Warning: Permanently added '10.128.0.75' (ECDSA) to the list of known hosts. 2020/06/27 12:51:19 fuzzer started 2020/06/27 12:51:19 dialing manager at 10.128.0.105:43943 2020/06/27 12:51:19 syscalls: 3105 2020/06/27 12:51:19 code coverage: enabled 2020/06/27 12:51:19 comparison tracing: enabled 2020/06/27 12:51:19 extra coverage: enabled 2020/06/27 12:51:19 setuid sandbox: enabled 2020/06/27 12:51:19 namespace sandbox: enabled 2020/06/27 12:51:19 Android sandbox: /sys/fs/selinux/policy does not exist 2020/06/27 12:51:19 fault injection: enabled 2020/06/27 12:51:19 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/06/27 12:51:19 net packet injection: enabled 2020/06/27 12:51:19 net device setup: enabled 2020/06/27 12:51:19 concurrency sanitizer: enabled 2020/06/27 12:51:19 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/06/27 12:51:19 USB emulation: enabled 2020/06/27 12:51:21 suppressing KCSAN reports in functions: '__ext4_new_inode' 'blk_mq_sched_dispatch_requests' 'page_counter_charge' 'generic_write_end' '__blkdev_get' 'do_syslog' 'ip_tunnel_xmit' 'generic_file_buffered_read' '__ext4_update_other_inode_time' 'alloc_pid' 'do_epoll_wait' 'do_nanosleep' '__send_signal' 'blk_mq_dispatch_rq_list' 'find_get_pages_range_tag' 'ext4_free_inode' 12:51:36 executing program 0: r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = syz_open_dev$binderN(0x0, 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000200)={0x1, 0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="04630440"], 0x0, 0x0, 0x0}) r2 = dup2(r1, r0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000240)={0x4, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='\fc'], 0x1, 0x100000000000000, &(0x7f0000000680)='n'}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000280)={0xd, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="0e630c40"], 0x0, 0x0, 0x0}) syzkaller login: [ 48.614630][ T8645] IPVS: ftp: loaded support on port[0] = 21 [ 48.677599][ T8645] chnl_net:caif_netlink_parms(): no params data found [ 48.710683][ T8645] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.717749][ T8645] bridge0: port 1(bridge_slave_0) entered disabled state 12:51:37 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000001fd8)=@framed={{0xffffffb7, 0x0, 0x0, 0x0, 0xe6010000, 0xf, 0x10}, [@ldst={0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe6030000}]}, &(0x7f0000003ff6)='GPL\x00', 0x1, 0xff06, &(0x7f000000cf3d)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffffc}, 0x48) [ 48.725932][ T8645] device bridge_slave_0 entered promiscuous mode [ 48.733986][ T8645] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.742833][ T8645] bridge0: port 2(bridge_slave_1) entered disabled state [ 48.751248][ T8645] device bridge_slave_1 entered promiscuous mode [ 48.766574][ T8645] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 48.777241][ T8645] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 48.795655][ T8645] team0: Port device team_slave_0 added [ 48.803021][ T8645] team0: Port device team_slave_1 added [ 48.819661][ T8645] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 48.826686][ T8645] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 48.853603][ T8645] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 48.865635][ T8645] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 48.888451][ T8645] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 48.915058][ T8645] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 48.939461][ T8799] IPVS: ftp: loaded support on port[0] = 21 12:51:37 executing program 2: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000340)='/dev/ppp\x00', 0x0, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f0000000380)=""/272) ioctl$PPPIOCGNPMODE(r0, 0x80047441, &(0x7f0000000000)) [ 48.980038][ T8645] device hsr_slave_0 entered promiscuous mode [ 49.028774][ T8645] device hsr_slave_1 entered promiscuous mode [ 49.108354][ T7] ================================================================== [ 49.116457][ T7] BUG: KCSAN: data-race in copy_process / copy_process [ 49.123293][ T7] [ 49.125609][ T7] write to 0xffffffff89281410 of 4 bytes by task 3294 on cpu 0: [ 49.133241][ T7] copy_process+0x2e53/0x32b0 [ 49.137901][ T7] _do_fork+0xf1/0x660 [ 49.141952][ T7] kernel_thread+0x85/0xb0 [ 49.146356][ T7] call_usermodehelper_exec_work+0x4f/0x1b0 [ 49.152258][ T7] process_one_work+0x3cb/0x990 [ 49.157090][ T7] worker_thread+0x665/0xbe0 [ 49.161672][ T7] kthread+0x210/0x220 [ 49.165725][ T7] ret_from_fork+0x1f/0x30 [ 49.170119][ T7] [ 49.172438][ T7] read to 0xffffffff89281410 of 4 bytes by task 7 on cpu 1: [ 49.179789][ T7] copy_process+0xab5/0x32b0 [ 49.184364][ T7] _do_fork+0xf1/0x660 [ 49.188422][ T7] kernel_thread+0x85/0xb0 [ 49.192835][ T7] call_usermodehelper_exec_work+0x4f/0x1b0 [ 49.198752][ T7] process_one_work+0x3cb/0x990 [ 49.203585][ T7] worker_thread+0x665/0xbe0 [ 49.208158][ T7] kthread+0x210/0x220 [ 49.212246][ T7] ret_from_fork+0x1f/0x30 [ 49.216665][ T7] [ 49.218971][ T7] Reported by Kernel Concurrency Sanitizer on: [ 49.225108][ T7] CPU: 1 PID: 7 Comm: kworker/u4:0 Not tainted 5.8.0-rc2-syzkaller #0 [ 49.233240][ T7] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 49.243405][ T7] Workqueue: events_unbound call_usermodehelper_exec_work [ 49.250580][ T7] ================================================================== [ 49.258715][ T7] Kernel panic - not syncing: panic_on_warn set ... [ 49.266247][ T7] CPU: 1 PID: 7 Comm: kworker/u4:0 Not tainted 5.8.0-rc2-syzkaller #0 [ 49.274466][ T7] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 49.284514][ T7] Workqueue: events_unbound call_usermodehelper_exec_work [ 49.291607][ T7] Call Trace: [ 49.294888][ T7] dump_stack+0x10f/0x19d [ 49.299205][ T7] panic+0x1f8/0x63a [ 49.303100][ T7] ? vprintk_emit+0x44a/0x4f0 [ 49.307773][ T7] kcsan_report+0x684/0x690 [ 49.312270][ T7] ? kcsan_setup_watchpoint+0x453/0x4d0 [ 49.317803][ T7] ? copy_process+0xab5/0x32b0 [ 49.322555][ T7] ? _do_fork+0xf1/0x660 [ 49.326784][ T7] ? kernel_thread+0x85/0xb0 [ 49.331360][ T7] ? call_usermodehelper_exec_work+0x4f/0x1b0 [ 49.337411][ T7] ? process_one_work+0x3cb/0x990 [ 49.342423][ T7] ? worker_thread+0x665/0xbe0 [ 49.347183][ T7] ? kthread+0x210/0x220 [ 49.351406][ T7] ? ret_from_fork+0x1f/0x30 [ 49.355999][ T7] ? debug_smp_processor_id+0x18/0x20 [ 49.361358][ T7] ? sysvec_hyperv_callback+0x90/0x140 [ 49.366798][ T7] ? copy_creds+0x280/0x350 [ 49.371287][ T7] ? copy_creds+0x280/0x350 [ 49.375779][ T7] kcsan_setup_watchpoint+0x453/0x4d0 [ 49.381132][ T7] ? copy_creds+0x280/0x350 [ 49.385625][ T7] copy_process+0xab5/0x32b0 [ 49.390238][ T7] ? check_preempt_wakeup+0x1cb/0x370 [ 49.395597][ T7] ? proc_cap_handler+0x280/0x280 [ 49.400609][ T7] _do_fork+0xf1/0x660 [ 49.404662][ T7] ? __rcu_read_unlock+0x4b/0x260 [ 49.409763][ T7] ? check_preemption_disabled+0x8f/0x1a0 [ 49.415470][ T7] ? proc_cap_handler+0x280/0x280 [ 49.420481][ T7] kernel_thread+0x85/0xb0 [ 49.424889][ T7] ? proc_cap_handler+0x280/0x280 [ 49.429901][ T7] call_usermodehelper_exec_work+0x4f/0x1b0 [ 49.435781][ T7] process_one_work+0x3cb/0x990 [ 49.440619][ T7] worker_thread+0x665/0xbe0 [ 49.445201][ T7] ? process_one_work+0x990/0x990 [ 49.450246][ T7] kthread+0x210/0x220 [ 49.454302][ T7] ? process_one_work+0x990/0x990 [ 49.459312][ T7] ? constant_test_bit+0x30/0x30 [ 49.464238][ T7] ret_from_fork+0x1f/0x30 [ 49.470160][ T7] Kernel Offset: disabled [ 49.474555][ T7] Rebooting in 86400 seconds..