syzbot

 sign-in | mailing list | source | docs
🐞 Open [41]
🐞 Fixed [469]
🐞 Invalid [348]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

panic: runtime error: makeslice: len out of range (2)

Status: fixed on 2020/11/13 09:22
Fix commit: cd108432a50e splice: return EINVAL is len is negative
First crash: 1501d, last: 1474d
Similar bugs (3)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
gvisor panic: runtime error: makeslice: len out of range (4) 36 1112d 1116d 14/26 fixed on 2021/11/10 12:39
gvisor panic: runtime error: makeslice: len out of range syz 49 1691d 1713d 0/26 fixed on 2020/04/10 14:44
gvisor panic: runtime error: makeslice: len out of range (3) C 10 1182d 1182d 14/26 fixed on 2021/09/01 20:11

Sample crash report:
panic: runtime error: makeslice: len out of range

goroutine 522 [running]:
panic(0x1070760, 0x13baf50)
	GOROOT/src/runtime/panic.go:1064 +0x46d fp=0xc00074b5b8 sp=0xc00074b500 pc=0x43438d
runtime.panicmakeslicelen(...)
	GOROOT/src/runtime/slice.go:27
runtime.makeslice(0x100be00, 0xfffffffffffffffd, 0xfffffffffffffffd, 0xc0005da0c0)
	GOROOT/src/runtime/slice.go:44 +0xd3 fp=0xc00074b5e8 sp=0xc00074b5b8 pc=0x44ca83
gvisor.dev/gvisor/pkg/sentry/socket/netlink.(*socketOpsCommon).sendMsg(0xc000762150, 0x14021c0, 0xc000978000, 0x13f9da0, 0xc000162300, 0x0, 0x1, 0x0, 0xfffffffffffffffd, 0x0, ...)
	pkg/sentry/socket/netlink/socket.go:913 +0x1c2 fp=0xc00074b728 sp=0xc00074b5e8 pc=0xb0a9d2
gvisor.dev/gvisor/pkg/sentry/socket/netlink.(*SocketVFS2).Write(0xc0007620e0, 0x14021c0, 0xc000978000, 0x13f9da0, 0xc000162300, 0x0, 0x1, 0x0, 0xfffffffffffffffd, 0x0, ...)
	pkg/sentry/socket/netlink/socket_vfs2.go:169 +0x130 fp=0xc00074b830 sp=0xc00074b728 pc=0xb0bb50
gvisor.dev/gvisor/pkg/sentry/vfs.(*FileDescription).Write(0xc0007620e0, 0x14021c0, 0xc000978000, 0x13f9da0, 0xc000162300, 0x0, 0x1, 0x0, 0xfffffffffffffffd, 0x0, ...)
	pkg/sentry/vfs/file_description.go:697 +0xb5 fp=0xc00074b8b0 sp=0xc00074b830 pc=0x706735
gvisor.dev/gvisor/pkg/sentry/kernel/pipe.(*VFSPipeFD).SpliceToNonPipe(0xc000162300, 0x14021c0, 0xc000978000, 0xc0007620e0, 0xffffffffffffffff, 0xfffffffffffffffd, 0x0, 0x0, 0x0)
	pkg/sentry/kernel/pipe/vfs.go:320 +0x1d3 fp=0xc00074b9a0 sp=0xc00074b8b0 pc=0x827c23
gvisor.dev/gvisor/pkg/sentry/syscalls/linux/vfs2.Splice(0xc000978000, 0x3, 0x0, 0x5, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, ...)
	pkg/sentry/syscalls/linux/vfs2/splice.go:175 +0xabb fp=0xc00074bba8 sp=0xc00074b9a0 pc=0xd5fbfb
gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).executeSyscall(0xc000978000, 0x113, 0x3, 0x0, 0x5, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x11f18c0, ...)
	pkg/sentry/kernel/task_syscall.go:117 +0x1b6 fp=0xc00074bc68 sp=0xc00074bba8 pc=0x971326
gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).doSyscallInvoke(0xc000978000, 0x113, 0x3, 0x0, 0x5, 0x0, 0xfffffffffffffffd, 0x0, 0xfffffffffffffffd, 0x0)
	pkg/sentry/kernel/task_syscall.go:292 +0x70 fp=0xc00074bcf0 sp=0xc00074bc68 pc=0x972610
gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).doSyscallEnter(0xc000978000, 0x113, 0x3, 0x0, 0x5, 0x0, 0xfffffffffffffffd, 0x0, 0x13cfc01, 0x100000000000000)
	pkg/sentry/kernel/task_syscall.go:239 +0xb4 fp=0xc00074bd50 sp=0xc00074bcf0 pc=0x9720c4
gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).doSyscall(0xc000978000, 0x2, 0xc000978000)
	pkg/sentry/kernel/task_syscall.go:206 +0x198 fp=0xc00074be10 sp=0xc00074bd50 pc=0x9719a8
gvisor.dev/gvisor/pkg/sentry/kernel.(*runApp).execute(0x0, 0xc000978000, 0x13cfce0, 0x0)
	pkg/sentry/kernel/task_run.go:321 +0xd88 fp=0xc00074bf60 sp=0xc00074be10 pc=0x964938
gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).run(0xc000978000, 0xa)
	pkg/sentry/kernel/task_run.go:97 +0x1bd fp=0xc00074bfd0 sp=0xc00074bf60 pc=0x96347d
runtime.goexit()
	src/runtime/asm_amd64.s:1373 +0x1 fp=0xc00074bfd8 sp=0xc00074bfd0 pc=0x467da1
created by gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).Start
	pkg/sentry/kernel/task_start.go:371 +0x112

Crashes (5):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2020/10/16 20:47 gvisor 14a003c60f35 6e262c73 .config console log report syz C ci-gvisor-main
2020/11/13 06:17 gvisor a47d38495e7e 16fca0c8 .config console log report info ci-gvisor-main
2020/10/28 22:41 gvisor 5fe886ab6f92 f24824d3 .config console log report info ci-gvisor-main
2020/10/17 01:11 gvisor 14a003c60f35 6e262c73 .config console log report info ci-gvisor-main
2020/10/16 20:36 gvisor 14a003c60f35 6e262c73 .config console log report info ci-gvisor-main
* Struck through repros no longer work on HEAD.