[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   35.564248][   T25] audit: type=1800 audit(1570909112.450:25): pid=7067 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2447 res=0
[   35.584064][   T25] audit: type=1800 audit(1570909112.450:26): pid=7067 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2490 res=0
[   35.606781][   T25] audit: type=1800 audit(1570909112.450:27): pid=7067 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2469 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.10.45' (ECDSA) to the list of known hosts.
2019/10/12 19:38:43 fuzzer started
2019/10/12 19:38:44 dialing manager at 10.128.0.105:43913
2019/10/12 19:38:44 syscalls: 2523
2019/10/12 19:38:44 code coverage: enabled
2019/10/12 19:38:44 comparison tracing: enabled
2019/10/12 19:38:44 extra coverage: extra coverage is not supported by the kernel
2019/10/12 19:38:44 setuid sandbox: enabled
2019/10/12 19:38:44 namespace sandbox: enabled
2019/10/12 19:38:44 Android sandbox: /sys/fs/selinux/policy does not exist
2019/10/12 19:38:44 fault injection: enabled
2019/10/12 19:38:44 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2019/10/12 19:38:44 net packet injection: enabled
2019/10/12 19:38:44 net device setup: enabled
2019/10/12 19:38:44 concurrency sanitizer: enabled
syzkaller login: [   47.867463][    C1] ==================================================================
[   47.875608][    C1] BUG: KCSAN: data-race in tick_sched_do_timer / tick_sched_do_timer
[   47.883664][    C1] 
[   47.886035][    C1] read to 0xffffffff85caf310 of 4 bytes by interrupt on cpu 0:
[   47.893560][    C1]  tick_sched_do_timer+0x33/0xe0
[   47.898474][    C1]  tick_sched_timer+0x43/0xe0
[   47.903128][    C1]  __hrtimer_run_queues+0x288/0x600
[   47.908343][    C1]  hrtimer_interrupt+0x22a/0x480
[   47.913282][    C1]  smp_apic_timer_interrupt+0xdc/0x280
[   47.918713][    C1]  apic_timer_interrupt+0xf/0x20
[   47.923636][    C1]  __kcsan_check_watchpoint+0xa3/0x180
[   47.929067][    C1]  __tsan_read2+0x15/0x30
[   47.933373][    C1]  __netif_receive_skb_core+0x1c3/0x1a90
[   47.938979][    C1]  __netif_receive_skb_one_core+0x67/0xe0
[   47.944707][    C1]  __netif_receive_skb+0x37/0xf0
[   47.949619][    C1]  netif_receive_skb_internal+0x59/0x190
[   47.955224][    C1]  napi_gro_receive+0x28f/0x330
[   47.960052][    C1]  receive_buf+0x284/0x30b0
[   47.964521][    C1] 
[   47.966825][    C1] write to 0xffffffff85caf310 of 4 bytes by interrupt on cpu 1:
[   47.974430][    C1]  tick_sched_do_timer+0xc0/0xe0
[   47.979348][    C1]  tick_sched_timer+0x43/0xe0
[   47.984010][    C1]  __hrtimer_run_queues+0x288/0x600
[   47.989185][    C1]  hrtimer_interrupt+0x22a/0x480
[   47.994116][    C1]  smp_apic_timer_interrupt+0xdc/0x280
[   47.999550][    C1]  apic_timer_interrupt+0xf/0x20
[   48.004462][    C1]  __kcsan_check_watchpoint+0x71/0x180
[   48.009905][    C1]  __tsan_read8+0x15/0x30
[   48.014206][    C1]  tcp_poll+0x47d/0x6b0
[   48.018336][    C1]  sock_poll+0xed/0x250
[   48.022470][    C1]  ep_item_poll.isra.0+0x90/0x190
[   48.027469][    C1]  ep_send_events_proc+0x113/0x5c0
[   48.032557][    C1]  ep_scan_ready_list.constprop.0+0x189/0x500
[   48.038589][    C1] 
[   48.040889][    C1] Reported by Kernel Concurrency Sanitizer on:
[   48.047026][    C1] CPU: 1 PID: 7233 Comm: syz-fuzzer Not tainted 5.3.0+ #0
[   48.054103][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   48.064132][    C1] ==================================================================
[   48.072176][    C1] Kernel panic - not syncing: panic_on_warn set ...
[   48.084727][    C1] CPU: 1 PID: 7233 Comm: syz-fuzzer Not tainted 5.3.0+ #0
[   48.091816][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   48.101843][    C1] Call Trace:
[   48.105114][    C1]  <IRQ>
[   48.107948][    C1]  dump_stack+0xf5/0x159
[   48.112169][    C1]  panic+0x209/0x639
[   48.116130][    C1]  ? tcp_poll+0x47d/0x6b0
[   48.120445][    C1]  ? vprintk_func+0x8d/0x140
[   48.125013][    C1]  kcsan_report.cold+0xc/0x1b
[   48.129682][    C1]  __kcsan_setup_watchpoint+0x3ee/0x510
[   48.135204][    C1]  __tsan_write4+0x32/0x40
[   48.139607][    C1]  tick_sched_do_timer+0xc0/0xe0
[   48.144523][    C1]  tick_sched_timer+0x43/0xe0
[   48.149190][    C1]  __hrtimer_run_queues+0x288/0x600
[   48.154382][    C1]  ? tick_sched_do_timer+0xe0/0xe0
[   48.159475][    C1]  hrtimer_interrupt+0x22a/0x480
[   48.164398][    C1]  smp_apic_timer_interrupt+0xdc/0x280
[   48.169830][    C1]  ? smp_reschedule_interrupt+0x71/0x1d0
[   48.175440][    C1]  apic_timer_interrupt+0xf/0x20
[   48.180356][    C1]  </IRQ>
[   48.183283][    C1] RIP: 0010:__kcsan_check_watchpoint+0x71/0x180
[   48.189503][    C1] Code: 00 00 85 c9 0f 85 a6 00 00 00 4c 89 ee 4c 89 ef 44 0f b6 e2 48 b9 ff ff ff ff ff ff 00 00 48 c1 ee 0c 31 d2 48 21 cf 83 e6 3f <41> ba ab aa aa aa 4e 8d 4c 37 ff 8d 42 01 48 89 c2 49 0f af c2 89
[   48.209090][    C1] RSP: 0018:ffffc900016dfb18 EFLAGS: 00000206 ORIG_RAX: ffffffffffffff13
[   48.217474][    C1] RAX: 0000000000000000 RBX: ffff888126ac0040 RCX: 0000ffffffffffff
[   48.225421][    C1] RDX: 0000000000000000 RSI: 000000000000000a RDI: 0000ffff85c0aa50
[   48.233369][    C1] RBP: ffffc900016dfb40 R08: 0000000000000000 R09: 0000888126ac006f
[   48.241327][    C1] R10: 00000000aaaaaaab R11: ffffffff86042c18 R12: 0000000000000000
[   48.249282][    C1] R13: ffffffff85c0aa50 R14: 0000000000000008 R15: ffff888126ac0184
[   48.257242][    C1]  ? __sanitizer_cov_trace_switch+0x49/0x80
[   48.263119][    C1]  __tsan_read8+0x15/0x30
[   48.267519][    C1]  tcp_poll+0x47d/0x6b0
[   48.271660][    C1]  ? tcp_alloc_md5sig_pool+0x320/0x320
[   48.277093][    C1]  sock_poll+0xed/0x250
[   48.281227][    C1]  ? sock_read_iter+0x1e0/0x1e0
[   48.286143][    C1]  ep_item_poll.isra.0+0x90/0x190
[   48.291157][    C1]  ep_send_events_proc+0x113/0x5c0
[   48.296247][    C1]  ? __kcsan_setup_watchpoint+0x96/0x510
[   48.301966][    C1]  ep_scan_ready_list.constprop.0+0x189/0x500
[   48.308020][    C1]  ? ep_loop_check_proc+0x2f0/0x2f0
[   48.313206][    C1]  ep_poll+0xe3/0x900
[   48.317171][    C1]  ? wake_up_q+0x70/0x70
[   48.321392][    C1]  do_epoll_wait+0x162/0x180
[   48.325968][    C1]  __x64_sys_epoll_pwait+0xcd/0x170
[   48.331154][    C1]  do_syscall_64+0xcf/0x2f0
[   48.335639][    C1]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   48.341505][    C1] RIP: 0033:0x45b300
[   48.345390][    C1] Code: 0f 05 89 44 24 20 c3 cc cc cc 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 44 8b 54 24 1c 49 c7 c0 00 00 00 00 b8 19 01 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc cc cc cc cc cc cc cc 8b 7c 24 08 48 c7
[   48.364978][    C1] RSP: 002b:000000c4203a1860 EFLAGS: 00000246 ORIG_RAX: 0000000000000119
[   48.373365][    C1] RAX: ffffffffffffffda RBX: 00000000ffffffff RCX: 000000000045b300
[   48.381310][    C1] RDX: 0000000000000080 RSI: 000000c4203a18a0 RDI: 0000000000000004
[   48.389256][    C1] RBP: 000000c4203a1ea0 R08: 0000000000000000 R09: 0000000000000000
[   48.397204][    C1] R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000000002
[   48.405149][    C1] R13: ffffffffffffffff R14: 0000000000000004 R15: ffffffffffffffff
[   48.414533][    C1] Kernel Offset: disabled
[   48.418856][    C1] Rebooting in 86400 seconds..