[....] Starting enhanced syslogd: rsyslogd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting periodic command scheduler: cron�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[....] Starting OpenBSD Secure Shell server: sshd�[?25l�[?1c�7�[1G[�[32m ok �[39;49m�8�[?25h�[?0c.
[ 59.918118][ T27] kauditd_printk_skb: 7 callbacks suppressed
[ 59.918135][ T27] audit: type=1800 audit(1580792598.680:29): pid=7768 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2465 res=0
[ 59.944463][ T27] audit: type=1800 audit(1580792598.680:30): pid=7768 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2456 res=0
Debian GNU/Linux 7 syzkaller ttyS0
Warning: Permanently added '10.128.10.15' (ECDSA) to the list of known hosts.
2020/02/04 05:03:28 fuzzer started
2020/02/04 05:03:31 dialing manager at 10.128.0.105:41149
2020/02/04 05:03:31 syscalls: 2904
2020/02/04 05:03:31 code coverage: enabled
2020/02/04 05:03:31 comparison tracing: enabled
2020/02/04 05:03:31 extra coverage: enabled
2020/02/04 05:03:31 setuid sandbox: enabled
2020/02/04 05:03:31 namespace sandbox: enabled
2020/02/04 05:03:31 Android sandbox: /sys/fs/selinux/policy does not exist
2020/02/04 05:03:31 fault injection: enabled
2020/02/04 05:03:31 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2020/02/04 05:03:31 net packet injection: enabled
2020/02/04 05:03:31 net device setup: enabled
2020/02/04 05:03:31 concurrency sanitizer: enabled
2020/02/04 05:03:31 devlink PCI setup: PCI device 0000:00:10.0 is not available
syzkaller login: [ 76.231135][ T7938] KCSAN: could not find function: 'poll_schedule_timeout'
[ 89.142826][ T7938] KCSAN: could not find function: 'decode_data'
2020/02/04 05:03:48 adding functions to KCSAN blacklist: 'do_syslog' 'do_nanosleep' 'ktime_get_real_seconds' 'fasync_remove_entry' 'kcm_rfree' 'run_timer_softirq' '__mark_inode_dirty' 'pid_update_inode' '__perf_event_overflow' 'ep_poll' 'xas_find_marked' 'add_timer' 'ktime_get_seconds' 'blk_mq_run_hw_queue' '__delete_from_page_cache' 'relay_switch_subbuf' 'generic_write_end' 'generic_fillattr' 'kernfs_refresh_inode' 'blk_mq_sched_dispatch_requests' 'poll_schedule_timeout' 'futex_wait_queue_me' 'shmem_file_read_iter' 'ext4_free_inode' 'ext4_mark_iloc_dirty' 'mm_update_next_owner' '__add_to_page_cache_locked' 'tick_sched_do_timer' 'timer_clear_idle' 'ovl_write_iter' 'watchdog' 'find_get_pages_range_tag' 'pcpu_alloc' '__dentry_kill' 'iomap_dio_bio_actor' 'queue_access_lock' 'padata_find_next' 'tick_nohz_next_event' 'sit_tunnel_xmit' '__filemap_fdatawrite_range' 'iptunnel_xmit' 'generic_file_read_iter' 'deadline_remove_request' 'bio_endio' '__skb_try_recv_from_queue' 'do_wait' 'kauditd_thread' '__find_get_block' 'file_remove_privs' 'shmem_add_to_page_cache' 'echo_char' 'inode_owner_or_capable' 'enqueue_timer' 'vti_tunnel_xmit' 'blk_mq_free_request' 'br_handle_frame_finish' 'ext4_has_free_clusters' 'do_exit' 'do_signal_stop' 'install_new_memslots' 'sbitmap_queue_clear' 'tomoyo_supervisor' 'find_next_bit' 'clear_inode' 'shmem_getpage_gfp' 'rcu_gp_fqs_loop' '__rcu_read_unlock' 'mod_timer' 'other_inode_match' '__snd_rawmidi_transmit_ack' 'lookup_fast' 'vm_area_dup' 'dd_has_work' 'snd_seq_check_queue' 'wbc_detach_inode' 'xas_clear_mark' '__lru_cache_add' 'snd_seq_prioq_cell_out' 'copy_process' 'blk_mq_dispatch_rq_list' 'evict' 'n_tty_receive_buf_common' '__ipv6_dev_get_saddr' '__ext4_new_inode' 'ext4_free_inodes_count' 'audit_log_start' 'wbt_issue' 'blk_stat_add' 'hrtimer_interrupt' 'tick_do_update_jiffies64' 'ext4_nonda_switch' 'fsnotify' 'iput' 'atime_needs_update' 'wbt_done' 'lruvec_lru_size' 'do_readlinkat' 'tick_nohz_idle_stop_tick' 'blk_mq_get_request' 'vfs_readlink' 'page_counter_charge' '__hrtimer_run_queues' 'handle_edge_irq' 'do_mpage_readpage' 'rcu_gp_fqs_check_wake' 'common_perm_cond' 'ext4_writepages' '__remove_assoc_queue' '__writeback_single_inode' 'decode_data' 'ext4_mb_good_group' 'page_counter_try_charge' 'process_srcu' 'taskstats_exit' 'ext4_handle_inode_extension' '__d_lookup_done' 'do_try_to_free_pages' 'ext4_alloc_da_blocks' 'snd_rawmidi_kernel_write1'
[ 97.966741][ C0] ==================================================================
[ 97.974893][ C0] BUG: KCSAN: data-race in ktime_get_with_offset / timekeeping_advance
[ 97.983107][ C0]
[ 97.985427][ C0] write to 0xffffffff8624b2c8 of 280 bytes by interrupt on cpu 1:
[ 97.993218][ C0] timekeeping_advance+0x88e/0xd80
[ 97.998319][ C0] update_wall_time+0x19/0x20
[ 98.002985][ C0] tick_do_update_jiffies64+0x1a4/0x250
[ 98.008587][ C0] tick_sched_do_timer+0xd4/0xe0
[ 98.013512][ C0] tick_sched_timer+0x43/0xe0
[ 98.018181][ C0] __hrtimer_run_queues+0x274/0x5f0
[ 98.023369][ C0] hrtimer_interrupt+0x22a/0x480
[ 98.028293][ C0] smp_apic_timer_interrupt+0xdc/0x280
[ 98.033848][ C0] apic_timer_interrupt+0xf/0x20
[ 98.038880][ C0] native_safe_halt+0xe/0x10
[ 98.043456][ C0] arch_cpu_idle+0xa/0x10
[ 98.047769][ C0] default_idle_call+0x1e/0x40
[ 98.052517][ C0] do_idle+0x1c2/0x290
[ 98.056564][ C0] cpu_startup_entry+0x1b/0x20
[ 98.061354][ C0] start_secondary+0x168/0x1b0
[ 98.066102][ C0] secondary_startup_64+0xa4/0xb0
[ 98.071114][ C0]
[ 98.073459][ C0] read to 0xffffffff8624b2e8 of 8 bytes by interrupt on cpu 0:
[ 98.080988][ C0] ktime_get_with_offset+0x136/0x230
[ 98.086299][ C0] netif_receive_skb_list_internal+0x551/0x830
[ 98.092442][ C0] gro_normal_list.part.0+0x3a/0xb0
[ 98.097625][ C0] gro_normal_one+0x162/0x170
[ 98.102330][ C0] napi_gro_receive+0x288/0x300
[ 98.107210][ C0] receive_buf+0x284/0x30b0
[ 98.111692][ C0] virtnet_poll+0x436/0x7d0
[ 98.116172][ C0] net_rx_action+0x3ae/0xa90
[ 98.120747][ C0] __do_softirq+0x115/0x33f
[ 98.125282][ C0] irq_exit+0xbb/0xe0
[ 98.129242][ C0] do_IRQ+0x81/0x130
[ 98.133124][ C0] ret_from_intr+0x0/0x21
[ 98.137435][ C0] native_safe_halt+0xe/0x10
[ 98.142011][ C0] arch_cpu_idle+0xa/0x10
[ 98.146318][ C0] default_idle_call+0x1e/0x40
[ 98.151114][ C0] do_idle+0x1c2/0x290
[ 98.155214][ C0] cpu_startup_entry+0x1b/0x20
[ 98.160007][ C0] rest_init+0xec/0xf6
[ 98.164059][ C0] arch_call_rest_init+0x17/0x37
[ 98.168978][ C0] start_kernel+0x838/0x85e
[ 98.173471][ C0] x86_64_start_reservations+0x29/0x2b
[ 98.178919][ C0] x86_64_start_kernel+0x72/0x76
[ 98.183841][ C0] secondary_startup_64+0xa4/0xb0
[ 98.188883][ C0]
[ 98.191187][ C0] Reported by Kernel Concurrency Sanitizer on:
[ 98.197327][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 5.5.0-rc1-syzkaller #0
[ 98.205196][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 98.215373][ C0] ==================================================================
[ 98.223429][ C0] Kernel panic - not syncing: panic_on_warn set ...
[ 98.230050][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 5.5.0-rc1-syzkaller #0
[ 98.237966][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 98.248112][ C0] Call Trace:
[ 98.251381][ C0]
[ 98.254298][ C0] dump_stack+0x11d/0x181
[ 98.258620][ C0] panic+0x210/0x640
[ 98.262509][ C0] ? vprintk_func+0x8d/0x140
[ 98.267122][ C0] kcsan_report.cold+0xc/0xd
[ 98.271696][ C0] kcsan_setup_watchpoint+0x3fe/0x460
[ 98.277050][ C0] __tsan_read8+0xc6/0x100
[ 98.281459][ C0] ktime_get_with_offset+0x136/0x230
[ 98.286750][ C0] netif_receive_skb_list_internal+0x551/0x830
[ 98.292940][ C0] ? __rcu_read_unlock+0x66/0x3d0
[ 98.297958][ C0] gro_normal_list.part.0+0x3a/0xb0
[ 98.303141][ C0] ? __write_once_size+0x91/0x110
[ 98.308157][ C0] gro_normal_one+0x162/0x170
[ 98.312820][ C0] napi_gro_receive+0x288/0x300
[ 98.317706][ C0] receive_buf+0x284/0x30b0
[ 98.322210][ C0] ? virtqueue_get_buf_ctx+0x4fd/0x5c0
[ 98.327693][ C0] ? virtqueue_get_buf+0x31/0x40
[ 98.332619][ C0] virtnet_poll+0x436/0x7d0
[ 98.337117][ C0] ? rcu_dynticks_curr_cpu_in_eqs+0x70/0xa0
[ 98.343009][ C0] net_rx_action+0x3ae/0xa90
[ 98.347641][ C0] __do_softirq+0x115/0x33f
[ 98.352140][ C0] irq_exit+0xbb/0xe0
[ 98.356113][ C0] do_IRQ+0x81/0x130
[ 98.359998][ C0] common_interrupt+0xf/0xf
[ 98.364476][ C0]
[ 98.367397][ C0] RIP: 0010:native_safe_halt+0xe/0x10
[ 98.372763][ C0] Code: cc cc cc cc cc cc cc cc cc cc cc cc e9 07 00 00 00 0f 00 2d 4c e6 59 00 f4 c3 66 90 e9 07 00 00 00 0f 00 2d 3c e6 59 00 fb f4 cc 55 48 89 e5 41 55 41 54 53 e8 d2 57 91 fc e8 fd da ab fd 0f
[ 98.392398][ C0] RSP: 0018:ffffffff85c03df8 EFLAGS: 00000286 ORIG_RAX: ffffffffffffffda
[ 98.400800][ C0] RAX: 0000000000000000 RBX: ffffffff85c2b780 RCX: ffffffff82546c55
[ 98.408828][ C0] RDX: 0000000000000000 RSI: ffffffff82546c5e RDI: 0000000000000005
[ 98.416789][ C0] RBP: ffffffff85c03e18 R08: ffffffff85c2b780 R09: 0000ffff85a2d160
[ 98.424751][ C0] R10: 0000ffff85c03e08 R11: 0000ffff85a2d167 R12: 0000000000000000
[ 98.432745][ C0] R13: ffffffff85c2b780 R14: 0000000000000000 R15: 0000000000000000
[ 98.440715][ C0] ? debug_smp_processor_id+0x35/0x137
[ 98.446166][ C0] ? debug_smp_processor_id+0x3e/0x137
[ 98.451618][ C0] ? default_idle+0x26/0x180
[ 98.456206][ C0] arch_cpu_idle+0xa/0x10
[ 98.460529][ C0] default_idle_call+0x1e/0x40
[ 98.465285][ C0] do_idle+0x1c2/0x290
[ 98.469343][ C0] ? debug_smp_processor_id+0x43/0x137
[ 98.474786][ C0] cpu_startup_entry+0x1b/0x20
[ 98.479536][ C0] rest_init+0xec/0xf6
[ 98.483590][ C0] ? trace_event_define_fields_vector_free_moved+0xb4/0xb4
[ 98.490774][ C0] arch_call_rest_init+0x17/0x37
[ 98.495709][ C0] start_kernel+0x838/0x85e
[ 98.500197][ C0] x86_64_start_reservations+0x29/0x2b
[ 98.505643][ C0] x86_64_start_kernel+0x72/0x76
[ 98.510563][ C0] secondary_startup_64+0xa4/0xb0
[ 98.516895][ C0] Kernel Offset: disabled
[ 98.521215][ C0] Rebooting in 86400 seconds..