IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE ================================================================== BUG: KCSAN: data-race in _prb_read_valid / prb_reserve write to 0xffffffff8691e640 of 88 bytes by task 3599 on cpu 0: prb_reserve+0x695/0xaf0 kernel/printk/printk_ringbuffer.c:1651 vprintk_store+0x56d/0x860 kernel/printk/printk.c:2299 vprintk_emit+0x10d/0x580 kernel/printk/printk.c:2399 vprintk_default+0x26/0x30 kernel/printk/printk.c:2438 vprintk+0x1d/0x30 kernel/printk/printk_safe.c:82 _printk+0x79/0xa0 kernel/printk/printk.c:2448 bt_err+0x9d/0xd0 net/bluetooth/lib.c:296 __hci_cmd_sync_status_sk net/bluetooth/hci_sync.c:271 [inline] __hci_cmd_sync_status net/bluetooth/hci_sync.c:287 [inline] hci_read_local_features_sync net/bluetooth/hci_sync.c:3708 [inline] hci_init_stage_sync net/bluetooth/hci_sync.c:3623 [inline] hci_init1_sync net/bluetooth/hci_sync.c:3755 [inline] hci_init_sync net/bluetooth/hci_sync.c:4867 [inline] hci_dev_init_sync net/bluetooth/hci_sync.c:5059 [inline] hci_dev_open_sync+0xfa4/0x2290 net/bluetooth/hci_sync.c:5137 hci_dev_do_open net/bluetooth/hci_core.c:430 [inline] hci_power_on+0xef/0x390 net/bluetooth/hci_core.c:959 process_one_work kernel/workqueue.c:3263 [inline] process_scheduled_works+0x4ce/0x9d0 kernel/workqueue.c:3346 worker_thread+0x582/0x770 kernel/workqueue.c:3427 kthread+0x489/0x510 kernel/kthread.c:463 ret_from_fork+0x122/0x1b0 arch/x86/kernel/process.c:158 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245 read to 0xffffffff8691e640 of 8 bytes by task 19398 on cpu 1: desc_read kernel/printk/printk_ringbuffer.c:483 [inline] prb_first_seq kernel/printk/printk_ringbuffer.c:1975 [inline] _prb_read_valid+0x383/0x920 kernel/printk/printk_ringbuffer.c:2132 prb_read_valid+0x3c/0x60 kernel/printk/printk_ringbuffer.c:2203 printk_get_next_message+0xc8/0x510 kernel/printk/printk.c:2978 console_emit_next_record kernel/printk/printk.c:3065 [inline] console_flush_all+0x290/0x6a0 kernel/printk/printk.c:3199 __console_flush_and_unlock kernel/printk/printk.c:3258 [inline] console_unlock+0xa1/0x2e0 kernel/printk/printk.c:3298 vprintk_emit+0x3b5/0x580 kernel/printk/printk.c:2423 vprintk_default+0x26/0x30 kernel/printk/printk.c:2438 vprintk+0x1d/0x30 kernel/printk/printk_safe.c:82 _printk+0x79/0xa0 kernel/printk/printk.c:2448 fib6_add+0x429/0xe00 net/ipv6/ip6_fib.c:1438 __ip6_ins_rt net/ipv6/route.c:1351 [inline] ip6_route_add+0xc7/0x170 net/ipv6/route.c:3946 inet6_rtm_newroute+0x112/0x1020 net/ipv6/route.c:5649 rtnetlink_rcv_msg+0x5fe/0x6d0 net/core/rtnetlink.c:6951 netlink_rcv_skb+0x123/0x220 net/netlink/af_netlink.c:2552 rtnetlink_rcv+0x1c/0x30 net/core/rtnetlink.c:6978 netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline] netlink_unicast+0x5c0/0x690 net/netlink/af_netlink.c:1346 netlink_sendmsg+0x58b/0x6b0 net/netlink/af_netlink.c:1896 sock_sendmsg_nosec net/socket.c:727 [inline] __sock_sendmsg+0x145/0x180 net/socket.c:742 ____sys_sendmsg+0x345/0x4e0 net/socket.c:2630 ___sys_sendmsg+0x17b/0x1d0 net/socket.c:2684 __sys_sendmmsg+0x178/0x300 net/socket.c:2773 __do_sys_sendmmsg net/socket.c:2800 [inline] __se_sys_sendmmsg net/socket.c:2797 [inline] __x64_sys_sendmmsg+0x57/0x70 net/socket.c:2797 x64_sys_call+0x1c4a/0x3000 arch/x86/include/generated/asm/syscalls_64.h:308 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline] do_syscall_64+0xd2/0x200 arch/x86/entry/syscall_64.c:94 entry_SYSCALL_64_after_hwframe+0x77/0x7f value changed: 0x0000000000003866 -> 0x0000000000005866 Reported by Kernel Concurrency Sanitizer on: CPU: 1 UID: 0 PID: 19398 Comm: syz.5.17743 Tainted: G W syzkaller #0 PREEMPT(voluntary) Tainted: [W]=WARN Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 ==================================================================