[ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.187' (ECDSA) to the list of known hosts. 2020/04/27 21:24:48 fuzzer started 2020/04/27 21:24:49 connecting to host at 10.128.0.26:40069 2020/04/27 21:24:49 checking machine... 2020/04/27 21:24:49 checking revisions... 2020/04/27 21:24:49 testing simple program... syzkaller login: [ 56.489869][ T7062] IPVS: ftp: loaded support on port[0] = 21 2020/04/27 21:24:50 building call list... [ 56.925232][ T3785] tipc: TX() has been purged, node left! [ 58.103170][ T7048] can: request_module (can-proto-0) failed. executing program [ 60.078668][ T7048] can: request_module (can-proto-0) failed. [ 60.089998][ T7048] can: request_module (can-proto-0) failed. [ 60.564712][ T7048] ================================================================== [ 60.572924][ T7048] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 60.580368][ T7048] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/7048 [ 60.588341][ T7048] [ 60.590656][ T7048] CPU: 0 PID: 7048 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 60.598863][ T7048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.608893][ T7048] Call Trace: [ 60.612164][ T7048] dump_stack+0x188/0x20d [ 60.616484][ T7048] ? x25_disconnect+0x253/0x370 [ 60.621312][ T7048] ? __sock_release+0x280/0x280 [ 60.626137][ T7048] __kasan_report.cold+0x5/0x4d [ 60.630975][ T7048] ? rcu_read_lock_held+0x1/0xb0 [ 60.635888][ T7048] ? x25_disconnect+0x253/0x370 [ 60.640713][ T7048] ? x25_disconnect+0x253/0x370 [ 60.645536][ T7048] kasan_report+0x33/0x50 [ 60.649855][ T7048] check_memory_region+0x141/0x190 [ 60.655072][ T7048] x25_disconnect+0x253/0x370 [ 60.659745][ T7048] x25_release+0x345/0x420 [ 60.664148][ T7048] __sock_release+0xcd/0x280 [ 60.668733][ T7048] sock_close+0x18/0x20 [ 60.672869][ T7048] __fput+0x33e/0x880 [ 60.676888][ T7048] task_work_run+0xf4/0x1b0 [ 60.681376][ T7048] exit_to_usermode_loop+0x2fa/0x360 [ 60.686665][ T7048] do_syscall_64+0x6b1/0x7d0 [ 60.691242][ T7048] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 60.697207][ T7048] RIP: 0033:0x4afb40 [ 60.701090][ T7048] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 60.720697][ T7048] RSP: 002b:000000c0000794f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 60.729091][ T7048] RAX: 0000000000000000 RBX: 000000c00002e500 RCX: 00000000004afb40 [ 60.737143][ T7048] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 60.745091][ T7048] RBP: 000000c000079538 R08: 0000000000000000 R09: 0000000000000000 [ 60.753037][ T7048] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 60.760996][ T7048] R13: 0000000000000162 R14: 0000000000000161 R15: 0000000000000200 [ 60.768968][ T7048] ================================================================== [ 60.777007][ T7048] Disabling lock debugging due to kernel taint [ 60.783213][ T7048] Kernel panic - not syncing: panic_on_warn set ... [ 60.789800][ T7048] CPU: 0 PID: 7048 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 60.799408][ T7048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.809434][ T7048] Call Trace: [ 60.812702][ T7048] dump_stack+0x188/0x20d [ 60.817015][ T7048] ? __sock_release+0x280/0x280 [ 60.821863][ T7048] panic+0x2e3/0x75c [ 60.825737][ T7048] ? add_taint.cold+0x16/0x16 [ 60.830611][ T7048] ? x25_disconnect+0x253/0x370 [ 60.835458][ T7048] ? trace_hardirqs_on+0x55/0x220 [ 60.840460][ T7048] ? x25_disconnect+0x253/0x370 [ 60.845295][ T7048] ? __sock_release+0x280/0x280 [ 60.850136][ T7048] end_report+0x4d/0x53 [ 60.854265][ T7048] __kasan_report.cold+0xd/0x4d [ 60.859093][ T7048] ? rcu_read_lock_held+0x1/0xb0 [ 60.864002][ T7048] ? x25_disconnect+0x253/0x370 [ 60.868827][ T7048] ? x25_disconnect+0x253/0x370 [ 60.873645][ T7048] kasan_report+0x33/0x50 [ 60.877965][ T7048] check_memory_region+0x141/0x190 [ 60.883068][ T7048] x25_disconnect+0x253/0x370 [ 60.887720][ T7048] x25_release+0x345/0x420 [ 60.892120][ T7048] __sock_release+0xcd/0x280 [ 60.896704][ T7048] sock_close+0x18/0x20 [ 60.900839][ T7048] __fput+0x33e/0x880 [ 60.904881][ T7048] task_work_run+0xf4/0x1b0 [ 60.909359][ T7048] exit_to_usermode_loop+0x2fa/0x360 [ 60.914618][ T7048] do_syscall_64+0x6b1/0x7d0 [ 60.919183][ T7048] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 60.925045][ T7048] RIP: 0033:0x4afb40 [ 60.928911][ T7048] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 60.948495][ T7048] RSP: 002b:000000c0000794f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 60.956889][ T7048] RAX: 0000000000000000 RBX: 000000c00002e500 RCX: 00000000004afb40 [ 60.964883][ T7048] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 60.972831][ T7048] RBP: 000000c000079538 R08: 0000000000000000 R09: 0000000000000000 [ 60.986089][ T7048] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 60.994035][ T7048] R13: 0000000000000162 R14: 0000000000000161 R15: 0000000000000200 [ 61.003368][ T7048] Kernel Offset: disabled [ 61.007686][ T7048] Rebooting in 86400 seconds..