fatal error: fault [signal SIGSEGV: segmentation violation code=0x1 addr=0x7f7fcb332000 pc=0x5465ae] goroutine 35 [running]: runtime.throw({0xa30877?, 0xc000e8b190?}) /usr/local/go/src/runtime/panic.go:1047 +0x5d fp=0xc000e8b0e0 sp=0xc000e8b0b0 pc=0x43521d runtime.sigpanic() /usr/local/go/src/runtime/signal_unix.go:851 +0x28a fp=0xc000e8b140 sp=0xc000e8b0e0 pc=0x44bb6a encoding/binary.littleEndian.PutUint64(...) /usr/local/go/src/encoding/binary/binary.go:116 github.com/google/syzkaller/prog.(*execContext).write(...) /syzkaller/gopath/src/github.com/google/syzkaller/prog/encodingexec.go:254 github.com/google/syzkaller/prog.(*execContext).writeCopyin.func1({0xb15b00, 0xc000c62ec0}, 0x0?) /syzkaller/gopath/src/github.com/google/syzkaller/prog/encodingexec.go:171 +0x2ae fp=0xc000e8b1a0 sp=0xc000e8b140 pc=0x5465ae github.com/google/syzkaller/prog.foreachArgImpl({0xb15b00?, 0xc000c62ec0?}, 0xc001192dc0, 0xc000e8b9b0) /syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:134 +0x139 fp=0xc000e8b328 sp=0xc000e8b1a0 pc=0x534359 github.com/google/syzkaller/prog.foreachArgImpl({0xb15b80?, 0xc0011e3ca0?}, 0xc001192dc0, 0xc000e8b9b0) /syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:151 +0x3ba fp=0xc000e8b4b0 sp=0xc000e8b328 pc=0x5345da github.com/google/syzkaller/prog.foreachArgImpl({0xb15bc0?, 0xc000ba27b0?}, 0xc001192dc0, 0xc000e8b9b0) /syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:168 +0x2ce fp=0xc000e8b638 sp=0xc000e8b4b0 pc=0x5344ee github.com/google/syzkaller/prog.foreachArgImpl({0xb15b80?, 0xc0011e3c80?}, 0xc001192dc0, 0xc000e8b9b0) /syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:151 +0x3ba fp=0xc000e8b7c0 sp=0xc000e8b638 pc=0x5345da github.com/google/syzkaller/prog.foreachArgImpl({0xb15bc0?, 0xc000ba2780?}, 0xc001192dc0, 0xc000e8b9b0) /syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:168 +0x2ce fp=0xc000e8b948 sp=0xc000e8b7c0 pc=0x5344ee github.com/google/syzkaller/prog.ForeachArg(0xc001474aa0, 0xc000010048?) /syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:127 +0xde fp=0xc000e8b9a0 sp=0xc000e8b948 pc=0x5341be github.com/google/syzkaller/prog.(*execContext).writeCopyin(0xc000e8bab0?, 0xb15bc0?) /syzkaller/gopath/src/github.com/google/syzkaller/prog/encodingexec.go:153 +0x38 fp=0xc000e8b9d0 sp=0xc000e8b9a0 pc=0x5462d8 github.com/google/syzkaller/prog.(*execContext).serializeCall(0xc000e8bab0, 0xc001474aa0) /syzkaller/gopath/src/github.com/google/syzkaller/prog/encodingexec.go:88 +0x2d fp=0xc000e8ba50 sp=0xc000e8b9d0 pc=0x545bcd github.com/google/syzkaller/prog.(*Prog).SerializeForExec(0xc001055bc0, {0x7f7fcb32a000, 0x400000, 0x400000}) /syzkaller/gopath/src/github.com/google/syzkaller/prog/encodingexec.go:76 +0x165 fp=0xc000e8bc58 sp=0xc000e8ba50 pc=0x545a65 github.com/google/syzkaller/pkg/ipc.(*Env).Exec(0xc000ce7290, 0x3?, 0xc001055bc0) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:257 +0x57 fp=0xc000e8bd38 sp=0xc000e8bc58 pc=0x8dc037 main.(*Proc).executeRaw(0xc000e44780, 0xb?, 0xc?, 0x8) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:328 +0x1bc fp=0xc000e8be50 sp=0xc000e8bd38 pc=0x8eb3dc main.(*Proc).executeAndCollide(0xc000e44780, 0xa3ba68?, 0xc000e3c3f0?, 0xc000fa9f38?, 0xc000d40040?) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:292 +0x72 fp=0xc000e8be98 sp=0xc000e8be50 pc=0x8eb092 main.(*Proc).loop(0xc000e44780) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:97 +0x3d7 fp=0xc000e8bfc8 sp=0xc000e8be98 pc=0x8e9057 main.main.func2() /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:310 +0x26 fp=0xc000e8bfe0 sp=0xc000e8bfc8 pc=0x8e5066 runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000e8bfe8 sp=0xc000e8bfe0 pc=0x467501 created by main.main /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:310 +0x15e5 goroutine 1 [select]: runtime.gopark(0xc001063a00?, 0x2?, 0x80?, 0x3c?, 0xc0010639bc?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc0010637f0 sp=0xc0010637d0 pc=0x437ed6 runtime.selectgo(0xc001063a00, 0xc0010639b8, 0x1015e80?, 0x0, 0x0?, 0x1) /usr/local/go/src/runtime/select.go:327 +0x7be fp=0xc001063930 sp=0xc0010637f0 pc=0x447efe main.(*Fuzzer).pollLoop(0xc000002600) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:385 +0x105 fp=0xc001063a30 sp=0xc001063930 pc=0x8e5965 main.main() /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:313 +0x176c fp=0xc001063f80 sp=0xc001063a30 pc=0x8e4fec runtime.main() /usr/local/go/src/runtime/proc.go:250 +0x207 fp=0xc001063fe0 sp=0xc001063f80 pc=0x437aa7 runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc001063fe8 sp=0xc001063fe0 pc=0x467501 goroutine 2 [force gc (idle), 31 minutes]: runtime.gopark(0x0?, 0x0?, 0x0?, 0x0?, 0x0?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc000058fb0 sp=0xc000058f90 pc=0x437ed6 runtime.goparkunlock(...) /usr/local/go/src/runtime/proc.go:387 runtime.forcegchelper() /usr/local/go/src/runtime/proc.go:305 +0xb0 fp=0xc000058fe0 sp=0xc000058fb0 pc=0x437d10 runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000058fe8 sp=0xc000058fe0 pc=0x467501 created by runtime.init.6 /usr/local/go/src/runtime/proc.go:293 +0x25 goroutine 3 [GC sweep wait]: runtime.gopark(0x1015801?, 0x0?, 0x0?, 0x0?, 0x0?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc000059780 sp=0xc000059760 pc=0x437ed6 runtime.goparkunlock(...) /usr/local/go/src/runtime/proc.go:387 runtime.bgsweep(0x0?) /usr/local/go/src/runtime/mgcsweep.go:319 +0xde fp=0xc0000597c8 sp=0xc000059780 pc=0x423a3e runtime.gcenable.func1() /usr/local/go/src/runtime/mgc.go:178 +0x26 fp=0xc0000597e0 sp=0xc0000597c8 pc=0x418be6 runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc0000597e8 sp=0xc0000597e0 pc=0x467501 created by runtime.gcenable /usr/local/go/src/runtime/mgc.go:178 +0x6b goroutine 4 [GC scavenge wait]: runtime.gopark(0xb421d33b7?, 0x3e6114b?, 0x0?, 0x0?, 0x0?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc000059f70 sp=0xc000059f50 pc=0x437ed6 runtime.goparkunlock(...) /usr/local/go/src/runtime/proc.go:387 runtime.(*scavengerState).park(0x1015fa0) /usr/local/go/src/runtime/mgcscavenge.go:400 +0x53 fp=0xc000059fa0 sp=0xc000059f70 pc=0x421913 runtime.bgscavenge(0x0?) /usr/local/go/src/runtime/mgcscavenge.go:633 +0x65 fp=0xc000059fc8 sp=0xc000059fa0 pc=0x421f05 runtime.gcenable.func2() /usr/local/go/src/runtime/mgc.go:179 +0x26 fp=0xc000059fe0 sp=0xc000059fc8 pc=0x418b86 runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000059fe8 sp=0xc000059fe0 pc=0x467501 created by runtime.gcenable /usr/local/go/src/runtime/mgc.go:179 +0xaa goroutine 5 [finalizer wait]: runtime.gopark(0x0?, 0xa86298?, 0xc0?, 0x80?, 0x2000000020?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc000058628 sp=0xc000058608 pc=0x437ed6 runtime.runfinq() /usr/local/go/src/runtime/mfinal.go:193 +0x107 fp=0xc0000587e0 sp=0xc000058628 pc=0x417c27 runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc0000587e8 sp=0xc0000587e0 pc=0x467501 created by runtime.createfing /usr/local/go/src/runtime/mfinal.go:163 +0x45 goroutine 6 [select]: runtime.gopark(0xc00005a788?, 0x3?, 0x90?, 0x0?, 0xc00005a772?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc00005a5f8 sp=0xc00005a5d8 pc=0x437ed6 runtime.selectgo(0xc00005a788, 0xc00005a76c, 0xc0000dfc80?, 0x0, 0x0?, 0x1) /usr/local/go/src/runtime/select.go:327 +0x7be fp=0xc00005a738 sp=0xc00005a5f8 pc=0x447efe go.opencensus.io/stats/view.(*worker).start(0xc0000dfc80) /syzkaller/gopath/src/github.com/google/syzkaller/vendor/go.opencensus.io/stats/view/worker.go:292 +0xad fp=0xc00005a7c8 sp=0xc00005a738 pc=0x884a4d go.opencensus.io/stats/view.init.0.func1() /syzkaller/gopath/src/github.com/google/syzkaller/vendor/go.opencensus.io/stats/view/worker.go:34 +0x26 fp=0xc00005a7e0 sp=0xc00005a7c8 pc=0x883c86 runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc00005a7e8 sp=0xc00005a7e0 pc=0x467501 created by go.opencensus.io/stats/view.init.0 /syzkaller/gopath/src/github.com/google/syzkaller/vendor/go.opencensus.io/stats/view/worker.go:34 +0x96 goroutine 7 [GC worker (idle)]: runtime.gopark(0xa86488?, 0xc000418000?, 0x1a?, 0x14?, 0x0?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc00005af50 sp=0xc00005af30 pc=0x437ed6 runtime.gcBgMarkWorker() /usr/local/go/src/runtime/mgc.go:1275 +0xf1 fp=0xc00005afe0 sp=0xc00005af50 pc=0x41a951 runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc00005afe8 sp=0xc00005afe0 pc=0x467501 created by runtime.gcBgMarkStartWorkers /usr/local/go/src/runtime/mgc.go:1199 +0x25 goroutine 8 [GC worker (idle)]: runtime.gopark(0x1baa8458a01?, 0xc000418020?, 0x1a?, 0x14?, 0x0?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc00005b750 sp=0xc00005b730 pc=0x437ed6 runtime.gcBgMarkWorker() /usr/local/go/src/runtime/mgc.go:1275 +0xf1 fp=0xc00005b7e0 sp=0xc00005b750 pc=0x41a951 runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc00005b7e8 sp=0xc00005b7e0 pc=0x467501 created by runtime.gcBgMarkStartWorkers /usr/local/go/src/runtime/mgc.go:1199 +0x25 goroutine 9 [chan receive, 31 minutes]: runtime.gopark(0xc000054e88?, 0xc000054ee0?, 0xd3?, 0x3?, 0xc000054ee0?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc000054eb0 sp=0xc000054e90 pc=0x437ed6 runtime.chanrecv(0xc00007a240, 0x0, 0x1) /usr/local/go/src/runtime/chan.go:583 +0x49d fp=0xc000054f40 sp=0xc000054eb0 pc=0x4069dd runtime.chanrecv1(0xc00007a240?, 0xc000054fb0?) /usr/local/go/src/runtime/chan.go:442 +0x18 fp=0xc000054f68 sp=0xc000054f40 pc=0x406518 github.com/google/syzkaller/pkg/osutil.HandleInterrupts.func1() /syzkaller/gopath/src/github.com/google/syzkaller/pkg/osutil/osutil_unix.go:78 +0x8a fp=0xc000054fe0 sp=0xc000054f68 pc=0x52176a runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000054fe8 sp=0xc000054fe0 pc=0x467501 created by github.com/google/syzkaller/pkg/osutil.HandleInterrupts /syzkaller/gopath/src/github.com/google/syzkaller/pkg/osutil/osutil_unix.go:75 +0x56 goroutine 10 [chan receive, 31 minutes]: runtime.gopark(0x0?, 0x0?, 0x0?, 0x0?, 0x0?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc0000556e8 sp=0xc0000556c8 pc=0x437ed6 runtime.chanrecv(0xc00007e0c0, 0x0, 0x1) /usr/local/go/src/runtime/chan.go:583 +0x49d fp=0xc000055778 sp=0xc0000556e8 pc=0x4069dd runtime.chanrecv1(0x0?, 0x0?) /usr/local/go/src/runtime/chan.go:442 +0x18 fp=0xc0000557a0 sp=0xc000055778 pc=0x406518 main.main.func1() /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:182 +0x1f fp=0xc0000557e0 sp=0xc0000557a0 pc=0x8e50bf runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc0000557e8 sp=0xc0000557e0 pc=0x467501 created by main.main /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:180 +0x48f goroutine 17 [select, 31 minutes, locked to thread]: runtime.gopark(0xc000442fa8?, 0x2?, 0x52?, 0x82?, 0xc000442f94?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc000442e10 sp=0xc000442df0 pc=0x437ed6 runtime.selectgo(0xc000442fa8, 0xc000442f90, 0x0?, 0x0, 0x0?, 0x1) /usr/local/go/src/runtime/select.go:327 +0x7be fp=0xc000442f50 sp=0xc000442e10 pc=0x447efe runtime.ensureSigM.func1() /usr/local/go/src/runtime/signal_unix.go:1000 +0x1a7 fp=0xc000442fe0 sp=0xc000442f50 pc=0x45f227 runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000442fe8 sp=0xc000442fe0 pc=0x467501 created by runtime.ensureSigM /usr/local/go/src/runtime/signal_unix.go:983 +0xbd goroutine 18 [syscall, 31 minutes]: runtime.notetsleepg(0x0?, 0x0?) /usr/local/go/src/runtime/lock_sema.go:294 +0x34 fp=0xc00042afa0 sp=0xc00042af58 pc=0x40c094 os/signal.signal_recv() /usr/local/go/src/runtime/sigqueue.go:152 +0x2f fp=0xc00042afc0 sp=0xc00042afa0 pc=0x463a4f os/signal.loop() /usr/local/go/src/os/signal/signal_unix.go:23 +0x19 fp=0xc00042afe0 sp=0xc00042afc0 pc=0x5207d9 runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc00042afe8 sp=0xc00042afe0 pc=0x467501 created by os/signal.Notify.func1.1 /usr/local/go/src/os/signal/signal.go:151 +0x2a goroutine 12 [IO wait]: runtime.gopark(0x4b8dc5?, 0xc000477978?, 0xc8?, 0x79?, 0x4b8df9?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc000477958 sp=0xc000477938 pc=0x437ed6 runtime.netpollblock(0xc0004d7000?, 0x40472f?, 0x0?) /usr/local/go/src/runtime/netpoll.go:527 +0xf7 fp=0xc000477990 sp=0xc000477958 pc=0x431237 internal/poll.runtime_pollWait(0x7f7fd08ccb28, 0x72) /usr/local/go/src/runtime/netpoll.go:306 +0x89 fp=0xc0004779b0 sp=0xc000477990 pc=0x461889 internal/poll.(*pollDesc).wait(0xc0004d2d80?, 0xc0004d7000?, 0x0) /usr/local/go/src/internal/poll/fd_poll_runtime.go:84 +0x32 fp=0xc0004779d8 sp=0xc0004779b0 pc=0x4d1932 internal/poll.(*pollDesc).waitRead(...) /usr/local/go/src/internal/poll/fd_poll_runtime.go:89 internal/poll.(*FD).Read(0xc0004d2d80, {0xc0004d7000, 0x1000, 0x1000}) /usr/local/go/src/internal/poll/fd_unix.go:167 +0x299 fp=0xc000477a70 sp=0xc0004779d8 pc=0x4d2d19 net.(*netFD).Read(0xc0004d2d80, {0xc0004d7000?, 0xc000477bb8?, 0x88f225?}) /usr/local/go/src/net/fd_posix.go:55 +0x29 fp=0xc000477ab8 sp=0xc000477a70 pc=0x654809 net.(*conn).Read(0xc000013938, {0xc0004d7000?, 0x198?, 0x4aefba?}) /usr/local/go/src/net/net.go:183 +0x45 fp=0xc000477b00 sp=0xc000477ab8 pc=0x666065 net.(*TCPConn).Read(0xc0001642a0?, {0xc0004d7000?, 0x9c33c0?, 0xc0015d5290?}) :1 +0x29 fp=0xc000477b30 sp=0xc000477b00 pc=0x675a29 bufio.(*Reader).fill(0xc00007bf20) /usr/local/go/src/bufio/bufio.go:106 +0xff fp=0xc000477b68 sp=0xc000477b30 pc=0x504e3f bufio.(*Reader).ReadByte(0xc00007bf20) /usr/local/go/src/bufio/bufio.go:265 +0x2c fp=0xc000477b88 sp=0xc000477b68 pc=0x50560c compress/flate.(*decompressor).moreBits(0xc0002d0000) /usr/local/go/src/compress/flate/inflate.go:696 +0x2d fp=0xc000477bc0 sp=0xc000477b88 pc=0x510ecd compress/flate.(*decompressor).nextBlock(0xc0002d0000) /usr/local/go/src/compress/flate/inflate.go:303 +0x2e fp=0xc000477bd8 sp=0xc000477bc0 pc=0x50f28e compress/flate.(*decompressor).Read(0xc0002d0000, {0xc000175000, 0x1000, 0xc000477c80?}) /usr/local/go/src/compress/flate/inflate.go:347 +0x7e fp=0xc000477c10 sp=0xc000477bd8 pc=0x50f4fe github.com/google/syzkaller/pkg/rpctype.(*flateConn).Read(0xc000164280?, {0xc000175000?, 0x9ba5a0?, 0xc0015d5260?}) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/rpctype/rpc.go:136 +0x26 fp=0xc000477c40 sp=0xc000477c10 pc=0x8e1626 bufio.(*Reader).Read(0xc00007bf80, {0xc0000380d0, 0x1, 0xc000477d70?}) /usr/local/go/src/bufio/bufio.go:237 +0x1bb fp=0xc000477c78 sp=0xc000477c40 pc=0x50541b io.ReadAtLeast({0xb0f740, 0xc00007bf80}, {0xc0000380d0, 0x1, 0x9}, 0x1) /usr/local/go/src/io/io.go:332 +0x9a fp=0xc000477cc0 sp=0xc000477c78 pc=0x4aefba io.ReadFull(...) /usr/local/go/src/io/io.go:351 encoding/gob.decodeUintReader({0xb0f740?, 0xc00007bf80?}, {0xc0000380d0?, 0x9?, 0x9?}) /usr/local/go/src/encoding/gob/decode.go:116 +0x57 fp=0xc000477d18 sp=0xc000477cc0 pc=0x88d557 encoding/gob.(*Decoder).recvMessage(0xc0004d2000) /usr/local/go/src/encoding/gob/decoder.go:82 +0x39 fp=0xc000477d50 sp=0xc000477d18 pc=0x897119 encoding/gob.(*Decoder).decodeTypeSequence(0xc0004d2000, 0x0) /usr/local/go/src/encoding/gob/decoder.go:148 +0x4f fp=0xc000477d80 sp=0xc000477d50 pc=0x8974af encoding/gob.(*Decoder).DecodeValue(0xc0004d2000, {0x92dbc0?, 0xc0004120f0?, 0x7f7fd098b368?}) /usr/local/go/src/encoding/gob/decoder.go:227 +0x18f fp=0xc000477e00 sp=0xc000477d80 pc=0x89794f encoding/gob.(*Decoder).Decode(0xc0004d2000, {0x92dbc0?, 0xc0004120f0?}) /usr/local/go/src/encoding/gob/decoder.go:204 +0x165 fp=0xc000477e58 sp=0xc000477e00 pc=0x897765 net/rpc.(*gobClientCodec).ReadResponseHeader(0x971360?, 0x9257c0?) /usr/local/go/src/net/rpc/client.go:228 +0x27 fp=0xc000477e80 sp=0xc000477e58 pc=0x8ad267 net/rpc.(*Client).input(0xc0004161e0) /usr/local/go/src/net/rpc/client.go:109 +0xb4 fp=0xc000477fc8 sp=0xc000477e80 pc=0x8ac4f4 net/rpc.NewClientWithCodec.func1() /usr/local/go/src/net/rpc/client.go:206 +0x26 fp=0xc000477fe0 sp=0xc000477fc8 pc=0x8ad126 runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000477fe8 sp=0xc000477fe0 pc=0x467501 created by net/rpc.NewClientWithCodec /usr/local/go/src/net/rpc/client.go:206 +0xc5 goroutine 19 [runnable]: runtime.gopark(0x1?, 0x0?, 0x0?, 0x0?, 0x0?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc000e8f730 sp=0xc000e8f710 pc=0x437ed6 runtime.goparkunlock(...) /usr/local/go/src/runtime/proc.go:387 runtime.semacquire1(0xc00000276c, 0x27?, 0x3, 0x1, 0x85?) /usr/local/go/src/runtime/sema.go:160 +0x20f fp=0xc000e8f798 sp=0xc000e8f730 pc=0x448fef sync.runtime_SemacquireMutex(0xc000e8f800?, 0x7c?, 0x1bb784cdf94?) /usr/local/go/src/runtime/sema.go:77 +0x26 fp=0xc000e8f7d0 sp=0xc000e8f798 pc=0x463346 sync.(*Mutex).lockSlow(0xc000002768) /usr/local/go/src/sync/mutex.go:171 +0x165 fp=0xc000e8f820 sp=0xc000e8f7d0 pc=0x480ce5 sync.(*Mutex).Lock(...) /usr/local/go/src/sync/mutex.go:90 main.(*Proc).logProgram(0xc000d401c0, 0xc0012eaf20?, 0xc000e30a00?) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:362 +0x350 fp=0xc000e8f960 sp=0xc000e8f820 pc=0x8eba70 main.(*Proc).executeRaw(0xc000d401c0, 0xa55691?, 0xc000e8fc88?, 0x3) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:325 +0xf8 fp=0xc000e8fa78 sp=0xc000e8f960 pc=0x8eb318 main.(*Proc).triageInput(0xc000d401c0, 0xc0012f7440) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:127 +0x47f fp=0xc000e8fe98 sp=0xc000e8fa78 pc=0x8e94ff main.(*Proc).loop(0xc000d401c0) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:74 +0x125 fp=0xc000e8ffc8 sp=0xc000e8fe98 pc=0x8e8da5 main.main.func2() /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:310 +0x26 fp=0xc000e8ffe0 sp=0xc000e8ffc8 pc=0x8e5066 runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000e8ffe8 sp=0xc000e8ffe0 pc=0x467501 created by main.main /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:310 +0x15e5 goroutine 20 [runnable]: github.com/google/syzkaller/pkg/ipc.(*Env).Exec(0xc000abf680, 0xc000c62920?, 0xc001055f40) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:255 +0x45c fp=0xc000473c50 sp=0xc000473c48 pc=0x8dc43c main.(*Proc).executeRaw(0xc000d40280, 0x11?, 0x12?, 0x8) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:328 +0x1bc fp=0xc000473d68 sp=0xc000473c50 pc=0x8eb3dc main.(*Proc).executeAndCollide(0xc000d40280, 0xa42370?, 0xc000dee180?, 0xc000473e08?, 0xc000d40040?) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:292 +0x72 fp=0xc000473db0 sp=0xc000473d68 pc=0x8eb092 main.(*Proc).smashInput(0xc000d40280, 0xc001072da0) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:221 +0x1d4 fp=0xc000473e98 sp=0xc000473db0 pc=0x8ea714 main.(*Proc).loop(0xc000d40280) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:78 +0xf2 fp=0xc000473fc8 sp=0xc000473e98 pc=0x8e8d72 main.main.func2() /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:310 +0x26 fp=0xc000473fe0 sp=0xc000473fc8 pc=0x8e5066 runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000473fe8 sp=0xc000473fe0 pc=0x467501 created by main.main /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:310 +0x15e5 goroutine 1682 [IO wait, 2 minutes]: runtime.gopark(0x4b8dc5?, 0xc000056608?, 0x58?, 0x66?, 0x4b8df9?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc0000565e8 sp=0xc0000565c8 pc=0x437ed6 runtime.netpollblock(0xc00137c000?, 0x40472f?, 0x0?) /usr/local/go/src/runtime/netpoll.go:527 +0xf7 fp=0xc000056620 sp=0xc0000565e8 pc=0x431237 internal/poll.runtime_pollWait(0x7f7fd08cc1c8, 0x72) /usr/local/go/src/runtime/netpoll.go:306 +0x89 fp=0xc000056640 sp=0xc000056620 pc=0x461889 internal/poll.(*pollDesc).wait(0xc001749560?, 0xc00137c000?, 0x1) /usr/local/go/src/internal/poll/fd_poll_runtime.go:84 +0x32 fp=0xc000056668 sp=0xc000056640 pc=0x4d1932 internal/poll.(*pollDesc).waitRead(...) /usr/local/go/src/internal/poll/fd_poll_runtime.go:89 internal/poll.(*FD).Read(0xc001749560, {0xc00137c000, 0x20000, 0x20000}) /usr/local/go/src/internal/poll/fd_unix.go:167 +0x299 fp=0xc000056700 sp=0xc000056668 pc=0x4d2d19 os.(*File).read(...) /usr/local/go/src/os/file_posix.go:31 os.(*File).Read(0xc0011fc120, {0xc00137c000?, 0xc0013463e8?, 0x0?}) /usr/local/go/src/os/file.go:118 +0x5e fp=0xc000056758 sp=0xc000056700 pc=0x4dcdfe github.com/google/syzkaller/pkg/ipc.makeCommand.func2(0xc0000d8380) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:629 +0x8a fp=0xc0000567c8 sp=0xc000056758 pc=0x8df2ea github.com/google/syzkaller/pkg/ipc.makeCommand.func7() /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:644 +0x2a fp=0xc0000567e0 sp=0xc0000567c8 pc=0x8df22a runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc0000567e8 sp=0xc0000567e0 pc=0x467501 created by github.com/google/syzkaller/pkg/ipc.makeCommand /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:623 +0xa7b goroutine 24 [IO wait]: runtime.gopark(0x4b8dc5?, 0xc000d6b7c8?, 0x18?, 0xb8?, 0x4b8df9?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc000d6b7a8 sp=0xc000d6b788 pc=0x437ed6 runtime.netpollblock(0xc000bbe2f0?, 0x40472f?, 0x0?) /usr/local/go/src/runtime/netpoll.go:527 +0xf7 fp=0xc000d6b7e0 sp=0xc000d6b7a8 pc=0x431237 internal/poll.runtime_pollWait(0x7f7fd078c000, 0x72) /usr/local/go/src/runtime/netpoll.go:306 +0x89 fp=0xc000d6b800 sp=0xc000d6b7e0 pc=0x461889 internal/poll.(*pollDesc).wait(0xc001748960?, 0xc000bbe2f0?, 0x1) /usr/local/go/src/internal/poll/fd_poll_runtime.go:84 +0x32 fp=0xc000d6b828 sp=0xc000d6b800 pc=0x4d1932 internal/poll.(*pollDesc).waitRead(...) /usr/local/go/src/internal/poll/fd_poll_runtime.go:89 internal/poll.(*FD).Read(0xc001748960, {0xc000bbe2f0, 0xc, 0xc}) /usr/local/go/src/internal/poll/fd_unix.go:167 +0x299 fp=0xc000d6b8c0 sp=0xc000d6b828 pc=0x4d2d19 os.(*File).read(...) /usr/local/go/src/os/file_posix.go:31 os.(*File).Read(0xc000422a90, {0xc000bbe2f0?, 0xc000d6b950?, 0x40da27?}) /usr/local/go/src/os/file.go:118 +0x5e fp=0xc000d6b918 sp=0xc000d6b8c0 pc=0x4dcdfe io.ReadAtLeast({0xb12060, 0xc000422a90}, {0xc000bbe2f0, 0xc, 0xc}, 0xc) /usr/local/go/src/io/io.go:332 +0x9a fp=0xc000d6b960 sp=0xc000d6b918 pc=0x4aefba io.ReadFull(...) /usr/local/go/src/io/io.go:351 github.com/google/syzkaller/pkg/ipc.(*command).exec(0xc0004e9880, 0x7f7fcdb2a000?, {0x0, 0x0, 0x0}) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:786 +0x559 fp=0xc000d6bb18 sp=0xc000d6b960 pc=0x8e0219 github.com/google/syzkaller/pkg/ipc.(*Env).Exec(0xc000abf950, 0xc000d6bc20?, 0xc0013e8e00) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:286 +0x24e fp=0xc000d6bbf8 sp=0xc000d6bb18 pc=0x8dc22e main.(*Proc).executeRaw(0xc0007cab00, 0x48153e?, 0xc000bbe1d0?, 0x1) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:328 +0x1bc fp=0xc000d6bd10 sp=0xc000d6bbf8 pc=0x8eb3dc main.(*Proc).execute(0xc0007cab00, 0xb?, 0xc?, 0xc000d6bf38?, 0x1?) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:255 +0x49 fp=0xc000d6be50 sp=0xc000d6bd10 pc=0x8eab49 main.(*Proc).executeAndCollide(0xc0007cab00, 0xa3ba68?, 0xc000d61cb0?, 0xc000d6bf38?, 0xc000d40040?) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:284 +0x27 fp=0xc000d6be98 sp=0xc000d6be50 pc=0x8eb047 main.(*Proc).loop(0xc0007cab00) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:97 +0x3d7 fp=0xc000d6bfc8 sp=0xc000d6be98 pc=0x8e9057 main.main.func2() /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:310 +0x26 fp=0xc000d6bfe0 sp=0xc000d6bfc8 pc=0x8e5066 runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000d6bfe8 sp=0xc000d6bfe0 pc=0x467501 created by main.main /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:310 +0x15e5 goroutine 159 [syscall, 28 minutes]: syscall.Syscall6(0x1e1, 0x1, 0x345, 0xc000056e6c, 0x10020, 0x0, 0x0) /usr/local/go/src/syscall/asm_unix_amd64.s:39 +0x5 fp=0xc000056e18 sp=0xc000056e10 pc=0x4b8e25 os.wait6(0xc00056dd40?, 0xc000056f18?, 0x405d85?) /usr/local/go/src/os/wait6_netbsd.go:16 +0x4d fp=0xc000056e88 sp=0xc000056e18 pc=0x4e2e8d os.(*Process).blockUntilWaitable(0xc00083c420) /usr/local/go/src/os/wait_wait6.go:20 +0x36 fp=0xc000056eb8 sp=0xc000056e88 pc=0x4e2f16 os.(*Process).wait(0xc00083c420) /usr/local/go/src/os/exec_unix.go:22 +0x28 fp=0xc000056f18 sp=0xc000056eb8 pc=0x4dc648 os.(*Process).Wait(...) /usr/local/go/src/os/exec.go:132 os/exec.(*Cmd).Wait(0xc000918840) /usr/local/go/src/os/exec/exec.go:890 +0x45 fp=0xc000056f80 sp=0xc000056f18 pc=0x51d085 github.com/google/syzkaller/pkg/ipc.makeCommand.func3(0xc000258070) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:652 +0x32 fp=0xc000056fc8 sp=0xc000056f80 pc=0x8df172 github.com/google/syzkaller/pkg/ipc.makeCommand.func8() /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:657 +0x2a fp=0xc000056fe0 sp=0xc000056fc8 pc=0x8df10a runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000056fe8 sp=0xc000056fe0 pc=0x467501 created by github.com/google/syzkaller/pkg/ipc.makeCommand /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:651 +0xc7c goroutine 27 [sync.Mutex.Lock]: runtime.gopark(0x1?, 0x0?, 0x0?, 0x0?, 0x0?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc000470fd0 sp=0xc000470fb0 pc=0x437ed6 runtime.goparkunlock(...) /usr/local/go/src/runtime/proc.go:387 runtime.semacquire1(0xc00000276c, 0x27?, 0x3, 0x1, 0x63?) /usr/local/go/src/runtime/sema.go:160 +0x20f fp=0xc000471038 sp=0xc000470fd0 pc=0x448fef sync.runtime_SemacquireMutex(0xc0004710a0?, 0x7c?, 0x1bb784d7c67?) /usr/local/go/src/runtime/sema.go:77 +0x26 fp=0xc000471070 sp=0xc000471038 pc=0x463346 sync.(*Mutex).lockSlow(0xc000002768) /usr/local/go/src/sync/mutex.go:171 +0x165 fp=0xc0004710c0 sp=0xc000471070 pc=0x480ce5 sync.(*Mutex).Lock(...) /usr/local/go/src/sync/mutex.go:90 main.(*Proc).logProgram(0xc000b31580, 0x0?, 0x0?) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:362 +0x350 fp=0xc000471200 sp=0xc0004710c0 pc=0x8eba70 main.(*Proc).executeRaw(0xc000b31580, 0x934ec0?, 0xc000010048?, 0x4) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:325 +0xf8 fp=0xc000471318 sp=0xc000471200 pc=0x8eb318 main.(*Proc).execute(0xc000b31580, 0x4e975e?, 0x30?, 0xa3243c?, 0x2500?) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:255 +0x49 fp=0xc000471458 sp=0xc000471318 pc=0x8eab49 main.(*Proc).triageInput.func1(0xc0011925c0?, 0x0) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:152 +0xab fp=0xc000471598 sp=0xc000471458 pc=0x8ea18b github.com/google/syzkaller/prog.Minimize.func1(0x1?, 0xc00101ca00?) /syzkaller/gopath/src/github.com/google/syzkaller/prog/minimization.go:20 +0x68 fp=0xc0004715d0 sp=0xc000471598 pc=0x54ae68 github.com/google/syzkaller/prog.minimizeInt(0xc0015f2100, {0xb15b00, 0xc00101ca70?}, {0xc00101caf0, 0xf}) /syzkaller/gopath/src/github.com/google/syzkaller/prog/minimization.go:270 +0xe8 fp=0xc000471620 sp=0xc0004715d0 pc=0x54c1c8 github.com/google/syzkaller/prog.(*FlagsType).minimize(0x970100?, 0xc000e9a330?, {0xb15b00?, 0xc00101ca70?}, {0xc00101caf0?, 0x1?}) /syzkaller/gopath/src/github.com/google/syzkaller/prog/minimization.go:242 +0x37 fp=0xc000471658 sp=0xc000471620 pc=0x54bfd7 github.com/google/syzkaller/prog.(*minimizeArgsCtx).do(0xc0015f2100, {0xb15b00, 0xc00101ca70}, {0xa3243c?, 0xc0004716f8?}, {0xc00101cac8, 0x8}) /syzkaller/gopath/src/github.com/google/syzkaller/prog/minimization.go:156 +0x119 fp=0xc0004716c0 sp=0xc000471658 pc=0x54b479 github.com/google/syzkaller/prog.(*StructType).minimize(0xf00300, 0xc000e9a330?, {0xb15b80?, 0xc0012eb020?}, {0xc00101cac8, 0x8}) /syzkaller/gopath/src/github.com/google/syzkaller/prog/minimization.go:181 +0xec fp=0xc000471728 sp=0xc0004716c0 pc=0x54b66c github.com/google/syzkaller/prog.(*minimizeArgsCtx).do(0xc0015f2100, {0xb15b80, 0xc0012eb020}, {0x0?, 0x2?}, {0xc00101cac0, 0x7}) /syzkaller/gopath/src/github.com/google/syzkaller/prog/minimization.go:156 +0x119 fp=0xc000471790 sp=0xc000471728 pc=0x54b479 github.com/google/syzkaller/prog.(*ArrayType).minimize(0xefe020, 0xc0015f2100, {0xb15b80?, 0xc0012eafa0}, {0xc00101cab5, 0x5}) /syzkaller/gopath/src/github.com/google/syzkaller/prog/minimization.go:230 +0x1f9 fp=0xc000471830 sp=0xc000471790 pc=0x54bcd9 github.com/google/syzkaller/prog.(*minimizeArgsCtx).do(0xc0015f2100, {0xb15b80, 0xc0012eafa0}, {0x0?, 0xc000e30a00?}, {0xc00101ca6c, 0x4}) /syzkaller/gopath/src/github.com/google/syzkaller/prog/minimization.go:156 +0x119 fp=0xc000471898 sp=0xc000471830 pc=0x54b479 github.com/google/syzkaller/prog.(*PtrType).minimize(0x970100?, 0xc0015f2100, {0xb15bc0?, 0xc000ba38f0}, {0xc00101ca6c, 0x4}) /syzkaller/gopath/src/github.com/google/syzkaller/prog/minimization.go:208 +0xe5 fp=0xc000471908 sp=0xc000471898 pc=0x54b8c5 github.com/google/syzkaller/prog.(*minimizeArgsCtx).do(0xc0015f2100, {0xb15bc0, 0xc000ba38f0}, {0xa2ed8d?, 0x100c0004719f8?}, {0x0, 0x0}) /syzkaller/gopath/src/github.com/google/syzkaller/prog/minimization.go:156 +0x119 fp=0xc000471970 sp=0xc000471908 pc=0x54b479 github.com/google/syzkaller/prog.Minimize(0xc0010ea700, 0x7, 0x0, 0xc0012eb900) /syzkaller/gopath/src/github.com/google/syzkaller/prog/minimization.go:53 +0x586 fp=0xc000471a78 sp=0xc000471970 pc=0x54ad86 main.(*Proc).triageInput(0xc000b31580, 0xc0013e7620) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:149 +0x7aa fp=0xc000471e98 sp=0xc000471a78 pc=0x8e982a main.(*Proc).loop(0xc000b31580) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:74 +0x125 fp=0xc000471fc8 sp=0xc000471e98 pc=0x8e8da5 main.main.func2() /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:310 +0x26 fp=0xc000471fe0 sp=0xc000471fc8 pc=0x8e5066 runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000471fe8 sp=0xc000471fe0 pc=0x467501 created by main.main /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:310 +0x15e5 goroutine 32 [IO wait]: runtime.gopark(0x4b8dc5?, 0xc00105f6e0?, 0x30?, 0xf7?, 0x4b8df9?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc00105f6c0 sp=0xc00105f6a0 pc=0x437ed6 runtime.netpollblock(0xc00101cd10?, 0x40472f?, 0x0?) /usr/local/go/src/runtime/netpoll.go:527 +0xf7 fp=0xc00105f6f8 sp=0xc00105f6c0 pc=0x431237 internal/poll.runtime_pollWait(0x7f7fd08cc3a8, 0x72) /usr/local/go/src/runtime/netpoll.go:306 +0x89 fp=0xc00105f718 sp=0xc00105f6f8 pc=0x461889 internal/poll.(*pollDesc).wait(0xc000ab1b00?, 0xc00101cd10?, 0x1) /usr/local/go/src/internal/poll/fd_poll_runtime.go:84 +0x32 fp=0xc00105f740 sp=0xc00105f718 pc=0x4d1932 internal/poll.(*pollDesc).waitRead(...) /usr/local/go/src/internal/poll/fd_poll_runtime.go:89 internal/poll.(*FD).Read(0xc000ab1b00, {0xc00101cd10, 0xc, 0xc}) /usr/local/go/src/internal/poll/fd_unix.go:167 +0x299 fp=0xc00105f7d8 sp=0xc00105f740 pc=0x4d2d19 os.(*File).read(...) /usr/local/go/src/os/file_posix.go:31 os.(*File).Read(0xc0011fc0e0, {0xc00101cd10?, 0xc00105f868?, 0x40da27?}) /usr/local/go/src/os/file.go:118 +0x5e fp=0xc00105f830 sp=0xc00105f7d8 pc=0x4dcdfe io.ReadAtLeast({0xb12060, 0xc0011fc0e0}, {0xc00101cd10, 0xc, 0xc}, 0xc) /usr/local/go/src/io/io.go:332 +0x9a fp=0xc00105f878 sp=0xc00105f830 pc=0x4aefba io.ReadFull(...) /usr/local/go/src/io/io.go:351 github.com/google/syzkaller/pkg/ipc.(*command).exec(0xc000258070, 0x7f7fc9f2a000?, {0x0, 0x0, 0x0}) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:786 +0x559 fp=0xc00105fa30 sp=0xc00105f878 pc=0x8e0219 github.com/google/syzkaller/pkg/ipc.(*Env).Exec(0xc000bc82d0, 0x1?, 0xc0013e8840) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:286 +0x24e fp=0xc00105fb10 sp=0xc00105fa30 pc=0x8dc22e main.(*Proc).executeRaw(0xc000dc4640, 0x48153e?, 0xc00083b4b8?, 0x5) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:328 +0x1bc fp=0xc00105fc28 sp=0xc00105fb10 pc=0x8eb3dc main.(*Proc).execute(0xc000dc4640, 0x11?, 0x12?, 0xc00105fe08?, 0x1?) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:255 +0x49 fp=0xc00105fd68 sp=0xc00105fc28 pc=0x8eab49 main.(*Proc).executeAndCollide(0xc000dc4640, 0xa42370?, 0xc000dbe360?, 0xc00105fe08?, 0xc000d40040?) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:284 +0x27 fp=0xc00105fdb0 sp=0xc00105fd68 pc=0x8eb047 main.(*Proc).smashInput(0xc000dc4640, 0xc0012f4980) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:221 +0x1d4 fp=0xc00105fe98 sp=0xc00105fdb0 pc=0x8ea714 main.(*Proc).loop(0xc000dc4640) /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/proc.go:78 +0xf2 fp=0xc00105ffc8 sp=0xc00105fe98 pc=0x8e8d72 main.main.func2() /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:310 +0x26 fp=0xc00105ffe0 sp=0xc00105ffc8 pc=0x8e5066 runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc00105ffe8 sp=0xc00105ffe0 pc=0x467501 created by main.main /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:310 +0x15e5 goroutine 2135 [select]: runtime.gopark(0xc00042b7b0?, 0x2?, 0xe?, 0x0?, 0xc00042b78c?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc00042b618 sp=0xc00042b5f8 pc=0x437ed6 runtime.selectgo(0xc00042b7b0, 0xc00042b788, 0xc0013fbd88?, 0x0, 0x23?, 0x1) /usr/local/go/src/runtime/select.go:327 +0x7be fp=0xc00042b758 sp=0xc00042b618 pc=0x447efe github.com/google/syzkaller/pkg/ipc.(*command).exec.func1() /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:771 +0x7d fp=0xc00042b7e0 sp=0xc00042b758 pc=0x8e091d runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc00042b7e8 sp=0xc00042b7e0 pc=0x467501 created by github.com/google/syzkaller/pkg/ipc.(*command).exec /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:769 +0x25b goroutine 158 [IO wait, 28 minutes]: runtime.gopark(0x4b8dc5?, 0xc000da7608?, 0x58?, 0x76?, 0x4b8df9?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc000da75e8 sp=0xc000da75c8 pc=0x437ed6 runtime.netpollblock(0xc0012aa000?, 0x40472f?, 0x0?) /usr/local/go/src/runtime/netpoll.go:527 +0xf7 fp=0xc000da7620 sp=0xc000da75e8 pc=0x431237 internal/poll.runtime_pollWait(0x7f7fd08cbd18, 0x72) /usr/local/go/src/runtime/netpoll.go:306 +0x89 fp=0xc000da7640 sp=0xc000da7620 pc=0x461889 internal/poll.(*pollDesc).wait(0xc000ab17a0?, 0xc0012aa000?, 0x1) /usr/local/go/src/internal/poll/fd_poll_runtime.go:84 +0x32 fp=0xc000da7668 sp=0xc000da7640 pc=0x4d1932 internal/poll.(*pollDesc).waitRead(...) /usr/local/go/src/internal/poll/fd_poll_runtime.go:89 internal/poll.(*FD).Read(0xc000ab17a0, {0xc0012aa000, 0x20000, 0x20000}) /usr/local/go/src/internal/poll/fd_unix.go:167 +0x299 fp=0xc000da7700 sp=0xc000da7668 pc=0x4d2d19 os.(*File).read(...) /usr/local/go/src/os/file_posix.go:31 os.(*File).Read(0xc0011fc0b0, {0xc0012aa000?, 0x0?, 0x0?}) /usr/local/go/src/os/file.go:118 +0x5e fp=0xc000da7758 sp=0xc000da7700 pc=0x4dcdfe github.com/google/syzkaller/pkg/ipc.makeCommand.func2(0xc000258070) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:629 +0x8a fp=0xc000da77c8 sp=0xc000da7758 pc=0x8df2ea github.com/google/syzkaller/pkg/ipc.makeCommand.func7() /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:644 +0x2a fp=0xc000da77e0 sp=0xc000da77c8 pc=0x8df22a runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000da77e8 sp=0xc000da77e0 pc=0x467501 created by github.com/google/syzkaller/pkg/ipc.makeCommand /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:623 +0xa7b goroutine 2105 [runnable]: syscall.Syscall6(0x1e1, 0x1, 0x2dd9, 0xc00042c66c, 0x10020, 0x0, 0x0) /usr/local/go/src/syscall/asm_unix_amd64.s:39 +0x5 fp=0xc00042c618 sp=0xc00042c610 pc=0x4b8e25 os.wait6(0xc00063e9c0?, 0xc00042c718?, 0x405d85?) /usr/local/go/src/os/wait6_netbsd.go:16 +0x4d fp=0xc00042c688 sp=0xc00042c618 pc=0x4e2e8d os.(*Process).blockUntilWaitable(0xc0011c6330) /usr/local/go/src/os/wait_wait6.go:20 +0x36 fp=0xc00042c6b8 sp=0xc00042c688 pc=0x4e2f16 os.(*Process).wait(0xc0011c6330) /usr/local/go/src/os/exec_unix.go:22 +0x28 fp=0xc00042c718 sp=0xc00042c6b8 pc=0x4dc648 os.(*Process).Wait(...) /usr/local/go/src/os/exec.go:132 os/exec.(*Cmd).Wait(0xc0009182c0) /usr/local/go/src/os/exec/exec.go:890 +0x45 fp=0xc00042c780 sp=0xc00042c718 pc=0x51d085 github.com/google/syzkaller/pkg/ipc.makeCommand.func3(0xc0004e9880) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:652 +0x32 fp=0xc00042c7c8 sp=0xc00042c780 pc=0x8df172 github.com/google/syzkaller/pkg/ipc.makeCommand.func8() /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:657 +0x2a fp=0xc00042c7e0 sp=0xc00042c7c8 pc=0x8df10a runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc00042c7e8 sp=0xc00042c7e0 pc=0x467501 created by github.com/google/syzkaller/pkg/ipc.makeCommand /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:651 +0xc7c goroutine 2118 [syscall]: syscall.Syscall6(0x1e1, 0x1, 0x239d, 0xc000426e6c, 0x10020, 0x0, 0x0) /usr/local/go/src/syscall/asm_unix_amd64.s:39 +0x5 fp=0xc000426e18 sp=0xc000426e10 pc=0x4b8e25 os.wait6(0xc000d536c0?, 0xc000426f18?, 0x405d3d?) /usr/local/go/src/os/wait6_netbsd.go:16 +0x4d fp=0xc000426e88 sp=0xc000426e18 pc=0x4e2e8d os.(*Process).blockUntilWaitable(0xc0011c64b0) /usr/local/go/src/os/wait_wait6.go:20 +0x36 fp=0xc000426eb8 sp=0xc000426e88 pc=0x4e2f16 os.(*Process).wait(0xc0011c64b0) /usr/local/go/src/os/exec_unix.go:22 +0x28 fp=0xc000426f18 sp=0xc000426eb8 pc=0x4dc648 os.(*Process).Wait(...) /usr/local/go/src/os/exec.go:132 os/exec.(*Cmd).Wait(0xc000b4ba20) /usr/local/go/src/os/exec/exec.go:890 +0x45 fp=0xc000426f80 sp=0xc000426f18 pc=0x51d085 github.com/google/syzkaller/pkg/ipc.makeCommand.func3(0xc0004e9b90) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:652 +0x32 fp=0xc000426fc8 sp=0xc000426f80 pc=0x8df172 github.com/google/syzkaller/pkg/ipc.makeCommand.func8() /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:657 +0x2a fp=0xc000426fe0 sp=0xc000426fc8 pc=0x8df10a runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000426fe8 sp=0xc000426fe0 pc=0x467501 created by github.com/google/syzkaller/pkg/ipc.makeCommand /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:651 +0xc7c goroutine 2114 [IO wait]: runtime.gopark(0x4b8dc5?, 0xc0011ec608?, 0x58?, 0xc6?, 0x4b8df9?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc0011ec5e8 sp=0xc0011ec5c8 pc=0x437ed6 runtime.netpollblock(0xc001406000?, 0x40472f?, 0x0?) /usr/local/go/src/runtime/netpoll.go:527 +0xf7 fp=0xc0011ec620 sp=0xc0011ec5e8 pc=0x431237 internal/poll.runtime_pollWait(0x7f7fd078b6a0, 0x72) /usr/local/go/src/runtime/netpoll.go:306 +0x89 fp=0xc0011ec640 sp=0xc0011ec620 pc=0x461889 internal/poll.(*pollDesc).wait(0xc0013fdda0?, 0xc001406000?, 0x1) /usr/local/go/src/internal/poll/fd_poll_runtime.go:84 +0x32 fp=0xc0011ec668 sp=0xc0011ec640 pc=0x4d1932 internal/poll.(*pollDesc).waitRead(...) /usr/local/go/src/internal/poll/fd_poll_runtime.go:89 internal/poll.(*FD).Read(0xc0013fdda0, {0xc001406000, 0x20000, 0x20000}) /usr/local/go/src/internal/poll/fd_unix.go:167 +0x299 fp=0xc0011ec700 sp=0xc0011ec668 pc=0x4d2d19 os.(*File).read(...) /usr/local/go/src/os/file_posix.go:31 os.(*File).Read(0xc000423620, {0xc001406000?, 0x4c4757?, 0x0?}) /usr/local/go/src/os/file.go:118 +0x5e fp=0xc0011ec758 sp=0xc0011ec700 pc=0x4dcdfe github.com/google/syzkaller/pkg/ipc.makeCommand.func2(0xc0004e9b20) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:629 +0x8a fp=0xc0011ec7c8 sp=0xc0011ec758 pc=0x8df2ea github.com/google/syzkaller/pkg/ipc.makeCommand.func7() /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:644 +0x2a fp=0xc0011ec7e0 sp=0xc0011ec7c8 pc=0x8df22a runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc0011ec7e8 sp=0xc0011ec7e0 pc=0x467501 created by github.com/google/syzkaller/pkg/ipc.makeCommand /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:623 +0xa7b goroutine 2110 [select]: runtime.gopark(0xc0011ed7b0?, 0x2?, 0x0?, 0xa3?, 0xc0011ed78c?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc0011ed618 sp=0xc0011ed5f8 pc=0x437ed6 runtime.selectgo(0xc0011ed7b0, 0xc0011ed788, 0x4c4757?, 0x0, 0x8df1c7?, 0x1) /usr/local/go/src/runtime/select.go:327 +0x7be fp=0xc0011ed758 sp=0xc0011ed618 pc=0x447efe github.com/google/syzkaller/pkg/ipc.(*command).exec.func1() /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:771 +0x7d fp=0xc0011ed7e0 sp=0xc0011ed758 pc=0x8e091d runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc0011ed7e8 sp=0xc0011ed7e0 pc=0x467501 created by github.com/google/syzkaller/pkg/ipc.(*command).exec /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:769 +0x25b goroutine 1683 [syscall, 2 minutes]: syscall.Syscall6(0x1e1, 0x1, 0x1a4a, 0xc000ccbe6c, 0x10020, 0x0, 0x0) /usr/local/go/src/syscall/asm_unix_amd64.s:39 +0x5 fp=0xc000ccbe18 sp=0xc000ccbe10 pc=0x4b8e25 os.wait6(0xc000493d40?, 0xc000ccbf18?, 0x405d85?) /usr/local/go/src/os/wait6_netbsd.go:16 +0x4d fp=0xc000ccbe88 sp=0xc000ccbe18 pc=0x4e2e8d os.(*Process).blockUntilWaitable(0xc0011c6270) /usr/local/go/src/os/wait_wait6.go:20 +0x36 fp=0xc000ccbeb8 sp=0xc000ccbe88 pc=0x4e2f16 os.(*Process).wait(0xc0011c6270) /usr/local/go/src/os/exec_unix.go:22 +0x28 fp=0xc000ccbf18 sp=0xc000ccbeb8 pc=0x4dc648 os.(*Process).Wait(...) /usr/local/go/src/os/exec.go:132 os/exec.(*Cmd).Wait(0xc000b4a2c0) /usr/local/go/src/os/exec/exec.go:890 +0x45 fp=0xc000ccbf80 sp=0xc000ccbf18 pc=0x51d085 github.com/google/syzkaller/pkg/ipc.makeCommand.func3(0xc0000d8380) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:652 +0x32 fp=0xc000ccbfc8 sp=0xc000ccbf80 pc=0x8df172 github.com/google/syzkaller/pkg/ipc.makeCommand.func8() /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:657 +0x2a fp=0xc000ccbfe0 sp=0xc000ccbfc8 pc=0x8df10a runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000ccbfe8 sp=0xc000ccbfe0 pc=0x467501 created by github.com/google/syzkaller/pkg/ipc.makeCommand /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:651 +0xc7c goroutine 2117 [IO wait]: runtime.gopark(0x4b8dc5?, 0xc000ccae08?, 0x58?, 0xae?, 0x4b8df9?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc000ccade8 sp=0xc000ccadc8 pc=0x437ed6 runtime.netpollblock(0xc00142e000?, 0x40472f?, 0x0?) /usr/local/go/src/runtime/netpoll.go:527 +0xf7 fp=0xc000ccae20 sp=0xc000ccade8 pc=0x431237 internal/poll.runtime_pollWait(0x7f7fd08cc858, 0x72) /usr/local/go/src/runtime/netpoll.go:306 +0x89 fp=0xc000ccae40 sp=0xc000ccae20 pc=0x461889 internal/poll.(*pollDesc).wait(0xc0015d41e0?, 0xc00142e000?, 0x1) /usr/local/go/src/internal/poll/fd_poll_runtime.go:84 +0x32 fp=0xc000ccae68 sp=0xc000ccae40 pc=0x4d1932 internal/poll.(*pollDesc).waitRead(...) /usr/local/go/src/internal/poll/fd_poll_runtime.go:89 internal/poll.(*FD).Read(0xc0015d41e0, {0xc00142e000, 0x20000, 0x20000}) /usr/local/go/src/internal/poll/fd_unix.go:167 +0x299 fp=0xc000ccaf00 sp=0xc000ccae68 pc=0x4d2d19 os.(*File).read(...) /usr/local/go/src/os/file_posix.go:31 os.(*File).Read(0xc000423660, {0xc00142e000?, 0x4c4757?, 0x0?}) /usr/local/go/src/os/file.go:118 +0x5e fp=0xc000ccaf58 sp=0xc000ccaf00 pc=0x4dcdfe github.com/google/syzkaller/pkg/ipc.makeCommand.func2(0xc0004e9b90) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:629 +0x8a fp=0xc000ccafc8 sp=0xc000ccaf58 pc=0x8df2ea github.com/google/syzkaller/pkg/ipc.makeCommand.func7() /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:644 +0x2a fp=0xc000ccafe0 sp=0xc000ccafc8 pc=0x8df22a runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc000ccafe8 sp=0xc000ccafe0 pc=0x467501 created by github.com/google/syzkaller/pkg/ipc.makeCommand /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:623 +0xa7b goroutine 2104 [runnable]: runtime.gopark(0x4b8dc5?, 0xc0012f3608?, 0x58?, 0x36?, 0x4b8df9?) /usr/local/go/src/runtime/proc.go:381 +0xd6 fp=0xc0012f35e8 sp=0xc0012f35c8 pc=0x437ed6 runtime.netpollblock(0xc00122c000?, 0x40472f?, 0x0?) /usr/local/go/src/runtime/netpoll.go:527 +0xf7 fp=0xc0012f3620 sp=0xc0012f35e8 pc=0x431237 internal/poll.runtime_pollWait(0x7f7fd08cc768, 0x72) /usr/local/go/src/runtime/netpoll.go:306 +0x89 fp=0xc0012f3640 sp=0xc0012f3620 pc=0x461889 internal/poll.(*pollDesc).wait(0xc0017488a0?, 0xc00122c000?, 0x1) /usr/local/go/src/internal/poll/fd_poll_runtime.go:84 +0x32 fp=0xc0012f3668 sp=0xc0012f3640 pc=0x4d1932 internal/poll.(*pollDesc).waitRead(...) /usr/local/go/src/internal/poll/fd_poll_runtime.go:89 internal/poll.(*FD).Read(0xc0017488a0, {0xc00122c000, 0x20000, 0x20000}) /usr/local/go/src/internal/poll/fd_unix.go:167 +0x299 fp=0xc0012f3700 sp=0xc0012f3668 pc=0x4d2d19 os.(*File).read(...) /usr/local/go/src/os/file_posix.go:31 os.(*File).Read(0xc000422140, {0xc00122c000?, 0x4c4757?, 0xc0012f37b8?}) /usr/local/go/src/os/file.go:118 +0x5e fp=0xc0012f3758 sp=0xc0012f3700 pc=0x4dcdfe github.com/google/syzkaller/pkg/ipc.makeCommand.func2(0xc0004e9880) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:629 +0x8a fp=0xc0012f37c8 sp=0xc0012f3758 pc=0x8df2ea github.com/google/syzkaller/pkg/ipc.makeCommand.func7() /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:644 +0x2a fp=0xc0012f37e0 sp=0xc0012f37c8 pc=0x8df22a runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc0012f37e8 sp=0xc0012f37e0 pc=0x467501 created by github.com/google/syzkaller/pkg/ipc.makeCommand /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:623 +0xa7b goroutine 2115 [syscall]: syscall.Syscall6(0x1e1, 0x1, 0x2166, 0xc0012f2e6c, 0x10020, 0x0, 0x0) /usr/local/go/src/syscall/asm_unix_amd64.s:39 +0x5 fp=0xc0012f2e18 sp=0xc0012f2e10 pc=0x4b8e25 os.wait6(0xc000048500?, 0xc0012f2f18?, 0x405ccc?) /usr/local/go/src/os/wait6_netbsd.go:16 +0x4d fp=0xc0012f2e88 sp=0xc0012f2e18 pc=0x4e2e8d os.(*Process).blockUntilWaitable(0xc0011c62d0) /usr/local/go/src/os/wait_wait6.go:20 +0x36 fp=0xc0012f2eb8 sp=0xc0012f2e88 pc=0x4e2f16 os.(*Process).wait(0xc0011c62d0) /usr/local/go/src/os/exec_unix.go:22 +0x28 fp=0xc0012f2f18 sp=0xc0012f2eb8 pc=0x4dc648 os.(*Process).Wait(...) /usr/local/go/src/os/exec.go:132 os/exec.(*Cmd).Wait(0xc000b4b8c0) /usr/local/go/src/os/exec/exec.go:890 +0x45 fp=0xc0012f2f80 sp=0xc0012f2f18 pc=0x51d085 github.com/google/syzkaller/pkg/ipc.makeCommand.func3(0xc0004e9b20) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:652 +0x32 fp=0xc0012f2fc8 sp=0xc0012f2f80 pc=0x8df172 github.com/google/syzkaller/pkg/ipc.makeCommand.func8() /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:657 +0x2a fp=0xc0012f2fe0 sp=0xc0012f2fc8 pc=0x8df10a runtime.goexit() /usr/local/go/src/runtime/asm_amd64.s:1598 +0x1 fp=0xc0012f2fe8 sp=0xc0012f2fe0 pc=0x467501 created by github.com/google/syzkaller/pkg/ipc.makeCommand /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:651 +0xc7c