[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.189' (ECDSA) to the list of known hosts. 2020/08/08 05:08:21 fuzzer started 2020/08/08 05:08:21 dialing manager at 10.128.0.105:43003 2020/08/08 05:08:21 syscalls: 3272 2020/08/08 05:08:21 code coverage: enabled 2020/08/08 05:08:21 comparison tracing: enabled 2020/08/08 05:08:21 extra coverage: enabled 2020/08/08 05:08:21 setuid sandbox: enabled 2020/08/08 05:08:21 namespace sandbox: enabled 2020/08/08 05:08:21 Android sandbox: /sys/fs/selinux/policy does not exist 2020/08/08 05:08:21 fault injection: enabled 2020/08/08 05:08:21 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/08/08 05:08:21 net packet injection: enabled 2020/08/08 05:08:21 net device setup: enabled 2020/08/08 05:08:21 concurrency sanitizer: enabled 2020/08/08 05:08:21 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/08/08 05:08:21 USB emulation: enabled 2020/08/08 05:08:21 hci packet injection: enabled 2020/08/08 05:08:24 suppressing KCSAN reports in functions: 'do_select' 'io_sq_thread' 'generic_file_buffered_read' '__delayacct_blkio_end' 'page_counter_charge' 'n_tty_receive_buf_common' '__ext4_new_inode' 'alloc_pid' 'futex_wait_queue_me' 'snd_rawmidi_kernel_write1' 'snd_rawmidi_poll' 'tick_sched_timer' 'kauditd_thread' 'pcpu_alloc' 'find_get_pages_range_tag' 'audit_log_start' 'expire_timers' 'ext4_setattr' 'direct_page_fault' '__ext4_update_other_inode_time' 'ext4_free_inode' 'blk_mq_sched_dispatch_requests' 'shmem_file_read_iter' 'dd_has_work' 'ext4_mark_iloc_dirty' 'exit_signals' 'step_into' 'do_syslog' 'ext4_free_inodes_count' '__mod_timer' 'exit_mm' 'xas_clear_mark' 'ext4_mb_good_group' '__xa_clear_mark' '__add_to_page_cache_locked' 'do_sys_poll' 'do_nanosleep' 'blk_mq_dispatch_rq_list' 'generic_write_end' '__io_cqring_fill_event' '__delete_from_page_cache' '__mark_inode_dirty' 'tick_nohz_next_event' 'blk_mq_rq_ctx_init' 'do_signal_stop' 05:09:46 executing program 0: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='tmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000380)='./file0\x00') r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0) io_setup(0x21, &(0x7f00000004c0)=0x0) io_submit(r1, 0x1, &(0x7f0000000100)=[&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000340)='b', 0x1}]) syzkaller login: [ 115.437216][ T8683] ================================================================== [ 115.445526][ T8683] BUG: KCSAN: data-race in do_epoll_ctl / do_epoll_wait [ 115.452448][ T8683] [ 115.454779][ T8683] write to 0xffff8881251c3118 of 8 bytes by task 8685 on cpu 0: [ 115.462408][ T8683] do_epoll_ctl+0x1c2e/0x1d70 [ 115.467203][ T8683] __x64_sys_epoll_ctl+0xb3/0xe0 [ 115.472143][ T8683] do_syscall_64+0x39/0x80 [ 115.476567][ T8683] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 115.482456][ T8683] [ 115.484787][ T8683] read to 0xffff8881251c3118 of 8 bytes by task 8683 on cpu 1: [ 115.492508][ T8683] do_epoll_wait+0x425/0x870 [ 115.497098][ T8683] __x64_sys_epoll_pwait+0x92/0x150 [ 115.502300][ T8683] do_syscall_64+0x39/0x80 [ 115.506721][ T8683] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 115.512603][ T8683] [ 115.513570][ T8703] IPVS: ftp: loaded support on port[0] = 21 [ 115.515030][ T8683] Reported by Kernel Concurrency Sanitizer on: [ 115.527251][ T8683] CPU: 1 PID: 8683 Comm: syz-fuzzer Not tainted 5.8.0-syzkaller #0 [ 115.535222][ T8683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 115.545285][ T8683] ================================================================== [ 115.553346][ T8683] Kernel panic - not syncing: panic_on_warn set ... [ 115.560066][ T8683] CPU: 1 PID: 8683 Comm: syz-fuzzer Not tainted 5.8.0-syzkaller #0 [ 115.568085][ T8683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 115.578157][ T8683] Call Trace: [ 115.581467][ T8683] dump_stack+0x10f/0x19d [ 115.581652][ T8703] chnl_net:caif_netlink_parms(): no params data found [ 115.585794][ T8683] panic+0x207/0x64a [ 115.596427][ T8683] ? vprintk_emit+0x44a/0x4f0 [ 115.601114][ T8683] kcsan_report+0x684/0x690 [ 115.605632][ T8683] ? kcsan_setup_watchpoint+0x41e/0x4a0 [ 115.611183][ T8683] ? do_epoll_wait+0x425/0x870 [ 115.615955][ T8683] ? __x64_sys_epoll_pwait+0x92/0x150 [ 115.621338][ T8683] ? do_syscall_64+0x39/0x80 [ 115.626051][ T8683] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 115.632225][ T8683] ? ep_send_events_proc+0x4fd/0x620 [ 115.637526][ T8683] kcsan_setup_watchpoint+0x41e/0x4a0 [ 115.642909][ T8683] do_epoll_wait+0x425/0x870 [ 115.647510][ T8683] __x64_sys_epoll_pwait+0x92/0x150 [ 115.652716][ T8683] do_syscall_64+0x39/0x80 [ 115.657145][ T8683] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 115.663057][ T8683] RIP: 0033:0x469240 [ 115.666958][ T8683] Code: 0f 05 89 44 24 20 c3 cc cc cc 8b 7c 24 08 48 8b 74 24 10 8b 54 24 18 44 8b 54 24 1c 49 c7 c0 00 00 00 00 b8 19 01 00 00 0f 05 <89> 44 24 20 c3 cc cc cc cc cc cc cc cc cc cc cc 8b 7c 24 08 48 c7 [ 115.686696][ T8683] RSP: 002b:000000c0000497f0 EFLAGS: 00000246 ORIG_RAX: 0000000000000119 [ 115.695111][ T8683] RAX: ffffffffffffffda RBX: 0000000000000384 RCX: 0000000000469240 [ 115.703092][ T8683] RDX: 0000000000000080 RSI: 000000c000049840 RDI: 0000000000000003 [ 115.711069][ T8683] RBP: 000000c000049e40 R08: 0000000000000000 R09: 0000000000000000 [ 115.719163][ T8683] R10: 0000000000000384 R11: 0000000000000246 R12: 0000000000000003 [ 115.727140][ T8683] R13: 000000c000000f00 R14: 000080c00af66000 R15: 000080c00af75fff [ 115.736585][ T8683] Kernel Offset: disabled [ 115.740911][ T8683] Rebooting in 86400 seconds..