[info] Using makefile-style concurrent boot in runlevel 2. [ 45.029230][ T27] audit: type=1800 audit(1576270526.933:21): pid=7687 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2452 res=0 [ 45.072920][ T27] audit: type=1800 audit(1576270526.943:22): pid=7687 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="motd" dev="sda1" ino=2480 res=0 [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.158' (ECDSA) to the list of known hosts. 2019/12/13 20:55:39 fuzzer started 2019/12/13 20:55:42 dialing manager at 10.128.0.105:45083 syzkaller login: [ 60.357985][ T7847] ld (7847) used greatest stack depth: 10136 bytes left 2019/12/13 20:55:48 syscalls: 2686 2019/12/13 20:55:48 code coverage: enabled 2019/12/13 20:55:48 comparison tracing: enabled 2019/12/13 20:55:48 extra coverage: enabled 2019/12/13 20:55:48 setuid sandbox: enabled 2019/12/13 20:55:48 namespace sandbox: enabled 2019/12/13 20:55:48 Android sandbox: /sys/fs/selinux/policy does not exist 2019/12/13 20:55:48 fault injection: enabled 2019/12/13 20:55:48 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/12/13 20:55:48 net packet injection: enabled 2019/12/13 20:55:48 net device setup: enabled 2019/12/13 20:55:48 concurrency sanitizer: enabled 2019/12/13 20:55:48 devlink PCI setup: PCI device 0000:00:10.0 is not available [ 70.942966][ T7851] KCSAN: could not find function: 'poll_schedule_timeout' 2019/12/13 20:55:55 adding functions to KCSAN blacklist: 'generic_write_end' 'tomoyo_supervisor' 'find_get_pages_range_tag' 'mod_timer' 'ext4_has_free_clusters' 'ext4_mark_iloc_dirty' 'page_counter_try_charge' 'do_signal_stop' 'wbt_done' 'do_try_to_free_pages' 'tick_do_update_jiffies64' 'vm_area_dup' 'tick_sched_do_timer' 'timer_clear_idle' 'iomap_dio_bio_actor' 'xas_find_marked' '__hrtimer_run_queues' 'ep_poll' '__ext4_new_inode' 'shmem_getattr' 'run_timer_softirq' 'ext4_free_inode' 'blk_mq_run_hw_queue' 'futex_wait_queue_me' 'queue_access_lock' 'pid_update_inode' '__snd_rawmidi_transmit_ack' 'taskstats_exit' 'poll_schedule_timeout' 'n_tty_receive_buf_common' 'blk_mq_get_request' 'do_exit' 'blk_mq_sched_dispatch_requests' 'ktime_get_real_seconds' 'exit_signals' 'add_timer' 'find_next_bit' 'blk_mq_dispatch_rq_list' 'tick_nohz_idle_stop_tick' 'rcu_gp_fqs_check_wake' 'generic_fillattr' 'ext4_nonda_switch' 'do_nanosleep' 'xas_clear_mark' '__mark_inode_dirty' 'blk_mq_free_request' 'echo_char' 'copy_process' 20:56:59 executing program 0: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e0000001e000507ed0080648c6394f20531d20010000e402c00000001000080000000011400f88000f01700d0bd", 0x2e}], 0x1}, 0x0) recvmsg(r0, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0) 20:56:59 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000019c0)='bpf\x00', 0x0, 0x0) mkdir(&(0x7f0000000880)='./file0/file0\x00', 0x0) mount$bpf(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x28000, 0x0) mount$bpf(0x20000000, &(0x7f0000000180)='./file0/file0\x00', 0x0, 0x2001002, 0x0) [ 137.374725][ T7855] IPVS: ftp: loaded support on port[0] = 21 [ 137.456340][ T7855] chnl_net:caif_netlink_parms(): no params data found [ 137.523676][ T7855] bridge0: port 1(bridge_slave_0) entered blocking state [ 137.539928][ T7855] bridge0: port 1(bridge_slave_0) entered disabled state [ 137.559472][ T7855] device bridge_slave_0 entered promiscuous mode [ 137.566837][ T7855] bridge0: port 2(bridge_slave_1) entered blocking state [ 137.589407][ T7855] bridge0: port 2(bridge_slave_1) entered disabled state [ 137.597296][ T7855] device bridge_slave_1 entered promiscuous mode [ 137.608783][ T7858] IPVS: ftp: loaded support on port[0] = 21 [ 137.630298][ T7855] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 137.650851][ T7855] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link 20:56:59 executing program 2: bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x8, 0x4, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7fe3, 0x0, 0x200003e6, 0x61, 0x0, 0x4c}]}, &(0x7f0000000000)='(9+\xee\xe4\xfc\x7f\xf7\x8f\xe8\xc4E\x1c \x03\xa1V\tO<\xa0\xf4\xbc\x8cg_[\xe6\x0f\x8bq\xce?\x92[\xeds\xe1)\xd8\xd3\xeae~\aKp\xc7\xb6o\xe4\xbf\x9b~\xff\xfd;\x12\\\x03\xb0z6\xeeY\xae\xd4\xa8\xf51\xe1\x89H\\F7\x04', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x45) [ 137.686517][ T7855] team0: Port device team_slave_0 added [ 137.717745][ T7855] team0: Port device team_slave_1 added [ 137.744015][ T7858] chnl_net:caif_netlink_parms(): no params data found [ 137.801822][ T7855] device hsr_slave_0 entered promiscuous mode [ 137.859737][ T7855] device hsr_slave_1 entered promiscuous mode 20:56:59 executing program 3: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x10, 0x80002, 0x0) bind$netlink(r0, &(0x7f00000004c0)={0x10, 0x0, 0x1}, 0xc) write(r0, &(0x7f0000000340)="2600000022004701050000000000000005006d20002b5fee839cd53400b017ca5b0000000000", 0x26) connect$netlink(r0, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000b4bffc), 0x4) sendto(r0, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000000780), 0x3ffffffffffff81, 0x2, 0x0) [ 137.908521][ T7861] IPVS: ftp: loaded support on port[0] = 21 [ 137.966894][ T7855] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 138.032727][ T7855] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 138.101460][ T7858] bridge0: port 1(bridge_slave_0) entered blocking state [ 138.108521][ T7858] bridge0: port 1(bridge_slave_0) entered disabled state [ 138.116848][ T7858] device bridge_slave_0 entered promiscuous mode [ 138.129725][ T7855] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 138.140917][ T7863] IPVS: ftp: loaded support on port[0] = 21 20:57:00 executing program 4: openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0xa0200, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, &(0x7f000095dffc)) setsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000000), 0x10) r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$setstatus(r0, 0x4, 0x42000) futex(0x0, 0xc, 0x0, 0x0, &(0x7f0000048000), 0x0) r1 = perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0) r3 = dup2(r1, r2) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, 0x0, &(0x7f0000000500)) r4 = geteuid() setsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f0000000540)={{{@in=@dev, @in=@broadcast, 0x4e23, 0x0, 0x4e23, 0x2, 0xa, 0x110, 0x160, 0x2b, 0x0, r4}, {0x2, 0x0, 0xfffffffffffffffd, 0x3, 0x400, 0x1, 0x0, 0x3f}, {0x9, 0x0, 0x0, 0x5}, 0x9d, 0x0, 0x2, 0xcd17add191225d1a, 0x0, 0x2}, {{@in=@empty, 0x0, 0x2b}, 0x1e, @in=@empty, 0x0, 0x4, 0x0, 0x0, 0x1f, 0x7, 0x8}}, 0xe8) ioctl$PERF_EVENT_IOC_QUERY_BPF(r1, 0xc008240a, &(0x7f0000000200)={0x1, 0x0, [0x0]}) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1) ioctl$KVM_GET_XCRS(0xffffffffffffffff, 0x8188aea6, &(0x7f0000000040)={0x1, 0x0, [{0x1942000}]}) io_setup(0x9, &(0x7f0000000180)=0x0) io_submit(r5, 0x1, &(0x7f0000000440)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)="100000400400000001000000000000", 0xf}]) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='stat\t\xc0\xd2\xfe\xbc\xf9\xdf-\xea\xc8\xc1w\xff\x17\x12H\xe9\x11\x93Q0I\xf81U\ro}\xe6l\xf67\xbd\xbf\x13\x11\x92\f\x8a&\xed\xa4\xdc\xc3x?\x9d\xb5\x11k4\xd3\x1b\x05\x12\xa5`\x8a\xaf\xf0\x1eyR4\f\xd6\xfd\x00\x00\x00\x00', 0x275a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='stat\t\xc0\xd2\xfe\xbc\xf9\xdf-\xea\xc8\xc1w\xff\x17\x12H\xe9\x11\x93Q0I\xf81U\ro}\xe6l\xf67\xbd\xbf\x13\x11\x92\f\x8a&\xed\xa4\xdc\xc3x?\x9d\xb5\x11k4\xd3\x1b\x05\x12\xa5`\x8a\xaf\xf0\x1eyR4\f\xd6\xfd\x00\x00\x00\x00', 0x275a, 0x0) pwrite64(r6, &(0x7f0000000200)="43d42a161e02123d13f6f24bafc66d44ed81ef2bc851ba63e39f693f1863185534d7ba6247e4bb64e27ef332c8df233dd1ed8499cef32ac9a2aa8c848c838a2498", 0x41, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r6, 0x0) getsockname$packet(r6, 0x0, &(0x7f00000000c0)) clock_gettime(0x0, &(0x7f0000000140)) [ 138.181204][ T7855] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 138.224946][ T7858] bridge0: port 2(bridge_slave_1) entered blocking state [ 138.239377][ T7858] bridge0: port 2(bridge_slave_1) entered disabled state [ 138.251563][ T7858] device bridge_slave_1 entered promiscuous mode [ 138.291262][ T7855] bridge0: port 2(bridge_slave_1) entered blocking state [ 138.298331][ T7855] bridge0: port 2(bridge_slave_1) entered forwarding state [ 138.305694][ T7855] bridge0: port 1(bridge_slave_0) entered blocking state [ 138.312761][ T7855] bridge0: port 1(bridge_slave_0) entered forwarding state [ 138.355888][ T7858] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 138.383124][ T7858] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 138.417046][ T7861] chnl_net:caif_netlink_parms(): no params data found [ 138.437733][ T7867] IPVS: ftp: loaded support on port[0] = 21 [ 138.444382][ T7858] team0: Port device team_slave_0 added [ 138.452673][ T7858] team0: Port device team_slave_1 added 20:57:00 executing program 5: mkdir(&(0x7f0000000340)='./file0\x00', 0x0) mount(0x0, &(0x7f000001c000)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x0, 0x0) creat(&(0x7f0000000040)='./file0/bus\x00', 0x0) mount(0x0, &(0x7f000000fff8)='./file0\x00', 0x0, 0x7ffbf, 0x0) [ 138.465600][ T5] bridge0: port 1(bridge_slave_0) entered disabled state [ 138.481130][ T5] bridge0: port 2(bridge_slave_1) entered disabled state [ 138.601439][ T7858] device hsr_slave_0 entered promiscuous mode [ 138.649706][ T7858] device hsr_slave_1 entered promiscuous mode [ 138.699383][ T7858] debugfs: Directory 'hsr0' with parent '/' already present! [ 138.766520][ T7861] bridge0: port 1(bridge_slave_0) entered blocking state [ 138.775072][ T7861] bridge0: port 1(bridge_slave_0) entered disabled state [ 138.784261][ T7861] device bridge_slave_0 entered promiscuous mode [ 138.791367][ T7863] chnl_net:caif_netlink_parms(): no params data found [ 138.818232][ T7871] IPVS: ftp: loaded support on port[0] = 21 [ 138.835796][ T7861] bridge0: port 2(bridge_slave_1) entered blocking state [ 138.843119][ T7861] bridge0: port 2(bridge_slave_1) entered disabled state [ 138.851079][ T7861] device bridge_slave_1 entered promiscuous mode [ 138.869948][ T7855] 8021q: adding VLAN 0 to HW filter on device bond0 [ 138.902723][ T7861] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 138.912272][ T7858] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 138.940937][ T7863] bridge0: port 1(bridge_slave_0) entered blocking state [ 138.948017][ T7863] bridge0: port 1(bridge_slave_0) entered disabled state [ 138.956005][ T7863] device bridge_slave_0 entered promiscuous mode [ 138.966533][ T7863] bridge0: port 2(bridge_slave_1) entered blocking state [ 138.973673][ T7863] bridge0: port 2(bridge_slave_1) entered disabled state [ 138.981897][ T7863] device bridge_slave_1 entered promiscuous mode [ 138.991861][ T7861] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 139.002754][ T7858] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 139.067577][ T7858] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 139.150738][ T7858] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 139.198685][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 139.206624][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 139.216233][ T7855] 8021q: adding VLAN 0 to HW filter on device team0 [ 139.224635][ T7863] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 139.234903][ T7861] team0: Port device team_slave_0 added [ 139.243663][ T7861] team0: Port device team_slave_1 added [ 139.271398][ T7863] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 139.285149][ T7867] chnl_net:caif_netlink_parms(): no params data found [ 139.324306][ T7863] team0: Port device team_slave_0 added [ 139.331729][ T7867] bridge0: port 1(bridge_slave_0) entered blocking state [ 139.340357][ T7867] bridge0: port 1(bridge_slave_0) entered disabled state [ 139.347930][ T7867] device bridge_slave_0 entered promiscuous mode [ 139.357995][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 139.367003][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 139.375549][ T5] bridge0: port 1(bridge_slave_0) entered blocking state [ 139.382722][ T5] bridge0: port 1(bridge_slave_0) entered forwarding state [ 139.411519][ T7863] team0: Port device team_slave_1 added [ 139.417383][ T7867] bridge0: port 2(bridge_slave_1) entered blocking state [ 139.424861][ T7867] bridge0: port 2(bridge_slave_1) entered disabled state [ 139.432994][ T7867] device bridge_slave_1 entered promiscuous mode [ 139.444488][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 139.453320][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 139.461979][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 139.469114][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 139.477080][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 139.496141][ T7871] chnl_net:caif_netlink_parms(): no params data found [ 139.514799][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 139.581558][ T7861] device hsr_slave_0 entered promiscuous mode [ 139.649831][ T7861] device hsr_slave_1 entered promiscuous mode [ 139.689456][ T7861] debugfs: Directory 'hsr0' with parent '/' already present! [ 139.761948][ T7863] device hsr_slave_0 entered promiscuous mode [ 139.799855][ T7863] device hsr_slave_1 entered promiscuous mode [ 139.879476][ T7863] debugfs: Directory 'hsr0' with parent '/' already present! [ 139.888384][ T7867] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 139.897743][ T2416] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 139.906705][ T2416] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 139.915328][ T2416] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 139.923775][ T2416] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 139.932728][ T2416] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 139.941139][ T2416] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 139.952590][ T7855] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 139.964318][ T7855] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 139.987801][ T7867] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 139.997379][ T2416] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 140.005728][ T2416] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 140.014584][ T2416] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 140.029525][ T7858] 8021q: adding VLAN 0 to HW filter on device bond0 [ 140.078567][ T7871] bridge0: port 1(bridge_slave_0) entered blocking state [ 140.086125][ T7871] bridge0: port 1(bridge_slave_0) entered disabled state [ 140.094468][ T7871] device bridge_slave_0 entered promiscuous mode [ 140.109621][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 140.116986][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 140.129751][ T7867] team0: Port device team_slave_0 added [ 140.135523][ T7861] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 140.173221][ T7861] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 140.221727][ T7871] bridge0: port 2(bridge_slave_1) entered blocking state [ 140.228917][ T7871] bridge0: port 2(bridge_slave_1) entered disabled state [ 140.236711][ T7871] device bridge_slave_1 entered promiscuous mode [ 140.245558][ T7855] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 140.255693][ T7867] team0: Port device team_slave_1 added [ 140.261720][ T7863] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 140.301259][ T7861] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 140.356843][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 140.364694][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 140.377560][ T7858] 8021q: adding VLAN 0 to HW filter on device team0 [ 140.391887][ T7863] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 140.421844][ T7863] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 140.481232][ T7861] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 140.532779][ T7858] ================================================================== [ 140.540915][ T7858] BUG: KCSAN: data-race in pcpu_alloc / pcpu_chunk_populated [ 140.548268][ T7858] [ 140.550589][ T7858] write to 0xffffffff86255180 of 4 bytes by task 7855 on cpu 0: [ 140.558216][ T7858] pcpu_chunk_populated+0xed/0x110 [ 140.563321][ T7858] pcpu_alloc+0x977/0xcf0 [ 140.567642][ T7858] __alloc_percpu+0x2e/0x40 [ 140.572137][ T7858] xt_percpu_counter_alloc+0x105/0x130 [ 140.577581][ T7858] find_check_entry.isra.0+0x64/0x590 [ 140.582940][ T7858] translate_table+0x7a5/0xcd0 [ 140.587778][ T7858] ip6t_register_table+0xc3/0x210 [ 140.592789][ T7858] ip6table_mangle_table_init.part.0+0x5e/0x90 [ 140.598934][ T7858] ip6table_mangle_table_init+0x54/0x60 [ 140.605601][ T7858] xt_find_table_lock+0x226/0x300 [ 140.610623][ T7858] xt_request_find_table_lock+0x35/0xc0 [ 140.616169][ T7858] get_info+0xcb/0x430 [ 140.620226][ T7858] do_ip6t_get_ctl+0xbf/0x640 [ 140.624905][ T7858] nf_getsockopt+0x71/0xb0 [ 140.629315][ T7858] ipv6_getsockopt+0x17c/0x1d0 [ 140.634074][ T7858] tcp_getsockopt+0x7c/0xc0 [ 140.638570][ T7858] sock_common_getsockopt+0x67/0x90 [ 140.643765][ T7858] __sys_getsockopt+0xf1/0x210 [ 140.648520][ T7858] __x64_sys_getsockopt+0x70/0x90 [ 140.653545][ T7858] do_syscall_64+0xcc/0x3a0 [ 140.658048][ T7858] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 140.664789][ T7858] [ 140.667110][ T7858] read to 0xffffffff86255180 of 4 bytes by task 7858 on cpu 1: [ 140.674644][ T7858] pcpu_alloc+0x3b0/0xcf0 [ 140.678962][ T7858] __alloc_percpu_gfp+0x31/0x50 [ 140.683804][ T7858] fib_nh_common_init+0x58/0x1e0 [ 140.688743][ T7858] fib6_nh_init+0x2ca/0x1090 [ 140.693333][ T7858] ip6_route_info_create+0x9cd/0xe40 [ 140.698605][ T7858] ip6_route_add+0x30/0x110 [ 140.703105][ T7858] addrconf_prefix_route.isra.0+0x1e3/0x260 [ 140.708990][ T7858] addrconf_notify+0xff0/0x1550 [ 140.713833][ T7858] notifier_call_chain+0xd7/0x160 [ 140.718845][ T7858] raw_notifier_call_chain+0x37/0x50 [ 140.724117][ T7858] call_netdevice_notifiers_info+0x9a/0x120 [ 140.729996][ T7858] __dev_notify_flags+0xcf/0x200 [ 140.734920][ T7858] dev_change_flags+0xb8/0xe0 [ 140.739584][ T7858] do_setlink+0x64b/0x1ee0 [ 140.743990][ T7858] __rtnl_newlink+0x950/0x1090 [ 140.748757][ T7858] rtnl_newlink+0x63/0x90 [ 140.753074][ T7858] rtnetlink_rcv_msg+0x1d3/0x500 [ 140.758001][ T7858] netlink_rcv_skb+0xb0/0x260 [ 140.762666][ T7858] rtnetlink_rcv+0x26/0x30 [ 140.767073][ T7858] netlink_unicast+0x3a6/0x4d0 [ 140.771828][ T7858] netlink_sendmsg+0x4d3/0x8b0 [ 140.776579][ T7858] sock_sendmsg+0x9f/0xc0 20:57:02 executing program 0: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSKBSENT(r0, 0x4b63, 0x0) [ 140.780897][ T7858] __sys_sendto+0x21f/0x320 [ 140.785394][ T7858] __x64_sys_sendto+0x89/0xb0 [ 140.790247][ T7858] do_syscall_64+0xcc/0x3a0 [ 140.794749][ T7858] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 140.800653][ T7858] [ 140.802970][ T7858] Reported by Kernel Concurrency Sanitizer on: [ 140.809140][ T7858] CPU: 1 PID: 7858 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0 [ 140.817722][ T7858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 140.827764][ T7858] ================================================================== [ 140.835824][ T7858] Kernel panic - not syncing: panic_on_warn set ... [ 140.842435][ T7858] CPU: 1 PID: 7858 Comm: syz-executor.1 Not tainted 5.5.0-rc1-syzkaller #0 [ 140.851019][ T7858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 140.861063][ T7858] Call Trace: [ 140.864360][ T7858] dump_stack+0x11d/0x181 [ 140.868697][ T7858] panic+0x210/0x640 [ 140.868720][ T7858] ? pcpu_block_update_hint_alloc+0x4bb/0x620 [ 140.868739][ T7858] ? vprintk_func+0x8d/0x140 [ 140.868760][ T7858] kcsan_report.cold+0xc/0xd [ 140.868782][ T7858] kcsan_setup_watchpoint+0x3fe/0x460 [ 140.868800][ T7858] __tsan_read4+0xc6/0x100 [ 140.868814][ T7858] pcpu_alloc+0x3b0/0xcf0 [ 140.868838][ T7858] ? __read_once_size.constprop.0+0x12/0x20 [ 140.868853][ T7858] __alloc_percpu_gfp+0x31/0x50 [ 140.868869][ T7858] fib_nh_common_init+0x58/0x1e0 [ 140.868887][ T7858] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 140.868904][ T7858] fib6_nh_init+0x2ca/0x1090 [ 140.868925][ T7858] ? fib6_info_alloc+0x11d/0x160 [ 140.868942][ T7858] ip6_route_info_create+0x9cd/0xe40 [ 140.868962][ T7858] ip6_route_add+0x30/0x110 [ 140.868980][ T7858] addrconf_prefix_route.isra.0+0x1e3/0x260 [ 140.869009][ T7858] addrconf_notify+0xff0/0x1550 [ 140.869025][ T7858] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 140.869045][ T7858] ? ip6mr_device_event+0x51/0x1a0 [ 140.869070][ T7858] notifier_call_chain+0xd7/0x160 [ 140.869086][ T7858] ? notifier_call_chain+0xd7/0x160 [ 140.869105][ T7858] raw_notifier_call_chain+0x37/0x50 [ 140.869121][ T7858] call_netdevice_notifiers_info+0x9a/0x120 [ 140.869138][ T7858] __dev_notify_flags+0xcf/0x200 [ 140.869157][ T7858] dev_change_flags+0xb8/0xe0 [ 140.869172][ T7858] do_setlink+0x64b/0x1ee0 [ 140.869184][ T7858] ? find_next_bit+0xcb/0xe0 [ 140.869202][ T7858] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 140.869219][ T7858] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 140.869231][ T7858] ? __nla_validate_parse+0xa0/0x1140 [ 140.869247][ T7858] ? should_fail+0x1b/0x45d [ 140.869266][ T7858] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 140.869279][ T7858] ? __read_once_size+0x68/0x120 [ 140.869297][ T7858] __rtnl_newlink+0x950/0x1090 [ 140.869322][ T7858] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 140.869343][ T7858] ? enqueue_timer+0x101/0x210 [ 140.869364][ T7858] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 140.869382][ T7858] ? _raw_spin_unlock_irqrestore+0x70/0x80 [ 140.869397][ T7858] ? add_timer+0x278/0x550 [ 140.869423][ T7858] ? __queue_delayed_work+0x14a/0x1d0 [ 140.869462][ T7858] ? kmem_cache_alloc_trace+0x160/0x5d0 [ 140.869477][ T7858] ? ns_capable_common+0xb4/0xc0 [ 140.869494][ T7858] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 140.869508][ T7858] ? __rtnl_newlink+0x1090/0x1090 [ 140.869521][ T7858] rtnl_newlink+0x63/0x90 [ 140.869535][ T7858] rtnetlink_rcv_msg+0x1d3/0x500 [ 140.869552][ T7858] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 140.869567][ T7858] ? __rcu_read_unlock+0x66/0x3d0 [ 140.869582][ T7858] netlink_rcv_skb+0xb0/0x260 [ 140.869594][ T7858] ? rtnl_calcit.isra.0+0x220/0x220 [ 140.869610][ T7858] rtnetlink_rcv+0x26/0x30 [ 140.869622][ T7858] netlink_unicast+0x3a6/0x4d0 [ 140.869638][ T7858] netlink_sendmsg+0x4d3/0x8b0 [ 140.869654][ T7858] ? netlink_unicast+0x4d0/0x4d0 [ 140.869670][ T7858] sock_sendmsg+0x9f/0xc0 [ 140.869683][ T7858] __sys_sendto+0x21f/0x320 [ 140.869707][ T7858] ? blkcg_maybe_throttle_current+0x23d/0x580 [ 140.869723][ T7858] ? _raw_spin_unlock_irq+0x68/0x80 [ 140.869739][ T7858] ? mem_cgroup_handle_over_high+0x50/0x180 [ 140.869754][ T7858] __x64_sys_sendto+0x89/0xb0 [ 140.869772][ T7858] do_syscall_64+0xcc/0x3a0 [ 140.869791][ T7858] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 140.869801][ T7858] RIP: 0033:0x414603 [ 140.869820][ T7858] Code: ff 0f 83 b0 19 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 3d 6d 3e 66 00 00 75 17 49 89 ca b8 2c 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 81 19 00 00 c3 48 83 ec 08 e8 87 fa ff ff [ 140.869828][ T7858] RSP: 002b:00007ffe69933798 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 140.869841][ T7858] RAX: ffffffffffffffda RBX: 0000000000a72200 RCX: 0000000000414603 [ 140.869849][ T7858] RDX: 000000000000002c RSI: 0000000000a72250 RDI: 0000000000000003 [ 140.869857][ T7858] RBP: 0000000000000000 R08: 00007ffe699337a0 R09: 000000000000000c [ 140.869865][ T7858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 140.869873][ T7858] R13: 0000000000000000 R14: 0000000000a72250 R15: 0000000000000003 [ 140.871264][ T7858] Kernel Offset: disabled [ 141.263509][ T7858] Rebooting in 86400 seconds..