Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.168' (ECDSA) to the list of known hosts. 2020/05/22 18:27:08 fuzzer started 2020/05/22 18:27:08 dialing manager at 10.128.0.105:38353 2020/05/22 18:27:08 syscalls: 3055 2020/05/22 18:27:08 code coverage: enabled 2020/05/22 18:27:08 comparison tracing: enabled 2020/05/22 18:27:08 extra coverage: enabled 2020/05/22 18:27:08 setuid sandbox: enabled 2020/05/22 18:27:08 namespace sandbox: enabled 2020/05/22 18:27:08 Android sandbox: /sys/fs/selinux/policy does not exist 2020/05/22 18:27:08 fault injection: enabled 2020/05/22 18:27:08 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/05/22 18:27:08 net packet injection: enabled 2020/05/22 18:27:08 net device setup: enabled 2020/05/22 18:27:08 concurrency sanitizer: enabled 2020/05/22 18:27:08 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/05/22 18:27:08 USB emulation: enabled syzkaller login: [ 53.250428][ T8920] KCSAN: could not find function: '_find_next_bit' 2020/05/22 18:27:10 adding functions to KCSAN blacklist: 'ep_poll' 'ext4_free_inodes_count' 'kcm_rfree' 'xas_clear_mark' 'copy_process' 'ext4_mark_iloc_dirty' 'generic_file_read_iter' '__ext4_new_inode' 'dd_has_work' '_find_next_bit' 'blk_mq_sched_dispatch_requests' 'shmem_file_read_iter' 'tick_sched_do_timer' 'add_timer' 'generic_write_end' 'do_signal_stop' [ 90.902764][ T8908] ================================================================== [ 90.910954][ T8908] BUG: KCSAN: data-race in mod_timer / timer_clear_idle [ 90.917870][ T8908] [ 90.920183][ T8908] write to 0xffff88812c01dca4 of 1 bytes by task 0 on cpu 0: [ 90.927670][ T8908] timer_clear_idle+0x3d/0x50 [ 90.932350][ T8908] __tick_nohz_idle_restart_tick+0x32/0x1a0 [ 90.938236][ T8908] tick_nohz_idle_exit+0x19c/0x1d0 [ 90.943361][ T8908] do_idle+0xac/0x290 [ 90.947325][ T8908] cpu_startup_entry+0x14/0x20 [ 90.952075][ T8908] rest_init+0xe4/0xeb [ 90.956149][ T8908] arch_call_rest_init+0x13/0x2b [ 90.961061][ T8908] start_kernel+0x7fe/0x823 [ 90.965553][ T8908] secondary_startup_64+0xa4/0xb0 [ 90.970553][ T8908] [ 90.972862][ T8908] read to 0xffff88812c01dca4 of 1 bytes by task 8908 on cpu 1: [ 90.980390][ T8908] mod_timer+0x631/0x830 [ 90.984608][ T8908] sk_reset_timer+0x29/0xc0 [ 90.989085][ T8908] tcp_rearm_rto+0x1ce/0x280 [ 90.993668][ T8908] tcp_event_new_data_sent+0x23f/0x260 [ 90.999130][ T8908] tcp_write_xmit+0x5c6/0x31e0 [ 91.003911][ T8908] __tcp_push_pending_frames+0x72/0x1b0 [ 91.009436][ T8908] tcp_push+0x1ec/0x3e0 [ 91.013568][ T8908] tcp_sendmsg_locked+0x1de3/0x20f0 [ 91.018828][ T8908] tcp_sendmsg+0x35/0x50 [ 91.023056][ T8908] inet_sendmsg+0x69/0x90 [ 91.027493][ T8908] sock_sendmsg+0x98/0xc0 [ 91.031908][ T8908] sock_write_iter+0x186/0x240 [ 91.036930][ T8908] new_sync_write+0x303/0x400 [ 91.041606][ T8908] __vfs_write+0x9e/0xb0 [ 91.045914][ T8908] vfs_write+0x189/0x380 [ 91.050133][ T8908] ksys_write+0x16a/0x1a0 [ 91.054467][ T8908] __x64_sys_write+0x49/0x60 [ 91.059052][ T8908] do_syscall_64+0xc7/0x3b0 [ 91.063559][ T8908] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 91.069434][ T8908] [ 91.071752][ T8908] Reported by Kernel Concurrency Sanitizer on: [ 91.078006][ T8908] CPU: 1 PID: 8908 Comm: syz-fuzzer Not tainted 5.7.0-rc1-syzkaller #0 [ 91.086313][ T8908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 91.096374][ T8908] ================================================================== [ 91.105958][ T8908] Kernel panic - not syncing: panic_on_warn set ... [ 91.112550][ T8908] CPU: 1 PID: 8908 Comm: syz-fuzzer Not tainted 5.7.0-rc1-syzkaller #0 [ 91.120861][ T8908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 91.131982][ T8908] Call Trace: [ 91.135264][ T8908] dump_stack+0x11d/0x187 [ 91.139745][ T8908] panic+0x210/0x640 [ 91.143641][ T8908] ? vprintk_func+0x89/0x13a [ 91.148340][ T8908] kcsan_report.cold+0xc/0x1a [ 91.153579][ T8908] kcsan_setup_watchpoint+0x3fb/0x440 [ 91.159216][ T8908] mod_timer+0x631/0x830 [ 91.163487][ T8908] sk_reset_timer+0x29/0xc0 [ 91.171812][ T8908] tcp_rearm_rto+0x1ce/0x280 [ 91.176484][ T8908] tcp_event_new_data_sent+0x23f/0x260 [ 91.182059][ T8908] tcp_write_xmit+0x5c6/0x31e0 [ 91.186815][ T8908] ? iov_iter_advance+0x21c/0x900 [ 91.191923][ T8908] __tcp_push_pending_frames+0x72/0x1b0 [ 91.197456][ T8908] tcp_push+0x1ec/0x3e0 [ 91.201680][ T8908] tcp_sendmsg_locked+0x1de3/0x20f0 [ 91.207133][ T8908] ? aa_label_sk_perm.part.0+0x220/0x290 [ 91.212771][ T8908] tcp_sendmsg+0x35/0x50 [ 91.217101][ T8908] inet_sendmsg+0x69/0x90 [ 91.223383][ T8908] ? inet_send_prepare+0x1f0/0x1f0 [ 91.228630][ T8908] sock_sendmsg+0x98/0xc0 [ 91.232983][ T8908] sock_write_iter+0x186/0x240 [ 91.238027][ T8908] new_sync_write+0x303/0x400 [ 91.242961][ T8908] __vfs_write+0x9e/0xb0 [ 91.247512][ T8908] vfs_write+0x189/0x380 [ 91.251749][ T8908] ksys_write+0x16a/0x1a0 [ 91.256450][ T8908] __x64_sys_write+0x49/0x60 [ 91.261313][ T8908] do_syscall_64+0xc7/0x3b0 [ 91.265821][ T8908] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 91.271793][ T8908] RIP: 0033:0x47c530 [ 91.275693][ T8908] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 91.295469][ T8908] RSP: 002b:000000c42506d4a0 EFLAGS: 00000202 ORIG_RAX: 0000000000000001 [ 91.303952][ T8908] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000047c530 [ 91.311904][ T8908] RDX: 0000000000000007 RSI: 000000c420218200 RDI: 0000000000000003 [ 91.319864][ T8908] RBP: 000000c42506d4f8 R08: 0000000000000000 R09: 0000000000000000 [ 91.327905][ T8908] R10: 0000000000000000 R11: 0000000000000202 R12: 000000c4200c5b00 [ 91.335878][ T8908] R13: 0000000000000007 R14: 0000000000c77780 R15: 0000000000000400 [ 92.420229][ T8908] Shutting down cpus with NMI [ 92.426293][ T8908] Kernel Offset: disabled [ 92.430623][ T8908] Rebooting in 86400 seconds..