[info] Using makefile-style concurrent boot in runlevel 2. [ 41.932973][ T26] audit: type=1800 audit(1573554829.815:21): pid=7372 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="bootlogs" dev="sda1" ino=2452 res=0 [ 41.984870][ T26] audit: type=1800 audit(1573554829.815:22): pid=7372 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="motd" dev="sda1" ino=2480 res=0 [....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.64' (ECDSA) to the list of known hosts. 2019/11/12 10:34:00 fuzzer started 2019/11/12 10:34:02 dialing manager at 10.128.0.105:45453 2019/11/12 10:34:11 syscalls: 2566 2019/11/12 10:34:11 code coverage: enabled 2019/11/12 10:34:11 comparison tracing: enabled 2019/11/12 10:34:11 extra coverage: extra coverage is not supported by the kernel 2019/11/12 10:34:11 setuid sandbox: enabled 2019/11/12 10:34:11 namespace sandbox: enabled 2019/11/12 10:34:11 Android sandbox: /sys/fs/selinux/policy does not exist 2019/11/12 10:34:11 fault injection: enabled 2019/11/12 10:34:11 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/11/12 10:34:11 net packet injection: enabled 2019/11/12 10:34:11 net device setup: enabled 2019/11/12 10:34:11 concurrency sanitizer: enabled 2019/11/12 10:34:11 devlink PCI setup: PCI device 0000:00:10.0 is not available syzkaller login: [ 68.091375][ T7536] KCSAN: could not find function: 'poll_schedule_timeout' 2019/11/12 10:34:19 adding functions to KCSAN blacklist: 'tomoyo_supervisor' 'pipe_poll' '__ext4_new_inode' 'do_nanosleep' 'icmp_global_allow' 'kvm_mmu_notifier_invalidate_range_end' 'ext4_mark_iloc_dirty' 'lruvec_lru_size' 'generic_file_read_iter' 'pid_update_inode' '__add_to_page_cache_locked' 'xas_find_marked' 'atime_needs_update' 'tcp_add_backlog' 'ksys_read' 'run_timer_softirq' 'ext4_free_inode' '__wb_update_bandwidth' 'tick_sched_do_timer' 'ext4_has_free_clusters' 'p9_client_cb' 'dd_has_work' 'poll_schedule_timeout' 'find_next_bit' 'taskstats_exit' 'xas_clear_mark' 'blk_mq_sched_dispatch_requests' 'tick_nohz_idle_stop_tick' 'rcu_gp_fqs_check_wake' '__hrtimer_run_queues' 'blk_mq_dispatch_rq_list' 'echo_char' 'wbt_issue' 'ext4_free_inodes_count' 'mod_timer' 'blk_mq_get_request' 'add_timer' 'generic_fillattr' 'ext4_nonda_switch' 'vfs_fsync_range' 'find_get_pages_range_tag' 'kauditd_thread' 'generic_write_end' 'do_syslog' 'audit_log_start' 'ep_poll' 'vm_area_dup' 'blk_mq_free_request' 'tick_do_update_jiffies64' 'process_srcu' 'do_exit' '__d_lookup_done' 'timer_clear_idle' 'snd_seq_check_queue' 10:35:45 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='ns\x00') fchdir(r0) syz_read_part_table(0x0, 0x0, 0x0) 10:35:45 executing program 1: sendmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000004000)=[{&(0x7f0000000040)='/', 0x1}], 0x1}, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/packet\x00') preadv(r0, &(0x7f00000017c0), 0x3a8, 0x0) [ 157.751268][ T7539] IPVS: ftp: loaded support on port[0] = 21 [ 157.872286][ T7542] IPVS: ftp: loaded support on port[0] = 21 [ 157.882515][ T7539] chnl_net:caif_netlink_parms(): no params data found [ 157.936935][ T7539] bridge0: port 1(bridge_slave_0) entered blocking state [ 157.944069][ T7539] bridge0: port 1(bridge_slave_0) entered disabled state [ 157.952604][ T7539] device bridge_slave_0 entered promiscuous mode [ 157.972297][ T7539] bridge0: port 2(bridge_slave_1) entered blocking state [ 157.979530][ T7539] bridge0: port 2(bridge_slave_1) entered disabled state 10:35:45 executing program 2: r0 = syz_open_dev$binderN(&(0x7f0000000040)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000480)={0x44, 0x0, &(0x7f0000000100)=[@transaction={0x40046304, {0x0, 0x400c630e, 0x0, 0x0, 0x40046306, 0x0, 0x40486311, 0x347, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) [ 157.988104][ T7539] device bridge_slave_1 entered promiscuous mode [ 158.023142][ T7539] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 158.043429][ T7542] chnl_net:caif_netlink_parms(): no params data found [ 158.055031][ T7539] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 158.109235][ T7539] team0: Port device team_slave_0 added [ 158.115972][ T7539] team0: Port device team_slave_1 added [ 158.147628][ T7542] bridge0: port 1(bridge_slave_0) entered blocking state [ 158.154694][ T7542] bridge0: port 1(bridge_slave_0) entered disabled state [ 158.167829][ T7542] device bridge_slave_0 entered promiscuous mode 10:35:46 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3b7, &(0x7f0000000040)={&(0x7f00000000c0)={0x24, 0x33, 0x119, 0x0, 0x0, {0x4}, [@generic="ffd38d9b", @nested={0xc, 0x1, [@typed={0x6, 0x6, @u32=0x4888}]}]}, 0x24}, 0x1, 0xf0ffff}, 0x0) [ 158.238941][ T7539] device hsr_slave_0 entered promiscuous mode [ 158.277099][ T7539] device hsr_slave_1 entered promiscuous mode [ 158.337672][ T7542] bridge0: port 2(bridge_slave_1) entered blocking state [ 158.344805][ T7542] bridge0: port 2(bridge_slave_1) entered disabled state [ 158.367476][ T7542] device bridge_slave_1 entered promiscuous mode [ 158.391430][ T7545] IPVS: ftp: loaded support on port[0] = 21 [ 158.415637][ T7539] bridge0: port 2(bridge_slave_1) entered blocking state [ 158.422746][ T7539] bridge0: port 2(bridge_slave_1) entered forwarding state [ 158.430159][ T7539] bridge0: port 1(bridge_slave_0) entered blocking state [ 158.437230][ T7539] bridge0: port 1(bridge_slave_0) entered forwarding state [ 158.594374][ T7551] IPVS: ftp: loaded support on port[0] = 21 [ 158.602081][ T7542] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 158.659791][ T7542] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link 10:35:46 executing program 4: r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_sctp_SCTP_INITMSG(r0, 0x84, 0x7d, &(0x7f0000000000), 0x8) [ 158.708608][ T7539] 8021q: adding VLAN 0 to HW filter on device bond0 [ 158.770642][ T7542] team0: Port device team_slave_0 added [ 158.807997][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 158.818864][ T3507] bridge0: port 1(bridge_slave_0) entered disabled state [ 158.878026][ T3507] bridge0: port 2(bridge_slave_1) entered disabled state [ 158.898641][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 158.947443][ T7542] team0: Port device team_slave_1 added [ 158.955389][ T7539] 8021q: adding VLAN 0 to HW filter on device team0 [ 159.079738][ T2411] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 159.089265][ T2411] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 159.126996][ T2411] bridge0: port 1(bridge_slave_0) entered blocking state [ 159.134105][ T2411] bridge0: port 1(bridge_slave_0) entered forwarding state [ 159.167277][ T2411] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 159.198051][ T2411] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 159.227115][ T2411] bridge0: port 2(bridge_slave_1) entered blocking state [ 159.234183][ T2411] bridge0: port 2(bridge_slave_1) entered forwarding state [ 159.278172][ T2411] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 159.307716][ T2411] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 159.338780][ T2411] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 159.367802][ T2411] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready 10:35:47 executing program 5: r0 = eventfd(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000000000)={r0}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = fcntl$dupfd(r3, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = socket$nl_generic(0x10, 0x3, 0x10) dup3(r6, r0, 0x0) [ 159.448975][ T7542] device hsr_slave_0 entered promiscuous mode [ 159.478210][ T7542] device hsr_slave_1 entered promiscuous mode [ 159.526748][ T7542] debugfs: Directory 'hsr0' with parent '/' already present! [ 159.541808][ T7539] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 159.587578][ T7539] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 159.620991][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 159.638024][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 159.677516][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 159.708482][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 159.737012][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 159.757659][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 159.779538][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 159.823273][ T7551] chnl_net:caif_netlink_parms(): no params data found [ 159.842780][ T7575] IPVS: ftp: loaded support on port[0] = 21 [ 159.844444][ T7577] IPVS: ftp: loaded support on port[0] = 21 [ 159.849136][ T7545] chnl_net:caif_netlink_parms(): no params data found [ 159.870493][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 159.903039][ T7539] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 159.945261][ T2411] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 159.958984][ T2411] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 160.061557][ T7551] bridge0: port 1(bridge_slave_0) entered blocking state [ 160.070573][ T7551] bridge0: port 1(bridge_slave_0) entered disabled state [ 160.098732][ T7551] device bridge_slave_0 entered promiscuous mode [ 160.135185][ T7542] 8021q: adding VLAN 0 to HW filter on device bond0 [ 160.176827][ T7551] bridge0: port 2(bridge_slave_1) entered blocking state [ 160.183940][ T7551] bridge0: port 2(bridge_slave_1) entered disabled state [ 160.209191][ T7551] device bridge_slave_1 entered promiscuous mode [ 160.249031][ T7545] bridge0: port 1(bridge_slave_0) entered blocking state [ 160.256106][ T7545] bridge0: port 1(bridge_slave_0) entered disabled state [ 160.264436][ T7545] device bridge_slave_0 entered promiscuous mode [ 160.282627][ T7542] 8021q: adding VLAN 0 to HW filter on device team0 [ 160.325240][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 160.339780][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 160.378487][ T7545] bridge0: port 2(bridge_slave_1) entered blocking state [ 160.385577][ T7545] bridge0: port 2(bridge_slave_1) entered disabled state [ 160.411520][ T7545] device bridge_slave_1 entered promiscuous mode [ 160.474623][ T2411] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 160.491584][ T2411] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 160.525402][ T2411] bridge0: port 1(bridge_slave_0) entered blocking state [ 160.532981][ T2411] bridge0: port 1(bridge_slave_0) entered forwarding state 10:35:48 executing program 0: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz'}, 0x0, 0x0, 0xffffffffffffffff) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000140)='\xbb\x91\x8f\xbf\xedC\x9b\x9c&Ncn^\xb47S\xe6\xdf\x1b\x9f\x1c\xff\xdc\xf2}S^\x84\f7Kk\\~q,\xfb\x03\xcc\x1d\xa6V3\xe0\xc9\x86\x0ej\x03\xd0\xd6\xd9\\\xef\xe1\x85\xe6\xef\x0eJ\xbf\xc8\xfb\xe4\xf8\x81\xc8\r\xda\'\b\x03\x16\xc0\xdb\xef\xfa\xba\x83gJ\t|\x8e\xf5bU\x18w!\x7f\xc3\xa5\x19\xa2,\xedL\x1f\xe6H)\xa6e\xa4\xfer/\xcb\xddzt\x1c\xc7\x12\ngKN\\\x1b\"w\x7f\x15\xa4U\x15e\'\xac\xe5}\xb2\x9duQ\xa4\xdc\xae-\xaf\xdb\xc0B\x9d\xea\xa6\xd4_\x8b\x82\x90=', &(0x7f00000002c0)=@keyring={'key_or_keyring:'}) [ 160.581528][ T2411] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 160.612153][ T2411] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 160.650738][ T2411] bridge0: port 2(bridge_slave_1) entered blocking state [ 160.657842][ T2411] bridge0: port 2(bridge_slave_1) entered forwarding state [ 160.707741][ T2411] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 160.732350][ T7551] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 160.805967][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 160.822143][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready 10:35:48 executing program 0: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz'}, 0x0, 0x0, 0xffffffffffffffff) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000140)='\xbb\x91\x8f\xbf\xedC\x9b\x9c&Ncn^\xb47S\xe6\xdf\x1b\x9f\x1c\xff\xdc\xf2}S^\x84\f7Kk\\~q,\xfb\x03\xcc\x1d\xa6V3\xe0\xc9\x86\x0ej\x03\xd0\xd6\xd9\\\xef\xe1\x85\xe6\xef\x0eJ\xbf\xc8\xfb\xe4\xf8\x81\xc8\r\xda\'\b\x03\x16\xc0\xdb\xef\xfa\xba\x83gJ\t|\x8e\xf5bU\x18w!\x7f\xc3\xa5\x19\xa2,\xedL\x1f\xe6H)\xa6e\xa4\xfer/\xcb\xddzt\x1c\xc7\x12\ngKN\\\x1b\"w\x7f\x15\xa4U\x15e\'\xac\xe5}\xb2\x9duQ\xa4\xdc\xae-\xaf\xdb\xc0B\x9d\xea\xa6\xd4_\x8b\x82\x90=', &(0x7f00000002c0)=@keyring={'key_or_keyring:'}) [ 160.871623][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 160.907391][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 160.947473][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 160.956049][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 161.003079][ T7545] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 161.042825][ T7542] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 161.068635][ T7542] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network 10:35:49 executing program 0: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz'}, 0x0, 0x0, 0xffffffffffffffff) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000140)='\xbb\x91\x8f\xbf\xedC\x9b\x9c&Ncn^\xb47S\xe6\xdf\x1b\x9f\x1c\xff\xdc\xf2}S^\x84\f7Kk\\~q,\xfb\x03\xcc\x1d\xa6V3\xe0\xc9\x86\x0ej\x03\xd0\xd6\xd9\\\xef\xe1\x85\xe6\xef\x0eJ\xbf\xc8\xfb\xe4\xf8\x81\xc8\r\xda\'\b\x03\x16\xc0\xdb\xef\xfa\xba\x83gJ\t|\x8e\xf5bU\x18w!\x7f\xc3\xa5\x19\xa2,\xedL\x1f\xe6H)\xa6e\xa4\xfer/\xcb\xddzt\x1c\xc7\x12\ngKN\\\x1b\"w\x7f\x15\xa4U\x15e\'\xac\xe5}\xb2\x9duQ\xa4\xdc\xae-\xaf\xdb\xc0B\x9d\xea\xa6\xd4_\x8b\x82\x90=', &(0x7f00000002c0)=@keyring={'key_or_keyring:'}) [ 161.110738][ T7551] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 161.133143][ T7572] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 161.149641][ T7572] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 161.189020][ T7572] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 161.217553][ T7572] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 161.237362][ T7572] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 161.271046][ T7575] chnl_net:caif_netlink_parms(): no params data found 10:35:49 executing program 0: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz'}, 0x0, 0x0, 0xffffffffffffffff) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000140)='\xbb\x91\x8f\xbf\xedC\x9b\x9c&Ncn^\xb47S\xe6\xdf\x1b\x9f\x1c\xff\xdc\xf2}S^\x84\f7Kk\\~q,\xfb\x03\xcc\x1d\xa6V3\xe0\xc9\x86\x0ej\x03\xd0\xd6\xd9\\\xef\xe1\x85\xe6\xef\x0eJ\xbf\xc8\xfb\xe4\xf8\x81\xc8\r\xda\'\b\x03\x16\xc0\xdb\xef\xfa\xba\x83gJ\t|\x8e\xf5bU\x18w!\x7f\xc3\xa5\x19\xa2,\xedL\x1f\xe6H)\xa6e\xa4\xfer/\xcb\xddzt\x1c\xc7\x12\ngKN\\\x1b\"w\x7f\x15\xa4U\x15e\'\xac\xe5}\xb2\x9duQ\xa4\xdc\xae-\xaf\xdb\xc0B\x9d\xea\xa6\xd4_\x8b\x82\x90=', &(0x7f00000002c0)=@keyring={'key_or_keyring:'}) [ 161.291612][ T7545] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 161.314922][ T7542] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 161.358977][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 161.368967][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 161.376404][ T3507] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready 10:35:49 executing program 0: kexec_load(0x0, 0x0, 0x0, 0x2a0000) [ 161.436504][ T7577] chnl_net:caif_netlink_parms(): no params data found [ 161.489372][ T7551] team0: Port device team_slave_0 added [ 161.507934][ T7551] team0: Port device team_slave_1 added [ 161.514407][ T7545] team0: Port device team_slave_0 added 10:35:49 executing program 0: kexec_load(0x0, 0x0, 0x0, 0x2a0000) [ 161.558975][ T7545] team0: Port device team_slave_1 added [ 161.584349][ T7575] bridge0: port 1(bridge_slave_0) entered blocking state [ 161.597279][ T7575] bridge0: port 1(bridge_slave_0) entered disabled state [ 161.611672][ T7575] device bridge_slave_0 entered promiscuous mode 10:35:49 executing program 0: kexec_load(0x0, 0x0, 0x0, 0x2a0000) [ 161.693091][ T7575] bridge0: port 2(bridge_slave_1) entered blocking state [ 161.704580][ T7575] bridge0: port 2(bridge_slave_1) entered disabled state 10:35:49 executing program 1: sendmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000004000)=[{&(0x7f0000000040)='/', 0x1}], 0x1}, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/packet\x00') preadv(r0, &(0x7f00000017c0), 0x3a8, 0x0) [ 161.737483][ T7575] device bridge_slave_1 entered promiscuous mode [ 161.798665][ T7545] device hsr_slave_0 entered promiscuous mode [ 161.856944][ T7545] device hsr_slave_1 entered promiscuous mode [ 161.896730][ T7545] debugfs: Directory 'hsr0' with parent '/' already present! [ 161.908861][ T7577] bridge0: port 1(bridge_slave_0) entered blocking state [ 161.915910][ T7577] bridge0: port 1(bridge_slave_0) entered disabled state [ 161.924081][ T7577] device bridge_slave_0 entered promiscuous mode [ 161.998451][ T7551] device hsr_slave_0 entered promiscuous mode [ 162.036993][ T7551] device hsr_slave_1 entered promiscuous mode [ 162.076818][ T7551] debugfs: Directory 'hsr0' with parent '/' already present! [ 162.092920][ T7577] bridge0: port 2(bridge_slave_1) entered blocking state [ 162.100107][ T7577] bridge0: port 2(bridge_slave_1) entered disabled state [ 162.107985][ T7577] device bridge_slave_1 entered promiscuous mode [ 162.115449][ T7545] ================================================================== [ 162.123558][ T7545] BUG: KCSAN: data-race in kernfs_refresh_inode / tomoyo_get_attributes [ 162.131864][ T7545] [ 162.134182][ T7545] read to 0xffff888125007140 of 2 bytes by task 7551 on cpu 1: [ 162.141715][ T7545] tomoyo_get_attributes+0xf7/0x240 [ 162.146930][ T7545] tomoyo_init_log+0xf4b/0x10d0 [ 162.151800][ T7545] tomoyo_supervisor+0x290/0xd20 [ 162.156718][ T7545] tomoyo_path_permission+0x121/0x160 [ 162.162098][ T7545] tomoyo_check_open_permission+0x2b9/0x320 [ 162.167973][ T7545] tomoyo_file_open+0x75/0x90 [ 162.172630][ T7545] security_file_open+0x69/0x210 [ 162.177555][ T7545] do_dentry_open+0x211/0x970 [ 162.182221][ T7545] vfs_open+0x62/0x80 [ 162.186270][ T7545] path_openat+0xf73/0x36e0 [ 162.190810][ T7545] do_filp_open+0x11e/0x1b0 [ 162.195295][ T7545] do_sys_open+0x3b3/0x4f0 [ 162.199729][ T7545] __x64_sys_open+0x55/0x70 [ 162.204215][ T7545] do_syscall_64+0xcc/0x370 [ 162.208714][ T7545] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 162.214576][ T7545] [ 162.216888][ T7545] write to 0xffff888125007140 of 2 bytes by task 7545 on cpu 0: [ 162.224499][ T7545] kernfs_refresh_inode+0x42/0x140 [ 162.229591][ T7545] kernfs_iop_permission+0x66/0xa0 [ 162.234680][ T7545] inode_permission+0x241/0x3c0 [ 162.239518][ T7545] may_open.isra.0+0x144/0x250 [ 162.244260][ T7545] path_openat+0xf05/0x36e0 [ 162.248742][ T7545] do_filp_open+0x11e/0x1b0 [ 162.253231][ T7545] do_sys_open+0x3b3/0x4f0 [ 162.257625][ T7545] __x64_sys_open+0x55/0x70 [ 162.262105][ T7545] do_syscall_64+0xcc/0x370 [ 162.266587][ T7545] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 162.272448][ T7545] [ 162.274750][ T7545] Reported by Kernel Concurrency Sanitizer on: [ 162.280887][ T7545] CPU: 0 PID: 7545 Comm: syz-executor.2 Not tainted 5.4.0-rc7+ #0 [ 162.288671][ T7545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 162.298739][ T7545] ================================================================== [ 162.306811][ T7545] Kernel panic - not syncing: panic_on_warn set ... [ 162.313379][ T7545] CPU: 0 PID: 7545 Comm: syz-executor.2 Not tainted 5.4.0-rc7+ #0 [ 162.321187][ T7545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 162.331218][ T7545] Call Trace: [ 162.334493][ T7545] dump_stack+0x11d/0x181 [ 162.338807][ T7545] panic+0x210/0x640 [ 162.342686][ T7545] ? vprintk_func+0x8d/0x140 [ 162.347258][ T7545] kcsan_report.cold+0xc/0x1a [ 162.351918][ T7545] kcsan_setup_watchpoint+0x3fe/0x460 [ 162.357280][ T7545] __tsan_unaligned_write2+0xc4/0x100 [ 162.362633][ T7545] kernfs_refresh_inode+0x42/0x140 [ 162.367727][ T7545] kernfs_iop_permission+0x66/0xa0 [ 162.372819][ T7545] ? kernfs_iop_getattr+0x90/0x90 [ 162.377835][ T7545] inode_permission+0x241/0x3c0 [ 162.382668][ T7545] may_open.isra.0+0x144/0x250 [ 162.387411][ T7545] path_openat+0xf05/0x36e0 [ 162.391901][ T7545] ? __wake_up_common_lock+0x85/0xb0 [ 162.397175][ T7545] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 162.403055][ T7545] ? __read_once_size+0x41/0xe0 [ 162.407897][ T7545] do_filp_open+0x11e/0x1b0 [ 162.412386][ T7545] ? __alloc_fd+0x2ef/0x3b0 [ 162.416877][ T7545] do_sys_open+0x3b3/0x4f0 [ 162.421278][ T7545] __x64_sys_open+0x55/0x70 [ 162.425773][ T7545] do_syscall_64+0xcc/0x370 [ 162.430262][ T7545] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 162.436143][ T7545] RIP: 0033:0x413f90 [ 162.440024][ T7545] Code: 05 48 3d 01 f0 ff ff 0f 83 2d 19 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 83 3d 7d 40 66 00 00 75 14 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 04 19 00 00 c3 48 83 ec 08 e8 0a fa ff ff [ 162.459611][ T7545] RSP: 002b:00007fff56c9f8b8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 162.468014][ T7545] RAX: ffffffffffffffda RBX: 00007fff56c9f8e3 RCX: 0000000000413f90 [ 162.475989][ T7545] RDX: 00007fff56c9f8e6 RSI: 0000000000080001 RDI: 00000000004bf82c [ 162.484289][ T7545] RBP: 00007fff56c9f8e0 R08: 0000000000000000 R09: 0000000000000003 [ 162.492242][ T7545] R10: 0000000000000075 R11: 0000000000000246 R12: 00000000004bf82c [ 162.500201][ T7545] R13: 00000000004bf435 R14: 0000000000000000 R15: 0000000000000006 [ 162.509448][ T7545] Kernel Offset: disabled [ 162.513777][ T7545] Rebooting in 86400 seconds..