Comments (7)
dvyukov
commented on April 29, 2024
Yes, syz-repro does not recognize "no output" as crash. It should.
"no output" means that fuzzer appears to be hanged and does not produce any output for some time. This can mean that kernel got deadlocked. Try to copy bin/syz-execprog, bin/syz-executor and crash-qemu-3-1456169236767423401 into a VM, and then execute:
$ ./syz-execprog -cover=0 -repeat=0 -procs=20 qemu-3-1456169236767423401
And check what happens with kernel and with syz-executor processes. Do they look healthy?
from syzkaller.
Fuzion24
commented on April 29, 2024
Where is it looking for syz-executor at?
root@bitbox:~# ls bin/
syz-execprog syz-executor syz-mutate syz-prog2c syz-repro syz-stress syz-upgrade
root@bitbox:~# ./bin/syz-execprog -cover=0 -repeat=0 -procs=20 ./crash-qemu-0-1456169225187357935
2016/02/24 16:54:31 parsed 4 programs
2016/02/24 16:54:31 executed 0 programs
result: failed=false hanged=false err=failed to start executor binary: fork/exec /root: permission denied
result: failed=false hanged=false err=failed to start executor binary: fork/exec /root: permission denied
result: failed=false hanged=false err=failed to start executor binary: fork/exec /root: permission denied
result: failed=false hanged=false err=failed to start executor binary: fork/exec /root: permission denied
result: failed=false hanged=false err=failed to start executor binary: fork/exec /root: permission denied
and from the bin/
root@bitbox:~/bin# ./syz-execprog -cover=0 -repeat=0 -procs=20 ../crash-qemu-0-1456169225187357935
2016/02/24 16:55:30 parsed 4 programs
2016/02/24 16:55:30 executed 0 programs
result: failed=false hanged=false err=failed to start executor binary: fork/exec /root/bin: permission denied
result: failed=false hanged=false err=failed to start executor binary: fork/exec /root/bin: permission denied
result: failed=false hanged=false err=failed to start executor binary: fork/exec /root/bin: permission denied
from syzkaller.
dvyukov
commented on April 29, 2024
The most recent version looks for it in the CWD. But you can specify syz-executor path explicitly with:
$ ./syz-execproc -executor ./syz-executor ....
from syzkaller.
Fuzion24
commented on April 29, 2024
Ok, so it does indeed appear to hang, but nothing interesting in dmesg, etc..
from syzkaller.
dvyukov
commented on April 29, 2024
What's the state of syz-executor processes in top/ps? If they hang in D state, then it's bad. If they are unkillable, then it is even worse.
It can also help to enable more debugging configs like CONFIG_RCU_STALL_COMMON, CONFIG_PROVE_RCU, CONFIG_WQ_WATCHDOG. Then maybe kernel will auto diagnose the issue.
from syzkaller.
dvyukov
commented on April 29, 2024
To localize the offending program you can execute programs from the crash log one-by-one starting from the end. And find out which one leads to hangs.
from syzkaller.
dvyukov
commented on April 29, 2024
Closing as this seems to non-actionable.
syz-repro now understands "no output" and "lost connection" crashes.
from syzkaller.
Related Issues (20)
- dashboard: ReportFailedRepro fails with 413 Request Entity Too Large HOT 20
- Tracking bug for KMSAN's incompatibility with CONFIG_DEBUG_LIST=y
- sys, executor: incorrect handling of syz_io_uring_setup()
- executor: protect kcov mapping with redzones
- .github/workflows/ci.yml: improvements HOT 4
- executor: debug SIGSEGV when collecting TestOS coverage
- docs: add the translation of Simplified Chinese - zh_CN HOT 2
- pkg/cover: symbolization HOT 4
- pkg/fuzzer: possible improvements
- syzbot: fs coverage dropped in v6.9-rc1 HOT 13
- pkg/report: OOB access in extractGuiltyFile HOT 1
- executor: remote cover enable write trace failed (errno 17)
- pkg/fuzzer: corpus progs with non-reproducible coverage HOT 3
- syz-extract: Support KLEAF builds HOT 1
- OSS-Fuzz issue 68010 HOT 1
- executor: cgroups setup causes unrecoverable errors
- OSS-Fuzz issue 68086 HOT 1
- OSS-Fuzz issue 68113
- docs: information about reporting Linux kernel security bugs is outdated
- prog: `panic: no result` during serialization HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from syzkaller.