[ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Load/Save RF Kill Switch Status. [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.197' (ECDSA) to the list of known hosts. 2020/04/30 01:49:17 fuzzer started 2020/04/30 01:49:19 connecting to host at 10.128.0.26:44983 2020/04/30 01:49:19 checking machine... 2020/04/30 01:49:19 checking revisions... 2020/04/30 01:49:19 testing simple program... syzkaller login: [ 76.750015][ T7039] IPVS: ftp: loaded support on port[0] = 21 2020/04/30 01:49:19 building call list... [ 77.146144][ T493] tipc: TX() has been purged, node left! [ 78.471844][ T7038] can: request_module (can-proto-0) failed. executing program [ 80.296442][ T7038] can: request_module (can-proto-0) failed. [ 80.310663][ T7038] can: request_module (can-proto-0) failed. [ 80.857339][ T7038] ================================================================== [ 80.865610][ T7038] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 80.872937][ T7038] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/7038 [ 80.881558][ T7038] [ 80.884879][ T7038] CPU: 0 PID: 7038 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 80.894624][ T7038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 80.908125][ T7038] Call Trace: [ 80.911464][ T7038] dump_stack+0x188/0x20d [ 80.915833][ T7038] ? x25_disconnect+0x253/0x370 [ 80.920687][ T7038] ? __sock_release+0x280/0x280 [ 80.925701][ T7038] __kasan_report.cold+0x5/0x4d [ 80.930568][ T7038] ? rcu_read_lock_held+0x1/0xb0 [ 80.935790][ T7038] ? x25_disconnect+0x253/0x370 [ 80.940665][ T7038] ? x25_disconnect+0x253/0x370 [ 80.945497][ T7038] kasan_report+0x33/0x50 [ 80.949985][ T7038] check_memory_region+0x141/0x190 [ 80.955181][ T7038] x25_disconnect+0x253/0x370 [ 80.959917][ T7038] x25_release+0x345/0x420 [ 80.964334][ T7038] __sock_release+0xcd/0x280 [ 80.969391][ T7038] sock_close+0x18/0x20 [ 80.973568][ T7038] __fput+0x33e/0x880 [ 80.977709][ T7038] task_work_run+0xf4/0x1b0 [ 80.982246][ T7038] exit_to_usermode_loop+0x2fa/0x360 [ 80.987559][ T7038] do_syscall_64+0x6b1/0x7d0 [ 80.992162][ T7038] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 80.998182][ T7038] RIP: 0033:0x4afb40 [ 81.002163][ T7038] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 81.022008][ T7038] RSP: 002b:000000c0000774f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 81.030572][ T7038] RAX: 0000000000000000 RBX: 000000c00002e500 RCX: 00000000004afb40 [ 81.038554][ T7038] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 81.046637][ T7038] RBP: 000000c000077538 R08: 0000000000000000 R09: 0000000000000000 [ 81.054847][ T7038] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 81.063125][ T7038] R13: 0000000000000166 R14: 0000000000000165 R15: 0000000000000200 [ 81.071133][ T7038] ================================================================== [ 81.079202][ T7038] Disabling lock debugging due to kernel taint [ 81.085421][ T7038] Kernel panic - not syncing: panic_on_warn set ... [ 81.092016][ T7038] CPU: 0 PID: 7038 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 81.102433][ T7038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 81.112473][ T7038] Call Trace: [ 81.115763][ T7038] dump_stack+0x188/0x20d [ 81.120590][ T7038] ? __sock_release+0x280/0x280 [ 81.126229][ T7038] panic+0x2e3/0x75c [ 81.130115][ T7038] ? add_taint.cold+0x16/0x16 [ 81.135037][ T7038] ? x25_disconnect+0x253/0x370 [ 81.140014][ T7038] ? trace_hardirqs_on+0x55/0x220 [ 81.145159][ T7038] ? x25_disconnect+0x253/0x370 [ 81.150027][ T7038] ? __sock_release+0x280/0x280 [ 81.154866][ T7038] end_report+0x4d/0x53 [ 81.159048][ T7038] __kasan_report.cold+0xd/0x4d [ 81.163898][ T7038] ? rcu_read_lock_held+0x1/0xb0 [ 81.168847][ T7038] ? x25_disconnect+0x253/0x370 [ 81.173711][ T7038] ? x25_disconnect+0x253/0x370 [ 81.178707][ T7038] kasan_report+0x33/0x50 [ 81.183162][ T7038] check_memory_region+0x141/0x190 [ 81.188315][ T7038] x25_disconnect+0x253/0x370 [ 81.192999][ T7038] x25_release+0x345/0x420 [ 81.197640][ T7038] __sock_release+0xcd/0x280 [ 81.202427][ T7038] sock_close+0x18/0x20 [ 81.206626][ T7038] __fput+0x33e/0x880 [ 81.210832][ T7038] task_work_run+0xf4/0x1b0 [ 81.215714][ T7038] exit_to_usermode_loop+0x2fa/0x360 [ 81.221115][ T7038] do_syscall_64+0x6b1/0x7d0 [ 81.225712][ T7038] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 81.231722][ T7038] RIP: 0033:0x4afb40 [ 81.236780][ T7038] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 81.256589][ T7038] RSP: 002b:000000c0000774f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 81.265101][ T7038] RAX: 0000000000000000 RBX: 000000c00002e500 RCX: 00000000004afb40 [ 81.273212][ T7038] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 81.281170][ T7038] RBP: 000000c000077538 R08: 0000000000000000 R09: 0000000000000000 [ 81.289255][ T7038] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 81.298954][ T7038] R13: 0000000000000166 R14: 0000000000000165 R15: 0000000000000200 [ 81.308935][ T7038] Kernel Offset: disabled [ 81.313294][ T7038] Rebooting in 86400 seconds..