[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.15.197' (ECDSA) to the list of known hosts. 2020/05/01 19:27:12 fuzzer started 2020/05/01 19:27:13 connecting to host at 10.128.0.26:39251 2020/05/01 19:27:13 checking machine... 2020/05/01 19:27:13 checking revisions... 2020/05/01 19:27:13 testing simple program... syzkaller login: [ 54.480373][ T7035] IPVS: ftp: loaded support on port[0] = 21 2020/05/01 19:27:13 building call list... [ 54.872730][ T40] tipc: TX() has been purged, node left! [ 56.129674][ T7016] can: request_module (can-proto-0) failed. executing program [ 57.970259][ T7016] can: request_module (can-proto-0) failed. [ 57.981768][ T7016] can: request_module (can-proto-0) failed. [ 58.421660][ T7016] ================================================================== [ 58.430112][ T7016] BUG: KASAN: null-ptr-deref in x25_disconnect+0x253/0x370 [ 58.437312][ T7016] Write of size 4 at addr 00000000000000d8 by task syz-fuzzer/7016 [ 58.445443][ T7016] [ 58.447933][ T7016] CPU: 0 PID: 7016 Comm: syz-fuzzer Not tainted 5.7.0-rc2-syzkaller #0 [ 58.456143][ T7016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 58.466174][ T7016] Call Trace: [ 58.469448][ T7016] dump_stack+0x188/0x20d [ 58.473776][ T7016] ? x25_disconnect+0x253/0x370 [ 58.478643][ T7016] ? __sock_release+0x280/0x280 [ 58.483479][ T7016] __kasan_report.cold+0x5/0x4d [ 58.488310][ T7016] ? rcu_read_lock_held+0x1/0xb0 [ 58.493231][ T7016] ? x25_disconnect+0x253/0x370 [ 58.498076][ T7016] ? x25_disconnect+0x253/0x370 [ 58.502911][ T7016] kasan_report+0x33/0x50 [ 58.507218][ T7016] check_memory_region+0x141/0x190 [ 58.512312][ T7016] x25_disconnect+0x253/0x370 [ 58.516971][ T7016] x25_release+0x345/0x420 [ 58.521385][ T7016] __sock_release+0xcd/0x280 [ 58.525961][ T7016] sock_close+0x18/0x20 [ 58.530097][ T7016] __fput+0x33e/0x880 [ 58.534065][ T7016] task_work_run+0xf4/0x1b0 [ 58.538579][ T7016] exit_to_usermode_loop+0x2fa/0x360 [ 58.543852][ T7016] do_syscall_64+0x6b1/0x7d0 [ 58.548435][ T7016] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 58.554317][ T7016] RIP: 0033:0x4afb40 [ 58.558200][ T7016] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 58.578008][ T7016] RSP: 002b:000000c0001a74f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 58.586410][ T7016] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 58.594360][ T7016] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 58.602325][ T7016] RBP: 000000c0001a7538 R08: 0000000000000000 R09: 0000000000000000 [ 58.611159][ T7016] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 58.619120][ T7016] R13: 0000000000000162 R14: 0000000000000161 R15: 0000000000000200 [ 58.627101][ T7016] ================================================================== [ 58.635135][ T7016] Disabling lock debugging due to kernel taint [ 58.641338][ T7016] Kernel panic - not syncing: panic_on_warn set ... [ 58.647924][ T7016] CPU: 0 PID: 7016 Comm: syz-fuzzer Tainted: G B 5.7.0-rc2-syzkaller #0 [ 58.658316][ T7016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 58.668345][ T7016] Call Trace: [ 58.671639][ T7016] dump_stack+0x188/0x20d [ 58.675943][ T7016] ? __sock_release+0x280/0x280 [ 58.680764][ T7016] panic+0x2e3/0x75c [ 58.684632][ T7016] ? add_taint.cold+0x16/0x16 [ 58.689281][ T7016] ? x25_disconnect+0x253/0x370 [ 58.694200][ T7016] ? trace_hardirqs_on+0x55/0x220 [ 58.699455][ T7016] ? x25_disconnect+0x253/0x370 [ 58.704278][ T7016] ? __sock_release+0x280/0x280 [ 58.709359][ T7016] end_report+0x4d/0x53 [ 58.713663][ T7016] __kasan_report.cold+0xd/0x4d [ 58.718499][ T7016] ? rcu_read_lock_held+0x1/0xb0 [ 58.723513][ T7016] ? x25_disconnect+0x253/0x370 [ 58.728335][ T7016] ? x25_disconnect+0x253/0x370 [ 58.733156][ T7016] kasan_report+0x33/0x50 [ 58.737459][ T7016] check_memory_region+0x141/0x190 [ 58.742579][ T7016] x25_disconnect+0x253/0x370 [ 58.747246][ T7016] x25_release+0x345/0x420 [ 58.751639][ T7016] __sock_release+0xcd/0x280 [ 58.756200][ T7016] sock_close+0x18/0x20 [ 58.760343][ T7016] __fput+0x33e/0x880 [ 58.764296][ T7016] task_work_run+0xf4/0x1b0 [ 58.768785][ T7016] exit_to_usermode_loop+0x2fa/0x360 [ 58.774041][ T7016] do_syscall_64+0x6b1/0x7d0 [ 58.778605][ T7016] entry_SYSCALL_64_after_hwframe+0x49/0xb3 [ 58.784467][ T7016] RIP: 0033:0x4afb40 [ 58.788334][ T7016] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 58.808176][ T7016] RSP: 002b:000000c0001a74f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000003 [ 58.816573][ T7016] RAX: 0000000000000000 RBX: 000000c00002c000 RCX: 00000000004afb40 [ 58.824523][ T7016] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 58.832485][ T7016] RBP: 000000c0001a7538 R08: 0000000000000000 R09: 0000000000000000 [ 58.841390][ T7016] R10: 0000000000000000 R11: 0000000000000216 R12: ffffffffffffffff [ 58.850123][ T7016] R13: 0000000000000162 R14: 0000000000000161 R15: 0000000000000200 [ 58.859413][ T7016] Kernel Offset: disabled [ 58.863742][ T7016] Rebooting in 86400 seconds..