Warning: Permanently added '10.128.1.13' (ECDSA) to the list of known hosts. 2019/10/09 08:21:24 fuzzer started 2019/10/09 08:21:26 dialing manager at 10.128.0.105:43333 2019/10/09 08:21:26 syscalls: 2523 2019/10/09 08:21:26 code coverage: enabled 2019/10/09 08:21:26 comparison tracing: enabled 2019/10/09 08:21:26 extra coverage: extra coverage is not supported by the kernel 2019/10/09 08:21:26 setuid sandbox: enabled 2019/10/09 08:21:26 namespace sandbox: enabled 2019/10/09 08:21:26 Android sandbox: /sys/fs/selinux/policy does not exist 2019/10/09 08:21:26 fault injection: enabled 2019/10/09 08:21:26 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/10/09 08:21:26 net packet injection: enabled 2019/10/09 08:21:26 net device setup: enabled 2019/10/09 08:21:26 concurrency sanitizer: enabled 08:21:29 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000fb], 0x1f004}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000300)={0x1, 0x0, @pic={0x0, 0x8b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xff}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) syzkaller login: [ 55.187573][ T7382] IPVS: ftp: loaded support on port[0] = 21 08:21:29 executing program 1: r0 = getpgrp(0x0) getpriority(0x0, r0) [ 55.280482][ T7382] chnl_net:caif_netlink_parms(): no params data found [ 55.331143][ T7382] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.338345][ T7382] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.346152][ T7382] device bridge_slave_0 entered promiscuous mode [ 55.354499][ T7382] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.362435][ T7382] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.370917][ T7382] device bridge_slave_1 entered promiscuous mode [ 55.396364][ T7382] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.407709][ T7382] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.431706][ T7382] team0: Port device team_slave_0 added [ 55.438894][ T7382] team0: Port device team_slave_1 added [ 55.500032][ T7382] device hsr_slave_0 entered promiscuous mode [ 55.547192][ T7382] device hsr_slave_1 entered promiscuous mode [ 55.594384][ T7382] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.601539][ T7382] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.609053][ T7382] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.616400][ T7382] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.635011][ T7385] IPVS: ftp: loaded support on port[0] = 21 08:21:30 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) close(r0) timerfd_create(0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r3, &(0x7f000000f000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa5) [ 55.713244][ T7382] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.748388][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 55.778322][ T43] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.807499][ T43] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.828515][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 55.852567][ T7382] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.898495][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 55.908106][ T3022] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.915219][ T3022] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.951103][ T7390] IPVS: ftp: loaded support on port[0] = 21 [ 55.966345][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 55.976116][ T3022] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.983289][ T3022] bridge0: port 2(bridge_slave_1) entered forwarding state [ 56.021230][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 56.031343][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 56.041491][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 56.066283][ T7382] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 56.079950][ T7382] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 56.090730][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 56.100369][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready 08:21:30 executing program 3: bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={0xffffffffffffffff, 0x11, 0x0, 0x0, 0x0}, 0x20) [ 56.139416][ T7385] chnl_net:caif_netlink_parms(): no params data found [ 56.161099][ T7382] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 56.231490][ T7385] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.248676][ T7385] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.258877][ T7385] device bridge_slave_0 entered promiscuous mode [ 56.308906][ T7385] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.316008][ T7385] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.337782][ T7385] device bridge_slave_1 entered promiscuous mode [ 56.407594][ T7385] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.435465][ T7385] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 56.458592][ T7390] chnl_net:caif_netlink_parms(): no params data found [ 56.548179][ T7385] team0: Port device team_slave_0 added [ 56.555517][ T7385] team0: Port device team_slave_1 added [ 56.571039][ T7398] IPVS: ftp: loaded support on port[0] = 21 [ 56.586583][ T7390] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.600005][ T7390] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.608791][ T7390] device bridge_slave_0 entered promiscuous mode [ 56.612541][ T7401] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 56.634842][ T7390] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.642931][ T7390] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.651230][ T7390] device bridge_slave_1 entered promiscuous mode [ 56.712774][ T7385] device hsr_slave_0 entered promiscuous mode 08:21:31 executing program 4: r0 = socket(0x10, 0x803, 0x0) write(r0, &(0x7f0000000400)="260000002200470508d258002b1f00eb0101c7033500b000"/38, 0x26) setsockopt$sock_int(r0, 0x1, 0x20800000000008, &(0x7f0000000280), 0x4) mq_notify(0xffffffffffffffff, &(0x7f0000000040)={0x20000020, 0x4000000000003, 0x2, @thr={0x0, 0x0}}) bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10) r1 = gettid() timer_create(0x0, &(0x7f0000000000)={0x0, 0x12}, &(0x7f0000fd7000)) clock_gettime(0x0, &(0x7f00000001c0)={0x0, 0x0}) timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, r2+30000000}, {0x0, 0x9}}, 0x0) clone(0x0, 0x0, 0x0, 0x0, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") tkill(r1, 0x1200000000015) [ 56.777165][ T7385] device hsr_slave_1 entered promiscuous mode [ 56.816794][ T7385] debugfs: Directory 'hsr0' with parent '/' already present! 08:21:31 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000fb], 0x1f004}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000300)={0x1, 0x0, @pic={0x0, 0x8b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xff}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 56.918897][ T7390] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.959910][ T7390] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.110076][ T7390] team0: Port device team_slave_0 added [ 57.130509][ T7390] team0: Port device team_slave_1 added 08:21:31 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000fb], 0x1f004}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000300)={0x1, 0x0, @pic={0x0, 0x8b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xff}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 57.175780][ T7385] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.266046][ T7385] 8021q: adding VLAN 0 to HW filter on device team0 [ 57.330434][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 57.368502][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready 08:21:32 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000fb], 0x1f004}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000300)={0x1, 0x0, @pic={0x0, 0x8b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xff}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 57.385152][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready 08:21:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000fb], 0x1f004}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000300)={0x1, 0x0, @pic={0x0, 0x8b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xff}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 57.429982][ T7390] device hsr_slave_0 entered promiscuous mode [ 57.469990][ T7390] device hsr_slave_1 entered promiscuous mode [ 57.518972][ T7390] debugfs: Directory 'hsr0' with parent '/' already present! [ 57.534882][ T7408] IPVS: ftp: loaded support on port[0] = 21 [ 57.594904][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 57.606179][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.647247][ T3022] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.654567][ T3022] bridge0: port 1(bridge_slave_0) entered forwarding state 08:21:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000fb], 0x1f004}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000300)={0x1, 0x0, @pic={0x0, 0x8b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xff}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 57.699682][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 57.712368][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.724212][ T3022] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.731465][ T3022] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.757655][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 57.777975][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 57.809455][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 57.818332][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 57.830160][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready 08:21:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000fb], 0x1f004}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000300)={0x1, 0x0, @pic={0x0, 0x8b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xff}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 57.857107][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 57.866210][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 57.877562][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 57.886434][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 57.908922][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 57.985304][ T7417] IPVS: ftp: loaded support on port[0] = 21 [ 57.987561][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 58.013650][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 58.023747][ T7385] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 58.033533][ T7398] chnl_net:caif_netlink_parms(): no params data found 08:21:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000fb], 0x1f004}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000300)={0x1, 0x0, @pic={0x0, 0x8b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xff}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 58.126499][ T7385] 8021q: adding VLAN 0 to HW filter on device batadv0 08:21:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000fb], 0x1f004}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000300)={0x1, 0x0, @pic={0x0, 0x8b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xff}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 58.283531][ T7408] chnl_net:caif_netlink_parms(): no params data found [ 58.308003][ T7398] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.315085][ T7398] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.323970][ T7398] device bridge_slave_0 entered promiscuous mode [ 58.334653][ T7398] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.341788][ T7398] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.353302][ T7398] device bridge_slave_1 entered promiscuous mode [ 58.412716][ T7390] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.438387][ T7390] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.462930][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 58.471341][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready 08:21:33 executing program 1: r0 = getpgrp(0x0) getpriority(0x0, r0) [ 58.558761][ T7398] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.603901][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 58.613076][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 58.642232][ T17] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.649382][ T17] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.674939][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 58.703428][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 58.713071][ T17] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.720179][ T17] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.733370][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 58.742885][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 58.761765][ T7390] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 58.776302][ T7390] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 58.805747][ T7398] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.815145][ T7408] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.822847][ T7408] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.830860][ T7408] device bridge_slave_0 entered promiscuous mode [ 58.840747][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 58.849550][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 58.858872][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 58.868747][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 58.877509][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 58.886359][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 58.895140][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 58.904218][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 58.912794][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 58.921272][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 58.929774][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 58.948365][ T7408] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.955441][ T7408] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.963977][ T7408] device bridge_slave_1 entered promiscuous mode [ 58.992074][ T7398] team0: Port device team_slave_0 added [ 59.002616][ T7398] team0: Port device team_slave_1 added [ 59.008601][ T7417] chnl_net:caif_netlink_parms(): no params data found [ 59.024511][ T7408] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 59.044039][ T7408] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 59.095878][ T7408] team0: Port device team_slave_0 added [ 59.104983][ T7390] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.180079][ T7398] device hsr_slave_0 entered promiscuous mode [ 59.227196][ T7398] device hsr_slave_1 entered promiscuous mode [ 59.297065][ T7398] debugfs: Directory 'hsr0' with parent '/' already present! [ 59.306185][ T7408] team0: Port device team_slave_1 added [ 59.312396][ T7417] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.319587][ T7417] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.327533][ T7417] device bridge_slave_0 entered promiscuous mode [ 59.344600][ T7417] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.351812][ T7417] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.360265][ T7417] device bridge_slave_1 entered promiscuous mode [ 59.439927][ T7408] device hsr_slave_0 entered promiscuous mode [ 59.487189][ T7408] device hsr_slave_1 entered promiscuous mode [ 59.526836][ T7408] debugfs: Directory 'hsr0' with parent '/' already present! [ 59.536406][ T7417] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 59.548087][ T7417] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 59.612884][ T7417] team0: Port device team_slave_0 added [ 59.636502][ T7398] 8021q: adding VLAN 0 to HW filter on device bond0 [ 59.670979][ T7417] team0: Port device team_slave_1 added [ 59.701603][ T7398] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.731468][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 59.742450][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 59.764382][ T7408] 8021q: adding VLAN 0 to HW filter on device bond0 08:21:34 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) close(r0) timerfd_create(0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r3, &(0x7f000000f000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa5) [ 59.829793][ T7417] device hsr_slave_0 entered promiscuous mode [ 59.867174][ T7417] device hsr_slave_1 entered promiscuous mode [ 59.906790][ T7417] debugfs: Directory 'hsr0' with parent '/' already present! [ 59.914385][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 59.932352][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 59.941387][ T43] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.948514][ T43] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.958489][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 59.967425][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 59.976629][ T43] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.983729][ T43] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.992076][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 60.007437][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 60.018022][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 60.028398][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 60.037894][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 60.046879][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 60.055854][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 60.077947][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 60.091347][ T7408] 8021q: adding VLAN 0 to HW filter on device team0 [ 60.128307][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 60.149785][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 60.167981][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 60.176106][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 60.184317][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 60.192968][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 60.201501][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 60.210283][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 60.218985][ T7386] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.226031][ T7386] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.234562][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 60.251167][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 60.260049][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 60.269264][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.276350][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.284264][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 60.293256][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 60.303162][ T7398] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 60.327506][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 60.336356][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 60.349445][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 60.358369][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 60.367838][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 60.376348][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 60.384862][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 60.393309][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 60.402103][ T7386] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 60.416072][ T7408] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 60.430890][ T7417] 8021q: adding VLAN 0 to HW filter on device bond0 [ 60.451663][ T7398] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 60.460589][ T7417] 8021q: adding VLAN 0 to HW filter on device team0 [ 60.473685][ T1054] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 60.482506][ T1054] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 60.493330][ T7408] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 60.518383][ T7458] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 60.537487][ T7458] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 60.561167][ T7458] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.568386][ T7458] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.591182][ T7458] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 60.600519][ T7458] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 60.609079][ T7458] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.616186][ T7458] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.624426][ T7458] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 60.644014][ T7417] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 60.655212][ T7417] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 60.672535][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 60.687496][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 60.701542][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 60.711023][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 60.720502][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 60.729944][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 60.739099][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 60.748245][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 60.763763][ T7417] 8021q: adding VLAN 0 to HW filter on device batadv0 08:21:35 executing program 3: bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={0xffffffffffffffff, 0x11, 0x0, 0x0, 0x0}, 0x20) 08:21:36 executing program 4: r0 = socket(0x10, 0x803, 0x0) write(r0, &(0x7f0000000400)="260000002200470508d258002b1f00eb0101c7033500b000"/38, 0x26) setsockopt$sock_int(r0, 0x1, 0x20800000000008, &(0x7f0000000280), 0x4) mq_notify(0xffffffffffffffff, &(0x7f0000000040)={0x20000020, 0x4000000000003, 0x2, @thr={0x0, 0x0}}) bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10) r1 = gettid() timer_create(0x0, &(0x7f0000000000)={0x0, 0x12}, &(0x7f0000fd7000)) clock_gettime(0x0, &(0x7f00000001c0)={0x0, 0x0}) timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, r2+30000000}, {0x0, 0x9}}, 0x0) clone(0x0, 0x0, 0x0, 0x0, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="11dca50d5e0bcfe47bf070") tkill(r1, 0x1200000000015) 08:21:36 executing program 1: r0 = getpgrp(0x0) getpriority(0x0, r0) 08:21:36 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000fb], 0x1f004}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000300)={0x1, 0x0, @pic={0x0, 0x8b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xff}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 08:21:36 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) close(r0) timerfd_create(0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r3, &(0x7f000000f000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa5) 08:21:36 executing program 3: bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={0xffffffffffffffff, 0x11, 0x0, 0x0, 0x0}, 0x20) 08:21:36 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000fb], 0x1f004}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000300)={0x1, 0x0, @pic={0x0, 0x8b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xff}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 08:21:36 executing program 1: r0 = getpgrp(0x0) getpriority(0x0, r0) 08:21:36 executing program 3: bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={0xffffffffffffffff, 0x11, 0x0, 0x0, 0x0}, 0x20) 08:21:37 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000fb], 0x1f004}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000300)={0x1, 0x0, @pic={0x0, 0x8b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xff}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 08:21:37 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) close(r0) timerfd_create(0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r3, &(0x7f000000f000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa5) 08:21:37 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000fb], 0x1f004}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000300)={0x1, 0x0, @pic={0x0, 0x8b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xff}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 62.683941][ T7398] ================================================================== [ 62.692092][ T7398] BUG: KCSAN: data-race in tomoyo_supervisor / tomoyo_supervisor [ 62.699799][ T7398] [ 62.702129][ T7398] write to 0xffffffff860bff28 of 8 bytes by task 3904 on cpu 0: [ 62.709781][ T7398] tomoyo_supervisor+0x1ec/0xd20 [ 62.714805][ T7398] tomoyo_path_permission+0x121/0x160 [ 62.720165][ T7398] tomoyo_path_perm+0x23e/0x390 [ 62.725011][ T7398] tomoyo_inode_getattr+0x26/0x40 [ 62.730031][ T7398] security_inode_getattr+0x9b/0xd0 [ 62.735224][ T7398] vfs_getattr+0x2e/0x70 [ 62.739461][ T7398] vfs_statx_fd+0x7a/0xd0 [ 62.743787][ T7398] __do_sys_newfstat+0x49/0xa0 [ 62.748542][ T7398] __x64_sys_newfstat+0x3a/0x50 [ 62.753382][ T7398] do_syscall_64+0xcf/0x2f0 [ 62.757874][ T7398] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 62.763756][ T7398] [ 62.766081][ T7398] write to 0xffffffff860bff28 of 8 bytes by task 7398 on cpu 1: [ 62.773699][ T7398] tomoyo_supervisor+0x1ec/0xd20 [ 62.778629][ T7398] tomoyo_path_permission+0x121/0x160 [ 62.783986][ T7398] tomoyo_path_perm+0x23e/0x390 [ 62.788825][ T7398] tomoyo_inode_getattr+0x26/0x40 [ 62.793834][ T7398] security_inode_getattr+0x9b/0xd0 [ 62.799017][ T7398] vfs_getattr+0x2e/0x70 [ 62.803245][ T7398] vfs_statx+0x102/0x190 [ 62.807471][ T7398] __do_sys_newlstat+0x51/0xb0 [ 62.812223][ T7398] __x64_sys_newlstat+0x3a/0x50 [ 62.817071][ T7398] do_syscall_64+0xcf/0x2f0 [ 62.821691][ T7398] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 62.827568][ T7398] [ 62.829889][ T7398] Reported by Kernel Concurrency Sanitizer on: [ 62.836031][ T7398] CPU: 1 PID: 7398 Comm: syz-executor.3 Not tainted 5.3.0+ #0 [ 62.843467][ T7398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.853502][ T7398] ================================================================== [ 62.861555][ T7398] Kernel panic - not syncing: panic_on_warn set ... [ 62.868133][ T7398] CPU: 1 PID: 7398 Comm: syz-executor.3 Not tainted 5.3.0+ #0 [ 62.875581][ T7398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 62.885662][ T7398] Call Trace: [ 62.888946][ T7398] dump_stack+0xf5/0x159 [ 62.893193][ T7398] panic+0x209/0x639 [ 62.897079][ T7398] ? __x64_sys_newlstat+0x3a/0x50 [ 62.902109][ T7398] ? vprintk_func+0x8d/0x140 [ 62.906701][ T7398] kcsan_report.cold+0xc/0x1b [ 62.911380][ T7398] __kcsan_setup_watchpoint+0x3ee/0x510 [ 62.916919][ T7398] __tsan_write8+0x32/0x40 [ 62.921343][ T7398] tomoyo_supervisor+0x1ec/0xd20 [ 62.926277][ T7398] ? __kcsan_setup_watchpoint+0x96/0x510 [ 62.933032][ T7398] ? __kcsan_setup_watchpoint+0x96/0x510 [ 62.939620][ T7398] ? __tsan_write1+0x32/0x40 [ 62.944206][ T7398] ? tomoyo_compare_name_union+0xa0/0xa0 [ 62.949850][ T7398] tomoyo_path_permission+0x121/0x160 [ 62.955217][ T7398] tomoyo_path_perm+0x23e/0x390 [ 62.960090][ T7398] tomoyo_inode_getattr+0x26/0x40 [ 62.965112][ T7398] security_inode_getattr+0x9b/0xd0 [ 62.970303][ T7398] vfs_getattr+0x2e/0x70 [ 62.974577][ T7398] vfs_statx+0x102/0x190 [ 62.978837][ T7398] __do_sys_newlstat+0x51/0xb0 [ 62.983593][ T7398] ? ksys_umount+0x14d/0xad0 [ 62.988177][ T7398] ? __tsan_read8+0x2c/0x30 [ 62.992686][ T7398] __x64_sys_newlstat+0x3a/0x50 [ 62.997619][ T7398] do_syscall_64+0xcf/0x2f0 [ 63.002123][ T7398] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 63.008007][ T7398] RIP: 0033:0x458e15 [ 63.012342][ T7398] Code: d4 ff ff ff 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 83 ff 01 48 89 f0 77 30 48 89 c7 48 89 d6 b8 06 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 03 f3 c3 90 48 c7 c2 d4 ff ff ff f7 d8 64 89 [ 63.031938][ T7398] RSP: 002b:00007fff40d1d7a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000006 [ 63.040431][ T7398] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000458e15 [ 63.048404][ T7398] RDX: 00007fff40d1d7c0 RSI: 00007fff40d1d7c0 RDI: 00007fff40d1d850 [ 63.056367][ T7398] RBP: 0000000000000008 R08: 0000000000000000 R09: 000000000000000e [ 63.064337][ T7398] R10: 000000000000000a R11: 0000000000000246 R12: 00007fff40d1e8e0 [ 63.072300][ T7398] R13: 0000555556067940 R14: 0000000000000000 R15: 00007fff40d1e8e0 [ 63.081844][ T7398] Kernel Offset: disabled [ 63.086170][ T7398] Rebooting in 86400 seconds..