pthread_create crash: gofuzz, cgo, asan, go 1.16 #46467

nigeltao · 2021-05-31T12:37:16Z

Some Go fuzzer programs (configured with whatever oss-fuzz does to combine Go with the address sanitizer) are crashing with:

Crash Type: Null-dereference READ
Crash Address: 0x000000000000
Crash State:
pthread_create
_cgo_try_pthread_create
pthread_create

The actual Go code under test does not spawn its own goroutines, although it does involve asm code which IIUC is similar to cgo:
https://github.com/google/oss-fuzz/blob/master/projects/go-snappy/fuzz.go
https://github.com/golang/snappy/blob/master/decode.go
https://github.com/golang/snappy/blob/master/decode_amd64.s

Another comment in that 5442 issue says:

This bug happens for every golang project since go 1.16
I think it happened as well in go 1.15 but only for fuzz targets running multiple goroutines

So perhaps the asm thing is unrelated??

Any suggestions on what to try next?

Also posted to https://groups.google.com/g/golang-dev/c/3DrZWztdaX0 but there's not much discussion there.

The text was updated successfully, but these errors were encountered:

catenacyber · 2022-12-02T07:29:28Z

My best hope is that this is related to #49075

dr2chase added the NeedsInvestigation Someone must examine and confirm this is a valid issue and not a duplicate of an existing one. label Jun 1, 2021

seankhliao added this to the Unplanned milestone Aug 20, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

pthread_create crash: gofuzz, cgo, asan, go 1.16 #46467

pthread_create crash: gofuzz, cgo, asan, go 1.16 #46467

nigeltao commented May 31, 2021 •

edited

catenacyber commented Dec 2, 2022

pthread_create crash: gofuzz, cgo, asan, go 1.16 #46467

pthread_create crash: gofuzz, cgo, asan, go 1.16 #46467

Comments

nigeltao commented May 31, 2021 • edited

catenacyber commented Dec 2, 2022

nigeltao commented May 31, 2021 •

edited