[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.49' (ECDSA) to the list of known hosts. 2020/04/28 12:06:27 fuzzer started 2020/04/28 12:06:29 connecting to host at 10.128.0.26:45157 2020/04/28 12:06:29 checking machine... 2020/04/28 12:06:29 checking revisions... 2020/04/28 12:06:29 testing simple program... syzkaller login: [ 56.509483][ T7035] IPVS: ftp: loaded support on port[0] = 21 2020/04/28 12:06:30 building call list... [ 56.879679][ T198] tipc: TX() has been purged, node left! [ 58.117656][ T7034] can: request_module (can-proto-0) failed. executing program [ 59.983984][ T7034] can: request_module (can-proto-0) failed. [ 59.995400][ T7034] can: request_module (can-proto-0) failed. [ 60.429550][ T7034] ================================================================== [ 60.437796][ T7034] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 60.445018][ T7034] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/7034 [ 60.452889][ T7034] [ 60.455212][ T7034] CPU: 0 PID: 7034 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 60.463429][ T7034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.473473][ T7034] Call Trace: [ 60.476743][ T7034] dump_stack+0x188/0x20d [ 60.481049][ T7034] ? x25_disconnect+0x253/0x370 [ 60.485889][ T7034] ? __sock_release+0x280/0x280 [ 60.490714][ T7034] __kasan_report.cold+0x5/0x4d [ 60.495550][ T7034] ? rcu_read_lock_held+0x1/0xb0 [ 60.500462][ T7034] ? x25_disconnect+0x253/0x370 [ 60.505288][ T7034] ? x25_disconnect+0x253/0x370 [ 60.510110][ T7034] kasan_report+0x33/0x50 [ 60.514454][ T7034] check_memory_region+0x141/0x190 [ 60.519576][ T7034] x25_disconnect+0x253/0x370 [ 60.524275][ T7034] x25_release+0x345/0x420 [ 60.528669][ T7034] __sock_release+0xcd/0x280 [ 60.533236][ T7034] sock_close+0x18/0x20 [ 60.537384][ T7034] __fput+0x33e/0x880 [ 60.541347][ T7034] task_work_run+0xf4/0x1b0 [ 60.545831][ T7034] exit_to_usermode_loop+0x2fa/0x360 [ 60.551108][ T7034] do_syscall_64+0x6b1/0x7d0 [ 60.555687][ T7034] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 60.561554][ T7034] RIP: 0033:0x4afb40 [ 60.565423][ T7034] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 60.585008][ T7034] RSP: 002b:000000c0001b74f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 60.593391][ T7034] RAX: 0000000000000000 RBX: 000000c00002e500 RCX: 00000000004afb40 [ 60.601336][ T7034] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 60.609281][ T7034] RBP: 000000c0001b7538 R08: 0000000000000000 R09: 0000000000000000 [ 60.617312][ T7034] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 60.625255][ T7034] R13: 0000000000000162 R14: 0000000000000161 R15: 0000000000000200 [ 60.633211][ T7034] ================================================================== [ 60.641241][ T7034] Disabling lock debugging due to kernel taint [ 60.647438][ T7034] Kernel panic - not syncing: panic_on_warn set ... [ 60.654031][ T7034] CPU: 0 PID: 7034 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 60.663637][ T7034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.673705][ T7034] Call Trace: [ 60.677018][ T7034] dump_stack+0x188/0x20d [ 60.681324][ T7034] ? __sock_release+0x280/0x280 [ 60.686181][ T7034] panic+0x2e3/0x75c [ 60.690061][ T7034] ? add_taint.cold+0x16/0x16 [ 60.694716][ T7034] ? x25_disconnect+0x253/0x370 [ 60.699553][ T7034] ? trace_hardirqs_on+0x55/0x220 [ 60.704561][ T7034] ? x25_disconnect+0x253/0x370 [ 60.709385][ T7034] ? __sock_release+0x280/0x280 [ 60.714402][ T7034] end_report+0x4d/0x53 [ 60.718534][ T7034] __kasan_report.cold+0xd/0x4d [ 60.723361][ T7034] ? rcu_read_lock_held+0x1/0xb0 [ 60.728270][ T7034] ? x25_disconnect+0x253/0x370 [ 60.733091][ T7034] ? x25_disconnect+0x253/0x370 [ 60.737920][ T7034] kasan_report+0x33/0x50 [ 60.742223][ T7034] check_memory_region+0x141/0x190 [ 60.747308][ T7034] x25_disconnect+0x253/0x370 [ 60.751959][ T7034] x25_release+0x345/0x420 [ 60.756363][ T7034] __sock_release+0xcd/0x280 [ 60.760935][ T7034] sock_close+0x18/0x20 [ 60.765059][ T7034] __fput+0x33e/0x880 [ 60.769013][ T7034] task_work_run+0xf4/0x1b0 [ 60.773490][ T7034] exit_to_usermode_loop+0x2fa/0x360 [ 60.778747][ T7034] do_syscall_64+0x6b1/0x7d0 [ 60.783744][ T7034] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 60.789607][ T7034] RIP: 0033:0x4afb40 [ 60.793477][ T7034] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 60.813154][ T7034] RSP: 002b:000000c0001b74f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 60.821533][ T7034] RAX: 0000000000000000 RBX: 000000c00002e500 RCX: 00000000004afb40 [ 60.829493][ T7034] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 60.838670][ T7034] RBP: 000000c0001b7538 R08: 0000000000000000 R09: 0000000000000000 [ 60.846617][ T7034] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 60.854557][ T7034] R13: 0000000000000162 R14: 0000000000000161 R15: 0000000000000200 [ 60.863755][ T7034] Kernel Offset: disabled [ 60.868068][ T7034] Rebooting in 86400 seconds..