[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.8' (ECDSA) to the list of known hosts. 2020/06/07 10:05:16 fuzzer started 2020/06/07 10:05:17 dialing manager at 10.128.0.105:43689 2020/06/07 10:05:23 syscalls: 3055 2020/06/07 10:05:23 code coverage: enabled 2020/06/07 10:05:23 comparison tracing: enabled 2020/06/07 10:05:23 extra coverage: enabled 2020/06/07 10:05:23 setuid sandbox: enabled 2020/06/07 10:05:23 namespace sandbox: enabled 2020/06/07 10:05:23 Android sandbox: /sys/fs/selinux/policy does not exist 2020/06/07 10:05:23 fault injection: enabled 2020/06/07 10:05:23 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/06/07 10:05:23 net packet injection: enabled 2020/06/07 10:05:23 net device setup: enabled 2020/06/07 10:05:23 concurrency sanitizer: enabled 2020/06/07 10:05:23 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/06/07 10:05:23 USB emulation: enabled syzkaller login: [ 55.221738][ T8924] KCSAN: could not find function: '_find_next_bit' 2020/06/07 10:05:26 adding functions to KCSAN blacklist: 'echo_char' '_find_next_bit' 'copy_process' 'ep_poll' 'run_timer_softirq' 'wbt_done' '__ext4_new_inode' 'ext4_free_inodes_count' 'dd_has_work' 'tick_nohz_idle_stop_tick' 'generic_write_end' 'tick_nohz_next_event' 'futex_wait_queue_me' 'xas_clear_mark' 'blk_mq_get_request' 'find_get_pages_range_tag' '__snd_rawmidi_transmit_ack' 'add_timer' 'generic_fillattr' 'blk_mq_dispatch_rq_list' 'tick_sched_do_timer' 'do_nanosleep' 'file_update_time' 10:06:41 executing program 0: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mdstat\x00', 0x0, 0x0) r1 = syz_open_dev$dri(&(0x7f0000000140)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_MODE_GET_LEASE(r1, 0xc01064c8, &(0x7f00000001c0)={0x0, 0x0, 0x0}) ioctl$VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f0000000180)={0x3, 0x2, 0x4, 0x80000, 0x5, {0x0, 0xea60}, {0x4, 0x2, 0xb9, 0x4, 0xda, 0x9, "6190b9c7"}, 0x8000, 0x2, @planes=&(0x7f0000000080)={0x8, 0x4, @fd, 0x10001}, 0x7, 0x0, r1}) sendmsg$IPSET_CMD_ADD(r2, &(0x7f0000000440)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000240)={0x14, 0x9, 0x6, 0x301, 0x0, 0x0, {0x1, 0x0, 0x8}}, 0x14}}, 0x0) sendmsg$TIPC_CMD_ENABLE_BEARER(0xffffffffffffffff, 0x0, 0x0) sendmsg$TIPC_CMD_SHOW_LINK_STATS(0xffffffffffffffff, 0x0, 0x0) sendmsg$TIPC_CMD_SET_NODE_ADDR(0xffffffffffffffff, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = socket$inet_mptcp(0x2, 0x1, 0x106) bind$inet(r3, &(0x7f0000000200)={0x2, 0x4e24, @empty}, 0x10) connect$inet(r3, &(0x7f0000000480)={0x2, 0x4e24, @local}, 0x10) openat$pfkey(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$inet6_IPV6_DSTOPTS(0xffffffffffffffff, 0x29, 0x3b, 0x0, 0x0) sendto$inet(r3, &(0x7f00000004c0)="5a048b2e9e9bcff65dabbedc94fd6ac13f93416ea6a30f77d1a70216d1c660762ae4066b3262ea1c817455a558e0b677ec04e8b2c520e4902023b2d3d6ec372c3c5b86d5f1f9e688f90a54b9de6d8fc7d6c33bf14e6a82e9deeda9a62e933540003310d06ca291376e0be01ff5f82344308a6f4c9316de5a3eb5e6c620f2aee4e56882ca2bdb409f22b9d56ff198857d293eb08421260d234a6f63dd2b1c793361e4a46e60aca36096dd73a815b2ade66f72ab6b9eb6623d68b14eba37adf41e843888e70022df200cccebfd28049ea300af313038a6faea37cdbde6c824752f7c359f2e0aeb36668f2be59c49572249aff99c2fc50000bae4dc0000000000000000e9cca6651cc80099669ae648836e0e9d38fd01ef220e511205a83464671fb9dc415f641122a5eaa0537440e86733369be6986ec72723fadfb8fd06a6150758", 0x141, 0xc000, 0x0, 0x0) r4 = socket$inet_udplite(0x2, 0x2, 0x88) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) close(r3) [ 132.892916][ T8914] ================================================================== [ 132.901063][ T8914] BUG: KCSAN: data-race in atime_needs_update / propagate_one [ 132.908500][ T8914] [ 132.910830][ T8914] write to 0xffff88821b21b470 of 4 bytes by task 8927 on cpu 1: [ 132.918464][ T8914] propagate_one+0x3b3/0x550 [ 132.920898][ T8927] IPVS: ftp: loaded support on port[0] = 21 [ 132.923060][ T8914] propagate_mnt+0x22e/0x270 [ 132.933493][ T8914] attach_recursive_mnt+0x66d/0x8a0 [ 132.938857][ T8914] graft_tree+0x107/0x160 [ 132.943184][ T8914] do_add_mount.isra.0+0x102/0x190 [ 132.948290][ T8914] do_mount+0x12d5/0x1590 [ 132.952614][ T8914] __x64_sys_mount+0x12b/0x1a0 [ 132.957377][ T8914] do_syscall_64+0xc7/0x3b0 [ 132.961878][ T8914] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 132.967753][ T8914] [ 132.970078][ T8914] read to 0xffff88821b21b470 of 4 bytes by task 8914 on cpu 0: [ 132.977620][ T8914] atime_needs_update+0x1c0/0x360 [ 132.982643][ T8914] touch_atime+0x63/0x150 [ 132.986967][ T8914] generic_file_read_iter+0x12fa/0x18c0 [ 132.989916][ T8927] chnl_net:caif_netlink_parms(): no params data found [ 132.992542][ T8914] ext4_file_read_iter+0x103/0x360 [ 133.004369][ T8914] new_sync_read+0x306/0x450 [ 133.008957][ T8914] __vfs_read+0x9e/0xb0 [ 133.013114][ T8914] integrity_kernel_read+0x97/0xe0 [ 133.018213][ T8914] ima_calc_file_hash_tfm+0x18f/0x240 [ 133.023557][ T8914] ima_calc_file_hash+0x147/0xeb0 [ 133.028554][ T8914] ima_collect_measurement+0x385/0x3b0 [ 133.034073][ T8914] process_measurement+0x91a/0x1000 [ 133.039246][ T8914] ima_file_check+0x7e/0xb0 [ 133.043729][ T8914] path_openat+0x176e/0x23d0 [ 133.048294][ T8914] do_filp_open+0x11e/0x1b0 [ 133.052771][ T8914] do_sys_openat2+0x52e/0x680 [ 133.057425][ T8914] do_sys_open+0xa2/0x110 [ 133.061730][ T8914] __x64_sys_openat+0x5d/0x70 [ 133.066383][ T8914] do_syscall_64+0xc7/0x3b0 [ 133.070859][ T8914] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 133.076757][ T8914] [ 133.079101][ T8914] Reported by Kernel Concurrency Sanitizer on: [ 133.085270][ T8914] CPU: 0 PID: 8914 Comm: syz-fuzzer Not tainted 5.7.0-rc1-syzkaller #0 [ 133.093522][ T8914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 133.103548][ T8914] ================================================================== [ 133.111591][ T8914] Kernel panic - not syncing: panic_on_warn set ... [ 133.118172][ T8914] CPU: 0 PID: 8914 Comm: syz-fuzzer Not tainted 5.7.0-rc1-syzkaller #0 [ 133.126384][ T8914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 133.136429][ T8914] Call Trace: [ 133.139704][ T8914] dump_stack+0x11d/0x187 [ 133.144059][ T8914] panic+0x210/0x640 [ 133.147934][ T8914] ? vprintk_func+0x89/0x13a [ 133.152505][ T8914] kcsan_report.cold+0xc/0x1a [ 133.157163][ T8914] kcsan_setup_watchpoint+0x3fb/0x440 [ 133.162513][ T8914] atime_needs_update+0x1c0/0x360 [ 133.167515][ T8914] touch_atime+0x63/0x150 [ 133.171825][ T8914] ? __sanitizer_cov_trace_switch+0x45/0x70 [ 133.177782][ T8914] generic_file_read_iter+0x12fa/0x18c0 [ 133.183310][ T8914] ext4_file_read_iter+0x103/0x360 [ 133.188412][ T8914] new_sync_read+0x306/0x450 [ 133.192992][ T8914] __vfs_read+0x9e/0xb0 [ 133.197128][ T8914] integrity_kernel_read+0x97/0xe0 [ 133.202214][ T8914] ima_calc_file_hash_tfm+0x18f/0x240 [ 133.207564][ T8914] ? should_fail+0x7c/0x2fd [ 133.212044][ T8914] ? widen_string+0x48/0x190 [ 133.216622][ T8914] ? string_nocheck+0xe1/0x100 [ 133.221378][ T8914] ? format_decode+0x19c/0xaa0 [ 133.226132][ T8914] ? __sanitizer_cov_trace_switch+0x45/0x70 [ 133.231997][ T8914] ? tomoyo_profile+0x3f/0x50 [ 133.236653][ T8914] ? __rcu_read_unlock+0x77/0x390 [ 133.241653][ T8914] ? tomoyo_write_log2+0x64/0x580 [ 133.246656][ T8914] ? setuid_policy_lookup+0xdf/0x110 [ 133.251944][ T8914] ima_calc_file_hash+0x147/0xeb0 [ 133.256965][ T8914] ? up_read+0x42/0x90 [ 133.262225][ T8914] ? ext4_xattr_get+0x10b/0x600 [ 133.267066][ T8914] ima_collect_measurement+0x385/0x3b0 [ 133.272542][ T8914] process_measurement+0x91a/0x1000 [ 133.277768][ T8914] ? dquot_file_open+0x60/0x80 [ 133.282527][ T8914] ? ext4_file_open+0x109/0x440 [ 133.287383][ T8914] ? __rcu_read_unlock+0x77/0x390 [ 133.292413][ T8914] ? aa_get_task_label+0x1ee/0x370 [ 133.297538][ T8914] ima_file_check+0x7e/0xb0 [ 133.302041][ T8914] path_openat+0x176e/0x23d0 [ 133.306654][ T8914] ? ext4_journal_check_start+0xf8/0x160 [ 133.311814][ T8927] bridge0: port 1(bridge_slave_0) entered blocking state [ 133.312296][ T8914] ? __sanitizer_cov_trace_switch+0x45/0x70 [ 133.320243][ T8927] bridge0: port 1(bridge_slave_0) entered disabled state [ 133.325152][ T8914] ? constant_test_bit+0xd/0x30 [ 133.325170][ T8914] ? wb_io_lists_populated+0x88/0xa0 [ 133.325195][ T8914] ? _raw_spin_unlock+0x38/0x60 [ 133.344562][ T8927] device bridge_slave_0 entered promiscuous mode [ 133.347105][ T8914] ? __sanitizer_cov_trace_switch+0x45/0x70 [ 133.359278][ T8914] do_filp_open+0x11e/0x1b0 [ 133.363790][ T8914] ? _find_next_bit.constprop.0+0x126/0x160 [ 133.364486][ T8927] bridge0: port 2(bridge_slave_1) entered blocking state [ 133.369685][ T8914] ? __read_once_size+0x2f/0xd0 [ 133.376706][ T8927] bridge0: port 2(bridge_slave_1) entered disabled state [ 133.381494][ T8914] ? _raw_spin_unlock+0x38/0x60 [ 133.381505][ T8914] ? __alloc_fd+0x2f3/0x3b0 [ 133.381536][ T8914] do_sys_openat2+0x52e/0x680 [ 133.391174][ T8927] device bridge_slave_1 entered promiscuous mode [ 133.393360][ T8914] do_sys_open+0xa2/0x110 [ 133.409701][ T8927] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 133.413100][ T8914] __x64_sys_openat+0x5d/0x70 [ 133.413120][ T8914] do_syscall_64+0xc7/0x3b0 [ 133.413138][ T8914] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 133.413157][ T8914] RIP: 0033:0x4b3d4a [ 133.425627][ T8927] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 133.426937][ T8914] Code: e8 5b a1 f8 ff 48 8b 7c 24 10 48 8b 74 24 18 48 8b 54 24 20 4c 8b 54 24 28 4c 8b 44 24 30 4c 8b 4c 24 38 48 8b 44 24 08 0f 05 <48> 3d 01 f0 ff ff 76 20 48 c7 44 24 40 ff ff ff ff 48 c7 44 24 48 [ 133.426944][ T8914] RSP: 002b:000000c00067d830 EFLAGS: 00000206 ORIG_RAX: 0000000000000101 [ 133.444618][ T8927] team0: Port device team_slave_0 added [ 133.450181][ T8914] RAX: ffffffffffffffda RBX: 000000c00002e800 RCX: 00000000004b3d4a [ 133.471479][ T8927] team0: Port device team_slave_1 added [ 133.478146][ T8914] RDX: 0000000000080002 RSI: 000000c0000269a0 RDI: ffffffffffffff9c [ 133.478156][ T8914] RBP: 000000c00067d8a8 R08: 0000000000000000 R09: 0000000000000000 [ 133.478165][ T8914] R10: 00000000000001a4 R11: 0000000000000206 R12: ffffffffffffffff [ 133.478183][ T8914] R13: 000000000000004e R14: 000000000000004d R15: 0000000000000100 [ 133.497324][ T8927] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 133.505747][ T8914] Kernel Offset: disabled [ 133.540799][ T8914] Rebooting in 86400 seconds..