Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.206' (ECDSA) to the list of known hosts. 2020/05/28 07:26:07 fuzzer started 2020/05/28 07:26:07 dialing manager at 10.128.0.105:37123 2020/05/28 07:26:07 syscalls: 3055 2020/05/28 07:26:07 code coverage: enabled 2020/05/28 07:26:07 comparison tracing: enabled 2020/05/28 07:26:07 extra coverage: enabled 2020/05/28 07:26:07 setuid sandbox: enabled 2020/05/28 07:26:07 namespace sandbox: enabled 2020/05/28 07:26:07 Android sandbox: /sys/fs/selinux/policy does not exist 2020/05/28 07:26:07 fault injection: enabled 2020/05/28 07:26:07 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/05/28 07:26:07 net packet injection: enabled 2020/05/28 07:26:07 net device setup: enabled 2020/05/28 07:26:07 concurrency sanitizer: enabled 2020/05/28 07:26:07 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/05/28 07:26:07 USB emulation: enabled syzkaller login: [ 52.602098][ T8928] KCSAN: could not find function: '_find_next_bit' [ 54.085260][ T8928] KCSAN: could not find function: 'calc_wb_limits' 2020/05/28 07:26:18 adding functions to KCSAN blacklist: 'dd_has_work' 'ktime_get_real_seconds' 'sit_tunnel_xmit' 'hrtimer_interrupt' '_find_next_bit' 'shmem_file_read_iter' 'ext4_mark_iloc_dirty' 'copy_process' 'do_exit' 'kauditd_thread' 'shmem_getpage_gfp' 'wg_packet_send_staged_packets' 'ext4_ext_index_trans_blocks' 'padata_find_next' 'echo_char' 'calc_wb_limits' '__filemap_fdatawrite_range' 'mnt_clone_write' 'tick_nohz_idle_stop_tick' 'tick_sched_do_timer' 'commit_echoes' 'blk_mq_free_request' 'find_get_pages_range_tag' 'generic_write_end' '__mpage_writepage' 'do_nanosleep' 'file_update_time' 'n_tty_receive_buf_common' '__snd_rawmidi_transmit_ack' '__lru_cache_add' 'filemap_fault' 'page_counter_charge' 'ep_poll' 'generic_fillattr' '__delete_from_page_cache' '__writeback_single_inode' 'mod_timer' 'ext4_free_inodes_count' 'io_sq_thread' 'ext4_writepages' 'shmem_add_to_page_cache' 'file_remove_privs' 'pipe_double_lock' 'audit_log_start' 'do_syslog' '__put_unused_fd' 'kcm_rfree' 'fsnotify' 'blk_mq_dispatch_rq_list' 'run_timer_softirq' 'get_signal' '__bpf_lru_node_move_in' 'lruvec_lru_size' 'get_cpu_idle_time_us' 'pcpu_alloc' 'list_lru_count_one' '__ext4_new_inode' 'blk_mq_get_request' '__x64_sys_ptrace' '__find_get_block' 'ns_capable_common' 'vti_tunnel_xmit' 'wbt_inflight_cb' 'xas_clear_mark' 'add_timer' 'blk_mq_sched_dispatch_requests' 'atime_needs_update' 'decrypt_packet' '__perf_event_overflow' '__add_to_page_cache_locked' 'futex_wait_queue_me' 'schedule_hrtimeout_range_clock' '__mark_inode_dirty' 'do_signal_stop' 'generic_file_read_iter' 'exit_signals' 'wbt_issue' 'poll_schedule_timeout' 'install_new_memslots' [ 61.665076][ T8928] KCSAN: could not find function: 'poll_schedule_timeout' [ 78.011095][ T8917] ================================================================== [ 78.019206][ T8917] BUG: KCSAN: data-race in ktime_get_seconds / timekeeping_advance [ 78.027079][ T8917] [ 78.029402][ T8917] write to 0xffffffff88ae90c8 of 280 bytes by interrupt on cpu 0: [ 78.037183][ T8917] timekeeping_advance+0x88e/0xd80 [ 78.042296][ T8917] update_wall_time+0x15/0x20 [ 78.048086][ T8917] tick_do_update_jiffies64+0x1e5/0x2a0 [ 78.053629][ T8917] tick_sched_do_timer+0xc7/0xd0 [ 78.059516][ T8917] tick_sched_timer+0x3f/0xd0 [ 78.064172][ T8917] __hrtimer_run_queues+0x271/0x600 [ 78.069346][ T8917] hrtimer_interrupt+0x226/0x490 [ 78.074269][ T8917] smp_apic_timer_interrupt+0xd8/0x270 [ 78.079725][ T8917] apic_timer_interrupt+0xf/0x20 [ 78.084646][ T8917] __tsan_read1+0x2c/0x110 [ 78.089041][ T8917] ipt_do_table+0x334/0xe70 [ 78.093521][ T8917] iptable_raw_hook+0x44/0x60 [ 78.098174][ T8917] nf_hook_slow+0x7c/0x160 [ 78.102570][ T8917] nf_hook_slow_list+0x140/0x29f [ 78.107484][ T8917] ip_sublist_rcv+0x4f9/0x530 [ 78.112139][ T8917] ip_list_rcv+0x2f3/0x321 [ 78.116534][ T8917] __netif_receive_skb_list_core+0x368/0x5c0 [ 78.122493][ T8917] netif_receive_skb_list_internal+0x5c7/0x810 [ 78.128639][ T8917] gro_normal_list.part.0+0x37/0xa0 [ 78.134424][ T8917] gro_normal_one+0x14c/0x160 [ 78.139097][ T8917] napi_gro_receive+0x27d/0x2f0 [ 78.144040][ T8917] receive_buf+0x24c/0x3420 [ 78.148522][ T8917] virtnet_poll+0x343/0x790 [ 78.153003][ T8917] net_rx_action+0x3ad/0xac0 [ 78.157569][ T8917] __do_softirq+0x118/0x34a [ 78.162048][ T8917] run_ksoftirqd+0x41/0x60 [ 78.166443][ T8917] smpboot_thread_fn+0x374/0x4a0 [ 78.171443][ T8917] kthread+0x203/0x230 [ 78.175495][ T8917] ret_from_fork+0x1f/0x30 [ 78.179908][ T8917] [ 78.182238][ T8917] read to 0xffffffff88ae9140 of 8 bytes by task 8917 on cpu 1: [ 78.190192][ T8917] ktime_get_seconds+0x42/0x60 [ 78.194955][ T8917] tcp_rcv_established+0xe79/0xee0 [ 78.200043][ T8917] tcp_v4_do_rcv+0x396/0x4f0 [ 78.204611][ T8917] __release_sock+0x130/0x1e0 [ 78.209264][ T8917] release_sock+0x5e/0x160 [ 78.213657][ T8917] tcp_recvmsg+0x68e/0x1ba0 [ 78.218137][ T8917] inet_recvmsg+0xc1/0x250 [ 78.222546][ T8917] sock_recvmsg+0x8e/0xb0 [ 78.226867][ T8917] sock_read_iter+0x185/0x230 [ 78.231546][ T8917] new_sync_read+0x416/0x450 [ 78.236151][ T8917] __vfs_read+0x9e/0xb0 [ 78.240296][ T8917] vfs_read+0x13e/0x2b0 [ 78.244434][ T8917] ksys_read+0x16a/0x1a0 [ 78.248670][ T8917] __x64_sys_read+0x49/0x60 [ 78.253162][ T8917] do_syscall_64+0xc7/0x3b0 [ 78.257671][ T8917] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 78.263540][ T8917] [ 78.265865][ T8917] Reported by Kernel Concurrency Sanitizer on: [ 78.272010][ T8917] CPU: 1 PID: 8917 Comm: syz-fuzzer Not tainted 5.7.0-rc1-syzkaller #0 [ 78.280317][ T8917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 78.290355][ T8917] ================================================================== [ 78.298399][ T8917] Kernel panic - not syncing: panic_on_warn set ... [ 78.304973][ T8917] CPU: 1 PID: 8917 Comm: syz-fuzzer Not tainted 5.7.0-rc1-syzkaller #0 [ 78.313190][ T8917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 78.323238][ T8917] Call Trace: [ 78.326530][ T8917] dump_stack+0x11d/0x187 [ 78.330854][ T8917] panic+0x210/0x640 [ 78.334754][ T8917] ? vprintk_func+0x89/0x13a [ 78.339355][ T8917] kcsan_report.cold+0xc/0x1a [ 78.344033][ T8917] kcsan_setup_watchpoint+0x3fb/0x440 [ 78.349393][ T8917] ktime_get_seconds+0x42/0x60 [ 78.354365][ T8917] tcp_rcv_established+0xe79/0xee0 [ 78.359474][ T8917] tcp_v4_do_rcv+0x396/0x4f0 [ 78.364072][ T8917] __release_sock+0x130/0x1e0 [ 78.368737][ T8917] release_sock+0x5e/0x160 [ 78.373142][ T8917] tcp_recvmsg+0x68e/0x1ba0 [ 78.377650][ T8917] inet_recvmsg+0xc1/0x250 [ 78.382146][ T8917] ? apparmor_socket_recvmsg+0x38/0x40 [ 78.387594][ T8917] ? inet_sendpage+0xf0/0xf0 [ 78.392172][ T8917] sock_recvmsg+0x8e/0xb0 [ 78.396499][ T8917] sock_read_iter+0x185/0x230 [ 78.401176][ T8917] new_sync_read+0x416/0x450 [ 78.405777][ T8917] __vfs_read+0x9e/0xb0 [ 78.409942][ T8917] vfs_read+0x13e/0x2b0 [ 78.414086][ T8917] ksys_read+0x16a/0x1a0 [ 78.418334][ T8917] __x64_sys_read+0x49/0x60 [ 78.422832][ T8917] do_syscall_64+0xc7/0x3b0 [ 78.427339][ T8917] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 78.433232][ T8917] RIP: 0033:0x47c530 [ 78.437121][ T8917] Code: 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 49 c7 c2 00 00 00 00 49 c7 c0 00 00 00 00 49 c7 c1 00 00 00 00 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 78.456719][ T8917] RSP: 002b:000000c4202577d8 EFLAGS: 00000212 ORIG_RAX: 0000000000000000 [ 78.465120][ T8917] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000047c530 [ 78.473077][ T8917] RDX: 0000000000001000 RSI: 000000c42030e000 RDI: 0000000000000003 [ 78.481131][ T8917] RBP: 000000c420257830 R08: 0000000000000000 R09: 0000000000000000 [ 78.489095][ T8917] R10: 0000000000000000 R11: 0000000000000212 R12: 0000000000000004 [ 78.497056][ T8917] R13: ffffffffffffffff R14: 0000000000000004 R15: ffffffffffffffff [ 78.506377][ T8917] Kernel Offset: disabled [ 78.510694][ T8917] Rebooting in 86400 seconds..