syzbot


panic: runtime error: invalid memory address or nil pointer dereference

Status: auto-closed as invalid on 2020/06/01 17:49
Reported-by: syzbot+@syzkaller.appspotmail.com
First crash: 897d, last: 897d
similar bugs (9):
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-4.14 panic: runtime error: invalid memory address or nil pointer dereference (2) 2 833d 879d 0/1 auto-closed as invalid on 2020/09/04 07:47
android-54 panic: runtime error: invalid memory address or nil pointer dereference 233 464d 464d 0/2 closed as invalid on 2021/05/10 12:09
upstream panic: runtime error: invalid memory address or nil pointer dereference (3) 127 464d 464d 0/23 closed as invalid on 2021/05/10 12:38
linux-4.14 panic: runtime error: invalid memory address or nil pointer dereference (3) 219 464d 464d 0/1 closed as invalid on 2021/05/10 12:09
linux-4.19 panic: runtime error: invalid memory address or nil pointer dereference (2) 1 725d 725d 0/1 auto-closed as invalid on 2020/12/20 16:18
upstream panic: runtime error: invalid memory address or nil pointer dereference (2) 1894 464d 464d 0/23 closed as invalid on 2021/05/10 12:18
linux-4.14 panic: runtime error: invalid memory address or nil pointer dereference 1 1004d 1004d 0/1 auto-closed as invalid on 2020/03/17 06:44
linux-4.19 panic: runtime error: invalid memory address or nil pointer dereference (3) 219 386d 475d 0/1 auto-closed as invalid on 2021/10/25 16:30
linux-4.19 panic: runtime error: invalid memory address or nil pointer dereference 1 866d 866d 0/1 auto-closed as invalid on 2020/08/02 09:10

Sample crash report:
233c201c82d55922c049cbebca6674aa0120f8e8e73b2e31d0420f6b8424ee786859a14edc4fd6c9b7c33e83f2e01533f4a74457d8ef04c600ae461b03a7d234570e1a8f84b34701858b2b98563a392337e8324f48adc13fa50f0162033de25a3bf982714d01097d16827392f45baf93aef011c", 0xd9}, {&(0x7f0000000100)="2a024f0f3ce7e2fbaee618c7e1e8e7ac8d83f98e506404899cfc992742924d57ce2c51133739a621466dd1f4abfe6cce4fd380ce113a98e3e5b8dd0cb34c2ccb2bce3dce7e8c0c87fd99ed4ebba2eb4d4f72f96f8bb32b840947d4af93619bb49eb5cfc0131cc9ca977b9c91f7d9d3805ba1887ccd", 0x75}], 0x6)
panic: runtime error: invalid memory address or nil pointer dereference
[signal SIGSEGV: segmentation violation code=0x1 addr=0x20 pc=0x7a4278]

goroutine 34 [running]:
github.com/google/syzkaller/prog.calcChecksumsCall.func1(0x0, 0xc03aefdc50, 0xc003dd8140)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/checksum.go:34 +0x38
github.com/google/syzkaller/prog.foreachArgImpl(0x0, 0xc03aefdc50, 0xc03aefdbd0, 0xc03aefdb90, 0x10, 0x0, 0xc0388db718)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:125 +0xbe
github.com/google/syzkaller/prog.foreachArgImpl(0xb2b740, 0xc03aefdbc0, 0xc03addf808, 0xc03aefdb90, 0x0, 0x7ff2a6bba000, 0xc0388db718)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:136 +0x1c8
github.com/google/syzkaller/prog.foreachArgImpl(0xb2b780, 0xc03aefdb90, 0xc03addf808, 0x0, 0x0, 0x7ff2a6bba000, 0xc0388db718)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:151 +0x3a6
github.com/google/syzkaller/prog.ForeachArg(0xc03addf800, 0xc0388db718)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:120 +0x9e
github.com/google/syzkaller/prog.calcChecksumsCall(0xc03addf800, 0xc03addf700, 0x0)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/checksum.go:33 +0xbe
github.com/google/syzkaller/prog.(*Prog).SerializeForExec(0xc03addf480, 0x7ff29dde1000, 0x400000, 0x400000, 0xc041978380, 0x431070, 0xa54638)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/encodingexec.go:68 +0x161
github.com/google/syzkaller/pkg/ipc.(*Env).Exec(0xc01d556e10, 0xc00edb8820, 0xc03addf480, 0x7f1da1, 0xc0388dbc28, 0x10000c0001196e0, 0x0, 0xf, 0xc0125c28e0, 0xc0388dbcb8)
	/syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:253 +0x62
main.(*Proc).executeRaw(0xc020c59140, 0xc00edb8820, 0xc03addf480, 0x3, 0x0)
	/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:292 +0x20c
main.(*Proc).triageInput(0xc020c59140, 0xc03ad63a40)
	/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:130 +0x41b
main.(*Proc).loop(0xc020c59140)
	/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:78 +0x19c
created by main.main
	/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:259 +0x114c

Crashes (1):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-upstream-kasan-gce-smack-root 2020/03/03 17:41 upstream 63623fd44972 c88c7b75 .config log report