I0825 20:18:37.457460 14419 x:0] *************************** I0825 20:18:37.457623 14419 x:0] Args: [/syzkaller/managers/kvm-direct-overlay-host-race/current/image -root /syzkaller/managers/kvm-direct-overlay-host-race/workdir/gvisor_root -watchdog-action=panic -network=none -platform=ptrace -file-access=direct -overlay -network=host exec -user=0:0 -cap CAP_CHOWN -cap CAP_DAC_OVERRIDE -cap CAP_DAC_READ_SEARCH -cap CAP_FOWNER -cap CAP_FSETID -cap CAP_KILL -cap CAP_SETGID -cap CAP_SETUID -cap CAP_SETPCAP -cap CAP_LINUX_IMMUTABLE -cap CAP_NET_BIND_SERVICE -cap CAP_NET_BROADCAST -cap CAP_NET_ADMIN -cap CAP_NET_RAW -cap CAP_IPC_LOCK -cap CAP_IPC_OWNER -cap CAP_SYS_MODULE -cap CAP_SYS_RAWIO -cap CAP_SYS_CHROOT -cap CAP_SYS_PTRACE -cap CAP_SYS_PACCT -cap CAP_SYS_ADMIN -cap CAP_SYS_BOOT -cap CAP_SYS_NICE -cap CAP_SYS_RESOURCE -cap CAP_SYS_TIME -cap CAP_SYS_TTY_CONFIG -cap CAP_MKNOD -cap CAP_LEASE -cap CAP_AUDIT_WRITE -cap CAP_AUDIT_CONTROL -cap CAP_SETFCAP -cap CAP_MAC_OVERRIDE -cap CAP_MAC_ADMIN -cap CAP_SYSLOG -cap CAP_WAKE_ALARM -cap CAP_BLOCK_SUSPEND -cap CAP_AUDIT_READ ci-gvisor-kvm-direct-overlay-host-race-2 /syz-fuzzer -executor=/syz-executor -name=vm-2 -arch=amd64 -manager=stdin -sandbox=none -procs=4 -v=0 -cover=false -debug=false -test=false -runtest=false] I0825 20:18:37.457939 14419 x:0] Git Revision: d4d5ed1d9def507b1f2ff3ff8ec75813e931f129 I0825 20:18:37.457992 14419 x:0] PID: 14419 I0825 20:18:37.458024 14419 x:0] UID: 0, GID: 0 I0825 20:18:37.458050 14419 x:0] Configuration: I0825 20:18:37.458067 14419 x:0] RootDir: /syzkaller/managers/kvm-direct-overlay-host-race/workdir/gvisor_root I0825 20:18:37.458088 14419 x:0] Platform: ptrace I0825 20:18:37.458140 14419 x:0] FileAccess: direct, overlay: true I0825 20:18:37.458180 14419 x:0] Network: host, logging: false I0825 20:18:37.458236 14419 x:0] Strace: false, max size: 1024, syscalls: [] I0825 20:18:37.458268 14419 x:0] *************************** I0825 20:18:37.468569 14284 x:0] EXEC: [/syz-fuzzer -executor=/syz-executor -name=vm-2 -arch=amd64 -manager=stdin -sandbox=none -procs=4 -v=0 -cover=false -debug=false -test=false -runtest=false] 2018/08/25 20:18:38 fuzzer started 2018/08/25 20:18:40 dialing manager at stdin 2018/08/25 20:18:40 syscalls: 1 2018/08/25 20:18:40 code coverage: debugfs is not enabled or not mounted 2018/08/25 20:18:40 comparison tracing: debugfs is not enabled or not mounted 2018/08/25 20:18:40 setuid sandbox: enabled 2018/08/25 20:18:40 namespace sandbox: enabled 2018/08/25 20:18:40 fault injection: CONFIG_FAULT_INJECTION is not enabled 2018/08/25 20:18:40 leak checking: debugfs is not enabled or not mounted 2018/08/25 20:18:40 net packed injection: /dev/net/tun does not exist 2018/08/25 20:18:40 net device setup: ip command is not found fatal error: unexpected signal during runtime execution [signal SIGBUS: bus error code=0x2 addr=0xc4209b3000 pc=0x45a2a3] runtime stack: runtime.throw(0x8c652d, 0x2a) /syzkaller/go/src/runtime/panic.go:616 +0x81 runtime.sigpanic() /syzkaller/go/src/runtime/signal_unix.go:372 +0x28e runtime.memclrNoHeapPointers(0xc4209b2000, 0x2000) /syzkaller/go/src/runtime/memclr_amd64.s:75 +0x113 runtime.(*mheap).alloc(0x14548a0, 0x1, 0xc420010013, 0xc420427148) /syzkaller/go/src/runtime/mheap.go:758 +0xdc runtime.(*mcentral).grow(0x14560b0, 0x0) /syzkaller/go/src/runtime/mcentral.go:232 +0x94 runtime.(*mcentral).cacheSpan(0x14560b0, 0xc42054c000) /syzkaller/go/src/runtime/mcentral.go:106 +0x2e4 runtime.(*mcache).refill(0x2b042ddba000, 0xc4203ffe13) /syzkaller/go/src/runtime/mcache.go:123 +0x9c runtime.(*mcache).nextFree.func1() /syzkaller/go/src/runtime/malloc.go:556 +0x32 runtime.systemstack(0x0) /syzkaller/go/src/runtime/asm_amd64.s:409 +0x79 runtime.mstart() /syzkaller/go/src/runtime/proc.go:1175 goroutine 114 [running]: runtime.systemstack_switch() /syzkaller/go/src/runtime/asm_amd64.s:363 fp=0xc4206677e8 sp=0xc4206677e0 pc=0x4571e0 runtime.(*mcache).nextFree(0x2b042ddba000, 0x113, 0x120, 0x7c2860, 0x432f3c) /syzkaller/go/src/runtime/malloc.go:555 +0xa9 fp=0xc420667840 sp=0xc4206677e8 pc=0x40fb49 runtime.mallocgc(0x80, 0x7c8680, 0xc420212001, 0xc42093b560) /syzkaller/go/src/runtime/malloc.go:710 +0x79f fp=0xc4206678e0 sp=0xc420667840 pc=0x41049f runtime.makeslice(0x7c8680, 0x20, 0x20, 0xc42093b560, 0xc, 0xc) /syzkaller/go/src/runtime/slice.go:61 +0x77 fp=0xc420667910 sp=0xc4206678e0 pc=0x441357 compress/flate.(*huffmanDecoder).init(0xc420638028, 0xc420622000, 0x116, 0x13c, 0x0) /syzkaller/go/src/compress/flate/inflate.go:187 +0x40b fp=0xc420667a70 sp=0xc420667910 pc=0x60762b compress/flate.(*decompressor).readHuffman(0xc420638000, 0x0, 0x0) /syzkaller/go/src/compress/flate/inflate.go:459 +0x55e fp=0xc420667b28 sp=0xc420667a70 pc=0x60821e compress/flate.(*decompressor).nextBlock(0xc420638000) /syzkaller/go/src/compress/flate/inflate.go:322 +0x12d fp=0xc420667b60 sp=0xc420667b28 pc=0x60788d compress/flate.(*decompressor).Read(0xc420638000, 0xc4202e8fe8, 0x1def, 0x7146, 0x198, 0x18, 0xc420667c58) /syzkaller/go/src/compress/flate/inflate.go:347 +0x72 fp=0xc420667b98 sp=0xc420667b60 pc=0x607a12 github.com/google/syzkaller/pkg/rpctype.(*flateConn).Read(0xc420204570, 0xc4202e8fe8, 0x1def, 0x7146, 0xc420024070, 0xc420024000, 0x2) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/rpctype/rpc.go:131 +0x51 fp=0xc420667be0 sp=0xc420667b98 pc=0x76e191 bufio.(*Reader).Read(0xc42063e060, 0xc4202e8fe8, 0x1def, 0x7146, 0xfe8, 0x0, 0x0) /syzkaller/go/src/bufio/bufio.go:202 +0x12c fp=0xc420667c38 sp=0xc420667be0 pc=0x52800c io.ReadAtLeast(0x956820, 0xc42063e060, 0xc4202e8000, 0x2dd7, 0x812e, 0x2dd7, 0x0, 0x0, 0xc420667d40) /syzkaller/go/src/io/io.go:309 +0x86 fp=0xc420667c98 sp=0xc420667c38 pc=0x470126 io.ReadFull(0x956820, 0xc42063e060, 0xc4202e8000, 0x2dd7, 0x812e, 0x0, 0x0, 0x3) /syzkaller/go/src/io/io.go:327 +0x58 fp=0xc420667cf0 sp=0xc420667c98 pc=0x470298 encoding/gob.(*Decoder).readMessage(0xc420214200, 0x2dd7) /syzkaller/go/src/encoding/gob/decoder.go:101 +0xc7 fp=0xc420667d50 sp=0xc420667cf0 pc=0x753247 encoding/gob.(*Decoder).recvMessage(0xc420214200, 0xc420667dd0) /syzkaller/go/src/encoding/gob/decoder.go:89 +0xf9 fp=0xc420667da8 sp=0xc420667d50 pc=0x753149 encoding/gob.(*Decoder).decodeTypeSequence(0xc420214200, 0x900000, 0xc420214200) /syzkaller/go/src/encoding/gob/decoder.go:142 +0x136 fp=0xc420667dc8 sp=0xc420667da8 pc=0x753646 encoding/gob.(*Decoder).DecodeValue(0xc420214200, 0x7b2a60, 0xc420919680, 0x16, 0x0, 0x0) /syzkaller/go/src/encoding/gob/decoder.go:210 +0xdc fp=0xc420667e00 sp=0xc420667dc8 pc=0x75390c encoding/gob.(*Decoder).Decode(0xc420214200, 0x7b2a60, 0xc420919680, 0x0, 0xc42060e090) /syzkaller/go/src/encoding/gob/decoder.go:187 +0x14f fp=0xc420667e58 sp=0xc420667e00 pc=0x7537bf net/rpc.(*gobClientCodec).ReadResponseBody(0xc420204660, 0x7b2a60, 0xc420919680, 0xc42060e0d8, 0x0) /syzkaller/go/src/net/rpc/client.go:227 +0x43 fp=0xc420667e90 sp=0xc420667e58 pc=0x766413 net/rpc.(*Client).input(0xc42063e120) /syzkaller/go/src/net/rpc/client.go:141 +0x316 fp=0xc420667fd8 sp=0xc420667e90 pc=0x765966 runtime.goexit() /syzkaller/go/src/runtime/asm_amd64.s:2361 +0x1 fp=0xc420667fe0 sp=0xc420667fd8 pc=0x459bb1 created by net/rpc.NewClientWithCodec /syzkaller/go/src/net/rpc/client.go:201 +0x92 goroutine 1 [chan receive]: net/rpc.(*Client).Call(0xc42063e120, 0x880d4c, 0xc, 0x7b2a20, 0xc4201485f0, 0x7b2a60, 0xc420919680, 0xc42017e301, 0xc420919680) /syzkaller/go/src/net/rpc/client.go:317 +0xbc github.com/google/syzkaller/pkg/rpctype.(*RPCClient).Call(0xc42000a020, 0x880d4c, 0xc, 0x7b2a20, 0xc4201485f0, 0x7b2a60, 0xc420919680, 0x0, 0x0) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/rpctype/rpc.go:90 +0x10a main.(*Fuzzer).poll(0xc42017e280, 0xc42017e200, 0x0, 0xc4203de401) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:291 +0x174 main.main() /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:223 +0xe63 goroutine 33 [syscall]: os/signal.signal_recv(0x0) /syzkaller/go/src/runtime/sigqueue.go:139 +0xa6 os/signal.loop() /syzkaller/go/src/os/signal/signal_unix.go:22 +0x22 created by os/signal.init.0 /syzkaller/go/src/os/signal/signal_unix.go:28 +0x41 goroutine 129 [chan receive]: github.com/google/syzkaller/pkg/osutil.HandleInterrupts.func1(0xc42021e060) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/osutil/osutil_unix.go:74 +0xd0 created by github.com/google/syzkaller/pkg/osutil.HandleInterrupts /syzkaller/gopath/src/github.com/google/syzkaller/pkg/osutil/osutil_unix.go:71 +0x3f goroutine 130 [chan receive]: main.main.func1(0xc42021e060) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:130 +0x34 created by main.main /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:128 +0x504 goroutine 27 [select, locked to thread]: runtime.gopark(0x8fff30, 0x0, 0x8727d0, 0x6, 0x18, 0x1) /syzkaller/go/src/runtime/proc.go:291 +0x11a runtime.selectgo(0xc420402f50, 0xc4201440c0) /syzkaller/go/src/runtime/select.go:392 +0xe50 runtime.ensureSigM.func1() /syzkaller/go/src/runtime/signal_unix.go:549 +0x1f4 runtime.goexit() /syzkaller/go/src/runtime/asm_amd64.s:2361 +0x1 I0825 20:18:41.907614 14419 x:0] Exiting with status: 512