Warning: Permanently added '10.128.10.56' (ECDSA) to the list of known hosts. 2020/04/30 13:56:00 fuzzer started 2020/04/30 13:56:00 connecting to host at 10.128.0.26:42217 2020/04/30 13:56:00 checking machine... 2020/04/30 13:56:00 checking revisions... 2020/04/30 13:56:00 testing simple program... syzkaller login: [ 54.019435][ T7026] IPVS: ftp: loaded support on port[0] = 21 2020/04/30 13:56:00 building call list... [ 54.406909][ T21] tipc: TX() has been purged, node left! [ 55.638266][ T7012] can: request_module (can-proto-0) failed. executing program [ 57.540638][ T7012] can: request_module (can-proto-0) failed. [ 57.553259][ T7012] can: request_module (can-proto-0) failed. [ 58.006852][ T7012] ================================================================== [ 58.015053][ T7012] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 58.022225][ T7012] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/7012 [ 58.030105][ T7012] [ 58.032416][ T7012] CPU: 0 PID: 7012 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 58.040625][ T7012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 58.050652][ T7012] Call Trace: [ 58.053926][ T7012] dump_stack+0x188/0x20d [ 58.058237][ T7012] ? x25_disconnect+0x253/0x370 [ 58.063066][ T7012] ? __sock_release+0x280/0x280 [ 58.067908][ T7012] __kasan_report.cold+0x5/0x4d [ 58.072755][ T7012] ? rcu_read_lock_held+0x1/0xb0 [ 58.077755][ T7012] ? x25_disconnect+0x253/0x370 [ 58.082599][ T7012] ? x25_disconnect+0x253/0x370 [ 58.087612][ T7012] kasan_report+0x33/0x50 [ 58.091920][ T7012] check_memory_region+0x141/0x190 [ 58.097094][ T7012] x25_disconnect+0x253/0x370 [ 58.104019][ T7012] x25_release+0x345/0x420 [ 58.108415][ T7012] __sock_release+0xcd/0x280 [ 58.112982][ T7012] sock_close+0x18/0x20 [ 58.117129][ T7012] __fput+0x33e/0x880 [ 58.121090][ T7012] task_work_run+0xf4/0x1b0 [ 58.125572][ T7012] exit_to_usermode_loop+0x2fa/0x360 [ 58.130839][ T7012] do_syscall_64+0x6b1/0x7d0 [ 58.135426][ T7012] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 58.141294][ T7012] RIP: 0033:0x4afb40 [ 58.145339][ T7012] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 58.165004][ T7012] RSP: 002b:000000c0000774f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 58.173391][ T7012] RAX: 0000000000000000 RBX: 000000c00002e500 RCX: 00000000004afb40 [ 58.181340][ T7012] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 58.189288][ T7012] RBP: 000000c000077538 R08: 0000000000000000 R09: 0000000000000000 [ 58.197241][ T7012] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 58.205219][ T7012] R13: 0000000000000166 R14: 0000000000000165 R15: 0000000000000200 [ 58.214830][ T7012] ================================================================== [ 58.222863][ T7012] Disabling lock debugging due to kernel taint [ 58.229046][ T7012] Kernel panic - not syncing: panic_on_warn set ... [ 58.235630][ T7012] CPU: 0 PID: 7012 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 58.245342][ T7012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 58.255383][ T7012] Call Trace: [ 58.258678][ T7012] dump_stack+0x188/0x20d [ 58.262991][ T7012] ? __sock_release+0x280/0x280 [ 58.267820][ T7012] panic+0x2e3/0x75c [ 58.271842][ T7012] ? add_taint.cold+0x16/0x16 [ 58.276511][ T7012] ? x25_disconnect+0x253/0x370 [ 58.281338][ T7012] ? trace_hardirqs_on+0x55/0x220 [ 58.293912][ T7012] ? x25_disconnect+0x253/0x370 [ 58.298763][ T7012] ? __sock_release+0x280/0x280 [ 58.303588][ T7012] end_report+0x4d/0x53 [ 58.307718][ T7012] __kasan_report.cold+0xd/0x4d [ 58.312541][ T7012] ? rcu_read_lock_held+0x1/0xb0 [ 58.317474][ T7012] ? x25_disconnect+0x253/0x370 [ 58.323784][ T7012] ? x25_disconnect+0x253/0x370 [ 58.328622][ T7012] kasan_report+0x33/0x50 [ 58.332933][ T7012] check_memory_region+0x141/0x190 [ 58.338022][ T7012] x25_disconnect+0x253/0x370 [ 58.342692][ T7012] x25_release+0x345/0x420 [ 58.347083][ T7012] __sock_release+0xcd/0x280 [ 58.351668][ T7012] sock_close+0x18/0x20 [ 58.355885][ T7012] __fput+0x33e/0x880 [ 58.359840][ T7012] task_work_run+0xf4/0x1b0 [ 58.364319][ T7012] exit_to_usermode_loop+0x2fa/0x360 [ 58.369581][ T7012] do_syscall_64+0x6b1/0x7d0 [ 58.374171][ T7012] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 58.380051][ T7012] RIP: 0033:0x4afb40 [ 58.383919][ T7012] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 58.403506][ T7012] RSP: 002b:000000c0000774f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 58.411905][ T7012] RAX: 0000000000000000 RBX: 000000c00002e500 RCX: 00000000004afb40 [ 58.419941][ T7012] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 58.428012][ T7012] RBP: 000000c000077538 R08: 0000000000000000 R09: 0000000000000000 [ 58.435992][ T7012] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 58.443943][ T7012] R13: 0000000000000166 R14: 0000000000000165 R15: 0000000000000200 [ 58.453077][ T7012] Kernel Offset: disabled [ 58.457396][ T7012] Rebooting in 86400 seconds..