Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.26' (ECDSA) to the list of known hosts. 2020/05/03 14:33:51 fuzzer started 2020/05/03 14:33:51 connecting to host at 10.128.0.26:34927 2020/05/03 14:33:51 checking machine... 2020/05/03 14:33:51 checking revisions... 2020/05/03 14:33:51 testing simple program... syzkaller login: [ 55.952021][ T7201] IPVS: ftp: loaded support on port[0] = 21 2020/05/03 14:33:52 building call list... [ 56.391392][ T225] tipc: TX() has been purged, node left! [ 57.600966][ T7188] can: request_module (can-proto-0) failed. executing program [ 59.707153][ T7188] can: request_module (can-proto-0) failed. [ 59.718744][ T7188] can: request_module (can-proto-0) failed. [ 60.190684][ T7188] ================================================================== [ 60.199784][ T7188] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 60.207070][ T7188] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/7188 [ 60.214944][ T7188] [ 60.217422][ T7188] CPU: 0 PID: 7188 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 60.225642][ T7188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.235778][ T7188] Call Trace: [ 60.239061][ T7188] dump_stack+0x188/0x20d [ 60.243430][ T7188] ? x25_disconnect+0x253/0x370 [ 60.248711][ T7188] ? __sock_release+0x280/0x280 [ 60.253749][ T7188] __kasan_report.cold+0x5/0x4d [ 60.258780][ T7188] ? rcu_read_lock_held+0x1/0xb0 [ 60.263925][ T7188] ? x25_disconnect+0x253/0x370 [ 60.269107][ T7188] ? x25_disconnect+0x253/0x370 [ 60.274056][ T7188] kasan_report+0x33/0x50 [ 60.278575][ T7188] check_memory_region+0x141/0x190 [ 60.283790][ T7188] x25_disconnect+0x253/0x370 [ 60.288562][ T7188] x25_release+0x345/0x420 [ 60.293077][ T7188] __sock_release+0xcd/0x280 [ 60.298116][ T7188] sock_close+0x18/0x20 [ 60.302336][ T7188] __fput+0x33e/0x880 [ 60.306327][ T7188] task_work_run+0xf4/0x1b0 [ 60.310829][ T7188] exit_to_usermode_loop+0x2fa/0x360 [ 60.316220][ T7188] do_syscall_64+0x6b1/0x7d0 [ 60.321515][ T7188] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 60.327415][ T7188] RIP: 0033:0x4afb40 [ 60.331305][ T7188] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 60.350892][ T7188] RSP: 002b:000000c0001c74f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 60.361176][ T7188] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 60.369766][ T7188] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 60.378196][ T7188] RBP: 000000c0001c7538 R08: 0000000000000000 R09: 0000000000000000 [ 60.386263][ T7188] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 60.396469][ T7188] R13: 0000000000000162 R14: 0000000000000161 R15: 0000000000000200 [ 60.404637][ T7188] ================================================================== [ 60.412782][ T7188] Disabling lock debugging due to kernel taint [ 60.419309][ T7188] Kernel panic - not syncing: panic_on_warn set ... [ 60.426610][ T7188] CPU: 0 PID: 7188 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 60.437094][ T7188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.449038][ T7188] Call Trace: [ 60.452522][ T7188] dump_stack+0x188/0x20d [ 60.458007][ T7188] ? __sock_release+0x280/0x280 [ 60.464213][ T7188] panic+0x2e3/0x75c [ 60.468640][ T7188] ? add_taint.cold+0x16/0x16 [ 60.473511][ T7188] ? x25_disconnect+0x253/0x370 [ 60.478828][ T7188] ? trace_hardirqs_on+0x55/0x220 [ 60.484132][ T7188] ? x25_disconnect+0x253/0x370 [ 60.489678][ T7188] ? __sock_release+0x280/0x280 [ 60.494665][ T7188] end_report+0x4d/0x53 [ 60.500133][ T7188] __kasan_report.cold+0xd/0x4d [ 60.505324][ T7188] ? rcu_read_lock_held+0x1/0xb0 [ 60.510734][ T7188] ? x25_disconnect+0x253/0x370 [ 60.515785][ T7188] ? x25_disconnect+0x253/0x370 [ 60.520641][ T7188] kasan_report+0x33/0x50 [ 60.524976][ T7188] check_memory_region+0x141/0x190 [ 60.530309][ T7188] x25_disconnect+0x253/0x370 [ 60.535111][ T7188] x25_release+0x345/0x420 [ 60.539508][ T7188] __sock_release+0xcd/0x280 [ 60.544093][ T7188] sock_close+0x18/0x20 [ 60.548269][ T7188] __fput+0x33e/0x880 [ 60.552241][ T7188] task_work_run+0xf4/0x1b0 [ 60.556775][ T7188] exit_to_usermode_loop+0x2fa/0x360 [ 60.562764][ T7188] do_syscall_64+0x6b1/0x7d0 [ 60.567781][ T7188] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 60.573853][ T7188] RIP: 0033:0x4afb40 [ 60.577935][ T7188] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 60.599083][ T7188] RSP: 002b:000000c0001c74f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 60.608585][ T7188] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 60.616927][ T7188] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 60.625252][ T7188] RBP: 000000c0001c7538 R08: 0000000000000000 R09: 0000000000000000 [ 60.633388][ T7188] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 60.641466][ T7188] R13: 0000000000000162 R14: 0000000000000161 R15: 0000000000000200 [ 60.651308][ T7188] Kernel Offset: disabled [ 60.655796][ T7188] Rebooting in 86400 seconds..