Failed to build fuchsia asan-ubsan variant with Syzkaller

84 views
Skip to first unread message

fahima MOKHTARI

unread,
Jul 22, 2022, 1:46:07 PM7/22/22
to discuss
Hi,
I build Fuchsia with the variant "asan-uban" and with the following configuration:

fx --dir "out/x64" set core.x64 \               

  --with-base "//bundles:tools" \

  --with-base "//src/testing/fuzzing/syzkaller" \

  --args=syzkaller_dir='"/Users/mac/syzkaller"' \

  --variant=asan-ubsan


and then ran: 

 fx clean-build


For syzkaller, I used the following configuration file:

{
"name": "fuchsia",
"target": "fuchsia/amd64",
"http": ":12345",
"workdir": "/Users/mac/workdir",
"kernel_obj": "/Users/mac/fuchsia/out/x64/kernel_x64",
"syzkaller": "/Users/mac/syzkaller",
"image": "/Users/mac/fuchsia/out/x64/obj/build/images/fuchsia/fuchsia/fvm.blk",
"sshkey": "/Users/mac/fuchsia/.ssh/pkey",
"reproduce": false,
"cover": false,
"procs": 8,
"type": "qemu",
"vm": {
"count": 4,
"cpu": 4,
"mem": 2048,
"kernel": "/Users/mac/fuchsia/out/x64/multiboot.bin",
"initrd": "/Users/mac/fuchsia/out/x64/fuchsia.zbi"
}
}

and when I tried to run it with syzkaller, I got the following errors:


mac@macs-MacBook-Pro syzkaller % bin/syz-manager -config ../workdir/config.cfg --debug
2022/07/22 17:55:50 limiting number of VMs from 4 to 1 in debug mode
2022/07/22 17:55:51 loading corpus...
2022/07/22 17:55:51 serving http on http://:12345
2022/07/22 17:55:51 serving rpc on tcp://[::]:53354
2022/07/22 17:55:51 booting test machines...
2022/07/22 17:55:51 wait for the connection from test machine...
2022/07/22 17:55:51 running command: qemu-system-x86_64 []string{"-m", "2048", "-smp", "4", "-chardev", "socket,id=SOCKSYZ,server=on,wait=off,host=localhost,port=60723", "-mon", "chardev=SOCKSYZ,mode=control", "-display", "none", "-serial", "stdio", "-no-reboot", "-name", "VM-0", "-device", "virtio-rng-pci", "-accel", "hvf", "-machine", "q35", "-cpu", "host,migratable=off", "-device", "e1000,netdev=net0", "-netdev", "user,id=net0,restrict=on,hostfwd=tcp:127.0.0.1:33589-:22", "-hda", "/Users/mac/fuchsia/out/x64/obj/build/images/fuchsia/fuchsia/fvm.blk", "-snapshot", "-initrd", "/Users/mac/fuchsia/out/x64/fuchsia.zbi", "-kernel", "/Users/mac/fuchsia/out/x64/multiboot.bin", "-append", "kernel.serial=legacy kernel.halt-on-panic=true "}
multiboot-shim: Legacy boot from qemu.
multiboot-shim:   CMDLINE @ [0x12a037, 0x12a08f): /Users/mac/fuchsia/out/x64/multiboot.bin kernel.serial=legacy kernel.halt-on-panic=true
multiboot-shim:   RAMDISK @ [0x12b000, 0x657d780): 100.3M from legacy boot loader
multiboot-shim: Enabling MMU with x86-64 page tables... Long mode active!
multiboot-shim: | Physical memory range                    | Size    | Type
multiboot-shim: | [0x0000000000000000, 0x0000000000009000) |     36K | free RAM
multiboot-shim: | [0x0000000000009000, 0x00000000000090c0) |    192B | legacy boot data
multiboot-shim: | [0x00000000000090c0, 0x000000000009fc00) |  602.8K | free RAM
multiboot-shim: | [0x0000000000100000, 0x0000000000129770) |  165.9K | phys kernel image
multiboot-shim: | [0x0000000000129770, 0x000000000012a037) |   2247B | free RAM
multiboot-shim: | [0x000000000012a037, 0x000000000012a08f) |     88B | legacy boot data
multiboot-shim: | [0x000000000012a08f, 0x000000000012a090) |      1B | free RAM
multiboot-shim: | [0x000000000012a090, 0x000000000012a094) |      4B | legacy boot data
multiboot-shim: | [0x000000000012a094, 0x000000000012b000) |   3948B | free RAM
multiboot-shim: | [0x000000000012b000, 0x000000000657d780) |  100.3M | data ZBI
multiboot-shim: | [0x000000000657d780, 0x000000000657e000) |   2176B | free RAM
multiboot-shim: | [0x000000000657e000, 0x000000000657f000) |      4K | bookkeeping
multiboot-shim: | [0x000000000657f000, 0x000000000c9151d0) |   99.6M | data ZBI
multiboot-shim: | [0x000000000c9151d0, 0x000000000c916000) |   3632B | free RAM
multiboot-shim: | [0x000000000c916000, 0x000000000c918000) |      8K | identity page tables
multiboot-shim: | [0x000000000c918000, 0x000000007ffdf000) | 1846.8M | free RAM
multiboot-shim:    Kernel @ [0x000000000012b000, 0x00000000001e7748)  753.8K
multiboot-shim:       BSS @ [0x00000000001e7748, 0x0000000002275100)  566.4K
multiboot-shim:       ZBI @ [0x000000000657f000, 0x000000000c9151d0)  99.6M
multiboot-shim:     Entry @  0x000000000013b271  Booting...
multiboot-shim:    Kernel @ [0x000000000012b000, 0x00000000001e7748)  753.8K
multiboot-shim:       BSS @ [0x00000000001e7748, 0x0000000002275100)  566.4K
multiboot-shim:       ZBI @ [0x000000000657f000, 0x000000000c9151d0)  99.6M
multiboot-shim:     Entry @  0x000000000013b271  Booting...
physboot: {{{reset}}}
physboot: {{{module:0:physboot:elf:afd79eb974491163}}}
physboot: {{{mmap:0x12b000:0x14a100:load:0:rwx:0x0}}}
physboot: | Physical memory range                    | Size    | Type
physboot: | [0x0000000000000000, 0x000000000009fc00) |    639K | free RAM
physboot: | [0x0000000000100000, 0x0000000000101000) |      4K | bookkeeping
physboot: | [0x0000000000101000, 0x000000000012b000) |    168K | free RAM
physboot: | [0x000000000012b000, 0x00000000001f7000) |    816K | phys kernel image
physboot: | [0x00000000001f7000, 0x0000000000275000) |    504K | free RAM
physboot: | [0x0000000000275000, 0x0000000000275100) |    256B | phys kernel image
physboot: | [0x0000000000275100, 0x000000000657f000) |   99.0M | free RAM
physboot: | [0x000000000657f000, 0x000000000c9151d0) |   99.6M | data ZBI
physboot: | [0x000000000c9151d0, 0x000000007ffdf000) | 1846.8M | free RAM
physboot: STORAGE_KERNEL decompressed 1265.6K -> 3128K
physboot: code-patching: using memcpy alternative "memcpy_movsb": [0xffffffff8011108d, 0xffffffff801110a4)
physboot: code-patching: using memset alternative "memset_stosb": [0xffffffff801110a4, 0xffffffff801110d2)
physboot: code-patching: swapgs bug mitigation enabled: [0xffffffff802fdc70, 0xffffffff802fdc73)
physboot: code-patching: MDS/TAA bug mitigation disabled (unable to mitigate): [0xffffffff802fdc78, 0xffffffff802fdc7d)
physboot: code-patching: swapgs bug mitigation enabled: [0xffffffff802fdc8a, 0xffffffff802fdc8d)
physboot: code-patching: MDS/TAA bug mitigation disabled (unable to mitigate): [0xffffffff802fdcd7, 0xffffffff802fdcdc)
physboot: code-patching: 'smoke test' trap patched: [0xffffffff8010005c, 0xffffffff8010005e)
physboot: code-patching: MDS/TAA bug mitigation disabled (unable to mitigate): [0xffffffff80314539, 0xffffffff8031453e)
physboot: code-patching: using retpoline alternative "__x86_indirect_thunk_basic_r11": [0xffffffff803276ac, 0xffffffff803276bd)
physboot: code-patching: using user-copy alternative "_x86_copy_to_or_from_user_movsb_smap": [0xffffffff80327c40, 0xffffffff80327c81)
physboot:    Kernel @ [0x00000000024a1000, 0x000000000279e8e8)  3062.2K
physboot:       BSS @ [0x000000000279e8e8, 0x0000000004841779)  651.6K
physboot:       ZBI @ [0x000000000657f000, 0x000000000657f020)  32B
physboot: Relocated
physboot:    Kernel @ [0x0000000000100000, 0x00000000003fd8e8)
physboot:       BSS @ [0x00000000003fd8e8, 0x00000000024a0779)
physboot:     Entry @  0x0000000000100050  Booting...

ZIRCON KERNEL PANIC

UPTIME: 0ms, CPU: 0
zx_system_get_version_string git-b55842a6a55cef1c84db129bd8bb66249afef8ba-dirty

{{{reset}}}
{{{module:0:kernel:elf:50513ba4e08b575c}}}
{{{mmap:0xffffffff00100000:0x254f5b:load:0:rx:0xffffffff80100000}}}
{{{mmap:0xffffffff00355000:0x9f000:load:0:r:0xffffffff80355000}}}
{{{mmap:0xffffffff003f4000:0x8168:load:0:rw:0xffffffff803f4000}}}
{{{mmap:0xffffffff003fd000:0xa2000:load:0:rw:0xffffffff803fd000}}}
dso: id=50513ba4e08b575c base=0xffffffff00100000 name=zircon.elf

*** KERNEL PANIC (caller pc: 0xffffffff001b12d4, stack frame: 0xffffffff0049d950):
*** ASSERT FAILED at (../../zircon/kernel/object/resource_dispatcher.cc:266): size > 0

platform_halt suggested_action 0 reason 4
Halting...
zx_system_get_version_string git-b55842a6a55cef1c84db129bd8bb66249afef8ba-dirty

{{{reset}}}
{{{module:0:kernel:elf:50513ba4e08b575c}}}
{{{mmap:0xffffffff00100000:0x254f5b:load:0:rx:0xffffffff80100000}}}
{{{mmap:0xffffffff00355000:0x9f000:load:0:r:0xffffffff80355000}}}
{{{mmap:0xffffffff003f4000:0x8168:load:0:rw:0xffffffff803f4000}}}
{{{mmap:0xffffffff003fd000:0xa2000:load:0:rw:0xffffffff803fd000}}}
dso: id=50513ba4e08b575c base=0xffffffff00100000 name=zircon.elf
{{{bt:0:0xffffffff001fa274:ra}}}
{{{bt:1:0xffffffff00354388:ra}}}
{{{bt:2:0xffffffff0010146a:ra}}}
{{{bt:3:0xffffffff001b12d4:ra}}}
{{{bt:4:0xffffffff001f7df6:ra}}}
{{{bt:5:0xffffffff001019d9:ra}}}
{{{bt:6:0xffffffff00101ba8:ra}}}
{{{bt:7:0xffffffff00311896:ra}}}
Halted
entering panic shell loop
2022/07/22 17:56:01 running ssh: []string{"-p", "33589", "-F", "/dev/null", "-o", "UserKnownHostsFile=/dev/null", "-o", "BatchMode=yes", "-o", "IdentitiesOnly=yes", "-o", "StrictHostKeyChecking=no", "-o", "ConnectTimeout=10", "-i", "/Users/mac/fuchsia/.ssh/pkey", "-v", "root@localhost", "pwd"}
2022/07/22 17:56:11 ssh failed: failed to run ["ssh" "-p" "33589" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/Users/mac/fuchsia/.ssh/pkey" "-v" "root@localhost" "pwd"]: exit status 255
OpenSSH_8.6p1, LibreSSL 2.8.3
debug1: Reading configuration data /dev/null
debug1: Authenticator provider $SSH_SK_PROVIDER did not resolve; disabling
debug1: Connecting to localhost [::1] port 33589.
debug1: connect to address ::1 port 33589: Connection refused
debug1: Connecting to localhost [127.0.0.1] port 33589.
debug1: fd 5 clearing O_NONBLOCK
debug1: Connection established.
debug1: identity file /Users/mac/fuchsia/.ssh/pkey type 3
debug1: identity file /Users/mac/fuchsia/.ssh/pkey-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_8.6
Connection timed out during banner exchange
Connection to 127.0.0.1 port 33589 timed out
2022/07/22 17:56:16 running ssh: []string{"-p", "33589", "-F", "/dev/null", "-o", "UserKnownHostsFile=/dev/null", "-o", "BatchMode=yes", "-o", "IdentitiesOnly=yes", "-o", "StrictHostKeyChecking=no", "-o", "ConnectTimeout=10", "-i", "/Users/mac/fuchsia/.ssh/pkey", "-v", "root@localhost", "pwd"}
2022/07/22 17:56:26 ssh failed: failed to run ["ssh" "-p" "33589" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/Users/mac/fuchsia/.ssh/pkey" "-v" "root@localhost" "pwd"]: exit status 255
OpenSSH_8.6p1, LibreSSL 2.8.3
debug1: Reading configuration data /dev/null
debug1: Authenticator provider $SSH_SK_PROVIDER did not resolve; disabling
debug1: Connecting to localhost [::1] port 33589.
debug1: connect to address ::1 port 33589: Connection refused
debug1: Connecting to localhost [127.0.0.1] port 33589.
debug1: fd 5 clearing O_NONBLOCK
debug1: Connection established.
debug1: identity file /Users/mac/fuchsia/.ssh/pkey type 3
debug1: identity file /Users/mac/fuchsia/.ssh/pkey-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_8.6
Connection timed out during banner exchange
Connection to 127.0.0.1 port 33589 timed out
2022/07/22 17:56:31 running ssh: []string{"-p", "33589", "-F", "/dev/null", "-o", "UserKnownHostsFile=/dev/null", "-o", "BatchMode=yes", "-o", "IdentitiesOnly=yes", "-o", "StrictHostKeyChecking=no", "-o", "ConnectTimeout=10", "-i", "/Users/mac/fuchsia/.ssh/pkey", "-v", "root@localhost", "pwd"}
2022/07/22 17:56:41 ssh failed: failed to run ["ssh" "-p" "33589" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/Users/mac/fuchsia/.ssh/pkey" "-v" "root@localhost" "pwd"]: exit status 255
OpenSSH_8.6p1, LibreSSL 2.8.3
debug1: Reading configuration data /dev/null
debug1: Authenticator provider $SSH_SK_PROVIDER did not resolve; disabling
debug1: Connecting to localhost [::1] port 33589.
debug1: connect to address ::1 port 33589: Connection refused
debug1: Connecting to localhost [127.0.0.1] port 33589.
debug1: fd 5 clearing O_NONBLOCK
debug1: Connection established.
debug1: identity file /Users/mac/fuchsia/.ssh/pkey type 3
debug1: identity file /Users/mac/fuchsia/.ssh/pkey-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_8.6
Connection timed out during banner exchange
Connection to 127.0.0.1 port 33589 timed out
2022/07/22 17:56:46 running ssh: []string{"-p", "33589", "-F", "/dev/null", "-o", "UserKnownHostsFile=/dev/null", "-o", "BatchMode=yes", "-o", "IdentitiesOnly=yes", "-o", "StrictHostKeyChecking=no", "-o", "ConnectTimeout=10", "-i", "/Users/mac/fuchsia/.ssh/pkey", "-v", "root@localhost", "pwd"}
2022/07/22 17:56:56 ssh failed: failed to run ["ssh" "-p" "33589" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/Users/mac/fuchsia/.ssh/pkey" "-v" "root@localhost" "pwd"]: exit status 255
OpenSSH_8.6p1, LibreSSL 2.8.3
debug1: Reading configuration data /dev/null
debug1: Authenticator provider $SSH_SK_PROVIDER did not resolve; disabling
debug1: Connecting to localhost [::1] port 33589.
debug1: connect to address ::1 port 33589: Connection refused
debug1: Connecting to localhost [127.0.0.1] port 33589.
debug1: fd 5 clearing O_NONBLOCK
debug1: Connection established.
debug1: identity file /Users/mac/fuchsia/.ssh/pkey type 3
debug1: identity file /Users/mac/fuchsia/.ssh/pkey-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_8.6
Connection timed out during banner exchange
Connection to 127.0.0.1 port 33589 timed out
2022/07/22 17:57:01 running ssh: []string{"-p", "33589", "-F", "/dev/null", "-o", "UserKnownHostsFile=/dev/null", "-o", "BatchMode=yes", "-o", "IdentitiesOnly=yes", "-o", "StrictHostKeyChecking=no", "-o", "ConnectTimeout=10", "-i", "/Users/mac/fuchsia/.ssh/pkey", "-v", "root@localhost", "pwd"}
2022/07/22 17:57:11 ssh failed: failed to run ["ssh" "-p" "33589" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/Users/mac/fuchsia/.ssh/pkey" "-v" "root@localhost" "pwd"]: exit status 255
OpenSSH_8.6p1, LibreSSL 2.8.3
debug1: Reading configuration data /dev/null
debug1: Authenticator provider $SSH_SK_PROVIDER did not resolve; disabling
debug1: Connecting to localhost [::1] port 33589.
debug1: connect to address ::1 port 33589: Connection refused
debug1: Connecting to localhost [127.0.0.1] port 33589.
debug1: fd 5 clearing O_NONBLOCK
debug1: Connection established.
debug1: identity file /Users/mac/fuchsia/.ssh/pkey type 3
debug1: identity file /Users/mac/fuchsia/.ssh/pkey-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_8.6
Connection timed out during banner exchange
Connection to 127.0.0.1 port 33589 timed out
2022/07/22 17:57:16 running ssh: []string{"-p", "33589", "-F", "/dev/null", "-o", "UserKnownHostsFile=/dev/null", "-o", "BatchMode=yes", "-o", "IdentitiesOnly=yes", "-o", "StrictHostKeyChecking=no", "-o", "ConnectTimeout=10", "-i", "/Users/mac/fuchsia/.ssh/pkey", "-v", "root@localhost", "pwd"}
2022/07/22 17:57:26 ssh failed: failed to run ["ssh" "-p" "33589" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/Users/mac/fuchsia/.ssh/pkey" "-v" "root@localhost" "pwd"]: exit status 255
OpenSSH_8.6p1, LibreSSL 2.8.3
debug1: Reading configuration data /dev/null
debug1: Authenticator provider $SSH_SK_PROVIDER did not resolve; disabling
debug1: Connecting to localhost [::1] port 33589.
debug1: connect to address ::1 port 33589: Connection refused
debug1: Connecting to localhost [127.0.0.1] port 33589.
debug1: fd 5 clearing O_NONBLOCK
debug1: Connection established.
debug1: identity file /Users/mac/fuchsia/.ssh/pkey type 3
debug1: identity file /Users/mac/fuchsia/.ssh/pkey-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_8.6
Connection timed out during banner exchange
Connection to 127.0.0.1 port 33589 timed out
2022/07/22 17:57:31 running ssh: []string{"-p", "33589", "-F", "/dev/null", "-o", "UserKnownHostsFile=/dev/null", "-o", "BatchMode=yes", "-o", "IdentitiesOnly=yes", "-o", "StrictHostKeyChecking=no", "-o", "ConnectTimeout=10", "-i", "/Users/mac/fuchsia/.ssh/pkey", "-v", "root@localhost", "pwd"}
2022/07/22 17:57:41 ssh failed: failed to run ["ssh" "-p" "33589" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/Users/mac/fuchsia/.ssh/pkey" "-v" "root@localhost" "pwd"]: exit status 255
OpenSSH_8.6p1, LibreSSL 2.8.3
debug1: Reading configuration data /dev/null
debug1: Authenticator provider $SSH_SK_PROVIDER did not resolve; disabling
debug1: Connecting to localhost [::1] port 33589.
debug1: connect to address ::1 port 33589: Connection refused
debug1: Connecting to localhost [127.0.0.1] port 33589.
debug1: fd 5 clearing O_NONBLOCK
debug1: Connection established.
debug1: identity file /Users/mac/fuchsia/.ssh/pkey type 3
debug1: identity file /Users/mac/fuchsia/.ssh/pkey-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_8.6
Connection timed out during banner exchange
Connection to 127.0.0.1 port 33589 timed out
2022/07/22 17:57:46 running ssh: []string{"-p", "33589", "-F", "/dev/null", "-o", "UserKnownHostsFile=/dev/null", "-o", "BatchMode=yes", "-o", "IdentitiesOnly=yes", "-o", "StrictHostKeyChecking=no", "-o", "ConnectTimeout=10", "-i", "/Users/mac/fuchsia/.ssh/pkey", "-v", "root@localhost", "pwd"}
2022/07/22 17:57:56 ssh failed: failed to run ["ssh" "-p" "33589" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/Users/mac/fuchsia/.ssh/pkey" "-v" "root@localhost" "pwd"]: exit status 255
OpenSSH_8.6p1, LibreSSL 2.8.3
debug1: Reading configuration data /dev/null
debug1: Authenticator provider $SSH_SK_PROVIDER did not resolve; disabling
debug1: Connecting to localhost [::1] port 33589.
debug1: connect to address ::1 port 33589: Connection refused
debug1: Connecting to localhost [127.0.0.1] port 33589.
debug1: fd 5 clearing O_NONBLOCK
debug1: Connection established.
debug1: identity file /Users/mac/fuchsia/.ssh/pkey type 3
debug1: identity file /Users/mac/fuchsia/.ssh/pkey-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_8.6
Connection timed out during banner exchange
Connection to 127.0.0.1 port 33589 timed out
2022/07/22 17:58:01 running ssh: []string{"-p", "33589", "-F", "/dev/null", "-o", "UserKnownHostsFile=/dev/null", "-o", "BatchMode=yes", "-o", "IdentitiesOnly=yes", "-o", "StrictHostKeyChecking=no", "-o", "ConnectTimeout=10", "-i", "/Users/mac/fuchsia/.ssh/pkey", "-v", "root@localhost", "pwd"}
2022/07/22 17:58:11 ssh failed: failed to run ["ssh" "-p" "33589" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/Users/mac/fuchsia/.ssh/pkey" "-v" "root@localhost" "pwd"]: exit status 255
OpenSSH_8.6p1, LibreSSL 2.8.3
debug1: Reading configuration data /dev/null
debug1: Authenticator provider $SSH_SK_PROVIDER did not resolve; disabling
debug1: Connecting to localhost [::1] port 33589.
debug1: connect to address ::1 port 33589: Connection refused
debug1: Connecting to localhost [127.0.0.1] port 33589.
debug1: fd 5 clearing O_NONBLOCK
debug1: Connection established.
debug1: identity file /Users/mac/fuchsia/.ssh/pkey type 3
debug1: identity file /Users/mac/fuchsia/.ssh/pkey-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_8.6
Connection timed out during banner exchange
Connection to 127.0.0.1 port 33589 timed out
2022/07/22 17:58:16 running ssh: []string{"-p", "33589", "-F", "/dev/null", "-o", "UserKnownHostsFile=/dev/null", "-o", "BatchMode=yes", "-o", "IdentitiesOnly=yes", "-o", "StrictHostKeyChecking=no", "-o", "ConnectTimeout=10", "-i", "/Users/mac/fuchsia/.ssh/pkey", "-v", "root@localhost", "pwd"}
2022/07/22 17:58:26 ssh failed: failed to run ["ssh" "-p" "33589" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/Users/mac/fuchsia/.ssh/pkey" "-v" "root@localhost" "pwd"]: exit status 255
OpenSSH_8.6p1, LibreSSL 2.8.3
debug1: Reading configuration data /dev/null
debug1: Authenticator provider $SSH_SK_PROVIDER did not resolve; disabling
debug1: Connecting to localhost [::1] port 33589.
debug1: connect to address ::1 port 33589: Connection refused
debug1: Connecting to localhost [127.0.0.1] port 33589.
debug1: fd 5 clearing O_NONBLOCK
debug1: Connection established.
debug1: identity file /Users/mac/fuchsia/.ssh/pkey type 3
debug1: identity file /Users/mac/fuchsia/.ssh/pkey-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_8.6
Connection timed out during banner exchange
Connection to 127.0.0.1 port 33589 timed out
2022/07/22 17:58:31 running ssh: []string{"-p", "33589", "-F", "/dev/null", "-o", "UserKnownHostsFile=/dev/null", "-o", "BatchMode=yes", "-o", "IdentitiesOnly=yes", "-o", "StrictHostKeyChecking=no", "-o", "ConnectTimeout=10", "-i", "/Users/mac/fuchsia/.ssh/pkey", "-v", "root@localhost", "pwd"}
2022/07/22 17:58:41 ssh failed: failed to run ["ssh" "-p" "33589" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/Users/mac/fuchsia/.ssh/pkey" "-v" "root@localhost" "pwd"]: exit status 255
OpenSSH_8.6p1, LibreSSL 2.8.3
debug1: Reading configuration data /dev/null
debug1: Authenticator provider $SSH_SK_PROVIDER did not resolve; disabling
debug1: Connecting to localhost [::1] port 33589.
debug1: connect to address ::1 port 33589: Connection refused
debug1: Connecting to localhost [127.0.0.1] port 33589.
debug1: fd 5 clearing O_NONBLOCK
debug1: Connection established.
debug1: identity file /Users/mac/fuchsia/.ssh/pkey type 3
debug1: identity file /Users/mac/fuchsia/.ssh/pkey-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_8.6
Connection timed out during banner exchange
Connection to 127.0.0.1 port 33589 timed out
2022/07/22 17:58:46 running ssh: []string{"-p", "33589", "-F", "/dev/null", "-o", "UserKnownHostsFile=/dev/null", "-o", "BatchMode=yes", "-o", "IdentitiesOnly=yes", "-o", "StrictHostKeyChecking=no", "-o", "ConnectTimeout=10", "-i", "/Users/mac/fuchsia/.ssh/pkey", "-v", "root@localhost", "pwd"}
2022/07/22 17:58:56 ssh failed: failed to run ["ssh" "-p" "33589" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/Users/mac/fuchsia/.ssh/pkey" "-v" "root@localhost" "pwd"]: exit status 255
OpenSSH_8.6p1, LibreSSL 2.8.3
debug1: Reading configuration data /dev/null
debug1: Authenticator provider $SSH_SK_PROVIDER did not resolve; disabling
debug1: Connecting to localhost [::1] port 33589.
debug1: connect to address ::1 port 33589: Connection refused
debug1: Connecting to localhost [127.0.0.1] port 33589.
debug1: fd 5 clearing O_NONBLOCK
debug1: Connection established.
debug1: identity file /Users/mac/fuchsia/.ssh/pkey type 3
debug1: identity file /Users/mac/fuchsia/.ssh/pkey-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_8.6
Connection timed out during banner exchange
Connection to 127.0.0.1 port 33589 timed out
2022/07/22 17:59:01 running ssh: []string{"-p", "33589", "-F", "/dev/null", "-o", "UserKnownHostsFile=/dev/null", "-o", "BatchMode=yes", "-o", "IdentitiesOnly=yes", "-o", "StrictHostKeyChecking=no", "-o", "ConnectTimeout=10", "-i", "/Users/mac/fuchsia/.ssh/pkey", "-v", "root@localhost", "pwd"}
2022/07/22 17:59:11 ssh failed: failed to run ["ssh" "-p" "33589" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/Users/mac/fuchsia/.ssh/pkey" "-v" "root@localhost" "pwd"]: exit status 255
OpenSSH_8.6p1, LibreSSL 2.8.3
debug1: Reading configuration data /dev/null
debug1: Authenticator provider $SSH_SK_PROVIDER did not resolve; disabling
debug1: Connecting to localhost [::1] port 33589.
debug1: connect to address ::1 port 33589: Connection refused
debug1: Connecting to localhost [127.0.0.1] port 33589.
debug1: fd 5 clearing O_NONBLOCK
debug1: Connection established.
debug1: identity file /Users/mac/fuchsia/.ssh/pkey type 3
debug1: identity file /Users/mac/fuchsia/.ssh/pkey-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_8.6
Connection timed out during banner exchange
Connection to 127.0.0.1 port 33589 timed out
2022/07/22 17:59:16 running ssh: []string{"-p", "33589", "-F", "/dev/null", "-o", "UserKnownHostsFile=/dev/null", "-o", "BatchMode=yes", "-o", "IdentitiesOnly=yes", "-o", "StrictHostKeyChecking=no", "-o", "ConnectTimeout=10", "-i", "/Users/mac/fuchsia/.ssh/pkey", "-v", "root@localhost", "pwd"}
^C! qemu-system-x86_64: terminating on signal 2 from pid 70253 (<unknown process>)
SIGINT: shutting down...
2022/07/22 17:59:16 ssh failed: failed to run ["ssh" "-p" "33589" "-F" "/dev/null" "-o" "UserKnownHostsFile=/dev/null" "-o" "BatchMode=yes" "-o" "IdentitiesOnly=yes" "-o" "StrictHostKeyChecking=no" "-o" "ConnectTimeout=10" "-i" "/Users/mac/fuchsia/.ssh/pkey" "-v" "root@localhost" "pwd"]: signal: interrupt
OpenSSH_8.6p1, LibreSSL 2.8.3
debug1: Reading configuration data /dev/null
debug1: Authenticator provider $SSH_SK_PROVIDER did not resolve; disabling
debug1: Connecting to localhost [::1] port 33589.
debug1: connect to address ::1 port 33589: Connection refused
debug1: Connecting to localhost [127.0.0.1] port 33589.
debug1: fd 5 clearing O_NONBLOCK
debug1: Connection established.
debug1: identity file /Users/mac/fuchsia/.ssh/pkey type 3
debug1: identity file /Users/mac/fuchsia/.ssh/pkey-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_8.6



Shai Barack

unread,
Jul 22, 2022, 2:16:41 PM7/22/22
to fahima MOKHTARI, discuss, Chris Palmer
Hi Fahima,
Thanks for your interest. 
Syzkaller on Fuchsia is currently broken. I'm afraid that we can't help you at this time. 

--
All posts must follow the Fuchsia Code of Conduct https://fuchsia.dev/fuchsia-src/CODE_OF_CONDUCT or may be removed.
---
You received this message because you are subscribed to the Google Groups "discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to discuss+u...@fuchsia.dev.
To view this discussion on the web visit https://groups.google.com/a/fuchsia.dev/d/msgid/discuss/6031839c-1ee3-452c-ab9e-5928907ffa46n%40fuchsia.dev.

fahima MOKHTARI

unread,
Jul 22, 2022, 2:20:33 PM7/22/22
to Shai Barack, discuss, Chris Palmer
Hi,

There is actually a fix (already merged into syzkaller) the pull request is here before merging: https://github.com/google/syzkaller/pull/3205 
Based on this fix, building Fuchsia with -kasan variant with syzkaller was successful. However, when I used that variant, I got that error. 


--
Fahima Mokhtari

Chris Palmer

unread,
Jul 22, 2022, 7:19:55 PM7/22/22
to fahima MOKHTARI, Shai Barack, discuss
Hi Fahima,

Yes, thanks to Behouba, the situation has improved. :)

I think it's best to stick with --variant=kasan. --variant=asan-ubsan wouldn't do much, since it's the kernel we're targeting. And, we don't yet have UBSan for the kernel (i.e. kubsan). Maybe someday, though.

Chris Palmer

unread,
Jul 22, 2022, 8:14:13 PM7/22/22
to fahima MOKHTARI, Shai Barack, discuss
Oh, also, you might need to point to the extended image:

  "image": "/Users/mac/fuchsia/out/x64/obj/build/images/fuchsia/fuchsia/fvm.blk",

should perhaps be

  "image": "/Users/mac/fuchsia/out/x64/obj/build/images/fuchsia/fuchsia/fvm-extended.blk",

depending on how you named your files.

fahima MOKHTARI

unread,
Jul 23, 2022, 4:08:38 AM7/23/22
to Chris Palmer, Shai Barack, discuss
Hi, 

Thank you for your response :)

for building with this variant,i don't see fvm-extended.blk, that's why I used fvm.blk. 

mac@macs-MacBook-Pro fuchsia % ls out/x64/obj/build/images/fuchsia/fuchsia/ 

assembly_inputs.json fuchsia.vbmeta gen

base fuchsia.zbi image_assembly.json

blob.blk fvm.blk images.json

bootfs fvm.blob.sparse.blk legacy

config_data fvm.fastboot.blk packages.json

data.blk fvm.sparse.blk repackaged

--
Fahima Mokhtari

Chris Palmer

unread,
Jul 25, 2022, 2:09:09 PM7/25/22
to fahima MOKHTARI, Shai Barack, discuss
Right, you have to create it by running this command:

cp "${SOURCEDIR}/out/x64/obj/build/images/fuchsia/fuchsia/fvm.blk" "${SOURCEDIR}/out/x64/obj/build/images/fuchsia/fuchsia/fvm-extended.blk"
${SOURCEDIR}/out/x64/host_x64/fvm "${SOURCEDIR}/out/x64/obj/build/images/fuchsia/fuchsia/fvm-extended.blk" extend --length 3G


Overall, that document could be made less confusing, and some of the steps could be scripted. We are working on that right now, so hopefully soon things will be a bit easier! Thank you for bearing with us during this time of (re)construction. :)

fahima MOKHTARI

unread,
Jul 26, 2022, 9:18:15 AM7/26/22
to Chris Palmer, Shai Barack, discuss
Hi Chris, 

Thank you for your response, and for reminding  me to run that command. However, I still see the same errors in the log.
--
Fahima Mokhtari

Chris Palmer

unread,
Jul 26, 2022, 4:39:37 PM7/26/22
to fahima MOKHTARI, Shai Barack, discuss
Hello,

I have 2 ideas for you to try!

1: We updated the documentation and, earlier today, added a setup.sh script. That script "works on my machine" :) and hopefully it might work on yours? If not, perhaps it is at least a starting point.

2: You can symbolize the kernel panic backtrace, and that might provide us a clue we can move forward with. To do that, copy and paste from your kernel panic log, starting from "{{{reset}}}" until the end of the "bt" lines, and pass that text as standard input to the command `fx symbolize`:

```
$ fx symbolize
{{{reset}}}
{{{module:0:kernel:elf:50513ba4e08b575c}}}
{{{mmap:0xffffffff00100000:0x254f5b:load:0:rx:0xffffffff80100000}}}
{{{mmap:0xffffffff00355000:0x9f000:load:0:r:0xffffffff80355000}}}
{{{mmap:0xffffffff003f4000:0x8168:load:0:rw:0xffffffff803f4000}}}
{{{mmap:0xffffffff003fd000:0xa2000:load:0:rw:0xffffffff803fd000}}}
dso: id=50513ba4e08b575c base=0xffffffff00100000 name=zircon.elf
{{{bt:0:0xffffffff001fa274:ra}}}
{{{bt:1:0xffffffff00354388:ra}}}
{{{bt:2:0xffffffff0010146a:ra}}}
{{{bt:3:0xffffffff001b12d4:ra}}}
{{{bt:4:0xffffffff001f7df6:ra}}}
{{{bt:5:0xffffffff001019d9:ra}}}
{{{bt:6:0xffffffff00101ba8:ra}}}
{{{bt:7:0xffffffff00311896:ra}}}
```

It should print out a symbolized stack trace. I tried yours, but it doesn't work on my machine, since we have different host operating systems (I'm on Linux) and different Fuchsia checkouts and builds.

If you can get a meaningful stack trace — either from this Syzkaller setup process or from actually running Syzkaller — I suggest filing a bug.

Thank you for your patience and interest!

Reply all
Reply to author
Forward
0 new messages