Warning: Permanently added '10.128.0.125' (ECDSA) to the list of known hosts. 2021/05/01 18:09:31 fuzzer started 2021/05/01 18:09:32 dialing manager at 10.128.0.169:44661 2021/05/01 18:09:32 syscalls: 3571 2021/05/01 18:09:32 code coverage: enabled 2021/05/01 18:09:32 comparison tracing: enabled 2021/05/01 18:09:32 extra coverage: enabled 2021/05/01 18:09:32 setuid sandbox: enabled 2021/05/01 18:09:32 namespace sandbox: enabled 2021/05/01 18:09:32 Android sandbox: /sys/fs/selinux/policy does not exist 2021/05/01 18:09:32 fault injection: enabled 2021/05/01 18:09:32 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2021/05/01 18:09:32 net packet injection: enabled 2021/05/01 18:09:32 net device setup: enabled 2021/05/01 18:09:32 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2021/05/01 18:09:32 devlink PCI setup: PCI device 0000:00:10.0 is not available 2021/05/01 18:09:32 USB emulation: enabled 2021/05/01 18:09:32 hci packet injection: enabled 2021/05/01 18:09:32 wifi device emulation: enabled 2021/05/01 18:09:32 802.15.4 emulation: enabled 2021/05/01 18:09:32 fetching corpus: 0, signal 0/2000 (executing program) 2021/05/01 18:09:32 fetching corpus: 50, signal 53922/57601 (executing program) 2021/05/01 18:09:32 fetching corpus: 100, signal 81184/86515 (executing program) 2021/05/01 18:09:32 fetching corpus: 150, signal 103694/110595 (executing program) 2021/05/01 18:09:32 fetching corpus: 200, signal 127418/135772 (executing program) 2021/05/01 18:09:32 fetching corpus: 250, signal 141734/151522 (executing program) 2021/05/01 18:09:33 fetching corpus: 300, signal 163652/174679 (executing program) 2021/05/01 18:09:33 fetching corpus: 350, signal 176838/189138 (executing program) 2021/05/01 18:09:33 fetching corpus: 400, signal 190289/203844 (executing program) 2021/05/01 18:09:33 fetching corpus: 450, signal 205248/219943 (executing program) 2021/05/01 18:09:33 fetching corpus: 500, signal 212946/228840 (executing program) 2021/05/01 18:09:34 fetching corpus: 550, signal 224555/241533 (executing program) 2021/05/01 18:09:34 fetching corpus: 600, signal 232360/250497 (executing program) 2021/05/01 18:09:34 fetching corpus: 650, signal 241717/260891 (executing program) 2021/05/01 18:09:34 fetching corpus: 700, signal 247491/267810 (executing program) syzkaller login: [ 75.086426][ T8445] ================================================================== [ 75.095914][ T8445] BUG: KASAN: wild-memory-access in copyout.part.0+0xd7/0x110 [ 75.105102][ T8445] Read of size 2640 at addr 108548c0310b0010 by task syz-fuzzer/8445 [ 75.113190][ T8445] [ 75.115524][ T8445] CPU: 0 PID: 8445 Comm: syz-fuzzer Not tainted 5.12.0-rc8-next-20210423-syzkaller #0 [ 75.125081][ T8445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 75.135179][ T8445] Call Trace: [ 75.138484][ T8445] dump_stack+0x141/0x1d7 [ 75.142856][ T8445] ? copyout.part.0+0xd7/0x110 [ 75.147639][ T8445] kasan_report.cold+0x5f/0xd8 [ 75.152442][ T8445] ? copyout.part.0+0xd7/0x110 [ 75.157238][ T8445] kasan_check_range+0x13d/0x180 [ 75.162283][ T8445] copyout.part.0+0xd7/0x110 [ 75.166895][ T8445] _copy_to_iter+0x2b4/0x1850 [ 75.171594][ T8445] ? lock_chain_count+0x20/0x20 [ 75.176489][ T8445] ? _copy_from_iter_nocache+0x1440/0x1440 [ 75.182333][ T8445] ? tcp_mstamp_refresh+0x12/0xa0 [ 75.187492][ T8445] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 75.193762][ T8445] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 75.199518][ T8445] ? __virt_addr_valid+0x5d/0x2d0 [ 75.204940][ T8445] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 75.211222][ T8445] ? __phys_addr_symbol+0x2c/0x70 [ 75.216263][ T8445] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 75.222008][ T8445] ? __check_object_size+0x18a/0x3f0 [ 75.227328][ T8445] simple_copy_to_iter+0x4c/0x70 [ 75.232288][ T8445] __skb_datagram_iter+0x4a7/0x770 [ 75.237426][ T8445] ? zerocopy_sg_from_iter+0x110/0x110 [ 75.242915][ T8445] skb_copy_datagram_iter+0x40/0x50 [ 75.248140][ T8445] tcp_recvmsg_locked+0x1048/0x22f0 [ 75.253415][ T8445] ? tcp_splice_read+0x8b0/0x8b0 [ 75.258393][ T8445] ? mark_held_locks+0x9f/0xe0 [ 75.263376][ T8445] ? __local_bh_enable_ip+0xa0/0x120 [ 75.268718][ T8445] tcp_recvmsg+0x134/0x550 [ 75.273184][ T8445] ? tcp_recvmsg_locked+0x22f0/0x22f0 [ 75.278596][ T8445] ? aa_sk_perm+0x311/0xab0 [ 75.283167][ T8445] inet_recvmsg+0x11b/0x5e0 [ 75.288043][ T8445] ? inet_sendpage+0x140/0x140 [ 75.292836][ T8445] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 75.299104][ T8445] ? security_socket_recvmsg+0x8f/0xc0 [ 75.304595][ T8445] sock_read_iter+0x33c/0x470 [ 75.309395][ T8445] ? ____sys_recvmsg+0x600/0x600 [ 75.314365][ T8445] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 75.320727][ T8445] ? fsnotify+0xa58/0x1060 [ 75.325281][ T8445] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 75.331556][ T8445] new_sync_read+0x5b7/0x6e0 [ 75.336179][ T8445] ? ksys_lseek+0x1b0/0x1b0 [ 75.340705][ T8445] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 75.346740][ T8445] vfs_read+0x35c/0x570 [ 75.350936][ T8445] ksys_read+0x1ee/0x250 [ 75.355197][ T8445] ? vfs_write+0xa40/0xa40 [ 75.359635][ T8445] ? syscall_enter_from_user_mode+0x27/0x70 [ 75.365556][ T8445] do_syscall_64+0x3a/0xb0 [ 75.370090][ T8445] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 75.376006][ T8445] RIP: 0033:0x4af19b [ 75.379917][ T8445] Code: fb ff eb bd e8 a6 b6 fb ff e9 61 ff ff ff cc e8 9b 82 fb ff 48 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 75.400610][ T8445] RSP: 002b:000000c00039b828 EFLAGS: 00000212 ORIG_RAX: 0000000000000000 [ 75.409060][ T8445] RAX: ffffffffffffffda RBX: 000000c00001e800 RCX: 00000000004af19b [ 75.417055][ T8445] RDX: 0000000000001000 RSI: 000000c000054000 RDI: 0000000000000006 [ 75.425045][ T8445] RBP: 000000c00039b878 R08: 0000000000000001 R09: 0000000000000002 [ 75.433037][ T8445] R10: 0000000000006380 R11: 0000000000000212 R12: 000000000000637c [ 75.441034][ T8445] R13: 0000000000000080 R14: 0000000000000002 R15: 0000000000000002 [ 75.449051][ T8445] ================================================================== [ 75.457126][ T8445] Disabling lock debugging due to kernel taint [ 75.474832][ T8445] Kernel panic - not syncing: panic_on_warn set ... [ 75.481452][ T8445] CPU: 1 PID: 8445 Comm: syz-fuzzer Tainted: G B 5.12.0-rc8-next-20210423-syzkaller #0 [ 75.492400][ T8445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 75.503104][ T8445] Call Trace: [ 75.506415][ T8445] dump_stack+0x141/0x1d7 [ 75.511478][ T8445] panic+0x306/0x73d [ 75.515392][ T8445] ? __warn_printk+0xf3/0xf3 [ 75.520004][ T8445] ? preempt_schedule_common+0x59/0xc0 [ 75.526093][ T8445] ? copyout.part.0+0xd7/0x110 [ 75.530875][ T8445] ? preempt_schedule_thunk+0x16/0x18 [ 75.536274][ T8445] ? trace_hardirqs_on+0x38/0x1c0 [ 75.541311][ T8445] ? trace_hardirqs_on+0x51/0x1c0 [ 75.546348][ T8445] ? copyout.part.0+0xd7/0x110 [ 75.551210][ T8445] ? copyout.part.0+0xd7/0x110 [ 75.556685][ T8445] end_report.cold+0x5a/0x5a [ 75.561298][ T8445] kasan_report.cold+0x6a/0xd8 [ 75.566274][ T8445] ? copyout.part.0+0xd7/0x110 [ 75.571145][ T8445] kasan_check_range+0x13d/0x180 [ 75.576103][ T8445] copyout.part.0+0xd7/0x110 [ 75.580709][ T8445] _copy_to_iter+0x2b4/0x1850 [ 75.585403][ T8445] ? lock_chain_count+0x20/0x20 [ 75.590274][ T8445] ? _copy_from_iter_nocache+0x1440/0x1440 [ 75.596101][ T8445] ? tcp_mstamp_refresh+0x12/0xa0 [ 75.601145][ T8445] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 75.607406][ T8445] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 75.613241][ T8445] ? __virt_addr_valid+0x5d/0x2d0 [ 75.618470][ T8445] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 75.624743][ T8445] ? __phys_addr_symbol+0x2c/0x70 [ 75.629785][ T8445] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 75.635532][ T8445] ? __check_object_size+0x18a/0x3f0 [ 75.640833][ T8445] simple_copy_to_iter+0x4c/0x70 [ 75.645804][ T8445] __skb_datagram_iter+0x4a7/0x770 [ 75.650942][ T8445] ? zerocopy_sg_from_iter+0x110/0x110 [ 75.656443][ T8445] skb_copy_datagram_iter+0x40/0x50 [ 75.661759][ T8445] tcp_recvmsg_locked+0x1048/0x22f0 [ 75.667171][ T8445] ? tcp_splice_read+0x8b0/0x8b0 [ 75.673716][ T8445] ? mark_held_locks+0x9f/0xe0 [ 75.678515][ T8445] ? __local_bh_enable_ip+0xa0/0x120 [ 75.683817][ T8445] tcp_recvmsg+0x134/0x550 [ 75.688251][ T8445] ? tcp_recvmsg_locked+0x22f0/0x22f0 [ 75.693645][ T8445] ? aa_sk_perm+0x311/0xab0 [ 75.698177][ T8445] inet_recvmsg+0x11b/0x5e0 [ 75.702726][ T8445] ? inet_sendpage+0x140/0x140 [ 75.707535][ T8445] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 75.713886][ T8445] ? security_socket_recvmsg+0x8f/0xc0 [ 75.719453][ T8445] sock_read_iter+0x33c/0x470 [ 75.724161][ T8445] ? ____sys_recvmsg+0x600/0x600 [ 75.729498][ T8445] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 75.735939][ T8445] ? fsnotify+0xa58/0x1060 [ 75.740549][ T8445] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 75.747108][ T8445] new_sync_read+0x5b7/0x6e0 [ 75.751724][ T8445] ? ksys_lseek+0x1b0/0x1b0 [ 75.756275][ T8445] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 75.762381][ T8445] vfs_read+0x35c/0x570 [ 75.766556][ T8445] ksys_read+0x1ee/0x250 [ 75.770812][ T8445] ? vfs_write+0xa40/0xa40 [ 75.775247][ T8445] ? syscall_enter_from_user_mode+0x27/0x70 [ 75.781155][ T8445] do_syscall_64+0x3a/0xb0 [ 75.785591][ T8445] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 75.791503][ T8445] RIP: 0033:0x4af19b [ 75.795494][ T8445] Code: fb ff eb bd e8 a6 b6 fb ff e9 61 ff ff ff cc e8 9b 82 fb ff 48 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 75.815197][ T8445] RSP: 002b:000000c00039b828 EFLAGS: 00000212 ORIG_RAX: 0000000000000000 [ 75.823809][ T8445] RAX: ffffffffffffffda RBX: 000000c00001e800 RCX: 00000000004af19b [ 75.831803][ T8445] RDX: 0000000000001000 RSI: 000000c000054000 RDI: 0000000000000006 [ 75.839785][ T8445] RBP: 000000c00039b878 R08: 0000000000000001 R09: 0000000000000002 [ 75.847765][ T8445] R10: 0000000000006380 R11: 0000000000000212 R12: 000000000000637c [ 75.857395][ T8445] R13: 0000000000000080 R14: 0000000000000002 R15: 0000000000000002 [ 75.866138][ T8445] Kernel Offset: disabled [ 75.870475][ T8445] Rebooting in 86400 seconds..