TCP: request_sock_TCP: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. ============================= WARNING: suspicious RCU usage 4.15.0-rc8+ #193 Not tainted ----------------------------- ./include/net/inet_sock.h:136 suspicious rcu_dereference_check() usage! other info that might help us debug this: rcu_scheduler_active = 2, debug_locks = 1 Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable 1 lock held by syz-executor7/19242: #0: (sk_lock-AF_INET6){+.+.}, at: [<000000004b8c5d37>] lock_sock include/net/sock.h:1463 [inline] #0: (sk_lock-AF_INET6){+.+.}, at: [<000000004b8c5d37>] do_ipv6_setsockopt.isra.9+0x23d/0x39a0 net/ipv6/ipv6_sockglue.c:167 stack backtrace: CPU: 0 PID: 19242 Comm: syz-executor7 Not tainted 4.15.0-rc8+ #193 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x194/0x257 lib/dump_stack.c:53 lockdep_rcu_suspicious+0x123/0x170 kernel/locking/lockdep.c:4585 ireq_opt_deref include/net/inet_sock.h:135 [inline] inet_csk_route_req+0x824/0xca0 net/ipv4/inet_connection_sock.c:544 dccp_v4_send_response+0xa7/0x650 net/dccp/ipv4.c:485 dccp_v4_conn_request+0x9ee/0x11b0 net/dccp/ipv4.c:633 dccp_v6_conn_request+0xd30/0x1350 net/dccp/ipv6.c:317 dccp_rcv_state_process+0x574/0x1620 net/dccp/input.c:612 dccp_v4_do_rcv+0xf1/0x160 net/dccp/ipv4.c:682 dccp_v6_do_rcv+0x823/0x9c0 net/dccp/ipv6.c:578 sk_backlog_rcv include/net/sock.h:908 [inline] __release_sock+0x124/0x360 net/core/sock.c:2274 release_sock+0xa4/0x2a0 net/core/sock.c:2789 do_ipv6_setsockopt.isra.9+0x50a/0x39a0 net/ipv6/ipv6_sockglue.c:898 ipv6_setsockopt+0xd7/0x150 net/ipv6/ipv6_sockglue.c:922 dccp_setsockopt+0x85/0xd0 net/dccp/proto.c:576 sock_common_setsockopt+0x95/0xd0 net/core/sock.c:2978 SYSC_setsockopt net/socket.c:1823 [inline] SyS_setsockopt+0x189/0x360 net/socket.c:1802 entry_SYSCALL_64_fastpath+0x29/0xa0 RIP: 0033:0x452df9 RSP: 002b:00007f1c6d96ec58 EFLAGS: 00000212 ORIG_RAX: 0000000000000036 RAX: ffffffffffffffda RBX: 000000000071bea0 RCX: 0000000000452df9 RDX: 0000000000000020 RSI: 0000000000000029 RDI: 0000000000000013 RBP: 0000000000000538 R08: 0000000000000020 R09: 0000000000000000 R10: 0000000020142000 R11: 0000000000000212 R12: 00000000006f5de0 R13: 00000000ffffffff R14: 00007f1c6d96f6d4 R15: 0000000000000000 ============================= WARNING: suspicious RCU usage 4.15.0-rc8+ #193 Not tainted ----------------------------- ./include/net/inet_sock.h:136 suspicious rcu_dereference_check() usage! other info that might help us debug this: rcu_scheduler_active = 2, debug_locks = 1 1 lock held by syz-executor7/19242: #0: (sk_lock-AF_INET6){+.+.}, at: [<000000004b8c5d37>] lock_sock include/net/sock.h:1463 [inline] #0: (sk_lock-AF_INET6){+.+.}, at: [<000000004b8c5d37>] do_ipv6_setsockopt.isra.9+0x23d/0x39a0 net/ipv6/ipv6_sockglue.c:167 stack backtrace: CPU: 0 PID: 19242 Comm: syz-executor7 Not tainted 4.15.0-rc8+ #193 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x194/0x257 lib/dump_stack.c:53 lockdep_rcu_suspicious+0x123/0x170 kernel/locking/lockdep.c:4585 ireq_opt_deref include/net/inet_sock.h:135 [inline] dccp_v4_send_response+0x4b6/0x650 net/dccp/ipv4.c:496 dccp_v4_conn_request+0x9ee/0x11b0 net/dccp/ipv4.c:633 dccp_v6_conn_request+0xd30/0x1350 net/dccp/ipv6.c:317 dccp_rcv_state_process+0x574/0x1620 net/dccp/input.c:612 dccp_v4_do_rcv+0xf1/0x160 net/dccp/ipv4.c:682 dccp_v6_do_rcv+0x823/0x9c0 net/dccp/ipv6.c:578 sk_backlog_rcv include/net/sock.h:908 [inline] __release_sock+0x124/0x360 net/core/sock.c:2274 release_sock+0xa4/0x2a0 net/core/sock.c:2789 do_ipv6_setsockopt.isra.9+0x50a/0x39a0 net/ipv6/ipv6_sockglue.c:898 ipv6_setsockopt+0xd7/0x150 net/ipv6/ipv6_sockglue.c:922 dccp_setsockopt+0x85/0xd0 net/dccp/proto.c:576 sock_common_setsockopt+0x95/0xd0 net/core/sock.c:2978 SYSC_setsockopt net/socket.c:1823 [inline] SyS_setsockopt+0x189/0x360 net/socket.c:1802 entry_SYSCALL_64_fastpath+0x29/0xa0 RIP: 0033:0x452df9 RSP: 002b:00007f1c6d96ec58 EFLAGS: 00000212 ORIG_RAX: 0000000000000036 RAX: ffffffffffffffda RBX: 000000000071bea0 RCX: 0000000000452df9 RDX: 0000000000000020 RSI: 0000000000000029 RDI: 0000000000000013 RBP: 0000000000000538 R08: 0000000000000020 R09: 0000000000000000 R10: 0000000020142000 R11: 0000000000000212 R12: 00000000006f5de0 R13: 00000000ffffffff R14: 00007f1c6d96f6d4 R15: 0000000000000000 netlink: 36 bytes leftover after parsing attributes in process `syz-executor7'. netlink: 40 bytes leftover after parsing attributes in process `syz-executor1'. netlink: 40 bytes leftover after parsing attributes in process `syz-executor1'. sctp: [Deprecated]: syz-executor2 (pid 20414) Use of int in maxseg socket option. Use struct sctp_assoc_value instead sctp: [Deprecated]: syz-executor2 (pid 20424) Use of int in maxseg socket option. Use struct sctp_assoc_value instead SELinux: unrecognized netlink message: protocol=6 nlmsg_type=65158 sclass=netlink_xfrm_socket pig=20529 comm=syz-executor6 SELinux: unrecognized netlink message: protocol=6 nlmsg_type=65158 sclass=netlink_xfrm_socket pig=20561 comm=syz-executor6 netlink: 8 bytes leftover after parsing attributes in process `syz-executor2'. netlink: 8 bytes leftover after parsing attributes in process `syz-executor2'. netlink: 'syz-executor1': attribute type 16 has an invalid length. netlink: 14 bytes leftover after parsing attributes in process `syz-executor1'. netlink: 'syz-executor1': attribute type 10 has an invalid length. netlink: 'syz-executor1': attribute type 10 has an invalid length. openvswitch: netlink: ufid size 20 bytes exceeds the range (1, 16) dccp_close: ABORT with 1 bytes unread openvswitch: netlink: Flow get message rejected, Key attribute missing. openvswitch: netlink: ufid size 20 bytes exceeds the range (1, 16) openvswitch: netlink: Flow get message rejected, Key attribute missing. netlink: 2 bytes leftover after parsing attributes in process `syz-executor3'. netlink: 2 bytes leftover after parsing attributes in process `syz-executor3'.