         Starting Load/Save RF Kill Switch Status...
[[0;32m  OK  [0m] Started Load/Save RF Kill Switch Status.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.1.5' (ECDSA) to the list of known hosts.
2021/05/02 16:26:54 fuzzer started
2021/05/02 16:26:54 dialing manager at 10.128.0.169:44661
2021/05/02 16:26:54 syscalls: 3571
2021/05/02 16:26:54 code coverage: enabled
2021/05/02 16:26:54 comparison tracing: enabled
2021/05/02 16:26:54 extra coverage: enabled
2021/05/02 16:26:54 setuid sandbox: enabled
2021/05/02 16:26:54 namespace sandbox: enabled
2021/05/02 16:26:54 Android sandbox: /sys/fs/selinux/policy does not exist
2021/05/02 16:26:54 fault injection: enabled
2021/05/02 16:26:54 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2021/05/02 16:26:54 net packet injection: enabled
2021/05/02 16:26:54 net device setup: enabled
2021/05/02 16:26:54 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2021/05/02 16:26:54 devlink PCI setup: PCI device 0000:00:10.0 is not available
2021/05/02 16:26:54 USB emulation: enabled
2021/05/02 16:26:54 hci packet injection: enabled
2021/05/02 16:26:54 wifi device emulation: enabled
2021/05/02 16:26:54 802.15.4 emulation: enabled
2021/05/02 16:26:54 fetching corpus: 0, signal 0/2000 (executing program)
2021/05/02 16:26:55 fetching corpus: 50, signal 58815/62513 (executing program)
2021/05/02 16:26:55 fetching corpus: 100, signal 91622/96896 (executing program)
2021/05/02 16:26:55 fetching corpus: 150, signal 110456/117328 (executing program)
2021/05/02 16:26:55 fetching corpus: 200, signal 127810/136200 (executing program)
2021/05/02 16:26:55 fetching corpus: 250, signal 143625/153466 (executing program)
2021/05/02 16:26:55 fetching corpus: 300, signal 154704/165951 (executing program)
2021/05/02 16:26:56 fetching corpus: 350, signal 165429/178098 (executing program)
2021/05/02 16:26:56 fetching corpus: 400, signal 179787/193734 (executing program)
2021/05/02 16:26:56 fetching corpus: 450, signal 192389/207544 (executing program)
2021/05/02 16:26:56 fetching corpus: 500, signal 206711/222953 (executing program)
2021/05/02 16:26:56 Manager.Poll call failed: reading body read tcp 10.128.1.5:59974->10.128.0.169:44661: read: bad address
syzkaller login: [   71.160276][ T3261] ieee802154 phy0 wpan0: encryption failed: -22
[   71.166802][ T3261] ieee802154 phy1 wpan1: encryption failed: -22
[   71.235192][ T8456] general protection fault, probably for non-canonical address 0xf741f2718015e241: 0000 [#1] PREEMPT SMP KASAN
[   71.246922][ T8456] KASAN: maybe wild-memory-access in range [0xba0fb38c00af1208-0xba0fb38c00af120f]
[   71.256223][ T8456] CPU: 0 PID: 8456 Comm: syz-fuzzer Not tainted 5.12.0-rc8-next-20210423-syzkaller #0
[   71.265748][ T8456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   71.275788][ T8456] RIP: 0010:skb_release_data+0x3a0/0x750
[   71.281434][ T8456] Code: 48 8b 04 24 48 c1 e8 03 42 80 3c 30 00 0f 85 d3 02 00 00 49 63 c4 48 c1 e0 04 4a 8b 6c 28 30 48 8d 7d 08 48 89 f8 48 c1 e8 03 <42> 80 3c 30 00 0f 85 a7 02 00 00 48 8b 45 08 31 ff 48 89 c3 48 89
[   71.301037][ T8456] RSP: 0018:ffffc900015ff960 EFLAGS: 00010a06
[   71.307105][ T8456] RAX: 1741f6718015e241 RBX: 0000000000000011 RCX: 0000000000000000
[   71.315083][ T8456] RDX: ffff888017f09c80 RSI: ffffffff8703c746 RDI: ba0fb38c00af1208
[   71.323046][ T8456] RBP: ba0fb38c00af1200 R08: 0000000000000011 R09: 0000000000af1200
[   71.331032][ T8456] R10: ffffffff8703c733 R11: 0000000000000000 R12: 0000000000000010
[   71.338995][ T8456] R13: ffff88802f30fecc R14: dffffc0000000000 R15: ffff88801e0badc0
[   71.346974][ T8456] FS:  0000000000000000(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000
[   71.355913][ T8456] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   71.362590][ T8456] CR2: 00007f99c62ef970 CR3: 000000000bc8e000 CR4: 00000000001506f0
[   71.370549][ T8456] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   71.378537][ T8456] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   71.386515][ T8456] Call Trace:
[   71.389779][ T8456]  __kfree_skb+0x46/0x60
[   71.394028][ T8456]  __tcp_close+0x230/0x1170
[   71.398531][ T8456]  tcp_close+0x29/0xc0
[   71.402583][ T8456]  inet_release+0x12e/0x280
[   71.407070][ T8456]  __sock_release+0xcd/0x280
[   71.411654][ T8456]  sock_close+0x18/0x20
[   71.415802][ T8456]  __fput+0x288/0x920
[   71.419770][ T8456]  ? __sock_release+0x280/0x280
[   71.424602][ T8456]  task_work_run+0xdd/0x1a0
[   71.429096][ T8456]  do_exit+0xbfc/0x2a70
[   71.433242][ T8456]  ? find_held_lock+0x2d/0x110
[   71.437986][ T8456]  ? mm_update_next_owner+0x7a0/0x7a0
[   71.443346][ T8456]  ? get_signal+0x337/0x2150
[   71.447917][ T8456]  ? lock_downgrade+0x6e0/0x6e0
[   71.452754][ T8456]  do_group_exit+0x125/0x310
[   71.457340][ T8456]  get_signal+0x47f/0x2150
[   71.461741][ T8456]  arch_do_signal_or_restart+0x2a8/0x1eb0
[   71.467450][ T8456]  ? find_held_lock+0x2d/0x110
[   71.472211][ T8456]  ? copy_siginfo_to_user32+0xa0/0xa0
[   71.477562][ T8456]  ? __do_sys_futex+0x2ab/0x470
[   71.482404][ T8456]  ? do_futex+0x1780/0x1780
[   71.486886][ T8456]  exit_to_user_mode_prepare+0x171/0x280
[   71.492500][ T8456]  syscall_exit_to_user_mode+0x19/0x60
[   71.497954][ T8456]  do_syscall_64+0x47/0xb0
[   71.502363][ T8456]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   71.508254][ T8456] RIP: 0033:0x46e163
[   71.512128][ T8456] Code: Unable to access opcode bytes at RIP 0x46e139.
[   71.518948][ T8456] RSP: 002b:00007ffd5f013c08 EFLAGS: 00000286 ORIG_RAX: 00000000000000ca
[   71.527525][ T8456] RAX: 0000000000000000 RBX: 000000000184f7e0 RCX: 000000000046e163
[   71.535489][ T8456] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000184f928
[   71.543455][ T8456] RBP: 00007ffd5f013c50 R08: 0000000000000000 R09: 0000000000000000
[   71.551409][ T8456] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000003
[   71.559371][ T8456] R13: 000000000184f420 R14: 000000000000000f R15: 0000000000000db6
[   71.567330][ T8456] Modules linked in:
[   71.571747][ T8456] ---[ end trace 9ec68bad3bc37a20 ]---
[   71.577948][ T8456] RIP: 0010:skb_release_data+0x3a0/0x750
[   71.583693][ T8456] Code: 48 8b 04 24 48 c1 e8 03 42 80 3c 30 00 0f 85 d3 02 00 00 49 63 c4 48 c1 e0 04 4a 8b 6c 28 30 48 8d 7d 08 48 89 f8 48 c1 e8 03 <42> 80 3c 30 00 0f 85 a7 02 00 00 48 8b 45 08 31 ff 48 89 c3 48 89
[   71.603375][ T8456] RSP: 0018:ffffc900015ff960 EFLAGS: 00010a06
[   71.609497][ T8456] RAX: 1741f6718015e241 RBX: 0000000000000011 RCX: 0000000000000000
[   71.617482][ T8456] RDX: ffff888017f09c80 RSI: ffffffff8703c746 RDI: ba0fb38c00af1208
[   71.625528][ T8456] RBP: ba0fb38c00af1200 R08: 0000000000000011 R09: 0000000000af1200
[   71.633591][ T8456] R10: ffffffff8703c733 R11: 0000000000000000 R12: 0000000000000010
[   71.642192][ T8456] R13: ffff88802f30fecc R14: dffffc0000000000 R15: ffff88801e0badc0
[   71.650462][ T8456] FS:  0000000000000000(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000
[   71.659535][ T8456] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   71.666141][ T8456] CR2: 00007fdac59b1000 CR3: 0000000019ead000 CR4: 00000000001506e0
[   71.674186][ T8456] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   71.682281][ T8456] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   71.690290][ T8456] Kernel panic - not syncing: Fatal exception
[   71.696823][ T8456] Kernel Offset: disabled
[   71.701152][ T8456] Rebooting in 86400 seconds..