SYZFAIL: SIGILL (2)
17 views
Skip to first unread message
syzbot
Feb 27, 2025, 3:45:23 PM2/27/25
to syzkaller-f...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: 2980318b2747 sh.1: extend the section about getopts
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=13da17b8580000
dashboard link: https://syzkaller.appspot.com/bug?extid=61a027aef5302fd88780
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+61a027...@syzkaller.appspotmail.com
SYZFAIL: SIGILL
ktrace write failed, errno 27, tracing stopped for pid 761
ktrace write failed, errno 27, tracing stopped for pid 759
pid 759 (sshd), jid 0, uid 0: exited on signal 4 (no core dump - bad address)
Connection to 10.128.0.146 closed by remote host.
ifaddr cache = 0xfffffe006e3a9300 is deleted
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3b800
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3b800
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3b800
tap6: Ethernet address: 58:9c:fc:10:7c:69
tap5: link state changed to DOWN
tap6: link state changed to UP
pid 1167 (getty), jid 0, uid 0: exited on signal 4 (core dumped)
ktrace write failed, errno 27, tracing stopped for pid 737
pid 737 (sleep), jid 0, uid 0: exited on signal 4 (no core dump - other error)
pid 682 (sshd), jid 0, uid 0: exited on signal 4 (no core dump - bad address)
pid 818 (dhclient), jid 0, uid 0: exited on signal 4 (core dumped)
pid 1300 (ifconfig), jid 0, uid 0: exited on signal 4 (no core dump - too large)
1972-08-28T21:41:46.893379+00:00tap6: link state changed to DOWN
ci-freebsd-main-8.us-central1-b.c.syzkaller.internal init 1301 - - fatal signalif_delmulti_locked: detaching ifnet instance 0xfffffe00547e1000
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e1000
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e1000
: Illegal instruction
1972-08-28T21:41pid 1281 (syz-executor), jid 0, uid 0: exited on signal 4 (no core dump - too large)
:46.986504+00:00 ci-freebsd-main-8.us-central1-b.c.syzkaller.internal init 1292 - - fatal signal: Illegal instruction
pid 1121 (syz-executor), tap1: tun/tap protocol violation, non-controlling process closed last.
ifaddr cache = 0xfffffe006e3a9900 is deleted
pid 1282 (syz-executor), tap0: tun/tap protocol violation, non-controlling process closed last.
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3d800
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3d800
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3d800
tap1: link state changed to DOWN
1972-08-28T21:41pid 784 (sh), jid 0, uid 0: exited on signal 4 (core dumped)
:46.985299+00:00 ci-freebsd-main-8.us-central1-b.c.syzkaller.internal init 1299 - - fatal signal: Illegal instruction
ifaddr cache = 0xfffffe00585f8900 is deleted
tap0: link state changed to DOWN
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e1800
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e1800
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e1800
pid 1172 (getty), jid 0, uid 0: exited on signal 4 (core dumped)
pid 1289 (syz-executor), tap3: tun/tap protocol violation, non-controlling process closed last.
ifaddr cache = 0xfffffe00585f8600 is deleted
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e0800
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e0800
tap3: link state changed to DOWN
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e0800
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3d800
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3d800
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3d800
pid 761 (csh), jid 0, uid 0: exited on signal 4 (core dumped)
pid 1169 (getty), jid 0, uid 0: exited on signal 4 (core dumped)
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e1800
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e1800
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e1800
pid 1171 (getty), jid 0, uid 0: exited on signal 4 (core dumped)
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3b800
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3b800
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3b800
pid 1168 (getty), jid 0, uid 0: exited on signal 4 (core dumped)
pid 1166 (getty), jid 0, uid 0: exited on signal 4 (core dumped)
pid 1170 (getty), jid 0, uid 0: exited on signal 4 (core dumped)
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e0800
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e0800
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e0800
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
syzbot found the following issue on:
HEAD commit: 2980318b2747 sh.1: extend the section about getopts
git tree: freebsd-src
console output: https://syzkaller.appspot.com/x/log.txt?x=13da17b8580000
dashboard link: https://syzkaller.appspot.com/bug?extid=61a027aef5302fd88780
Unfortunately, I don't have any reproducer for this issue yet.
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+61a027...@syzkaller.appspotmail.com
SYZFAIL: SIGILL
ktrace write failed, errno 27, tracing stopped for pid 761
ktrace write failed, errno 27, tracing stopped for pid 759
pid 759 (sshd), jid 0, uid 0: exited on signal 4 (no core dump - bad address)
Connection to 10.128.0.146 closed by remote host.
ifaddr cache = 0xfffffe006e3a9300 is deleted
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3b800
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3b800
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3b800
tap6: Ethernet address: 58:9c:fc:10:7c:69
tap5: link state changed to DOWN
tap6: link state changed to UP
pid 1167 (getty), jid 0, uid 0: exited on signal 4 (core dumped)
ktrace write failed, errno 27, tracing stopped for pid 737
pid 737 (sleep), jid 0, uid 0: exited on signal 4 (no core dump - other error)
pid 682 (sshd), jid 0, uid 0: exited on signal 4 (no core dump - bad address)
pid 818 (dhclient), jid 0, uid 0: exited on signal 4 (core dumped)
pid 1300 (ifconfig), jid 0, uid 0: exited on signal 4 (no core dump - too large)
1972-08-28T21:41:46.893379+00:00tap6: link state changed to DOWN
ci-freebsd-main-8.us-central1-b.c.syzkaller.internal init 1301 - - fatal signalif_delmulti_locked: detaching ifnet instance 0xfffffe00547e1000
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e1000
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e1000
: Illegal instruction
1972-08-28T21:41pid 1281 (syz-executor), jid 0, uid 0: exited on signal 4 (no core dump - too large)
:46.986504+00:00 ci-freebsd-main-8.us-central1-b.c.syzkaller.internal init 1292 - - fatal signal: Illegal instruction
pid 1121 (syz-executor), tap1: tun/tap protocol violation, non-controlling process closed last.
ifaddr cache = 0xfffffe006e3a9900 is deleted
pid 1282 (syz-executor), tap0: tun/tap protocol violation, non-controlling process closed last.
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3d800
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3d800
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3d800
tap1: link state changed to DOWN
1972-08-28T21:41pid 784 (sh), jid 0, uid 0: exited on signal 4 (core dumped)
:46.985299+00:00 ci-freebsd-main-8.us-central1-b.c.syzkaller.internal init 1299 - - fatal signal: Illegal instruction
ifaddr cache = 0xfffffe00585f8900 is deleted
tap0: link state changed to DOWN
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e1800
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e1800
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e1800
pid 1172 (getty), jid 0, uid 0: exited on signal 4 (core dumped)
pid 1289 (syz-executor), tap3: tun/tap protocol violation, non-controlling process closed last.
ifaddr cache = 0xfffffe00585f8600 is deleted
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e0800
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e0800
tap3: link state changed to DOWN
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e0800
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3d800
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3d800
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3d800
pid 761 (csh), jid 0, uid 0: exited on signal 4 (core dumped)
pid 1169 (getty), jid 0, uid 0: exited on signal 4 (core dumped)
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e1800
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e1800
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e1800
pid 1171 (getty), jid 0, uid 0: exited on signal 4 (core dumped)
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3b800
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3b800
if_delmulti_locked: detaching ifnet instance 0xfffffe0058d3b800
pid 1168 (getty), jid 0, uid 0: exited on signal 4 (core dumped)
pid 1166 (getty), jid 0, uid 0: exited on signal 4 (core dumped)
pid 1170 (getty), jid 0, uid 0: exited on signal 4 (core dumped)
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e0800
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e0800
if_delmulti_locked: detaching ifnet instance 0xfffffe00547e0800
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the report is already addressed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want to overwrite report's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the report is a duplicate of another one, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
Reply all
Reply to author
Forward
0 new messages