Warning: Permanently added '10.128.0.77' (ECDSA) to the list of known hosts. 2020/06/28 01:24:33 fuzzer started 2020/06/28 01:24:33 dialing manager at 10.128.0.105:41961 2020/06/28 01:24:33 syscalls: 3105 2020/06/28 01:24:33 code coverage: enabled 2020/06/28 01:24:33 comparison tracing: enabled 2020/06/28 01:24:33 extra coverage: enabled 2020/06/28 01:24:33 setuid sandbox: enabled 2020/06/28 01:24:33 namespace sandbox: enabled 2020/06/28 01:24:33 Android sandbox: /sys/fs/selinux/policy does not exist 2020/06/28 01:24:33 fault injection: enabled 2020/06/28 01:24:33 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/06/28 01:24:33 net packet injection: enabled 2020/06/28 01:24:33 net device setup: enabled 2020/06/28 01:24:33 concurrency sanitizer: enabled 2020/06/28 01:24:33 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/06/28 01:24:33 USB emulation: enabled 01:24:35 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$lock(r1, 0x7, &(0x7f0000000280)) fcntl$lock(r1, 0x7, &(0x7f0000000040)={0x1, 0x0, 0x1}) fcntl$lock(r1, 0x26, &(0x7f0000000080)) fcntl$lock(r1, 0x26, &(0x7f0000000180)={0x40001}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup3(r0, r1, 0x0) syzkaller login: [ 33.253517][ T8668] IPVS: ftp: loaded support on port[0] = 21 [ 33.317753][ T8668] chnl_net:caif_netlink_parms(): no params data found 01:24:35 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2f) r1 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r2, 0x0) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000040)={0x9}, 0x4) [ 33.362311][ T8668] bridge0: port 1(bridge_slave_0) entered blocking state [ 33.369868][ T8668] bridge0: port 1(bridge_slave_0) entered disabled state [ 33.377393][ T8668] device bridge_slave_0 entered promiscuous mode [ 33.385717][ T8668] bridge0: port 2(bridge_slave_1) entered blocking state [ 33.395278][ T8668] bridge0: port 2(bridge_slave_1) entered disabled state [ 33.403493][ T8668] device bridge_slave_1 entered promiscuous mode [ 33.419591][ T8668] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 33.430729][ T8668] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 33.448247][ T8668] team0: Port device team_slave_0 added [ 33.455202][ T8668] team0: Port device team_slave_1 added [ 33.471145][ T8668] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 33.478566][ T8668] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 33.505126][ T8668] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 33.517273][ T8668] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 33.524951][ T8668] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 33.551491][ T8668] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 33.575512][ T8822] IPVS: ftp: loaded support on port[0] = 21 [ 33.609015][ T8668] device hsr_slave_0 entered promiscuous mode 01:24:36 executing program 2: setrlimit(0x7, &(0x7f0000000040)) eventfd2(0x0, 0x0) [ 33.637900][ T8668] device hsr_slave_1 entered promiscuous mode [ 33.794699][ T8822] chnl_net:caif_netlink_parms(): no params data found [ 33.810498][ T8668] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 33.859555][ T8668] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 33.861628][ T8925] IPVS: ftp: loaded support on port[0] = 21 01:24:36 executing program 3: r0 = socket$can_j1939(0x1d, 0x2, 0x7) getsockopt$SO_J1939_ERRQUEUE(r0, 0x6b, 0x4, 0x0, 0xfffffffffffffffd) [ 33.900059][ T8668] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 33.960070][ T8668] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 34.039678][ T8994] IPVS: ftp: loaded support on port[0] = 21 [ 34.041045][ T8668] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.052728][ T8668] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.060014][ T8668] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.067015][ T8668] bridge0: port 1(bridge_slave_0) entered forwarding state [ 34.078411][ T8822] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.085512][ T8822] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.094968][ T8822] device bridge_slave_0 entered promiscuous mode [ 34.124965][ T8822] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.132987][ T8822] bridge0: port 2(bridge_slave_1) entered disabled state 01:24:36 executing program 4: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2}, 0x10) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x41d0, 0x4) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0) recvmmsg(r0, &(0x7f0000000040), 0x291962b, 0x45833af92e4b39ff, 0x0) [ 34.141247][ T8822] device bridge_slave_1 entered promiscuous mode [ 34.176200][ T8822] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 34.222788][ T8925] chnl_net:caif_netlink_parms(): no params data found [ 34.257051][ T8822] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 34.282890][ T8822] team0: Port device team_slave_0 added [ 34.303925][ T8668] 8021q: adding VLAN 0 to HW filter on device bond0 [ 34.317748][ T8994] chnl_net:caif_netlink_parms(): no params data found [ 34.329021][ T8822] team0: Port device team_slave_1 added [ 34.335358][ T3917] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.344133][ T3917] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.354392][ T3917] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 34.384035][ T9228] IPVS: ftp: loaded support on port[0] = 21 [ 34.395419][ T8668] 8021q: adding VLAN 0 to HW filter on device team0 [ 34.425449][ T3917] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 34.434359][ T3917] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 34.467176][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 34.475762][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 34.485367][ T5] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.492524][ T5] bridge0: port 1(bridge_slave_0) entered forwarding state [ 34.502019][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready 01:24:36 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x1e, 0x0, 0x0) [ 34.511065][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 34.520863][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.527908][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.536181][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 34.546484][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 34.555837][ T8822] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 34.568530][ T8822] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 34.596321][ T8822] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 34.628490][ T8372] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 34.636809][ T8372] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 34.647570][ T8372] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 34.662682][ T8668] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 34.673197][ T8668] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 34.684636][ T8822] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 34.691820][ T8822] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 34.717760][ T8822] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 34.728675][ T8994] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.735754][ T8994] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.743952][ T8994] device bridge_slave_0 entered promiscuous mode [ 34.750913][ T8925] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.758347][ T8925] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.765754][ T8925] device bridge_slave_0 entered promiscuous mode [ 34.777271][ T3917] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 34.785656][ T3917] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 34.794363][ T9286] IPVS: ftp: loaded support on port[0] = 21 [ 34.803576][ T3917] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 34.812147][ T3917] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 34.820523][ T3917] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 34.828928][ T3917] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 34.847297][ T8994] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.854331][ T8994] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.862464][ T8994] device bridge_slave_1 entered promiscuous mode [ 34.875811][ T8925] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.883396][ T8925] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.892122][ T8925] device bridge_slave_1 entered promiscuous mode [ 34.906072][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 34.978587][ T8822] device hsr_slave_0 entered promiscuous mode [ 35.008219][ T8822] device hsr_slave_1 entered promiscuous mode [ 35.057034][ T8822] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 35.064587][ T8822] Cannot create hsr debugfs directory [ 35.079009][ T8994] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 35.089020][ T8925] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 35.109152][ T8372] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 35.116603][ T8372] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 35.132014][ T8994] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 35.143273][ T8925] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 35.186397][ T8994] team0: Port device team_slave_0 added [ 35.198474][ T8925] team0: Port device team_slave_0 added [ 35.206421][ T8925] team0: Port device team_slave_1 added [ 35.217952][ T8994] team0: Port device team_slave_1 added [ 35.231225][ T9228] chnl_net:caif_netlink_parms(): no params data found [ 35.242474][ T8668] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 35.260029][ T8994] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 35.268066][ T8994] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.294151][ T8994] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 35.314604][ T9286] chnl_net:caif_netlink_parms(): no params data found [ 35.329452][ T8925] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 35.336394][ T8925] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.363731][ T8925] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 35.376751][ T8925] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 35.384202][ T8925] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.410405][ T8925] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 35.422304][ T8994] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 35.429750][ T8994] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.456048][ T8994] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 35.497154][ T601] ================================================================== [ 35.505289][ T601] BUG: KCSAN: data-race in copy_process / copy_process [ 35.512207][ T601] [ 35.514509][ T601] write to 0xffffffff89281410 of 4 bytes by task 7 on cpu 0: [ 35.521851][ T601] copy_process+0x2e53/0x32b0 [ 35.526496][ T601] _do_fork+0xf1/0x660 [ 35.530567][ T601] kernel_thread+0x85/0xb0 [ 35.534964][ T601] call_usermodehelper_exec_work+0x4f/0x1b0 [ 35.540838][ T601] process_one_work+0x3cb/0x990 [ 35.545655][ T601] worker_thread+0x665/0xbe0 [ 35.550213][ T601] kthread+0x210/0x220 [ 35.554341][ T601] ret_from_fork+0x1f/0x30 [ 35.558719][ T601] [ 35.561020][ T601] read to 0xffffffff89281410 of 4 bytes by task 601 on cpu 1: [ 35.568441][ T601] copy_process+0xab5/0x32b0 [ 35.573001][ T601] _do_fork+0xf1/0x660 [ 35.577037][ T601] kernel_thread+0x85/0xb0 [ 35.581421][ T601] call_usermodehelper_exec_work+0x4f/0x1b0 [ 35.587302][ T601] process_one_work+0x3cb/0x990 [ 35.592132][ T601] worker_thread+0x665/0xbe0 [ 35.596688][ T601] kthread+0x210/0x220 [ 35.600726][ T601] ret_from_fork+0x1f/0x30 [ 35.605104][ T601] [ 35.607400][ T601] Reported by Kernel Concurrency Sanitizer on: [ 35.613522][ T601] CPU: 1 PID: 601 Comm: kworker/u4:3 Not tainted 5.8.0-rc2-syzkaller #0 [ 35.621824][ T601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 35.632117][ T601] Workqueue: events_unbound call_usermodehelper_exec_work [ 35.639195][ T601] ================================================================== [ 35.647226][ T601] Kernel panic - not syncing: panic_on_warn set ... [ 35.653806][ T601] CPU: 1 PID: 601 Comm: kworker/u4:3 Not tainted 5.8.0-rc2-syzkaller #0 [ 35.662095][ T601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 35.672138][ T601] Workqueue: events_unbound call_usermodehelper_exec_work [ 35.679218][ T601] Call Trace: [ 35.682479][ T601] dump_stack+0x10f/0x19d [ 35.686780][ T601] panic+0x1f8/0x63a [ 35.690651][ T601] ? vprintk_emit+0x44a/0x4f0 [ 35.695299][ T601] kcsan_report+0x684/0x690 [ 35.699772][ T601] ? kcsan_setup_watchpoint+0x453/0x4d0 [ 35.705287][ T601] ? copy_process+0xab5/0x32b0 [ 35.710016][ T601] ? _do_fork+0xf1/0x660 [ 35.714223][ T601] ? kernel_thread+0x85/0xb0 [ 35.718786][ T601] ? call_usermodehelper_exec_work+0x4f/0x1b0 [ 35.724819][ T601] ? process_one_work+0x3cb/0x990 [ 35.729812][ T601] ? worker_thread+0x665/0xbe0 [ 35.734542][ T601] ? kthread+0x210/0x220 [ 35.738754][ T601] ? ret_from_fork+0x1f/0x30 [ 35.743321][ T601] ? debug_smp_processor_id+0x18/0x20 [ 35.748661][ T601] ? do_machine_check+0xe90/0x15d0 [ 35.753739][ T601] ? copy_creds+0x280/0x350 [ 35.758211][ T601] ? copy_creds+0x280/0x350 [ 35.762708][ T601] kcsan_setup_watchpoint+0x453/0x4d0 [ 35.768047][ T601] ? copy_creds+0x280/0x350 [ 35.772533][ T601] copy_process+0xab5/0x32b0 [ 35.777106][ T601] ? check_preempt_wakeup+0x1cb/0x370 [ 35.782458][ T601] ? proc_cap_handler+0x280/0x280 [ 35.787453][ T601] _do_fork+0xf1/0x660 [ 35.791503][ T601] ? enqueue_entity+0x25a/0x480 [ 35.796328][ T601] ? proc_cap_handler+0x280/0x280 [ 35.801333][ T601] kernel_thread+0x85/0xb0 [ 35.805731][ T601] ? proc_cap_handler+0x280/0x280 [ 35.810738][ T601] call_usermodehelper_exec_work+0x4f/0x1b0 [ 35.816602][ T601] process_one_work+0x3cb/0x990 [ 35.821426][ T601] worker_thread+0x665/0xbe0 [ 35.825987][ T601] ? finish_task_switch+0x8b/0x270 [ 35.831111][ T601] ? process_one_work+0x990/0x990 [ 35.836103][ T601] kthread+0x210/0x220 [ 35.840176][ T601] ? process_one_work+0x990/0x990 [ 35.845172][ T601] ? constant_test_bit+0x30/0x30 [ 35.850083][ T601] ret_from_fork+0x1f/0x30 [ 35.855479][ T601] Kernel Offset: disabled [ 35.859824][ T601] Rebooting in 86400 seconds..