[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.179' (ECDSA) to the list of known hosts. 2020/04/28 11:00:50 fuzzer started 2020/04/28 11:00:51 connecting to host at 10.128.0.26:34117 2020/04/28 11:00:51 checking machine... 2020/04/28 11:00:51 checking revisions... 2020/04/28 11:00:51 testing simple program... syzkaller login: [ 59.379135][ T7042] IPVS: ftp: loaded support on port[0] = 21 2020/04/28 11:00:52 building call list... [ 59.744563][ T7] tipc: TX() has been purged, node left! [ 61.022278][ T7024] can: request_module (can-proto-0) failed. executing program [ 62.860069][ T7024] can: request_module (can-proto-0) failed. [ 62.871641][ T7024] can: request_module (can-proto-0) failed. [ 63.334359][ T7024] ================================================================== [ 63.342574][ T7024] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 63.349748][ T7024] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/7024 [ 63.357607][ T7024] [ 63.359926][ T7024] CPU: 0 PID: 7024 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 63.368260][ T7024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.378569][ T7024] Call Trace: [ 63.381845][ T7024] dump_stack+0x188/0x20d [ 63.386166][ T7024] ? x25_disconnect+0x253/0x370 [ 63.396177][ T7024] ? __sock_release+0x280/0x280 [ 63.401062][ T7024] __kasan_report.cold+0x5/0x4d [ 63.405902][ T7024] ? rcu_read_lock_held+0x1/0xb0 [ 63.410844][ T7024] ? x25_disconnect+0x253/0x370 [ 63.416205][ T7024] ? x25_disconnect+0x253/0x370 [ 63.421180][ T7024] kasan_report+0x33/0x50 [ 63.425515][ T7024] check_memory_region+0x141/0x190 [ 63.430649][ T7024] x25_disconnect+0x253/0x370 [ 63.435322][ T7024] x25_release+0x345/0x420 [ 63.439727][ T7024] __sock_release+0xcd/0x280 [ 63.444475][ T7024] sock_close+0x18/0x20 [ 63.448611][ T7024] __fput+0x33e/0x880 [ 63.452586][ T7024] task_work_run+0xf4/0x1b0 [ 63.457176][ T7024] exit_to_usermode_loop+0x2fa/0x360 [ 63.462546][ T7024] do_syscall_64+0x6b1/0x7d0 [ 63.467262][ T7024] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 63.473220][ T7024] RIP: 0033:0x4afb40 [ 63.477230][ T7024] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 63.497138][ T7024] RSP: 002b:000000c0001f14f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 63.508174][ T7024] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 63.518163][ T7024] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 63.526135][ T7024] RBP: 000000c0001f1538 R08: 0000000000000000 R09: 0000000000000000 [ 63.534097][ T7024] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 63.542057][ T7024] R13: 0000000000000164 R14: 0000000000000163 R15: 0000000000000200 [ 63.550026][ T7024] ================================================================== [ 63.558244][ T7024] Disabling lock debugging due to kernel taint [ 63.564531][ T7024] Kernel panic - not syncing: panic_on_warn set ... [ 63.571728][ T7024] CPU: 0 PID: 7024 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 63.581362][ T7024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.592984][ T7024] Call Trace: [ 63.596260][ T7024] dump_stack+0x188/0x20d [ 63.600662][ T7024] ? __sock_release+0x280/0x280 [ 63.605487][ T7024] panic+0x2e3/0x75c [ 63.609384][ T7024] ? add_taint.cold+0x16/0x16 [ 63.614035][ T7024] ? x25_disconnect+0x253/0x370 [ 63.619294][ T7024] ? trace_hardirqs_on+0x55/0x220 [ 63.624304][ T7024] ? x25_disconnect+0x253/0x370 [ 63.629314][ T7024] ? __sock_release+0x280/0x280 [ 63.634660][ T7024] end_report+0x4d/0x53 [ 63.639450][ T7024] __kasan_report.cold+0xd/0x4d [ 63.644428][ T7024] ? rcu_read_lock_held+0x1/0xb0 [ 63.650363][ T7024] ? x25_disconnect+0x253/0x370 [ 63.655431][ T7024] ? x25_disconnect+0x253/0x370 [ 63.660508][ T7024] kasan_report+0x33/0x50 [ 63.666014][ T7024] check_memory_region+0x141/0x190 [ 63.671238][ T7024] x25_disconnect+0x253/0x370 [ 63.675911][ T7024] x25_release+0x345/0x420 [ 63.680431][ T7024] __sock_release+0xcd/0x280 [ 63.685007][ T7024] sock_close+0x18/0x20 [ 63.689489][ T7024] __fput+0x33e/0x880 [ 63.693729][ T7024] task_work_run+0xf4/0x1b0 [ 63.700916][ T7024] exit_to_usermode_loop+0x2fa/0x360 [ 63.706834][ T7024] do_syscall_64+0x6b1/0x7d0 [ 63.712969][ T7024] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 63.720663][ T7024] RIP: 0033:0x4afb40 [ 63.724639][ T7024] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 63.748181][ T7024] RSP: 002b:000000c0001f14f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 63.756585][ T7024] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 63.764539][ T7024] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 63.772503][ T7024] RBP: 000000c0001f1538 R08: 0000000000000000 R09: 0000000000000000 [ 63.781196][ T7024] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 63.789368][ T7024] R13: 0000000000000164 R14: 0000000000000163 R15: 0000000000000200 [ 63.798597][ T7024] Kernel Offset: disabled [ 63.803196][ T7024] Rebooting in 86400 seconds..