I0801 19:57:42.842362   35936 x:0] ***************************
I0801 19:57:42.842736   35936 x:0] Args: [/syzkaller/managers/ptrace-proxy-sandbox-race/current/image -root /syzkaller/managers/ptrace-proxy-sandbox-race/workdir/gvisor_root -watchdog-action=panic -network=none -platform=ptrace -file-access=proxy -network=sandbox exec -user=0:0 -cap CAP_CHOWN -cap CAP_DAC_OVERRIDE -cap CAP_DAC_READ_SEARCH -cap CAP_FOWNER -cap CAP_FSETID -cap CAP_KILL -cap CAP_SETGID -cap CAP_SETUID -cap CAP_SETPCAP -cap CAP_LINUX_IMMUTABLE -cap CAP_NET_BIND_SERVICE -cap CAP_NET_BROADCAST -cap CAP_NET_ADMIN -cap CAP_NET_RAW -cap CAP_IPC_LOCK -cap CAP_IPC_OWNER -cap CAP_SYS_MODULE -cap CAP_SYS_RAWIO -cap CAP_SYS_CHROOT -cap CAP_SYS_PTRACE -cap CAP_SYS_PACCT -cap CAP_SYS_ADMIN -cap CAP_SYS_BOOT -cap CAP_SYS_NICE -cap CAP_SYS_RESOURCE -cap CAP_SYS_TIME -cap CAP_SYS_TTY_CONFIG -cap CAP_MKNOD -cap CAP_LEASE -cap CAP_AUDIT_WRITE -cap CAP_AUDIT_CONTROL -cap CAP_SETFCAP -cap CAP_MAC_OVERRIDE -cap CAP_MAC_ADMIN -cap CAP_SYSLOG -cap CAP_WAKE_ALARM -cap CAP_BLOCK_SUSPEND -cap CAP_AUDIT_READ ci-gvisor-ptrace-proxy-sandbox-race-3 /syz-fuzzer -executor=/syz-executor -name=vm-3 -arch=amd64 -manager=stdin -sandbox=none -procs=4 -v=0 -cover=false -debug=false -test=false]
I0801 19:57:42.843493   35936 x:0] Git Revision: 72627b310e89405fb0215d773405d73f305de993
I0801 19:57:42.843634   35936 x:0] PID: 35936
I0801 19:57:42.843763   35936 x:0] UID: 0, GID: 0
I0801 19:57:42.843875   35936 x:0] Configuration:
I0801 19:57:42.844007   35936 x:0] 		RootDir: /syzkaller/managers/ptrace-proxy-sandbox-race/workdir/gvisor_root
I0801 19:57:42.844097   35936 x:0] 		Platform: ptrace
I0801 19:57:42.844157   35936 x:0] 		FileAccess: proxy, overlay: false
I0801 19:57:42.844879   35936 x:0] 		Network: sandbox, logging: false
I0801 19:57:42.845278   35936 x:0] 		Strace: false, max size: 1024, syscalls: []
I0801 19:57:42.845421   35936 x:0] ***************************
I0801 19:57:42.854429   35839 x:0] EXEC: [/syz-fuzzer -executor=/syz-executor -name=vm-3 -arch=amd64 -manager=stdin -sandbox=none -procs=4 -v=0 -cover=false -debug=false -test=false]
2018/08/01 19:57:43 fuzzer started
2018/08/01 19:57:46 dialing manager at stdin
2018/08/01 19:57:46 syscalls: 774
2018/08/01 19:57:46 code coverage: debugfs is not enabled or not mounted
2018/08/01 19:57:46 comparison tracing: debugfs is not enabled or not mounted
2018/08/01 19:57:46 setuid sandbox: enabled
2018/08/01 19:57:46 namespace sandbox: enabled
2018/08/01 19:57:46 fault injection: CONFIG_FAULT_INJECTION is not enabled
2018/08/01 19:57:46 leak checking: debugfs is not enabled or not mounted
2018/08/01 19:57:46 net packed injection: /dev/net/tun does not exist
2018/08/01 19:57:46 net device setup: ip command is not found
19:58:08 executing program 0:

19:58:08 executing program 1:

19:58:08 executing program 2:

19:58:08 executing program 3:

19:58:08 executing program 0:
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pwrite64(r0, &(0x7f00000004c0), 0x0, 0x0)

19:58:08 executing program 3:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
io_setup(0x1, &(0x7f0000000040)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000004c0)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f00000010c0), 0x3aa, 0x1000000000000000}])
clock_gettime(0x0, &(0x7f0000000700)={<r2=>0x0})
io_getevents(r1, 0x7, 0xa41, &(0x7f0000000240)=[{}], &(0x7f0000000280)={r2})
io_destroy(r1)

19:58:08 executing program 1:
io_setup(0x10000, &(0x7f0000000140))

19:58:08 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424adee901d2da75af1f02acc7edbcd7a071fb35331ce39c5a")
close(r0)

19:58:09 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x0)
r1 = dup2(r0, r0)
ioctl$sock_inet_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000000))

19:58:09 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
read(r0, &(0x7f0000001240)=""/4096, 0x1000)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00000000c0))
r1 = syz_open_pts(r0, 0x2)
poll(&(0x7f0000000080)=[{r1}], 0x1, 0x200)
dup3(r1, r0, 0x0)
write(r0, &(0x7f0000000100)="06", 0x1)

19:58:09 executing program 0:
r0 = perf_event_open(&(0x7f0000c86f88)={0x2, 0x70, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00001bf000/0x1000)=nil, 0x1000, 0x0, 0x11, r0, 0x0)
clock_gettime(0x0, &(0x7f0000000140)={<r1=>0x0})
ppoll(&(0x7f0000000000)=[{r0}], 0xf, &(0x7f00000001c0)={r1}, &(0x7f0000000100), 0x8)
mmap(&(0x7f00001bd000/0x3000)=nil, 0x3000, 0x0, 0x20011, r0, 0x0)

19:58:09 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000080)={0x10})
syz_open_pts(r0, 0x0)
dup3(0xffffffffffffffff, r0, 0x0)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x0)

==================
WARNING: DATA RACE
Read at 0x00c420439568 by goroutine 333:
  gvisor.googlesource.com/gvisor/pkg/waiter.(*Queue).Notify()
      pkg/waiter/waiter.go:187 +0xa4
  gvisor.googlesource.com/gvisor/pkg/sentry/fs/tty.(*queue).writeBytes()
      pkg/sentry/fs/tty/queue.go:189 +0x1e6
  gvisor.googlesource.com/gvisor/pkg/sentry/fs/tty.(*queue).write()
      pkg/sentry/fs/tty/queue.go:170 +0x165
  gvisor.googlesource.com/gvisor/pkg/sentry/fs/tty.(*lineDiscipline).outputQueueWrite()
      pkg/sentry/fs/tty/line_discipline.go:175 +0xf8
  gvisor.googlesource.com/gvisor/pkg/sentry/fs/tty.(*slaveFileOperations).Write()
      pkg/sentry/fs/tty/slave.go:130 +0xe7
  gvisor.googlesource.com/gvisor/pkg/sentry/fs.(*File).Writev()
      pkg/sentry/fs/file.go:271 +0x1ba
  gvisor.googlesource.com/gvisor/pkg/sentry/syscalls/linux.writev()
      pkg/sentry/syscalls/linux/sys_write.go:191 +0xa1
  gvisor.googlesource.com/gvisor/pkg/sentry/syscalls/linux.Write()
      pkg/sentry/syscalls/linux/sys_write.go:67 +0x295
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).executeSyscall()
      pkg/sentry/kernel/task_syscall.go:162 +0x14e
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).doSyscallInvoke()
      pkg/sentry/kernel/task_syscall.go:278 +0x7d
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).doSyscallEnter()
      pkg/sentry/kernel/task_syscall.go:241 +0xc3
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).doSyscall()
      pkg/sentry/kernel/task_syscall.go:216 +0x19c
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*runApp).execute()
      pkg/sentry/kernel/task_run.go:217 +0x1501
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).run()
      pkg/sentry/kernel/task_run.go:95 +0x264

Previous write at 0x00c420439568 by goroutine 335:
  gvisor.googlesource.com/gvisor/pkg/waiter.(*Queue).EventRegister()
      pkg/waiter/waiter.go:169 +0x59
  gvisor.googlesource.com/gvisor/pkg/sentry/fs/tty.(*slaveFileOperations).EventRegister()
      pkg/sentry/fs/tty/slave.go:109 +0x10f
  gvisor.googlesource.com/gvisor/pkg/sentry/fs.(*File).EventRegister()
      pkg/sentry/fs/file.go:175 +0x6a
  gvisor.googlesource.com/gvisor/pkg/sentry/syscalls.(*PollFD).initReadiness()
      pkg/sentry/syscalls/polling.go:61 +0x2a9
  gvisor.googlesource.com/gvisor/pkg/sentry/syscalls.Poll()
      pkg/sentry/syscalls/polling.go:96 +0x17c
  gvisor.googlesource.com/gvisor/pkg/sentry/syscalls/linux.doPoll()
      pkg/sentry/syscalls/linux/sys_poll.go:70 +0x2b5
  gvisor.googlesource.com/gvisor/pkg/sentry/syscalls/linux.poll()
      pkg/sentry/syscalls/linux/sys_poll.go:289 +0x63
  gvisor.googlesource.com/gvisor/pkg/sentry/syscalls/linux.Poll()
      pkg/sentry/syscalls/linux/sys_poll.go:307 +0x60
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).executeSyscall()
      pkg/sentry/kernel/task_syscall.go:162 +0x14e
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).doSyscallInvoke()
      pkg/sentry/kernel/task_syscall.go:278 +0x7d
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).doSyscallEnter()
      pkg/sentry/kernel/task_syscall.go:241 +0xc3
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).doSyscall()
      pkg/sentry/kernel/task_syscall.go:216 +0x19c
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*runApp).execute()
      pkg/sentry/kernel/task_run.go:217 +0x1501
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).run()
      pkg/sentry/kernel/task_run.go:95 +0x264

Goroutine 333 (running) created at:
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).Start()
      pkg/sentry/kernel/task_start.go:258 +0x193
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).Clone()
      pkg/sentry/kernel/task_clone.go:316 +0x110a
  gvisor.googlesource.com/gvisor/pkg/sentry/syscalls/linux.clone()
      pkg/sentry/syscalls/linux/sys_thread.go:157 +0x22e
  gvisor.googlesource.com/gvisor/pkg/sentry/syscalls/linux.Clone()
      pkg/sentry/syscalls/linux/sys_thread.go:171 +0x80
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).executeSyscall()
      pkg/sentry/kernel/task_syscall.go:162 +0x14e
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).doSyscallInvoke()
      pkg/sentry/kernel/task_syscall.go:278 +0x7d
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).doSyscallEnter()
      pkg/sentry/kernel/task_syscall.go:241 +0xc3
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).doSyscall()
      pkg/sentry/kernel/task_syscall.go:216 +0x19c
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*runApp).execute()
      pkg/sentry/kernel/task_run.go:217 +0x1501
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).run()
      pkg/sentry/kernel/task_run.go:95 +0x264

Goroutine 335 (running) created at:
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).Start()
      pkg/sentry/kernel/task_start.go:258 +0x193
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).Clone()
      pkg/sentry/kernel/task_clone.go:316 +0x110a
  gvisor.googlesource.com/gvisor/pkg/sentry/syscalls/linux.clone()
      pkg/sentry/syscalls/linux/sys_thread.go:157 +0x22e
  gvisor.googlesource.com/gvisor/pkg/sentry/syscalls/linux.Clone()
      pkg/sentry/syscalls/linux/sys_thread.go:171 +0x80
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).executeSyscall()
      pkg/sentry/kernel/task_syscall.go:162 +0x14e
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).doSyscallInvoke()
      pkg/sentry/kernel/task_syscall.go:278 +0x7d
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).doSyscallEnter()
      pkg/sentry/kernel/task_syscall.go:241 +0xc3
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).doSyscall()
      pkg/sentry/kernel/task_syscall.go:216 +0x19c
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*runApp).execute()
      pkg/sentry/kernel/task_run.go:217 +0x1501
  gvisor.googlesource.com/gvisor/pkg/sentry/kernel.(*Task).run()
      pkg/sentry/kernel/task_run.go:95 +0x264
==================
W0801 19:58:10.181525   35936 x:0] FATAL ERROR: error getting processes for container: error executing in sandbox: EOF
error getting processes for container: error executing in sandbox: EOF
W0801 19:58:10.181166   35832 x:0] FATAL ERROR: error running container: error waiting on container "ci-gvisor-ptrace-proxy-sandbox-race-3": EOF
error running container: error waiting on container "ci-gvisor-ptrace-proxy-sandbox-race-3": EOF