[info] Using makefile-style concurrent boot in runlevel 2. [ 46.980774][ T27] audit: type=1800 audit(1578315681.634:21): pid=7809 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2452 res=0 [ 47.000743][ T27] audit: type=1800 audit(1578315681.634:22): pid=7809 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="motd" dev="sda1" ino=2480 res=0 [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.10.31' (ECDSA) to the list of known hosts. 2020/01/06 13:01:30 fuzzer started 2020/01/06 13:01:31 dialing manager at 10.128.0.105:43393 2020/01/06 13:01:32 syscalls: 2789 2020/01/06 13:01:32 code coverage: enabled 2020/01/06 13:01:32 comparison tracing: enabled 2020/01/06 13:01:32 extra coverage: enabled 2020/01/06 13:01:32 setuid sandbox: enabled 2020/01/06 13:01:32 namespace sandbox: enabled 2020/01/06 13:01:32 Android sandbox: /sys/fs/selinux/policy does not exist 2020/01/06 13:01:32 fault injection: enabled 2020/01/06 13:01:32 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/01/06 13:01:32 net packet injection: enabled 2020/01/06 13:01:32 net device setup: enabled 2020/01/06 13:01:32 concurrency sanitizer: enabled 2020/01/06 13:01:32 devlink PCI setup: PCI device 0000:00:10.0 is not available syzkaller login: [ 63.992216][ T7977] KCSAN: could not find function: 'poll_schedule_timeout' 2020/01/06 13:01:44 adding functions to KCSAN blacklist: '__hrtimer_run_queues' 'find_get_pages_range_tag' 'generic_update_time' 'copy_process' 'ext4_mark_iloc_dirty' '__rcu_read_unlock' '__dentry_kill' 'ext4_free_inodes_count' 'ext4_free_inode' 'ktime_get_real_seconds' 'wbt_issue' 'bio_endio' 'wbc_detach_inode' '__snd_rawmidi_transmit_ack' 'wbt_done' 'del_timer' 'ext4_ext_insert_extent' 'd_lru_add' '__wb_update_bandwidth' 'tick_do_update_jiffies64' 'd_instantiate_new' '__find_get_block' 'complete_signal' 'run_timer_softirq' 'generic_file_read_iter' 'evict' 'add_timer' 'unix_release_sock' 'tomoyo_supervisor' 'xas_find_marked' 'ext4_has_free_clusters' 'blk_mq_get_request' 'find_next_bit' 'echo_char' 'inode_permission' '__skb_try_recv_from_queue' 'd_delete' 'pipe_poll' 'dd_has_work' 'blk_mq_sched_dispatch_requests' '__ext4_new_inode' 'pid_update_inode' 'kauditd_thread' 'ext4_mb_good_group' 'mm_update_next_owner' '__writeback_single_inode' 'poll_schedule_timeout' 'rcu_gp_fqs_check_wake' 'tick_sched_do_timer' 'vm_area_dup' 'iput' 'tick_nohz_idle_stop_tick' 'process_srcu' 'do_syslog' 'atime_needs_update' 'ep_poll' 'blk_mq_run_hw_queue' 'blk_mq_dispatch_rq_list' '__perf_event_overflow' 'ip_tunnel_xmit' 'blk_stat_add' 'audit_log_start' 'do_exit' 'snd_seq_prioq_cell_out' '__dev_queue_xmit' 'shmem_file_read_iter' 'sbitmap_queue_clear' 'ext4_nonda_switch' 'common_perm_cond' 'do_nanosleep' 'generic_fillattr' '__mark_inode_dirty' 'sit_tunnel_xmit' 'taskstats_exit' 'generic_write_end' '__alloc_fd' 'timer_clear_idle' 'iomap_dio_bio_actor' 'pcpu_alloc' 'mod_timer' 'rcu_gp_fqs_loop' 'smpboot_thread_fn' 'lookup_fast' 'snd_seq_fifo_event_in' [ 126.149931][ T7960] ================================================================== [ 126.158188][ T7960] BUG: KCSAN: data-race in handle_mm_fault / watchdog [ 126.164964][ T7960] [ 126.167311][ T7960] read to 0xffff88812b0e4090 of 8 bytes by task 1066 on cpu 0: [ 126.174868][ T7960] watchdog+0x2b1/0x960 [ 126.179210][ T7960] kthread+0x1d4/0x200 [ 126.183294][ T7960] ret_from_fork+0x1f/0x30 [ 126.187704][ T7960] [ 126.190046][ T7960] write to 0xffff88812b0e4090 of 8 bytes by task 7960 on cpu 1: [ 126.197689][ T7960] handle_mm_fault+0x4a/0x530 [ 126.202377][ T7960] __do_page_fault+0x456/0x8d0 [ 126.207154][ T7960] do_page_fault+0x38/0x194 [ 126.211669][ T7960] page_fault+0x34/0x40 [ 126.215820][ T7960] [ 126.218150][ T7960] Reported by Kernel Concurrency Sanitizer on: [ 126.224318][ T7960] CPU: 1 PID: 7960 Comm: syz-fuzzer Not tainted 5.5.0-rc1-syzkaller #0 [ 126.232575][ T7960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 126.242639][ T7960] ================================================================== [ 126.250704][ T7960] Kernel panic - not syncing: panic_on_warn set ... [ 126.257310][ T7960] CPU: 1 PID: 7960 Comm: syz-fuzzer Not tainted 5.5.0-rc1-syzkaller #0 [ 126.265556][ T7960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 126.275635][ T7960] Call Trace: [ 126.278954][ T7960] dump_stack+0x11d/0x181 [ 126.283319][ T7960] panic+0x210/0x640 [ 126.287238][ T7960] ? vprintk_func+0x8d/0x140 [ 126.291849][ T7960] kcsan_report.cold+0xc/0xd [ 126.296463][ T7960] kcsan_setup_watchpoint+0x3fe/0x460 [ 126.301861][ T7960] __tsan_unaligned_write8+0xc7/0x110 [ 126.307254][ T7960] handle_mm_fault+0x4a/0x530 [ 126.312075][ T7960] __do_page_fault+0x456/0x8d0 [ 126.316869][ T7960] do_page_fault+0x38/0x194 [ 126.321389][ T7960] page_fault+0x34/0x40 [ 126.325833][ T7960] RIP: 0033:0x41d490 [ 126.329752][ T7960] Code: 01 44 0f b6 0b 49 89 ca 44 89 c1 41 d3 e9 48 83 ff 08 74 0b 41 0f ba e1 04 0f 83 db 00 00 00 41 0f ba e1 00 73 b1 4c 8d 0c 37 <4d> 8b 09 4d 85 c9 74 a5 4c 39 c8 77 a0 49 39 d1 73 9b 4d 89 cb 49 [ 126.352259][ T7960] RSP: 002b:00007fffa1bc1bc0 EFLAGS: 00010293 [ 126.358353][ T7960] RAX: 000000c420000000 RBX: 000000c41fcb46ff RCX: 0000000000000000 [ 126.366434][ T7960] RDX: 000000c42d800000 RSI: 000000c426972000 RDI: 0000000000000000 [ 126.374593][ T7960] RBP: 00007fffa1bc1c58 R08: 0000000000000000 R09: 000000c426972000 [ 126.382750][ T7960] R10: 0000000000001000 R11: 000000c426972000 R12: 0000000000000000 [ 126.390732][ T7960] R13: 0000000000000001 R14: 0000000000000001 R15: 0000000000000001 [ 126.400180][ T7960] Kernel Offset: disabled [ 126.404513][ T7960] Rebooting in 86400 seconds..