Warning: Permanently added '10.128.0.209' (ECDSA) to the list of known hosts. 2020/05/07 23:06:33 fuzzer started 2020/05/07 23:06:33 connecting to host at 10.128.0.26:41863 2020/05/07 23:06:33 checking machine... 2020/05/07 23:06:33 checking revisions... 2020/05/07 23:06:33 testing simple program... syzkaller login: [ 54.768488][ T7031] IPVS: ftp: loaded support on port[0] = 21 2020/05/07 23:06:34 building call list... [ 55.152523][ T234] tipc: TX() has been purged, node left! [ 56.469161][ T7017] can: request_module (can-proto-0) failed. executing program [ 58.387491][ T7017] can: request_module (can-proto-0) failed. [ 58.398881][ T7017] can: request_module (can-proto-0) failed. [ 58.853033][ T7017] ================================================================== [ 58.861239][ T7017] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 58.868432][ T7017] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/7017 [ 58.876310][ T7017] [ 58.878638][ T7017] CPU: 0 PID: 7017 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 58.886852][ T7017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 58.896902][ T7017] Call Trace: [ 58.900177][ T7017] dump_stack+0x188/0x20d [ 58.904488][ T7017] ? x25_disconnect+0x253/0x370 [ 58.909315][ T7017] ? __sock_release+0x280/0x280 [ 58.914152][ T7017] __kasan_report.cold+0x5/0x4d [ 58.918980][ T7017] ? rcu_read_lock_held+0x1/0xb0 [ 58.923903][ T7017] ? x25_disconnect+0x253/0x370 [ 58.928729][ T7017] ? x25_disconnect+0x253/0x370 [ 58.933566][ T7017] kasan_report+0x33/0x50 [ 58.937875][ T7017] check_memory_region+0x141/0x190 [ 58.942963][ T7017] x25_disconnect+0x253/0x370 [ 58.947625][ T7017] x25_release+0x345/0x420 [ 58.952019][ T7017] __sock_release+0xcd/0x280 [ 58.956585][ T7017] sock_close+0x18/0x20 [ 58.960716][ T7017] __fput+0x33e/0x880 [ 58.964692][ T7017] task_work_run+0xf4/0x1b0 [ 58.969177][ T7017] exit_to_usermode_loop+0x2fa/0x360 [ 58.974439][ T7017] do_syscall_64+0x6b1/0x7d0 [ 58.979018][ T7017] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 58.984882][ T7017] RIP: 0033:0x4afb40 [ 58.988764][ T7017] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 59.008340][ T7017] RSP: 002b:000000c000075478 EFLAGS: 00000212 ORIG_RAX: 0000000000000003 [ 59.016758][ T7017] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 59.024724][ T7017] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 59.032819][ T7017] RBP: 000000c0000754b8 R08: 0000000000000000 R09: 0000000000000000 [ 59.040774][ T7017] R10: 0000000000000000 R11: 0000000000000212 R12: ffffffffffffffff [ 59.048727][ T7017] R13: 0000000000000160 R14: 000000000000015f R15: 0000000000000200 [ 59.056687][ T7017] ================================================================== [ 59.064736][ T7017] Disabling lock debugging due to kernel taint [ 59.070934][ T7017] Kernel panic - not syncing: panic_on_warn set ... [ 59.077519][ T7017] CPU: 0 PID: 7017 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 59.087130][ T7017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.097160][ T7017] Call Trace: [ 59.100426][ T7017] dump_stack+0x188/0x20d [ 59.104729][ T7017] ? __sock_release+0x280/0x280 [ 59.109562][ T7017] panic+0x2e3/0x75c [ 59.113429][ T7017] ? add_taint.cold+0x16/0x16 [ 59.118080][ T7017] ? x25_disconnect+0x253/0x370 [ 59.122984][ T7017] ? trace_hardirqs_on+0x55/0x220 [ 59.127999][ T7017] ? x25_disconnect+0x253/0x370 [ 59.134249][ T7017] ? __sock_release+0x280/0x280 [ 59.139079][ T7017] end_report+0x4d/0x53 [ 59.143213][ T7017] __kasan_report.cold+0xd/0x4d [ 59.148058][ T7017] ? rcu_read_lock_held+0x1/0xb0 [ 59.152968][ T7017] ? x25_disconnect+0x253/0x370 [ 59.157790][ T7017] ? x25_disconnect+0x253/0x370 [ 59.162612][ T7017] kasan_report+0x33/0x50 [ 59.166923][ T7017] check_memory_region+0x141/0x190 [ 59.172291][ T7017] x25_disconnect+0x253/0x370 [ 59.176945][ T7017] x25_release+0x345/0x420 [ 59.181398][ T7017] __sock_release+0xcd/0x280 [ 59.185999][ T7017] sock_close+0x18/0x20 [ 59.191703][ T7017] __fput+0x33e/0x880 [ 59.195664][ T7017] task_work_run+0xf4/0x1b0 [ 59.200186][ T7017] exit_to_usermode_loop+0x2fa/0x360 [ 59.205470][ T7017] do_syscall_64+0x6b1/0x7d0 [ 59.210038][ T7017] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 59.215924][ T7017] RIP: 0033:0x4afb40 [ 59.219817][ T7017] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 59.239401][ T7017] RSP: 002b:000000c000075478 EFLAGS: 00000212 ORIG_RAX: 0000000000000003 [ 59.247786][ T7017] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 59.255733][ T7017] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 59.263687][ T7017] RBP: 000000c0000754b8 R08: 0000000000000000 R09: 0000000000000000 [ 59.272423][ T7017] R10: 0000000000000000 R11: 0000000000000212 R12: ffffffffffffffff [ 59.280366][ T7017] R13: 0000000000000160 R14: 000000000000015f R15: 0000000000000200 [ 59.289521][ T7017] Kernel Offset: disabled [ 59.293854][ T7017] Rebooting in 86400 seconds..