[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.51' (ECDSA) to the list of known hosts. 2020/05/01 18:02:26 fuzzer started 2020/05/01 18:02:26 connecting to host at 10.128.0.26:40191 2020/05/01 18:02:26 checking machine... 2020/05/01 18:02:26 checking revisions... 2020/05/01 18:02:26 testing simple program... syzkaller login: [ 55.034112][ T7029] IPVS: ftp: loaded support on port[0] = 21 2020/05/01 18:02:26 building call list... [ 55.424765][ T309] tipc: TX() has been purged, node left! [ 56.655499][ T7024] can: request_module (can-proto-0) failed. executing program [ 58.700253][ T7024] can: request_module (can-proto-0) failed. [ 58.712254][ T7024] can: request_module (can-proto-0) failed. [ 59.243570][ T7024] ================================================================== [ 59.251808][ T7024] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 59.259002][ T7024] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/7024 [ 59.266866][ T7024] [ 59.269177][ T7024] CPU: 1 PID: 7024 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 59.277394][ T7024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.287434][ T7024] Call Trace: [ 59.290715][ T7024] dump_stack+0x188/0x20d [ 59.295024][ T7024] ? x25_disconnect+0x253/0x370 [ 59.299865][ T7024] ? __sock_release+0x280/0x280 [ 59.304698][ T7024] __kasan_report.cold+0x5/0x4d [ 59.309550][ T7024] ? rcu_read_lock_held+0x1/0xb0 [ 59.314474][ T7024] ? x25_disconnect+0x253/0x370 [ 59.319299][ T7024] ? x25_disconnect+0x253/0x370 [ 59.324128][ T7024] kasan_report+0x33/0x50 [ 59.328433][ T7024] check_memory_region+0x141/0x190 [ 59.333519][ T7024] x25_disconnect+0x253/0x370 [ 59.338181][ T7024] x25_release+0x345/0x420 [ 59.342576][ T7024] __sock_release+0xcd/0x280 [ 59.347148][ T7024] sock_close+0x18/0x20 [ 59.351566][ T7024] __fput+0x33e/0x880 [ 59.355549][ T7024] task_work_run+0xf4/0x1b0 [ 59.360040][ T7024] exit_to_usermode_loop+0x2fa/0x360 [ 59.365311][ T7024] do_syscall_64+0x6b1/0x7d0 [ 59.369883][ T7024] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 59.375753][ T7024] RIP: 0033:0x4afb40 [ 59.379631][ T7024] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 59.399207][ T7024] RSP: 002b:000000c0001f14f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 59.407756][ T7024] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 59.415706][ T7024] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 59.423670][ T7024] RBP: 000000c0001f1538 R08: 0000000000000000 R09: 0000000000000000 [ 59.431630][ T7024] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 59.439585][ T7024] R13: 0000000000000163 R14: 0000000000000162 R15: 0000000000000200 [ 59.447548][ T7024] ================================================================== [ 59.455593][ T7024] Disabling lock debugging due to kernel taint [ 59.461780][ T7024] Kernel panic - not syncing: panic_on_warn set ... [ 59.468370][ T7024] CPU: 1 PID: 7024 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 59.478009][ T7024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.488051][ T7024] Call Trace: [ 59.491330][ T7024] dump_stack+0x188/0x20d [ 59.495740][ T7024] ? __sock_release+0x280/0x280 [ 59.500587][ T7024] panic+0x2e3/0x75c [ 59.504475][ T7024] ? add_taint.cold+0x16/0x16 [ 59.509140][ T7024] ? x25_disconnect+0x253/0x370 [ 59.513966][ T7024] ? trace_hardirqs_on+0x55/0x220 [ 59.518972][ T7024] ? x25_disconnect+0x253/0x370 [ 59.523798][ T7024] ? __sock_release+0x280/0x280 [ 59.528629][ T7024] end_report+0x4d/0x53 [ 59.532757][ T7024] __kasan_report.cold+0xd/0x4d [ 59.537601][ T7024] ? rcu_read_lock_held+0x1/0xb0 [ 59.542539][ T7024] ? x25_disconnect+0x253/0x370 [ 59.547374][ T7024] ? x25_disconnect+0x253/0x370 [ 59.552194][ T7024] kasan_report+0x33/0x50 [ 59.556509][ T7024] check_memory_region+0x141/0x190 [ 59.561593][ T7024] x25_disconnect+0x253/0x370 [ 59.566268][ T7024] x25_release+0x345/0x420 [ 59.570756][ T7024] __sock_release+0xcd/0x280 [ 59.575327][ T7024] sock_close+0x18/0x20 [ 59.579459][ T7024] __fput+0x33e/0x880 [ 59.583424][ T7024] task_work_run+0xf4/0x1b0 [ 59.587923][ T7024] exit_to_usermode_loop+0x2fa/0x360 [ 59.593184][ T7024] do_syscall_64+0x6b1/0x7d0 [ 59.597761][ T7024] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 59.603635][ T7024] RIP: 0033:0x4afb40 [ 59.607513][ T7024] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 59.627433][ T7024] RSP: 002b:000000c0001f14f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 59.635815][ T7024] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 59.644728][ T7024] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 59.652698][ T7024] RBP: 000000c0001f1538 R08: 0000000000000000 R09: 0000000000000000 [ 59.660665][ T7024] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 59.668717][ T7024] R13: 0000000000000163 R14: 0000000000000162 R15: 0000000000000200 [ 59.678126][ T7024] Kernel Offset: disabled [ 59.682554][ T7024] Rebooting in 86400 seconds..