[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.113' (ECDSA) to the list of known hosts. 2020/04/28 12:12:57 fuzzer started 2020/04/28 12:12:59 connecting to host at 10.128.0.26:40579 2020/04/28 12:12:59 checking machine... 2020/04/28 12:12:59 checking revisions... 2020/04/28 12:12:59 testing simple program... syzkaller login: [ 59.242244][ T7063] IPVS: ftp: loaded support on port[0] = 21 2020/04/28 12:12:59 building call list... [ 59.606123][ T3729] tipc: TX() has been purged, node left! [ 60.873138][ T7089] can: request_module (can-proto-0) failed. executing program [ 62.752493][ T7089] can: request_module (can-proto-0) failed. [ 62.764120][ T7089] can: request_module (can-proto-0) failed. [ 63.257111][ T7089] ================================================================== [ 63.266197][ T7089] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 63.273901][ T7089] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/7089 [ 63.281905][ T7089] [ 63.284250][ T7089] CPU: 1 PID: 7089 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 63.292930][ T7089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.303415][ T7089] Call Trace: [ 63.307062][ T7089] dump_stack+0x188/0x20d [ 63.311539][ T7089] ? x25_disconnect+0x253/0x370 [ 63.316511][ T7089] ? __sock_release+0x280/0x280 [ 63.321550][ T7089] __kasan_report.cold+0x5/0x4d [ 63.326402][ T7089] ? rcu_read_lock_held+0x1/0xb0 [ 63.331401][ T7089] ? x25_disconnect+0x253/0x370 [ 63.336501][ T7089] ? x25_disconnect+0x253/0x370 [ 63.341606][ T7089] kasan_report+0x33/0x50 [ 63.346028][ T7089] check_memory_region+0x141/0x190 [ 63.351331][ T7089] x25_disconnect+0x253/0x370 [ 63.356102][ T7089] x25_release+0x345/0x420 [ 63.360622][ T7089] __sock_release+0xcd/0x280 [ 63.365203][ T7089] sock_close+0x18/0x20 [ 63.369497][ T7089] __fput+0x33e/0x880 [ 63.374377][ T7089] task_work_run+0xf4/0x1b0 [ 63.379233][ T7089] exit_to_usermode_loop+0x2fa/0x360 [ 63.384506][ T7089] do_syscall_64+0x6b1/0x7d0 [ 63.389169][ T7089] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 63.395107][ T7089] RIP: 0033:0x4afb40 [ 63.399250][ T7089] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 63.418848][ T7089] RSP: 002b:000000c0001dd4f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 63.427267][ T7089] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 63.435230][ T7089] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 63.443458][ T7089] RBP: 000000c0001dd538 R08: 0000000000000000 R09: 0000000000000000 [ 63.451421][ T7089] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 63.459370][ T7089] R13: 0000000000000163 R14: 0000000000000162 R15: 0000000000000200 [ 63.467330][ T7089] ================================================================== [ 63.475379][ T7089] Disabling lock debugging due to kernel taint [ 63.481582][ T7089] Kernel panic - not syncing: panic_on_warn set ... [ 63.488537][ T7089] CPU: 1 PID: 7089 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 63.498154][ T7089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.508190][ T7089] Call Trace: [ 63.511479][ T7089] dump_stack+0x188/0x20d [ 63.515807][ T7089] ? __sock_release+0x280/0x280 [ 63.520634][ T7089] panic+0x2e3/0x75c [ 63.524504][ T7089] ? add_taint.cold+0x16/0x16 [ 63.529284][ T7089] ? x25_disconnect+0x253/0x370 [ 63.534127][ T7089] ? trace_hardirqs_on+0x55/0x220 [ 63.539232][ T7089] ? x25_disconnect+0x253/0x370 [ 63.544156][ T7089] ? __sock_release+0x280/0x280 [ 63.548994][ T7089] end_report+0x4d/0x53 [ 63.553144][ T7089] __kasan_report.cold+0xd/0x4d [ 63.558001][ T7089] ? rcu_read_lock_held+0x1/0xb0 [ 63.563536][ T7089] ? x25_disconnect+0x253/0x370 [ 63.568463][ T7089] ? x25_disconnect+0x253/0x370 [ 63.573490][ T7089] kasan_report+0x33/0x50 [ 63.579217][ T7089] check_memory_region+0x141/0x190 [ 63.584435][ T7089] x25_disconnect+0x253/0x370 [ 63.589798][ T7089] x25_release+0x345/0x420 [ 63.594309][ T7089] __sock_release+0xcd/0x280 [ 63.598886][ T7089] sock_close+0x18/0x20 [ 63.603029][ T7089] __fput+0x33e/0x880 [ 63.606991][ T7089] task_work_run+0xf4/0x1b0 [ 63.611645][ T7089] exit_to_usermode_loop+0x2fa/0x360 [ 63.617034][ T7089] do_syscall_64+0x6b1/0x7d0 [ 63.621899][ T7089] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 63.628218][ T7089] RIP: 0033:0x4afb40 [ 63.632568][ T7089] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 63.652161][ T7089] RSP: 002b:000000c0001dd4f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 63.660806][ T7089] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 63.668822][ T7089] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 63.676812][ T7089] RBP: 000000c0001dd538 R08: 0000000000000000 R09: 0000000000000000 [ 63.684934][ T7089] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 63.692909][ T7089] R13: 0000000000000163 R14: 0000000000000162 R15: 0000000000000200 [ 63.702230][ T7089] Kernel Offset: disabled [ 63.706616][ T7089] Rebooting in 86400 seconds..