syzbot

 sign-in | mailing list | source | docs
🐞 Open [125] 🐞 Fixed [269] 🐞 Invalid [574] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

panic: bad arg kind: <nil> (12)

Status: closed as dup on 2020/05/04 21:03
Reported-by: syzbot+919d26804d02b1f6bd80@syzkaller.appspotmail.com
First crash: 1445d, last: 1354d
Duplicate of
Title Repro Cause bisect Fix bisect Count Last Reported
uvm_fault: in_delmulti syz 375431 1353d 1639d
Similar bugs (12)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
openbsd panic: bad arg kind: <nil> (9) 1 1486d 1486d 0/3 closed as invalid on 2020/03/25 07:28
openbsd panic: bad arg kind: <nil> (5) 1 1521d 1521d 0/3 closed as invalid on 2020/02/19 07:30
openbsd panic: bad arg kind: <nil> (11) 1 1462d 1462d 0/3 closed as invalid on 2020/04/18 07:57
openbsd panic: bad arg kind: <nil> 1 1576d 1576d 0/3 closed as invalid on 2019/12/25 09:50
openbsd panic: bad arg kind: <nil> (10) 1 1483d 1483d 0/3 closed as invalid on 2020/03/28 07:25
openbsd panic: bad arg kind: <nil> (6) 1 1507d 1507d 0/3 closed as invalid on 2020/03/04 07:53
openbsd panic: bad arg kind: <nil> (3) 1 1562d 1562d 0/3 closed as invalid on 2020/01/09 08:12
openbsd panic: bad arg kind: <nil> (13) 1 36d 36d 0/3 upstream: reported on 2024/03/14 00:27
openbsd panic: bad arg kind: <nil> (4) 1 1532d 1532d 0/3 closed as invalid on 2020/02/09 09:06
openbsd panic: bad arg kind: <nil> (2) 1 1573d 1573d 0/3 closed as invalid on 2019/12/29 09:40
openbsd panic: bad arg kind: <nil> (7) 1 1502d 1502d 0/3 closed as invalid on 2020/03/09 08:30
openbsd panic: bad arg kind: <nil> (8) 1 1498d 1498d 0/3 closed as invalid on 2020/03/13 09:30

Sample crash report:
panic: bad arg kind: <nil>

goroutine 24 [running]:
github.com/google/syzkaller/prog.clone(0x0, 0x0, 0xc001a1adc8, 0xc0028a0140, 0xc0024fc6f0)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:79 +0x897
github.com/google/syzkaller/prog.clone(0x98ee00, 0xc0006af020, 0xc001a1adc8, 0x889bc0, 0xc0024fc701)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:57 +0x193
github.com/google/syzkaller/prog.clone(0x98eec0, 0xc0006af040, 0xc001a1adc8, 0xc002e63a40, 0xc00285df40)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:63 +0x4a9
github.com/google/syzkaller/prog.clone(0x98ee00, 0xc0006af060, 0xc001a1adc8, 0x98ee00, 0xc00285dfc0)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:57 +0x193
github.com/google/syzkaller/prog.clone(0x98ee00, 0xc0006af080, 0xc001a1adc8, 0x889bc0, 0xc0024df530)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:57 +0x193
github.com/google/syzkaller/prog.clone(0x98ee40, 0xc0007c2240, 0xc001a1adc8, 0x98ed80, 0xc0024fc640)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:44 +0x774
github.com/google/syzkaller/prog.(*Prog).Clone(0xc0006fe9c0, 0x8f3c34)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/clone.go:24 +0x27a
github.com/google/syzkaller/prog.(*randGen).resourceCentric(0xc002d0e860, 0xc003e4a0f0, 0xbf6d00, 0x0, 0x897d00, 0x200000001, 0xc003492a00, 0xc001a1b068, 0x7b46fe)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:839 +0xc5
github.com/google/syzkaller/prog.(*ResourceType).generate(0xbf6d00, 0xc002d0e860, 0xc003e4a0f0, 0xc00319aa00, 0x98ed80, 0xc003492a00, 0x0, 0x0, 0x0)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:669 +0x285
github.com/google/syzkaller/prog.(*randGen).generateArgImpl(0xc002d0e860, 0xc003e4a0f0, 0x993aa0, 0xbf6d00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:658 +0x40b
github.com/google/syzkaller/prog.(*randGen).generateArg(...)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:608
github.com/google/syzkaller/prog.(*randGen).generateArgs(0xc002d0e860, 0xc003e4a0f0, 0xc8e160, 0xc, 0xc, 0x203000, 0x203000, 0x203000, 0x203000, 0x0, ...)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:596 +0x113
github.com/google/syzkaller/prog.(*StructType).generate(0xc037a0, 0xc002d0e860, 0xc003e4a0f0, 0x0, 0xcdc800, 0x21315d108, 0xc0025e6800, 0x21315d108, 0x0)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:780 +0x7c
github.com/google/syzkaller/prog.(*randGen).generateArgImpl(0xc002d0e860, 0xc003e4a0f0, 0x993b80, 0xc037a0, 0xc002160000, 0x0, 0x0, 0x0, 0x0, 0x0)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:658 +0x40b
github.com/google/syzkaller/prog.(*randGen).generateArg(...)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:608
github.com/google/syzkaller/prog.(*randGen).generateArgs(0xc002d0e860, 0xc003e4a0f0, 0xbfef40, 0x2, 0x2, 0x203000, 0x203000, 0x0, 0x0, 0x0, ...)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:596 +0x113
github.com/google/syzkaller/prog.(*StructType).generate(0xc03980, 0xc002d0e860, 0xc003e4a0f0, 0x0, 0xcdc800, 0xc001a1b510, 0x4fc693, 0xc000085500, 0x492803a5eb0b52d4)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:780 +0x7c
github.com/google/syzkaller/prog.(*randGen).generateArgImpl(0xc002d0e860, 0xc003e4a0f0, 0x993b80, 0xc03980, 0xc001f50000, 0x0, 0x0, 0x0, 0x0, 0x0)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:658 +0x40b
github.com/google/syzkaller/prog.(*randGen).generateArg(...)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:608
github.com/google/syzkaller/prog.(*UnionType).generate(0xbfe980, 0xc002d0e860, 0xc003e4a0f0, 0x0, 0xcdc800, 0xc002d0eba0, 0x0, 0x0, 0x0)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:788 +0xbf
github.com/google/syzkaller/prog.(*randGen).generateArgImpl(0xc002d0e860, 0xc003e4a0f0, 0x993c60, 0xbfe980, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:658 +0x40b
github.com/google/syzkaller/prog.(*randGen).generateArg(...)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:608
github.com/google/syzkaller/prog.(*randGen).generateArgs(0xc002d0e860, 0xc003e4a0f0, 0xbfe940, 0x2, 0x2, 0x0, 0x203000, 0xc001a1b7f0, 0x40de78, 0x10, ...)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:596 +0x113
github.com/google/syzkaller/prog.(*StructType).generate(0xc02480, 0xc002d0e860, 0xc003e4a0f0, 0x0, 0xcdc800, 0xc0034928a0, 0x0, 0x0, 0x0)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:780 +0x7c
github.com/google/syzkaller/prog.(*randGen).generateArgImpl(0xc002d0e860, 0xc003e4a0f0, 0x993b80, 0xc02480, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:658 +0x40b
github.com/google/syzkaller/prog.(*randGen).generateArg(...)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:608
github.com/google/syzkaller/prog.(*randGen).generateArgs(0xc002d0e860, 0xc003e4a0f0, 0xbfe680, 0x2, 0x2, 0xc00000d700, 0xc16ec0, 0xc00205b230, 0x84a560, 0xc00000d760, ...)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:596 +0x113
github.com/google/syzkaller/prog.(*StructType).generate(0xc01040, 0xc002d0e860, 0xc003e4a0f0, 0x0, 0xcdc800, 0x91b090, 0x0, 0x0, 0x0)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:780 +0x7c
github.com/google/syzkaller/prog.(*randGen).generateArgImpl(0xc002d0e860, 0xc003e4a0f0, 0x993b80, 0xc01040, 0xcd0000, 0x0, 0x0, 0x0, 0x0, 0x0)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:658 +0x40b
github.com/google/syzkaller/prog.(*randGen).generateArg(...)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/rand.go:608
github.com/google/syzkaller/prog.(*UnionType).mutate(0xbfe5c0, 0xc002d0e860, 0xc003e4a0f0, 0x98eec0, 0xc002d0e6c0, 0xc002d0e668, 0xbf5360, 0x1, 0x1, 0xc002cfef90, ...)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/mutation.go:457 +0x18b
github.com/google/syzkaller/prog.(*Target).mutateArg(0xc0000756c0, 0xc002d0e860, 0xc003e4a0f0, 0x98eec0, 0xc002d0e6c0, 0xc002d0e668, 0xbf5360, 0x1, 0x1, 0xc002cfef90, ...)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/mutation.go:229 +0xec
github.com/google/syzkaller/prog.(*mutator).mutateArg(0xc001a1bec0, 0xa)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/mutation.go:182 +0x275
github.com/google/syzkaller/prog.(*Prog).Mutate(0xc00205b180, 0x988ac0, 0xc00307d440, 0x14, 0xc003048540, 0xc0029f6000, 0x2772, 0x3000)
	/syzkaller/gopath/src/github.com/google/syzkaller/prog/mutation.go:47 +0x330
main.(*Proc).loop(0xc003048580)
	/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:95 +0x3e5
created by main.main
	/syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:267 +0x1175

Crashes (24):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2020/08/03 18:31 openbsd 02ddb7a22afb 63a73341 .config console log report ci-openbsd-main
2020/08/01 10:28 openbsd 18f4917e2c82 d895b3be .config console log report ci-openbsd-main
2020/07/30 08:19 openbsd 31f29d64e9f9 233283a1 .config console log report ci-openbsd-main
2020/07/25 03:20 openbsd a9f43bc31f08 0a13649c .config console log report ci-openbsd-main
2020/07/23 22:27 openbsd d8b0789b8b82 70c104a1 .config console log report ci-openbsd-main
2020/07/20 06:15 openbsd 5cb69e53a7eb 9c812472 .config console log report ci-openbsd-multicore
2020/07/18 07:10 openbsd a44bf07fbdaa 9c812472 .config console log report ci-openbsd-main
2020/07/16 23:40 openbsd c45df27875dd 54b3c45e .config console log report ci-openbsd-multicore
2020/07/15 19:15 openbsd f8fbf366cc5a ada108d0 .config console log report ci-openbsd-main
2020/06/29 11:07 openbsd c3a4abad4b7f 0375051c .config console log report ci-openbsd-multicore
2020/06/25 07:28 openbsd 3209772dfcc3 9d60b18e .config console log report ci-openbsd-multicore
2020/06/18 18:59 openbsd e8105163f17b 3ea11d3f .config console log report ci-openbsd-multicore
2020/06/18 05:31 openbsd ae375af6dd72 d45a4d69 .config console log report ci-openbsd-main
2020/06/10 07:50 openbsd f42e19bebb12 860c4de9 .config console log report ci-openbsd-main
2020/06/10 06:06 openbsd f42e19bebb12 860c4de9 .config console log report ci-openbsd-main
2020/06/04 09:24 openbsd 02c5bef54a61 b0d1c0d5 .config console log report ci-openbsd-multicore
2020/06/02 10:59 openbsd 0cd4ba86ab5d a0331e89 .config console log report ci-openbsd-main
2020/05/27 19:27 openbsd 4d5cbc65b3f2 fdf90f62 .config console log report ci-openbsd-multicore
2020/05/25 12:54 openbsd 7454d7ca9035 73964a9b .config console log report ci-openbsd-multicore
2020/05/17 04:53 openbsd 487c6a4bcac2 37bccd4e .config console log report ci-openbsd-multicore
2020/05/15 01:09 openbsd 44ee5a713b5c 2d572622 .config console log report ci-openbsd-main
2020/05/11 05:25 openbsd 141b3f16fee0 8742a2b9 .config console log report ci-openbsd-multicore
2020/05/08 00:37 openbsd 30e1cf84d14e 6c70a1c2 .config console log report ci-openbsd-multicore
2020/05/04 20:46 openbsd 9962cf4153c6 9941337c .config console log report ci-openbsd-multicore
* Struck through repros no longer work on HEAD.