[ 55.852651][ T26] audit: type=1800 audit(1573197745.690:29): pid=7938 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2465 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.150' (ECDSA) to the list of known hosts. 2019/11/08 07:22:32 fuzzer started 2019/11/08 07:22:35 dialing manager at 10.128.0.105:41185 2019/11/08 07:22:35 syscalls: 2553 2019/11/08 07:22:35 code coverage: enabled 2019/11/08 07:22:35 comparison tracing: enabled 2019/11/08 07:22:35 extra coverage: extra coverage is not supported by the kernel 2019/11/08 07:22:35 setuid sandbox: enabled 2019/11/08 07:22:35 namespace sandbox: enabled 2019/11/08 07:22:35 Android sandbox: /sys/fs/selinux/policy does not exist 2019/11/08 07:22:35 fault injection: enabled 2019/11/08 07:22:35 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/11/08 07:22:35 net packet injection: enabled 2019/11/08 07:22:35 net device setup: enabled 2019/11/08 07:22:35 concurrency sanitizer: enabled 2019/11/08 07:22:35 devlink PCI setup: PCI device 0000:00:10.0 is not available syzkaller login: [ 68.587173][ T8107] KCSAN: could not find function: 'may_open' 2019/11/08 07:22:38 adding functions to KCSAN blacklist: 'vm_area_dup' 'common_perm_cond' 'rcu_gp_fqs_loop' '__hrtimer_run_queues' '__ext4_new_inode' 'do_nanosleep' 'generic_write_end' 'find_next_bit' 'do_dentry_open' 'pipe_poll' 'echo_char' 'ktime_get_real_seconds' 'tomoyo_supervisor' 'run_timer_softirq' 'tcp_add_backlog' 'ep_poll' 'tick_do_update_jiffies64' 'may_open' 'find_get_pages_range_tag' 'generic_permission' [ 72.834863][ T8110] ================================================================== [ 72.843036][ T8110] BUG: KCSAN: data-race in mod_timer / timer_clear_idle [ 72.850038][ T8110] [ 72.852361][ T8110] write to 0xffff88812bf1b6e4 of 1 bytes by task 0 on cpu 1: [ 72.859725][ T8110] timer_clear_idle+0x42/0x50 [ 72.864398][ T8110] __tick_nohz_idle_restart_tick+0x36/0x1b0 [ 72.870284][ T8110] tick_nohz_idle_exit+0x1af/0x1e0 [ 72.875388][ T8110] do_idle+0xb1/0x280 [ 72.879361][ T8110] cpu_startup_entry+0x1b/0x20 [ 72.884119][ T8110] start_secondary+0x208/0x260 [ 72.888875][ T8110] secondary_startup_64+0xa4/0xb0 [ 72.893884][ T8110] [ 72.896206][ T8110] read to 0xffff88812bf1b6e4 of 1 bytes by task 8110 on cpu 0: [ 72.903831][ T8110] mod_timer+0x50d/0x7a0 [ 72.908072][ T8110] sk_reset_timer+0x2d/0x70 [ 72.912567][ T8110] tcp_rearm_rto+0x1e7/0x2a0 [ 72.917163][ T8110] tcp_event_new_data_sent+0x218/0x220 [ 72.922612][ T8110] tcp_write_xmit+0xa77/0x3120 [ 72.927376][ T8110] __tcp_push_pending_frames+0x7b/0x1d0 [ 72.932914][ T8110] tcp_push+0x1e9/0x3d0 [ 72.937060][ T8110] tcp_sendmsg_locked+0x1d2b/0x1fb0 [ 72.942247][ T8110] tcp_sendmsg+0x39/0x60 [ 72.946480][ T8110] inet_sendmsg+0x6d/0x90 [ 72.950808][ T8110] sock_sendmsg+0x9f/0xc0 [ 72.955144][ T8110] sock_write_iter+0x16b/0x210 [ 72.959899][ T8110] new_sync_write+0x388/0x4a0 [ 72.964565][ T8110] __vfs_write+0xb1/0xc0 [ 72.968804][ T8110] vfs_write+0x18a/0x390 [ 72.973036][ T8110] ksys_write+0xd5/0x1b0 [ 72.977266][ T8110] __x64_sys_write+0x4c/0x60 [ 72.981857][ T8110] do_syscall_64+0xcc/0x370 [ 72.986355][ T8110] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 72.992221][ T8110] [ 72.994545][ T8110] Reported by Kernel Concurrency Sanitizer on: [ 73.000691][ T8110] CPU: 0 PID: 8110 Comm: syz-fuzzer Not tainted 5.4.0-rc6+ #0 [ 73.008129][ T8110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 73.018169][ T8110] ================================================================== [ 73.026215][ T8110] Kernel panic - not syncing: panic_on_warn set ... [ 73.032797][ T8110] CPU: 0 PID: 8110 Comm: syz-fuzzer Not tainted 5.4.0-rc6+ #0 [ 73.040236][ T8110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 73.050283][ T8110] Call Trace: [ 73.053572][ T8110] dump_stack+0xf5/0x159 [ 73.057811][ T8110] panic+0x210/0x640 [ 73.061705][ T8110] ? vprintk_func+0x8d/0x140 [ 73.066295][ T8110] kcsan_report.cold+0xc/0xe [ 73.070882][ T8110] kcsan_setup_watchpoint+0x3fe/0x410 [ 73.076249][ T8110] __tsan_read1+0x13f/0x1e0 [ 73.080751][ T8110] mod_timer+0x50d/0x7a0 [ 73.084997][ T8110] ? tcp_update_skb_after_send+0x1a6/0x260 [ 73.090804][ T8110] sk_reset_timer+0x2d/0x70 [ 73.096603][ T8110] tcp_rearm_rto+0x1e7/0x2a0 [ 73.101192][ T8110] tcp_event_new_data_sent+0x218/0x220 [ 73.106650][ T8110] tcp_write_xmit+0xa77/0x3120 [ 73.111414][ T8110] ? kmem_cache_alloc_node_trace+0x273/0x670 [ 73.117407][ T8110] __tcp_push_pending_frames+0x7b/0x1d0 [ 73.122955][ T8110] tcp_push+0x1e9/0x3d0 [ 73.127111][ T8110] tcp_sendmsg_locked+0x1d2b/0x1fb0 [ 73.132322][ T8110] tcp_sendmsg+0x39/0x60 [ 73.136559][ T8110] inet_sendmsg+0x6d/0x90 [ 73.140883][ T8110] ? inet_send_prepare+0x200/0x200 [ 73.145990][ T8110] sock_sendmsg+0x9f/0xc0 [ 73.150317][ T8110] sock_write_iter+0x16b/0x210 [ 73.155082][ T8110] new_sync_write+0x388/0x4a0 [ 73.159764][ T8110] __vfs_write+0xb1/0xc0 [ 73.164006][ T8110] vfs_write+0x18a/0x390 [ 73.168250][ T8110] ksys_write+0xd5/0x1b0 [ 73.172567][ T8110] __x64_sys_write+0x4c/0x60 [ 73.177154][ T8110] do_syscall_64+0xcc/0x370 [ 73.181666][ T8110] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 73.187546][ T8110] RIP: 0033:0x47c530 [ 73.191444][ T8110] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 73.211040][ T8110] RSP: 002b:000000c4206374f8 EFLAGS: 00000216 ORIG_RAX: 0000000000000001 [ 73.219441][ T8110] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000047c530 [ 73.227401][ T8110] RDX: 0000000000000008 RSI: 000000c4201c0200 RDI: 0000000000000003 [ 73.235365][ T8110] RBP: 000000c420637550 R08: 0000000000000000 R09: 0000000000000000 [ 73.243328][ T8110] R10: 0000000000000000 R11: 0000000000000216 R12: 000000c4200b5b00 [ 73.251288][ T8110] R13: 0000000000000007 R14: 0000000000c1dc00 R15: 0000000000001838 [ 74.402335][ T8110] Shutting down cpus with NMI [ 74.408333][ T8110] Kernel Offset: disabled [ 74.412676][ T8110] Rebooting in 86400 seconds..