syzbot

 sign-in | mailing list | source | docs
🐞 Open [41]
🐞 Fixed [469]
🐞 Invalid [348]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

panic: runtime error: invalid memory address or nil pointer dereference (17)

Status: fixed on 2023/08/04 01:52
Fix commit: 6f978d71856e kernel: GetMountNamespace has to check that mntns isn't nil
First crash: 480d, last: 480d
Similar bugs (25)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
gvisor panic: runtime error: invalid memory address or nil pointer dereference (18) 4 444d 445d 26/26 fixed on 2023/09/13 00:17
gvisor panic: runtime error: invalid memory address or nil pointer dereference (9) C 262 1025d 1021d 14/26 fixed on 2022/02/10 01:56
gvisor panic: runtime error: invalid memory address or nil pointer dereference (7) C 45305 1126d 1155d 14/26 fixed on 2021/10/27 00:49
gvisor panic: runtime error: invalid memory address or nil pointer dereference (3) C 20051 1547d 2083d 0/26 fixed on 2020/09/09 05:34
gvisor panic: runtime error: invalid memory address or nil pointer dereference (23) C 4239 252d 257d 26/26 fixed on 2024/03/19 11:42
gvisor panic: runtime error: invalid memory address or nil pointer dereference (22) 1 362d 362d 26/26 fixed on 2023/12/01 06:13
gvisor panic: runtime error: invalid memory address or nil pointer dereference (10) C 11 977d 983d 14/26 fixed on 2022/03/25 11:21
gvisor panic: runtime error: invalid memory address or nil pointer dereference (12) C 31 676d 738d 18/26 fixed on 2023/01/23 05:20
gvisor panic: runtime error: invalid memory address or nil pointer dereference (26) C 7905 4d13h 13d 26/26 fixed on 2024/11/22 02:29
gvisor panic: runtime error: invalid memory address or nil pointer dereference (21) 1 377d 377d 26/26 fixed on 2023/11/17 08:30
gvisor panic: runtime error: invalid memory address or nil pointer dereference (14) C 753 637d 638d 18/26 fixed on 2023/02/28 09:05
gvisor panic: runtime error: invalid memory address or nil pointer dereference C 20682 2295d 2348d 0/26 fixed on 2018/08/19 04:32
gvisor panic: runtime error: invalid memory address or nil pointer dereference (25) 1 114d 114d 26/26 fixed on 2024/08/06 09:03
gvisor panic: runtime error: invalid memory address or nil pointer dereference (27) C 1117 3d02h 4d12h 26/26 fixed on 2024/11/23 14:37
gvisor panic: runtime error: invalid memory address or nil pointer dereference (24) 92 245d 246d 0/26 closed as invalid on 2024/03/26 13:32
gvisor panic: runtime error: invalid memory address or nil pointer dereference (13) C 2752 638d 641d 18/26 fixed on 2023/02/27 08:23
gvisor panic: runtime error: invalid memory address or nil pointer dereference (8) C 214 1028d 1053d 14/26 fixed on 2022/02/01 22:27
gvisor panic: runtime error: invalid memory address or nil pointer dereference (2) C 4493 2271d 2291d 0/26 fixed on 2018/10/15 18:31
gvisor panic: runtime error: invalid memory address or nil pointer dereference (5) syz 62 1421d 1465d 14/26 fixed on 2021/01/06 10:11
gvisor panic: runtime error: invalid memory address or nil pointer dereference (11) C 2733 746d 840d 14/26 fixed on 2022/11/11 17:56
gvisor panic: runtime error: invalid memory address or nil pointer dereference (19) C 79 419d 433d 26/26 fixed on 2023/10/05 23:05
gvisor panic: runtime error: invalid memory address or nil pointer dereference (20) C 8 390d 397d 26/26 fixed on 2023/11/02 02:06
gvisor panic: runtime error: invalid memory address or nil pointer dereference (16) C 48 483d 490d 26/26 fixed on 2023/08/02 12:57
gvisor panic: runtime error: invalid memory address or nil pointer dereference (15) 1 530d 530d 26/26 fixed on 2023/07/12 19:22
gvisor panic: runtime error: invalid memory address or nil pointer dereference (4) C 4 1481d 1500d 0/26 fixed on 2020/11/13 09:22

Sample crash report:
panic: runtime error: invalid memory address or nil pointer dereference
[signal SIGSEGV: segmentation violation code=0x1 addr=0x0 pc=0x1b82999]

goroutine 3749355 [running]:
panic({0x324740, 0x281f3c0})
	GOROOT/src/runtime/panic.go:987 +0x3bb fp=0xc0010ae788 sp=0xc0010ae6c8 pc=0x1318c3b
runtime.panicmem(...)
	GOROOT/src/runtime/panic.go:260
runtime.sigpanic()
	GOROOT/src/runtime/signal_unix.go:837 +0x37d fp=0xc0010ae7e8 sp=0xc0010ae788 pc=0x1331b1d
gvisor.dev/gvisor/pkg/sentry/vfs.(*MountNamespace).IncRef(...)
	pkg/sentry/vfs/namespace.go:243
gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).GetMountNamespace(0xc0110f7500)
	pkg/sentry/kernel/task.go:798 +0xd9 fp=0xc0010ae880 sp=0xc0010ae7e8 pc=0x1b82999
gvisor.dev/gvisor/pkg/sentry/fsimpl/proc.(*namespaceSymlink).getInode(0xc0c0d8a800, 0xc0001c8310?)
	pkg/sentry/fsimpl/proc/task_files.go:1287 +0x110 fp=0xc0010ae8d8 sp=0xc0010ae880 pc=0x1ed8b50
gvisor.dev/gvisor/pkg/sentry/fsimpl/proc.(*namespaceSymlink).Getlink(0xc0c0d8a800, {0x84cca0, 0xc023f5aa80}, 0xc01e8f8f80)
	pkg/sentry/fsimpl/proc/task_files.go:1322 +0x145 fp=0xc0010ae9f8 sp=0xc0010ae8d8 pc=0x1ed8f45
gvisor.dev/gvisor/pkg/sentry/fsimpl/proc.(*taskOwnedInode).Getlink(0xc0265ce4e0, {0x84cca0, 0xc023f5aa80}, 0xc0861435f0?)
	<autogenerated>:1 +0x77 fp=0xc0010aea58 sp=0xc0010ae9f8 pc=0x1f14037
gvisor.dev/gvisor/pkg/sentry/fsimpl/kernfs.(*Filesystem).stepExistingLocked(0x132a879?, {0x84cca0, 0xc023f5aa80}, 0xc002a96000, 0xc086143560)
	pkg/sentry/fsimpl/kernfs/filesystem.go:85 +0x5a3 fp=0xc0010aeb98 sp=0xc0010aea58 pc=0x191b943
gvisor.dev/gvisor/pkg/sentry/fsimpl/kernfs.(*Filesystem).walkExistingLocked(0xc00037c730?, {0x84cca0, 0xc023f5aa80}, 0xc002a96000)
	pkg/sentry/fsimpl/kernfs/filesystem.go:163 +0xdf fp=0xc0010aec00 sp=0xc0010aeb98 pc=0x191c09f
gvisor.dev/gvisor/pkg/sentry/fsimpl/kernfs.(*Filesystem).OpenAt(0xc00037c6e0, {0x84cca0, 0xc023f5aa80}, 0xc002a96000, {0x8002, 0x0, 0x0})
	pkg/sentry/fsimpl/kernfs/filesystem.go:486 +0x1c5 fp=0xc0010aeef0 sp=0xc0010aec00 pc=0x1920065
gvisor.dev/gvisor/pkg/sentry/fsimpl/proc.(*filesystem).OpenAt(0xc00037c6e0, {0x84cca0, 0xc023f5aa80}, 0xc002a96000?, {0x38143c0?, 0x0?, 0x0?})
	<autogenerated>:1 +0x85 fp=0xc0010aef50 sp=0xc0010aeef0 pc=0x1f04125
gvisor.dev/gvisor/pkg/sentry/vfs.(*VirtualFilesystem).OpenAt(0xc0076cbfc0?, {0x84cca0, 0xc023f5aa80}, 0xc000160400?, 0xc0010af370, 0xc0010af268)
	pkg/sentry/vfs/vfs.go:459 +0x517 fp=0xc0010af1c0 sp=0xc0010aef50 pc=0x187f9d7
gvisor.dev/gvisor/pkg/sentry/syscalls/linux.openat(0xc023f5aa80, 0x1?, 0x1354f65?, 0x2, 0x0)
	pkg/sentry/syscalls/linux/sys_file.go:112 +0x2b2 fp=0xc0010af420 sp=0xc0010af1c0 pc=0x1dabe72
gvisor.dev/gvisor/pkg/sentry/syscalls/linux.Openat(0xc023f5aa80?, 0x6426b75401?, {{0xffffff9c}, {0x7fa6319bd030}, {0x2}, {0x0}, {0x0}, {0x0}})
	pkg/sentry/syscalls/linux/sys_file.go:91 +0x45 fp=0xc0010af480 sp=0xc0010af420 pc=0x1dabac5
gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).executeSyscall(0xc023f5aa80, 0x101, {{0xffffff9c}, {0x7fa6319bd030}, {0x2}, {0x0}, {0x0}, {0x0}})
	pkg/sentry/kernel/task_syscall.go:142 +0x9c2 fp=0xc0010af960 sp=0xc0010af480 pc=0x1bbee02
gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).doSyscallInvoke(0xc023f5aa80, 0x0?, {{0xffffff9c}, {0x7fa6319bd030}, {0x2}, {0x0}, {0x0}, {0x0}})
	pkg/sentry/kernel/task_syscall.go:322 +0x7d fp=0xc0010af9f8 sp=0xc0010af960 pc=0x1bc0bfd
gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).doSyscallEnter(0xc02bbd56c0?, 0xc0601b8e10?, {{0xffffff9c}, {0x7fa6319bd030}, {0x2}, {0x0}, {0x0}, {0x0}})
	pkg/sentry/kernel/task_syscall.go:282 +0x8f fp=0xc0010afa70 sp=0xc0010af9f8 pc=0x1bc05af
gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).doSyscall(0xc023f5aa80)
	pkg/sentry/kernel/task_syscall.go:257 +0x4c5 fp=0xc0010afb98 sp=0xc0010afa70 pc=0x1bc0145
gvisor.dev/gvisor/pkg/sentry/kernel.(*runApp).execute(0xc023f5aa80?, 0xc023f5aa80)
	pkg/sentry/kernel/task_run.go:269 +0x1d4b fp=0xc0010afe70 sp=0xc0010afb98 pc=0x1baa7ab
gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).run(0xc023f5aa80, 0x6db9)
	pkg/sentry/kernel/task_run.go:98 +0x41b fp=0xc0010affb0 sp=0xc0010afe70 pc=0x1ba803b
gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).Start.func1()
	pkg/sentry/kernel/task_start.go:389 +0x48 fp=0xc0010affe0 sp=0xc0010affb0 pc=0x1bbc908
runtime.goexit()
	src/runtime/asm_amd64.s:1598 +0x1 fp=0xc0010affe8 sp=0xc0010affe0 pc=0x1351bc1
created by gvisor.dev/gvisor/pkg/sentry/kernel.(*Task).Start
	pkg/sentry/kernel/task_start.go:389 +0x1ad

Crashes (2):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2023/08/03 17:23 gvisor 17e10cc47df7 b95100df .config console log report info ci-gvisor-ptrace-1-race panic: runtime error: invalid memory address or nil pointer dereference
2023/08/03 15:37 gvisor 17e10cc47df7 b95100df .config console log report info ci-gvisor-ptrace-2-cover panic: runtime error: invalid memory address or nil pointer dereference
* Struck through repros no longer work on HEAD.