Warning: Permanently added '10.128.0.199' (ECDSA) to the list of known hosts. 2020/06/30 16:52:11 fuzzer started 2020/06/30 16:52:11 dialing manager at 10.128.0.105:34055 2020/06/30 16:52:11 syscalls: 3106 2020/06/30 16:52:11 code coverage: enabled 2020/06/30 16:52:11 comparison tracing: enabled 2020/06/30 16:52:11 extra coverage: enabled 2020/06/30 16:52:11 setuid sandbox: enabled 2020/06/30 16:52:11 namespace sandbox: enabled 2020/06/30 16:52:11 Android sandbox: /sys/fs/selinux/policy does not exist 2020/06/30 16:52:11 fault injection: enabled 2020/06/30 16:52:11 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/06/30 16:52:11 net packet injection: enabled 2020/06/30 16:52:11 net device setup: enabled 2020/06/30 16:52:11 concurrency sanitizer: enabled 2020/06/30 16:52:11 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/06/30 16:52:11 USB emulation: enabled 2020/06/30 16:52:11 suppressing KCSAN reports in functions: '__ext4_new_inode' 'generic_write_end' 16:52:15 executing program 0: r0 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x0, 0x0) ioctl$VIDIOC_S_FMT(r0, 0xc0d05604, &(0x7f0000000240)={0x9, @pix_mp}) syzkaller login: [ 34.981510][ T8643] IPVS: ftp: loaded support on port[0] = 21 [ 35.037201][ T8643] chnl_net:caif_netlink_parms(): no params data found [ 35.076893][ T8643] bridge0: port 1(bridge_slave_0) entered blocking state 16:52:15 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x40000000015, 0x5, 0x0) getsockname$packet(r2, 0x0, 0x0) [ 35.098177][ T8643] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.105515][ T8643] device bridge_slave_0 entered promiscuous mode [ 35.113197][ T8643] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.120281][ T8643] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.129972][ T8643] device bridge_slave_1 entered promiscuous mode [ 35.155644][ T8643] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 35.190185][ T8643] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 35.215303][ T8643] team0: Port device team_slave_0 added [ 35.230107][ T8643] team0: Port device team_slave_1 added [ 35.258624][ T8643] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 35.265578][ T8643] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.294084][ T8643] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active 16:52:16 executing program 2: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = add_key$user(&(0x7f00000000c0)='user\x00', &(0x7f0000000440)={'syz'}, &(0x7f0000000380)="585ccbe4ed83b836c1a6474914dc55e72206297b6895b66147b3c7218a9169a85ea0bdc9e1587a050000000000000042e33089754c8107c3cd3923dd4a71c2ff06007b6b4816122d2550829eaa9435c99926022b8753a188748c569f435fb3bae96efb74b50ec93c152f5e8e198a29e5c0d0c60000ce0637ce0000b4ec24c53d3d661ff5ff70e48884ca000018cea71fcfacf40d32e4b58a8d2725561f6110fd7b06f90b5274cc5c1e298a16324fe27da2a9d5ba9ff3c009d308bd73f4772539", 0x227, 0xfffffffffffffffe) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) r1 = add_key$user(&(0x7f0000000200)='user\x00', &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000100)="01", 0x1, 0xfffffffffffffffd) bind$inet6(0xffffffffffffffff, 0x0, 0x0) keyctl$dh_compute(0x17, &(0x7f0000000000)={r1, r0, r1}, &(0x7f0000000280)=""/250, 0x223, &(0x7f0000000580)={&(0x7f0000000080)={'sha256-generic\x00'}}) gettid() [ 35.309588][ T8790] IPVS: ftp: loaded support on port[0] = 21 [ 35.321222][ T8643] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 35.330227][ T8643] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.356563][ T8643] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active 16:52:16 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)) r0 = perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x2, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$swradio(&(0x7f0000000080)='/dev/swradio#\x00', 0xffffffffffffffff, 0x2) dup2(r1, r0) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm-monitor\x00', 0x0, 0x0) close(r3) r4 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES32=0x0], &(0x7f000095dffc)=0x8) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r3, 0x84, 0x75, &(0x7f0000000300)={r5}, &(0x7f0000000340)=0x8) setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f0000000180)={r5, @in={{0x2, 0x4e21, @local}}}, 0x84) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000100)={0xffffffffffffffff, 0x10, &(0x7f0000000040)={0x0, 0x0, 0xffffffffffffffff}}, 0x10) r6 = socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) dup(r7) sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newlink={0x68, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x10810, 0x40000}, [@IFLA_LINKINFO={0x38, 0x12, 0x0, 0x1, @ip6gre={{0xb, 0x1, 'ip6gre\x00'}, {0x28, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x14, 0x7, @mcast1}, @IFLA_GRE_ENCAP_TYPE={0x6}, @IFLA_GRE_OFLAGS={0x6, 0x3, 0x89c}]}}}, @IFLA_MTU={0x8, 0x4, 0xff}, @IFLA_MASTER={0x8}]}, 0x68}, 0x1, 0x0, 0x0, 0x40004080}, 0x0) [ 35.429509][ T8643] device hsr_slave_0 entered promiscuous mode [ 35.458189][ T8643] device hsr_slave_1 entered promiscuous mode [ 35.584141][ T8829] IPVS: ftp: loaded support on port[0] = 21 [ 35.618597][ T8843] IPVS: ftp: loaded support on port[0] = 21 [ 35.659994][ T8790] chnl_net:caif_netlink_parms(): no params data found 16:52:16 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000600)={'bridge_slave_1\x00', 0x0}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="6c0000002400070500"/20, @ANYRES32=r3, @ANYBLOB="00000000ffffffff000000000a0001006e6574656d0000003c0002000000000002000000000000000000000000000000000000000c000200000000000052e0db1400060000000000002000000000000000a11419d9a4117c1b56df878163d7c9dd693feb8150abbb3f00000000000000000004eba836d0a1fa6041aa1a6a2058d096ee49dffb7715c858c243d00000000000000005ac83a479d1a7e5be078ca3fa1e43ab1cafada043d3134cdf53a3c237ea5e295ac3dc7fd793ff88d6d360dcf043f9e97035c647e9db2be930090000000003080000000040000000000000"], 0x6c}}, 0x0) r4 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924924924924f0, 0x0) [ 35.722126][ T8643] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 35.781171][ T8643] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 35.832600][ T8643] netdevsim netdevsim0 netdevsim2: renamed from eth2 16:52:16 executing program 5: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) close(r0) io_setup(0x8, &(0x7f00000002c0)=0x0) r2 = socket(0x1e, 0x1, 0x0) sendmsg(r2, &(0x7f0000db5fc8)={&(0x7f00004aeb5c)=@generic={0x10000001001e, "030000000000000000000001e526cc573c5bf86c483724c71e14dd6a739effea1b48007be61ffe06d79f00000000000000076c3f010039d8f986ff01000000000000af06d5fe32c419d67bcbc7e3ad316a198356edb9b7341c1fd45624281e27800ece70b076c3979ac40000bd767e2e78a1dfd300881a1565b3b16d7436"}, 0x80, 0x0}, 0x0) io_submit(r1, 0x1400, &(0x7f0000000600)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000000140), 0x5ee}]) [ 35.935498][ T9076] IPVS: ftp: loaded support on port[0] = 21 [ 35.944073][ T8643] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 36.003200][ T8829] chnl_net:caif_netlink_parms(): no params data found [ 36.033179][ T8643] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.040226][ T8643] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.047991][ T8643] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.055001][ T8643] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.080000][ T9101] IPVS: ftp: loaded support on port[0] = 21 [ 36.089281][ T8790] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.096298][ T8790] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.104217][ T8790] device bridge_slave_0 entered promiscuous mode [ 36.113184][ T8790] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.121247][ T8790] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.129379][ T8790] device bridge_slave_1 entered promiscuous mode [ 36.144461][ T8843] chnl_net:caif_netlink_parms(): no params data found [ 36.154710][ T5024] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.162827][ T5024] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.185381][ T8790] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 36.196074][ T8790] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 36.236089][ T3521] ================================================================== [ 36.244287][ T3521] BUG: KCSAN: data-race in copy_process / copy_process [ 36.251109][ T3521] [ 36.253509][ T3521] write to 0xffffffff8927a410 of 4 bytes by task 25 on cpu 0: [ 36.263596][ T3521] copy_process+0x2e84/0x3300 [ 36.268264][ T3521] _do_fork+0xf1/0x660 [ 36.272401][ T3521] kernel_thread+0x85/0xb0 [ 36.283503][ T3521] call_usermodehelper_exec_work+0x4f/0x1b0 [ 36.289672][ T3521] process_one_work+0x3e1/0x9a0 [ 36.294990][ T3521] worker_thread+0x665/0xbe0 [ 36.300111][ T3521] kthread+0x20d/0x230 [ 36.304154][ T3521] ret_from_fork+0x1f/0x30 [ 36.308969][ T3521] [ 36.311288][ T3521] read to 0xffffffff8927a410 of 4 bytes by task 3521 on cpu 1: [ 36.319251][ T3521] copy_process+0xac4/0x3300 [ 36.323849][ T3521] _do_fork+0xf1/0x660 [ 36.327587][ T8829] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.327905][ T3521] kernel_thread+0x85/0xb0 [ 36.327916][ T3521] call_usermodehelper_exec_work+0x4f/0x1b0 [ 36.327969][ T3521] process_one_work+0x3e1/0x9a0 [ 36.335368][ T8829] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.339699][ T3521] worker_thread+0x665/0xbe0 [ 36.339707][ T3521] kthread+0x20d/0x230 [ 36.339716][ T3521] ret_from_fork+0x1f/0x30 [ 36.339732][ T3521] [ 36.350598][ T8829] device bridge_slave_0 entered promiscuous mode [ 36.355313][ T3521] Reported by Kernel Concurrency Sanitizer on: [ 36.364180][ T8829] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.367497][ T3521] CPU: 1 PID: 3521 Comm: kworker/u4:4 Not tainted 5.8.0-rc3-syzkaller #0 [ 36.371961][ T8829] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.376720][ T3521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 36.379850][ T8829] device bridge_slave_1 entered promiscuous mode [ 36.385351][ T3521] Workqueue: events_unbound call_usermodehelper_exec_work [ 36.401806][ T8829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 36.408394][ T3521] ================================================================== [ 36.408400][ T3521] Kernel panic - not syncing: panic_on_warn set ... [ 36.408411][ T3521] CPU: 1 PID: 3521 Comm: kworker/u4:4 Not tainted 5.8.0-rc3-syzkaller #0 [ 36.408416][ T3521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 36.408436][ T3521] Workqueue: events_unbound call_usermodehelper_exec_work [ 36.417334][ T8829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 36.426190][ T3521] Call Trace: [ 36.426206][ T3521] dump_stack+0x10f/0x19d [ 36.426215][ T3521] panic+0x207/0x64a [ 36.426238][ T3521] ? vprintk_emit+0x44a/0x4f0 [ 36.443654][ T8829] team0: Port device team_slave_0 added [ 36.448734][ T3521] kcsan_report+0x684/0x690 [ 36.448747][ T3521] ? kcsan_setup_watchpoint+0x453/0x4d0 [ 36.448763][ T3521] ? copy_process+0xac4/0x3300 [ 36.459071][ T8829] team0: Port device team_slave_1 added [ 36.463629][ T3521] ? _do_fork+0xf1/0x660 [ 36.481312][ T8829] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 36.482173][ T3521] ? kernel_thread+0x85/0xb0 [ 36.489266][ T8829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.498258][ T3521] ? call_usermodehelper_exec_work+0x4f/0x1b0 [ 36.498269][ T3521] ? process_one_work+0x3e1/0x9a0 [ 36.498284][ T3521] ? worker_thread+0x665/0xbe0 [ 36.502625][ T8829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 36.505845][ T3521] ? kthread+0x20d/0x230 [ 36.511328][ T8829] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 36.514383][ T3521] ? ret_from_fork+0x1f/0x30 [ 36.520336][ T8829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.524473][ T3521] ? debug_smp_processor_id+0x18/0x20 [ 36.530554][ T8829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 36.534726][ T3521] ? copy_creds+0x280/0x350 [ 36.675937][ T3521] ? copy_creds+0x280/0x350 [ 36.680527][ T3521] kcsan_setup_watchpoint+0x453/0x4d0 [ 36.686400][ T3521] ? copy_creds+0x280/0x350 [ 36.691006][ T3521] copy_process+0xac4/0x3300 [ 36.696678][ T3521] ? check_preempt_wakeup+0x1cb/0x370 [ 36.702390][ T3521] ? proc_cap_handler+0x280/0x280 [ 36.707560][ T3521] _do_fork+0xf1/0x660 [ 36.711687][ T3521] ? enqueue_entity+0x25a/0x480 [ 36.717467][ T3521] ? proc_cap_handler+0x280/0x280 [ 36.722637][ T3521] kernel_thread+0x85/0xb0 [ 36.727024][ T3521] ? proc_cap_handler+0x280/0x280 [ 36.732039][ T3521] call_usermodehelper_exec_work+0x4f/0x1b0 [ 36.738774][ T3521] process_one_work+0x3e1/0x9a0 [ 36.743629][ T3521] worker_thread+0x665/0xbe0 [ 36.748192][ T3521] ? finish_task_switch+0x8b/0x270 [ 36.753283][ T3521] ? process_one_work+0x9a0/0x9a0 [ 36.758281][ T3521] kthread+0x20d/0x230 [ 36.762418][ T3521] ? process_one_work+0x9a0/0x9a0 [ 36.767413][ T3521] ? kthread_blkcg+0x80/0x80 [ 36.771993][ T3521] ret_from_fork+0x1f/0x30 [ 36.777718][ T3521] Kernel Offset: disabled [ 36.782069][ T3521] Rebooting in 86400 seconds..