[ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Getty on tty1. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.164' (ECDSA) to the list of known hosts. 2020/05/08 11:22:19 fuzzer started 2020/05/08 11:22:19 connecting to host at 10.128.0.26:38857 2020/05/08 11:22:19 checking machine... 2020/05/08 11:22:19 checking revisions... 2020/05/08 11:22:19 testing simple program... syzkaller login: [ 54.640321][ T7062] IPVS: ftp: loaded support on port[0] = 21 2020/05/08 11:22:20 building call list... [ 55.066512][ T155] tipc: TX() has been purged, node left! [ 56.170302][ T7043] can: request_module (can-proto-0) failed. executing program [ 58.102096][ T7043] can: request_module (can-proto-0) failed. [ 58.114257][ T7043] can: request_module (can-proto-0) failed. [ 58.545557][ T7043] ================================================================== [ 58.555280][ T7043] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 58.563159][ T7043] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/7043 [ 58.576320][ T7043] [ 58.579434][ T7043] CPU: 0 PID: 7043 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 58.588008][ T7043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 58.599360][ T7043] Call Trace: [ 58.602916][ T7043] dump_stack+0x188/0x20d [ 58.607424][ T7043] ? x25_disconnect+0x253/0x370 [ 58.612786][ T7043] ? __sock_release+0x280/0x280 [ 58.617722][ T7043] __kasan_report.cold+0x5/0x4d [ 58.622727][ T7043] ? rcu_read_lock_held+0x1/0xb0 [ 58.627915][ T7043] ? x25_disconnect+0x253/0x370 [ 58.633109][ T7043] ? x25_disconnect+0x253/0x370 [ 58.637987][ T7043] kasan_report+0x33/0x50 [ 58.642297][ T7043] check_memory_region+0x141/0x190 [ 58.647393][ T7043] x25_disconnect+0x253/0x370 [ 58.652497][ T7043] x25_release+0x345/0x420 [ 58.656996][ T7043] __sock_release+0xcd/0x280 [ 58.661562][ T7043] sock_close+0x18/0x20 [ 58.665699][ T7043] __fput+0x33e/0x880 [ 58.669663][ T7043] task_work_run+0xf4/0x1b0 [ 58.674240][ T7043] exit_to_usermode_loop+0x2fa/0x360 [ 58.679551][ T7043] do_syscall_64+0x6b1/0x7d0 [ 58.684231][ T7043] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 58.690106][ T7043] RIP: 0033:0x4afb40 [ 58.693998][ T7043] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 58.713596][ T7043] RSP: 002b:000000c00016f478 EFLAGS: 00000212 ORIG_RAX: 0000000000000003 [ 58.721999][ T7043] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 58.729949][ T7043] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 58.737948][ T7043] RBP: 000000c00016f4b8 R08: 0000000000000000 R09: 0000000000000000 [ 58.745915][ T7043] R10: 0000000000000000 R11: 0000000000000212 R12: ffffffffffffffff [ 58.753957][ T7043] R13: 0000000000000160 R14: 000000000000015f R15: 0000000000000200 [ 58.761954][ T7043] ================================================================== [ 58.770006][ T7043] Disabling lock debugging due to kernel taint [ 58.776274][ T7043] Kernel panic - not syncing: panic_on_warn set ... [ 58.782896][ T7043] CPU: 0 PID: 7043 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 58.792509][ T7043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 58.802540][ T7043] Call Trace: [ 58.805934][ T7043] dump_stack+0x188/0x20d [ 58.810295][ T7043] ? __sock_release+0x280/0x280 [ 58.815120][ T7043] panic+0x2e3/0x75c [ 58.818994][ T7043] ? add_taint.cold+0x16/0x16 [ 58.823647][ T7043] ? x25_disconnect+0x253/0x370 [ 58.828472][ T7043] ? trace_hardirqs_on+0x55/0x220 [ 58.833470][ T7043] ? x25_disconnect+0x253/0x370 [ 58.838295][ T7043] ? __sock_release+0x280/0x280 [ 58.843135][ T7043] end_report+0x4d/0x53 [ 58.847263][ T7043] __kasan_report.cold+0xd/0x4d [ 58.855127][ T7043] ? rcu_read_lock_held+0x1/0xb0 [ 58.860074][ T7043] ? x25_disconnect+0x253/0x370 [ 58.864905][ T7043] ? x25_disconnect+0x253/0x370 [ 58.869732][ T7043] kasan_report+0x33/0x50 [ 58.874066][ T7043] check_memory_region+0x141/0x190 [ 58.879180][ T7043] x25_disconnect+0x253/0x370 [ 58.883834][ T7043] x25_release+0x345/0x420 [ 58.888333][ T7043] __sock_release+0xcd/0x280 [ 58.892919][ T7043] sock_close+0x18/0x20 [ 58.897069][ T7043] __fput+0x33e/0x880 [ 58.901029][ T7043] task_work_run+0xf4/0x1b0 [ 58.905508][ T7043] exit_to_usermode_loop+0x2fa/0x360 [ 58.910786][ T7043] do_syscall_64+0x6b1/0x7d0 [ 58.915389][ T7043] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 58.921263][ T7043] RIP: 0033:0x4afb40 [ 58.925136][ T7043] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 58.944719][ T7043] RSP: 002b:000000c00016f478 EFLAGS: 00000212 ORIG_RAX: 0000000000000003 [ 58.953131][ T7043] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 58.961083][ T7043] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 58.969030][ T7043] RBP: 000000c00016f4b8 R08: 0000000000000000 R09: 0000000000000000 [ 58.977063][ T7043] R10: 0000000000000000 R11: 0000000000000212 R12: ffffffffffffffff [ 58.985008][ T7043] R13: 0000000000000160 R14: 000000000000015f R15: 0000000000000200 [ 58.994558][ T7043] Kernel Offset: disabled [ 58.998888][ T7043] Rebooting in 86400 seconds..