Warning: Permanently added '10.128.1.38' (ECDSA) to the list of known hosts. 2021/05/20 11:58:24 fuzzer started 2021/05/20 11:58:24 dialing manager at 10.128.0.163:43699 2021/05/20 11:58:25 syscalls: 1997 2021/05/20 11:58:25 code coverage: enabled 2021/05/20 11:58:25 comparison tracing: enabled 2021/05/20 11:58:25 extra coverage: enabled 2021/05/20 11:58:25 setuid sandbox: enabled 2021/05/20 11:58:25 namespace sandbox: enabled 2021/05/20 11:58:25 Android sandbox: enabled 2021/05/20 11:58:25 fault injection: enabled 2021/05/20 11:58:25 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2021/05/20 11:58:25 net packet injection: /dev/net/tun does not exist 2021/05/20 11:58:25 net device setup: enabled 2021/05/20 11:58:25 concurrency sanitizer: enabled 2021/05/20 11:58:25 devlink PCI setup: PCI device 0000:00:10.0 is not available 2021/05/20 11:58:25 USB emulation: /dev/raw-gadget does not exist 2021/05/20 11:58:25 hci packet injection: /dev/vhci does not exist 2021/05/20 11:58:25 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist 2021/05/20 11:58:25 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist 2021/05/20 11:58:25 suppressing KCSAN reports in functions: 'blk_mq_dispatch_rq_list' 'dd_has_work' 'tick_nohz_next_event' 'audit_log_start' '__xa_clear_mark' '__ext4_new_inode' '_find_next_bit' 'blk_mq_sched_dispatch_requests' 'kauditd_thread' 2021/05/20 11:58:25 fetching corpus: 0, signal 0/2000 (executing program) [ 20.761278][ T1746] ================================================================== [ 20.764188][ T1746] BUG: KCSAN: data-race in __send_signal / futex_wait_queue_me [ 20.767186][ T1746] [ 20.767908][ T1746] write to 0xffff8881047b90ac of 4 bytes by task 1749 on cpu 0: [ 20.769830][ T1746] futex_wait_queue_me+0x198/0x260 [ 20.770912][ T1746] futex_wait+0x143/0x430 [ 20.771880][ T1746] do_futex+0x9d8/0x1ee0 [ 20.772580][ T1746] __se_sys_futex+0x21c/0x380 [ 20.773581][ T1746] __x64_sys_futex+0x74/0x80 [ 20.774466][ T1746] do_syscall_64+0x4a/0x90 [ 20.775226][ T1746] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 20.776700][ T1746] [ 20.777120][ T1746] read to 0xffff8881047b90ac of 4 bytes by task 1746 on cpu 1: [ 20.778756][ T1746] __send_signal+0x282/0x760 [ 20.779784][ T1746] send_signal+0x281/0x390 [ 20.780533][ T1746] do_send_specific+0x13d/0x1c0 [ 20.782351][ T1746] __x64_sys_tgkill+0x108/0x140 [ 20.787182][ T1746] do_syscall_64+0x4a/0x90 [ 20.791576][ T1746] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 20.797444][ T1746] [ 20.799758][ T1746] Reported by Kernel Concurrency Sanitizer on: 2021/05/20 11:58:25 fetching corpus: 50, signal 18895/22288 (executing program) [ 20.805892][ T1746] CPU: 1 PID: 1746 Comm: syz-fuzzer Not tainted 5.13.0-rc2-syzkaller #0 [ 20.814188][ T1746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 20.824217][ T1746] ================================================================== 2021/05/20 11:58:25 fetching corpus: 100, signal 30272/34785 (executing program) 2021/05/20 11:58:26 fetching corpus: 150, signal 34134/39901 (executing program) 2021/05/20 11:58:26 fetching corpus: 200, signal 39079/45953 (executing program) 2021/05/20 11:58:26 fetching corpus: 249, signal 42404/50362 (executing program) 2021/05/20 11:58:26 fetching corpus: 299, signal 47339/56056 (executing program) 2021/05/20 11:58:26 fetching corpus: 349, signal 50214/59810 (executing program) 2021/05/20 11:58:26 fetching corpus: 399, signal 53450/63751 (executing program) 2021/05/20 11:58:26 fetching corpus: 448, signal 56516/67519 (executing program) 2021/05/20 11:58:26 fetching corpus: 497, signal 59713/71240 (executing program) 2021/05/20 11:58:26 fetching corpus: 545, signal 63037/74968 (executing program) 2021/05/20 11:58:27 fetching corpus: 594, signal 65129/77587 (executing program) 2021/05/20 11:58:27 fetching corpus: 643, signal 67546/80389 (executing program) 2021/05/20 11:58:27 fetching corpus: 693, signal 69180/82527 (executing program) 2021/05/20 11:58:27 fetching corpus: 742, signal 71626/85260 (executing program) 2021/05/20 11:58:27 fetching corpus: 792, signal 73336/87402 (executing program) 2021/05/20 11:58:27 fetching corpus: 842, signal 74899/89322 (executing program) 2021/05/20 11:58:27 fetching corpus: 892, signal 76529/91256 (executing program) 2021/05/20 11:58:27 fetching corpus: 942, signal 78597/93415 (executing program) 2021/05/20 11:58:27 fetching corpus: 992, signal 80732/95585 (executing program) 2021/05/20 11:58:28 fetching corpus: 1042, signal 83526/98108 (executing program) 2021/05/20 11:58:28 fetching corpus: 1092, signal 85050/99751 (executing program) 2021/05/20 11:58:28 fetching corpus: 1142, signal 86302/101122 (executing program) 2021/05/20 11:58:28 fetching corpus: 1192, signal 87252/102319 (executing program) 2021/05/20 11:58:28 fetching corpus: 1242, signal 88612/103701 (executing program) 2021/05/20 11:58:28 fetching corpus: 1292, signal 90346/105315 (executing program) 2021/05/20 11:58:28 fetching corpus: 1342, signal 92375/106905 (executing program) 2021/05/20 11:58:28 fetching corpus: 1392, signal 93619/108102 (executing program) 2021/05/20 11:58:29 fetching corpus: 1442, signal 94440/109053 (executing program) 2021/05/20 11:58:29 fetching corpus: 1492, signal 95776/110225 (executing program) 2021/05/20 11:58:29 fetching corpus: 1542, signal 96672/111084 (executing program) 2021/05/20 11:58:29 fetching corpus: 1592, signal 97965/112170 (executing program) 2021/05/20 11:58:29 fetching corpus: 1642, signal 99167/113145 (executing program) 2021/05/20 11:58:29 fetching corpus: 1692, signal 100792/114269 (executing program) 2021/05/20 11:58:29 fetching corpus: 1742, signal 101651/115054 (executing program) 2021/05/20 11:58:29 fetching corpus: 1792, signal 102442/115756 (executing program) 2021/05/20 11:58:29 fetching corpus: 1839, signal 103468/116536 (executing program) 2021/05/20 11:58:30 fetching corpus: 1889, signal 104279/117188 (executing program) 2021/05/20 11:58:30 fetching corpus: 1939, signal 105137/117831 (executing program) 2021/05/20 11:58:30 fetching corpus: 1989, signal 106014/118466 (executing program) 2021/05/20 11:58:30 fetching corpus: 2039, signal 106938/119103 (executing program) 2021/05/20 11:58:30 fetching corpus: 2089, signal 107925/119688 (executing program) 2021/05/20 11:58:30 fetching corpus: 2139, signal 108581/120159 (executing program) 2021/05/20 11:58:30 fetching corpus: 2189, signal 109420/120663 (executing program) 2021/05/20 11:58:30 fetching corpus: 2239, signal 110401/121226 (executing program) 2021/05/20 11:58:30 fetching corpus: 2289, signal 111951/121901 (executing program) 2021/05/20 11:58:30 fetching corpus: 2339, signal 112584/122273 (executing program) 2021/05/20 11:58:31 fetching corpus: 2389, signal 113712/122715 (executing program) 2021/05/20 11:58:31 fetching corpus: 2439, signal 114737/123130 (executing program) 2021/05/20 11:58:31 fetching corpus: 2489, signal 115506/123490 (executing program) 2021/05/20 11:58:31 fetching corpus: 2539, signal 116222/123778 (executing program) 2021/05/20 11:58:31 fetching corpus: 2589, signal 117167/124075 (executing program) 2021/05/20 11:58:31 fetching corpus: 2639, signal 117874/124325 (executing program) 2021/05/20 11:58:31 fetching corpus: 2689, signal 118803/124581 (executing program) 2021/05/20 11:58:31 fetching corpus: 2739, signal 119768/124800 (executing program) 2021/05/20 11:58:31 fetching corpus: 2789, signal 120374/124986 (executing program) 2021/05/20 11:58:32 fetching corpus: 2839, signal 120961/125129 (executing program) 2021/05/20 11:58:32 fetching corpus: 2889, signal 121633/125237 (executing program) 2021/05/20 11:58:32 fetching corpus: 2939, signal 122790/125361 (executing program) 2021/05/20 11:58:32 fetching corpus: 2989, signal 123183/125412 (executing program) 2021/05/20 11:58:32 fetching corpus: 3021, signal 123574/125460 (executing program) 2021/05/20 11:58:32 fetching corpus: 3021, signal 123574/125503 (executing program) 2021/05/20 11:58:32 fetching corpus: 3021, signal 123574/125503 (executing program) 2021/05/20 11:58:33 starting 6 fuzzer processes 11:58:33 executing program 0: perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="5300000044a6aeabc8161520000000000000000700fff64017db98"], 0x259) openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = gettid() process_vm_readv(r1, &(0x7f00000022c0)=[{&(0x7f0000000080)=""/44, 0x2c}], 0x226, &(0x7f0000003840)=[{&(0x7f0000002300)=""/115, 0x7ffff000}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 11:58:33 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x11, r2, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r2) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='schedstat\x00') 11:58:33 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000080000000006000000600000000f000000000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000003c0)) 11:58:33 executing program 2: r0 = inotify_init1(0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) fcntl$setstatus(r0, 0x4, 0x72109c5fef5d34d3) fcntl$setstatus(r0, 0x4, 0x0) 11:58:33 executing program 3: syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000280)=[{&(0x7f0000000300)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000dcf4655fdcf4655f0100ffff53ef0100c83fe5f50800655f000000000000000001000000001000000b00000000061c5ffd65a99d398d2f6840d39e4eff27052aea927a90acab68f5248e445153e3b327124dbd14aaf6a615f3f50067e101948f8371d2ff80447545c3732bbc3840dd27c5b273125405ff8deb90742906700ae6d067722133594ca2da5f3cdd1babb7315279f1fa1304eb4f03a1cfe6e1074773a751e0f3ffe5d345167a953b9d0a3457734ca2bc9261aacd0dae7be1ffe092b1e202466e7921f05a0a3f1c6ba92831687ff5f214f1", 0x101, 0x400}], 0x0, &(0x7f0000000180)) 11:58:33 executing program 4: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000001400)={0x1, &(0x7f00000013c0)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000001400)={0x1, &(0x7f00000013c0)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000001400)={0x1, &(0x7f00000013c0)=[{0x6}]}) [ 28.777783][ T25] audit: type=1400 audit(1621511913.815:8): avc: denied { execmem } for pid=1760 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 28.878227][ T1766] cgroup: Unknown subsys name 'perf_event' [ 28.889346][ T1767] cgroup: Unknown subsys name 'perf_event' [ 28.895713][ T1767] cgroup: Unknown subsys name 'net_cls' [ 28.899933][ T1766] cgroup: Unknown subsys name 'net_cls' [ 28.939606][ T1770] cgroup: Unknown subsys name 'perf_event' [ 28.945571][ T1770] cgroup: Unknown subsys name 'net_cls' [ 28.948692][ T1771] cgroup: Unknown subsys name 'perf_event' [ 28.957378][ T1772] cgroup: Unknown subsys name 'perf_event' [ 28.958734][ T1771] cgroup: Unknown subsys name 'net_cls' [ 28.965765][ T1772] cgroup: Unknown subsys name 'net_cls' [ 28.969510][ T1773] cgroup: Unknown subsys name 'perf_event' [ 28.980315][ T1773] cgroup: Unknown subsys name 'net_cls'