[ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. Starting Load/Save RF Kill Switch Status... [ OK ] Started Getty on tty1. [ OK ] Started Serial Getty on ttyS0. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Load/Save RF Kill Switch Status. [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.34' (ECDSA) to the list of known hosts. 2020/04/28 12:12:56 fuzzer started 2020/04/28 12:12:58 connecting to host at 10.128.0.26:34595 2020/04/28 12:12:58 checking machine... 2020/04/28 12:12:58 checking revisions... 2020/04/28 12:12:58 testing simple program... syzkaller login: [ 58.945718][ T7099] IPVS: ftp: loaded support on port[0] = 21 2020/04/28 12:12:59 building call list... [ 59.343131][ T364] tipc: TX() has been purged, node left! [ 60.469816][ T7081] can: request_module (can-proto-0) failed. executing program [ 62.507386][ T7081] can: request_module (can-proto-0) failed. [ 62.518926][ T7081] can: request_module (can-proto-0) failed. [ 62.982544][ T7081] ================================================================== [ 62.990862][ T7081] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 62.998070][ T7081] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/7081 [ 63.006078][ T7081] [ 63.008397][ T7081] CPU: 1 PID: 7081 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 63.016615][ T7081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.026658][ T7081] Call Trace: [ 63.029960][ T7081] dump_stack+0x188/0x20d [ 63.034286][ T7081] ? x25_disconnect+0x253/0x370 [ 63.039301][ T7081] ? __sock_release+0x280/0x280 [ 63.044215][ T7081] __kasan_report.cold+0x5/0x4d [ 63.049078][ T7081] ? rcu_read_lock_held+0x1/0xb0 [ 63.054010][ T7081] ? x25_disconnect+0x253/0x370 [ 63.058848][ T7081] ? x25_disconnect+0x253/0x370 [ 63.063697][ T7081] kasan_report+0x33/0x50 [ 63.068032][ T7081] check_memory_region+0x141/0x190 [ 63.073140][ T7081] x25_disconnect+0x253/0x370 [ 63.077800][ T7081] x25_release+0x345/0x420 [ 63.082222][ T7081] __sock_release+0xcd/0x280 [ 63.086813][ T7081] sock_close+0x18/0x20 [ 63.091031][ T7081] __fput+0x33e/0x880 [ 63.095018][ T7081] task_work_run+0xf4/0x1b0 [ 63.099524][ T7081] exit_to_usermode_loop+0x2fa/0x360 [ 63.104854][ T7081] do_syscall_64+0x6b1/0x7d0 [ 63.109429][ T7081] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 63.115311][ T7081] RIP: 0033:0x4afb40 [ 63.119194][ T7081] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 63.138785][ T7081] RSP: 002b:000000c0000774f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 63.147185][ T7081] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 63.155142][ T7081] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 63.163089][ T7081] RBP: 000000c000077538 R08: 0000000000000000 R09: 0000000000000000 [ 63.171069][ T7081] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 63.179028][ T7081] R13: 0000000000000162 R14: 0000000000000161 R15: 0000000000000200 [ 63.186998][ T7081] ================================================================== [ 63.195032][ T7081] Disabling lock debugging due to kernel taint [ 63.201216][ T7081] Kernel panic - not syncing: panic_on_warn set ... [ 63.207799][ T7081] CPU: 1 PID: 7081 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 63.217420][ T7081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.227470][ T7081] Call Trace: [ 63.230746][ T7081] dump_stack+0x188/0x20d [ 63.235051][ T7081] ? __sock_release+0x280/0x280 [ 63.239873][ T7081] panic+0x2e3/0x75c [ 63.243754][ T7081] ? add_taint.cold+0x16/0x16 [ 63.248403][ T7081] ? x25_disconnect+0x253/0x370 [ 63.253225][ T7081] ? trace_hardirqs_on+0x55/0x220 [ 63.258221][ T7081] ? x25_disconnect+0x253/0x370 [ 63.263077][ T7081] ? __sock_release+0x280/0x280 [ 63.267905][ T7081] end_report+0x4d/0x53 [ 63.272033][ T7081] __kasan_report.cold+0xd/0x4d [ 63.276868][ T7081] ? rcu_read_lock_held+0x1/0xb0 [ 63.281786][ T7081] ? x25_disconnect+0x253/0x370 [ 63.286607][ T7081] ? x25_disconnect+0x253/0x370 [ 63.291438][ T7081] kasan_report+0x33/0x50 [ 63.295755][ T7081] check_memory_region+0x141/0x190 [ 63.300934][ T7081] x25_disconnect+0x253/0x370 [ 63.305583][ T7081] x25_release+0x345/0x420 [ 63.309982][ T7081] __sock_release+0xcd/0x280 [ 63.314554][ T7081] sock_close+0x18/0x20 [ 63.318682][ T7081] __fput+0x33e/0x880 [ 63.322637][ T7081] task_work_run+0xf4/0x1b0 [ 63.327127][ T7081] exit_to_usermode_loop+0x2fa/0x360 [ 63.332387][ T7081] do_syscall_64+0x6b1/0x7d0 [ 63.337043][ T7081] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 63.342937][ T7081] RIP: 0033:0x4afb40 [ 63.346829][ T7081] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 63.366407][ T7081] RSP: 002b:000000c0000774f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 63.374893][ T7081] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 63.382835][ T7081] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 63.390808][ T7081] RBP: 000000c000077538 R08: 0000000000000000 R09: 0000000000000000 [ 63.398848][ T7081] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 63.406803][ T7081] R13: 0000000000000162 R14: 0000000000000161 R15: 0000000000000200 [ 63.416145][ T7081] Kernel Offset: disabled [ 63.420485][ T7081] Rebooting in 86400 seconds..