[ OK ] Started Getty on tty3. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.35' (ECDSA) to the list of known hosts. 2020/04/28 12:06:37 fuzzer started 2020/04/28 12:06:39 connecting to host at 10.128.0.26:39887 2020/04/28 12:06:39 checking machine... 2020/04/28 12:06:39 checking revisions... 2020/04/28 12:06:39 testing simple program... syzkaller login: [ 57.071506][ T7039] IPVS: ftp: loaded support on port[0] = 21 2020/04/28 12:06:39 building call list... [ 57.448688][ T7] tipc: TX() has been purged, node left! [ 58.674261][ T7021] can: request_module (can-proto-0) failed. executing program [ 60.541547][ T7021] can: request_module (can-proto-0) failed. [ 60.553636][ T7021] can: request_module (can-proto-0) failed. [ 61.027992][ T7021] ================================================================== [ 61.036164][ T7021] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 61.043361][ T7021] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/7021 [ 61.051239][ T7021] [ 61.053566][ T7021] CPU: 1 PID: 7021 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 61.061776][ T7021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 61.071807][ T7021] Call Trace: [ 61.075090][ T7021] dump_stack+0x188/0x20d [ 61.079399][ T7021] ? x25_disconnect+0x253/0x370 [ 61.084313][ T7021] ? __sock_release+0x280/0x280 [ 61.089138][ T7021] __kasan_report.cold+0x5/0x4d [ 61.093968][ T7021] ? rcu_read_lock_held+0x1/0xb0 [ 61.098891][ T7021] ? x25_disconnect+0x253/0x370 [ 61.103724][ T7021] ? x25_disconnect+0x253/0x370 [ 61.108557][ T7021] kasan_report+0x33/0x50 [ 61.112875][ T7021] check_memory_region+0x141/0x190 [ 61.117969][ T7021] x25_disconnect+0x253/0x370 [ 61.122631][ T7021] x25_release+0x345/0x420 [ 61.127118][ T7021] __sock_release+0xcd/0x280 [ 61.131709][ T7021] sock_close+0x18/0x20 [ 61.135885][ T7021] __fput+0x33e/0x880 [ 61.139882][ T7021] task_work_run+0xf4/0x1b0 [ 61.144402][ T7021] exit_to_usermode_loop+0x2fa/0x360 [ 61.149788][ T7021] do_syscall_64+0x6b1/0x7d0 [ 61.154481][ T7021] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 61.160353][ T7021] RIP: 0033:0x4afb40 [ 61.164238][ T7021] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 61.183825][ T7021] RSP: 002b:000000c0000774f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 61.192238][ T7021] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 61.200216][ T7021] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 61.208178][ T7021] RBP: 000000c000077538 R08: 0000000000000000 R09: 0000000000000000 [ 61.216127][ T7021] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 61.224084][ T7021] R13: 0000000000000162 R14: 0000000000000161 R15: 0000000000000200 [ 61.232042][ T7021] ================================================================== [ 61.240077][ T7021] Disabling lock debugging due to kernel taint [ 61.246330][ T7021] Kernel panic - not syncing: panic_on_warn set ... [ 61.252935][ T7021] CPU: 1 PID: 7021 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 61.262547][ T7021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 61.272583][ T7021] Call Trace: [ 61.275874][ T7021] dump_stack+0x188/0x20d [ 61.280204][ T7021] ? __sock_release+0x280/0x280 [ 61.285028][ T7021] panic+0x2e3/0x75c [ 61.288899][ T7021] ? add_taint.cold+0x16/0x16 [ 61.293550][ T7021] ? x25_disconnect+0x253/0x370 [ 61.298376][ T7021] ? trace_hardirqs_on+0x55/0x220 [ 61.303390][ T7021] ? x25_disconnect+0x253/0x370 [ 61.308236][ T7021] ? __sock_release+0x280/0x280 [ 61.313064][ T7021] end_report+0x4d/0x53 [ 61.317212][ T7021] __kasan_report.cold+0xd/0x4d [ 61.322061][ T7021] ? rcu_read_lock_held+0x1/0xb0 [ 61.326970][ T7021] ? x25_disconnect+0x253/0x370 [ 61.331793][ T7021] ? x25_disconnect+0x253/0x370 [ 61.336626][ T7021] kasan_report+0x33/0x50 [ 61.340949][ T7021] check_memory_region+0x141/0x190 [ 61.346398][ T7021] x25_disconnect+0x253/0x370 [ 61.351061][ T7021] x25_release+0x345/0x420 [ 61.355456][ T7021] __sock_release+0xcd/0x280 [ 61.360051][ T7021] sock_close+0x18/0x20 [ 61.364183][ T7021] __fput+0x33e/0x880 [ 61.368162][ T7021] task_work_run+0xf4/0x1b0 [ 61.372651][ T7021] exit_to_usermode_loop+0x2fa/0x360 [ 61.377919][ T7021] do_syscall_64+0x6b1/0x7d0 [ 61.382613][ T7021] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 61.388493][ T7021] RIP: 0033:0x4afb40 [ 61.392363][ T7021] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 61.412029][ T7021] RSP: 002b:000000c0000774f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 61.420419][ T7021] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 61.428379][ T7021] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 61.436335][ T7021] RBP: 000000c000077538 R08: 0000000000000000 R09: 0000000000000000 [ 61.444305][ T7021] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 61.452268][ T7021] R13: 0000000000000162 R14: 0000000000000161 R15: 0000000000000200 [ 61.461349][ T7021] Kernel Offset: disabled [ 61.465679][ T7021] Rebooting in 86400 seconds..