Skip to content
Tree: eb9400440d
Commits on Sep 19, 2019
  1. sys/linux: re-generate Linux descriptions from next-20190918

    ebiggers authored and dvyukov committed Sep 19, 2019
  2. sys/linux: update fscrypt descriptions

    ebiggers authored and dvyukov committed Sep 19, 2019
    - For v5.4: new ioctls FS_IOC_ADD_ENCRYPTION_KEY,
    - For v5.4: FS_IOC_SET_ENCRYPTION_POLICY now accepts an
      fscrypt_policy_v2 argument in addition to the original fscrypt_policy
      which is now called fscrypt_policy_v1.
    - For v5.4: the fscrypt definitions were moved to a new header
      <linux/fscrypt.h>, and some constants were given new FSCRYPT_* names
      instead of FS_*.  Handle this, and to keep things organized similarly
      move the syzkaller descriptions to a new file fscrypt.txt.
    - For v5.0: remove the removed Speck modes and add Adiantum.
    - For v5.0: add the DIRECT_KEY encryption policy flag.
    Also fix the argument types for FS_IOC_GET_ENCRYPTION_POLICY and
    FS_IOC_GET_ENCRYPTION_PWSALT, which had been mixed up.
  3. sys/syz-extract: re-enable extraction for fsverity.txt

    ebiggers authored and dvyukov committed Sep 19, 2019
    fsverity is now upstream, so re-enable extracting its consts.
Commits on Sep 18, 2019
  1. docs: update

    Zubin Mithra authored and dvyukov committed Sep 3, 2019
    Add in some information about fix bisection.
  2. dashboard/config: Add netbsd kernel configs

    R3x authored and dvyukov committed Aug 15, 2019
  3. pkg/build: build netbsd using config files

    R3x authored and dvyukov committed Aug 15, 2019
  4. sys/targets: add ASAN compiler flag to optional

    xairy committed Sep 18, 2019
    *BSD GCC doesn't have ASAN.
  5. docs: fix USB Raspberry Pi instructions

    xairy committed Sep 18, 2019
  6. sys/linux: update BPF's anonymous structures

    pchaigno authored and dvyukov committed Sep 17, 2019
    Signed-off-by: Paul Chaignon <>
Commits on Sep 17, 2019
  1. sys/linux: basic support for bpf-to-bpf function calls

    pchaigno authored and dvyukov committed Sep 17, 2019
    The BPF template currently only defines helper calls.  BPF function calls
    (bpf-to-bpf calls) are however supported in Linux since v4.16.
    This patch defines bpf-to-bpf calls in the template.
    Signed-off-by: Paul Chaignon <>
  2. pkg/report: ignore "INFO: recovery required on readonly filesystem"

    dvyukov committed Sep 17, 2019
    This is not a kernel bug.
  3. runtest: add a flag to specify tests to run

    xairy committed Sep 5, 2019
  4. executor: fix out-of-bounds access to syscalls array

    xairy authored and dvyukov committed Aug 30, 2019
    Move accessing syscalls array to check for USB syscalls after we validate
    the call_num value (it can be e.g. instr_copyin/out).
  5. pkg/report: improve some USB reports

    xairy authored and dvyukov committed Sep 5, 2019
  6. dashboard/config: add debian stretch options

    xairy authored and dvyukov committed Sep 15, 2019
    See #760 for details.
  7. sys/linux: support for loopkup-free map value accesses

    pchaigno authored and dvyukov committed Sep 17, 2019
    A new BPF instruction that allows lookup-free map value accesses was added
    in Linux v5.2, with commit d8eca5b ("bpf: implement lookup-free direct
    value access for maps").  It enables direct access to map values without
    having to call a BPF helper.  It is currently used to implement global
    variable support.
    This commit adds support for that new instruction.
    Signed-off-by: Paul Chaignon <>
  8. updated golangci.yml to exclude new errors

    Veronica Radu authored and dvyukov committed Sep 17, 2019
Commits on Sep 16, 2019
  1. pkg/osutil: fix arm build

    xairy committed Sep 15, 2019
    pkg/osutil/osutil_linux.go:44:13: cannot use info.Totalram (type uint32) as type uint64 in return argument
  2. sys/freebsd/sys.txt: update sendfile description

    tuexen authored and dvyukov committed Sep 16, 2019
    The signature of sendfile() on FreeBSD is different from the one
    used on Linux.
  3. sys/freebsd/vnet.txt: replace IPPROTO_SEP by IPPROTO_DCCP (#1401)

    tuexen committed Sep 16, 2019
    r350749 updated the constant from IPPROTO_SEP to IPPROTO_DCCP
    to be consistent with the IANA registry.
Commits on Sep 13, 2019
  1. fix fuzzit script to work with latest CLI syntax

    yevgenypats authored and dvyukov committed Sep 13, 2019
    Signed-off-by: Yevgeny Pats <>
  2. executor/fuchsia: close vmo handle in syz_mmap.

    mvanotti committed Sep 11, 2019
    This commit fixes a handle leak in syz_mmap. The bug was pointed out by
    mdempsky during a code review.
    The `syz_mmap` function creates a VMO and maps it to a VMAR in the address
    specified by the `syz_mmap` parameters. Once a VMO is mapped to a vmar,
    the handle to the vmo can be closed without problems.
    The new code makes sure that `zx_handle_close(vmo_handle)` gets called before
    the `syz_mmap` function returns.
Commits on Sep 12, 2019
  1. updated fuzzit to v2.4.46

    yevgenypats authored and dvyukov committed Sep 12, 2019
Commits on Sep 11, 2019
  1. executor/fuchsia: don't crash on syz_mmap failure.

    mvanotti committed Aug 30, 2019
    syz_mmap is a pseudo-syscall that can be used by syzkaller in fuzzing
    programs, however, it is also used to setup the environment for
    syz-executor. syz-executor already checks the return value[0] when it is
    used for setting up the environment, so it doesn't make sense for the
    function to crash (most probably, in a fuzzing program it will be called
    with arguments that would make it fail).
    The previous behavior was causing a bunch of "Lost connection to test
    machine" syzkaller crashes which were meaningless. An example of a
    program in which syz_mmap would crash would be any program in which the
    handle to the root vmar is closed before calling syz_mmap.
  2. pkg/ipc: Send output from syz-executor for non-Forkserver oses.

    mvanotti committed Aug 29, 2019
    This change reuses the logic for sending the output back from
    syz-executor to syz-fuzzer that forkserver oses use: reading it
    periodically. This will be useful for debugging issues in Fuchsia that
    does not support forkserver yet.
Commits on Sep 6, 2019
  1. executor/usb: use UTF16 encoding for default string

    xairy committed Sep 6, 2019
    Also respond with lang ID when string #0 is requested.
  2. sys/linux/usb: always provide device string ids

    xairy committed Sep 6, 2019
    This forces the kernel to make a USB string request and select a lang ID
    early during the enumaration stage.
  3. sys/linux/vusb.txt: properly describe interfaces for USB CDC NCM

    xairy committed Sep 5, 2019
    Also rename cdc_ethernet to cdc_ecm.
  4. docs: add another research paper

    dvyukov committed Sep 6, 2019
You can’t perform that action at this time.