Warning: Permanently added '10.128.0.78' (ECDSA) to the list of known hosts. 2020/05/09 14:12:50 fuzzer started 2020/05/09 14:12:50 connecting to host at 10.128.0.26:46619 2020/05/09 14:12:50 checking machine... 2020/05/09 14:12:50 checking revisions... 2020/05/09 14:12:50 testing simple program... syzkaller login: [ 54.381592][ T7041] IPVS: ftp: loaded support on port[0] = 21 2020/05/09 14:12:51 building call list... [ 54.757421][ T3786] tipc: TX() has been purged, node left! [ 55.964950][ T7027] can: request_module (can-proto-0) failed. executing program [ 57.932527][ T7027] can: request_module (can-proto-0) failed. [ 57.943974][ T7027] can: request_module (can-proto-0) failed. [ 58.396245][ T7027] ================================================================== [ 58.404458][ T7027] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 58.411631][ T7027] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/7027 [ 58.419930][ T7027] [ 58.422297][ T7027] CPU: 0 PID: 7027 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 58.430507][ T7027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 58.440538][ T7027] Call Trace: [ 58.443811][ T7027] dump_stack+0x188/0x20d [ 58.448126][ T7027] ? x25_disconnect+0x253/0x370 [ 58.452954][ T7027] ? __sock_release+0x280/0x280 [ 58.458040][ T7027] __kasan_report.cold+0x5/0x4d [ 58.462887][ T7027] ? rcu_read_lock_held+0x1/0xb0 [ 58.467820][ T7027] ? x25_disconnect+0x253/0x370 [ 58.472646][ T7027] ? x25_disconnect+0x253/0x370 [ 58.477471][ T7027] kasan_report+0x33/0x50 [ 58.481779][ T7027] check_memory_region+0x141/0x190 [ 58.486885][ T7027] x25_disconnect+0x253/0x370 [ 58.491548][ T7027] x25_release+0x345/0x420 [ 58.495952][ T7027] __sock_release+0xcd/0x280 [ 58.500524][ T7027] sock_close+0x18/0x20 [ 58.504664][ T7027] __fput+0x33e/0x880 [ 58.508631][ T7027] task_work_run+0xf4/0x1b0 [ 58.513157][ T7027] exit_to_usermode_loop+0x2fa/0x360 [ 58.518421][ T7027] do_syscall_64+0x6b1/0x7d0 [ 58.522992][ T7027] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 58.528906][ T7027] RIP: 0033:0x4afb40 [ 58.532779][ T7027] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 58.552360][ T7027] RSP: 002b:000000c0001c5478 EFLAGS: 00000212 ORIG_RAX: 0000000000000003 [ 58.560745][ T7027] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 58.568691][ T7027] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 58.576640][ T7027] RBP: 000000c0001c54b8 R08: 0000000000000000 R09: 0000000000000000 [ 58.584586][ T7027] R10: 0000000000000000 R11: 0000000000000212 R12: ffffffffffffffff [ 58.592546][ T7027] R13: 000000000000015f R14: 000000000000015e R15: 0000000000000200 [ 58.600501][ T7027] ================================================================== [ 58.608533][ T7027] Disabling lock debugging due to kernel taint [ 58.614732][ T7027] Kernel panic - not syncing: panic_on_warn set ... [ 58.621574][ T7027] CPU: 0 PID: 7027 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 58.631185][ T7027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 58.641236][ T7027] Call Trace: [ 58.644517][ T7027] dump_stack+0x188/0x20d [ 58.648822][ T7027] ? __sock_release+0x280/0x280 [ 58.653658][ T7027] panic+0x2e3/0x75c [ 58.657527][ T7027] ? add_taint.cold+0x16/0x16 [ 58.662176][ T7027] ? x25_disconnect+0x253/0x370 [ 58.667001][ T7027] ? trace_hardirqs_on+0x55/0x220 [ 58.672011][ T7027] ? x25_disconnect+0x253/0x370 [ 58.676835][ T7027] ? __sock_release+0x280/0x280 [ 58.681656][ T7027] end_report+0x4d/0x53 [ 58.685803][ T7027] __kasan_report.cold+0xd/0x4d [ 58.690630][ T7027] ? rcu_read_lock_held+0x1/0xb0 [ 58.695555][ T7027] ? x25_disconnect+0x253/0x370 [ 58.700377][ T7027] ? x25_disconnect+0x253/0x370 [ 58.705197][ T7027] kasan_report+0x33/0x50 [ 58.709500][ T7027] check_memory_region+0x141/0x190 [ 58.714582][ T7027] x25_disconnect+0x253/0x370 [ 58.719236][ T7027] x25_release+0x345/0x420 [ 58.723625][ T7027] __sock_release+0xcd/0x280 [ 58.728186][ T7027] sock_close+0x18/0x20 [ 58.732332][ T7027] __fput+0x33e/0x880 [ 58.736302][ T7027] task_work_run+0xf4/0x1b0 [ 58.740779][ T7027] exit_to_usermode_loop+0x2fa/0x360 [ 58.746037][ T7027] do_syscall_64+0x6b1/0x7d0 [ 58.750604][ T7027] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 58.756482][ T7027] RIP: 0033:0x4afb40 [ 58.760363][ T7027] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 58.779938][ T7027] RSP: 002b:000000c0001c5478 EFLAGS: 00000212 ORIG_RAX: 0000000000000003 [ 58.788319][ T7027] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 58.796281][ T7027] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 58.804242][ T7027] RBP: 000000c0001c54b8 R08: 0000000000000000 R09: 0000000000000000 [ 58.812186][ T7027] R10: 0000000000000000 R11: 0000000000000212 R12: ffffffffffffffff [ 58.820146][ T7027] R13: 000000000000015f R14: 000000000000015e R15: 0000000000000200 [ 58.829428][ T7027] Kernel Offset: disabled [ 58.833762][ T7027] Rebooting in 86400 seconds..