audit: type=1400 audit(2000000302.190:10600): avc: denied { create } for pid=6465 comm="syz-executor.5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000302.190:10601): avc: denied { write } for pid=6465 comm="syz-executor.5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 =============================== [ INFO: suspicious RCU usage. ] 4.9.168+ #39 Not tainted ------------------------------- net/ipv6/ip6_fib.c:1470 suspicious rcu_dereference_protected() usage! other info that might help us debug this: rcu_scheduler_active = 2, debug_locks = 0 5 locks held by syz-executor.2/6386: #0: (sk_lock-AF_PACKET){+.+.+.}, at: [<00000000c3d3c252>] lock_sock include/net/sock.h:1414 [inline] #0: (sk_lock-AF_PACKET){+.+.+.}, at: [<00000000c3d3c252>] packet_setsockopt+0x19c/0x2790 net/packet/af_packet.c:3672 #1: (((&net->ipv6.ip6_fib_timer))){+.-...}, at: [<0000000059095cc6>] lockdep_copy_map include/linux/lockdep.h:165 [inline] #1: (((&net->ipv6.ip6_fib_timer))){+.-...}, at: [<0000000059095cc6>] call_timer_fn+0xde/0x6d0 kernel/time/timer.c:1309 #2: (&(&net->ipv6.fib6_gc_lock)->rlock){+.-...}, at: [<00000000c8e63397>] spin_lock_bh include/linux/spinlock.h:307 [inline] #2: (&(&net->ipv6.fib6_gc_lock)->rlock){+.-...}, at: [<00000000c8e63397>] fib6_run_gc+0xa2/0x2e0 net/ipv6/ip6_fib.c:1816 #3: (rcu_read_lock){......}, at: [<000000006a423590>] __fib6_clean_all+0x0/0x230 net/ipv6/ip6_fib.c:1703 #4: (&tb->tb6_lock){++--..}, at: [<0000000056d84fca>] __fib6_clean_all+0xe3/0x230 net/ipv6/ip6_fib.c:1717 stack backtrace: CPU: 0 PID: 6386 Comm: syz-executor.2 Not tainted 4.9.168+ #39 ffff8801db607890 ffffffff81b4f5d1 ffff880106ffaa80 0000000000000000 0000000000000002 00000000000005be ffff8801d48617c0 ffff8801db6078c0 ffffffff81400d99 ffff8801db607ae0 dffffc0000000000 00000000ffffffff Call Trace: [<00000000eb9e5aa1>] __dump_stack lib/dump_stack.c:15 [inline] [<00000000eb9e5aa1>] dump_stack+0xc1/0x120 lib/dump_stack.c:51 [<00000000f12d0d1e>] lockdep_rcu_suspicious.cold+0x10a/0x149 kernel/locking/lockdep.c:4458 [<00000000009afeac>] fib6_del+0x81f/0xb20 net/ipv6/ip6_fib.c:1470 [<0000000023a6cbf0>] fib6_clean_node+0x29c/0x4d0 net/ipv6/ip6_fib.c:1657 [<00000000148e5ebb>] fib6_walk_continue+0x3e0/0x630 net/ipv6/ip6_fib.c:1583 [<00000000218ba790>] fib6_walk+0x9d/0xf0 net/ipv6/ip6_fib.c:1628 [<0000000003f1b4a7>] fib6_clean_tree+0xe7/0x120 net/ipv6/ip6_fib.c:1702 [<000000005bbd0694>] __fib6_clean_all+0xfb/0x230 net/ipv6/ip6_fib.c:1718 [<00000000c1c9d412>] fib6_clean_all net/ipv6/ip6_fib.c:1729 [inline] [<00000000c1c9d412>] fib6_run_gc+0x124/0x2e0 net/ipv6/ip6_fib.c:1826 [<00000000621843f0>] fib6_gc_timer_cb+0x1d/0x30 net/ipv6/ip6_fib.c:1841 [<00000000e7e46334>] call_timer_fn+0x167/0x6d0 kernel/time/timer.c:1319 [<0000000042200981>] expire_timers+0x25b/0x5c0 kernel/time/timer.c:1359 [<00000000fccab1e3>] __run_timers kernel/time/timer.c:1674 [inline] [<00000000fccab1e3>] run_timer_softirq+0x1ff/0x620 kernel/time/timer.c:1687 [<000000007915184d>] __do_softirq+0x22d/0x964 kernel/softirq.c:288 [<00000000f3c9548c>] invoke_softirq kernel/softirq.c:368 [inline] [<00000000f3c9548c>] irq_exit+0x119/0x160 kernel/softirq.c:409 [<000000004fab18b1>] exiting_irq arch/x86/include/asm/apic.h:669 [inline] [<000000004fab18b1>] smp_apic_timer_interrupt+0x7e/0xb0 arch/x86/kernel/apic/apic.c:962 [<000000003e990f58>] apic_timer_interrupt+0x9d/0xb0 arch/x86/entry/entry_64.S:648 [<000000003f1623ed>] __alloc_pages_nodemask+0x28c/0x1a80 mm/page_alloc.c:3842 [<000000009aede664>] __alloc_pages include/linux/gfp.h:433 [inline] [<000000009aede664>] __alloc_pages_node include/linux/gfp.h:446 [inline] [<000000009aede664>] alloc_pages_node include/linux/gfp.h:460 [inline] [<000000009aede664>] __vmalloc_area_node mm/vmalloc.c:1648 [inline] [<000000009aede664>] __vmalloc_node_range+0x25b/0x610 mm/vmalloc.c:1706 [<00000000bab64ec9>] __vmalloc_node mm/vmalloc.c:1749 [inline] [<00000000bab64ec9>] __vmalloc_node_flags mm/vmalloc.c:1763 [inline] [<00000000bab64ec9>] vzalloc+0x5c/0x70 mm/vmalloc.c:1795 [<00000000b5d0599b>] alloc_one_pg_vec_page net/packet/af_packet.c:4212 [inline] [<00000000b5d0599b>] alloc_pg_vec net/packet/af_packet.c:4237 [inline] [<00000000b5d0599b>] packet_set_ring+0x547/0x1830 net/packet/af_packet.c:4327 [<00000000692fc84b>] packet_setsockopt+0x13b4/0x2790 net/packet/af_packet.c:3689 [<00000000a8f57bba>] SYSC_setsockopt net/socket.c:1786 [inline] [<00000000a8f57bba>] SyS_setsockopt+0x159/0x240 net/socket.c:1765 [<000000004a2c4e2c>] do_syscall_64+0x1ad/0x570 arch/x86/entry/common.c:285 [<00000000705c03e0>] entry_SYSCALL_64_after_swapgs+0x5d/0xdb audit: type=1400 audit(2000000302.450:10602): avc: denied { read } for pid=6465 comm="syz-executor.5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000303.730:10603): avc: denied { create } for pid=6505 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000303.750:10604): avc: denied { write } for pid=6505 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000303.860:10605): avc: denied { read } for pid=6505 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000304.010:10606): avc: denied { create } for pid=6505 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000304.010:10607): avc: denied { write } for pid=6505 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit_printk_skb: 18 callbacks suppressed audit: type=1400 audit(2000000306.150:10614): avc: denied { create } for pid=6586 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000306.230:10615): avc: denied { write } for pid=6586 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000306.290:10617): avc: denied { read } for pid=6586 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000306.290:10616): avc: denied { create } for pid=6588 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000306.290:10618): avc: denied { write } for pid=6588 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000306.480:10619): avc: denied { read } for pid=6588 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000306.880:10620): avc: denied { create } for pid=6611 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000308.310:10621): avc: denied { create } for pid=6630 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000308.340:10622): avc: denied { write } for pid=6630 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000308.380:10623): avc: denied { create } for pid=6640 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit_printk_skb: 42 callbacks suppressed audit: type=1400 audit(2000000311.260:10638): avc: denied { create } for pid=6720 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000311.350:10639): avc: denied { write } for pid=6720 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000311.440:10640): avc: denied { read } for pid=6720 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000311.490:10641): avc: denied { create } for pid=6741 comm="syz-executor.4" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000313.030:10642): avc: denied { create } for pid=6762 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000313.060:10643): avc: denied { write } for pid=6762 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 audit: type=1400 audit(2000000313.130:10644): avc: denied { read } for pid=6762 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1