[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 35.087392][ T23] audit: type=1800 audit(1572634006.336:25): pid=7047 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2447 res=0 [ 35.114634][ T23] audit: type=1800 audit(1572634006.336:26): pid=7047 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2490 res=0 [ 35.146252][ T23] audit: type=1800 audit(1572634006.336:27): pid=7047 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2469 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.15.200' (ECDSA) to the list of known hosts. 2019/11/01 18:46:58 fuzzer started 2019/11/01 18:47:01 dialing manager at 10.128.0.105:41349 2019/11/01 18:47:01 syscalls: 2540 2019/11/01 18:47:01 code coverage: enabled 2019/11/01 18:47:01 comparison tracing: enabled 2019/11/01 18:47:01 extra coverage: extra coverage is not supported by the kernel 2019/11/01 18:47:01 setuid sandbox: enabled 2019/11/01 18:47:01 namespace sandbox: enabled 2019/11/01 18:47:01 Android sandbox: /sys/fs/selinux/policy does not exist 2019/11/01 18:47:01 fault injection: enabled 2019/11/01 18:47:01 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/11/01 18:47:01 net packet injection: enabled 2019/11/01 18:47:01 net device setup: enabled 2019/11/01 18:47:01 concurrency sanitizer: enabled 2019/11/01 18:47:07 adding functions to KCSAN blacklist: 'ext4_free_inodes_count' 'generic_permission' 'tcp_poll' 'mod_timer' 'taskstats_exit' 'common_perm_cond' 'pipe_poll' 'tick_do_update_jiffies64' 'tick_sched_do_timer' '__nf_ct_refresh_acct' 'blk_mq_get_request' 'do_nanosleep' 'pid_update_inode' 'tomoyo_supervisor' 'update_defense_level' 'task_dump_owner' 'blk_mq_run_hw_queue' 'ktime_get_real_seconds' 'find_get_pages_range_tag' 'rcu_gp_fqs_check_wake' '__nf_conntrack_find_get' 'find_next_bit' 'run_timer_softirq' 'ext4_free_inode' 'ep_poll' 'generic_fillattr' '__hrtimer_run_queues' 'tcp_add_backlog' syzkaller login: [ 67.864178][ T7212] ================================================================== [ 67.872321][ T7212] BUG: KCSAN: data-race in ktime_get_seconds / timekeeping_advance [ 67.880198][ T7212] [ 67.882527][ T7212] write to 0xffffffff86040b08 of 280 bytes by interrupt on cpu 1: [ 67.890363][ T7212] timekeeping_advance+0x893/0xd80 [ 67.895495][ T7212] update_wall_time+0x19/0x20 [ 67.900171][ T7212] tick_do_update_jiffies64+0x1ae/0x260 [ 67.905718][ T7212] tick_sched_do_timer+0xd4/0xe0 [ 67.910655][ T7212] tick_sched_timer+0x43/0xe0 [ 67.915326][ T7212] __hrtimer_run_queues+0x288/0x600 [ 67.920522][ T7212] hrtimer_interrupt+0x22a/0x480 [ 67.925467][ T7212] smp_apic_timer_interrupt+0xdc/0x280 [ 67.930925][ T7212] apic_timer_interrupt+0xf/0x20 [ 67.935856][ T7212] __kcsan_check_watchpoint+0x8e/0x180 [ 67.941307][ T7212] __tsan_read1+0x15/0x30 [ 67.945633][ T7212] nf_conntrack_tcp_packet+0x1929/0x3390 [ 67.951437][ T7212] nf_conntrack_in+0x410/0xa80 [ 67.956193][ T7212] ipv4_conntrack_in+0x27/0x40 [ 67.960941][ T7212] [ 67.963265][ T7212] read to 0xffffffff86040b80 of 8 bytes by task 7212 on cpu 0: [ 67.970801][ T7212] ktime_get_seconds+0x45/0x70 [ 67.975584][ T7212] tcp_rcv_established+0xeeb/0xf50 [ 67.980685][ T7212] tcp_v4_do_rcv+0x381/0x4e0 [ 67.985366][ T7212] __release_sock+0x135/0x1e0 [ 67.990027][ T7212] release_sock+0x61/0x160 [ 67.994441][ T7212] tcp_recvmsg+0x63b/0x1a30 [ 67.998928][ T7212] inet_recvmsg+0xbb/0x250 [ 68.003330][ T7212] sock_recvmsg+0x92/0xb0 [ 68.007650][ T7212] sock_read_iter+0x15f/0x1e0 [ 68.012312][ T7212] new_sync_read+0x389/0x4f0 [ 68.016890][ T7212] __vfs_read+0xb1/0xc0 [ 68.021053][ T7212] vfs_read+0x143/0x2c0 [ 68.025194][ T7212] ksys_read+0xd5/0x1b0 [ 68.029324][ T7212] [ 68.031634][ T7212] Reported by Kernel Concurrency Sanitizer on: [ 68.037773][ T7212] CPU: 0 PID: 7212 Comm: syz-fuzzer Not tainted 5.4.0-rc3+ #0 [ 68.045211][ T7212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 68.055269][ T7212] ================================================================== [ 68.063314][ T7212] Kernel panic - not syncing: panic_on_warn set ... [ 68.069901][ T7212] CPU: 0 PID: 7212 Comm: syz-fuzzer Not tainted 5.4.0-rc3+ #0 [ 68.077353][ T7212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 68.087401][ T7212] Call Trace: [ 68.090700][ T7212] dump_stack+0xf5/0x159 [ 68.094934][ T7212] panic+0x210/0x640 [ 68.098820][ T7212] ? sock_read_iter+0x15f/0x1e0 [ 68.103676][ T7212] ? vprintk_func+0x8d/0x140 [ 68.108257][ T7212] kcsan_report.cold+0xc/0x10 [ 68.112939][ T7212] __kcsan_setup_watchpoint+0x32e/0x4a0 [ 68.118476][ T7212] __tsan_read8+0x2c/0x30 [ 68.122795][ T7212] ktime_get_seconds+0x45/0x70 [ 68.127568][ T7212] tcp_rcv_established+0xeeb/0xf50 [ 68.132676][ T7212] ? ipv4_dst_check+0xc6/0xf0 [ 68.137346][ T7212] tcp_v4_do_rcv+0x381/0x4e0 [ 68.142138][ T7212] __release_sock+0x135/0x1e0 [ 68.146806][ T7212] release_sock+0x61/0x160 [ 68.151232][ T7212] tcp_recvmsg+0x63b/0x1a30 [ 68.155738][ T7212] inet_recvmsg+0xbb/0x250 [ 68.160155][ T7212] ? __tsan_read8+0x2c/0x30 [ 68.164663][ T7212] ? inet_sendpage+0x100/0x100 [ 68.169415][ T7212] sock_recvmsg+0x92/0xb0 [ 68.173751][ T7212] sock_read_iter+0x15f/0x1e0 [ 68.178426][ T7212] new_sync_read+0x389/0x4f0 [ 68.183012][ T7212] __vfs_read+0xb1/0xc0 [ 68.187158][ T7212] vfs_read+0x143/0x2c0 [ 68.191308][ T7212] ksys_read+0xd5/0x1b0 [ 68.195474][ T7212] __x64_sys_read+0x4c/0x60 [ 68.199971][ T7212] do_syscall_64+0xcc/0x370 [ 68.204467][ T7212] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 68.210342][ T7212] RIP: 0033:0x47c530 [ 68.214245][ T7212] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 68.233838][ T7212] RSP: 002b:000000c4202c97d8 EFLAGS: 00000212 ORIG_RAX: 0000000000000000 [ 68.242242][ T7212] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000047c530 [ 68.250201][ T7212] RDX: 0000000000001000 RSI: 000000c420300000 RDI: 0000000000000003 [ 68.258163][ T7212] RBP: 000000c4202c9830 R08: 0000000000000000 R09: 0000000000000000 [ 68.266121][ T7212] R10: 0000000000000000 R11: 0000000000000212 R12: 0000000000000002 [ 68.274078][ T7212] R13: ffffffffffffffff R14: 0000000000000004 R15: ffffffffffffffff [ 68.283445][ T7212] Kernel Offset: disabled [ 68.287775][ T7212] Rebooting in 86400 seconds..