Skip to content
Tree: d613535f94
Commits on Apr 6, 2018
  1. pkg/ipc: disable coverage collection by default

    dvyukov committed Apr 6, 2018
    syz-manager always passes explicit value for the flag.
    syz-stress does not need coverage.
    The only real user is syz-execprog. syz-execprog already
    forces coverage with -coverfile is given. Coverage is harmful
    for external users trying to reproduce reported bugs.
    For the remaining cases of syzkaller developers running
    syz-execprog on KCOV-enabled kernel, the flag can be given
    manually if really needed.
    Fixes #554
  2. syz-manager: warn about disabled syscalls in enable_syscalls

    dvyukov committed Apr 6, 2018
    syz-manager used to silently transitively disable syscalls
    for which input resources can't be created.
    This caused lots of confusion, or worse, users did not notice
    that syzkaller does not actually test what they want.
    Fail loudly with a readable explanation when a syscall
    explicitly enabled in enable_syscalls is actually disabled.
    Note: this requires to slightly change enable/disable_syscalls
    matching logic. Previously "foo" would match "foo" and all "foo$BAR",
    now it matches only "foo". But "foo*" can be used to match all
  3. sys/linux: improve team descriptions

    dvyukov committed Apr 6, 2018
    1. Create ifindex_team, because TEAM_ATTR_TEAM_IFINDEX must
       always point to a team device.
    2. Remove output only attributes like team_attr_item_port, TEAM_ATTR_LIST_PORT,
    3. Restructure team_nl_option_policy: we always want TEAM_ATTR_OPTION_NAME/TYPE/DATA
    4. Provide specialized team_nl_option_policy_per_port and team_nl_option_policy_array.
    5. Make team_attr_option varlen.
    6. Remove unnecessary indirection via team_attr_list_option/team_attr_list_port.
    7. Fix data type for bpf_hash_func and lb_tx_hash_to_port_mapping.
  4. executor: create team device

    dvyukov committed Apr 6, 2018
  5. pkg/report: don't blame kcov

    dvyukov committed Apr 6, 2018
    kcov frame can be present in rcu stalls, ignore it.
  6. sys/linux: add netlink generic team descriptions

    liuhangbin authored and dvyukov committed Apr 3, 2018
    Signed-off-by: Hangbin Liu <>
Commits on Apr 5, 2018
  1. tools: add a script that setups everything

    dvyukov committed Apr 5, 2018
  2. tools/syz-execprog: dump coverage in text format

    dvyukov committed Apr 5, 2018
    There is no point in using sancov,
    it does not do anything other than transforming
    binary format to a useful text format.
    Write out text format directly.
  3. dashboard/app: allow deplaying intial bug reporting

    dvyukov committed Apr 5, 2018
    This is useful to collect reproducers and more info
    about trees where the bug happens before it is first reported.
  4. Update AUTHORS and CONTRIBUTORS files

    mitchell0000 authored and dvyukov committed Apr 3, 2018
  5. executor: update to support FreeBSD kcov

    mitchell0000 authored and dvyukov committed Apr 4, 2018
    Make the required changes to the BSD executor file to interface with
    FreeBSD's kernel coverage implementation. This will allow coverage to be
    used when running syzkaller on this platform.
Commits on Apr 2, 2018
  1. sys/linux: test various binfmt's in execve

    dvyukov committed Apr 2, 2018
  2. pkg/compiler: support non-zero terminated filenames

    dvyukov committed Apr 2, 2018
    Now file names become:
    with a possibility of using other string features:
    string[filename, CONST_SIZE]
    and filename is left as type alias as it is commonly used:
    type filename string[filename]
  3. sys/syz-extract: fix linux/arm

    dvyukov committed Apr 2, 2018
    At some point extract for linux/arm started to fail with:
    extracting from key.txt
    	failed to run compiler: exit status 1
    /tmp/ccT6o7iZ.s: Assembler messages:
    /tmp/ccT6o7iZ.s:4: Error: unknown pseudo-op: `.syntax'
    This is caused by arch/arm/include/asm/unified.h:
    __asm__(".syntax unified");
    Ignore all __asm__ directives as we are cross compiling.
  4. Makefile: fix install_prerequisites

    dvyukov committed Apr 2, 2018
    apt-get complains if all these packages are installed at once.
  5. syz-manager: move syscall info to a separate page

    dvyukov committed Apr 2, 2018
    It's rarely needed. So move from main page.
Commits on Apr 1, 2018
  1. executor: fix unchecked result warning

    dvyukov committed Apr 1, 2018
  2. sys/linux: add support for reading partition tables

    dvyukov committed Apr 1, 2018
  3. prog: support big-endian during hints matching

    dvyukov committed Apr 1, 2018
    Use big-endian match/replace for both blobs and ints.
    Sometimes we have unmarked blobs (no little/big-endian info);
    for ANYBLOBs we intentionally lose all marking;
    but even for marked ints we may need this too.
    Consider that kernel code does not convert the data
    (i.e. not ntohs(pkt->proto) == ETH_P_BATMAN),
    but instead converts the constant (i.e. pkt->proto == htons(ETH_P_BATMAN)).
    In such case we will see dynamic operand that does not
    match what we have in the program.
  4. dashboard/app: support undup command

    dvyukov committed Apr 1, 2018
    Fixes #520
  5. pkg/report: skip list functions during function extraction

    dvyukov committed Apr 1, 2018
    List functions are very generic and we see lots of different
    bug merged into "bug-type in list_function".
Commits on Mar 31, 2018
  1. prog: reduce nesting level in shrinkExpand

    dvyukov committed Mar 31, 2018
  2. syz-fuzzer: revert "syz-fuzzer: relax triage signal conditions"

    dvyukov committed Mar 31, 2018
    "syz-fuzzer: relax triage signal conditions" commit caused doubling of corpuses.
    So that was probably a mistake. Revert it.
  3. sys/linux: fix misspelled const name

    dvyukov committed Mar 31, 2018
    Fixes #552
  4. Makefile: remove obsolete package

    dvyukov committed Mar 31, 2018
    This package is not present on latest debian versions.
  5. syz-manager: add special type=none

    dvyukov committed Mar 31, 2018
    Type "none" is a special case for debugging/development when manager
    does not start any VMs, but instead you start them manually
    and start syz-fuzzer there.
Commits on Mar 30, 2018
  1. executor: fix compilation warnings

    dvyukov committed Mar 30, 2018
    SYS_memfd_create define produces warning in scource
    if system headers already contain the definition (we strip all ifdefs!).
    The same is true for CLONE_NEWCGROUP but we just never hit it yet.
    Also fix format string for 32 bits.
    Also fix potential uninit var in csource, and a missing new line.
  2. sys/linux: add support for mounting filesystem images

    dvyukov committed Mar 28, 2018
You can’t perform that action at this time.