Warning: Permanently added '10.128.0.117' (ECDSA) to the list of known hosts.
2020/03/08 07:21:39 parsed 1 programs
2020/03/08 07:21:41 executed programs: 0
syzkaller login: [   93.679711][ T9630] IPVS: ftp: loaded support on port[0] = 21
[   93.743550][ T9630] chnl_net:caif_netlink_parms(): no params data found
[   93.785841][ T9630] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.793427][ T9630] bridge0: port 1(bridge_slave_0) entered disabled state
[   93.801627][ T9630] device bridge_slave_0 entered promiscuous mode
[   93.810356][ T9630] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.817522][ T9630] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.825414][ T9630] device bridge_slave_1 entered promiscuous mode
[   93.843920][ T9630] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   93.855296][ T9630] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   93.876352][ T9630] team0: Port device team_slave_0 added
[   93.884211][ T9630] team0: Port device team_slave_1 added
[   93.900024][ T9630] batman_adv: batadv0: Adding interface: batadv_slave_0
[   93.907125][ T9630] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   93.933089][ T9630] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   93.945904][ T9630] batman_adv: batadv0: Adding interface: batadv_slave_1
[   93.952855][ T9630] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   93.978970][ T9630] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   94.046663][ T9630] device hsr_slave_0 entered promiscuous mode
[   94.084772][ T9630] device hsr_slave_1 entered promiscuous mode
[   94.233659][ T9630] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   94.277991][ T9630] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   94.337647][ T9630] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   94.397178][ T9630] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   94.450642][ T9630] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.457849][ T9630] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.465766][ T9630] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.472822][ T9630] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.518451][ T9630] 8021q: adding VLAN 0 to HW filter on device bond0
[   94.531714][ T2849] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   94.542339][ T2849] bridge0: port 1(bridge_slave_0) entered disabled state
[   94.550840][ T2849] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.559557][ T2849] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   94.572586][ T9630] 8021q: adding VLAN 0 to HW filter on device team0
[   94.584307][ T3187] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   94.593150][ T3187] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.600297][ T3187] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.613391][ T2854] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   94.621903][ T2854] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.629021][ T2854] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.648979][ T2848] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   94.660703][ T2848] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   94.669488][ T2848] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   94.681762][ T3187] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   94.693791][ T2848] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   94.705845][ T9630] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   94.723647][ T3187] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   94.731800][ T3187] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   94.745784][ T9630] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.764006][ T2848] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   94.773303][ T2848] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   94.795233][ T2848] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   94.803764][ T2848] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   94.813230][ T9630] device veth0_vlan entered promiscuous mode
[   94.824731][ T2854] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   94.832491][ T2854] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   94.844726][ T9630] device veth1_vlan entered promiscuous mode
[   94.865528][ T3187] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   94.873629][ T3187] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   94.882099][ T3187] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   94.891236][ T3187] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   94.903218][ T9630] device veth0_macvtap entered promiscuous mode
[   94.913779][ T9630] device veth1_macvtap entered promiscuous mode
[   94.932221][ T9630] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.939783][ T2848] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   94.948049][ T2848] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   94.956512][ T2848] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   94.966250][ T2848] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   94.978785][ T9630] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.986110][ T3187] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   94.995575][ T3187] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   95.257557][ T9637] 
[   95.259916][ T9637] ======================================================
[   95.266929][ T9637] WARNING: possible circular locking dependency detected
[   95.273948][ T9637] 5.6.0-rc4-syzkaller #0 Not tainted
[   95.279222][ T9637] ------------------------------------------------------
[   95.286238][ T9637] syz-executor.0/9637 is trying to acquire lock:
[   95.292552][ T9637] ffff8880a7e7d2a0 (&tty->termios_rwsem){++++}, at: n_tty_receive_buf_common+0x87/0x2ac0
[   95.302491][ T9637] 
[   95.302491][ T9637] but task is already holding lock:
[   95.309850][ T9637] ffffffff89d3dc00 (sel_lock){+.+.}, at: paste_selection+0x155/0x490
[   95.318319][ T9637] 
[   95.318319][ T9637] which lock already depends on the new lock.
[   95.318319][ T9637] 
[   95.328712][ T9637] 
[   95.328712][ T9637] the existing dependency chain (in reverse order) is:
[   95.337717][ T9637] 
[   95.337717][ T9637] -> #2 (sel_lock){+.+.}:
[   95.344224][ T9637]        __mutex_lock+0x156/0x13c0
[   95.349328][ T9637]        set_selection_kernel+0x38a/0x13c0
[   95.355112][ T9637]        set_selection_user+0x94/0xd7
[   95.360483][ T9637]        tioclinux+0x115/0x480
[   95.365225][ T9637]        vt_ioctl+0x189f/0x2470
[   95.370076][ T9637]        tty_ioctl+0xedd/0x1440
[   95.374905][ T9637]        ksys_ioctl+0x11a/0x180
[   95.379751][ T9637]        __x64_sys_ioctl+0x6f/0xb0
[   95.384855][ T9637]        do_syscall_64+0xf6/0x7d0
[   95.389881][ T9637]        entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   95.396276][ T9637] 
[   95.396276][ T9637] -> #1 (console_lock){+.+.}:
[   95.403112][ T9637]        console_lock+0x44/0x80
[   95.407947][ T9637]        con_flush_chars+0x35/0x90
[   95.413035][ T9637]        n_tty_write+0xd49/0xf90
[   95.417948][ T9637]        tty_write+0x48f/0x7f0
[   95.422690][ T9637]        __vfs_write+0x76/0x100
[   95.427516][ T9637]        vfs_write+0x262/0x5c0
[   95.432266][ T9637]        ksys_write+0x127/0x250
[   95.437106][ T9637]        do_syscall_64+0xf6/0x7d0
[   95.442123][ T9637]        entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   95.448510][ T9637] 
[   95.448510][ T9637] -> #0 (&tty->termios_rwsem){++++}:
[   95.455961][ T9637]        __lock_acquire+0x201b/0x3ca0
[   95.461315][ T9637]        lock_acquire+0x197/0x420
[   95.466325][ T9637]        down_read+0x96/0x420
[   95.470984][ T9637]        n_tty_receive_buf_common+0x87/0x2ac0
[   95.477032][ T9637]        tty_ldisc_receive_buf+0xa9/0x190
[   95.482913][ T9637]        paste_selection+0x1e5/0x490
[   95.488181][ T9637]        tioclinux+0x12c/0x480
[   95.492924][ T9637]        vt_ioctl+0x189f/0x2470
[   95.497767][ T9637]        tty_ioctl+0xedd/0x1440
[   95.502600][ T9637]        ksys_ioctl+0x11a/0x180
[   95.507426][ T9637]        __x64_sys_ioctl+0x6f/0xb0
[   95.512527][ T9637]        do_syscall_64+0xf6/0x7d0
[   95.517551][ T9637]        entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   95.524111][ T9637] 
[   95.524111][ T9637] other info that might help us debug this:
[   95.524111][ T9637] 
[   95.534320][ T9637] Chain exists of:
[   95.534320][ T9637]   &tty->termios_rwsem --> console_lock --> sel_lock
[   95.534320][ T9637] 
[   95.546804][ T9637]  Possible unsafe locking scenario:
[   95.546804][ T9637] 
[   95.554240][ T9637]        CPU0                    CPU1
[   95.559594][ T9637]        ----                    ----
[   95.564944][ T9637]   lock(sel_lock);
[   95.568828][ T9637]                                lock(console_lock);
[   95.575503][ T9637]                                lock(sel_lock);
[   95.581803][ T9637]   lock(&tty->termios_rwsem);
[   95.586545][ T9637] 
[   95.586545][ T9637]  *** DEADLOCK ***
[   95.586545][ T9637] 
[   95.594683][ T9637] 3 locks held by syz-executor.0/9637:
[   95.600121][ T9637]  #0: ffff8880a7e7d090 (&tty->ldisc_sem){++++}, at: tty_ldisc_ref_wait+0x22/0x80
[   95.609303][ T9637]  #1: ffff8880913500a8 (&buf->lock){+.+.}, at: paste_selection+0x122/0x490
[   95.617961][ T9637]  #2: ffffffff89d3dc00 (sel_lock){+.+.}, at: paste_selection+0x155/0x490
[   95.626443][ T9637] 
[   95.626443][ T9637] stack backtrace:
[   95.632314][ T9637] CPU: 0 PID: 9637 Comm: syz-executor.0 Not tainted 5.6.0-rc4-syzkaller #0
[   95.640885][ T9637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   95.651052][ T9637] Call Trace:
[   95.654384][ T9637]  dump_stack+0x188/0x20d
[   95.658712][ T9637]  check_noncircular+0x32e/0x3e0
[   95.663627][ T9637]  ? print_circular_bug.isra.0+0x220/0x220
[   95.669411][ T9637]  ? alloc_list_entry+0xb0/0xb0
[   95.674234][ T9637]  ? mark_lock+0xbc/0x1220
[   95.678628][ T9637]  ? find_first_zero_bit+0x94/0xb0
[   95.683728][ T9637]  __lock_acquire+0x201b/0x3ca0
[   95.688615][ T9637]  ? mark_held_locks+0xe0/0xe0
[   95.693392][ T9637]  lock_acquire+0x197/0x420
[   95.697875][ T9637]  ? n_tty_receive_buf_common+0x87/0x2ac0
[   95.703584][ T9637]  down_read+0x96/0x420
[   95.707724][ T9637]  ? n_tty_receive_buf_common+0x87/0x2ac0
[   95.713480][ T9637]  ? down_read_killable+0x460/0x460
[   95.718668][ T9637]  ? __mutex_lock+0x458/0x13c0
[   95.723462][ T9637]  n_tty_receive_buf_common+0x87/0x2ac0
[   95.729196][ T9637]  ? paste_selection+0x147/0x490
[   95.734122][ T9637]  ? mark_lock+0xbc/0x1220
[   95.738529][ T9637]  tty_ldisc_receive_buf+0xa9/0x190
[   95.743727][ T9637]  ? n_tty_receive_buf_common+0x2ac0/0x2ac0
[   95.749608][ T9637]  paste_selection+0x1e5/0x490
[   95.754364][ T9637]  ? sel_pos+0x90/0x90
[   95.758422][ T9637]  ? wake_up_q+0x140/0x140
[   95.762836][ T9637]  tioclinux+0x12c/0x480
[   95.767064][ T9637]  vt_ioctl+0x189f/0x2470
[   95.771482][ T9637]  ? complete_change_console+0x390/0x390
[   95.777113][ T9637]  ? tomoyo_path_number_perm+0x238/0x4d0
[   95.782743][ T9637]  ? tomoyo_execute_permission+0x470/0x470
[   95.788547][ T9637]  ? __sanitizer_cov_trace_switch+0x45/0x70
[   95.794426][ T9637]  ? complete_change_console+0x390/0x390
[   95.800043][ T9637]  tty_ioctl+0xedd/0x1440
[   95.805392][ T9637]  ? tty_vhangup+0x30/0x30
[   95.809785][ T9637]  ? do_vfs_ioctl+0x506/0x12c0
[   95.814528][ T9637]  ? ioctl_file_clone+0x180/0x180
[   95.819550][ T9637]  ? __fget_files+0x329/0x4f0
[   95.824210][ T9637]  ? ksys_dup3+0x3c0/0x3c0
[   95.828604][ T9637]  ? __x64_sys_futex+0x380/0x4f0
[   95.833520][ T9637]  ? tty_vhangup+0x30/0x30
[   95.837930][ T9637]  ksys_ioctl+0x11a/0x180
[   95.842239][ T9637]  __x64_sys_ioctl+0x6f/0xb0
[   95.846807][ T9637]  ? lockdep_hardirqs_on+0x417/0x5d0
[   95.852072][ T9637]  do_syscall_64+0xf6/0x7d0
[   95.856557][ T9637]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   95.862426][ T9637] RIP: 0033:0x45c4a9
[   95.866309][ T9637] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   95.885889][ T9637] RSP: 002b:00007f4a6be41c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   95.894275][ T9637] RAX: ffffffffffffffda RBX: 00007f4a6be426d4 RCX: 000000000045c4a9
[   95.902235][ T9637] RDX: 0000000020000040 RSI: 000000000000541c RDI: 0000000000000003
[   95.910187][ T9637] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000
[   95.918148][ T9637] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[   95.926106][ T9637] R13: 0000000000000574 R14: 00000000004c7cdb R15: 000000000076bf2c
2020/03/08 07:21:46 executed programs: 145
2020/03/08 07:21:51 executed programs: 428