? github.com/google/syzkaller/dashboard/dashapi [no test files] ok github.com/google/syzkaller/dashboard/app 0.162s ? github.com/google/syzkaller/pkg/debugtracer [no test files] ? github.com/google/syzkaller/pkg/gce [no test files] ? github.com/google/syzkaller/pkg/gcs [no test files] ? github.com/google/syzkaller/pkg/hash [no test files] ? github.com/google/syzkaller/pkg/html/pages [no test files] ? github.com/google/syzkaller/pkg/ifuzz/iset [no test files] ? github.com/google/syzkaller/pkg/ifuzz/powerpc [no test files] ? github.com/google/syzkaller/pkg/ifuzz/powerpc/generated [no test files] ? github.com/google/syzkaller/pkg/ifuzz/x86 [no test files] ? github.com/google/syzkaller/pkg/ifuzz/x86/gen [no test files] ? github.com/google/syzkaller/pkg/ifuzz/x86/generated [no test files] ok github.com/google/syzkaller/executor 3.501s ok github.com/google/syzkaller/pkg/asset (cached) ok github.com/google/syzkaller/pkg/ast 1.444s ok github.com/google/syzkaller/pkg/auth (cached) ok github.com/google/syzkaller/pkg/bisect (cached) ok github.com/google/syzkaller/pkg/bisect/minimize (cached) ok github.com/google/syzkaller/pkg/build (cached) ok github.com/google/syzkaller/pkg/compiler 5.088s ok github.com/google/syzkaller/pkg/config (cached) ok github.com/google/syzkaller/pkg/cover (cached) ok github.com/google/syzkaller/pkg/cover/backend (cached) ok github.com/google/syzkaller/pkg/csource (cached) ok github.com/google/syzkaller/pkg/db (cached) ok github.com/google/syzkaller/pkg/email (cached) ok github.com/google/syzkaller/pkg/email/lore (cached) ok github.com/google/syzkaller/pkg/host (cached) ok github.com/google/syzkaller/pkg/html (cached) ok github.com/google/syzkaller/pkg/ifuzz (cached) ok github.com/google/syzkaller/pkg/image (cached) ? github.com/google/syzkaller/pkg/ipc/ipcconfig [no test files] ? github.com/google/syzkaller/pkg/kcidb [no test files] ok github.com/google/syzkaller/pkg/instance (cached) ok github.com/google/syzkaller/pkg/ipc (cached) ok github.com/google/syzkaller/pkg/kconfig (cached) ok github.com/google/syzkaller/pkg/kd (cached) ok github.com/google/syzkaller/pkg/log (cached) ? github.com/google/syzkaller/pkg/report/crash [no test files] ? github.com/google/syzkaller/pkg/rpctype [no test files] ? github.com/google/syzkaller/pkg/signal [no test files] ? github.com/google/syzkaller/pkg/testutil [no test files] ? github.com/google/syzkaller/pkg/tools [no test files] ? github.com/google/syzkaller/sys [no test files] ? github.com/google/syzkaller/sys/akaros [no test files] ? github.com/google/syzkaller/sys/akaros/gen [no test files] ? github.com/google/syzkaller/sys/darwin [no test files] ? github.com/google/syzkaller/sys/darwin/gen [no test files] ? github.com/google/syzkaller/sys/freebsd [no test files] ? github.com/google/syzkaller/sys/freebsd/gen [no test files] ? github.com/google/syzkaller/sys/fuchsia [no test files] ? github.com/google/syzkaller/sys/fuchsia/fidlgen [no test files] ? github.com/google/syzkaller/sys/fuchsia/gen [no test files] ? github.com/google/syzkaller/sys/fuchsia/layout [no test files] ok github.com/google/syzkaller/pkg/mgrconfig (cached) ok github.com/google/syzkaller/pkg/osutil (cached) ? github.com/google/syzkaller/sys/linux/gen [no test files] ? github.com/google/syzkaller/sys/netbsd/gen [no test files] ? github.com/google/syzkaller/sys/openbsd/gen [no test files] ? github.com/google/syzkaller/sys/syz-extract [no test files] ? github.com/google/syzkaller/sys/syz-sysgen [no test files] ? github.com/google/syzkaller/sys/targets [no test files] ? github.com/google/syzkaller/sys/test [no test files] ? github.com/google/syzkaller/sys/test/gen [no test files] ? github.com/google/syzkaller/sys/trusty [no test files] ? github.com/google/syzkaller/sys/trusty/gen [no test files] ? github.com/google/syzkaller/sys/windows [no test files] ? github.com/google/syzkaller/sys/windows/gen [no test files] ? github.com/google/syzkaller/syz-runner [no test files] ? github.com/google/syzkaller/tools/syz-benchcmp [no test files] ? github.com/google/syzkaller/tools/syz-bisect [no test files] ? github.com/google/syzkaller/tools/syz-build [no test files] ? github.com/google/syzkaller/tools/syz-check [no test files] ? github.com/google/syzkaller/tools/syz-cover [no test files] ? github.com/google/syzkaller/tools/syz-crush [no test files] ? github.com/google/syzkaller/tools/syz-db [no test files] ? github.com/google/syzkaller/tools/syz-execprog [no test files] ? github.com/google/syzkaller/tools/syz-expand [no test files] ? github.com/google/syzkaller/tools/syz-fillreports [no test files] ? github.com/google/syzkaller/tools/syz-fmt [no test files] ? github.com/google/syzkaller/tools/syz-hubtool [no test files] ? github.com/google/syzkaller/tools/syz-imagegen [no test files] ? github.com/google/syzkaller/tools/syz-kcidb [no test files] ? github.com/google/syzkaller/tools/syz-lore [no test files] ? github.com/google/syzkaller/tools/syz-make [no test files] ? github.com/google/syzkaller/tools/syz-minconfig [no test files] ? github.com/google/syzkaller/tools/syz-mutate [no test files] ? github.com/google/syzkaller/tools/syz-prog2c [no test files] ? github.com/google/syzkaller/tools/syz-query-subsystems [no test files] ? github.com/google/syzkaller/tools/syz-reporter [no test files] ? github.com/google/syzkaller/tools/syz-repro [no test files] ? github.com/google/syzkaller/tools/syz-reprolist [no test files] ? github.com/google/syzkaller/tools/syz-runtest [no test files] ? github.com/google/syzkaller/tools/syz-showprio [no test files] ? github.com/google/syzkaller/tools/syz-stress [no test files] ? github.com/google/syzkaller/tools/syz-symbolize [no test files] ? github.com/google/syzkaller/tools/syz-testbed [no test files] ? github.com/google/syzkaller/tools/syz-testbuild [no test files] ? github.com/google/syzkaller/tools/syz-trace2syz [no test files] ? github.com/google/syzkaller/tools/syz-tty [no test files] ? github.com/google/syzkaller/tools/syz-upgrade [no test files] ? github.com/google/syzkaller/tools/syz-usbgen [no test files] ? github.com/google/syzkaller/vm/adb [no test files] ? github.com/google/syzkaller/vm/bhyve [no test files] ? github.com/google/syzkaller/vm/cuttlefish [no test files] ? github.com/google/syzkaller/vm/gce [no test files] ? github.com/google/syzkaller/vm/gvisor [no test files] ? github.com/google/syzkaller/vm/kvm [no test files] ? github.com/google/syzkaller/vm/odroid [no test files] ? github.com/google/syzkaller/vm/proxyapp/mocks [no test files] ? github.com/google/syzkaller/vm/proxyapp/proxyrpc [no test files] ? github.com/google/syzkaller/vm/qemu [no test files] ? github.com/google/syzkaller/vm/starnix [no test files] ? github.com/google/syzkaller/vm/vmm [no test files] ? github.com/google/syzkaller/vm/vmware [no test files] --- FAIL: TestDisassemblyInReports (4.06s) --- FAIL: TestDisassemblyInReports/amd64/4.in (0.06s) linux_test.go:444: Expected: divide error: 0000 [#1] PREEMPT SMP KASAN CPU: 1 PID: 3149 Comm: syz-executor385 Not tainted 5.4.141-syzkaller-16412-gf364839bcf0b #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 RIP: 0010:snd_pcm_lib_ioctl_fifo_size sound/core/pcm_lib.c:1739 [inline] RIP: 0010:snd_pcm_lib_ioctl+0x73e/0x75c sound/core/pcm_lib.c:1764 Code: fd 4c 89 e2 b8 ff ff 37 00 48 c1 ea 03 48 c1 e0 2a 80 3c 02 00 74 08 4c 89 e7 e8 f0 8e 14 fe 48 8b 83 18 02 00 00 89 ed 31 d2 <48> f7 f5 48 89 83 18 02 00 00 45 31 ed e8 7f b5 f2 fd 44 89 e8 5b RSP: 0018:ffff8881da17fb78 EFLAGS: 00010246 RAX: 0000000000000000 RBX: ffff8881dce33800 RCX: ffff8881dd6a9980 RDX: 0000000000000000 RSI: ffffffff833e3709 RDI: 0000000100000000 RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000007 R10: ffff8881dd6a9980 R11: ffffffff8134d1e8 R12: ffff8881dce33a18 R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000 FS: 0000000002290300(0000) GS:ffff8881f6d00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000020001090 CR3: 00000001d89ec000 CR4: 00000000001406e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: snd_pcm_ops_ioctl+0x76/0xa0 sound/core/pcm_native.c:196 fixup_unreferenced_params+0x46b/0x547 sound/core/pcm_native.c:471 snd_pcm_hw_refine_old_user sound/core/pcm_native.c:3700 [inline] snd_pcm_common_ioctl+0x1002/0x1764 sound/core/pcm_native.c:3036 snd_pcm_ioctl+0x93/0xa9 sound/core/pcm_native.c:3073 vfs_ioctl+0x76/0x9e fs/ioctl.c:47 do_vfs_ioctl+0xfc5/0x1022 fs/ioctl.c:722 ksys_ioctl+0x79/0xb1 fs/ioctl.c:737 __do_sys_ioctl fs/ioctl.c:744 [inline] __se_sys_ioctl fs/ioctl.c:742 [inline] __x64_sys_ioctl+0x7f/0x86 fs/ioctl.c:742 do_syscall_64+0x10b/0x144 arch/x86/entry/common.c:299 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x443649 Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007ffef556a688 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00000000004004a0 RCX: 0000000000443649 RDX: 00000000200010c0 RSI: 00000000c1004110 RDI: 0000000000000003 RBP: 00000000004031f0 R08: 0000000000000000 R09: 00000000004004a0 R10: 000000000000001f R11: 0000000000000246 R12: 0000000000403280 R13: 0000000000000000 R14: 00000000004b1018 R15: 00000000004004a0 Modules linked in: ---[ end trace 7398808905092392 ]--- RIP: 0010:snd_pcm_lib_ioctl_fifo_size sound/core/pcm_lib.c:1739 [inline] RIP: 0010:snd_pcm_lib_ioctl+0x73e/0x75c sound/core/pcm_lib.c:1764 Code: fd 4c 89 e2 b8 ff ff 37 00 48 c1 ea 03 48 c1 e0 2a 80 3c 02 00 74 08 4c 89 e7 e8 f0 8e 14 fe 48 8b 83 18 02 00 00 89 ed 31 d2 <48> f7 f5 48 89 83 18 02 00 00 45 31 ed e8 7f b5 f2 fd 44 89 e8 5b RSP: 0018:ffff8881da17fb78 EFLAGS: 00010246 RAX: 0000000000000000 RBX: ffff8881dce33800 RCX: ffff8881dd6a9980 RDX: 0000000000000000 RSI: ffffffff833e3709 RDI: 0000000100000000 RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000007 R10: ffff8881dd6a9980 R11: ffffffff8134d1e8 R12: ffff8881dce33a18 R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000 FS: 0000000002290300(0000) GS:ffff8881f6c00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007b48899bf000 CR3: 00000001d89ec000 CR4: 00000000001406f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 ---------------- Code disassembly (best guess): 0: fd std 1: 4c 89 e2 mov %r12,%rdx 4: b8 ff ff 37 00 mov $0x37ffff,%eax 9: 48 c1 ea 03 shr $0x3,%rdx d: 48 c1 e0 2a shl $0x2a,%rax 11: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 15: 74 08 je 0x1f 17: 4c 89 e7 mov %r12,%rdi 1a: e8 f0 8e 14 fe call 0xfe148f0f 1f: 48 8b 83 18 02 00 00 mov 0x218(%rbx),%rax 26: 89 ed mov %ebp,%ebp 28: 31 d2 xor %edx,%edx * 2a: 48 f7 f5 div %rbp <-- trapping instruction 2d: 48 89 83 18 02 00 00 mov %rax,0x218(%rbx) 34: 45 31 ed xor %r13d,%r13d 37: e8 7f b5 f2 fd call 0xfdf2b5bb 3c: 44 89 e8 mov %r13d,%eax 3f: 5b pop %rbx Got: divide error: 0000 [#1] PREEMPT SMP KASAN CPU: 1 PID: 3149 Comm: syz-executor385 Not tainted 5.4.141-syzkaller-16412-gf364839bcf0b #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 RIP: 0010:snd_pcm_lib_ioctl_fifo_size sound/core/pcm_lib.c:1739 [inline] RIP: 0010:snd_pcm_lib_ioctl+0x73e/0x75c sound/core/pcm_lib.c:1764 Code: fd 4c 89 e2 b8 ff ff 37 00 48 c1 ea 03 48 c1 e0 2a 80 3c 02 00 74 08 4c 89 e7 e8 f0 8e 14 fe 48 8b 83 18 02 00 00 89 ed 31 d2 <48> f7 f5 48 89 83 18 02 00 00 45 31 ed e8 7f b5 f2 fd 44 89 e8 5b RSP: 0018:ffff8881da17fb78 EFLAGS: 00010246 RAX: 0000000000000000 RBX: ffff8881dce33800 RCX: ffff8881dd6a9980 RDX: 0000000000000000 RSI: ffffffff833e3709 RDI: 0000000100000000 RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000007 R10: ffff8881dd6a9980 R11: ffffffff8134d1e8 R12: ffff8881dce33a18 R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000 FS: 0000000002290300(0000) GS:ffff8881f6d00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000020001090 CR3: 00000001d89ec000 CR4: 00000000001406e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: snd_pcm_ops_ioctl+0x76/0xa0 sound/core/pcm_native.c:196 fixup_unreferenced_params+0x46b/0x547 sound/core/pcm_native.c:471 snd_pcm_hw_refine_old_user sound/core/pcm_native.c:3700 [inline] snd_pcm_common_ioctl+0x1002/0x1764 sound/core/pcm_native.c:3036 snd_pcm_ioctl+0x93/0xa9 sound/core/pcm_native.c:3073 vfs_ioctl+0x76/0x9e fs/ioctl.c:47 do_vfs_ioctl+0xfc5/0x1022 fs/ioctl.c:722 ksys_ioctl+0x79/0xb1 fs/ioctl.c:737 __do_sys_ioctl fs/ioctl.c:744 [inline] __se_sys_ioctl fs/ioctl.c:742 [inline] __x64_sys_ioctl+0x7f/0x86 fs/ioctl.c:742 do_syscall_64+0x10b/0x144 arch/x86/entry/common.c:299 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x443649 Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007ffef556a688 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00000000004004a0 RCX: 0000000000443649 RDX: 00000000200010c0 RSI: 00000000c1004110 RDI: 0000000000000003 RBP: 00000000004031f0 R08: 0000000000000000 R09: 00000000004004a0 R10: 000000000000001f R11: 0000000000000246 R12: 0000000000403280 R13: 0000000000000000 R14: 00000000004b1018 R15: 00000000004004a0 Modules linked in: ---[ end trace 7398808905092392 ]--- RIP: 0010:snd_pcm_lib_ioctl_fifo_size sound/core/pcm_lib.c:1739 [inline] RIP: 0010:snd_pcm_lib_ioctl+0x73e/0x75c sound/core/pcm_lib.c:1764 Code: fd 4c 89 e2 b8 ff ff 37 00 48 c1 ea 03 48 c1 e0 2a 80 3c 02 00 74 08 4c 89 e7 e8 f0 8e 14 fe 48 8b 83 18 02 00 00 89 ed 31 d2 <48> f7 f5 48 89 83 18 02 00 00 45 31 ed e8 7f b5 f2 fd 44 89 e8 5b RSP: 0018:ffff8881da17fb78 EFLAGS: 00010246 RAX: 0000000000000000 RBX: ffff8881dce33800 RCX: ffff8881dd6a9980 RDX: 0000000000000000 RSI: ffffffff833e3709 RDI: 0000000100000000 RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000007 R10: ffff8881dd6a9980 R11: ffffffff8134d1e8 R12: ffff8881dce33a18 R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000 FS: 0000000002290300(0000) GS:ffff8881f6c00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007b48899bf000 CR3: 00000001d89ec000 CR4: 00000000001406f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 ---------------- Code disassembly (best guess): 0: fd std 1: 4c 89 e2 mov %r12,%rdx 4: b8 ff ff 37 00 mov $0x37ffff,%eax 9: 48 c1 ea 03 shr $0x3,%rdx d: 48 c1 e0 2a shl $0x2a,%rax 11: 80 3c 02 00 cmpb $0x0,(%rdx,%rax,1) 15: 74 08 je 0x1f 17: 4c 89 e7 mov %r12,%rdi 1a: e8 f0 8e 14 fe callq 0xfe148f0f 1f: 48 8b 83 18 02 00 00 mov 0x218(%rbx),%rax 26: 89 ed mov %ebp,%ebp 28: 31 d2 xor %edx,%edx * 2a: 48 f7 f5 div %rbp <-- trapping instruction 2d: 48 89 83 18 02 00 00 mov %rax,0x218(%rbx) 34: 45 31 ed xor %r13d,%r13d 37: e8 7f b5 f2 fd callq 0xfdf2b5bb 3c: 44 89 e8 mov %r13d,%eax 3f: 5b pop %rbx --- FAIL: TestDisassemblyInReports/arm/0.in (0.12s) linux_test.go:444: Expected: 8<--- cut here --- Unable to handle kernel paging request at virtual address e03c4000 pgd = 86c9a3c0 [e03c4000] *pgd=80000080007003, *pmd=836b2003, *pte=00000000 Internal error: Oops: a07 [#1] PREEMPT SMP ARM Modules linked in: CPU: 1 PID: 7540 Comm: syz-executor.0 Not tainted 5.12.0-rc3-syzkaller #0 Hardware name: ARM-Versatile Express PC is at __raw_writel arch/arm/include/asm/io.h:95 [inline] PC is at bitfill_aligned drivers/video/fbdev/core/cfbfillrect.c:65 [inline] PC is at bitfill_aligned+0x94/0x138 drivers/video/fbdev/core/cfbfillrect.c:35 LR is at bitfill_aligned drivers/video/fbdev/core/cfbfillrect.c:62 [inline] LR is at bitfill_aligned+0x80/0x138 drivers/video/fbdev/core/cfbfillrect.c:35 pc : [<808f355c>] lr : [<808f3548>] psr: 20060013 sp : 86cebad0 ip : 86cebb00 fp : 86cebafc r10: 0000ff00 r9 : 00000020 r8 : ffffffff r7 : 00000000 r6 : 00000000 r5 : e03c3000 r4 : 00090000 r3 : e03c4020 r2 : 000003f0 r1 : 00000020 r0 : 000007f8 Flags: nzCv IRQs on FIQs on Mode SVC_32 ISA ARM Segment none Control: 30c5387d Table: 86c9a3c0 DAC: 00000000 Process syz-executor.0 (pid: 7540, stack limit = 0x86cea210) Stack: (0x86cebad0 to 0x86cec000) bac0: 00090000 844b9000 00000000 e03c3000 bae0: 0000ff00 00090000 808f34c8 00000000 86cebb4c 86cebb00 808f3340 808f34d4 bb00: 0000ff00 00000020 86cebb04 56b92eae 8409a134 844fe41c 00080000 00000000 bb20: 00000000 86cebb74 844b9000 000002f0 00000010 833a7c6c 833a7c6c 83420800 bb40: 86cebb6c 86cebb50 809b51b4 808f319c 86cebba4 86cebb60 844b9000 000007f8 bb60: 86cebbac 86cebb70 808ed840 809b5178 833a7c6c 00000000 00000010 000007f8 bb80: 000002f0 00000000 00000000 56b92eae 808ed764 833a7b34 844fe400 82b5a808 bba0: 86cebbc4 86cebbb0 808e7814 808ed770 844b9000 833a7b34 86cebcac 86cebbc8 bbc0: 808ec8ac 808e77bc 86cebc64 844b9000 844b90a8 00000000 00000000 00000400 bbe0: 00000300 00000400 00000300 00000000 00000000 00000020 00000000 00000010 bc00: 00000008 00000000 00000008 00000008 00000000 00000000 00000008 00000000 bc20: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000001 bc40: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 bc60: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 56b92eae bc80: 83420800 83420800 00000000 844fe400 00000001 00000000 844fe400 00000000 bca0: 86cebce4 86cebcb0 8095bc9c 808ec604 00000000 00000000 00000000 56b92eae bcc0: 00000000 844b9000 83420800 844fe400 00000001 00000000 86cebdc4 86cebce8 bce0: 808ebb40 8095bbc0 86cebd04 86cebcf8 8181dacc 00000400 00000300 00000400 bd00: 00000300 00000000 00000000 00000020 00000000 00000010 00000008 00000000 bd20: 00000008 00000008 00000000 00000000 00000008 00000000 00000000 00000000 bd40: 00000000 00000000 00000280 00000000 00000000 00000001 00000000 00000000 bd60: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 bd80: 00000000 00000000 00000000 00000000 00000000 56b92eae 00000001 833aa120 bda0: 83420800 00000001 00000000 0000003a 83420800 86101000 86cebde4 86cebdc8 bdc0: 8095bea8 808eb994 00000000 86101000 00004b3a 83420800 86cebe64 86cebde8 bde0: 809535a8 8095be08 8181dacc 8181d97c 86cebe2c 86cebe00 8181c9a4 8181dabc be00: 00000000 00000000 81f94a4c 00000103 82bfd371 8550e140 00000003 00000036 be20: 86cebe54 86cebe30 8027ea14 8181c88c 00000000 56b92eae 81f94a4c fffffdfd be40: 00004b3a 86101000 8550e140 fffff73a 00000000 86101000 86cebf0c 86cebe68 be60: 8093f890 80951c38 00000000 56b92eae 837f97e8 0000003a 8353f2f0 0000004b be80: 00000001 8550e140 00000003 00000036 86cebeec 86cebea0 80701b40 806f7810 bea0: 00000001 0000004b 0000003a 86cebebc 858256d0 83dc8180 00004b3a 8550e10b bec0: 86cebeb0 8550e140 00000003 56b92eae 821280c8 00000000 8550e140 56b92eae bee0: 86cebf0c 00004b3a 00000000 8550e141 00000000 8550e140 00000003 8353f2f0 bf00: 86cebfa4 86cebf10 804f33f4 8093f4d8 8020d140 8020e34c 00000000 80200e90 bf20: 828a2438 80200e90 86d32080 80200060 86cebf4c 86cebf40 8181dacc 8181d97c bf40: 86cebf74 86cebf50 8181cb8c 8181dabc 86cebf98 80384d84 828abd1c 80200e90 bf60: 60000093 30c5387d 86cebf94 86cebf78 828abd1c 56b92eae 00000000 00000000 bf80: 00000000 ffffffff 00000036 80200224 86cea000 00000036 00000000 86cebfa8 bfa0: 80200060 804f32e0 00000000 00000000 00000003 00004b3a 00000000 00000000 bfc0: 00000000 00000000 ffffffff 00000036 7ed4733a 76f0f6d0 7ed474ac 76f0f20c bfe0: 76f0f048 76f0f038 00018d58 0004b620 60000010 00000003 00000000 00000000 Backtrace: [<808f34c8>] (bitfill_aligned) from [<808f3340>] (sys_fillrect+0x1b0/0x338 drivers/video/fbdev/core/sysfillrect.c:291) r10:00000000 r9:808f34c8 r8:00090000 r7:0000ff00 r6:e03c3000 r5:00000000 r4:844b9000 r3:00090000 [<808f3190>] (sys_fillrect) from [<809b51b4>] (drm_fb_helper_sys_fillrect drivers/gpu/drm/drm_fb_helper.c:764 [inline]) [<808f3190>] (sys_fillrect) from [<809b51b4>] (drm_fbdev_fb_fillrect+0x48/0x4c drivers/gpu/drm/drm_fb_helper.c:2258) r10:83420800 r9:833a7c6c r8:833a7c6c r7:00000010 r6:000002f0 r5:844b9000 r4:86cebb74 [<809b516c>] (drm_fbdev_fb_fillrect) from [<808ed840>] (bit_clear_margins+0xdc/0x104 drivers/video/fbdev/core/bitblit.c:232) r5:000007f8 r4:844b9000 [<808ed764>] (bit_clear_margins) from [<808e7814>] (fbcon_clear_margins+0x64/0x68 drivers/video/fbdev/core/fbcon.c:1315) r7:82b5a808 r6:844fe400 r5:833a7b34 r4:808ed764 [<808e77b0>] (fbcon_clear_margins) from [<808ec8ac>] (fbcon_switch+0x2b4/0x4ac drivers/video/fbdev/core/fbcon.c:2143) r5:833a7b34 r4:844b9000 [<808ec5f8>] (fbcon_switch) from [<8095bc9c>] (redraw_screen+0xe8/0x248 drivers/tty/vt/vt.c:1021) r10:00000000 r9:844fe400 r8:00000000 r7:00000001 r6:844fe400 r5:00000000 r4:83420800 [<8095bbb4>] (redraw_screen) from [<808ebb40>] (fbcon_blank+0x1b8/0x250 drivers/video/fbdev/core/fbcon.c:2204) r8:00000000 r7:00000001 r6:844fe400 r5:83420800 r4:844b9000 [<808eb988>] (fbcon_blank) from [<8095bea8>] (do_unblank_screen+0xac/0x17c drivers/tty/vt/vt.c:4405) r10:86101000 r9:83420800 r8:0000003a r7:00000000 r6:00000001 r5:83420800 r4:833aa120 [<8095bdfc>] (do_unblank_screen) from [<809535a8>] (vt_kdsetmode drivers/tty/vt/vt_ioctl.c:276 [inline]) [<8095bdfc>] (do_unblank_screen) from [<809535a8>] (vt_k_ioctl drivers/tty/vt/vt_ioctl.c:381 [inline]) [<8095bdfc>] (do_unblank_screen) from [<809535a8>] (vt_ioctl+0x197c/0x1be8 drivers/tty/vt/vt_ioctl.c:713) r7:83420800 r6:00004b3a r5:86101000 r4:00000000 [<80951c2c>] (vt_ioctl) from [<8093f890>] (tty_ioctl+0x3c4/0xc1c drivers/tty/tty_io.c:2801) r10:86101000 r9:00000000 r8:fffff73a r7:8550e140 r6:86101000 r5:00004b3a r4:fffffdfd [<8093f4cc>] (tty_ioctl) from [<804f33f4>] (vfs_ioctl fs/ioctl.c:48 [inline]) [<8093f4cc>] (tty_ioctl) from [<804f33f4>] (do_vfs_ioctl fs/ioctl.c:725 [inline]) [<8093f4cc>] (tty_ioctl) from [<804f33f4>] (__do_sys_ioctl fs/ioctl.c:751 [inline]) [<8093f4cc>] (tty_ioctl) from [<804f33f4>] (sys_ioctl+0x120/0xaa4 fs/ioctl.c:739) r10:8353f2f0 r9:00000003 r8:8550e140 r7:00000000 r6:8550e141 r5:00000000 r4:00004b3a [<804f32d4>] (sys_ioctl) from [<80200060>] (ret_fast_syscall+0x0/0x2c arch/arm/mm/proc-v7.S:64) Exception stack(0x86cebfa8 to 0x86cebff0) bfa0: 00000000 00000000 00000003 00004b3a 00000000 00000000 bfc0: 00000000 00000000 ffffffff 00000036 7ed4733a 76f0f6d0 7ed474ac 76f0f20c bfe0: 76f0f048 76f0f038 00018d58 0004b620 r10:00000036 r9:86cea000 r8:80200224 r7:00000036 r6:ffffffff r5:00000000 r4:00000000 Code: 9a000012 e2853020 e1a02000 e2422008 (e5034020) ---[ end trace 10de0daf1584b951 ]--- ---------------- Code disassembly (best guess): 0: 9a000012 bls 0x50 4: e2853020 add r3, r5, #32 8: e1a02000 mov r2, r0 c: e2422008 sub r2, r2, #8 * 10: e5034020 str r4, [r3, #-32] @ 0xffffffe0 <-- trapping instruction Got: 8<--- cut here --- Unable to handle kernel paging request at virtual address e03c4000 pgd = 86c9a3c0 [e03c4000] *pgd=80000080007003, *pmd=836b2003, *pte=00000000 Internal error: Oops: a07 [#1] PREEMPT SMP ARM Modules linked in: CPU: 1 PID: 7540 Comm: syz-executor.0 Not tainted 5.12.0-rc3-syzkaller #0 Hardware name: ARM-Versatile Express PC is at __raw_writel arch/arm/include/asm/io.h:95 [inline] PC is at bitfill_aligned drivers/video/fbdev/core/cfbfillrect.c:65 [inline] PC is at bitfill_aligned+0x94/0x138 drivers/video/fbdev/core/cfbfillrect.c:35 LR is at bitfill_aligned drivers/video/fbdev/core/cfbfillrect.c:62 [inline] LR is at bitfill_aligned+0x80/0x138 drivers/video/fbdev/core/cfbfillrect.c:35 pc : [<808f355c>] lr : [<808f3548>] psr: 20060013 sp : 86cebad0 ip : 86cebb00 fp : 86cebafc r10: 0000ff00 r9 : 00000020 r8 : ffffffff r7 : 00000000 r6 : 00000000 r5 : e03c3000 r4 : 00090000 r3 : e03c4020 r2 : 000003f0 r1 : 00000020 r0 : 000007f8 Flags: nzCv IRQs on FIQs on Mode SVC_32 ISA ARM Segment none Control: 30c5387d Table: 86c9a3c0 DAC: 00000000 Process syz-executor.0 (pid: 7540, stack limit = 0x86cea210) Stack: (0x86cebad0 to 0x86cec000) bac0: 00090000 844b9000 00000000 e03c3000 bae0: 0000ff00 00090000 808f34c8 00000000 86cebb4c 86cebb00 808f3340 808f34d4 bb00: 0000ff00 00000020 86cebb04 56b92eae 8409a134 844fe41c 00080000 00000000 bb20: 00000000 86cebb74 844b9000 000002f0 00000010 833a7c6c 833a7c6c 83420800 bb40: 86cebb6c 86cebb50 809b51b4 808f319c 86cebba4 86cebb60 844b9000 000007f8 bb60: 86cebbac 86cebb70 808ed840 809b5178 833a7c6c 00000000 00000010 000007f8 bb80: 000002f0 00000000 00000000 56b92eae 808ed764 833a7b34 844fe400 82b5a808 bba0: 86cebbc4 86cebbb0 808e7814 808ed770 844b9000 833a7b34 86cebcac 86cebbc8 bbc0: 808ec8ac 808e77bc 86cebc64 844b9000 844b90a8 00000000 00000000 00000400 bbe0: 00000300 00000400 00000300 00000000 00000000 00000020 00000000 00000010 bc00: 00000008 00000000 00000008 00000008 00000000 00000000 00000008 00000000 bc20: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000001 bc40: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 bc60: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 56b92eae bc80: 83420800 83420800 00000000 844fe400 00000001 00000000 844fe400 00000000 bca0: 86cebce4 86cebcb0 8095bc9c 808ec604 00000000 00000000 00000000 56b92eae bcc0: 00000000 844b9000 83420800 844fe400 00000001 00000000 86cebdc4 86cebce8 bce0: 808ebb40 8095bbc0 86cebd04 86cebcf8 8181dacc 00000400 00000300 00000400 bd00: 00000300 00000000 00000000 00000020 00000000 00000010 00000008 00000000 bd20: 00000008 00000008 00000000 00000000 00000008 00000000 00000000 00000000 bd40: 00000000 00000000 00000280 00000000 00000000 00000001 00000000 00000000 bd60: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000 bd80: 00000000 00000000 00000000 00000000 00000000 56b92eae 00000001 833aa120 bda0: 83420800 00000001 00000000 0000003a 83420800 86101000 86cebde4 86cebdc8 bdc0: 8095bea8 808eb994 00000000 86101000 00004b3a 83420800 86cebe64 86cebde8 bde0: 809535a8 8095be08 8181dacc 8181d97c 86cebe2c 86cebe00 8181c9a4 8181dabc be00: 00000000 00000000 81f94a4c 00000103 82bfd371 8550e140 00000003 00000036 be20: 86cebe54 86cebe30 8027ea14 8181c88c 00000000 56b92eae 81f94a4c fffffdfd be40: 00004b3a 86101000 8550e140 fffff73a 00000000 86101000 86cebf0c 86cebe68 be60: 8093f890 80951c38 00000000 56b92eae 837f97e8 0000003a 8353f2f0 0000004b be80: 00000001 8550e140 00000003 00000036 86cebeec 86cebea0 80701b40 806f7810 bea0: 00000001 0000004b 0000003a 86cebebc 858256d0 83dc8180 00004b3a 8550e10b bec0: 86cebeb0 8550e140 00000003 56b92eae 821280c8 00000000 8550e140 56b92eae bee0: 86cebf0c 00004b3a 00000000 8550e141 00000000 8550e140 00000003 8353f2f0 bf00: 86cebfa4 86cebf10 804f33f4 8093f4d8 8020d140 8020e34c 00000000 80200e90 bf20: 828a2438 80200e90 86d32080 80200060 86cebf4c 86cebf40 8181dacc 8181d97c bf40: 86cebf74 86cebf50 8181cb8c 8181dabc 86cebf98 80384d84 828abd1c 80200e90 bf60: 60000093 30c5387d 86cebf94 86cebf78 828abd1c 56b92eae 00000000 00000000 bf80: 00000000 ffffffff 00000036 80200224 86cea000 00000036 00000000 86cebfa8 bfa0: 80200060 804f32e0 00000000 00000000 00000003 00004b3a 00000000 00000000 bfc0: 00000000 00000000 ffffffff 00000036 7ed4733a 76f0f6d0 7ed474ac 76f0f20c bfe0: 76f0f048 76f0f038 00018d58 0004b620 60000010 00000003 00000000 00000000 Backtrace: [<808f34c8>] (bitfill_aligned) from [<808f3340>] (sys_fillrect+0x1b0/0x338 drivers/video/fbdev/core/sysfillrect.c:291) r10:00000000 r9:808f34c8 r8:00090000 r7:0000ff00 r6:e03c3000 r5:00000000 r4:844b9000 r3:00090000 [<808f3190>] (sys_fillrect) from [<809b51b4>] (drm_fb_helper_sys_fillrect drivers/gpu/drm/drm_fb_helper.c:764 [inline]) [<808f3190>] (sys_fillrect) from [<809b51b4>] (drm_fbdev_fb_fillrect+0x48/0x4c drivers/gpu/drm/drm_fb_helper.c:2258) r10:83420800 r9:833a7c6c r8:833a7c6c r7:00000010 r6:000002f0 r5:844b9000 r4:86cebb74 [<809b516c>] (drm_fbdev_fb_fillrect) from [<808ed840>] (bit_clear_margins+0xdc/0x104 drivers/video/fbdev/core/bitblit.c:232) r5:000007f8 r4:844b9000 [<808ed764>] (bit_clear_margins) from [<808e7814>] (fbcon_clear_margins+0x64/0x68 drivers/video/fbdev/core/fbcon.c:1315) r7:82b5a808 r6:844fe400 r5:833a7b34 r4:808ed764 [<808e77b0>] (fbcon_clear_margins) from [<808ec8ac>] (fbcon_switch+0x2b4/0x4ac drivers/video/fbdev/core/fbcon.c:2143) r5:833a7b34 r4:844b9000 [<808ec5f8>] (fbcon_switch) from [<8095bc9c>] (redraw_screen+0xe8/0x248 drivers/tty/vt/vt.c:1021) r10:00000000 r9:844fe400 r8:00000000 r7:00000001 r6:844fe400 r5:00000000 r4:83420800 [<8095bbb4>] (redraw_screen) from [<808ebb40>] (fbcon_blank+0x1b8/0x250 drivers/video/fbdev/core/fbcon.c:2204) r8:00000000 r7:00000001 r6:844fe400 r5:83420800 r4:844b9000 [<808eb988>] (fbcon_blank) from [<8095bea8>] (do_unblank_screen+0xac/0x17c drivers/tty/vt/vt.c:4405) r10:86101000 r9:83420800 r8:0000003a r7:00000000 r6:00000001 r5:83420800 r4:833aa120 [<8095bdfc>] (do_unblank_screen) from [<809535a8>] (vt_kdsetmode drivers/tty/vt/vt_ioctl.c:276 [inline]) [<8095bdfc>] (do_unblank_screen) from [<809535a8>] (vt_k_ioctl drivers/tty/vt/vt_ioctl.c:381 [inline]) [<8095bdfc>] (do_unblank_screen) from [<809535a8>] (vt_ioctl+0x197c/0x1be8 drivers/tty/vt/vt_ioctl.c:713) r7:83420800 r6:00004b3a r5:86101000 r4:00000000 [<80951c2c>] (vt_ioctl) from [<8093f890>] (tty_ioctl+0x3c4/0xc1c drivers/tty/tty_io.c:2801) r10:86101000 r9:00000000 r8:fffff73a r7:8550e140 r6:86101000 r5:00004b3a r4:fffffdfd [<8093f4cc>] (tty_ioctl) from [<804f33f4>] (vfs_ioctl fs/ioctl.c:48 [inline]) [<8093f4cc>] (tty_ioctl) from [<804f33f4>] (do_vfs_ioctl fs/ioctl.c:725 [inline]) [<8093f4cc>] (tty_ioctl) from [<804f33f4>] (__do_sys_ioctl fs/ioctl.c:751 [inline]) [<8093f4cc>] (tty_ioctl) from [<804f33f4>] (sys_ioctl+0x120/0xaa4 fs/ioctl.c:739) r10:8353f2f0 r9:00000003 r8:8550e140 r7:00000000 r6:8550e141 r5:00000000 r4:00004b3a [<804f32d4>] (sys_ioctl) from [<80200060>] (ret_fast_syscall+0x0/0x2c arch/arm/mm/proc-v7.S:64) Exception stack(0x86cebfa8 to 0x86cebff0) bfa0: 00000000 00000000 00000003 00004b3a 00000000 00000000 bfc0: 00000000 00000000 ffffffff 00000036 7ed4733a 76f0f6d0 7ed474ac 76f0f20c bfe0: 76f0f048 76f0f038 00018d58 0004b620 r10:00000036 r9:86cea000 r8:80200224 r7:00000036 r6:ffffffff r5:00000000 r4:00000000 Code: 9a000012 e2853020 e1a02000 e2422008 (e5034020) ---[ end trace 10de0daf1584b951 ]--- ---------------- Code disassembly (best guess): 0: 9a000012 bls 0x50 4: e2853020 add r3, r5, #32 8: e1a02000 mov r2, r0 c: e2422008 sub r2, r2, #8 * 10: e5034020 str r4, [r3, #-32] ; 0xffffffe0 <-- trapping instruction FAIL FAIL github.com/google/syzkaller/pkg/report 16.810s ok github.com/google/syzkaller/pkg/repro (cached) ok github.com/google/syzkaller/pkg/runtest (cached) ok github.com/google/syzkaller/pkg/serializer (cached) ok github.com/google/syzkaller/pkg/stats (cached) ok github.com/google/syzkaller/pkg/subsystem (cached) ok github.com/google/syzkaller/pkg/subsystem/linux (cached) ok github.com/google/syzkaller/pkg/subsystem/lists (cached) ok github.com/google/syzkaller/pkg/symbolizer (cached) ok github.com/google/syzkaller/pkg/tool (cached) ok github.com/google/syzkaller/pkg/vcs (cached) ok github.com/google/syzkaller/prog (cached) ok github.com/google/syzkaller/prog/test (cached) ok github.com/google/syzkaller/sys/linux (cached) ok github.com/google/syzkaller/sys/netbsd (cached) ok github.com/google/syzkaller/sys/openbsd (cached) ok github.com/google/syzkaller/syz-ci (cached) ok github.com/google/syzkaller/syz-fuzzer (cached) ok github.com/google/syzkaller/syz-hub (cached) ok github.com/google/syzkaller/syz-hub/state (cached) ok github.com/google/syzkaller/syz-manager (cached) ok github.com/google/syzkaller/syz-verifier (cached) ok github.com/google/syzkaller/tools/syz-kconf (cached) ok github.com/google/syzkaller/tools/syz-linter (cached) ok github.com/google/syzkaller/tools/syz-trace2syz/parser (cached) ok github.com/google/syzkaller/tools/syz-trace2syz/proggen (cached) ok github.com/google/syzkaller/vm (cached) ok github.com/google/syzkaller/vm/isolated (cached) ok github.com/google/syzkaller/vm/proxyapp (cached) ok github.com/google/syzkaller/vm/vmimpl (cached) FAIL