fatal error: fault D0331 04:05:42.926451 952235 task_signals.go:468] [ 12: 18] Notified of signal 23 D0331 04:05:42.926875 952235 task_signals.go:221] [ 12: 18] Signal 23: delivering to handler [signal SIGBUS: bus error code=0x1 addr=0x7f43d9400000 pc=0x500f04] goroutine 146 [running]: runtime.throw({0x6b8cd4, 0x0}) /usr/local/go/src/runtime/panic.go:1198 +0x71 fp=0xc006d07590 sp=0xc006d07560 pc=0x433fd1 runtime.sigpanic() /usr/local/go/src/runtime/signal_unix.go:732 +0x125 fp=0xc006d075e0 sp=0xc006d07590 pc=0x44a005 encoding/binary.littleEndian.PutUint64(...) /usr/local/go/src/encoding/binary/binary.go:91 github.com/google/syzkaller/prog.(*execContext).write(0xc00507de30, 0x0) /syzkaller/gopath/src/github.com/google/syzkaller/prog/encodingexec.go:254 +0x24 fp=0xc006d07600 sp=0xc006d075e0 pc=0x500f04 github.com/google/syzkaller/prog.(*execContext).writeCopyin.func1({0x8ac478, 0xc00507de30}, 0x2) /syzkaller/gopath/src/github.com/google/syzkaller/prog/encodingexec.go:170 +0x27f fp=0xc006d07670 sp=0xc006d07600 pc=0x50057f github.com/google/syzkaller/prog.foreachArgImpl({0x8ac478, 0xc00507de30}, 0xc003c8c5c0, 0xc006d079e8) /syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:129 +0x148 fp=0xc006d077f8 sp=0xc006d07670 pc=0x4f07c8 github.com/google/syzkaller/prog.foreachArgImpl({0x8ac4f8, 0xc00507ddd0}, 0xc003c8c5c0, 0xc006d079e8) /syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:163 +0x337 fp=0xc006d07980 sp=0xc006d077f8 pc=0x4f09b7 github.com/google/syzkaller/prog.ForeachArg(0xc00237c7d0, 0x43e611) /syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:122 +0x105 fp=0xc006d079d8 sp=0xc006d07980 pc=0x4f0645 github.com/google/syzkaller/prog.(*execContext).writeCopyin(0xc000001a00, 0x300000002) /syzkaller/gopath/src/github.com/google/syzkaller/prog/encodingexec.go:153 +0x38 fp=0xc006d07a08 sp=0xc006d079d8 pc=0x5002d8 github.com/google/syzkaller/prog.(*execContext).serializeCall(0xc006d07af0, 0xc00237c7d0) /syzkaller/gopath/src/github.com/google/syzkaller/prog/encodingexec.go:88 +0x2d fp=0xc006d07a90 sp=0xc006d07a08 pc=0x4ffdcd github.com/google/syzkaller/prog.(*Prog).SerializeForExec(0xc0041cc240, {0x7f43d9400000, 0x400000, 0x400000}) /syzkaller/gopath/src/github.com/google/syzkaller/prog/encodingexec.go:76 +0x188 fp=0xc006d07c98 sp=0xc006d07a90 pc=0x4ffcc8 D0331 04:05:42.973969 952235 task_exit.go:186] [ 60008: 60008] Transitioning from exit state TaskExitNone to TaskExitInitiated D0331 04:05:42.974470 952235 task_exit.go:186] [ 60008: 60008] Transitioning from exit state TaskExitInitiated to TaskExitZombie D0331 04:05:42.974423 952235 task_signals.go:190] [ 60008: 60009] Signal 9: terminating thread group I0331 04:05:42.974782 952235 compat.go:135] Uncaught signal: "killed" (9), PID: 60008, TID: 60009, fault addr: 0x0 D0331 04:05:42.974932 952235 task_exit.go:186] [ 60008: 60009] Transitioning from exit state TaskExitNone to TaskExitInitiated github.com/google/syzkaller/pkg/ipc.(*Env).Exec(0xc001d60360, 0xf, 0xc0041cc240) D0331 04:05:42.976442 952235 task_exit.go:186] [ 60008: 60009] Transitioning from exit state TaskExitInitiated to TaskExitZombie D0331 04:05:42.976583 952235 task_exit.go:186] [ 60008: 60009] Transitioning from exit state TaskExitZombie to TaskExitDead D0331 04:05:42.976743 952235 task_signals.go:441] [ 11687: 11687] Discarding ignored signal 17 D0331 04:05:42.977969 952235 task_exit.go:186] [ 60008: 60008] Transitioning from exit state TaskExitZombie to TaskExitDead D0331 04:05:42.979841 952235 task_exit.go:186] [ 60007: 60007] Transitioning from exit state TaskExitNone to TaskExitInitiated D0331 04:05:42.980162 952235 task_signals.go:190] [ 60007: 60011] Signal 9: terminating thread group D0331 04:05:42.980217 952235 task_signals.go:190] [ 60007: 60013] Signal 9: terminating thread group I0331 04:05:42.980405 952235 compat.go:135] Uncaught signal: "killed" (9), PID: 60007, TID: 60013, fault addr: 0x0 I0331 04:05:42.980747 952235 compat.go:135] Uncaught signal: "killed" (9), PID: 60007, TID: 60011, fault addr: 0x0 D0331 04:05:42.981549 952235 task_exit.go:186] [ 60007: 60007] Transitioning from exit state TaskExitInitiated to TaskExitZombie D0331 04:05:42.981828 952235 task_exit.go:186] [ 60007: 60013] Transitioning from exit state TaskExitNone to TaskExitInitiated D0331 04:05:42.982127 952235 task_exit.go:186] [ 60007: 60013] Transitioning from exit state TaskExitInitiated to TaskExitZombie D0331 04:05:42.982233 952235 task_exit.go:186] [ 60007: 60013] Transitioning from exit state TaskExitZombie to TaskExitDead D0331 04:05:42.982480 952235 task_exit.go:186] [ 60007: 60011] Transitioning from exit state TaskExitNone to TaskExitInitiated D0331 04:05:42.984303 952235 task_exit.go:186] [ 60007: 60011] Transitioning from exit state TaskExitInitiated to TaskExitZombie D0331 04:05:42.984422 952235 task_exit.go:186] [ 60007: 60011] Transitioning from exit state TaskExitZombie to TaskExitDead D0331 04:05:42.984680 952235 task_signals.go:441] [ 47: 47] Discarding ignored signal 17 D0331 04:05:42.985846 952235 task_exit.go:186] [ 60007: 60007] Transitioning from exit state TaskExitZombie to TaskExitDead /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:256 +0x57 fp=0xc006d07d78 sp=0xc006d07c98 pc=0x609197 main.(*Proc).executeRaw(0xc005038380, 0xc003acd4e0, 0x0, 0x8) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:321 +0x1a7 fp=0xc006d07e78 sp=0xc006d07d78 pc=0x6429a7 main.(*Proc).executeAndCollide(0xc005038380, 0x6cebde, 0xc, 0xc006d07f38, 0x1) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:292 +0x72 fp=0xc006d07ec0 sp=0xc006d07e78 pc=0x6426b2 main.(*Proc).loop(0xc005038380) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:97 +0x39b fp=0xc006d07fc8 sp=0xc006d07ec0 pc=0x640dbb main.main·dwrap·1() /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:300 +0x26 fp=0xc006d07fe0 sp=0xc006d07fc8 pc=0x63da86 runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1581 +0x1 fp=0xc006d07fe8 sp=0xc006d07fe0 pc=0x464ac1 created by main.main /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:300 +0x147d