panic: bad arg kind: <nil> (9)
1 view
Skip to first unread message
syzbot
Mar 24, 2020, 5:34:19 PM3/24/20
to syzkaller-o...@googlegroups.com
Hello,
syzbot found the following crash on:
HEAD commit: e6666952 When doing a loop inside a loop for input validat..
git tree: openbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=17035e75e00000
kernel config: https://syzkaller.appspot.com/x/.config?x=fe55924c11e64b0a
dashboard link: https://syzkaller.appspot.com/bug?extid=ab49f397649e819426a7
Unfortunately, I don't have any reproducer for this crash yet.
IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+ab49f3...@syzkaller.appspotmail.com
panic: bad arg kind: <nil>
goroutine 23 [running]:
github.com/google/syzkaller/prog.clone(0x0, 0x0, 0xc0017f1308, 0xc001a096c0, 0xc001a28ec0)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:79 +0x954
github.com/google/syzkaller/prog.clone(0x9a7c20, 0xc000336f30, 0xc0017f1308, 0x9a7c20, 0xc001a18de0)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:57 +0x17c
github.com/google/syzkaller/prog.clone(0x9a7c20, 0xc000336f90, 0xc0017f1308, 0xc0017f1060, 0x40be26)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:57 +0x17c
github.com/google/syzkaller/prog.clone(0x9a7c60, 0xc000336fc0, 0xc0017f1308, 0x9a7ba0, 0xc001a28e40)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:44 +0x58f
github.com/google/syzkaller/prog.clone(0x9a7c20, 0xc000336ff0, 0xc0017f1308, 0xc0017f1388, 0x40be26)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:57 +0x17c
github.com/google/syzkaller/prog.clone(0x9a7c60, 0xc000337020, 0xc0017f1308, 0x9a7ba0, 0xc001a28e00)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:44 +0x58f
github.com/google/syzkaller/prog.(*Prog).Clone(0xc000339e40, 0x8f499d)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:24 +0x279
github.com/google/syzkaller/prog.(*randGen).resourceCentric(0xc00194acc0, 0xc00118be00, 0xcb6e20, 0x1, 0x0, 0x0, 0x0, 0x8f499d)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:857 +0xc2
github.com/google/syzkaller/prog.(*ResourceType).generate(0xcb6e20, 0xc00194acc0, 0xc00118be00, 0x30, 0x879360, 0x9a7ba0, 0xc001261340, 0x30)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:688 +0x282
github.com/google/syzkaller/prog.(*randGen).generateArgImpl(0xc00194acc0, 0xc00118be00, 0x9aed20, 0xcb6e20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:677 +0x506
github.com/google/syzkaller/prog.(*randGen).generateArg(...)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:626
github.com/google/syzkaller/prog.(*randGen).generateArgs(0xc00194acc0, 0xc00118be00, 0xca2360, 0x3, 0x3, 0x4eee93, 0xc0024d8000, 0x87ef08c6efa7340, 0xc0017f17e0, 0x4ef283, ...)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:614 +0x107
github.com/google/syzkaller/prog.(*randGen).generateParticularCall(0xc00194acc0, 0xc00118be00, 0xcec980, 0x1, 0x2, 0xc00271e090)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:562 +0xc6
github.com/google/syzkaller/prog.(*randGen).createResource(0xc00194acc0, 0xc00118be00, 0xcb7240, 0x0, 0x0, 0x0, 0x0, 0x0)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:395 +0x53c
github.com/google/syzkaller/prog.(*ResourceType).generate(0xcb7240, 0xc00194acc0, 0xc00118be00, 0x10, 0x879360, 0xc000138000, 0x2877f5008, 0x10)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:694 +0x203
github.com/google/syzkaller/prog.(*randGen).generateArgImpl(0xc00194acc0, 0xc00118be00, 0x9aed20, 0xcb7240, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:677 +0x506
github.com/google/syzkaller/prog.(*randGen).generateArg(...)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:626
github.com/google/syzkaller/prog.(*randGen).generateArgs(0xc00194acc0, 0xc00118be00, 0xc99090, 0x1, 0x1, 0xa5fb9acc, 0x45635c7169607429, 0xc0017f1d78, 0x78a33e, 0x85a040, ...)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:614 +0x107
github.com/google/syzkaller/prog.(*randGen).generateParticularCall(0xc00194acc0, 0xc00118be00, 0xcecde0, 0x137, 0xc00118be00, 0xc002055800)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:562 +0xc6
github.com/google/syzkaller/prog.(*randGen).generateCall(0xc00194acc0, 0xc00118be00, 0xc0020552c0, 0x5, 0xc0020552c0, 0xc002055640, 0xc00118be00)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:554 +0xb2
github.com/google/syzkaller/prog.(*mutator).insertCall(0xc0017f1ec0, 0x14)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/mutation.go:141 +0xf2
github.com/google/syzkaller/prog.(*Prog).Mutate(0xc0020552c0, 0x9a2460, 0xc0022ddc20, 0x14, 0xc0022e0600, 0xc0024b4000, 0x20b9, 0x2400)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/mutation.go:45 +0x2ea
main.(*Proc).loop(0xc0022e0640)
/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:95 +0x434
created by main.main
/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:259 +0x114c
---
This bug is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this bug report. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
syzbot found the following crash on:
HEAD commit: e6666952 When doing a loop inside a loop for input validat..
git tree: openbsd
console output: https://syzkaller.appspot.com/x/log.txt?x=17035e75e00000
kernel config: https://syzkaller.appspot.com/x/.config?x=fe55924c11e64b0a
dashboard link: https://syzkaller.appspot.com/bug?extid=ab49f397649e819426a7
Unfortunately, I don't have any reproducer for this crash yet.
IMPORTANT: if you fix the bug, please add the following tag to the commit:
Reported-by: syzbot+ab49f3...@syzkaller.appspotmail.com
panic: bad arg kind: <nil>
goroutine 23 [running]:
github.com/google/syzkaller/prog.clone(0x0, 0x0, 0xc0017f1308, 0xc001a096c0, 0xc001a28ec0)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:79 +0x954
github.com/google/syzkaller/prog.clone(0x9a7c20, 0xc000336f30, 0xc0017f1308, 0x9a7c20, 0xc001a18de0)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:57 +0x17c
github.com/google/syzkaller/prog.clone(0x9a7c20, 0xc000336f90, 0xc0017f1308, 0xc0017f1060, 0x40be26)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:57 +0x17c
github.com/google/syzkaller/prog.clone(0x9a7c60, 0xc000336fc0, 0xc0017f1308, 0x9a7ba0, 0xc001a28e40)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:44 +0x58f
github.com/google/syzkaller/prog.clone(0x9a7c20, 0xc000336ff0, 0xc0017f1308, 0xc0017f1388, 0x40be26)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:57 +0x17c
github.com/google/syzkaller/prog.clone(0x9a7c60, 0xc000337020, 0xc0017f1308, 0x9a7ba0, 0xc001a28e00)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:44 +0x58f
github.com/google/syzkaller/prog.(*Prog).Clone(0xc000339e40, 0x8f499d)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:24 +0x279
github.com/google/syzkaller/prog.(*randGen).resourceCentric(0xc00194acc0, 0xc00118be00, 0xcb6e20, 0x1, 0x0, 0x0, 0x0, 0x8f499d)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:857 +0xc2
github.com/google/syzkaller/prog.(*ResourceType).generate(0xcb6e20, 0xc00194acc0, 0xc00118be00, 0x30, 0x879360, 0x9a7ba0, 0xc001261340, 0x30)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:688 +0x282
github.com/google/syzkaller/prog.(*randGen).generateArgImpl(0xc00194acc0, 0xc00118be00, 0x9aed20, 0xcb6e20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:677 +0x506
github.com/google/syzkaller/prog.(*randGen).generateArg(...)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:626
github.com/google/syzkaller/prog.(*randGen).generateArgs(0xc00194acc0, 0xc00118be00, 0xca2360, 0x3, 0x3, 0x4eee93, 0xc0024d8000, 0x87ef08c6efa7340, 0xc0017f17e0, 0x4ef283, ...)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:614 +0x107
github.com/google/syzkaller/prog.(*randGen).generateParticularCall(0xc00194acc0, 0xc00118be00, 0xcec980, 0x1, 0x2, 0xc00271e090)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:562 +0xc6
github.com/google/syzkaller/prog.(*randGen).createResource(0xc00194acc0, 0xc00118be00, 0xcb7240, 0x0, 0x0, 0x0, 0x0, 0x0)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:395 +0x53c
github.com/google/syzkaller/prog.(*ResourceType).generate(0xcb7240, 0xc00194acc0, 0xc00118be00, 0x10, 0x879360, 0xc000138000, 0x2877f5008, 0x10)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:694 +0x203
github.com/google/syzkaller/prog.(*randGen).generateArgImpl(0xc00194acc0, 0xc00118be00, 0x9aed20, 0xcb7240, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:677 +0x506
github.com/google/syzkaller/prog.(*randGen).generateArg(...)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:626
github.com/google/syzkaller/prog.(*randGen).generateArgs(0xc00194acc0, 0xc00118be00, 0xc99090, 0x1, 0x1, 0xa5fb9acc, 0x45635c7169607429, 0xc0017f1d78, 0x78a33e, 0x85a040, ...)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:614 +0x107
github.com/google/syzkaller/prog.(*randGen).generateParticularCall(0xc00194acc0, 0xc00118be00, 0xcecde0, 0x137, 0xc00118be00, 0xc002055800)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:562 +0xc6
github.com/google/syzkaller/prog.(*randGen).generateCall(0xc00194acc0, 0xc00118be00, 0xc0020552c0, 0x5, 0xc0020552c0, 0xc002055640, 0xc00118be00)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:554 +0xb2
github.com/google/syzkaller/prog.(*mutator).insertCall(0xc0017f1ec0, 0x14)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/mutation.go:141 +0xf2
github.com/google/syzkaller/prog.(*Prog).Mutate(0xc0020552c0, 0x9a2460, 0xc0022ddc20, 0x14, 0xc0022e0600, 0xc0024b4000, 0x20b9, 0x2400)
/syzkaller/gopath/src/github.com/google/syzkaller/prog/mutation.go:45 +0x2ea
main.(*Proc).loop(0xc0022e0640)
/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:95 +0x434
created by main.main
/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:259 +0x114c
---
This bug is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this bug report. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
Anton Lindqvist
Mar 25, 2020, 3:28:01 AM3/25/20
to syzbot, syzkaller-o...@googlegroups.com
#syz invalid
Reply all
Reply to author
Forward
0 new messages