Warning: Permanently added '10.128.10.26' (ECDSA) to the list of known hosts. 2020/04/30 13:56:04 fuzzer started 2020/04/30 13:56:05 connecting to host at 10.128.0.26:37871 2020/04/30 13:56:05 checking machine... 2020/04/30 13:56:05 checking revisions... 2020/04/30 13:56:05 testing simple program... syzkaller login: [ 54.490312][ T7190] IPVS: ftp: loaded support on port[0] = 21 2020/04/30 13:56:05 building call list... [ 54.868457][ T21] tipc: TX() has been purged, node left! [ 56.075994][ T7177] can: request_module (can-proto-0) failed. executing program [ 58.011577][ T7177] can: request_module (can-proto-0) failed. [ 58.022958][ T7177] can: request_module (can-proto-0) failed. [ 58.467793][ T7177] ================================================================== [ 58.475977][ T7177] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 58.483161][ T7177] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/7177 [ 58.491037][ T7177] [ 58.493359][ T7177] CPU: 0 PID: 7177 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 58.501581][ T7177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 58.511620][ T7177] Call Trace: [ 58.514890][ T7177] dump_stack+0x188/0x20d [ 58.519207][ T7177] ? x25_disconnect+0x253/0x370 [ 58.524033][ T7177] ? __sock_release+0x280/0x280 [ 58.528873][ T7177] __kasan_report.cold+0x5/0x4d [ 58.533722][ T7177] ? rcu_read_lock_held+0x1/0xb0 [ 58.538643][ T7177] ? x25_disconnect+0x253/0x370 [ 58.543504][ T7177] ? x25_disconnect+0x253/0x370 [ 58.548332][ T7177] kasan_report+0x33/0x50 [ 58.552655][ T7177] check_memory_region+0x141/0x190 [ 58.557741][ T7177] x25_disconnect+0x253/0x370 [ 58.562395][ T7177] x25_release+0x345/0x420 [ 58.566798][ T7177] __sock_release+0xcd/0x280 [ 58.571369][ T7177] sock_close+0x18/0x20 [ 58.575501][ T7177] __fput+0x33e/0x880 [ 58.579460][ T7177] task_work_run+0xf4/0x1b0 [ 58.583940][ T7177] exit_to_usermode_loop+0x2fa/0x360 [ 58.589203][ T7177] do_syscall_64+0x6b1/0x7d0 [ 58.593770][ T7177] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 58.599640][ T7177] RIP: 0033:0x4afb40 [ 58.603511][ T7177] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 58.623722][ T7177] RSP: 002b:000000c0001cb4f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 58.632123][ T7177] RAX: 0000000000000000 RBX: 000000c00002e500 RCX: 00000000004afb40 [ 58.640071][ T7177] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 58.648375][ T7177] RBP: 000000c0001cb538 R08: 0000000000000000 R09: 0000000000000000 [ 58.656323][ T7177] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 58.664277][ T7177] R13: 0000000000000167 R14: 0000000000000166 R15: 0000000000000200 [ 58.672926][ T7177] ================================================================== [ 58.680968][ T7177] Disabling lock debugging due to kernel taint [ 58.687164][ T7177] Kernel panic - not syncing: panic_on_warn set ... [ 58.693747][ T7177] CPU: 0 PID: 7177 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 58.703631][ T7177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 58.713656][ T7177] Call Trace: [ 58.716923][ T7177] dump_stack+0x188/0x20d [ 58.721226][ T7177] ? __sock_release+0x280/0x280 [ 58.726046][ T7177] panic+0x2e3/0x75c [ 58.729925][ T7177] ? add_taint.cold+0x16/0x16 [ 58.734584][ T7177] ? x25_disconnect+0x253/0x370 [ 58.739411][ T7177] ? trace_hardirqs_on+0x55/0x220 [ 58.744417][ T7177] ? x25_disconnect+0x253/0x370 [ 58.749240][ T7177] ? __sock_release+0x280/0x280 [ 58.754059][ T7177] end_report+0x4d/0x53 [ 58.758188][ T7177] __kasan_report.cold+0xd/0x4d [ 58.763019][ T7177] ? rcu_read_lock_held+0x1/0xb0 [ 58.767926][ T7177] ? x25_disconnect+0x253/0x370 [ 58.772746][ T7177] ? x25_disconnect+0x253/0x370 [ 58.777568][ T7177] kasan_report+0x33/0x50 [ 58.781875][ T7177] check_memory_region+0x141/0x190 [ 58.786956][ T7177] x25_disconnect+0x253/0x370 [ 58.791604][ T7177] x25_release+0x345/0x420 [ 58.796003][ T7177] __sock_release+0xcd/0x280 [ 58.800565][ T7177] sock_close+0x18/0x20 [ 58.804918][ T7177] __fput+0x33e/0x880 [ 58.808871][ T7177] task_work_run+0xf4/0x1b0 [ 58.813369][ T7177] exit_to_usermode_loop+0x2fa/0x360 [ 58.818625][ T7177] do_syscall_64+0x6b1/0x7d0 [ 58.823198][ T7177] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 58.829062][ T7177] RIP: 0033:0x4afb40 [ 58.832941][ T7177] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 58.852516][ T7177] RSP: 002b:000000c0001cb4f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 58.860897][ T7177] RAX: 0000000000000000 RBX: 000000c00002e500 RCX: 00000000004afb40 [ 58.868946][ T7177] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 58.876900][ T7177] RBP: 000000c0001cb538 R08: 0000000000000000 R09: 0000000000000000 [ 58.884842][ T7177] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 58.892786][ T7177] R13: 0000000000000167 R14: 0000000000000166 R15: 0000000000000200 [ 58.902042][ T7177] Kernel Offset: disabled [ 58.906353][ T7177] Rebooting in 86400 seconds..