Warning: Permanently added '10.128.15.201' (ECDSA) to the list of known hosts. 2020/07/01 22:46:46 fuzzer started 2020/07/01 22:46:46 dialing manager at 10.128.0.105:34259 2020/07/01 22:46:47 syscalls: 3106 2020/07/01 22:46:47 code coverage: enabled 2020/07/01 22:46:47 comparison tracing: enabled 2020/07/01 22:46:47 extra coverage: enabled 2020/07/01 22:46:47 setuid sandbox: enabled 2020/07/01 22:46:47 namespace sandbox: enabled 2020/07/01 22:46:47 Android sandbox: /sys/fs/selinux/policy does not exist 2020/07/01 22:46:47 fault injection: enabled 2020/07/01 22:46:47 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/07/01 22:46:47 net packet injection: enabled 2020/07/01 22:46:47 net device setup: enabled 2020/07/01 22:46:47 concurrency sanitizer: enabled 2020/07/01 22:46:47 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/07/01 22:46:47 USB emulation: enabled 2020/07/01 22:46:48 suppressing KCSAN reports in functions: 'find_get_pages_range_tag' 'do_epoll_wait' 'generic_write_end' 'expire_timers' 'blk_mq_dispatch_rq_list' '__ext4_new_inode' 'ext4_free_inode' 'blk_mq_rq_ctx_init' '__xa_clear_mark' 22:46:58 executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xb, 0x81, 0x7, 0x5, 0x1}, 0xcc) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r0, &(0x7f0000000040)}, 0x20) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000180)) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000240)={r0, &(0x7f0000000180), &(0x7f0000000280)}, 0x20) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000200)={r0, &(0x7f0000000180)}, 0x10) [ 42.343119][ T8650] IPVS: ftp: loaded support on port[0] = 21 [ 42.399364][ T8650] chnl_net:caif_netlink_parms(): no params data found [ 42.434419][ T8650] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.441547][ T8650] bridge0: port 1(bridge_slave_0) entered disabled state 22:46:58 executing program 1: r0 = gettid() socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r2, r1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) process_vm_writev(r0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0) madvise(&(0x7f0000516000/0x2000)=nil, 0x2000, 0x8) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) madvise(&(0x7f0000495000/0x400000)=nil, 0x404000, 0x4) [ 42.449076][ T8650] device bridge_slave_0 entered promiscuous mode [ 42.457401][ T8650] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.465669][ T8650] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.491723][ T8650] device bridge_slave_1 entered promiscuous mode [ 42.514268][ T8650] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 42.532580][ T8650] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 42.568319][ T8650] team0: Port device team_slave_0 added [ 42.583073][ T8650] team0: Port device team_slave_1 added 22:46:58 executing program 2: set_mempolicy(0x40000000004003, &(0x7f00000000c0)=0x8, 0xc2) r0 = socket(0x100000000011, 0x2, 0x0) r1 = socket(0x100000000011, 0x2, 0x0) bind(r1, &(0x7f0000000140)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000240)={0x11, 0x0, 0x0}, &(0x7f00000002c0)=0xfeeb) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000040)={r2, 0x1, 0x6, @random="7d8ea848c447"}, 0x10) [ 42.610048][ T8650] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 42.617482][ T8650] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 42.671748][ T8650] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 42.696229][ T8797] IPVS: ftp: loaded support on port[0] = 21 [ 42.703619][ T8650] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 42.710569][ T8650] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. 22:46:58 executing program 3: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xa, 0x2, 0x400, 0x9}, 0x40) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x1}, 0x6d) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000140), &(0x7f00000000c0), 0x1081, r0}, 0x38) [ 42.780975][ T8650] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 42.819088][ T8807] IPVS: ftp: loaded support on port[0] = 21 [ 42.872624][ T8650] device hsr_slave_0 entered promiscuous mode [ 42.901152][ T8650] device hsr_slave_1 entered promiscuous mode 22:46:58 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400)='batadv\x00') sendmsg$BATADV_CMD_GET_GATEWAYS(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)={0x1c, r1, 0x711, 0x0, 0x0, {0x8}, [@BATADV_ATTR_MESH_IFINDEX={0x4}]}, 0x1c}}, 0x0) [ 42.968341][ T8797] chnl_net:caif_netlink_parms(): no params data found [ 43.032050][ T8882] IPVS: ftp: loaded support on port[0] = 21 [ 43.078149][ T8797] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.100864][ T8797] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.108521][ T8797] device bridge_slave_0 entered promiscuous mode [ 43.133442][ T8797] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.140483][ T8797] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.161290][ T8797] device bridge_slave_1 entered promiscuous mode [ 43.199130][ T9025] IPVS: ftp: loaded support on port[0] = 21 [ 43.204004][ T8797] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 43.218111][ T8797] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 43.243696][ T8807] chnl_net:caif_netlink_parms(): no params data found [ 43.259449][ T8797] team0: Port device team_slave_0 added [ 43.280479][ T8797] team0: Port device team_slave_1 added 22:46:59 executing program 5: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$nl_route(0x10, 0x3, 0x0) splice(r0, 0x0, r2, 0x0, 0x1420000a77, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@can_newroute={0x14c, 0x18, 0x1, 0x0, 0x0, {}, [@CGW_CS_CRC8={0x11e, 0x6, {0xfd, 0x0, 0x0, 0x0, 0x0, "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", 0x0, "2b30ee5267b2792f58e6828132a615a0590b1aa9"}}, @CGW_MOD_AND={0x15, 0x1, {{{}, 0x0, 0x0, 0x0, 0x0, "597cc200000000eb"}, 0x1}}]}, 0x14c}}, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000000)={@mcast1}, 0x14) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xfffffd88) [ 43.302404][ T8650] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 43.368256][ T8797] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 43.375450][ T8797] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 43.401782][ T8797] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 43.422883][ T8650] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 43.453434][ T8650] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 43.512155][ T8797] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 43.519114][ T8797] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 43.545510][ T8797] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 43.571379][ T8807] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.578448][ T8807] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.586273][ T8807] device bridge_slave_0 entered promiscuous mode [ 43.596027][ T8650] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 43.665343][ T9170] IPVS: ftp: loaded support on port[0] = 21 [ 43.712221][ T8797] device hsr_slave_0 entered promiscuous mode [ 43.750888][ T8797] device hsr_slave_1 entered promiscuous mode [ 43.800710][ T8797] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 43.808282][ T8797] Cannot create hsr debugfs directory [ 43.820103][ T8807] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.827910][ T8807] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.835680][ T8807] device bridge_slave_1 entered promiscuous mode [ 43.856693][ T8807] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 43.869368][ T8807] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 43.879148][ T8882] chnl_net:caif_netlink_parms(): no params data found [ 43.934325][ T8807] team0: Port device team_slave_0 added [ 43.947728][ T7] ================================================================== [ 43.955856][ T7] BUG: KCSAN: data-race in copy_process / copy_process [ 43.962681][ T7] [ 43.964998][ T7] write to 0xffffffff8927a410 of 4 bytes by task 25 on cpu 1: [ 43.972444][ T7] copy_process+0x2e84/0x3300 [ 43.977114][ T7] _do_fork+0xf1/0x660 [ 43.981173][ T7] kernel_thread+0x85/0xb0 [ 43.985582][ T7] call_usermodehelper_exec_work+0x4f/0x1b0 [ 43.991463][ T7] process_one_work+0x3e1/0x9a0 [ 43.996307][ T7] worker_thread+0x665/0xbe0 [ 44.000880][ T7] kthread+0x20d/0x230 [ 44.003885][ T9025] chnl_net:caif_netlink_parms(): no params data found [ 44.004947][ T7] ret_from_fork+0x1f/0x30 [ 44.016158][ T7] [ 44.018466][ T7] read to 0xffffffff8927a410 of 4 bytes by task 7 on cpu 0: [ 44.025727][ T7] copy_process+0xac4/0x3300 [ 44.030413][ T7] _do_fork+0xf1/0x660 [ 44.034465][ T7] kernel_thread+0x85/0xb0 [ 44.038857][ T7] call_usermodehelper_exec_work+0x4f/0x1b0 [ 44.044733][ T7] process_one_work+0x3e1/0x9a0 [ 44.049563][ T7] worker_thread+0x665/0xbe0 [ 44.054133][ T7] kthread+0x20d/0x230 [ 44.058187][ T7] ret_from_fork+0x1f/0x30 [ 44.062578][ T7] [ 44.064881][ T7] Reported by Kernel Concurrency Sanitizer on: [ 44.071008][ T7] CPU: 0 PID: 7 Comm: kworker/u4:0 Not tainted 5.8.0-rc3-syzkaller #0 [ 44.079131][ T7] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 44.089192][ T7] Workqueue: events_unbound call_usermodehelper_exec_work [ 44.096278][ T7] ================================================================== [ 44.104319][ T7] Kernel panic - not syncing: panic_on_warn set ... [ 44.110890][ T7] CPU: 0 PID: 7 Comm: kworker/u4:0 Not tainted 5.8.0-rc3-syzkaller #0 [ 44.119011][ T7] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 44.129053][ T7] Workqueue: events_unbound call_usermodehelper_exec_work [ 44.136134][ T7] Call Trace: [ 44.139402][ T7] dump_stack+0x10f/0x19d [ 44.143707][ T7] panic+0x207/0x64a [ 44.147581][ T7] ? vprintk_emit+0x44a/0x4f0 [ 44.152238][ T7] kcsan_report+0x684/0x690 [ 44.156724][ T7] ? kcsan_setup_watchpoint+0x453/0x4d0 [ 44.162253][ T7] ? copy_process+0xac4/0x3300 [ 44.166995][ T7] ? _do_fork+0xf1/0x660 [ 44.171215][ T7] ? kernel_thread+0x85/0xb0 [ 44.175787][ T7] ? call_usermodehelper_exec_work+0x4f/0x1b0 [ 44.181835][ T7] ? process_one_work+0x3e1/0x9a0 [ 44.186847][ T7] ? worker_thread+0x665/0xbe0 [ 44.191593][ T7] ? kthread+0x20d/0x230 [ 44.195816][ T7] ? ret_from_fork+0x1f/0x30 [ 44.200399][ T7] ? debug_smp_processor_id+0x18/0x20 [ 44.205793][ T7] ? copy_creds+0x280/0x350 [ 44.210289][ T7] ? copy_creds+0x280/0x350 [ 44.214774][ T7] kcsan_setup_watchpoint+0x453/0x4d0 [ 44.220153][ T7] ? copy_creds+0x280/0x350 [ 44.224639][ T7] copy_process+0xac4/0x3300 [ 44.229213][ T7] ? check_preempt_wakeup+0x1cb/0x370 [ 44.234570][ T7] ? proc_cap_handler+0x280/0x280 [ 44.239578][ T7] _do_fork+0xf1/0x660 [ 44.243658][ T7] ? check_preemption_disabled+0x51/0x140 [ 44.249361][ T7] ? proc_cap_handler+0x280/0x280 [ 44.254368][ T7] kernel_thread+0x85/0xb0 [ 44.258766][ T7] ? proc_cap_handler+0x280/0x280 [ 44.263773][ T7] call_usermodehelper_exec_work+0x4f/0x1b0 [ 44.269653][ T7] process_one_work+0x3e1/0x9a0 [ 44.274495][ T7] worker_thread+0x665/0xbe0 [ 44.279095][ T7] ? process_one_work+0x9a0/0x9a0 [ 44.284105][ T7] kthread+0x20d/0x230 [ 44.288189][ T7] ? process_one_work+0x9a0/0x9a0 [ 44.293198][ T7] ? kthread_blkcg+0x80/0x80 [ 44.297775][ T7] ret_from_fork+0x1f/0x30 [ 44.303424][ T7] Kernel Offset: disabled [ 44.307743][ T7] Rebooting in 86400 seconds..