Warning: Permanently added '10.128.0.203' (ECDSA) to the list of known hosts. 2019/10/25 23:37:03 fuzzer started 2019/10/25 23:37:04 dialing manager at 10.128.0.105:32811 2019/10/25 23:37:04 syscalls: 2533 2019/10/25 23:37:04 code coverage: enabled 2019/10/25 23:37:04 comparison tracing: enabled 2019/10/25 23:37:04 extra coverage: extra coverage is not supported by the kernel 2019/10/25 23:37:04 setuid sandbox: enabled 2019/10/25 23:37:04 namespace sandbox: enabled 2019/10/25 23:37:04 Android sandbox: /sys/fs/selinux/policy does not exist 2019/10/25 23:37:04 fault injection: enabled 2019/10/25 23:37:04 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/10/25 23:37:04 net packet injection: enabled 2019/10/25 23:37:04 net device setup: enabled 2019/10/25 23:37:04 concurrency sanitizer: enabled 23:37:05 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000008380)=[{{&(0x7f0000000000)=@in={0x2, 0x4e22, @dev}, 0x80, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1400000000000000000000000800000037ac7101"], 0x14}}], 0x1, 0x0) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c) sendmmsg(r0, &(0x7f0000007e00), 0x40000000000034b, 0x0) 23:37:05 executing program 1: r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000380)='ns/cgroup\x00') ioctl$FS_IOC_GETFLAGS(r0, 0xb702, 0x0) syzkaller login: [ 107.018962][ T7167] IPVS: ftp: loaded support on port[0] = 21 [ 107.187922][ T7167] chnl_net:caif_netlink_parms(): no params data found [ 107.208599][ T7170] IPVS: ftp: loaded support on port[0] = 21 [ 107.275770][ T7167] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.282969][ T7167] bridge0: port 1(bridge_slave_0) entered disabled state [ 107.291566][ T7167] device bridge_slave_0 entered promiscuous mode [ 107.302855][ T7167] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.310478][ T7167] bridge0: port 2(bridge_slave_1) entered disabled state [ 107.319388][ T7167] device bridge_slave_1 entered promiscuous mode 23:37:06 executing program 2: r0 = gettid() r1 = socket(0x10, 0x80002, 0x0) bind$netlink(r1, &(0x7f00000000c0)={0x10, 0x0, 0x1}, 0xc) write(r1, &(0x7f0000000000)="2600000022004701050007008980e8ff06006d20002b1f00c0e9ff094a51f10101c7033500b0", 0x26) connect$netlink(r1, &(0x7f0000000100)=@proc={0x10, 0x0, 0x1}, 0xc) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f00000002c0), 0x4) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) sendmsg(r1, &(0x7f0000001540)={0x0, 0x0, 0x0}, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x1c9c380}, {0x0, 0x9}}, 0x0) connect$netlink(r1, &(0x7f0000000040)=@unspec, 0xc) tkill(r0, 0x1000000000013) [ 107.359232][ T7167] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 107.390914][ T7167] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 107.423739][ T7170] chnl_net:caif_netlink_parms(): no params data found [ 107.441058][ T7167] team0: Port device team_slave_0 added [ 107.464375][ T7167] team0: Port device team_slave_1 added [ 107.493744][ T7170] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.502656][ T7170] bridge0: port 1(bridge_slave_0) entered disabled state [ 107.511262][ T7170] device bridge_slave_0 entered promiscuous mode [ 107.567171][ T7167] device hsr_slave_0 entered promiscuous mode [ 107.604559][ T7167] device hsr_slave_1 entered promiscuous mode 23:37:06 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="b40000000000000071114800000000001500feffffff000095000000000000005bed7a3786986045a54978d4a87e9719f856cbf0553219313af599243b763d366a940bfa48e285c24cc9b133c0062f943d2d6d896a75537c72c2bb0a4e5bccf76aae01b57758d21e187bf3c8eff476890cd4a026123a2855f64fce61aed9021507004aca44cce58575b8a8a791e25736d09f9f6ddd6a35a6844a9b3adfa6aa787ef2e467322395cc4131a7c580effcc1a258a95a2f3e767369bf65fa99f6dcc25cf43fa5dd5db367df32c2dd070be8e28ab860e0f3db8d5ab4e2ba8c32e54781"], &(0x7f0000000080)='GPL\x00', 0x4, 0x3f7, &(0x7f000000cf3d)=""/195}, 0x48) [ 107.686090][ T7170] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.693179][ T7170] bridge0: port 2(bridge_slave_1) entered disabled state [ 107.707085][ T7170] device bridge_slave_1 entered promiscuous mode [ 107.748411][ T7173] IPVS: ftp: loaded support on port[0] = 21 [ 107.846994][ T7170] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 107.896434][ T7170] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 107.955319][ T7167] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.962424][ T7167] bridge0: port 2(bridge_slave_1) entered forwarding state [ 107.969834][ T7167] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.977051][ T7167] bridge0: port 1(bridge_slave_0) entered forwarding state [ 108.156145][ T7170] team0: Port device team_slave_0 added [ 108.176542][ T7170] team0: Port device team_slave_1 added [ 108.226631][ T3028] bridge0: port 1(bridge_slave_0) entered disabled state [ 108.284406][ T3028] bridge0: port 2(bridge_slave_1) entered disabled state 23:37:07 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) creat(0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000040)) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000300)=0x80, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) r1 = dup(r0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='lp\x00', 0x3) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f00000003c0), 0x4) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[@ANYRES32, @ANYRES16=0x0], 0x2bcf) shutdown(r0, 0x1) mount(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0) open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) recvmsg(r0, &(0x7f0000001440)={0x0, 0xa, &(0x7f00000015c0)=[{&(0x7f0000001600)=""/4096, 0xf99e}], 0x1, 0x0, 0xff96ce4aaaa47475, 0x7115}, 0x100) [ 108.424721][ T7167] 8021q: adding VLAN 0 to HW filter on device bond0 [ 108.496850][ T7199] IPVS: ftp: loaded support on port[0] = 21 [ 108.537645][ T7170] device hsr_slave_0 entered promiscuous mode [ 108.564561][ T7170] device hsr_slave_1 entered promiscuous mode [ 108.604279][ T7170] debugfs: Directory 'hsr0' with parent '/' already present! [ 108.629681][ T3028] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 108.655141][ T3028] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 108.665313][ T7167] 8021q: adding VLAN 0 to HW filter on device team0 [ 108.785752][ T7196] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 108.804852][ T7196] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 108.844694][ T7196] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.851782][ T7196] bridge0: port 1(bridge_slave_0) entered forwarding state [ 108.904976][ T7196] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 108.930302][ T7196] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 108.974909][ T7196] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.981988][ T7196] bridge0: port 2(bridge_slave_1) entered forwarding state [ 109.033725][ T7196] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 109.065808][ T7196] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 109.075961][ T7196] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 109.105343][ T7196] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 109.179777][ T7167] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 109.196568][ T7204] IPVS: ftp: loaded support on port[0] = 21 [ 109.213156][ T7189] ================================================================== [ 109.221277][ T7189] BUG: KCSAN: data-race in pid_update_inode / pid_update_inode [ 109.228806][ T7189] [ 109.231130][ T7189] read to 0xffff888123d17088 of 2 bytes by task 7193 on cpu 1: [ 109.238671][ T7189] pid_update_inode+0x25/0x70 [ 109.243341][ T7189] pid_revalidate+0x91/0xd0 [ 109.247855][ T7189] lookup_fast+0x6f2/0x700 [ 109.252270][ T7189] walk_component+0x6d/0xe80 [ 109.257011][ T7189] link_path_walk.part.0+0x5d3/0xa90 [ 109.262299][ T7189] path_openat+0x14f/0x36e0 [ 109.265690][ T7167] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 109.266808][ T7189] do_filp_open+0x11e/0x1b0 [ 109.281606][ T7189] do_sys_open+0x3b3/0x4f0 [ 109.286019][ T7189] __x64_sys_open+0x55/0x70 [ 109.290513][ T7189] do_syscall_64+0xcc/0x370 [ 109.295008][ T7189] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 109.300882][ T7189] [ 109.303209][ T7189] write to 0xffff888123d17088 of 2 bytes by task 7189 on cpu 0: [ 109.310841][ T7189] pid_update_inode+0x51/0x70 [ 109.315515][ T7189] pid_revalidate+0x91/0xd0 [ 109.320008][ T7189] lookup_fast+0x6f2/0x700 [ 109.324412][ T7189] walk_component+0x6d/0xe80 [ 109.328999][ T7189] link_path_walk.part.0+0x5d3/0xa90 [ 109.334277][ T7189] path_openat+0x14f/0x36e0 [ 109.338770][ T7189] do_filp_open+0x11e/0x1b0 [ 109.343284][ T7189] do_sys_open+0x3b3/0x4f0 [ 109.347689][ T7189] __x64_sys_open+0x55/0x70 [ 109.352188][ T7189] do_syscall_64+0xcc/0x370 [ 109.356685][ T7189] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 109.362562][ T7189] [ 109.364881][ T7189] Reported by Kernel Concurrency Sanitizer on: [ 109.371028][ T7189] CPU: 0 PID: 7189 Comm: ps Not tainted 5.4.0-rc3+ #0 [ 109.377778][ T7189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 109.389476][ T7189] ================================================================== [ 109.397530][ T7189] Kernel panic - not syncing: panic_on_warn set ... [ 109.404118][ T7189] CPU: 0 PID: 7189 Comm: ps Not tainted 5.4.0-rc3+ #0 [ 109.410872][ T7189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 109.420920][ T7189] Call Trace: [ 109.424331][ T7189] dump_stack+0xf5/0x159 [ 109.428578][ T7189] panic+0x210/0x640 [ 109.432473][ T7189] ? __x64_sys_open+0x55/0x70 [ 109.437145][ T7189] ? vprintk_func+0x8d/0x140 [ 109.441735][ T7189] kcsan_report.cold+0xc/0x10 [ 109.446410][ T7189] __kcsan_setup_watchpoint+0x32e/0x4a0 [ 109.452063][ T7189] ? task_dump_owner+0xf7/0x260 [ 109.456911][ T7189] __tsan_write2+0x32/0x40 [ 109.461324][ T7189] pid_update_inode+0x51/0x70 [ 109.465993][ T7189] pid_revalidate+0x91/0xd0 [ 109.470497][ T7189] lookup_fast+0x6f2/0x700 [ 109.474916][ T7189] walk_component+0x6d/0xe80 [ 109.479499][ T7189] ? __tsan_read8+0x2c/0x30 [ 109.484001][ T7189] ? security_inode_permission+0xa5/0xc0 [ 109.489642][ T7189] link_path_walk.part.0+0x5d3/0xa90 [ 109.494928][ T7189] path_openat+0x14f/0x36e0 [ 109.499428][ T7189] ? __kcsan_setup_watchpoint+0x6b/0x4a0 [ 109.505055][ T7189] ? __kcsan_setup_watchpoint+0x6b/0x4a0 [ 109.510679][ T7189] ? __kcsan_setup_watchpoint+0x6b/0x4a0 [ 109.516311][ T7189] ? __kcsan_setup_watchpoint+0x6b/0x4a0 [ 109.521928][ T7189] ? __kcsan_setup_watchpoint+0x6b/0x4a0 [ 109.527552][ T7189] ? __kcsan_setup_watchpoint+0x6b/0x4a0 [ 109.533179][ T7189] ? __kcsan_setup_watchpoint+0x6b/0x4a0 [ 109.538805][ T7189] ? __kcsan_setup_watchpoint+0x6b/0x4a0 [ 109.544440][ T7189] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 109.550329][ T7189] ? __kcsan_setup_watchpoint+0x6b/0x4a0 [ 109.555959][ T7189] do_filp_open+0x11e/0x1b0 [ 109.560467][ T7189] ? __alloc_fd+0x316/0x4c0 [ 109.564976][ T7189] do_sys_open+0x3b3/0x4f0 [ 109.569393][ T7189] __x64_sys_open+0x55/0x70 [ 109.573893][ T7189] do_syscall_64+0xcc/0x370 [ 109.578394][ T7189] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 109.584275][ T7189] RIP: 0033:0x7f042880a120 [ 109.588689][ T7189] Code: 48 8b 15 1b 4d 2b 00 f7 d8 64 89 02 83 c8 ff c3 90 90 90 90 90 90 90 90 90 90 83 3d d5 a4 2b 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 5e 8c 01 00 48 89 04 24 [ 109.608283][ T7189] RSP: 002b:00007ffe1a12a9f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 109.616788][ T7189] RAX: ffffffffffffffda RBX: 0000000000616760 RCX: 00007f042880a120 [ 109.624754][ T7189] RDX: 00007ffe1a12aa32 RSI: 0000000000000000 RDI: 00007ffe1a12aa20 [ 109.632719][ T7189] RBP: 0000000000020000 R08: 0000000000000000 R09: 00007f0428ad255f [ 109.640681][ T7189] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000017f4220 [ 109.648643][ T7189] R13: 0000000000000020 R14: 00007f0428ebf010 R15: 0000000000000000 [ 109.658070][ T7189] Kernel Offset: disabled [ 109.662391][ T7189] Rebooting in 86400 seconds..