Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.162' (ECDSA) to the list of known hosts. 2020/04/30 01:48:55 fuzzer started 2020/04/30 01:48:57 connecting to host at 10.128.0.26:37093 2020/04/30 01:48:57 checking machine... 2020/04/30 01:48:57 checking revisions... 2020/04/30 01:48:57 testing simple program... syzkaller login: [ 55.390049][ T7049] cc1 (7049) used greatest stack depth: 23088 bytes left [ 55.668990][ T7060] IPVS: ftp: loaded support on port[0] = 21 2020/04/30 01:48:57 building call list... [ 56.081697][ T123] tipc: TX() has been purged, node left! [ 57.242345][ T7042] can: request_module (can-proto-0) failed. executing program [ 59.275568][ T7042] can: request_module (can-proto-0) failed. [ 59.286777][ T7042] can: request_module (can-proto-0) failed. [ 59.761583][ T7042] ================================================================== [ 59.769915][ T7042] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 59.777088][ T7042] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/7042 [ 59.784949][ T7042] [ 59.787256][ T7042] CPU: 1 PID: 7042 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 59.795465][ T7042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.805494][ T7042] Call Trace: [ 59.808769][ T7042] dump_stack+0x188/0x20d [ 59.813089][ T7042] ? x25_disconnect+0x253/0x370 [ 59.818015][ T7042] ? __sock_release+0x280/0x280 [ 59.822839][ T7042] __kasan_report.cold+0x5/0x4d [ 59.827671][ T7042] ? rcu_read_lock_held+0x1/0xb0 [ 59.832591][ T7042] ? x25_disconnect+0x253/0x370 [ 59.837414][ T7042] ? x25_disconnect+0x253/0x370 [ 59.842252][ T7042] kasan_report+0x33/0x50 [ 59.846558][ T7042] check_memory_region+0x141/0x190 [ 59.851652][ T7042] x25_disconnect+0x253/0x370 [ 59.856302][ T7042] x25_release+0x345/0x420 [ 59.860695][ T7042] __sock_release+0xcd/0x280 [ 59.865264][ T7042] sock_close+0x18/0x20 [ 59.869394][ T7042] __fput+0x33e/0x880 [ 59.873352][ T7042] task_work_run+0xf4/0x1b0 [ 59.877839][ T7042] exit_to_usermode_loop+0x2fa/0x360 [ 59.883098][ T7042] do_syscall_64+0x6b1/0x7d0 [ 59.887665][ T7042] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 59.893541][ T7042] RIP: 0033:0x4afb40 [ 59.897422][ T7042] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 59.917001][ T7042] RSP: 002b:000000c0000774f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 59.925385][ T7042] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 59.933345][ T7042] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 59.941303][ T7042] RBP: 000000c000077538 R08: 0000000000000000 R09: 0000000000000000 [ 59.949523][ T7042] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 59.957594][ T7042] R13: 0000000000000166 R14: 0000000000000165 R15: 0000000000000200 [ 59.965557][ T7042] ================================================================== [ 59.973610][ T7042] Disabling lock debugging due to kernel taint [ 59.980248][ T7042] Kernel panic - not syncing: panic_on_warn set ... [ 59.986831][ T7042] CPU: 1 PID: 7042 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 59.996463][ T7042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.006542][ T7042] Call Trace: [ 60.009815][ T7042] dump_stack+0x188/0x20d [ 60.014253][ T7042] ? __sock_release+0x280/0x280 [ 60.019084][ T7042] panic+0x2e3/0x75c [ 60.022971][ T7042] ? add_taint.cold+0x16/0x16 [ 60.027630][ T7042] ? x25_disconnect+0x253/0x370 [ 60.032463][ T7042] ? trace_hardirqs_on+0x55/0x220 [ 60.037459][ T7042] ? x25_disconnect+0x253/0x370 [ 60.042283][ T7042] ? __sock_release+0x280/0x280 [ 60.047111][ T7042] end_report+0x4d/0x53 [ 60.051250][ T7042] __kasan_report.cold+0xd/0x4d [ 60.056074][ T7042] ? rcu_read_lock_held+0x1/0xb0 [ 60.060992][ T7042] ? x25_disconnect+0x253/0x370 [ 60.065813][ T7042] ? x25_disconnect+0x253/0x370 [ 60.070639][ T7042] kasan_report+0x33/0x50 [ 60.074941][ T7042] check_memory_region+0x141/0x190 [ 60.080035][ T7042] x25_disconnect+0x253/0x370 [ 60.084691][ T7042] x25_release+0x345/0x420 [ 60.089095][ T7042] __sock_release+0xcd/0x280 [ 60.093701][ T7042] sock_close+0x18/0x20 [ 60.097855][ T7042] __fput+0x33e/0x880 [ 60.101818][ T7042] task_work_run+0xf4/0x1b0 [ 60.106310][ T7042] exit_to_usermode_loop+0x2fa/0x360 [ 60.111580][ T7042] do_syscall_64+0x6b1/0x7d0 [ 60.116325][ T7042] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 60.122191][ T7042] RIP: 0033:0x4afb40 [ 60.126073][ T7042] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 60.145656][ T7042] RSP: 002b:000000c0000774f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 60.154050][ T7042] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 60.162006][ T7042] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 60.169962][ T7042] RBP: 000000c000077538 R08: 0000000000000000 R09: 0000000000000000 [ 60.177914][ T7042] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 60.185857][ T7042] R13: 0000000000000166 R14: 0000000000000165 R15: 0000000000000200 [ 60.195237][ T7042] Kernel Offset: disabled [ 60.199551][ T7042] Rebooting in 86400 seconds..