/usr/local/go/src/runtime/panic.go:774 +0x72 fp=0xc000450d40 sp=0xc000450d10 pc=0x42e9e2 runtime.sigpanic() /usr/local/go/src/runtime/signal_unix.go:378 +0x47c fp=0xc000450d70 sp=0xc000450d40 pc=0x443f6c runtime.memclrNoHeapPointers(0xc000452000, 0x8000) /usr/local/go/src/runtime/memclr_amd64.s:76 +0x113 fp=0xc000450d78 sp=0xc000450d70 pc=0x45e4a3 runtime.(*mheap).alloc(0xd58140, 0x4, 0x1006c, 0xc000739e20) /usr/local/go/src/runtime/mheap.go:1098 +0xda fp=0xc000450dc8 sp=0xc000450d78 pc=0x42567a runtime.(*mcentral).grow(0xd59ff8, 0x0) /usr/local/go/src/runtime/mcentral.go:255 +0x7b fp=0xc000450e08 sp=0xc000450dc8 pc=0x4178ab runtime.(*mcentral).cacheSpan(0xd59ff8, 0xc00005d380) /usr/local/go/src/runtime/mcentral.go:106 +0x2fe fp=0xc000450e68 sp=0xc000450e08 pc=0x4173ce runtime.(*mcache).refill(0x267e346d0, 0x6c) /usr/local/go/src/runtime/mcache.go:138 +0x85 fp=0xc000450e88 sp=0xc000450e68 pc=0x416e75 runtime.(*mcache).nextFree(0x267e346d0, 0x20306c, 0x203000, 0x203000, 0x1) /usr/local/go/src/runtime/malloc.go:854 +0x87 fp=0xc000450ec0 sp=0xc000450e88 pc=0x40b967 runtime.mallocgc(0x2a80, 0x89cac0, 0x1, 0xc000451090) /usr/local/go/src/runtime/malloc.go:1022 +0x793 fp=0xc000450f60 sp=0xc000450ec0 pc=0x40c2a3 runtime.newarray(0x89cac0, 0x47, 0xc00005d380) /usr/local/go/src/runtime/malloc.go:1173 +0x63 fp=0xc000450f90 sp=0xc000450f60 pc=0x40c7e3 runtime.makeBucketArray(0x859a20, 0xc000451006, 0x0, 0x3554b0adce3d1368, 0xc0004510f0) /usr/local/go/src/runtime/map.go:362 +0x183 fp=0xc000450fc8 sp=0xc000450f90 pc=0x40d6b3 runtime.hashGrow(0x859a20, 0xc000cbafc0) /usr/local/go/src/runtime/map.go:1033 +0x89 fp=0xc000451018 sp=0xc000450fc8 pc=0x40f1a9 runtime.mapassign(0x859a20, 0xc000cbafc0, 0xc0004510f0, 0xd6f701) /usr/local/go/src/runtime/map.go:652 +0x140 fp=0xc0004510a0 sp=0xc000451018 pc=0x40e000 github.com/google/syzkaller/prog.(*validCtx).validateArg(0xc000798420, 0x9a6100, 0xc000717f60, 0x9ac720, 0xcd5ea0, 0x10, 0x0) /syzkaller/gopath/src/github.com/google/syzkaller/prog/validation.go:97 +0x2d0 fp=0xc000451130 sp=0xc0004510a0 pc=0x79b080 github.com/google/syzkaller/prog.(*GroupArg).validate(0xc0010e6ab0, 0xc000798420, 0xc000451258, 0xc00038afe5) /syzkaller/gopath/src/github.com/google/syzkaller/prog/validation.go:191 +0x110 fp=0xc000451208 sp=0xc000451130 pc=0x79c6a0 github.com/google/syzkaller/prog.(*validCtx).validateArg(0xc000798420, 0x9a6180, 0xc0010e6ab0, 0x9acba0, 0xc9e040, 0x40e0be, 0x8782a0) /syzkaller/gopath/src/github.com/google/syzkaller/prog/validation.go:98 +0x2ff fp=0xc000451298 sp=0xc000451208 pc=0x79b0af github.com/google/syzkaller/prog.(*UnionArg).validate(0xc000630e80, 0xc000798420, 0xc0004513a0, 0xc00038b966) /syzkaller/gopath/src/github.com/google/syzkaller/prog/validation.go:227 +0x160 fp=0xc000451350 sp=0xc000451298 pc=0x79cca0 github.com/google/syzkaller/prog.(*validCtx).validateArg(0xc000798420, 0x9a6240, 0xc000630e80, 0x9acc60, 0xc98dc0, 0x4, 0x8ef1d6) /syzkaller/gopath/src/github.com/google/syzkaller/prog/validation.go:98 +0x2ff fp=0xc0004513e0 sp=0xc000451350 pc=0x79b0af github.com/google/syzkaller/prog.(*PointerArg).validate(0xc0010e6ae0, 0xc000798420, 0xc000451550, 0xc00038ad87) /syzkaller/gopath/src/github.com/google/syzkaller/prog/validation.go:238 +0x553 fp=0xc000451500 sp=0xc0004513e0 pc=0x79d3e3 github.com/google/syzkaller/prog.(*validCtx).validateArg(0xc000798420, 0x9a61c0, 0xc0010e6ae0, 0x9aca20, 0xca4d80, 0x0, 0x0) /syzkaller/gopath/src/github.com/google/syzkaller/prog/validation.go:98 +0x2ff fp=0xc000451590 sp=0xc000451500 pc=0x79b0af github.com/google/syzkaller/prog.(*validCtx).validateCall(0xc000798420, 0xc000cd7c40, 0x0, 0x0) /syzkaller/gopath/src/github.com/google/syzkaller/prog/validation.go:58 +0xc1 fp=0xc000451618 sp=0xc000451590 pc=0x79a9f1 github.com/google/syzkaller/prog.(*Prog).validate(0xc000e0fc40, 0xc000e0fc40, 0x0) /syzkaller/gopath/src/github.com/google/syzkaller/prog/validation.go:40 +0x110 fp=0xc000451758 sp=0xc000451618 pc=0x79a5e0 github.com/google/syzkaller/prog.(*Target).Deserialize(0xc0000776c0, 0xc000392000, 0x1b13, 0x1b13, 0x1, 0xafd24073, 0xc001237dd0, 0x0) /syzkaller/gopath/src/github.com/google/syzkaller/prog/encoding.go:218 +0x1d4 fp=0xc000451820 sp=0xc000451758 pc=0x776cc4 main.(*Fuzzer).addInputFromAnotherFuzzer(0xc000156580, 0xc000e0a6b0, 0xa, 0xc000392000, 0x1b13, 0x1b13, 0xc000b68000, 0x37, 0x37, 0xc0000c4100, ...) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:401 +0x77 fp=0xc0004518b8 sp=0xc000451820 pc=0x7e9f97 main.(*Fuzzer).poll(0xc000156580, 0xc001237501, 0xc001237590, 0xa) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:365 +0x427 fp=0xc000451b38 sp=0xc0004518b8 pc=0x7e9ab7 main.(*Fuzzer).pollLoop(0xc000156580) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:342 +0x3c8 fp=0xc000451c68 sp=0xc000451b38 pc=0x7e94d8 main.main() /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:259 +0x129e fp=0xc000451f60 sp=0xc000451c68 pc=0x7e84de runtime.main() /usr/local/go/src/runtime/proc.go:203 +0x21e fp=0xc000451fe0 sp=0xc000451f60 pc=0x43037e runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1357 +0x1 fp=0xc000451fe8 sp=0xc000451fe0 pc=0x45d471 goroutine 7 [syscall, 12 minutes]: os/signal.signal_recv(0x0) /usr/local/go/src/runtime/sigqueue.go:147 +0x9c os/signal.loop() /usr/local/go/src/os/signal/signal_unix.go:23 +0x22 created by os/signal.init.0 /usr/local/go/src/os/signal/signal_unix.go:29 +0x41 goroutine 19 [chan receive, 12 minutes]: main.main.func1(0xc00017a000) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:137 +0x34 created by main.main /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:135 +0x5b0 goroutine 18 [chan receive, 12 minutes]: github.com/google/syzkaller/pkg/osutil.HandleInterrupts.func1(0xc00017a000) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/osutil/osutil_unix.go:74 +0xb6 created by github.com/google/syzkaller/pkg/osutil.HandleInterrupts /syzkaller/gopath/src/github.com/google/syzkaller/pkg/osutil/osutil_unix.go:71 +0x3f goroutine 14 [IO wait]: internal/poll.runtime_pollWait(0x26a5e6d28, 0x72, 0xffffffffffffffff) /usr/local/go/src/runtime/netpoll.go:184 +0x55 internal/poll.(*pollDesc).wait(0xc00018a098, 0x72, 0x1000, 0x1000, 0xffffffffffffffff) /usr/local/go/src/internal/poll/fd_poll_runtime.go:87 +0x45 internal/poll.(*pollDesc).waitRead(...) /usr/local/go/src/internal/poll/fd_poll_runtime.go:92 internal/poll.(*FD).Read(0xc00018a080, 0xc00025c000, 0x1000, 0x1000, 0x0, 0x0, 0x0) /usr/local/go/src/internal/poll/fd_unix.go:169 +0x1cf net.(*netFD).Read(0xc00018a080, 0xc00025c000, 0x1000, 0x1000, 0xc000275a60, 0xc000275b40, 0x7c262d) /usr/local/go/src/net/fd_unix.go:202 +0x4f net.(*conn).Read(0xc00000e918, 0xc00025c000, 0x1000, 0x1000, 0x0, 0x0, 0x0) /usr/local/go/src/net/net.go:184 +0x68 bufio.(*Reader).fill(0xc00005d680) /usr/local/go/src/bufio/bufio.go:100 +0x103 bufio.(*Reader).ReadByte(0xc00005d680, 0xc000275c00, 0xc0000c3400, 0xc00015c380) /usr/local/go/src/bufio/bufio.go:252 +0x39 compress/flate.(*decompressor).moreBits(0xc000139300, 0x91ba98, 0xc000275b88) /usr/local/go/src/compress/flate/inflate.go:696 +0x37 compress/flate.(*decompressor).nextBlock(0xc000139300) /usr/local/go/src/compress/flate/inflate.go:303 +0x36 compress/flate.(*decompressor).Read(0xc000139300, 0xc000268000, 0x1000, 0x1000, 0x891f60, 0xc0012bd590, 0x199) /usr/local/go/src/compress/flate/inflate.go:347 +0x77 github.com/google/syzkaller/pkg/rpctype.(*flateConn).Read(0xc0000fa9f0, 0xc000268000, 0x1000, 0x1000, 0x10, 0xc000275b88, 0x7c248d) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/rpctype/rpc.go:131 +0x51 bufio.(*Reader).Read(0xc00005d6e0, 0xc0000209d0, 0x1, 0x9, 0x0, 0x0, 0xc000275d70) /usr/local/go/src/bufio/bufio.go:226 +0x26a io.ReadAtLeast(0x99c9c0, 0xc00005d6e0, 0xc0000209d0, 0x1, 0x9, 0x1, 0x1, 0x0, 0x0) /usr/local/go/src/io/io.go:310 +0x87 io.ReadFull(...) /usr/local/go/src/io/io.go:329 encoding/gob.decodeUintReader(0x99c9c0, 0xc00005d6e0, 0xc0000209d0, 0x9, 0x9, 0x4050d5, 0x43080c, 0xc000275d48, 0x45a320) /usr/local/go/src/encoding/gob/decode.go:120 +0x6f encoding/gob.(*Decoder).recvMessage(0xc0000c3400, 0x404fbc) /usr/local/go/src/encoding/gob/decoder.go:81 +0x57 encoding/gob.(*Decoder).decodeTypeSequence(0xc0000c3400, 0xc000000100, 0xc000275e10) /usr/local/go/src/encoding/gob/decoder.go:143 +0x10c encoding/gob.(*Decoder).DecodeValue(0xc0000c3400, 0x82caa0, 0xc0000faed0, 0x16, 0x0, 0x0) /usr/local/go/src/encoding/gob/decoder.go:211 +0x10b encoding/gob.(*Decoder).Decode(0xc0000c3400, 0x82caa0, 0xc0000faed0, 0x0, 0x0) /usr/local/go/src/encoding/gob/decoder.go:188 +0x16d net/rpc.(*gobClientCodec).ReadResponseHeader(0xc0000faae0, 0xc0000faed0, 0xc0012bd560, 0x0) /usr/local/go/src/net/rpc/client.go:228 +0x45 net/rpc.(*Client).input(0xc00005d7a0) /usr/local/go/src/net/rpc/client.go:109 +0xa5 created by net/rpc.NewClientWithCodec /usr/local/go/src/net/rpc/client.go:206 +0x89 goroutine 26 [IO wait]: internal/poll.runtime_pollWait(0x26a5e6918, 0x72, 0xffffffffffffffff) /usr/local/go/src/runtime/netpoll.go:184 +0x55 internal/poll.(*pollDesc).wait(0xc000ed9458, 0x72, 0x1, 0xc, 0xffffffffffffffff) /usr/local/go/src/internal/poll/fd_poll_runtime.go:87 +0x45 internal/poll.(*pollDesc).waitRead(...) /usr/local/go/src/internal/poll/fd_poll_runtime.go:92 internal/poll.(*FD).Read(0xc000ed9440, 0xc000e0a1f0, 0xc, 0xc, 0x0, 0x0, 0x0) /usr/local/go/src/internal/poll/fd_unix.go:169 +0x1cf os.(*File).read(...) /usr/local/go/src/os/file_unix.go:259 os.(*File).Read(0xc00000e448, 0xc000e0a1f0, 0xc, 0xc, 0xc0005a19c0, 0x40c698, 0x10) /usr/local/go/src/os/file.go:116 +0x71 io.ReadAtLeast(0x99d160, 0xc00000e448, 0xc000e0a1f0, 0xc, 0xc, 0xc, 0x0, 0x0, 0xc0000776c0) /usr/local/go/src/io/io.go:310 +0x87 io.ReadFull(...) /usr/local/go/src/io/io.go:329 github.com/google/syzkaller/pkg/ipc.(*command).exec(0xc000ccbf10, 0xc000168040, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc000d36840, 0xc000148380, 0x267e346d0, ...) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:749 +0x282 github.com/google/syzkaller/pkg/ipc.(*Env).Exec(0xc00018c1b0, 0xc000168040, 0xc001634d40, 0xc0005a1ce8, 0x7affd4, 0xc0005a1d40, 0x44500e, 0x413b6a, 0xc001511550, 0xc0011e6ef8) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:279 +0x116 main.(*Proc).executeRaw(0xc00034afc0, 0xc000168040, 0xc001634d40, 0x1, 0x0) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:292 +0x20c main.(*Proc).execute(0xc00034afc0, 0xc000168040, 0xc001634d40, 0x0, 0x1, 0x1) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:255 +0x6a main.(*Proc).loop(0xc00034afc0) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:101 +0x4de created by main.main /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:256 +0x112d goroutine 25 [runnable]: syscall.Syscall(0x3, 0x12, 0xc00012b638, 0x8, 0x0, 0x8, 0x0) /usr/local/go/src/syscall/asm_unix_amd64.s:19 +0x5 syscall.readlen(0x12, 0xc00012b638, 0x8, 0x2, 0xc000fde068, 0x1) /usr/local/go/src/syscall/zsyscall_openbsd_amd64.go:1251 +0x56 syscall.forkExec(0xc000168680, 0x14, 0xc00014a5f0, 0x1, 0x1, 0xc00012b758, 0x0, 0xbf9c57ed00000000, 0xc00012b728) /usr/local/go/src/syscall/exec_unix.go:210 +0x3cf syscall.StartProcess(...) /usr/local/go/src/syscall/exec_unix.go:248 os.startProcess(0xc000168680, 0x14, 0xc00014a5f0, 0x1, 0x1, 0xc00012b8f0, 0x0, 0x0, 0x0) /usr/local/go/src/os/exec_posix.go:51 +0x2b0 os.StartProcess(0xc000168680, 0x14, 0xc00014a5f0, 0x1, 0x1, 0xc00012b8f0, 0x0, 0x2, 0xc0000a2580) /usr/local/go/src/os/exec.go:102 +0x7c os/exec.(*Cmd).Start(0xc0000a2580, 0x91c0a0, 0xc000fde038) /usr/local/go/src/os/exec/exec.go:416 +0x50c github.com/google/syzkaller/pkg/ipc.makeCommand(0x0, 0xc0003e6000, 0x1, 0x1, 0xc00000d5a0, 0xc00000e068, 0xc00000e0a0, 0x20bda7000, 0x1000000, 0x1000000, ...) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:612 +0x806 github.com/google/syzkaller/pkg/ipc.(*Env).Exec(0xc00018c120, 0xc000168040, 0xc0013d4200, 0xc000277cd0, 0x2, 0x2, 0x0, 0xc0013d4600, 0x99cc20, 0xc000028f60) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:274 +0x490 main.(*Proc).executeRaw(0xc00034ac00, 0xc000168040, 0xc0013d4200, 0x5, 0x0) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:292 +0x20c main.(*Proc).execute(0xc00034ac00, 0xc000168040, 0xc0013d4200, 0x0, 0x5, 0x1) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:255 +0x6a main.(*Proc).smashInput(0xc00034ac00, 0xc00014ab30) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:219 +0x1d8 main.(*Proc).loop(0xc00034ac00) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:82 +0x16b created by main.main /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:256 +0x112d goroutine 5935 [IO wait]: internal/poll.runtime_pollWait(0x26a5e6f98, 0x72, 0xffffffffffffffff) /usr/local/go/src/runtime/netpoll.go:184 +0x55 internal/poll.(*pollDesc).wait(0xc000ed9398, 0x72, 0x1fe01, 0x1fe84, 0xffffffffffffffff) /usr/local/go/src/internal/poll/fd_poll_runtime.go:87 +0x45 internal/poll.(*pollDesc).waitRead(...) /usr/local/go/src/internal/poll/fd_poll_runtime.go:92 internal/poll.(*FD).Read(0xc000ed9380, 0xc000f9817c, 0x1fe84, 0x1fe84, 0x0, 0x0, 0x0) /usr/local/go/src/internal/poll/fd_unix.go:169 +0x1cf os.(*File).read(...) /usr/local/go/src/os/file_unix.go:259 os.(*File).Read(0xc00000e250, 0xc000f9817c, 0x1fe84, 0x1fe84, 0x33, 0x0, 0x0) /usr/local/go/src/os/file.go:116 +0x71 github.com/google/syzkaller/pkg/ipc.makeCommand.func2(0xc00000e250, 0xc000ccbf10) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:595 +0xaf created by github.com/google/syzkaller/pkg/ipc.makeCommand /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:589 +0x7f5 goroutine 7717 [select]: github.com/google/syzkaller/pkg/ipc.(*command).exec.func1(0xc000ccbf10, 0xc0006ca120, 0xc0006ca0c0) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:734 +0xba created by github.com/google/syzkaller/pkg/ipc.(*command).exec /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:732 +0x19c goroutine 7705 [runnable]: github.com/google/syzkaller/pkg/ipc.makeCommand.func2(0xc000fde038, 0xc00148c000) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:589 created by github.com/google/syzkaller/pkg/ipc.makeCommand /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:589 +0x7f5 0#+"$%.!",%: #/--!.$ %22/2