Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.48' (ECDSA) to the list of known hosts. 2020/04/27 21:49:23 fuzzer started 2020/04/27 21:49:25 connecting to host at 10.128.0.26:36819 2020/04/27 21:49:25 checking machine... 2020/04/27 21:49:25 checking revisions... 2020/04/27 21:49:25 testing simple program... syzkaller login: [ 55.924759][ T7045] IPVS: ftp: loaded support on port[0] = 21 2020/04/27 21:49:25 building call list... [ 56.304908][ T7] tipc: TX() has been purged, node left! [ 57.551000][ T7044] can: request_module (can-proto-0) failed. executing program [ 59.527640][ T7044] can: request_module (can-proto-0) failed. [ 59.539537][ T7044] can: request_module (can-proto-0) failed. [ 59.973485][ T7044] ================================================================== [ 59.981659][ T7044] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 59.988888][ T7044] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/7044 [ 59.996745][ T7044] [ 59.999093][ T7044] CPU: 0 PID: 7044 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 60.007336][ T7044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.017394][ T7044] Call Trace: [ 60.020664][ T7044] dump_stack+0x188/0x20d [ 60.024971][ T7044] ? x25_disconnect+0x253/0x370 [ 60.029809][ T7044] ? __sock_release+0x280/0x280 [ 60.034648][ T7044] __kasan_report.cold+0x5/0x4d [ 60.039475][ T7044] ? rcu_read_lock_held+0x1/0xb0 [ 60.044382][ T7044] ? x25_disconnect+0x253/0x370 [ 60.049206][ T7044] ? x25_disconnect+0x253/0x370 [ 60.054054][ T7044] kasan_report+0x33/0x50 [ 60.058357][ T7044] check_memory_region+0x141/0x190 [ 60.063456][ T7044] x25_disconnect+0x253/0x370 [ 60.068107][ T7044] x25_release+0x345/0x420 [ 60.072500][ T7044] __sock_release+0xcd/0x280 [ 60.077065][ T7044] sock_close+0x18/0x20 [ 60.081211][ T7044] __fput+0x33e/0x880 [ 60.085288][ T7044] task_work_run+0xf4/0x1b0 [ 60.089769][ T7044] exit_to_usermode_loop+0x2fa/0x360 [ 60.095045][ T7044] do_syscall_64+0x6b1/0x7d0 [ 60.099611][ T7044] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 60.105477][ T7044] RIP: 0033:0x4afb40 [ 60.109358][ T7044] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 60.128949][ T7044] RSP: 002b:000000c0000794f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 60.137331][ T7044] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 60.145288][ T7044] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 60.153230][ T7044] RBP: 000000c000079538 R08: 0000000000000000 R09: 0000000000000000 [ 60.161188][ T7044] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 60.169132][ T7044] R13: 0000000000000163 R14: 0000000000000162 R15: 0000000000000200 [ 60.177084][ T7044] ================================================================== [ 60.185121][ T7044] Disabling lock debugging due to kernel taint [ 60.191322][ T7044] Kernel panic - not syncing: panic_on_warn set ... [ 60.197904][ T7044] CPU: 0 PID: 7044 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 60.207516][ T7044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.217557][ T7044] Call Trace: [ 60.220835][ T7044] dump_stack+0x188/0x20d [ 60.225137][ T7044] ? __sock_release+0x280/0x280 [ 60.229970][ T7044] panic+0x2e3/0x75c [ 60.233839][ T7044] ? add_taint.cold+0x16/0x16 [ 60.238486][ T7044] ? x25_disconnect+0x253/0x370 [ 60.243308][ T7044] ? trace_hardirqs_on+0x55/0x220 [ 60.248316][ T7044] ? x25_disconnect+0x253/0x370 [ 60.253136][ T7044] ? __sock_release+0x280/0x280 [ 60.257969][ T7044] end_report+0x4d/0x53 [ 60.262092][ T7044] __kasan_report.cold+0xd/0x4d [ 60.266924][ T7044] ? rcu_read_lock_held+0x1/0xb0 [ 60.271829][ T7044] ? x25_disconnect+0x253/0x370 [ 60.276654][ T7044] ? x25_disconnect+0x253/0x370 [ 60.281471][ T7044] kasan_report+0x33/0x50 [ 60.285769][ T7044] check_memory_region+0x141/0x190 [ 60.290850][ T7044] x25_disconnect+0x253/0x370 [ 60.295496][ T7044] x25_release+0x345/0x420 [ 60.299906][ T7044] __sock_release+0xcd/0x280 [ 60.304476][ T7044] sock_close+0x18/0x20 [ 60.308611][ T7044] __fput+0x33e/0x880 [ 60.312571][ T7044] task_work_run+0xf4/0x1b0 [ 60.317049][ T7044] exit_to_usermode_loop+0x2fa/0x360 [ 60.322398][ T7044] do_syscall_64+0x6b1/0x7d0 [ 60.326974][ T7044] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 60.332869][ T7044] RIP: 0033:0x4afb40 [ 60.336739][ T7044] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 60.356310][ T7044] RSP: 002b:000000c0000794f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 60.364689][ T7044] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 60.372640][ T7044] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 60.380581][ T7044] RBP: 000000c000079538 R08: 0000000000000000 R09: 0000000000000000 [ 60.388547][ T7044] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 60.396486][ T7044] R13: 0000000000000163 R14: 0000000000000162 R15: 0000000000000200 [ 60.405523][ T7044] Kernel Offset: disabled [ 60.409833][ T7044] Rebooting in 86400 seconds..