[   53.345112][   T26] audit: type=1800 audit(1579134555.933:27): pid=7872 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2469 res=0
[   53.383562][   T26] audit: type=1800 audit(1579134556.033:28): pid=7872 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2450 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   54.186065][   T26] audit: type=1800 audit(1579134556.833:29): pid=7872 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2465 res=0
[   54.206170][   T26] audit: type=1800 audit(1579134556.833:30): pid=7872 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2456 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.81' (ECDSA) to the list of known hosts.
2020/01/16 00:29:24 fuzzer started
2020/01/16 00:29:26 dialing manager at 10.128.0.105:45663
2020/01/16 00:29:26 syscalls: 2836
2020/01/16 00:29:26 code coverage: enabled
2020/01/16 00:29:26 comparison tracing: enabled
2020/01/16 00:29:26 extra coverage: enabled
2020/01/16 00:29:26 setuid sandbox: enabled
2020/01/16 00:29:26 namespace sandbox: enabled
2020/01/16 00:29:26 Android sandbox: /sys/fs/selinux/policy does not exist
2020/01/16 00:29:26 fault injection: enabled
2020/01/16 00:29:26 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2020/01/16 00:29:26 net packet injection: enabled
2020/01/16 00:29:26 net device setup: enabled
2020/01/16 00:29:26 concurrency sanitizer: enabled
2020/01/16 00:29:26 devlink PCI setup: PCI device 0000:00:10.0 is not available
syzkaller login: [   66.730262][ T8043] KCSAN: could not find function: 'poll_schedule_timeout'
2020/01/16 00:29:38 adding functions to KCSAN blacklist: 'tick_sched_do_timer' 'pipe_double_lock' 'fasync_remove_entry' 'kcm_rcv_strparser' '__hrtimer_run_queues' 'taskstats_exit' 'add_timer' 'kauditd_thread' 'n_tty_receive_buf_common' 'ext4_free_inodes_count' 'vfs_fsync_range' 'audit_log_start' 'snd_seq_fifo_event_in' 'timer_clear_idle' 'poll_schedule_timeout' 'l2tp_tunnel_del_work' 'wbt_issue' 'tick_do_update_jiffies64' 'blk_mq_get_request' 'futex_wait_queue_me' '__ext4_new_inode' 'xas_find_marked' 'vm_area_dup' 'fat12_ent_put' '__add_to_page_cache_locked' 'blk_mq_dispatch_rq_list' 'do_syslog' 'blk_mq_run_hw_queue' '__snd_rawmidi_transmit_ack' 'ktime_get_real_seconds' 'do_sys_open' 'del_timer' 'ext4_has_free_clusters' 'pcpu_alloc' 'mm_update_next_owner' 'ext4_sync_file' 'ext4_free_inode' 'do_signal_stop' '__delete_from_page_cache' 'tomoyo_supervisor' 'rcu_gp_fqs_loop' 'do_wait' 'run_timer_softirq' 'ext4_mb_good_group' 'snd_seq_check_queue' 'xas_clear_mark' 'enqueue_timer' 'ktime_get_ts64' 'generic_fillattr' '__get_user_pages' 'queue_access_lock' 'rcu_gp_fqs_check_wake' 'iomap_dio_bio_actor' 'find_get_pages_range_tag' 'alloc_pid' 'tick_nohz_idle_stop_tick' 'echo_char' 'dd_has_work' 'ext4_mark_iloc_dirty' '__fput' '__rcu_read_unlock' 'generic_write_end' '__mark_inode_dirty' 'ext4_nonda_switch' 'complete_signal' 'install_new_memslots' 'ep_poll' 'do_nanosleep' 'blk_mq_sched_dispatch_requests' 'copy_process' 'find_next_bit' 'wbt_done' 'iput' 'mod_timer' 'sit_tunnel_xmit' '__writeback_single_inode' 
[  300.619912][ T8044] ==================================================================
[  300.628201][ T8044] BUG: KCSAN: data-race in __acct_update_integrals / mmap_region
[  300.635917][ T8044] 
[  300.638262][ T8044] read to 0xffff8881247f6a40 of 8 bytes by interrupt on cpu 1:
[  300.645833][ T8044]  __acct_update_integrals+0x1b1/0x1e0
[  300.651396][ T8044]  acct_account_cputime+0x4e/0x60
[  300.656442][ T8044]  account_user_time+0xb2/0xc0
[  300.661383][ T8044]  irqtime_account_process_tick.isra.0+0x14e/0x1b0
[  300.667940][ T8044]  account_process_tick+0x14e/0x190
[  300.673169][ T8044]  update_process_times+0x29/0x80
[  300.678207][ T8044]  tick_sched_handle+0x75/0x100
[  300.683078][ T8044]  tick_sched_timer+0x58/0xe0
[  300.687797][ T8044]  __hrtimer_run_queues+0x274/0x5f0
[  300.693007][ T8044]  hrtimer_interrupt+0x22a/0x480
[  300.698653][ T8044]  smp_apic_timer_interrupt+0xdc/0x280
[  300.704709][ T8044]  apic_timer_interrupt+0xf/0x20
[  300.709653][ T8044] 
[  300.711991][ T8044] write to 0xffff8881247f6a40 of 8 bytes by task 8044 on cpu 0:
[  300.719629][ T8044]  mmap_region+0x328/0xd50
[  300.724063][ T8044]  do_mmap+0x6c8/0xba0
[  300.728135][ T8044]  vm_mmap_pgoff+0x12d/0x190
[  300.732735][ T8044]  ksys_mmap_pgoff+0x99/0x420
[  300.737420][ T8044]  __x64_sys_mmap+0x2e/0x40
[  300.741990][ T8044]  do_syscall_64+0xcc/0x3a0
[  300.746628][ T8044]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  300.752505][ T8044] 
[  300.754829][ T8044] Reported by Kernel Concurrency Sanitizer on:
[  300.761048][ T8044] CPU: 0 PID: 8044 Comm: syz-fuzzer Not tainted 5.5.0-rc1-syzkaller #0
[  300.769282][ T8044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  300.779412][ T8044] ==================================================================
[  300.787584][ T8044] Kernel panic - not syncing: panic_on_warn set ...
[  300.795571][ T8044] CPU: 0 PID: 8044 Comm: syz-fuzzer Not tainted 5.5.0-rc1-syzkaller #0
[  300.803804][ T8044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  300.813865][ T8044] Call Trace:
[  300.817158][ T8044]  dump_stack+0x11d/0x181
[  300.821494][ T8044]  panic+0x210/0x640
[  300.825406][ T8044]  ? __read_once_size+0x5a/0xe0
[  300.830366][ T8044]  ? vprintk_func+0x8d/0x140
[  300.835072][ T8044]  kcsan_report.cold+0xc/0xd
[  300.839656][ T8044]  kcsan_setup_watchpoint+0x3fe/0x460
[  300.845057][ T8044]  __tsan_unaligned_write8+0xc7/0x110
[  300.850441][ T8044]  mmap_region+0x328/0xd50
[  300.854971][ T8044]  do_mmap+0x6c8/0xba0
[  300.859756][ T8044]  vm_mmap_pgoff+0x12d/0x190
[  300.864371][ T8044]  ksys_mmap_pgoff+0x99/0x420
[  300.869065][ T8044]  ? debug_smp_processor_id+0x43/0x137
[  300.874643][ T8044]  __x64_sys_mmap+0x2e/0x40
[  300.879219][ T8044]  do_syscall_64+0xcc/0x3a0
[  300.883735][ T8044]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  300.889618][ T8044] RIP: 0033:0x45b014
[  300.893514][ T8044] Code: 03 cc cc cc cc cc 48 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 44 8b 54 24 1c 44 8b 44 24 20 44 8b 4c 24 24 b8 09 00 00 00 0f 05 <48> 3d 01 f0 ff ff 76 15 48 f7 d0 48 ff c0 48 c7 44 24 28 00 00 00
[  300.913334][ T8044] RSP: 002b:000000c420283bc8 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  300.921748][ T8044] RAX: ffffffffffffffda RBX: 0000000000000022 RCX: 000000000045b014
[  300.929715][ T8044] RDX: 0000000000000003 RSI: 0000000000008000 RDI: 000000c41ef6c000
[  300.937686][ T8044] RBP: 000000c420283c38 R08: 00000000ffffffff R09: 0000000000000000
[  300.945757][ T8044] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000000
[  300.953725][ T8044] R13: 0000000000000003 R14: 0000000000000003 R15: 0000000000000003
[  300.963279][ T8044] Kernel Offset: disabled
[  300.967609][ T8044] Rebooting in 86400 seconds..