[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 33.478764][ T25] audit: type=1800 audit(1570541392.322:25): pid=7110 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2447 res=0 [ 33.498673][ T25] audit: type=1800 audit(1570541392.322:26): pid=7110 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2490 res=0 [ 33.532271][ T25] audit: type=1800 audit(1570541392.322:27): pid=7110 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2469 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.1.28' (ECDSA) to the list of known hosts. 2019/10/08 13:30:04 fuzzer started 2019/10/08 13:30:06 dialing manager at 10.128.0.105:44253 2019/10/08 13:30:06 checking machine... 2019/10/08 13:30:06 checking revisions... 2019/10/08 13:30:06 testing simple program... syzkaller login: [ 47.521880][ T7285] IPVS: ftp: loaded support on port[0] = 21 2019/10/08 13:30:06 building call list... executing program [ 51.340527][ T7293] can: request_module (can-proto-0) failed. [ 51.353650][ T7293] can: request_module (can-proto-0) failed. 2019/10/08 13:30:15 syscalls: 2523 2019/10/08 13:30:15 code coverage: enabled 2019/10/08 13:30:15 comparison tracing: enabled 2019/10/08 13:30:15 extra coverage: extra coverage is not supported by the kernel 2019/10/08 13:30:15 setuid sandbox: enabled 2019/10/08 13:30:15 namespace sandbox: enabled 2019/10/08 13:30:15 Android sandbox: /sys/fs/selinux/policy does not exist 2019/10/08 13:30:15 fault injection: enabled 2019/10/08 13:30:15 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/10/08 13:30:15 net packet injection: enabled 2019/10/08 13:30:15 net device setup: enabled 2019/10/08 13:30:15 concurrency sanitizer: enabled 13:30:16 executing program 0: r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) ioctl$BINDER_GET_NODE_INFO_FOR_REF(r0, 0xc018620c, &(0x7f0000000340)) [ 57.583322][ T7333] IPVS: ftp: loaded support on port[0] = 21 [ 57.622774][ T7333] ================================================================== [ 57.630909][ T7333] BUG: KCSAN: data-race in __zone_watermark_ok / get_page_from_freelist [ 57.639309][ T7333] [ 57.641635][ T7333] write to 0xffff88812fffce88 of 8 bytes by task 7272 on cpu 1: [ 57.649362][ T7333] get_page_from_freelist+0x131e/0x2300 [ 57.654900][ T7333] __alloc_pages_nodemask+0x255/0x4d0 [ 57.660274][ T7333] alloc_pages_current+0xd1/0x170 [ 57.665300][ T7333] __page_cache_alloc+0x183/0x1a0 [ 57.670323][ T7333] __do_page_cache_readahead+0x13e/0x390 [ 57.675949][ T7333] ondemand_readahead+0x35d/0x710 [ 57.680969][ T7333] page_cache_async_readahead+0x22c/0x250 [ 57.686689][ T7333] generic_file_read_iter+0xffc/0x1440 [ 57.692168][ T7333] ext4_file_read_iter+0xfa/0x240 [ 57.697188][ T7333] new_sync_read+0x389/0x4f0 [ 57.701770][ T7333] __vfs_read+0xb1/0xc0 [ 57.705927][ T7333] integrity_kernel_read+0xa1/0xe0 [ 57.711043][ T7333] ima_calc_file_hash_tfm+0x1b5/0x260 [ 57.716419][ T7333] ima_calc_file_hash+0x158/0xf10 [ 57.721423][ T7333] [ 57.723751][ T7333] read to 0xffff88812fffce88 of 8 bytes by task 7333 on cpu 0: [ 57.731289][ T7333] __zone_watermark_ok+0x106/0x240 [ 57.736401][ T7333] get_page_from_freelist+0x629/0x2300 [ 57.741856][ T7333] __alloc_pages_nodemask+0x255/0x4d0 [ 57.747225][ T7333] cache_grow_begin+0x76/0x670 [ 57.751983][ T7333] __kmalloc+0x59c/0x690 [ 57.756222][ T7333] ops_init+0xf0/0x240 [ 57.760287][ T7333] setup_net+0x194/0x4b0 [ 57.764805][ T7333] copy_net_ns+0x1dc/0x336 [ 57.769239][ T7333] create_new_namespaces+0x2e2/0x4b0 [ 57.774521][ T7333] unshare_nsproxy_namespaces+0xb9/0x170 [ 57.780152][ T7333] ksys_unshare+0x2dc/0x710 [ 57.784655][ T7333] __x64_sys_unshare+0x28/0x40 [ 57.789429][ T7333] do_syscall_64+0xcf/0x2f0 [ 57.794088][ T7333] [ 57.796407][ T7333] Reported by Kernel Concurrency Sanitizer on: [ 57.802568][ T7333] CPU: 0 PID: 7333 Comm: syz-executor.0 Not tainted 5.3.0+ #0 [ 57.810010][ T7333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.820095][ T7333] ================================================================== [ 57.828323][ T7333] Kernel panic - not syncing: panic_on_warn set ... [ 57.834910][ T7333] CPU: 0 PID: 7333 Comm: syz-executor.0 Not tainted 5.3.0+ #0 [ 57.842349][ T7333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 57.853110][ T7333] Call Trace: [ 57.856429][ T7333] dump_stack+0xf5/0x159 [ 57.860669][ T7333] panic+0x209/0x639 [ 57.864566][ T7333] ? create_new_namespaces+0x2e2/0x4b0 [ 57.870025][ T7333] ? vprintk_func+0x8d/0x140 [ 57.874616][ T7333] kcsan_report.cold+0xc/0x1b [ 57.879296][ T7333] __kcsan_setup_watchpoint+0x3ee/0x510 [ 57.885122][ T7333] __tsan_read8+0x2c/0x30 [ 57.889474][ T7333] __zone_watermark_ok+0x106/0x240 [ 57.894603][ T7333] get_page_from_freelist+0x629/0x2300 [ 57.900062][ T7333] ? _raw_spin_unlock+0x4b/0x60 [ 57.904921][ T7333] ? __inet_hash+0x3c0/0x7b0 [ 57.909507][ T7333] ? __kcsan_setup_watchpoint+0x96/0x510 [ 57.915150][ T7333] ? __kcsan_setup_watchpoint+0x96/0x510 [ 57.920773][ T7333] ? __kcsan_setup_watchpoint+0x96/0x510 [ 57.926660][ T7333] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 57.932903][ T7333] ? __tsan_read8+0x2c/0x30 [ 57.937402][ T7333] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 57.943654][ T7333] ? __kcsan_setup_watchpoint+0x96/0x510 [ 57.949295][ T7333] __alloc_pages_nodemask+0x255/0x4d0 [ 57.954671][ T7333] ? __kcsan_setup_watchpoint+0x96/0x510 [ 57.960315][ T7333] cache_grow_begin+0x76/0x670 [ 57.965076][ T7333] ? __tsan_read8+0x2c/0x30 [ 57.969577][ T7333] __kmalloc+0x59c/0x690 [ 57.973815][ T7333] ? __kcsan_setup_watchpoint+0x96/0x510 [ 57.979452][ T7333] ? ops_init+0xf0/0x240 [ 57.983697][ T7333] ops_init+0xf0/0x240 [ 57.987769][ T7333] setup_net+0x194/0x4b0 [ 57.992010][ T7333] copy_net_ns+0x1dc/0x336 [ 57.996435][ T7333] create_new_namespaces+0x2e2/0x4b0 [ 58.001725][ T7333] unshare_nsproxy_namespaces+0xb9/0x170 [ 58.007355][ T7333] ksys_unshare+0x2dc/0x710 [ 58.011852][ T7333] ? __tsan_read8+0x2c/0x30 [ 58.016350][ T7333] __x64_sys_unshare+0x28/0x40 [ 58.021123][ T7333] do_syscall_64+0xcf/0x2f0 [ 58.025630][ T7333] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 58.031518][ T7333] RIP: 0033:0x45c527 [ 58.035410][ T7333] Code: 00 00 00 b8 63 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 1d 8d fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 fd 8c fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 58.055013][ T7333] RSP: 002b:00007fff21615af8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110 [ 58.063430][ T7333] RAX: ffffffffffffffda RBX: 000000000075ca28 RCX: 000000000045c527 [ 58.071411][ T7333] RDX: 0000000000000000 RSI: 00007fff21615aa0 RDI: 0000000040000000 [ 58.079382][ T7333] RBP: 00000000000000f8 R08: 0000000000000000 R09: 0000000000000005 [ 58.087344][ T7333] R10: 0000000000000000 R11: 0000000000000206 R12: 000000000075ca28 [ 58.095310][ T7333] R13: 00007fff21615d68 R14: 0000000000000000 R15: 0000000000000000 [ 58.104923][ T7333] Kernel Offset: disabled [ 58.109365][ T7333] Rebooting in 86400 seconds..