[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.169' (ECDSA) to the list of known hosts. 2020/06/11 20:02:38 fuzzer started 2020/06/11 20:02:39 dialing manager at 10.128.0.105:39743 2020/06/11 20:02:39 syscalls: 3078 2020/06/11 20:02:39 code coverage: enabled 2020/06/11 20:02:39 comparison tracing: enabled 2020/06/11 20:02:39 extra coverage: enabled 2020/06/11 20:02:39 setuid sandbox: enabled 2020/06/11 20:02:39 namespace sandbox: enabled 2020/06/11 20:02:39 Android sandbox: /sys/fs/selinux/policy does not exist 2020/06/11 20:02:39 fault injection: enabled 2020/06/11 20:02:39 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/06/11 20:02:39 net packet injection: enabled 2020/06/11 20:02:39 net device setup: enabled 2020/06/11 20:02:39 concurrency sanitizer: enabled 2020/06/11 20:02:39 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/06/11 20:02:39 USB emulation: enabled syzkaller login: [ 50.308846][ T8921] KCSAN: could not find function: '_find_next_bit' 2020/06/11 20:02:42 adding functions to KCSAN blacklist: 'tick_nohz_next_event' 'do_syslog' 'do_exit' 'page_counter_charge' 'do_signal_stop' 'copy_process' 'run_timer_softirq' 'mod_timer' '_find_next_bit' 'generic_write_end' 'echo_char' 'shmem_add_to_page_cache' 'tick_nohz_idle_stop_tick' 'ext4_free_inodes_count' 'dd_has_work' 'find_get_pages_range_tag' 'xas_clear_mark' '__send_signal' 'futex_wait_queue_me' 'file_update_time' '__perf_event_overflow' 'ep_poll' 'do_nanosleep' 'pcpu_alloc' '__ext4_new_inode' 'blk_mq_sched_dispatch_requests' 'xas_find_marked' 'wbt_done' 'dput' 'blk_mq_get_request' 'generic_fillattr' 'complete_signal' [ 76.014014][ C0] ================================================================== [ 76.022136][ C0] BUG: KCSAN: data-race in tick_sched_do_timer / tick_sched_do_timer [ 76.030303][ C0] [ 76.032737][ C0] write to 0xffffffff8764e210 of 4 bytes by interrupt on cpu 1: [ 76.040372][ C0] tick_sched_do_timer+0xb4/0xd0 [ 76.045291][ C0] tick_sched_timer+0x3f/0xd0 [ 76.049966][ C0] __hrtimer_run_queues+0x271/0x600 [ 76.055164][ C0] hrtimer_interrupt+0x226/0x490 [ 76.060133][ C0] smp_apic_timer_interrupt+0xd8/0x270 [ 76.065585][ C0] apic_timer_interrupt+0xf/0x20 [ 76.070512][ C0] kcsan_setup_watchpoint+0x25a/0x440 [ 76.075859][ C0] inet_gro_receive+0x2b3/0x770 [ 76.080684][ C0] dev_gro_receive+0x9d9/0x10f0 [ 76.085517][ C0] napi_gro_receive+0x76/0x2f0 [ 76.090263][ C0] receive_buf+0x24c/0x3420 [ 76.094751][ C0] virtnet_poll+0x343/0x790 [ 76.099226][ C0] net_rx_action+0x3ad/0xac0 [ 76.103806][ C0] __do_softirq+0x118/0x34a [ 76.108304][ C0] run_ksoftirqd+0x41/0x60 [ 76.112695][ C0] smpboot_thread_fn+0x374/0x4a0 [ 76.117604][ C0] kthread+0x203/0x230 [ 76.121650][ C0] ret_from_fork+0x1f/0x30 [ 76.126032][ C0] [ 76.128339][ C0] read to 0xffffffff8764e210 of 4 bytes by interrupt on cpu 0: [ 76.135862][ C0] tick_sched_do_timer+0x2e/0xd0 [ 76.140789][ C0] tick_sched_timer+0x3f/0xd0 [ 76.145459][ C0] __hrtimer_run_queues+0x271/0x600 [ 76.150628][ C0] hrtimer_interrupt+0x226/0x490 [ 76.155550][ C0] smp_apic_timer_interrupt+0xd8/0x270 [ 76.161012][ C0] apic_timer_interrupt+0xf/0x20 [ 76.165935][ C0] __sanitizer_cov_trace_const_cmp1+0x0/0x20 [ 76.171986][ C0] skb_try_coalesce+0x842/0xb90 [ 76.176809][ C0] tcp_try_coalesce+0x219/0x430 [ 76.181645][ C0] tcp_queue_rcv+0x9b/0x380 [ 76.186131][ C0] tcp_rcv_established+0xba3/0xee0 [ 76.191222][ C0] tcp_v4_do_rcv+0x396/0x4f0 [ 76.195802][ C0] __release_sock+0x130/0x1e0 [ 76.200453][ C0] release_sock+0x5e/0x160 [ 76.204844][ C0] tcp_recvmsg+0x68e/0x1ba0 [ 76.209482][ C0] inet_recvmsg+0xc1/0x250 [ 76.213902][ C0] sock_recvmsg+0x8e/0xb0 [ 76.218219][ C0] sock_read_iter+0x185/0x230 [ 76.222882][ C0] new_sync_read+0x416/0x450 [ 76.227448][ C0] __vfs_read+0x9e/0xb0 [ 76.231579][ C0] vfs_read+0x13e/0x2b0 [ 76.235732][ C0] ksys_read+0x16a/0x1a0 [ 76.239954][ C0] __x64_sys_read+0x49/0x60 [ 76.244454][ C0] do_syscall_64+0xc7/0x3b0 [ 76.248938][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 76.254796][ C0] [ 76.257096][ C0] Reported by Kernel Concurrency Sanitizer on: [ 76.263223][ C0] CPU: 0 PID: 8910 Comm: syz-fuzzer Not tainted 5.7.0-rc1-syzkaller #0 [ 76.271442][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 76.281476][ C0] ================================================================== [ 76.289509][ C0] Kernel panic - not syncing: panic_on_warn set ... [ 76.296072][ C0] CPU: 0 PID: 8910 Comm: syz-fuzzer Not tainted 5.7.0-rc1-syzkaller #0 [ 76.304300][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 76.314340][ C0] Call Trace: [ 76.317689][ C0] [ 76.320537][ C0] dump_stack+0x11d/0x187 [ 76.324933][ C0] panic+0x210/0x640 [ 76.328825][ C0] ? vprintk_func+0x89/0x13a [ 76.333663][ C0] kcsan_report.cold+0xc/0x1a [ 76.338331][ C0] kcsan_setup_watchpoint+0x3fb/0x440 [ 76.344847][ C0] tick_sched_do_timer+0x2e/0xd0 [ 76.349781][ C0] tick_sched_timer+0x3f/0xd0 [ 76.354465][ C0] __hrtimer_run_queues+0x271/0x600 [ 76.359641][ C0] ? tick_sched_do_timer+0xd0/0xd0 [ 76.364745][ C0] hrtimer_interrupt+0x226/0x490 [ 76.369658][ C0] ? kvm_clock_read+0x14/0x30 [ 76.374331][ C0] smp_apic_timer_interrupt+0xd8/0x270 [ 76.379776][ C0] apic_timer_interrupt+0xf/0x20 [ 76.384683][ C0] [ 76.387615][ C0] RIP: 0010:__sanitizer_cov_trace_const_cmp1+0x0/0x20 [ 76.394353][ C0] Code: 66 2e 0f 1f 84 00 00 00 00 00 48 8b 0c 24 48 89 f2 48 89 fe bf 06 00 00 00 e9 2c ff ff ff 66 90 66 2e 0f 1f 84 00 00 00 00 00 <48> 8b 0c 24 40 0f b6 d6 40 0f b6 f7 bf 01 00 00 00 e9 0a ff ff ff [ 76.413931][ C0] RSP: 0018:ffffc90000db7840 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13 [ 76.422324][ C0] RAX: ffff88812ad43a98 RBX: 0000000000000000 RCX: ffffffff88af0530 [ 76.430278][ C0] RDX: 0000000000000031 RSI: 0000000000000000 RDI: 0000000000000000 [ 76.438224][ C0] RBP: ffff8881223dc700 R08: 0000000000000000 R09: 00008881223dc7c0 [ 76.446182][ C0] R10: 0000888121bfbd7e R11: 00008881223dc7c7 R12: 00000000000001e0 [ 76.454139][ C0] R13: ffff888121bfbd00 R14: ffff88811f1f4af0 R15: 000000000000000f [ 76.462119][ C0] skb_try_coalesce+0x842/0xb90 [ 76.466960][ C0] tcp_try_coalesce+0x219/0x430 [ 76.471791][ C0] ? __sanitizer_cov_trace_switch+0x45/0x70 [ 76.477668][ C0] tcp_queue_rcv+0x9b/0x380 [ 76.482160][ C0] tcp_rcv_established+0xba3/0xee0 [ 76.487349][ C0] tcp_v4_do_rcv+0x396/0x4f0 [ 76.491915][ C0] __release_sock+0x130/0x1e0 [ 76.496575][ C0] release_sock+0x5e/0x160 [ 76.500966][ C0] tcp_recvmsg+0x68e/0x1ba0 [ 76.505469][ C0] inet_recvmsg+0xc1/0x250 [ 76.509878][ C0] ? apparmor_socket_recvmsg+0x38/0x40 [ 76.515330][ C0] ? inet_sendpage+0xf0/0xf0 [ 76.519911][ C0] sock_recvmsg+0x8e/0xb0 [ 76.524229][ C0] sock_read_iter+0x185/0x230 [ 76.528895][ C0] new_sync_read+0x416/0x450 [ 76.533465][ C0] __vfs_read+0x9e/0xb0 [ 76.537614][ C0] vfs_read+0x13e/0x2b0 [ 76.541752][ C0] ksys_read+0x16a/0x1a0 [ 76.545969][ C0] __x64_sys_read+0x49/0x60 [ 76.550446][ C0] do_syscall_64+0xc7/0x3b0 [ 76.554940][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 76.561274][ C0] RIP: 0033:0x4b3cdb [ 76.565238][ C0] Code: ff e9 69 ff ff ff cc cc cc cc cc cc cc cc cc e8 bb a1 f8 ff 48 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 28 ff ff ff ff 48 c7 44 24 30 [ 76.584829][ C0] RSP: 002b:000000c000375890 EFLAGS: 00000206 ORIG_RAX: 0000000000000000 [ 76.593224][ C0] RAX: ffffffffffffffda RBX: 000000c00002e800 RCX: 00000000004b3cdb [ 76.601177][ C0] RDX: 0000000000001000 RSI: 000000c000154000 RDI: 0000000000000006 [ 76.609122][ C0] RBP: 000000c0003758e0 R08: 0000000000000001 R09: 0000000000000002 [ 76.617089][ C0] R10: 0000000000000697 R11: 0000000000000206 R12: 0000000000006f13 [ 76.625034][ C0] R13: 0000000000002000 R14: 0000000000000002 R15: 0000000000000002 [ 76.634559][ C0] Kernel Offset: disabled [ 76.638887][ C0] Rebooting in 86400 seconds..