Warning: Permanently added '10.128.0.148' (ECDSA) to the list of known hosts. 2019/11/05 00:42:21 fuzzer started 2019/11/05 00:42:23 dialing manager at 10.128.0.105:37793 2019/11/05 00:42:25 syscalls: 2553 2019/11/05 00:42:25 code coverage: enabled 2019/11/05 00:42:25 comparison tracing: enabled 2019/11/05 00:42:25 extra coverage: extra coverage is not supported by the kernel 2019/11/05 00:42:25 setuid sandbox: enabled 2019/11/05 00:42:25 namespace sandbox: enabled 2019/11/05 00:42:25 Android sandbox: /sys/fs/selinux/policy does not exist 2019/11/05 00:42:25 fault injection: enabled 2019/11/05 00:42:25 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/11/05 00:42:25 net packet injection: enabled 2019/11/05 00:42:25 net device setup: enabled 2019/11/05 00:42:25 concurrency sanitizer: enabled 2019/11/05 00:42:25 devlink PCI setup: PCI device 0000:00:10.0 is not available [ 72.014053][ T8117] KCSAN: could not find function: 'poll_schedule_timeout' 2019/11/05 00:42:31 adding functions to KCSAN blacklist: 'tick_do_update_jiffies64' 'ktime_get_real_seconds' 'blk_mq_dispatch_rq_list' 'taskstats_exit' 'timer_clear_idle' 'tomoyo_supervisor' '__hrtimer_run_queues' 'blk_mq_sched_dispatch_requests' 'ep_poll' 'ktime_get_seconds' 'atime_needs_update' 'ext4_nonda_switch' 'dd_has_work' 'xas_clear_mark' 'pid_update_inode' 'do_nanosleep' 'vm_area_dup' 'fanotify_handle_event' 'rcu_gp_fqs_check_wake' 'generic_write_end' 'pipe_poll' 'echo_char' 'kvm_arch_vcpu_load' 'tcp_add_backlog' 'run_timer_softirq' 'generic_permission' '__ext4_new_inode' 'ext4_free_inodes_count' 'futex_wait_queue_me' 'do_exit' 'wbt_done' 'find_get_pages_range_tag' 'blk_mq_get_request' 'copy_process' 'tick_sched_do_timer' 'find_next_bit' 'poll_schedule_timeout' 'ext4_free_inode' 'mod_timer' 'generic_fillattr' 'add_timer' 'list_lru_count_one' '__splice_from_pipe' 00:43:14 executing program 0: pipe(&(0x7f0000000240)) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x4) ioctl$sock_bt_bnep_BNEPGETCONNLIST(r0, 0x400442c8, &(0x7f0000000040)={0x4, 0x0}) 00:43:14 executing program 1: r0 = gettid() rt_sigprocmask(0x0, &(0x7f0000000080)={0xfffffffffffffffe}, 0x0, 0x8) rt_sigtimedwait(&(0x7f0000000000)={0x7fff}, 0x0, 0x0, 0x8) rt_sigqueueinfo(r0, 0xe, &(0x7f00000000c0)={0x0, 0x0, 0xfffffffffffffffe}) [ 115.620420][ T8121] IPVS: ftp: loaded support on port[0] = 21 [ 115.723869][ T8121] chnl_net:caif_netlink_parms(): no params data found [ 115.798265][ T8124] IPVS: ftp: loaded support on port[0] = 21 [ 115.803076][ T8121] bridge0: port 1(bridge_slave_0) entered blocking state [ 115.811274][ T8121] bridge0: port 1(bridge_slave_0) entered disabled state [ 115.819817][ T8121] device bridge_slave_0 entered promiscuous mode [ 115.829320][ T8121] bridge0: port 2(bridge_slave_1) entered blocking state [ 115.836800][ T8121] bridge0: port 2(bridge_slave_1) entered disabled state [ 115.844693][ T8121] device bridge_slave_1 entered promiscuous mode [ 115.876387][ T8121] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 115.900692][ T8121] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link 00:43:14 executing program 2: r0 = syz_open_dev$loop(&(0x7f0000001280)='/dev/loop#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000001400)='+pro\x00\x80\x00\x00l\'net/pFkey\x00', 0xf5c27c711e06e646, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r3) [ 115.963174][ T8121] team0: Port device team_slave_0 added [ 115.969912][ T8121] team0: Port device team_slave_1 added [ 116.016750][ T8124] chnl_net:caif_netlink_parms(): no params data found [ 116.075510][ T8121] device hsr_slave_0 entered promiscuous mode [ 116.113330][ T8121] device hsr_slave_1 entered promiscuous mode [ 116.178757][ T8127] IPVS: ftp: loaded support on port[0] = 21 [ 116.186893][ T8124] bridge0: port 1(bridge_slave_0) entered blocking state [ 116.198841][ T8124] bridge0: port 1(bridge_slave_0) entered disabled state 00:43:15 executing program 3: bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0xe, 0x4, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7f19, 0x0, 0x7, 0x0, 0x1, 0xa8}]}, &(0x7f0000000000)='GPL\x00'}, 0x48) [ 116.227847][ T8124] device bridge_slave_0 entered promiscuous mode [ 116.263358][ T8124] bridge0: port 2(bridge_slave_1) entered blocking state [ 116.280390][ T8124] bridge0: port 2(bridge_slave_1) entered disabled state [ 116.307781][ T8124] device bridge_slave_1 entered promiscuous mode [ 116.340502][ T8121] bridge0: port 2(bridge_slave_1) entered blocking state [ 116.347825][ T8121] bridge0: port 2(bridge_slave_1) entered forwarding state [ 116.355331][ T8121] bridge0: port 1(bridge_slave_0) entered blocking state [ 116.362374][ T8121] bridge0: port 1(bridge_slave_0) entered forwarding state [ 116.456751][ T8124] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 116.537923][ T8124] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 116.593980][ T8121] 8021q: adding VLAN 0 to HW filter on device bond0 [ 116.654709][ T8121] 8021q: adding VLAN 0 to HW filter on device team0 [ 116.669832][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 116.694369][ T45] bridge0: port 1(bridge_slave_0) entered disabled state [ 116.724463][ T45] bridge0: port 2(bridge_slave_1) entered disabled state [ 116.762125][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 116.837008][ T8124] team0: Port device team_slave_0 added [ 116.857723][ T8154] IPVS: ftp: loaded support on port[0] = 21 [ 116.865293][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 116.904998][ T45] bridge0: port 1(bridge_slave_0) entered blocking state [ 116.912080][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state [ 116.944840][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 116.973685][ T45] bridge0: port 2(bridge_slave_1) entered blocking state [ 116.980845][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state [ 117.046859][ T8124] team0: Port device team_slave_1 added [ 117.052711][ T8127] chnl_net:caif_netlink_parms(): no params data found [ 117.065973][ T8135] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 117.094546][ T8135] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 117.125272][ T8135] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready 00:43:16 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x17}, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$bt_hidp(0x1f, 0x3, 0x6) unshare(0x2040400) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ffc000/0x3000)=nil, 0x0) ioctl$BLKRAGET(0xffffffffffffffff, 0x1263, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_ifreq(r0, 0x8991, &(0x7f00000000c0)={'bond0\x00\x16\b\xea\xff\xff\x80\x00\x06\x02\xff', @ifru_names='bond_slave_1\x00t\x00'}) ioctl$sock_ifreq(r0, 0x8990, &(0x7f0000000240)={'bond0\x00\xe1\x03\f\x00!!\x00\x01\x00\x01', @ifru_names='bond_slave_1\x00\x00\x00\b'}) ioctl$TCGETS(0xffffffffffffffff, 0x5401, 0x0) setsockopt$inet_sctp_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000000)=@assoc_value={0x0, 0x8}, 0x8) socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'syz_tun\x00'}) socket$nl_route(0x10, 0x3, 0x0) ptrace$cont(0x7, 0x0, 0x1, 0x4000000000000000) bind$packet(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) [ 117.153923][ T8135] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 117.178363][ T8135] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 117.234218][ T8135] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 117.268790][ T8135] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 117.314071][ T8135] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 117.336673][ T8121] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 117.384843][ T8121] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 117.453274][ T8135] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 117.466930][ T8135] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 117.494573][ T8135] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 117.566604][ T8121] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 117.635573][ T8124] device hsr_slave_0 entered promiscuous mode [ 117.685532][ T8124] device hsr_slave_1 entered promiscuous mode [ 117.733149][ T8124] debugfs: Directory 'hsr0' with parent '/' already present! [ 117.743601][ T2886] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 117.751130][ T2886] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 117.831365][ T8156] IPVS: ftp: loaded support on port[0] = 21 [ 117.880064][ T8127] bridge0: port 1(bridge_slave_0) entered blocking state [ 117.891972][ T8127] bridge0: port 1(bridge_slave_0) entered disabled state [ 117.923897][ T8127] device bridge_slave_0 entered promiscuous mode [ 117.972157][ T8127] bridge0: port 2(bridge_slave_1) entered blocking state [ 117.993025][ T8127] bridge0: port 2(bridge_slave_1) entered disabled state [ 118.021544][ T8127] device bridge_slave_1 entered promiscuous mode [ 118.189982][ T8127] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 118.313231][ T8127] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 118.361671][ T8179] ================================================================== [ 118.369845][ T8179] BUG: KCSAN: data-race in task_dump_owner / task_dump_owner [ 118.377307][ T8179] [ 118.379653][ T8179] write to 0xffff888125f6ad1c of 4 bytes by task 8174 on cpu 0: [ 118.386923][ T8127] team0: Port device team_slave_0 added [ 118.387603][ T8179] task_dump_owner+0x237/0x260 [ 118.398067][ T8179] pid_update_inode+0x3c/0x70 [ 118.402756][ T8179] pid_revalidate+0x91/0xd0 [ 118.405539][ T8127] team0: Port device team_slave_1 added [ 118.407285][ T8179] lookup_fast+0x6f2/0x700 [ 118.417303][ T8179] walk_component+0x6d/0xe70 [ 118.421911][ T8179] link_path_walk.part.0+0x5d3/0xa90 [ 118.427287][ T8179] path_openat+0x14f/0x36e0 [ 118.431816][ T8179] do_filp_open+0x11e/0x1b0 [ 118.436321][ T8179] do_sys_open+0x3b3/0x4f0 [ 118.440739][ T8179] __x64_sys_open+0x55/0x70 [ 118.445260][ T8179] do_syscall_64+0xcc/0x370 [ 118.449792][ T8179] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 118.455762][ T8179] [ 118.458101][ T8179] write to 0xffff888125f6ad1c of 4 bytes by task 8179 on cpu 1: [ 118.465836][ T8179] task_dump_owner+0x237/0x260 [ 118.470607][ T8179] pid_update_inode+0x3c/0x70 [ 118.475305][ T8179] pid_revalidate+0x91/0xd0 [ 118.479823][ T8179] lookup_fast+0x6f2/0x700 [ 118.484254][ T8179] walk_component+0x6d/0xe70 [ 118.488858][ T8179] link_path_walk.part.0+0x5d3/0xa90 [ 118.494153][ T8179] path_openat+0x14f/0x36e0 [ 118.498661][ T8179] do_filp_open+0x11e/0x1b0 [ 118.503166][ T8179] do_sys_open+0x3b3/0x4f0 [ 118.507579][ T8179] __x64_sys_open+0x55/0x70 [ 118.512141][ T8179] do_syscall_64+0xcc/0x370 [ 118.516652][ T8179] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 118.522535][ T8179] [ 118.524858][ T8179] Reported by Kernel Concurrency Sanitizer on: [ 118.531028][ T8179] CPU: 1 PID: 8179 Comm: ps Not tainted 5.4.0-rc6+ #0 [ 118.538317][ T8179] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 118.548381][ T8179] ================================================================== [ 118.556454][ T8179] Kernel panic - not syncing: panic_on_warn set ... [ 118.563055][ T8179] CPU: 1 PID: 8179 Comm: ps Not tainted 5.4.0-rc6+ #0 [ 118.569902][ T8179] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 118.579965][ T8179] Call Trace: [ 118.583275][ T8179] dump_stack+0xf5/0x159 [ 118.587527][ T8179] panic+0x210/0x640 [ 118.591455][ T8179] ? vprintk_func+0x8d/0x140 [ 118.596078][ T8179] kcsan_report.cold+0xc/0xe [ 118.600726][ T8179] kcsan_setup_watchpoint+0x3fe/0x410 [ 118.606124][ T8179] __tsan_unaligned_write4+0x143/0x1f0 [ 118.611606][ T8179] task_dump_owner+0x237/0x260 [ 118.616377][ T8179] ? __rcu_read_unlock+0x66/0x3c0 [ 118.621421][ T8179] pid_update_inode+0x3c/0x70 [ 118.626202][ T8179] pid_revalidate+0x91/0xd0 [ 118.630899][ T8179] lookup_fast+0x6f2/0x700 [ 118.635342][ T8179] walk_component+0x6d/0xe70 [ 118.639964][ T8179] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 118.646218][ T8179] ? security_inode_permission+0xa5/0xc0 [ 118.651867][ T8179] ? inode_permission+0xa0/0x3c0 [ 118.656826][ T8179] link_path_walk.part.0+0x5d3/0xa90 [ 118.662706][ T8179] path_openat+0x14f/0x36e0 [ 118.667250][ T8179] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 118.673501][ T8179] ? __virt_addr_valid+0x163/0x1e0 [ 118.678634][ T8179] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 118.686023][ T8179] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 118.691948][ T8179] ? __read_once_size+0x41/0xe0 [ 118.696828][ T8179] do_filp_open+0x11e/0x1b0 [ 118.701357][ T8179] ? __alloc_fd+0x2ef/0x3b0 [ 118.705887][ T8179] do_sys_open+0x3b3/0x4f0 [ 118.710318][ T8179] __x64_sys_open+0x55/0x70 [ 118.714844][ T8179] do_syscall_64+0xcc/0x370 [ 118.719369][ T8179] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 118.725267][ T8179] RIP: 0033:0x7fe1875c8120 [ 118.729703][ T8179] Code: 48 8b 15 1b 4d 2b 00 f7 d8 64 89 02 83 c8 ff c3 90 90 90 90 90 90 90 90 90 90 83 3d d5 a4 2b 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 5e 8c 01 00 48 89 04 24 [ 118.749320][ T8179] RSP: 002b:00007ffe91288c28 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 118.758526][ T8179] RAX: ffffffffffffffda RBX: 0000000000616760 RCX: 00007fe1875c8120 [ 118.766520][ T8179] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fe187a96d00 [ 118.774502][ T8179] RBP: 0000000000001000 R08: 0000000000000000 R09: 00007fe18789057b [ 118.782574][ T8179] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe187a95d00 [ 118.790635][ T8179] R13: 0000000000000020 R14: 0000000000000005 R15: 0000000000000000 [ 118.800713][ T8179] Kernel Offset: disabled [ 118.805199][ T8179] Rebooting in 86400 seconds..