
154d |
|
uvm_fault: ffs2_balloc (6)
|
-1 |
|
|
|
10 |
82d |
169d
|
169d |
|
assert "refs > NUM" failed in kern_synch.c
|
-1 |
|
|
|
5 |
20d |
173d
|
173d |
|
uvm_fault: bpfioctl (5)
|
-1 |
|
|
|
4 |
41d |
197d
|
197d |
|
uvm_fault: alltraps_kern_meltdown
|
-1 |
|
|
|
5 |
52d |
203d
|
203d |
|
panic: softclock: invalid to_clock: -ADDR (3)
|
2 |
|
|
|
5 |
71d |
210d
|
210d |
|
uvm_fault: dt_ioctl_record_stop (2)
|
-1 |
|
|
|
4368 |
15d |
213d
|
213d |
|
assert "cifp != NULL" failed in route.c (5)
|
-1 |
|
|
|
9 |
21d |
227d
|
227d |
|
protection_fault: icmp_mtudisc_timeout (4)
|
-1 |
|
|
|
8 |
25d |
228d
|
228d |
|
witness: reversal: sbufsnd inode (3)
|
-1 |
|
|
|
39 |
39d |
264d
|
264d |
|
assert "next != NULL && next->start <= entry->end" failed in uvm_fault.c (5)
|
-1 |
|
|
|
10 |
29d |
286d
|
286d |
|
uvm_fault: witness_checkorder (6)
|
-1 |
|
|
|
79 |
23d |
289d
|
289d |
|
witness: reversal: &sched_lock &cq->cq_mtx
|
-1 |
|
|
|
21 |
31d |
290d
|
290d |
|
assert "uvm_page_owner_locked_p(pg, TRUE)" failed in uvm_page.c (2)
|
-1 |
|
|
|
8 |
84d |
291d
|
291d |
|
assert "rn != NULL" failed in pipex.c
|
-1 |
|
|
|
73 |
41d |
295d
|
295d |
|
SYZFAIL: can't reallocate
|
-1 |
|
|
|
47 |
17d |
308d
|
308d |
|
witness: reversal: &cq->cq_mtx &sched_lock
|
-1 |
|
|
|
122 |
22d |
314d
|
314d |
|
uvm_fault: mtx_enter
|
-1 |
|
|
|
199 |
16d |
325d
|
325d |
|
panic: uvm_fault_unwire_locked: address not in map (5)
|
2 |
|
|
|
96 |
28d |
334d
|
334d |
|
panic: chgproccnt: procs < NUM
|
2 |
|
|
|
8 |
36d |
372d
|
372d |
|
uvm_fault: savectx (3)
|
-1 |
|
|
|
597 |
16d |
374d
|
374d |
|
SYZFAIL: repeatedly failed to execute the program (2)
|
-1 |
|
|
|
24 |
38d |
375d
|
375d |
|
panic: trap type NUM, code=NUM, pc=NUM (4)
|
2 |
|
|
|
20 |
43d |
376d
|
376d |
|
SYZFAIL: coverage filter is full (3)
|
-1 |
|
|
|
640708 |
16d |
376d
|
376d |
|
protection_fault: bpfdetach
|
-1 |
|
|
|
64 |
16d |
378d
|
378d |
|
uvm_fault: x86_ipi_db (9)
|
-1 |
|
|
|
479 |
16d |
380d
|
380d |
|
SYZFAIL: SIGBUS (2)
|
-1 |
|
|
|
627 |
22d |
382d
|
382d |
|
assert "sc->sc_dev == NUM" failed in if_tun.c (6)
|
-1 |
|
|
|
111 |
28d |
385d
|
385d |
|
assert "refs != ~NUM" failed in kern_synch.c
|
-1 |
|
|
|
1088 |
16d |
386d
|
386d |
|
SYZFAIL: too many calls in output (2)
|
-1 |
|
|
|
76 |
17d |
387d
|
387d |
|
SYZFAIL: posix_spawnp failed
|
-1 |
|
|
|
1390 |
15d |
388d
|
388d |
|
assert "map->limit == rtmap_limit" failed in rtable.c (2)
|
-1 |
|
|
|
438 |
16d |
388d
|
388d |
|
uvm_fault: proc_trampoline (2)
|
-1 |
|
|
|
427 |
16d |
388d
|
388d |
|
protection_fault: witness_checkorder (5)
|
-1 |
|
|
|
17 |
38d |
388d
|
388d |
|
panic: pledge_namei: ni_pledge (2)
|
2 |
|
|
|
13 |
18d |
389d
|
389d |
|
uvm_fault: arp_rtrequest (3)
|
-1 |
|
|
|
365 |
18d |
389d
|
389d |
|
pool: free list modified: shmpl (6)
|
-1 |
|
|
|
745 |
16d |
390d
|
390d |
|
uvm_fault: db_enter (6)
|
-1 |
|
|
|
576 |
16d |
390d
|
390d |
|
can't ssh into the instance (2)
|
-1 |
|
|
|
34951 |
15d |
391d
|
391d |
|
suppressed report (2)
|
-1 |
|
|
|
15136 |
15d |
391d
|
391d |
|
panic: missing alias (6)
|
2 |
|
|
|
1395 |
16d |
391d
|
391d |
|
SYZFAIL: failed to recv rpc (4)
|
-1 |
|
|
|
1526 |
16d |
391d
|
391d |
|
panic: trap type NUM, code=NUM, pc=ADDR (3)
|
2 |
|
|
|
3152 |
15d |
391d
|
391d |
|
corrupted report (7)
|
-1 |
|
|
|
10054 |
15d |
391d
|
391d |
|
witness: reversal: lock order data missing (5)
|
-1 |
|
|
|
199181 |
15d |
391d
|
391d |
|
SYZFAIL: ioctl remote attach failed (6)
|
-1 |
|
|
|
62874 |
15d |
391d
|
391d |
|
SYZFAIL: failed to mkdtemp (2)
|
-1 |
|
|
|
85832 |
15d |
391d
|
391d |
|
SYZFAIL: failed to send rpc (2)
|
-1 |
|
|
|
27866 |
15d |
391d
|
391d |
|
SYZFAIL: tun_id out of range (4)
|
-1 |
|
|
|
2870115 |
15d |
391d
|
391d |
|
SYZFAIL: failed to mkdir (2)
|
-1 |
|
|
|
10185 |
15d |
391d
|
391d |
|
SYZFAIL: too much cover
|
-1 |
|
|
|
354 |
18d |
560d
|
560d |
|
SYZFAIL: pipe failed
|
-1 |
|
|
|
7782 |
28d |
595d
|
595d |
|
pool: free list modified: rttmr
|
-1 |
|
|
|
148 |
41d |
710d
|
710d |
|
protection_fault: lf_advlock (4)
|
-1 |
C |
|
|
54 |
18d |
712d
|
712d |
|
protection_fault: sys_semop
|
-1 |
C |
|
|
335 |
16d |
732d
|
732d |
|
uvm_fault: ktrops (2)
|
-1 |
C |
|
|
264 |
17d |
885d
|
885d |
|
uvm_fault: schedclock
|
-1 |
syz |
|
|
11 |
542d |
911d
|
734d |
|
kernel: page fault trap, code=NUM (3)
|
-1 |
C |
|
|
92 |
23d |
941d
|
698d |
|
malloc: free list modified: free (4)
|
-1 |
C |
|
|
32 |
16d |
962d
|
962d |
|
uvm_fault: hardclock (5)
|
-1 |
syz |
|
|
4 |
942d |
1094d
|
1094d |
|
panic: ufsdirhash_lookup: bad offset in hash array (3)
|
2 |
C |
|
|
107 |
48d |
1105d
|
811d |
|
protection_fault: sys_msgrcv (2)
|
-1 |
C |
|
|
166 |
28d |
1236d
|
992d |
|
uvm_fault: memcpy (5)
|
-1 |
C |
|
|
68 |
40d |
1240d
|
1240d |
|
assert "uvn->u_obj.uo_refs == NUM" failed in uvm_vnode.c (2)
|
-1 |
syz |
|
|
2 |
1244d |
1244d
|
1244d |
|
panic: pmap_unwire: invalid PDE
|
2 |
syz |
|
|
6 |
655d |
1298d
|
1240d |
|
no output from test machine (8)
|
-1 |
C |
|
|
811433 |
15d |
1307d
|
1303d |
|
uvm_fault: ffs_indirtrunc
|
-1 |
C |
|
|
6 |
149d |
1351d
|
1351d |
|
witness: reversal: vmmaplk inode (3)
|
-1 |
C |
|
|
1061 |
26d |
1383d
|
1334d |
|
SYZFATAL: executor NUM failed NUM times: executor NUM: exit status NUM
|
-1 |
syz |
|
|
175427 |
27d |
1406d
|
1406d |
|
panic: bad dir (3)
|
2 |
C |
|
|
207 |
18d |
1412d
|
1240d |
|
uvm_fault: ufs_lookup
|
-1 |
C |
|
|
99 |
48d |
1507d
|
860d |
|
kernel: double fault trap, code=NUM (2)
|
-1 |
C |
|
|
37 |
17d |
1508d
|
1459d |
|
protection_fault: ktrops
|
-1 |
C |
|
|
259 |
568d |
1517d
|
1497d |
|
protection_fault: sblock
|
-1 |
syz |
|
|
38 |
1341d |
1521d
|
1520d |
|
uvm_fault: fifo_write (2)
|
-1 |
C |
|
|
3430 |
543d |
1529d
|
1213d |
|
SYZFAIL: tun: read failed
|
-1 |
syz |
|
|
545622 |
15d |
1546d
|
1514d |
|
uvm_fault: memset
|
-1 |
C |
|
|
102 |
55d |
1667d
|
1667d |
|
SYZFAIL: command failed
|
-1 |
syz |
|
|
15733 |
16d |
1834d
|
1516d |
|
panic: ufs_rename: lost dir entry
|
2 |
C |
|
|
143 |
17d |
2208d
|
1446d |
|
lost connection to test machine (2)
|
-1 |
|
|
|
895208 |
15d |
2624d
|
never |