Warning: Permanently added '10.128.0.35' (ECDSA) to the list of known hosts. 2019/11/15 15:36:38 fuzzer started 2019/11/15 15:36:40 dialing manager at 10.128.0.105:44219 2019/11/15 15:36:40 syscalls: 2566 2019/11/15 15:36:40 code coverage: enabled 2019/11/15 15:36:40 comparison tracing: enabled 2019/11/15 15:36:40 extra coverage: extra coverage is not supported by the kernel 2019/11/15 15:36:40 setuid sandbox: enabled 2019/11/15 15:36:40 namespace sandbox: enabled 2019/11/15 15:36:40 Android sandbox: /sys/fs/selinux/policy does not exist 2019/11/15 15:36:40 fault injection: enabled 2019/11/15 15:36:40 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/11/15 15:36:40 net packet injection: enabled 2019/11/15 15:36:40 net device setup: enabled 2019/11/15 15:36:40 concurrency sanitizer: enabled 2019/11/15 15:36:40 devlink PCI setup: PCI device 0000:00:10.0 is not available 2019/11/15 15:36:43 adding functions to KCSAN blacklist: 'pid_update_inode' 'ep_insert' 'vm_area_dup' 'pipe_poll' 'do_syslog' 'tomoyo_supervisor' '__hrtimer_run_queues' '__rb_insert_augmented' 'timer_clear_idle' 'ep_poll' 'mod_timer' 'run_timer_softirq' 'tcp_add_backlog' 'alloc_empty_file' 'tick_sched_do_timer' 'tick_do_update_jiffies64' 'generic_permission' 'add_timer' '__rb_rotate_set_parents' 'pipe_wait' 'pcpu_alloc' 'common_perm_cond' '__ext4_new_inode' 'rcu_gp_fqs_check_wake' 'find_next_bit' 15:36:44 executing program 0: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/rtc\x00', 0x0, 0x0) ioctl$RTC_WKALM_SET(r0, 0x7001, 0x0) syzkaller login: [ 61.728033][ T7624] IPVS: ftp: loaded support on port[0] = 21 15:36:44 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000040)=0x480100000001, 0x4) connect$inet6(r0, &(0x7f0000000000), 0x1c) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000440), 0x12f7e5) clone(0x2000000002000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = fcntl$dupfd(r0, 0x0, r0) setsockopt$inet_group_source_req(r2, 0x0, 0x2e, 0x0, 0x0) tkill(r1, 0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) [ 61.796292][ T7624] chnl_net:caif_netlink_parms(): no params data found [ 61.857240][ T7624] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.864608][ T7624] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.883818][ T7624] device bridge_slave_0 entered promiscuous mode [ 61.893888][ T7624] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.901223][ T7624] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.923760][ T7624] device bridge_slave_1 entered promiscuous mode [ 61.954063][ T7624] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.975145][ T7624] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link 15:36:44 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b9840900000f32b9510000000f01c10f46a789000000660fc7723cb067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0xffffffffffffffa0}], 0xaaaaaaaaaaaabc4, 0x0, 0x0, 0x2a8) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x4cb]}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 62.002498][ T7624] team0: Port device team_slave_0 added [ 62.014513][ T7628] IPVS: ftp: loaded support on port[0] = 21 [ 62.024005][ T7624] team0: Port device team_slave_1 added [ 62.095156][ T7624] device hsr_slave_0 entered promiscuous mode [ 62.143914][ T7624] device hsr_slave_1 entered promiscuous mode [ 62.237222][ T7630] IPVS: ftp: loaded support on port[0] = 21 15:36:45 executing program 3: r0 = creat(&(0x7f0000000300)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x4002) io_setup(0x6, &(0x7f0000000400)=0x0) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x200a00}]) [ 62.415814][ T7628] chnl_net:caif_netlink_parms(): no params data found [ 62.596697][ T7628] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.622055][ T7628] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.654363][ T7628] device bridge_slave_0 entered promiscuous mode [ 62.701887][ T7630] chnl_net:caif_netlink_parms(): no params data found [ 62.716095][ T7628] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.738720][ T7628] bridge0: port 2(bridge_slave_1) entered disabled state [ 62.773758][ T7628] device bridge_slave_1 entered promiscuous mode [ 62.826414][ T7657] IPVS: ftp: loaded support on port[0] = 21 [ 62.854186][ T7628] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 62.904343][ T7630] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.911590][ T7630] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.943849][ T7630] device bridge_slave_0 entered promiscuous mode [ 62.957222][ T7628] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 62.987241][ T7630] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.003105][ T7630] bridge0: port 2(bridge_slave_1) entered disabled state [ 63.011548][ T7630] device bridge_slave_1 entered promiscuous mode 15:36:46 executing program 4: r0 = socket$inet6(0xa, 0x8000000000001, 0x0) getsockopt$inet6_opts(r0, 0x29, 0x30, 0x0, &(0x7f0000000000)=0x8f00) [ 63.125041][ T7628] team0: Port device team_slave_0 added [ 63.132362][ T7630] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 63.156561][ T7628] team0: Port device team_slave_1 added [ 63.174499][ T7630] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 63.270625][ T28] device bridge_slave_1 left promiscuous mode [ 63.283179][ T28] bridge0: port 2(bridge_slave_1) entered disabled state [ 63.354658][ T28] device bridge_slave_0 left promiscuous mode [ 63.360989][ T28] bridge0: port 1(bridge_slave_0) entered disabled state [ 63.493275][ T28] device hsr_slave_0 left promiscuous mode [ 63.543237][ T28] device hsr_slave_1 left promiscuous mode [ 63.598207][ T28] team0 (unregistering): Port device team_slave_1 removed [ 63.633580][ T28] team0 (unregistering): Port device team_slave_0 removed [ 63.643970][ T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 63.693054][ T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface 15:36:46 executing program 5: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='bpf\x00', 0x0, 0x0) mount$overlay(0x400000, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='overlay\x00', 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB=',lowerdir=.:file0']) chdir(&(0x7f0000000080)='./file0\x00') mount$bpf(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='bpf\x00', 0x0, 0x0) mount$overlay(0x400000, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='overlay\x00', 0x0, &(0x7f0000000040)=ANY=[]) chdir(&(0x7f0000000080)='./file0\x00') open(&(0x7f0000000240)='./file0\x00', 0x0, 0x0) [ 63.804369][ T28] bond0 (unregistering): Released all slaves [ 64.005016][ T7628] device hsr_slave_0 entered promiscuous mode [ 64.043433][ T7628] device hsr_slave_1 entered promiscuous mode [ 64.097353][ T7660] IPVS: ftp: loaded support on port[0] = 21 [ 64.129129][ T7672] IPVS: ftp: loaded support on port[0] = 21 [ 64.136172][ T7630] team0: Port device team_slave_0 added [ 64.148764][ T7657] chnl_net:caif_netlink_parms(): no params data found [ 64.172759][ T7671] IPVS: ftp: loaded support on port[0] = 21 [ 64.195780][ T7630] team0: Port device team_slave_1 added [ 64.386658][ T7630] device hsr_slave_0 entered promiscuous mode [ 64.445061][ T7630] device hsr_slave_1 entered promiscuous mode [ 64.493097][ T7630] debugfs: Directory 'hsr0' with parent '/' already present! [ 64.552689][ T7657] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.583069][ T7657] bridge0: port 1(bridge_slave_0) entered disabled state [ 64.591122][ T7657] device bridge_slave_0 entered promiscuous mode [ 64.676618][ T7657] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.684398][ T7657] bridge0: port 2(bridge_slave_1) entered disabled state [ 64.692221][ T7657] device bridge_slave_1 entered promiscuous mode [ 64.940135][ T7672] chnl_net:caif_netlink_parms(): no params data found [ 64.968157][ T7657] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 65.020934][ T7660] chnl_net:caif_netlink_parms(): no params data found [ 65.087460][ T7657] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 65.111497][ T7671] chnl_net:caif_netlink_parms(): no params data found [ 65.228998][ T7672] bridge0: port 1(bridge_slave_0) entered blocking state [ 65.256332][ T7672] bridge0: port 1(bridge_slave_0) entered disabled state [ 65.316317][ T7672] device bridge_slave_0 entered promiscuous mode [ 65.389532][ T7657] team0: Port device team_slave_0 added [ 65.428131][ T7672] bridge0: port 2(bridge_slave_1) entered blocking state [ 65.450759][ T7672] bridge0: port 2(bridge_slave_1) entered disabled state [ 65.503775][ T7672] device bridge_slave_1 entered promiscuous mode [ 65.553043][ T7657] team0: Port device team_slave_1 added [ 65.593920][ T7671] bridge0: port 1(bridge_slave_0) entered blocking state [ 65.602439][ T7671] bridge0: port 1(bridge_slave_0) entered disabled state [ 65.673837][ T7671] device bridge_slave_0 entered promiscuous mode [ 65.723317][ T7660] bridge0: port 1(bridge_slave_0) entered blocking state [ 65.731052][ T7660] bridge0: port 1(bridge_slave_0) entered disabled state [ 65.786393][ T7660] device bridge_slave_0 entered promiscuous mode [ 65.833547][ T7672] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 65.904541][ T7671] bridge0: port 2(bridge_slave_1) entered blocking state [ 65.911703][ T7671] bridge0: port 2(bridge_slave_1) entered disabled state [ 65.983113][ T7671] device bridge_slave_1 entered promiscuous mode [ 66.023466][ T7660] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.030717][ T7660] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.095672][ T7660] device bridge_slave_1 entered promiscuous mode [ 66.155351][ T7672] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 66.298265][ T7657] device hsr_slave_0 entered promiscuous mode [ 66.393583][ T7657] device hsr_slave_1 entered promiscuous mode [ 66.436178][ T7657] debugfs: Directory 'hsr0' with parent '/' already present! [ 66.445374][ T7660] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 66.496785][ T7720] IPVS: ftp: loaded support on port[0] = 21 [ 66.519749][ T7671] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 66.587219][ T7660] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 66.645351][ T7672] team0: Port device team_slave_0 added [ 66.652367][ T7671] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 66.718065][ T7672] team0: Port device team_slave_1 added [ 66.748557][ T7660] team0: Port device team_slave_0 added [ 66.898865][ T7660] team0: Port device team_slave_1 added [ 66.918984][ T7671] team0: Port device team_slave_0 added [ 66.985335][ T7672] device hsr_slave_0 entered promiscuous mode [ 67.036998][ T7672] device hsr_slave_1 entered promiscuous mode [ 67.096097][ T7672] debugfs: Directory 'hsr0' with parent '/' already present! [ 67.165015][ T7671] team0: Port device team_slave_1 added [ 67.182008][ T7750] IPVS: ftp: loaded support on port[0] = 21 [ 67.325348][ T7660] device hsr_slave_0 entered promiscuous mode [ 67.393484][ T7660] device hsr_slave_1 entered promiscuous mode [ 67.443072][ T7660] debugfs: Directory 'hsr0' with parent '/' already present! [ 67.536659][ T7671] device hsr_slave_0 entered promiscuous mode [ 67.613435][ T7671] device hsr_slave_1 entered promiscuous mode [ 67.633152][ T7671] debugfs: Directory 'hsr0' with parent '/' already present! [ 67.850647][ T7720] chnl_net:caif_netlink_parms(): no params data found [ 68.227890][ T7750] chnl_net:caif_netlink_parms(): no params data found [ 68.275286][ T7720] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.282867][ T7720] bridge0: port 1(bridge_slave_0) entered disabled state [ 68.373784][ T7720] device bridge_slave_0 entered promiscuous mode [ 68.554044][ T7720] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.561116][ T7720] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.627950][ T7720] device bridge_slave_1 entered promiscuous mode [ 68.722387][ T7798] ================================================================== [ 68.730589][ T7798] BUG: KCSAN: data-race in generic_fillattr / task_dump_owner [ 68.738044][ T7798] [ 68.740390][ T7798] read to 0xffff888128865ad0 of 4 bytes by task 7792 on cpu 0: [ 68.748046][ T7798] generic_fillattr+0xc7/0x1e0 [ 68.752912][ T7798] pid_getattr+0x74/0x1a0 [ 68.757590][ T7798] vfs_getattr_nosec+0x12e/0x170 [ 68.760646][ T7720] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 68.762537][ T7798] vfs_getattr+0x54/0x70 [ 68.776277][ T7798] vfs_statx+0x102/0x190 [ 68.780791][ T7798] __do_sys_newstat+0x51/0xb0 [ 68.785917][ T7798] __x64_sys_newstat+0x3a/0x50 [ 68.791811][ T7798] do_syscall_64+0xcc/0x370 [ 68.797030][ T7798] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 68.803473][ T7798] [ 68.805905][ T7798] write to 0xffff888128865ad0 of 4 bytes by task 7798 on cpu 1: [ 68.813816][ T7798] task_dump_owner+0x246/0x260 [ 68.820508][ T7798] pid_update_inode+0x3c/0x70 [ 68.825427][ T7798] pid_revalidate+0x91/0xd0 [ 68.830276][ T7798] lookup_fast+0x6f2/0x700 [ 68.835530][ T7798] walk_component+0x6d/0xe70 [ 68.840563][ T7798] link_path_walk.part.0+0x5d3/0xa90 [ 68.846378][ T7798] path_openat+0x14f/0x36e0 [ 68.851226][ T7798] do_filp_open+0x11e/0x1b0 [ 68.855823][ T7798] do_sys_open+0x3b3/0x4f0 [ 68.860827][ T7798] __x64_sys_open+0x55/0x70 [ 68.864632][ T7720] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 68.865794][ T7798] do_syscall_64+0xcc/0x370 [ 68.881472][ T7798] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 68.887480][ T7798] [ 68.889808][ T7798] Reported by Kernel Concurrency Sanitizer on: [ 68.896133][ T7798] CPU: 1 PID: 7798 Comm: ps Not tainted 5.4.0-rc7+ #0 [ 68.903160][ T7798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 68.914620][ T7798] ================================================================== [ 68.926027][ T7798] Kernel panic - not syncing: panic_on_warn set ... [ 68.933768][ T7798] CPU: 1 PID: 7798 Comm: ps Not tainted 5.4.0-rc7+ #0 [ 68.940979][ T7798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 68.951985][ T7798] Call Trace: [ 68.955846][ T7798] dump_stack+0x11d/0x181 [ 68.960203][ T7798] panic+0x210/0x640 [ 68.964830][ T7798] ? vprintk_func+0x8d/0x140 [ 68.969869][ T7798] kcsan_report.cold+0xc/0xd [ 68.975163][ T7798] kcsan_setup_watchpoint+0x3fe/0x460 [ 68.981082][ T7798] __tsan_unaligned_write4+0xc4/0x100 [ 68.986571][ T7798] task_dump_owner+0x246/0x260 [ 68.991797][ T7798] ? __rcu_read_unlock+0x66/0x3c0 [ 68.997032][ T7798] pid_update_inode+0x3c/0x70 [ 69.002933][ T7798] pid_revalidate+0x91/0xd0 [ 69.007621][ T7798] lookup_fast+0x6f2/0x700 [ 69.012331][ T7798] walk_component+0x6d/0xe70 [ 69.018007][ T7798] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 69.024642][ T7798] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 69.030466][ T7720] team0: Port device team_slave_0 added [ 69.031617][ T7798] ? security_inode_permission+0xa5/0xc0 [ 69.044362][ T7798] ? inode_permission+0xa0/0x3c0 [ 69.049568][ T7798] link_path_walk.part.0+0x5d3/0xa90 [ 69.055145][ T7798] path_openat+0x14f/0x36e0 [ 69.060898][ T7798] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 69.067512][ T7798] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 69.074065][ T7798] ? __rcu_read_unlock+0x66/0x3c0 [ 69.079352][ T7798] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 69.085337][ T7798] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 69.091380][ T7798] ? __read_once_size+0x41/0xe0 [ 69.096779][ T7798] do_filp_open+0x11e/0x1b0 [ 69.101658][ T7798] ? __alloc_fd+0x2ef/0x3b0 [ 69.106824][ T7798] do_sys_open+0x3b3/0x4f0 [ 69.111524][ T7798] __x64_sys_open+0x55/0x70 [ 69.114453][ T7720] team0: Port device team_slave_1 added [ 69.116519][ T7798] do_syscall_64+0xcc/0x370 [ 69.129303][ T7798] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 69.135284][ T7798] RIP: 0033:0x7f45821f3120 [ 69.139811][ T7798] Code: 48 8b 15 1b 4d 2b 00 f7 d8 64 89 02 83 c8 ff c3 90 90 90 90 90 90 90 90 90 90 83 3d d5 a4 2b 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 5e 8c 01 00 48 89 04 24 [ 69.161159][ T7798] RSP: 002b:00007fff7b720928 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 69.170978][ T7798] RAX: ffffffffffffffda RBX: 0000000000616760 RCX: 00007f45821f3120 [ 69.179495][ T7798] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007f45826c1d00 [ 69.189688][ T7798] RBP: 0000000000001000 R08: 0000000000000000 R09: 00007f45824bba10 [ 69.197753][ T7798] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f45826c0d00 [ 69.206347][ T7798] R13: 00000000023911c0 R14: 0000000000000005 R15: 0000000000000000 [ 69.217354][ T7798] Kernel Offset: disabled [ 69.222155][ T7798] Rebooting in 86400 seconds..