[ OK ] Started Daily apt download activities. [ OK ] Started Daily apt upgrade and clean activities. [ OK ] Reached target Timers. [ OK ] Started Regular background program processing daemon. Starting Permit User Sessions... Starting getty on tty2-tty6 if dbus and logind are not available... [ OK ] Started System Logging Service. [ OK ] Started Permit User Sessions. [ OK ] Started OpenBSD Secure Shell server. [ OK ] Started getty on tty2-tty6 if dbus and logind are not available. [ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. [ OK ] Started Getty on tty6. [ OK ] Started Getty on tty5. [ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Getty on tty1. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.15' (ECDSA) to the list of known hosts. 2020/04/27 22:08:34 fuzzer started 2020/04/27 22:08:36 connecting to host at 10.128.0.26:40361 2020/04/27 22:08:36 checking machine... 2020/04/27 22:08:36 checking revisions... 2020/04/27 22:08:36 testing simple program... syzkaller login: [ 55.304790][ T7049] IPVS: ftp: loaded support on port[0] = 21 2020/04/27 22:08:36 building call list... [ 55.693428][ T128] tipc: TX() has been purged, node left! [ 56.925081][ T7031] can: request_module (can-proto-0) failed. executing program [ 58.747991][ T7031] can: request_module (can-proto-0) failed. [ 58.760305][ T7031] can: request_module (can-proto-0) failed. [ 59.242601][ T7031] ================================================================== [ 59.250817][ T7031] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 59.258024][ T7031] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/7031 [ 59.265923][ T7031] [ 59.268257][ T7031] CPU: 0 PID: 7031 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 59.276467][ T7031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.289203][ T7031] Call Trace: [ 59.292489][ T7031] dump_stack+0x188/0x20d [ 59.296807][ T7031] ? x25_disconnect+0x253/0x370 [ 59.301991][ T7031] ? __sock_release+0x280/0x280 [ 59.306913][ T7031] __kasan_report.cold+0x5/0x4d [ 59.311755][ T7031] ? rcu_read_lock_held+0x1/0xb0 [ 59.316679][ T7031] ? x25_disconnect+0x253/0x370 [ 59.321593][ T7031] ? x25_disconnect+0x253/0x370 [ 59.326426][ T7031] kasan_report+0x33/0x50 [ 59.330735][ T7031] check_memory_region+0x141/0x190 [ 59.335834][ T7031] x25_disconnect+0x253/0x370 [ 59.340487][ T7031] x25_release+0x345/0x420 [ 59.344884][ T7031] __sock_release+0xcd/0x280 [ 59.349535][ T7031] sock_close+0x18/0x20 [ 59.353692][ T7031] __fput+0x33e/0x880 [ 59.357658][ T7031] task_work_run+0xf4/0x1b0 [ 59.362142][ T7031] exit_to_usermode_loop+0x2fa/0x360 [ 59.367403][ T7031] do_syscall_64+0x6b1/0x7d0 [ 59.371975][ T7031] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 59.377850][ T7031] RIP: 0033:0x4afb40 [ 59.381742][ T7031] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 59.401327][ T7031] RSP: 002b:000000c0001cd4f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 59.409720][ T7031] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 59.417672][ T7031] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 59.426238][ T7031] RBP: 000000c0001cd538 R08: 0000000000000000 R09: 0000000000000000 [ 59.434192][ T7031] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 59.442174][ T7031] R13: 0000000000000162 R14: 0000000000000161 R15: 0000000000000200 [ 59.450142][ T7031] ================================================================== [ 59.458178][ T7031] Disabling lock debugging due to kernel taint [ 59.464361][ T7031] Kernel panic - not syncing: panic_on_warn set ... [ 59.470989][ T7031] CPU: 0 PID: 7031 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 59.480600][ T7031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.490648][ T7031] Call Trace: [ 59.493918][ T7031] dump_stack+0x188/0x20d [ 59.498357][ T7031] ? __sock_release+0x280/0x280 [ 59.503189][ T7031] panic+0x2e3/0x75c [ 59.507066][ T7031] ? add_taint.cold+0x16/0x16 [ 59.511719][ T7031] ? x25_disconnect+0x253/0x370 [ 59.516545][ T7031] ? trace_hardirqs_on+0x55/0x220 [ 59.521542][ T7031] ? x25_disconnect+0x253/0x370 [ 59.526367][ T7031] ? __sock_release+0x280/0x280 [ 59.531200][ T7031] end_report+0x4d/0x53 [ 59.535339][ T7031] __kasan_report.cold+0xd/0x4d [ 59.540162][ T7031] ? rcu_read_lock_held+0x1/0xb0 [ 59.545070][ T7031] ? x25_disconnect+0x253/0x370 [ 59.549946][ T7031] ? x25_disconnect+0x253/0x370 [ 59.554786][ T7031] kasan_report+0x33/0x50 [ 59.559095][ T7031] check_memory_region+0x141/0x190 [ 59.564197][ T7031] x25_disconnect+0x253/0x370 [ 59.568848][ T7031] x25_release+0x345/0x420 [ 59.573237][ T7031] __sock_release+0xcd/0x280 [ 59.577798][ T7031] sock_close+0x18/0x20 [ 59.581937][ T7031] __fput+0x33e/0x880 [ 59.585892][ T7031] task_work_run+0xf4/0x1b0 [ 59.590383][ T7031] exit_to_usermode_loop+0x2fa/0x360 [ 59.595664][ T7031] do_syscall_64+0x6b1/0x7d0 [ 59.600236][ T7031] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 59.606113][ T7031] RIP: 0033:0x4afb40 [ 59.609979][ T7031] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 59.629901][ T7031] RSP: 002b:000000c0001cd4f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 59.638282][ T7031] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 59.646239][ T7031] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 59.654181][ T7031] RBP: 000000c0001cd538 R08: 0000000000000000 R09: 0000000000000000 [ 59.662124][ T7031] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 59.670065][ T7031] R13: 0000000000000162 R14: 0000000000000161 R15: 0000000000000200 [ 59.679552][ T7031] Kernel Offset: disabled [ 59.683894][ T7031] Rebooting in 86400 seconds..