[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.39' (ECDSA) to the list of known hosts. 2020/05/01 19:57:26 fuzzer started 2020/05/01 19:57:27 connecting to host at 10.128.0.26:39117 2020/05/01 19:57:27 checking machine... 2020/05/01 19:57:27 checking revisions... 2020/05/01 19:57:27 testing simple program... syzkaller login: [ 53.924918][ T7034] IPVS: ftp: loaded support on port[0] = 21 2020/05/01 19:57:27 building call list... [ 54.330480][ T36] tipc: TX() has been purged, node left! [ 55.518774][ T7022] can: request_module (can-proto-0) failed. executing program [ 57.555054][ T7022] can: request_module (can-proto-0) failed. [ 57.566715][ T7022] can: request_module (can-proto-0) failed. [ 58.041644][ T7022] ================================================================== [ 58.049919][ T7022] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 58.057091][ T7022] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/7022 [ 58.064958][ T7022] [ 58.067266][ T7022] CPU: 1 PID: 7022 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 58.075470][ T7022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 58.085510][ T7022] Call Trace: [ 58.088794][ T7022] dump_stack+0x188/0x20d [ 58.093106][ T7022] ? x25_disconnect+0x253/0x370 [ 58.097929][ T7022] ? __sock_release+0x280/0x280 [ 58.103360][ T7022] __kasan_report.cold+0x5/0x4d [ 58.108189][ T7022] ? rcu_read_lock_held+0x1/0xb0 [ 58.113100][ T7022] ? x25_disconnect+0x253/0x370 [ 58.117925][ T7022] ? x25_disconnect+0x253/0x370 [ 58.122751][ T7022] kasan_report+0x33/0x50 [ 58.127056][ T7022] check_memory_region+0x141/0x190 [ 58.132159][ T7022] x25_disconnect+0x253/0x370 [ 58.136809][ T7022] x25_release+0x345/0x420 [ 58.141220][ T7022] __sock_release+0xcd/0x280 [ 58.145787][ T7022] sock_close+0x18/0x20 [ 58.149919][ T7022] __fput+0x33e/0x880 [ 58.153901][ T7022] task_work_run+0xf4/0x1b0 [ 58.158398][ T7022] exit_to_usermode_loop+0x2fa/0x360 [ 58.163670][ T7022] do_syscall_64+0x6b1/0x7d0 [ 58.168247][ T7022] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 58.174123][ T7022] RIP: 0033:0x4afb40 [ 58.178003][ T7022] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 58.197591][ T7022] RSP: 002b:000000c0001f74f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 58.205989][ T7022] RAX: 0000000000000000 RBX: 000000c00002e500 RCX: 00000000004afb40 [ 58.213962][ T7022] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 58.221910][ T7022] RBP: 000000c0001f7538 R08: 0000000000000000 R09: 0000000000000000 [ 58.229855][ T7022] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 58.237811][ T7022] R13: 0000000000000162 R14: 0000000000000161 R15: 0000000000000200 [ 58.245776][ T7022] ================================================================== [ 58.253806][ T7022] Disabling lock debugging due to kernel taint [ 58.259997][ T7022] Kernel panic - not syncing: panic_on_warn set ... [ 58.266574][ T7022] CPU: 1 PID: 7022 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 58.276201][ T7022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 58.286228][ T7022] Call Trace: [ 58.289507][ T7022] dump_stack+0x188/0x20d [ 58.293810][ T7022] ? __sock_release+0x280/0x280 [ 58.298636][ T7022] panic+0x2e3/0x75c [ 58.302522][ T7022] ? add_taint.cold+0x16/0x16 [ 58.307175][ T7022] ? x25_disconnect+0x253/0x370 [ 58.312021][ T7022] ? trace_hardirqs_on+0x55/0x220 [ 58.317134][ T7022] ? x25_disconnect+0x253/0x370 [ 58.321955][ T7022] ? __sock_release+0x280/0x280 [ 58.326774][ T7022] end_report+0x4d/0x53 [ 58.330899][ T7022] __kasan_report.cold+0xd/0x4d [ 58.335757][ T7022] ? rcu_read_lock_held+0x1/0xb0 [ 58.340681][ T7022] ? x25_disconnect+0x253/0x370 [ 58.345501][ T7022] ? x25_disconnect+0x253/0x370 [ 58.350323][ T7022] kasan_report+0x33/0x50 [ 58.354623][ T7022] check_memory_region+0x141/0x190 [ 58.359711][ T7022] x25_disconnect+0x253/0x370 [ 58.364357][ T7022] x25_release+0x345/0x420 [ 58.368743][ T7022] __sock_release+0xcd/0x280 [ 58.373316][ T7022] sock_close+0x18/0x20 [ 58.377453][ T7022] __fput+0x33e/0x880 [ 58.381406][ T7022] task_work_run+0xf4/0x1b0 [ 58.385881][ T7022] exit_to_usermode_loop+0x2fa/0x360 [ 58.391146][ T7022] do_syscall_64+0x6b1/0x7d0 [ 58.395716][ T7022] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 58.401590][ T7022] RIP: 0033:0x4afb40 [ 58.405466][ T7022] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 58.425211][ T7022] RSP: 002b:000000c0001f74f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 58.433620][ T7022] RAX: 0000000000000000 RBX: 000000c00002e500 RCX: 00000000004afb40 [ 58.441568][ T7022] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 58.449520][ T7022] RBP: 000000c0001f7538 R08: 0000000000000000 R09: 0000000000000000 [ 58.457461][ T7022] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 58.465419][ T7022] R13: 0000000000000162 R14: 0000000000000161 R15: 0000000000000200 [ 58.474685][ T7022] Kernel Offset: disabled [ 58.479016][ T7022] Rebooting in 86400 seconds..