Warning: Permanently added '10.128.1.4' (ECDSA) to the list of known hosts. 2019/10/09 07:48:12 fuzzer started 2019/10/09 07:48:14 dialing manager at 10.128.0.105:43333 2019/10/09 07:48:14 syscalls: 2523 2019/10/09 07:48:14 code coverage: enabled 2019/10/09 07:48:14 comparison tracing: enabled 2019/10/09 07:48:14 extra coverage: extra coverage is not supported by the kernel 2019/10/09 07:48:14 setuid sandbox: enabled 2019/10/09 07:48:14 namespace sandbox: enabled 2019/10/09 07:48:14 Android sandbox: /sys/fs/selinux/policy does not exist 2019/10/09 07:48:14 fault injection: enabled 2019/10/09 07:48:14 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/10/09 07:48:14 net packet injection: enabled 2019/10/09 07:48:14 net device setup: enabled 2019/10/09 07:48:14 concurrency sanitizer: enabled 07:48:17 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x200000000000df8, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$bt_rfcomm_RFCOMM_LM(0xffffffffffffffff, 0x12, 0x3, 0x0, 0x0) syz_open_dev$mouse(&(0x7f00000001c0)='/dev/input/mouse#\x00', 0x1ff, 0x100) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0) r2 = socket(0xa, 0x3, 0x8) ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8924, &(0x7f0000000180)={'bridge0\x00l\x01\x00', 0x1}) r3 = getpid() sched_setscheduler(r3, 0x5, &(0x7f0000000380)) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000480)={{{@in=@local, @in6=@mcast1}}, {{@in6=@remote}, 0x0, @in=@empty}}, &(0x7f00000003c0)=0xe8) sendmsg$nl_netfilter(r2, &(0x7f0000000a00)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0xf4783a5499aa146e}, 0xc, &(0x7f00000009c0)={&(0x7f0000000580)={0x1e8, 0xe, 0xa, 0x100, 0x70bd2b, 0x25dfdbff, {0xe, 0x0, 0x7}, [@generic="b9891f6d14df883be8f5a9df5d8360a35524be21731bd5", @generic='9i', @generic="b95f5b13aef6738b7dc1ca1ad1", @generic="8f6c8200db18ca0c4ecd9a600cd06f63362e37b2bafbb14bcbebb815082687d891129d259479c26c7ed97b859d63447b67e04e0d06ea49d477023874ad31e8678fa4d9fe771ca230892e2ed3e3200aab36ff8bb15f35ce8f1857b13098ceba2de9880d1b12b8b6d53d44ea198c3821911476a2641928a72e36a3e37fad22d428764967cca3a96b27715ee77dc7fff9aaff843bf0ec6654409b305e01a4a0a52f15920c40b5e285b08395801ad2dd57eab3e06f4d63c5c1011484cea4e7e9f536f90558c5ec7159a0939dce7a8e", @typed={0x78, 0x26, @binary="ed98a9dc064d1246e2e2899451314adf0347466543788db2369b6fd04164adda2e2e833a4f67c3693d70cfd5e16ad22fd15dfcbc1758a40d5f267442dd22d62d9ce3245b5fa04ce85a2e27ecf0e15f278e77cf109890ab090ec2803e72e2a18be1d241d2a2831f9dfab123ac0106dd032b2d"}, @typed={0x8, 0x0, @u32=0x1000}, @nested={0x20, 0x87, [@typed={0x8, 0x1d, @pid=r3}, @typed={0x14, 0x86, @ipv6=@ipv4={[], [], @local}}]}, @nested={0x24, 0x0, [@typed={0xc, 0x86, @u64=0x1ff}, @typed={0x14, 0x4a, @ipv6=@mcast2}]}, @nested={0x1c, 0x8f, [@typed={0x14, 0xa, @ipv6=@initdev={0xfe, 0x88, [], 0x1, 0x0}}, @typed={0x4, 0x83}]}]}, 0x1e8}, 0x1, 0x0, 0x0, 0x4090}, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000a80)='TIPC\x00') sendmsg$TIPC_CMD_SET_LINK_PRI(0xffffffffffffffff, 0x0, 0x2000) r4 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r4, &(0x7f00000000c0)='./file0\x00') mkdirat(r4, &(0x7f0000000400)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) r5 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r5, &(0x7f0000000280)='./file0/file0\x00') read(r1, &(0x7f00000003c0), 0x0) renameat2(r5, &(0x7f0000000100)='./file0/file0\x00', r5, &(0x7f0000000340)='./file0\x00', 0x0) socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240), 0x0) syzkaller login: [ 59.877921][ T7360] IPVS: ftp: loaded support on port[0] = 21 [ 59.917703][ T7347] ================================================================== [ 59.925836][ T7347] BUG: KCSAN: data-race in __zone_watermark_ok / get_page_from_freelist [ 59.934132][ T7347] [ 59.936448][ T7347] read to 0xffff88812fffce88 of 8 bytes by task 7360 on cpu 1: [ 59.943976][ T7347] __zone_watermark_ok+0x106/0x240 [ 59.949073][ T7347] get_page_from_freelist+0x629/0x2300 [ 59.954519][ T7347] __alloc_pages_nodemask+0x255/0x4d0 [ 59.959875][ T7347] cache_grow_begin+0x76/0x670 [ 59.964622][ T7347] kmem_cache_alloc+0x500/0x5d0 [ 59.969463][ T7347] sk_prot_alloc+0x5a/0x240 [ 59.973965][ T7347] sk_alloc+0x51/0x540 [ 59.978018][ T7347] inet6_create+0x23a/0x830 [ 59.982507][ T7347] __sock_create+0x241/0x3a0 [ 59.987079][ T7347] sock_create_kern+0x44/0x60 [ 59.991743][ T7347] rds_tcp_listen_init+0x7e/0x360 [ 59.996767][ T7347] rds_tcp_init_net+0x13f/0x200 [ 60.001605][ T7347] ops_init+0x8c/0x240 [ 60.005663][ T7347] setup_net+0x194/0x4b0 [ 60.009882][ T7347] [ 60.012199][ T7347] write to 0xffff88812fffce88 of 8 bytes by task 7347 on cpu 0: [ 60.019817][ T7347] get_page_from_freelist+0x131e/0x2300 [ 60.025349][ T7347] __alloc_pages_nodemask+0x255/0x4d0 [ 60.030704][ T7347] alloc_pages_current+0xd1/0x170 [ 60.035724][ T7347] __page_cache_alloc+0x183/0x1a0 [ 60.040745][ T7347] __do_page_cache_readahead+0x13e/0x390 [ 60.046359][ T7347] ondemand_readahead+0x35d/0x710 [ 60.051369][ T7347] page_cache_async_readahead+0x22c/0x250 [ 60.057070][ T7347] generic_file_read_iter+0xffc/0x1440 [ 60.062513][ T7347] ext4_file_read_iter+0xfa/0x240 [ 60.067535][ T7347] new_sync_read+0x389/0x4f0 [ 60.072121][ T7347] __vfs_read+0xb1/0xc0 [ 60.076263][ T7347] integrity_kernel_read+0xa1/0xe0 [ 60.081360][ T7347] ima_calc_file_hash_tfm+0x1b5/0x260 [ 60.086721][ T7347] [ 60.089029][ T7347] Reported by Kernel Concurrency Sanitizer on: [ 60.095178][ T7347] CPU: 0 PID: 7347 Comm: syz-fuzzer Not tainted 5.3.0+ #0 [ 60.102265][ T7347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.112300][ T7347] ================================================================== [ 60.120344][ T7347] Kernel panic - not syncing: panic_on_warn set ... [ 60.127002][ T7347] CPU: 0 PID: 7347 Comm: syz-fuzzer Not tainted 5.3.0+ #0 [ 60.134088][ T7347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 60.144121][ T7347] Call Trace: [ 60.147399][ T7347] dump_stack+0xf5/0x159 [ 60.151648][ T7347] panic+0x209/0x639 [ 60.155532][ T7347] ? ext4_file_read_iter+0xfa/0x240 [ 60.160714][ T7347] ? vprintk_func+0x8d/0x140 [ 60.165292][ T7347] kcsan_report.cold+0xc/0x1b [ 60.169957][ T7347] __kcsan_setup_watchpoint+0x3ee/0x510 [ 60.175490][ T7347] __tsan_write8+0x32/0x40 [ 60.179895][ T7347] get_page_from_freelist+0x131e/0x2300 [ 60.185446][ T7347] __alloc_pages_nodemask+0x255/0x4d0 [ 60.190809][ T7347] alloc_pages_current+0xd1/0x170 [ 60.195819][ T7347] __page_cache_alloc+0x183/0x1a0 [ 60.200842][ T7347] __do_page_cache_readahead+0x13e/0x390 [ 60.206483][ T7347] ondemand_readahead+0x35d/0x710 [ 60.211511][ T7347] page_cache_async_readahead+0x22c/0x250 [ 60.217220][ T7347] generic_file_read_iter+0xffc/0x1440 [ 60.222679][ T7347] ext4_file_read_iter+0xfa/0x240 [ 60.227693][ T7347] new_sync_read+0x389/0x4f0 [ 60.232279][ T7347] __vfs_read+0xb1/0xc0 [ 60.236424][ T7347] integrity_kernel_read+0xa1/0xe0 [ 60.241529][ T7347] ima_calc_file_hash_tfm+0x1b5/0x260 [ 60.246888][ T7347] ? __kcsan_setup_watchpoint+0x96/0x510 [ 60.252505][ T7347] ? should_fail+0xd4/0x45d [ 60.256998][ T7347] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 60.262704][ T7347] ? widen_string+0x4a/0x1a0 [ 60.267277][ T7347] ? __kcsan_setup_watchpoint+0x96/0x510 [ 60.272905][ T7347] ? __kcsan_setup_watchpoint+0x96/0x510 [ 60.278525][ T7347] ? __kcsan_setup_watchpoint+0x96/0x510 [ 60.284159][ T7347] ? __kcsan_setup_watchpoint+0x96/0x510 [ 60.289779][ T7347] ? __kcsan_setup_watchpoint+0x96/0x510 [ 60.295406][ T7347] ? __kcsan_setup_watchpoint+0x96/0x510 [ 60.301024][ T7347] ? __kcsan_setup_watchpoint+0x96/0x510 [ 60.306644][ T7347] ? __tsan_read4+0x2c/0x30 [ 60.311133][ T7347] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 60.317361][ T7347] ? refcount_sub_and_test_checked+0xc8/0x190 [ 60.323424][ T7347] ? __kcsan_setup_watchpoint+0x96/0x510 [ 60.329046][ T7347] ? __tsan_read4+0x2c/0x30 [ 60.333549][ T7347] ima_calc_file_hash+0x158/0xf10 [ 60.338591][ T7347] ? __tsan_write8+0x32/0x40 [ 60.343174][ T7347] ? ext4_xattr_get+0x10b/0x5c0 [ 60.348012][ T7347] ? __rcu_read_unlock+0x62/0xe0 [ 60.352939][ T7347] ? __kcsan_setup_watchpoint+0x96/0x510 [ 60.358564][ T7347] ima_collect_measurement+0x384/0x3b0 [ 60.364020][ T7347] process_measurement+0x980/0xff0 [ 60.369129][ T7347] ? __kcsan_setup_watchpoint+0x96/0x510 [ 60.374747][ T7347] ? __kcsan_setup_watchpoint+0x96/0x510 [ 60.380380][ T7347] ? __tsan_read4+0x2c/0x30 [ 60.384876][ T7347] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 60.391119][ T7347] ? refcount_sub_and_test_checked+0xc8/0x190 [ 60.397175][ T7347] ? __kcsan_setup_watchpoint+0x96/0x510 [ 60.402795][ T7347] ? __kcsan_setup_watchpoint+0x96/0x510 [ 60.408419][ T7347] ima_file_check+0x7e/0xb0 [ 60.412911][ T7347] path_openat+0xfb1/0x3530 [ 60.417401][ T7347] ? delay_tsc+0x8f/0xc0 [ 60.421640][ T7347] do_filp_open+0x11e/0x1b0 [ 60.426140][ T7347] ? _raw_spin_unlock+0x4b/0x60 [ 60.430978][ T7347] ? __alloc_fd+0x316/0x4c0 [ 60.435497][ T7347] ? get_unused_fd_flags+0x93/0xc0 [ 60.440597][ T7347] do_sys_open+0x3b3/0x4f0 [ 60.445018][ T7347] __x64_sys_openat+0x62/0x80 [ 60.449691][ T7347] do_syscall_64+0xcf/0x2f0 [ 60.454192][ T7347] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 60.460078][ T7347] RIP: 0033:0x47c5aa [ 60.463985][ T7347] Code: e8 7b 6b fb ff 48 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 4c 8b 54 24 28 4c 8b 44 24 30 4c 8b 4c 24 38 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 40 ff ff ff ff 48 c7 44 24 48 [ 60.483575][ T7347] RSP: 002b:000000c4202c7850 EFLAGS: 00000206 ORIG_RAX: 0000000000000101 [ 60.492070][ T7347] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000047c5aa [ 60.500037][ T7347] RDX: 0000000000080002 RSI: 000000c420096920 RDI: ffffffffffffff9c [ 60.508009][ T7347] RBP: 000000c4202c78d0 R08: 0000000000000000 R09: 0000000000000000 [ 60.515968][ T7347] R10: 00000000000001a4 R11: 0000000000000206 R12: ffffffffffffffff [ 60.524540][ T7347] R13: 000000000000004a R14: 0000000000000049 R15: 0000000000000100 [ 61.660975][ T7347] Shutting down cpus with NMI [ 61.667125][ T7347] Kernel Offset: disabled [ 61.671476][ T7347] Rebooting in 86400 seconds..