[ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Serial Getty on ttyS0. [ OK ] Started Getty on tty1. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.45' (ECDSA) to the list of known hosts. 2020/04/27 21:49:24 fuzzer started 2020/04/27 21:49:26 connecting to host at 10.128.0.26:44715 2020/04/27 21:49:26 checking machine... 2020/04/27 21:49:26 checking revisions... 2020/04/27 21:49:26 testing simple program... syzkaller login: [ 55.692328][ T7064] IPVS: ftp: loaded support on port[0] = 21 2020/04/27 21:49:26 building call list... [ 56.099316][ T144] tipc: TX() has been purged, node left! [ 57.412006][ T7090] can: request_module (can-proto-0) failed. executing program [ 59.262263][ T7090] can: request_module (can-proto-0) failed. [ 59.273869][ T7090] can: request_module (can-proto-0) failed. [ 59.739311][ T7090] ================================================================== [ 59.754416][ T7090] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 59.761620][ T7090] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/7090 [ 59.769517][ T7090] [ 59.771839][ T7090] CPU: 0 PID: 7090 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 59.780666][ T7090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.790699][ T7090] Call Trace: [ 59.793995][ T7090] dump_stack+0x188/0x20d [ 59.798323][ T7090] ? x25_disconnect+0x253/0x370 [ 59.803191][ T7090] ? __sock_release+0x280/0x280 [ 59.808029][ T7090] __kasan_report.cold+0x5/0x4d [ 59.812892][ T7090] ? rcu_read_lock_held+0x1/0xb0 [ 59.817822][ T7090] ? x25_disconnect+0x253/0x370 [ 59.822651][ T7090] ? x25_disconnect+0x253/0x370 [ 59.827477][ T7090] kasan_report+0x33/0x50 [ 59.831785][ T7090] check_memory_region+0x141/0x190 [ 59.836871][ T7090] x25_disconnect+0x253/0x370 [ 59.841548][ T7090] x25_release+0x345/0x420 [ 59.845996][ T7090] __sock_release+0xcd/0x280 [ 59.850593][ T7090] sock_close+0x18/0x20 [ 59.854746][ T7090] __fput+0x33e/0x880 [ 59.858729][ T7090] task_work_run+0xf4/0x1b0 [ 59.863239][ T7090] exit_to_usermode_loop+0x2fa/0x360 [ 59.868508][ T7090] do_syscall_64+0x6b1/0x7d0 [ 59.873087][ T7090] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 59.878977][ T7090] RIP: 0033:0x4afb40 [ 59.882858][ T7090] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 59.903739][ T7090] RSP: 002b:000000c0001ed4f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 59.912127][ T7090] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 59.920098][ T7090] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 59.928062][ T7090] RBP: 000000c0001ed538 R08: 0000000000000000 R09: 0000000000000000 [ 59.936981][ T7090] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 59.944952][ T7090] R13: 0000000000000163 R14: 0000000000000162 R15: 0000000000000200 [ 59.954046][ T7090] ================================================================== [ 59.962100][ T7090] Disabling lock debugging due to kernel taint [ 59.968298][ T7090] Kernel panic - not syncing: panic_on_warn set ... [ 59.974888][ T7090] CPU: 0 PID: 7090 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 59.984503][ T7090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 59.994532][ T7090] Call Trace: [ 59.997815][ T7090] dump_stack+0x188/0x20d [ 60.002137][ T7090] ? __sock_release+0x280/0x280 [ 60.006973][ T7090] panic+0x2e3/0x75c [ 60.010845][ T7090] ? add_taint.cold+0x16/0x16 [ 60.015500][ T7090] ? x25_disconnect+0x253/0x370 [ 60.020346][ T7090] ? trace_hardirqs_on+0x55/0x220 [ 60.025347][ T7090] ? x25_disconnect+0x253/0x370 [ 60.030173][ T7090] ? __sock_release+0x280/0x280 [ 60.035100][ T7090] end_report+0x4d/0x53 [ 60.039243][ T7090] __kasan_report.cold+0xd/0x4d [ 60.044072][ T7090] ? rcu_read_lock_held+0x1/0xb0 [ 60.049026][ T7090] ? x25_disconnect+0x253/0x370 [ 60.053937][ T7090] ? x25_disconnect+0x253/0x370 [ 60.058760][ T7090] kasan_report+0x33/0x50 [ 60.063075][ T7090] check_memory_region+0x141/0x190 [ 60.068162][ T7090] x25_disconnect+0x253/0x370 [ 60.072824][ T7090] x25_release+0x345/0x420 [ 60.077215][ T7090] __sock_release+0xcd/0x280 [ 60.081778][ T7090] sock_close+0x18/0x20 [ 60.085999][ T7090] __fput+0x33e/0x880 [ 60.089967][ T7090] task_work_run+0xf4/0x1b0 [ 60.094447][ T7090] exit_to_usermode_loop+0x2fa/0x360 [ 60.099813][ T7090] do_syscall_64+0x6b1/0x7d0 [ 60.104385][ T7090] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 60.110266][ T7090] RIP: 0033:0x4afb40 [ 60.114136][ T7090] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 60.134112][ T7090] RSP: 002b:000000c0001ed4f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 60.142508][ T7090] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 60.150487][ T7090] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 60.158475][ T7090] RBP: 000000c0001ed538 R08: 0000000000000000 R09: 0000000000000000 [ 60.166459][ T7090] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 60.174406][ T7090] R13: 0000000000000163 R14: 0000000000000162 R15: 0000000000000200 [ 60.183628][ T7090] Kernel Offset: disabled [ 60.187953][ T7090] Rebooting in 86400 seconds..