[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.114' (ECDSA) to the list of known hosts. 2020/06/19 15:42:48 fuzzer started 2020/06/19 15:42:48 dialing manager at 10.128.0.105:35333 2020/06/19 15:42:54 syscalls: 3092 2020/06/19 15:42:54 code coverage: enabled 2020/06/19 15:42:54 comparison tracing: enabled 2020/06/19 15:42:54 extra coverage: enabled 2020/06/19 15:42:54 setuid sandbox: enabled 2020/06/19 15:42:54 namespace sandbox: enabled 2020/06/19 15:42:54 Android sandbox: /sys/fs/selinux/policy does not exist 2020/06/19 15:42:54 fault injection: enabled 2020/06/19 15:42:54 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/06/19 15:42:54 net packet injection: enabled 2020/06/19 15:42:54 net device setup: enabled 2020/06/19 15:42:54 concurrency sanitizer: enabled 2020/06/19 15:42:54 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/06/19 15:42:54 USB emulation: enabled 2020/06/19 15:42:56 suppressing KCSAN reports in functions: 'do_syslog' 'exit_mm' 'ext4_free_inode' 'fsnotify' 'lookup_fast' 'generic_write_end' '__ext4_new_inode' 'blk_mq_rq_ctx_init' 'page_counter_charge' 'expire_timers' 'kauditd_thread' '__filemap_fdatawrite_range' 'do_nanosleep' 'ext4_mb_good_group' 'copy_process' 'blk_mq_sched_dispatch_requests' 'filemap_map_pages' 'dd_has_work' '__mark_inode_dirty' 'find_get_pages_range_tag' 'ext4_mark_iloc_dirty' 'ext4_free_inodes_count' 'do_signal_stop' '__xa_clear_mark' 'futex_wait_queue_me' 'blk_mq_dispatch_rq_list' 'xas_clear_mark' 'shmem_file_read_iter' 'complete_signal' 'do_epoll_wait' syzkaller login: [ 62.762585][ C0] ================================================================== [ 62.770882][ C0] BUG: KCSAN: data-race in add_timer_on / timer_clear_idle [ 62.778243][ C0] [ 62.780547][ C0] write to 0xffff88812c11cb24 of 1 bytes by task 0 on cpu 1: [ 62.787904][ C0] timer_clear_idle+0x2e/0x40 [ 62.792550][ C0] tick_nohz_idle_retain_tick+0x3e/0x40 [ 62.798083][ C0] do_idle+0x290/0x320 [ 62.802136][ C0] cpu_startup_entry+0x15/0x20 [ 62.806893][ C0] start_secondary+0xe3/0x110 [ 62.811647][ C0] secondary_startup_64+0xa4/0xb0 [ 62.816639][ C0] [ 62.818974][ C0] read to 0xffff88812c11cb24 of 1 bytes by interrupt on cpu 0: [ 62.829278][ C0] add_timer_on+0x2c9/0x360 [ 62.833773][ C0] clocksource_watchdog+0x729/0x760 [ 62.838940][ C0] call_timer_fn+0x30/0x2a0 [ 62.843421][ C0] expire_timers+0x116/0x290 [ 62.847992][ C0] __run_timers+0x443/0x500 [ 62.853134][ C0] run_timer_softirq+0x2e/0x60 [ 62.857921][ C0] __do_softirq+0x198/0x360 [ 62.862481][ C0] asm_call_on_stack+0xf/0x20 [ 62.867459][ C0] do_softirq_own_stack+0x5d/0x80 [ 62.872477][ C0] __irq_exit_rcu+0x115/0x120 [ 62.877130][ C0] sysvec_apic_timer_interrupt+0xd9/0xf0 [ 62.882733][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 62.888681][ C0] [ 62.890990][ C0] Reported by Kernel Concurrency Sanitizer on: [ 62.897149][ C0] CPU: 0 PID: 8626 Comm: syz-fuzzer Not tainted 5.8.0-rc1-syzkaller #0 [ 62.905361][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.915506][ C0] ================================================================== [ 62.923542][ C0] Kernel panic - not syncing: panic_on_warn set ... [ 62.930141][ C0] CPU: 0 PID: 8626 Comm: syz-fuzzer Not tainted 5.8.0-rc1-syzkaller #0 [ 62.938455][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.948668][ C0] Call Trace: [ 62.951947][ C0] [ 62.954792][ C0] dump_stack+0x10f/0x19d [ 62.959097][ C0] panic+0x1f8/0x63a [ 62.962964][ C0] ? vprintk_emit+0x44a/0x4f0 [ 62.967625][ C0] kcsan_report+0x684/0x690 [ 62.972099][ C0] ? kcsan_setup_watchpoint+0x453/0x4d0 [ 62.977613][ C0] ? add_timer_on+0x2c9/0x360 [ 62.982265][ C0] ? clocksource_watchdog+0x729/0x760 [ 62.987614][ C0] ? call_timer_fn+0x30/0x2a0 [ 62.992268][ C0] ? expire_timers+0x116/0x290 [ 62.997008][ C0] ? __run_timers+0x443/0x500 [ 63.001660][ C0] ? run_timer_softirq+0x2e/0x60 [ 63.006587][ C0] ? __do_softirq+0x198/0x360 [ 63.011234][ C0] ? asm_call_on_stack+0xf/0x20 [ 63.016055][ C0] ? do_softirq_own_stack+0x5d/0x80 [ 63.021310][ C0] ? __irq_exit_rcu+0x115/0x120 [ 63.026146][ C0] ? sysvec_apic_timer_interrupt+0xd9/0xf0 [ 63.031936][ C0] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 63.038155][ C0] ? v9fs_file_do_lock+0x2e4/0x490 [ 63.043325][ C0] ? select_idle_smt+0x39/0x90 [ 63.048075][ C0] ? debug_locks_off+0x90/0xc0 [ 63.052856][ C0] ? __internal_add_timer+0x295/0x380 [ 63.058197][ C0] ? __internal_add_timer+0x295/0x380 [ 63.063541][ C0] kcsan_setup_watchpoint+0x453/0x4d0 [ 63.069412][ C0] ? __internal_add_timer+0x295/0x380 [ 63.075206][ C0] add_timer_on+0x2c9/0x360 [ 63.079921][ C0] clocksource_watchdog+0x729/0x760 [ 63.085307][ C0] ? __clocksource_select+0x340/0x340 [ 63.091367][ C0] call_timer_fn+0x30/0x2a0 [ 63.095845][ C0] ? __clocksource_select+0x340/0x340 [ 63.101282][ C0] expire_timers+0x116/0x290 [ 63.105854][ C0] __run_timers+0x443/0x500 [ 63.110346][ C0] ? kvm_sched_clock_read+0x15/0x40 [ 63.115520][ C0] run_timer_softirq+0x2e/0x60 [ 63.120348][ C0] __do_softirq+0x198/0x360 [ 63.124835][ C0] ? asm_sysvec_apic_timer_interrupt+0xa/0x20 [ 63.131134][ C0] asm_call_on_stack+0xf/0x20 [ 63.135798][ C0] [ 63.138727][ C0] do_softirq_own_stack+0x5d/0x80 [ 63.143747][ C0] __irq_exit_rcu+0x115/0x120 [ 63.148400][ C0] sysvec_apic_timer_interrupt+0xd9/0xf0 [ 63.154018][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 63.160067][ C0] RIP: 0033:0x7fafb5 [ 63.163951][ C0] Code: Bad RIP value. [ 63.168158][ C0] RSP: 002b:000000c00004b4e0 EFLAGS: 00000293 [ 63.174268][ C0] RAX: 0000000000023473 RBX: 000000c00000d180 RCX: 000000000003b8fa [ 63.182303][ C0] RDX: 0000000000a444b8 RSI: 000000c00014df98 RDI: 000000c000a7c000 [ 63.190402][ C0] RBP: 000000c00004b578 R08: 0000000000000006 R09: 000000c00014df98 [ 63.199143][ C0] R10: 000000000003b8fa R11: 0000000000000074 R12: 00000000000000f4 [ 63.207366][ C0] R13: 0000000000000000 R14: 0000000000abc9c9 R15: 0000000000000000 [ 64.339647][ C0] Shutting down cpus with NMI [ 64.345754][ C0] Kernel Offset: disabled [ 64.350094][ C0] Rebooting in 86400 seconds..