[[36minfo[39;49m] Using makefile-style concurrent boot in runlevel 2.
[   43.162166][   T26] audit: type=1800 audit(1574825954.471:21): pid=7461 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2452 res=0
[   43.184519][   T26] audit: type=1800 audit(1574825954.501:22): pid=7461 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="motd" dev="sda1" ino=2480 res=0
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.1.21' (ECDSA) to the list of known hosts.
2019/11/27 03:39:27 fuzzer started
2019/11/27 03:39:29 dialing manager at 10.128.0.105:46511
2019/11/27 03:39:29 syscalls: 2566
2019/11/27 03:39:29 code coverage: enabled
2019/11/27 03:39:29 comparison tracing: enabled
2019/11/27 03:39:29 extra coverage: extra coverage is not supported by the kernel
2019/11/27 03:39:29 setuid sandbox: enabled
2019/11/27 03:39:29 namespace sandbox: enabled
2019/11/27 03:39:29 Android sandbox: /sys/fs/selinux/policy does not exist
2019/11/27 03:39:29 fault injection: enabled
2019/11/27 03:39:29 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2019/11/27 03:39:29 net packet injection: enabled
2019/11/27 03:39:29 net device setup: enabled
2019/11/27 03:39:29 concurrency sanitizer: enabled
2019/11/27 03:39:29 devlink PCI setup: PCI device 0000:00:10.0 is not available
syzkaller login: [   69.509953][ T7631] KCSAN: could not find function: 'poll_schedule_timeout'
2019/11/27 03:39:41 adding functions to KCSAN blacklist: 'blk_mq_sched_dispatch_requests' '__mark_inode_dirty' 'ext4_has_free_clusters' 'blk_mq_run_hw_queue' 'n_tty_receive_buf_common' '__writeback_single_inode' 'do_syslog' '__filemap_fdatawrite_range' 'mod_timer' 'commit_echoes' 'do_exit' '__find_get_block' 'list_lru_count_one' 'tomoyo_supervisor' 'echo_char' 'alloc_pid' 'do_readlinkat' 'rcu_gp_fqs_loop' 'tomoyo_domain_quota_is_ok' 'rcu_gp_fqs_check_wake' 'blk_mq_get_request' 'xas_find_marked' 'wbt_done' 'snd_seq_prioq_cell_out' 'balance_dirty_pages' 'add_timer' '__splice_from_pipe' 'vm_area_dup' 'ktime_get_real_seconds' 'p9_poll_workfn' 'blk_mq_dispatch_rq_list' 'wbt_issue' 'audit_log_start' 'kauditd_thread' 'snd_rawmidi_poll' 'sit_tunnel_xmit' 'tick_sched_do_timer' 'pid_update_inode' 'ext4_free_inode' 'd_delete' 'blk_mq_free_request' 'fasync_remove_entry' 'ep_poll' 'ext4_free_inodes_count' 'dd_has_work' 'pipe_wait' 'copy_process' 'generic_write_end' 'bio_endio' 'l2tp_tunnel_del_work' 'run_timer_softirq' '__skb_try_recv_from_queue' 'tick_do_update_jiffies64' '__rcu_read_unlock' 'timer_clear_idle' '__snd_rawmidi_transmit_ack' 'ext4_nonda_switch' 'taskstats_exit' 'do_nanosleep' 'sbitmap_queue_clear' 'do_wait' 'futex_wait_queue_me' 'wbt_wait' 'inactive_list_is_low' '__hrtimer_run_queues' 'find_next_bit' '__ext4_new_inode' 'generic_fillattr' 'pipe_poll' 'do_signal_stop' '__dentry_kill' 'mem_cgroup_select_victim_node' 'ext4_mb_good_group' 'tcp_add_backlog' 'find_get_pages_range_tag' 'poll_schedule_timeout' 'page_counter_try_charge' 'lruvec_lru_size' 'tick_nohz_idle_stop_tick' 
[  204.460961][ T7616] ==================================================================
[  204.469093][ T7616] BUG: KCSAN: data-race in hrtimer_wakeup / schedule_hrtimeout_range_clock
[  204.477680][ T7616] 
[  204.480025][ T7616] write to 0xffffc90001437848 of 8 bytes by interrupt on cpu 0:
[  204.487634][ T7616]  hrtimer_wakeup+0x32/0x60
[  204.492115][ T7616]  __hrtimer_run_queues+0x274/0x5f0
[  204.497289][ T7616]  hrtimer_interrupt+0x22a/0x480
[  204.502207][ T7616]  smp_apic_timer_interrupt+0xdc/0x280
[  204.507656][ T7616]  apic_timer_interrupt+0xf/0x20
[  204.512584][ T7616]  native_safe_halt+0xe/0x10
[  204.517170][ T7616]  arch_cpu_idle+0xa/0x10
[  204.521490][ T7616]  default_idle_call+0x1e/0x40
[  204.526262][ T7616]  do_idle+0x1af/0x280
[  204.530320][ T7616]  cpu_startup_entry+0x1b/0x20
[  204.535073][ T7616]  rest_init+0xec/0xf6
[  204.539127][ T7616]  arch_call_rest_init+0x17/0x37
[  204.544059][ T7616]  start_kernel+0x838/0x85e
[  204.548569][ T7616]  x86_64_start_reservations+0x29/0x2b
[  204.554025][ T7616]  x86_64_start_kernel+0x72/0x76
[  204.558960][ T7616]  secondary_startup_64+0xa4/0xb0
[  204.564620][ T7616] 
[  204.566945][ T7616] read to 0xffffc90001437848 of 8 bytes by task 7616 on cpu 1:
[  204.574495][ T7616]  schedule_hrtimeout_range_clock+0x109/0x1e0
[  204.580558][ T7616]  schedule_hrtimeout_range+0x34/0x50
[  204.585920][ T7616]  poll_schedule_timeout.constprop.0+0x75/0xc0
[  204.592067][ T7616]  do_select+0xd7f/0x1020
[  204.596478][ T7616]  core_sys_select+0x381/0x550
[  204.601243][ T7616]  do_pselect.constprop.0+0x11d/0x160
[  204.606617][ T7616]  __x64_sys_pselect6+0x12e/0x170
[  204.611643][ T7616]  do_syscall_64+0xcc/0x370
[  204.616153][ T7616]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  204.622029][ T7616] 
[  204.624346][ T7616] Reported by Kernel Concurrency Sanitizer on:
[  204.630507][ T7616] CPU: 1 PID: 7616 Comm: syz-fuzzer Not tainted 5.4.0-syzkaller #0
[  204.638391][ T7616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  204.648501][ T7616] ==================================================================
[  204.656551][ T7616] Kernel panic - not syncing: panic_on_warn set ...
[  204.663140][ T7616] CPU: 1 PID: 7616 Comm: syz-fuzzer Not tainted 5.4.0-syzkaller #0
[  204.671019][ T7616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  204.681068][ T7616] Call Trace:
[  204.684350][ T7616]  dump_stack+0x11d/0x181
[  204.688669][ T7616]  panic+0x210/0x640
[  204.692557][ T7616]  ? vprintk_func+0x8d/0x140
[  204.697153][ T7616]  kcsan_report.cold+0xc/0xd
[  204.701758][ T7616]  kcsan_setup_watchpoint+0x3fe/0x460
[  204.707130][ T7616]  __tsan_read8+0xc6/0x100
[  204.711541][ T7616]  schedule_hrtimeout_range_clock+0x109/0x1e0
[  204.717618][ T7616]  ? hrtimer_active+0x1a0/0x1a0
[  204.722470][ T7616]  schedule_hrtimeout_range+0x34/0x50
[  204.727845][ T7616]  poll_schedule_timeout.constprop.0+0x75/0xc0
[  204.734011][ T7616]  do_select+0xd7f/0x1020
[  204.738335][ T7616]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  204.744043][ T7616]  ? gup_pgd_range+0x5cb/0x1990
[  204.748889][ T7616]  ? __rcu_read_unlock+0x66/0x3c0
[  204.753911][ T7616]  ? __rcu_read_unlock+0x66/0x3c0
[  204.758930][ T7616]  ? rb_erase+0x2aa/0x990
[  204.763251][ T7616]  ? __read_once_size.constprop.0+0x12/0x20
[  204.769142][ T7616]  ? timerqueue_del+0xa1/0x100
[  204.773906][ T7616]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  204.780142][ T7616]  ? __remove_hrtimer+0x7a/0x130
[  204.785077][ T7616]  ? _raw_spin_unlock_irqrestore+0x70/0x80
[  204.790883][ T7616]  ? hrtimer_try_to_cancel+0x57/0x260
[  204.796252][ T7616]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  204.802485][ T7616]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  204.808710][ T7616]  ? hrtimer_cancel+0x3b/0x50
[  204.813386][ T7616]  ? futex_wait+0x33f/0x3f0
[  204.817906][ T7616]  ? __rcu_read_unlock+0x66/0x3c0
[  204.822926][ T7616]  ? __sanitizer_cov_trace_switch+0x49/0x80
[  204.828815][ T7616]  core_sys_select+0x381/0x550
[  204.833578][ T7616]  ? __sanitizer_cov_trace_switch+0x49/0x80
[  204.839460][ T7616]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  204.845169][ T7616]  ? _copy_to_user+0x84/0xb0
[  204.849750][ T7616]  ? __sanitizer_cov_trace_switch+0x49/0x80
[  204.855646][ T7616]  ? __read_once_size+0x5a/0xe0
[  204.860508][ T7616]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  204.866751][ T7616]  ? ktime_get_ts64+0x286/0x2c0
[  204.871609][ T7616]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  204.877324][ T7616]  ? timespec64_add_safe+0xae/0xd0
[  204.882438][ T7616]  do_pselect.constprop.0+0x11d/0x160
[  204.887811][ T7616]  __x64_sys_pselect6+0x12e/0x170
[  204.892839][ T7616]  ? switch_fpu_return+0x11f/0x250
[  204.897948][ T7616]  do_syscall_64+0xcc/0x370
[  204.902446][ T7616]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  204.908326][ T7616] RIP: 0033:0x45ac23
[  204.912218][ T7616] Code: 48 89 44 24 08 bf 00 00 00 00 be 00 00 00 00 ba 00 00 00 00 41 ba 00 00 00 00 49 89 e0 41 b9 00 00 00 00 b8 0e 01 00 00 0f 05 <48> 8b 6c 24 10 48 83 c4 18 c3 cc cc cc b8 ba 00 00 00 0f 05 89 44
[  204.931808][ T7616] RSP: 002b:000000c42004ff08 EFLAGS: 00000202 ORIG_RAX: 000000000000010e
[  204.940212][ T7616] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000045ac23
[  204.948170][ T7616] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  204.956128][ T7616] RBP: 000000c42004ff18 R08: 000000c42004ff08 R09: 0000000000000000
[  204.964089][ T7616] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000042f0a0
[  204.972050][ T7616] R13: 00000000000000f1 R14: 0000000000000011 R15: 0000000000000000
[  204.981327][ T7616] Kernel Offset: disabled
[  204.985650][ T7616] Rebooting in 86400 seconds..