[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.55' (ECDSA) to the list of known hosts. 2020/04/30 13:56:00 fuzzer started 2020/04/30 13:56:00 connecting to host at 10.128.0.26:46101 2020/04/30 13:56:00 checking machine... 2020/04/30 13:56:00 checking revisions... 2020/04/30 13:56:00 testing simple program... syzkaller login: [ 54.989099][ T7007] IPVS: ftp: loaded support on port[0] = 21 2020/04/30 13:56:01 building call list... [ 55.370293][ T363] tipc: TX() has been purged, node left! [ 56.618495][ T6989] can: request_module (can-proto-0) failed. executing program [ 58.693936][ T6989] can: request_module (can-proto-0) failed. [ 58.705469][ T6989] can: request_module (can-proto-0) failed. [ 59.139677][ T6989] ================================================================== [ 59.147965][ T6989] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 59.155150][ T6989] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/6989 [ 59.163186][ T6989] [ 59.165510][ T6989] CPU: 1 PID: 6989 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 59.173726][ T6989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.183761][ T6989] Call Trace: [ 59.187302][ T6989] dump_stack+0x188/0x20d [ 59.191615][ T6989] ? x25_disconnect+0x253/0x370 [ 59.196444][ T6989] ? __sock_release+0x280/0x280 [ 59.201286][ T6989] __kasan_report.cold+0x5/0x4d [ 59.206132][ T6989] ? rcu_read_lock_held+0x1/0xb0 [ 59.211045][ T6989] ? x25_disconnect+0x253/0x370 [ 59.215964][ T6989] ? x25_disconnect+0x253/0x370 [ 59.220791][ T6989] kasan_report+0x33/0x50 [ 59.225108][ T6989] check_memory_region+0x141/0x190 [ 59.230198][ T6989] x25_disconnect+0x253/0x370 [ 59.234853][ T6989] x25_release+0x345/0x420 [ 59.239265][ T6989] __sock_release+0xcd/0x280 [ 59.243942][ T6989] sock_close+0x18/0x20 [ 59.248092][ T6989] __fput+0x33e/0x880 [ 59.252092][ T6989] task_work_run+0xf4/0x1b0 [ 59.256582][ T6989] exit_to_usermode_loop+0x2fa/0x360 [ 59.261868][ T6989] do_syscall_64+0x6b1/0x7d0 [ 59.266437][ T6989] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 59.272320][ T6989] RIP: 0033:0x4afb40 [ 59.276206][ T6989] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 59.295788][ T6989] RSP: 002b:000000c0001af4f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 59.304222][ T6989] RAX: 0000000000000000 RBX: 000000c00002e500 RCX: 00000000004afb40 [ 59.312439][ T6989] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 59.320479][ T6989] RBP: 000000c0001af538 R08: 0000000000000000 R09: 0000000000000000 [ 59.328436][ T6989] R10: 0000000000000000 R11: 0000000000000216 R12: 00000000000000a5 [ 59.337537][ T6989] R13: 00000000000000a4 R14: 0000000000000200 R15: 0000000000000200 [ 59.345598][ T6989] ================================================================== [ 59.353638][ T6989] Disabling lock debugging due to kernel taint [ 59.359849][ T6989] Kernel panic - not syncing: panic_on_warn set ... [ 59.366556][ T6989] CPU: 1 PID: 6989 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 59.376168][ T6989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.386198][ T6989] Call Trace: [ 59.389571][ T6989] dump_stack+0x188/0x20d [ 59.393876][ T6989] ? __sock_release+0x280/0x280 [ 59.398715][ T6989] panic+0x2e3/0x75c [ 59.402622][ T6989] ? add_taint.cold+0x16/0x16 [ 59.407277][ T6989] ? x25_disconnect+0x253/0x370 [ 59.412101][ T6989] ? trace_hardirqs_on+0x55/0x220 [ 59.417099][ T6989] ? x25_disconnect+0x253/0x370 [ 59.422044][ T6989] ? __sock_release+0x280/0x280 [ 59.426882][ T6989] end_report+0x4d/0x53 [ 59.431027][ T6989] __kasan_report.cold+0xd/0x4d [ 59.435852][ T6989] ? rcu_read_lock_held+0x1/0xb0 [ 59.440768][ T6989] ? x25_disconnect+0x253/0x370 [ 59.445691][ T6989] ? x25_disconnect+0x253/0x370 [ 59.450531][ T6989] kasan_report+0x33/0x50 [ 59.454836][ T6989] check_memory_region+0x141/0x190 [ 59.459919][ T6989] x25_disconnect+0x253/0x370 [ 59.464574][ T6989] x25_release+0x345/0x420 [ 59.468965][ T6989] __sock_release+0xcd/0x280 [ 59.473545][ T6989] sock_close+0x18/0x20 [ 59.477681][ T6989] __fput+0x33e/0x880 [ 59.481644][ T6989] task_work_run+0xf4/0x1b0 [ 59.486128][ T6989] exit_to_usermode_loop+0x2fa/0x360 [ 59.491395][ T6989] do_syscall_64+0x6b1/0x7d0 [ 59.495978][ T6989] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 59.501846][ T6989] RIP: 0033:0x4afb40 [ 59.505726][ T6989] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 59.525654][ T6989] RSP: 002b:000000c0001af4f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 59.534065][ T6989] RAX: 0000000000000000 RBX: 000000c00002e500 RCX: 00000000004afb40 [ 59.542022][ T6989] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 59.550057][ T6989] RBP: 000000c0001af538 R08: 0000000000000000 R09: 0000000000000000 [ 59.558004][ T6989] R10: 0000000000000000 R11: 0000000000000216 R12: 00000000000000a5 [ 59.565979][ T6989] R13: 00000000000000a4 R14: 0000000000000200 R15: 0000000000000200 [ 59.575243][ T6989] Kernel Offset: disabled [ 59.579567][ T6989] Rebooting in 86400 seconds..