panic: bad arg kind: <nil> (5)
1 view
Skip to first unread message
syzbot
Feb 18, 2020, 4:07:13 PM2/18/20
to syzkaller-o...@googlegroups.com
Hello,
syzbot found the following crash on:
HEAD commit: 774cd68c Fix an mbuf corruption issue which occurs in net8..
git tree: openbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=12846795e00000
kernel config: https://syzkaller.appspot.com/x/.config?x=fe55924c11e64b0a
dashboard link: https://syzkaller.appspot.com/bug?extid=19ff21ac690b484211c7
Unfortunately, I don't have any reproducer for this crash yet.
IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+19ff21...@syzkaller.appspotmail.com
panic: bad arg kind: <nil>
goroutine 23 [running]:
github.com/google/syzkaller/prog.clone(0x0, 0x0, 0xc002a1b768, 0xc00289c150, 0xc002893700)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:79 +0x954
github.com/google/syzkaller/prog.(*Prog).Clone(0xc00044af40, 0x8f0322)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:24 +0x279
github.com/google/syzkaller/prog.resourceCentric(0xcb14e0, 0xc002568c30, 0xc00263dae0, 0xc00263d801, 0x0, 0x0, 0x0)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:848 +0xbf
github.com/google/syzkaller/prog.(*ResourceType).generate(0xcb14e0, 0xc00263dae0, 0xc002568c30, 0xc002640220, 0xc0026401e0, 0x70, 0xc002a1bb00, 0xc002a1be28)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:681 +0x920
github.com/google/syzkaller/prog.(*randGen).generateArgImpl(0xc00263dae0, 0xc002568c30, 0x9ae7e0, 0xcb14e0, 0xc002a1bc00, 0x0, 0x0, 0x0, 0x0, 0x0)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:674 +0x506
github.com/google/syzkaller/prog.(*randGen).generateArg(...)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:623
github.com/google/syzkaller/prog.regenerate(0xc00263dae0, 0xc002568c30, 0x9a7720, 0xc002610a00, 0x49d0b8, 0x3, 0xc00259f800, 0x4)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/mutation.go:252 +0x6f
github.com/google/syzkaller/prog.(*ResourceType).mutate(0xcb14e0, 0xc00263dae0, 0xc002568c30, 0x9a7720, 0xc002610a00, 0xc002640250, 0xc0026401e0, 0x8, 0x0, 0x40335a98db106d0b, ...)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/mutation.go:321 +0x4d
github.com/google/syzkaller/prog.(*Target).mutateArg(0xc000079860, 0xc00263dae0, 0xc002568c30, 0x9a7720, 0xc002610a00, 0xc002640250, 0xc0026401e0, 0x8, 0x4ef200, 0xc002a1bdff, ...)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/mutation.go:232 +0xe3
github.com/google/syzkaller/prog.(*mutator).mutateArg(0xc002a1bec0, 0xa)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/mutation.go:176 +0x244
github.com/google/syzkaller/prog.(*Prog).Mutate(0xc0026107c0, 0x9a1f20, 0xc0021efce0, 0x1e, 0xc0021dfec0, 0xc002618000, 0x1e8f, 0x2400)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/mutation.go:44 +0x2da
main.(*Proc).loop(0xc0021dff00)
/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:99 +0x434
created by main.main
/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:259 +0x114c
---
This bug is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this bug report. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot found the following crash on:
HEAD commit: 774cd68c Fix an mbuf corruption issue which occurs in net8..
git tree: openbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=12846795e00000
kernel config: https://syzkaller.appspot.com/x/.config?x=fe55924c11e64b0a
dashboard link: https://syzkaller.appspot.com/bug?extid=19ff21ac690b484211c7
Unfortunately, I don't have any reproducer for this crash yet.
IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+19ff21...@syzkaller.appspotmail.com
panic: bad arg kind: <nil>
goroutine 23 [running]:
github.com/google/syzkaller/prog.clone(0x0, 0x0, 0xc002a1b768, 0xc00289c150, 0xc002893700)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:79 +0x954
github.com/google/syzkaller/prog.(*Prog).Clone(0xc00044af40, 0x8f0322)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:24 +0x279
github.com/google/syzkaller/prog.resourceCentric(0xcb14e0, 0xc002568c30, 0xc00263dae0, 0xc00263d801, 0x0, 0x0, 0x0)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:848 +0xbf
github.com/google/syzkaller/prog.(*ResourceType).generate(0xcb14e0, 0xc00263dae0, 0xc002568c30, 0xc002640220, 0xc0026401e0, 0x70, 0xc002a1bb00, 0xc002a1be28)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:681 +0x920
github.com/google/syzkaller/prog.(*randGen).generateArgImpl(0xc00263dae0, 0xc002568c30, 0x9ae7e0, 0xcb14e0, 0xc002a1bc00, 0x0, 0x0, 0x0, 0x0, 0x0)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:674 +0x506
github.com/google/syzkaller/prog.(*randGen).generateArg(...)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:623
github.com/google/syzkaller/prog.regenerate(0xc00263dae0, 0xc002568c30, 0x9a7720, 0xc002610a00, 0x49d0b8, 0x3, 0xc00259f800, 0x4)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/mutation.go:252 +0x6f
github.com/google/syzkaller/prog.(*ResourceType).mutate(0xcb14e0, 0xc00263dae0, 0xc002568c30, 0x9a7720, 0xc002610a00, 0xc002640250, 0xc0026401e0, 0x8, 0x0, 0x40335a98db106d0b, ...)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/mutation.go:321 +0x4d
github.com/google/syzkaller/prog.(*Target).mutateArg(0xc000079860, 0xc00263dae0, 0xc002568c30, 0x9a7720, 0xc002610a00, 0xc002640250, 0xc0026401e0, 0x8, 0x4ef200, 0xc002a1bdff, ...)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/mutation.go:232 +0xe3
github.com/google/syzkaller/prog.(*mutator).mutateArg(0xc002a1bec0, 0xa)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/mutation.go:176 +0x244
github.com/google/syzkaller/prog.(*Prog).Mutate(0xc0026107c0, 0x9a1f20, 0xc0021efce0, 0x1e, 0xc0021dfec0, 0xc002618000, 0x1e8f, 0x2400)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/mutation.go:44 +0x2da
main.(*Proc).loop(0xc0021dff00)
/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:99 +0x434
created by main.main
/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:259 +0x114c
---
This bug is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this bug report. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
Anton Lindqvist
Feb 19, 2020, 2:30:10 AM2/19/20
to syzbot, syzkaller-o...@googlegroups.com
#syz invalid
Reply all
Reply to author
Forward
0 new messages