syzbot

 sign-in | mailing list | source | docs
🐞 Open [41]
🐞 Fixed [469]
🐞 Invalid [348]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

panic: runtime error: slice bounds out of range [ADDR:NUM]

Status: fixed on 2022/11/18 03:22
Fix commit: 3c0e0a3746a3 io_uring: Fix several issues with shared ring buffers.
First crash: 743d, last: 743d

Sample crash report:
panic: runtime error: slice bounds out of range [4294967280:0]

goroutine 141 [running]:
panic({0x1997380, 0xc000025380})
	GOROOT/src/runtime/panic.go:941 +0x397 fp=0xc0009d1118 sp=0xc0009d1058 pc=0x438397
runtime.goPanicSliceB(0xfffffff0, 0x0)
	GOROOT/src/runtime/panic.go:117 +0x7f fp=0xc0009d1158 sp=0xc0009d1118 pc=0x43671f
gvisor.dev/gvisor/pkg/sentry/fsimpl/iouringfs.(*FileDescription).updateCq(0xc00064feec?, 0xc00014a1c0, 0xc0009d1260?, 0xffffffff)
	pkg/sentry/fsimpl/iouringfs/iouringfs.go:448 +0x3b3 fp=0xc0009d1210 sp=0xc0009d1158 pc=0x120bd33
gvisor.dev/gvisor/pkg/sentry/fsimpl/iouringfs.(*FileDescription).ProcessSubmissions(0xc0009020c0, 0x471185?, 0x40b3, 0x0?, 0x1cb3380?)
	pkg/sentry/fsimpl/iouringfs/iouringfs.go:355 +0x4ce fp=0xc0009d14a0 sp=0xc0009d1210 pc=0x120aa8e
gvisor.dev/gvisor/pkg/sentry/syscalls/linux/vfs2.IOUringEnter(0xc00043ca80, {{0x3}, {0x40b3}, {0x0}, {0x0}, {0x0}, {0x15}})
	pkg/sentry/syscalls/linux/vfs2/iouringfs.go:115 +0x290 fp=0xc0009d15b0 sp=0xc0009d14a0 pc=0x122c650
gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).executeSyscall(0xc00043ca80, 0x1aa, {{0x3}, {0x40b3}, {0x0}, {0x0}, {0x0}, {0x15}})
	pkg/sentry/kernel/task_syscall.go:142 +0xab8 fp=0xc0009d19f8 sp=0xc0009d15b0 pc=0xdaf1d8
gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).doSyscallInvoke(0xc00043ca80, 0x1?, {{0x3}, {0x40b3}, {0x0}, {0x0}, {0x0}, {0x15}})
	pkg/sentry/kernel/task_syscall.go:322 +0x8e fp=0xc0009d1a98 sp=0xc0009d19f8 pc=0xdb136e
gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).doSyscallEnter(0xc0005a42d0?, 0x46fdec?, {{0x3}, {0x40b3}, {0x0}, {0x0}, {0x0}, {0x15}})
	pkg/sentry/kernel/task_syscall.go:282 +0xc5 fp=0xc0009d1b10 sp=0xc0009d1a98 pc=0xdb0c45
gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).doSyscall(0xc00043ca80)
	pkg/sentry/kernel/task_syscall.go:257 +0x53b fp=0xc0009d1c38 sp=0xc0009d1b10 pc=0xdb073b
gvisor.dev/gvisor/pkg/sentry/kernel.(*runApp).execute(0xc00043ca80?, 0xc00043ca80)
	pkg/sentry/kernel/task_run.go:253 +0x1e2b fp=0xc0009d1ec0 sp=0xc0009d1c38 pc=0xd99d0b
gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).run(0xc00043ca80, 0xc)
	pkg/sentry/kernel/task_run.go:94 +0x2c2 fp=0xc0009d1fb0 sp=0xc0009d1ec0 pc=0xd97522
gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).Start.func1()
	pkg/sentry/kernel/task_start.go:378 +0x48 fp=0xc0009d1fe0 sp=0xc0009d1fb0 pc=0xdac8e8
runtime.goexit()
	src/runtime/asm_amd64.s:1571 +0x1 fp=0xc0009d1fe8 sp=0xc0009d1fe0 pc=0x46e1c1
created by gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).Start
	pkg/sentry/kernel/task_start.go:378 +0x1d0

Crashes (13):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2022/11/14 02:05 gvisor 4b63ff222d43 7ba4d859 .config console log report syz C ci-gvisor-ptrace-3-race-cover panic: runtime error: slice bounds out of range [ADDR:NUM]
2022/11/14 02:00 gvisor 4b63ff222d43 7ba4d859 .config console log report syz C ci-gvisor-ptrace-1-cover panic: runtime error: slice bounds out of range [ADDR:NUM]
2022/11/14 01:57 gvisor 4b63ff222d43 7ba4d859 .config console log report syz C ci-gvisor-ptrace-3-race panic: runtime error: slice bounds out of range [ADDR:NUM]
2022/11/14 01:57 gvisor 4b63ff222d43 7ba4d859 .config console log report syz C ci-gvisor-ptrace-3 panic: runtime error: slice bounds out of range [ADDR:NUM]
2022/11/14 01:57 gvisor 4b63ff222d43 7ba4d859 .config console log report syz C ci-gvisor-ptrace-3-cover panic: runtime error: slice bounds out of range [ADDR:NUM]
2022/11/14 01:50 gvisor 4b63ff222d43 7ba4d859 .config console log report syz C ci-gvisor-kvm-cover panic: runtime error: slice bounds out of range [ADDR:NUM]
2022/11/14 01:50 gvisor 4b63ff222d43 7ba4d859 .config console log report syz C ci-gvisor-kvm panic: runtime error: slice bounds out of range [ADDR:NUM]
2022/11/14 01:50 gvisor 4b63ff222d43 7ba4d859 .config console log report syz C ci-gvisor-ptrace-1-race panic: runtime error: slice bounds out of range [ADDR:NUM]
2022/11/14 01:49 gvisor 4b63ff222d43 7ba4d859 .config console log report syz C ci-gvisor-ptrace-2-race panic: runtime error: slice bounds out of range [ADDR:NUM]
2022/11/14 01:49 gvisor 4b63ff222d43 7ba4d859 .config console log report syz C ci-gvisor-ptrace-1 panic: runtime error: slice bounds out of range [ADDR:NUM]
2022/11/14 01:49 gvisor 4b63ff222d43 7ba4d859 .config console log report syz C ci-gvisor-ptrace-2 panic: runtime error: slice bounds out of range [ADDR:NUM]
2022/11/14 01:33 gvisor 4b63ff222d43 7ba4d859 .config console log report syz C ci-gvisor-ptrace-2-cover panic: runtime error: slice bounds out of range [ADDR:NUM]
2022/11/14 01:24 gvisor 4b63ff222d43 7ba4d859 .config console log report info ci-gvisor-ptrace-2-cover panic: runtime error: slice bounds out of range [ADDR:NUM]
* Struck through repros no longer work on HEAD.