[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 52.056702][ T27] kauditd_printk_skb: 7 callbacks suppressed [ 52.056720][ T27] audit: type=1800 audit(1580968484.721:29): pid=7921 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2465 res=0 [ 52.082752][ T27] audit: type=1800 audit(1580968484.731:30): pid=7921 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2456 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.235' (ECDSA) to the list of known hosts. 2020/02/06 05:54:53 fuzzer started 2020/02/06 05:54:55 dialing manager at 10.128.0.105:44419 2020/02/06 05:54:56 syscalls: 2904 2020/02/06 05:54:56 code coverage: enabled 2020/02/06 05:54:56 comparison tracing: enabled 2020/02/06 05:54:56 extra coverage: enabled 2020/02/06 05:54:56 setuid sandbox: enabled 2020/02/06 05:54:56 namespace sandbox: enabled 2020/02/06 05:54:56 Android sandbox: /sys/fs/selinux/policy does not exist 2020/02/06 05:54:56 fault injection: enabled 2020/02/06 05:54:56 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/02/06 05:54:56 net packet injection: enabled 2020/02/06 05:54:56 net device setup: enabled 2020/02/06 05:54:56 concurrency sanitizer: enabled 2020/02/06 05:54:56 devlink PCI setup: PCI device 0000:00:10.0 is not available syzkaller login: [ 76.347463][ T8092] KCSAN: could not find function: 'poll_schedule_timeout' 2020/02/06 05:55:09 adding functions to KCSAN blacklist: 'other_inode_match' 'mod_timer' 'xas_find_marked' 'pid_update_inode' 'ext4_set_iomap' 'ext4_setattr' 'wbt_wait' 'taskstats_exit' '__snd_rawmidi_transmit_ack' 'audit_log_start' 'n_tty_kick_worker' 'timer_clear_idle' 'ktime_get_real_seconds' 'lruvec_lru_size' 'find_next_bit' 'tomoyo_supervisor' 'blk_mq_run_hw_queue' '__mark_inode_dirty' 'kcm_rfree' 'tick_nohz_idle_stop_tick' 'iomap_dio_bio_actor' '__delete_from_page_cache' '__filemap_fdatawrite_range' '__hrtimer_run_queues' 'ext4_nonda_switch' 'page_counter_try_charge' '__ext4_new_inode' 'tick_do_update_jiffies64' 'do_nanosleep' 'do_dentry_open' 'wbc_detach_inode' 'xas_clear_mark' 'pcpu_alloc' 'ext4_writepages' 'generic_file_read_iter' 'common_perm_cond' 'echo_char' 'padata_find_next' 'blk_mq_get_request' 'add_timer' 'mm_update_next_owner' 'ext4_free_inodes_count' 'alloc_empty_file' '__rb_rotate_set_parents' 'do_syslog' 'process_srcu' 'n_tty_write' 'wbt_issue' 'has_bh_in_lru' 'find_get_pages_range_tag' 'tick_sched_do_timer' 'kcm_rcv_strparser' 'wbt_done' 'dd_has_work' 'do_signal_stop' 'blk_mq_sched_dispatch_requests' 'yama_ptracer_del' 'copy_process' 'pipe_wait' 'fsnotify' 'ns_capable_common' 'shmem_file_read_iter' 'blk_mq_dispatch_rq_list' 'ext4_free_inode' 'rcu_gp_fqs_loop' 'ext4_mb_good_group' 'generic_fillattr' 'n_tty_receive_buf_common' 'page_counter_charge' 'get_cpu_idle_time_us' 'l2tp_tunnel_del_work' 'rcu_gp_fqs_check_wake' 'kauditd_thread' 'generic_update_time' 'ondemand_readahead' 'ext4_da_write_end' 'blk_stat_add' 'kernfs_refresh_inode' 'ep_poll' 'run_timer_softirq' 'vm_area_dup' 'generic_write_end' 'get_cpu_iowait_time_us' 'commit_echoes' 'ktime_get_seconds' 'load_elf_binary' '__add_to_page_cache_locked' 'alloc_pid' 'ext4_has_free_clusters' 'poll_schedule_timeout' '__remove_assoc_queue' 'shmem_getpage_gfp' [ 203.529132][ C1] ================================================================== [ 203.537463][ C1] BUG: KCSAN: data-race in ktime_get_with_offset / timekeeping_advance [ 203.545695][ C1] [ 203.548012][ C1] write to 0xffffffff8624b2c8 of 280 bytes by interrupt on cpu 0: [ 203.556330][ C1] timekeeping_advance+0x88e/0xd80 [ 203.561433][ C1] update_wall_time+0x19/0x20 [ 203.566102][ C1] tick_do_update_jiffies64+0x1a4/0x250 [ 203.571695][ C1] tick_sched_do_timer+0xd4/0xe0 [ 203.576666][ C1] tick_sched_timer+0x43/0xe0 [ 203.581339][ C1] __hrtimer_run_queues+0x274/0x5f0 [ 203.586527][ C1] hrtimer_interrupt+0x22a/0x480 [ 203.591457][ C1] smp_apic_timer_interrupt+0xdc/0x280 [ 203.596902][ C1] apic_timer_interrupt+0xf/0x20 [ 203.602439][ C1] native_safe_halt+0xe/0x10 [ 203.607098][ C1] arch_cpu_idle+0xa/0x10 [ 203.611420][ C1] default_idle_call+0x1e/0x40 [ 203.616295][ C1] do_idle+0x1c2/0x290 [ 203.620355][ C1] cpu_startup_entry+0x1b/0x20 [ 203.625148][ C1] rest_init+0xec/0xf6 [ 203.629228][ C1] arch_call_rest_init+0x17/0x37 [ 203.634161][ C1] start_kernel+0x838/0x85e [ 203.638653][ C1] x86_64_start_reservations+0x29/0x2b [ 203.644159][ C1] x86_64_start_kernel+0x72/0x76 [ 203.649105][ C1] secondary_startup_64+0xa4/0xb0 [ 203.654201][ C1] [ 203.656551][ C1] read to 0xffffffff8624b2e8 of 8 bytes by interrupt on cpu 1: [ 203.664091][ C1] ktime_get_with_offset+0x136/0x230 [ 203.669371][ C1] netif_receive_skb_list_internal+0x551/0x830 [ 203.675516][ C1] gro_normal_list.part.0+0x3a/0xb0 [ 203.681050][ C1] gro_normal_one+0x162/0x170 [ 203.685722][ C1] napi_gro_receive+0x288/0x300 [ 203.690675][ C1] receive_buf+0x284/0x30b0 [ 203.695169][ C1] virtnet_poll+0x436/0x7d0 [ 203.699719][ C1] net_rx_action+0x3ae/0xa90 [ 203.704321][ C1] __do_softirq+0x115/0x33f [ 203.708817][ C1] run_ksoftirqd+0x46/0x60 [ 203.713334][ C1] smpboot_thread_fn+0x37d/0x4a0 [ 203.718305][ C1] kthread+0x1d4/0x200 [ 203.722357][ C1] ret_from_fork+0x1f/0x30 [ 203.726744][ C1] [ 203.729058][ C1] Reported by Kernel Concurrency Sanitizer on: [ 203.735354][ C1] CPU: 1 PID: 16 Comm: ksoftirqd/1 Not tainted 5.5.0-rc1-syzkaller #0 [ 203.743511][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 203.753844][ C1] ================================================================== [ 203.761895][ C1] Kernel panic - not syncing: panic_on_warn set ... [ 203.768477][ C1] CPU: 1 PID: 16 Comm: ksoftirqd/1 Not tainted 5.5.0-rc1-syzkaller #0 [ 203.776649][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 203.786696][ C1] Call Trace: [ 203.789989][ C1] dump_stack+0x11d/0x181 [ 203.794305][ C1] panic+0x210/0x640 [ 203.798185][ C1] ? vprintk_func+0x8d/0x140 [ 203.802773][ C1] kcsan_report.cold+0xc/0xd [ 203.807350][ C1] kcsan_setup_watchpoint+0x3fe/0x460 [ 203.812711][ C1] __tsan_read8+0xc6/0x100 [ 203.817223][ C1] ktime_get_with_offset+0x136/0x230 [ 203.822499][ C1] netif_receive_skb_list_internal+0x551/0x830 [ 203.828771][ C1] ? __write_once_size+0x5a/0xe0 [ 203.833701][ C1] ? __rcu_read_unlock+0x66/0x3d0 [ 203.838986][ C1] gro_normal_list.part.0+0x3a/0xb0 [ 203.844186][ C1] ? __write_once_size+0x91/0x110 [ 203.849238][ C1] gro_normal_one+0x162/0x170 [ 203.854023][ C1] napi_gro_receive+0x288/0x300 [ 203.858861][ C1] receive_buf+0x284/0x30b0 [ 203.863403][ C1] ? skb_free_head+0x71/0x80 [ 203.868093][ C1] ? virtqueue_get_buf_ctx+0x4fd/0x5c0 [ 203.873642][ C1] ? virtqueue_get_buf+0x31/0x40 [ 203.878579][ C1] virtnet_poll+0x436/0x7d0 [ 203.883078][ C1] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 203.889312][ C1] net_rx_action+0x3ae/0xa90 [ 203.893930][ C1] __do_softirq+0x115/0x33f [ 203.898447][ C1] ? takeover_tasklets+0x250/0x250 [ 203.903554][ C1] run_ksoftirqd+0x46/0x60 [ 203.907964][ C1] smpboot_thread_fn+0x37d/0x4a0 [ 203.912900][ C1] kthread+0x1d4/0x200 [ 203.916958][ C1] ? constant_test_bit.constprop.0+0x30/0x30 [ 203.922931][ C1] ? kthread_unpark+0xe0/0xe0 [ 203.927636][ C1] ret_from_fork+0x1f/0x30 [ 203.933675][ C1] Kernel Offset: disabled [ 203.938059][ C1] Rebooting in 86400 seconds..