Warning: Permanently added '10.128.0.246' (ECDSA) to the list of known hosts. 2020/05/06 12:31:47 fuzzer started 2020/05/06 12:31:47 connecting to host at 10.128.0.26:35377 2020/05/06 12:31:47 checking machine... 2020/05/06 12:31:47 checking revisions... 2020/05/06 12:31:47 testing simple program... syzkaller login: [ 55.939544][ T7018] IPVS: ftp: loaded support on port[0] = 21 2020/05/06 12:31:47 building call list... [ 56.333084][ T7] tipc: TX() has been purged, node left! [ 57.554390][ T7002] can: request_module (can-proto-0) failed. executing program [ 59.526672][ T7002] can: request_module (can-proto-0) failed. [ 59.538551][ T7002] can: request_module (can-proto-0) failed. [ 60.002395][ T7002] ================================================================== [ 60.011704][ T7002] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 60.022195][ T7002] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/7002 [ 60.031096][ T7002] [ 60.033507][ T7002] CPU: 1 PID: 7002 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 60.042464][ T7002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.052723][ T7002] Call Trace: [ 60.056280][ T7002] dump_stack+0x188/0x20d [ 60.060804][ T7002] ? x25_disconnect+0x253/0x370 [ 60.065723][ T7002] ? __sock_release+0x280/0x280 [ 60.070865][ T7002] __kasan_report.cold+0x5/0x4d [ 60.075745][ T7002] ? rcu_read_lock_held+0x1/0xb0 [ 60.080691][ T7002] ? x25_disconnect+0x253/0x370 [ 60.085523][ T7002] ? x25_disconnect+0x253/0x370 [ 60.090364][ T7002] kasan_report+0x33/0x50 [ 60.094689][ T7002] check_memory_region+0x141/0x190 [ 60.099778][ T7002] x25_disconnect+0x253/0x370 [ 60.104469][ T7002] x25_release+0x345/0x420 [ 60.109229][ T7002] __sock_release+0xcd/0x280 [ 60.113819][ T7002] sock_close+0x18/0x20 [ 60.118051][ T7002] __fput+0x33e/0x880 [ 60.122292][ T7002] task_work_run+0xf4/0x1b0 [ 60.126873][ T7002] exit_to_usermode_loop+0x2fa/0x360 [ 60.132484][ T7002] do_syscall_64+0x6b1/0x7d0 [ 60.137437][ T7002] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 60.143341][ T7002] RIP: 0033:0x4afb40 [ 60.147646][ T7002] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 60.167247][ T7002] RSP: 002b:000000c00016b478 EFLAGS: 00000212 ORIG_RAX: 0000000000000003 [ 60.175654][ T7002] RAX: 0000000000000000 RBX: 000000c00002e500 RCX: 00000000004afb40 [ 60.184134][ T7002] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 60.192098][ T7002] RBP: 000000c00016b4b8 R08: 0000000000000000 R09: 0000000000000000 [ 60.200061][ T7002] R10: 0000000000000000 R11: 0000000000000212 R12: ffffffffffffffff [ 60.208030][ T7002] R13: 0000000000000160 R14: 000000000000015f R15: 0000000000000200 [ 60.216016][ T7002] ================================================================== [ 60.224346][ T7002] Disabling lock debugging due to kernel taint [ 60.230603][ T7002] Kernel panic - not syncing: panic_on_warn set ... [ 60.237221][ T7002] CPU: 1 PID: 7002 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 60.246841][ T7002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.257531][ T7002] Call Trace: [ 60.260815][ T7002] dump_stack+0x188/0x20d [ 60.265427][ T7002] ? __sock_release+0x280/0x280 [ 60.270450][ T7002] panic+0x2e3/0x75c [ 60.274342][ T7002] ? add_taint.cold+0x16/0x16 [ 60.279151][ T7002] ? x25_disconnect+0x253/0x370 [ 60.284018][ T7002] ? trace_hardirqs_on+0x55/0x220 [ 60.289033][ T7002] ? x25_disconnect+0x253/0x370 [ 60.293881][ T7002] ? __sock_release+0x280/0x280 [ 60.298724][ T7002] end_report+0x4d/0x53 [ 60.304850][ T7002] __kasan_report.cold+0xd/0x4d [ 60.309705][ T7002] ? rcu_read_lock_held+0x1/0xb0 [ 60.314636][ T7002] ? x25_disconnect+0x253/0x370 [ 60.319608][ T7002] ? x25_disconnect+0x253/0x370 [ 60.324521][ T7002] kasan_report+0x33/0x50 [ 60.328842][ T7002] check_memory_region+0x141/0x190 [ 60.334067][ T7002] x25_disconnect+0x253/0x370 [ 60.338745][ T7002] x25_release+0x345/0x420 [ 60.343161][ T7002] __sock_release+0xcd/0x280 [ 60.347728][ T7002] sock_close+0x18/0x20 [ 60.351879][ T7002] __fput+0x33e/0x880 [ 60.355970][ T7002] task_work_run+0xf4/0x1b0 [ 60.360677][ T7002] exit_to_usermode_loop+0x2fa/0x360 [ 60.366484][ T7002] do_syscall_64+0x6b1/0x7d0 [ 60.371082][ T7002] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 60.377239][ T7002] RIP: 0033:0x4afb40 [ 60.381133][ T7002] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 60.401003][ T7002] RSP: 002b:000000c00016b478 EFLAGS: 00000212 ORIG_RAX: 0000000000000003 [ 60.409424][ T7002] RAX: 0000000000000000 RBX: 000000c00002e500 RCX: 00000000004afb40 [ 60.418629][ T7002] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 60.426767][ T7002] RBP: 000000c00016b4b8 R08: 0000000000000000 R09: 0000000000000000 [ 60.435894][ T7002] R10: 0000000000000000 R11: 0000000000000212 R12: ffffffffffffffff [ 60.444179][ T7002] R13: 0000000000000160 R14: 000000000000015f R15: 0000000000000200 [ 60.454762][ T7002] Kernel Offset: disabled [ 60.459094][ T7002] Rebooting in 86400 seconds..