netlink: 11 bytes leftover after parsing attributes in process `syz-executor5'.
=============================
WARNING: suspicious RCU usage
4.15.0-rc5+ #178 Not tainted
-----------------------------
net/ipv6/ip6_fib.c:1704 suspicious rcu_dereference_protected() usage!
other info that might help us debug this:
rcu_scheduler_active = 2, debug_locks = 1
4 locks held by syz-fuzzer/3510:
#0: ((&net->ipv6.ip6_fib_timer)){+.-.}, at: [<000000000373905a>] lockdep_copy_map include/linux/lockdep.h:178 [inline]
#0: ((&net->ipv6.ip6_fib_timer)){+.-.}, at: [<000000000373905a>] call_timer_fn+0x1c6/0x820 kernel/time/timer.c:1310
#1: (&(&net->ipv6.fib6_gc_lock)->rlock){+.-.}, at: [<00000000b6972a54>] spin_lock_bh include/linux/spinlock.h:315 [inline]
#1: (&(&net->ipv6.fib6_gc_lock)->rlock){+.-.}, at: [<00000000b6972a54>] fib6_run_gc+0x9d/0x3c0 net/ipv6/ip6_fib.c:2016
#2: (rcu_read_lock){....}, at: [<00000000b1eb85a0>] __fib6_clean_all+0x0/0x3a0 net/ipv6/ip6_fib.c:1562
#3: (&(&tb->tb6_lock)->rlock){+.-.}, at: [<000000000f35daac>] spin_lock_bh include/linux/spinlock.h:315 [inline]
#3: (&(&tb->tb6_lock)->rlock){+.-.}, at: [<000000000f35daac>] __fib6_clean_all+0x1d0/0x3a0 net/ipv6/ip6_fib.c:1957
stack backtrace:
CPU: 1 PID: 3510 Comm: syz-fuzzer Not tainted 4.15.0-rc5+ #178
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
__dump_stack lib/dump_stack.c:17 [inline]
dump_stack+0x194/0x257 lib/dump_stack.c:53
lockdep_rcu_suspicious+0x123/0x170 kernel/locking/lockdep.c:4585
fib6_del+0xcaa/0x11b0 net/ipv6/ip6_fib.c:1703
fib6_clean_node+0x42e/0x580 net/ipv6/ip6_fib.c:1894
fib6_walk_continue+0x46c/0x8a0 net/ipv6/ip6_fib.c:1817
fib6_walk+0x91/0xf0 net/ipv6/ip6_fib.c:1865
fib6_clean_tree+0x1e6/0x340 net/ipv6/ip6_fib.c:1942
__fib6_clean_all+0x1f4/0x3a0 net/ipv6/ip6_fib.c:1958
fib6_clean_all net/ipv6/ip6_fib.c:1969 [inline]
fib6_run_gc+0x16b/0x3c0 net/ipv6/ip6_fib.c:2025
fib6_gc_timer_cb+0x20/0x30 net/ipv6/ip6_fib.c:2042
call_timer_fn+0x228/0x820 kernel/time/timer.c:1320
expire_timers kernel/time/timer.c:1357 [inline]
__run_timers+0x7ee/0xb70 kernel/time/timer.c:1660
run_timer_softirq+0x4c/0xb0 kernel/time/timer.c:1686
__do_softirq+0x2d7/0xb85 kernel/softirq.c:285
invoke_softirq kernel/softirq.c:365 [inline]
irq_exit+0x1cc/0x200 kernel/softirq.c:405
exiting_irq arch/x86/include/asm/apic.h:540 [inline]
smp_apic_timer_interrupt+0x16b/0x700 arch/x86/kernel/apic/apic.c:1052
apic_timer_interrupt+0xa9/0xb0 arch/x86/entry/entry_64.S:904
RIP: 0033:0x41decf
RSP: 002b:000000c42003fe68 EFLAGS: 00000293 ORIG_RAX: ffffffffffffff11
RAX: 000000c420000000 RBX: 000000c41ffbd884 RCX: 0000000000000000
RDX: 000000c429450000 RSI: 000000c42084ef60 RDI: 0000000000000000
RBP: 000000c42003ff00 R08: 0000000000000000 R09: 0000000000b210e0
R10: 0000000000000020 R11: 000000c42084f220 R12: 01ffffffffffffff
R13: 00000000000000ff R14: 00000000000000ff R15: 0000000000000029
=============================
WARNING: suspicious RCU usage
4.15.0-rc5+ #178 Not tainted
-----------------------------
net/ipv6/ip6_fib.c:1731 suspicious rcu_dereference_protected() usage!
other info that might help us debug this:
rcu_scheduler_active = 2, debug_locks = 1
4 locks held by syz-fuzzer/3510:
#0: ((&net->ipv6.ip6_fib_timer)){+.-.}, at: [<000000000373905a>] lockdep_copy_map include/linux/lockdep.h:178 [inline]
#0: ((&net->ipv6.ip6_fib_timer)){+.-.}, at: [<000000000373905a>] call_timer_fn+0x1c6/0x820 kernel/time/timer.c:1310
#1: (&(&net->ipv6.fib6_gc_lock)->rlock){+.-.}, at: [<00000000b6972a54>] spin_lock_bh include/linux/spinlock.h:315 [inline]
#1: (&(&net->ipv6.fib6_gc_lock)->rlock){+.-.}, at: [<00000000b6972a54>] fib6_run_gc+0x9d/0x3c0 net/ipv6/ip6_fib.c:2016
#2: (rcu_read_lock){....}, at: [<00000000b1eb85a0>] __fib6_clean_all+0x0/0x3a0 net/ipv6/ip6_fib.c:1562
#3: (&(&tb->tb6_lock)->rlock){+.-.}, at: [<000000000f35daac>] spin_lock_bh include/linux/spinlock.h:315 [inline]
#3: (&(&tb->tb6_lock)->rlock){+.-.}, at: [<000000000f35daac>] __fib6_clean_all+0x1d0/0x3a0 net/ipv6/ip6_fib.c:1957
stack backtrace:
CPU: 1 PID: 3510 Comm: syz-fuzzer Not tainted 4.15.0-rc5+ #178
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
__dump_stack lib/dump_stack.c:17 [inline]
dump_stack+0x194/0x257 lib/dump_stack.c:53
lockdep_rcu_suspicious+0x123/0x170 kernel/locking/lockdep.c:4585
fib6_del+0x425/0x11b0 net/ipv6/ip6_fib.c:1730
fib6_clean_node+0x42e/0x580 net/ipv6/ip6_fib.c:1894
fib6_walk_continue+0x46c/0x8a0 net/ipv6/ip6_fib.c:1817
fib6_walk+0x91/0xf0 net/ipv6/ip6_fib.c:1865
fib6_clean_tree+0x1e6/0x340 net/ipv6/ip6_fib.c:1942
__fib6_clean_all+0x1f4/0x3a0 net/ipv6/ip6_fib.c:1958
fib6_clean_all net/ipv6/ip6_fib.c:1969 [inline]
fib6_run_gc+0x16b/0x3c0 net/ipv6/ip6_fib.c:2025
fib6_gc_timer_cb+0x20/0x30 net/ipv6/ip6_fib.c:2042
call_timer_fn+0x228/0x820 kernel/time/timer.c:1320
expire_timers kernel/time/timer.c:1357 [inline]
__run_timers+0x7ee/0xb70 kernel/time/timer.c:1660
run_timer_softirq+0x4c/0xb0 kernel/time/timer.c:1686
__do_softirq+0x2d7/0xb85 kernel/softirq.c:285
invoke_softirq kernel/softirq.c:365 [inline]
irq_exit+0x1cc/0x200 kernel/softirq.c:405
exiting_irq arch/x86/include/asm/apic.h:540 [inline]
smp_apic_timer_interrupt+0x16b/0x700 arch/x86/kernel/apic/apic.c:1052
apic_timer_interrupt+0xa9/0xb0 arch/x86/entry/entry_64.S:904
RIP: 0033:0x41decf
RSP: 002b:000000c42003fe68 EFLAGS: 00000293 ORIG_RAX: ffffffffffffff11
RAX: 000000c420000000 RBX: 000000c41ffbd884 RCX: 0000000000000000
RDX: 000000c429450000 RSI: 000000c42084ef60 RDI: 0000000000000000
RBP: 000000c42003ff00 R08: 0000000000000000 R09: 0000000000b210e0
R10: 0000000000000020 R11: 000000c42084f220 R12: 01ffffffffffffff
R13: 00000000000000ff R14: 00000000000000ff R15: 0000000000000029
=============================
WARNING: suspicious RCU usage
4.15.0-rc5+ #178 Not tainted
-----------------------------
net/ipv6/ip6_fib.c:1641 suspicious rcu_dereference_protected() usage!
other info that might help us debug this:
rcu_scheduler_active = 2, debug_locks = 1
4 locks held by syz-fuzzer/3510:
#0: ((&net->ipv6.ip6_fib_timer)){+.-.}, at: [<000000000373905a>] lockdep_copy_map include/linux/lockdep.h:178 [inline]
#0: ((&net->ipv6.ip6_fib_timer)){+.-.}, at: [<000000000373905a>] call_timer_fn+0x1c6/0x820 kernel/time/timer.c:1310
#1: (&(&net->ipv6.fib6_gc_lock)->rlock){+.-.}, at: [<00000000b6972a54>] spin_lock_bh include/linux/spinlock.h:315 [inline]
#1: (&(&net->ipv6.fib6_gc_lock)->rlock){+.-.}, at: [<00000000b6972a54>] fib6_run_gc+0x9d/0x3c0 net/ipv6/ip6_fib.c:2016
#2: (rcu_read_lock){....}, at: [<00000000b1eb85a0>] __fib6_clean_all+0x0/0x3a0 net/ipv6/ip6_fib.c:1562
#3: (&(&tb->tb6_lock)->rlock){+.-.}, at: [<000000000f35daac>] spin_lock_bh include/linux/spinlock.h:315 [inline]
#3: (&(&tb->tb6_lock)->rlock){+.-.}, at: [<000000000f35daac>] __fib6_clean_all+0x1d0/0x3a0 net/ipv6/ip6_fib.c:1957
stack backtrace:
CPU: 1 PID: 3510 Comm: syz-fuzzer Not tainted 4.15.0-rc5+ #178
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
__dump_stack lib/dump_stack.c:17 [inline]
dump_stack+0x194/0x257 lib/dump_stack.c:53
lockdep_rcu_suspicious+0x123/0x170 kernel/locking/lockdep.c:4585
fib6_del_route net/ipv6/ip6_fib.c:1640 [inline]
fib6_del+0xd18/0x11b0 net/ipv6/ip6_fib.c:1733
fib6_clean_node+0x42e/0x580 net/ipv6/ip6_fib.c:1894
fib6_walk_continue+0x46c/0x8a0 net/ipv6/ip6_fib.c:1817
fib6_walk+0x91/0xf0 net/ipv6/ip6_fib.c:1865
fib6_clean_tree+0x1e6/0x340 net/ipv6/ip6_fib.c:1942
__fib6_clean_all+0x1f4/0x3a0 net/ipv6/ip6_fib.c:1958
fib6_clean_all net/ipv6/ip6_fib.c:1969 [inline]
fib6_run_gc+0x16b/0x3c0 net/ipv6/ip6_fib.c:2025
fib6_gc_timer_cb+0x20/0x30 net/ipv6/ip6_fib.c:2042
call_timer_fn+0x228/0x820 kernel/time/timer.c:1320
expire_timers kernel/time/timer.c:1357 [inline]
__run_timers+0x7ee/0xb70 kernel/time/timer.c:1660
run_timer_softirq+0x4c/0xb0 kernel/time/timer.c:1686
__do_softirq+0x2d7/0xb85 kernel/softirq.c:285
invoke_softirq kernel/softirq.c:365 [inline]
irq_exit+0x1cc/0x200 kernel/softirq.c:405
exiting_irq arch/x86/include/asm/apic.h:540 [inline]
smp_apic_timer_interrupt+0x16b/0x700 arch/x86/kernel/apic/apic.c:1052
apic_timer_interrupt+0xa9/0xb0 arch/x86/entry/entry_64.S:904
RIP: 0033:0x41decf
RSP: 002b:000000c42003fe68 EFLAGS: 00000293 ORIG_RAX: ffffffffffffff11
RAX: 000000c420000000 RBX: 000000c41ffbd884 RCX: 0000000000000000
RDX: 000000c429450000 RSI: 000000c42084ef60 RDI: 0000000000000000
RBP: 000000c42003ff00 R08: 0000000000000000 R09: 0000000000b210e0
R10: 0000000000000020 R11: 000000c42084f220 R12: 01ffffffffffffff
R13: 00000000000000ff R14: 00000000000000ff R15: 0000000000000029
=============================
WARNING: suspicious RCU usage
4.15.0-rc5+ #178 Not tainted
-----------------------------
net/ipv6/ip6_fib.c:1678 suspicious rcu_dereference_protected() usage!
other info that might help us debug this:
rcu_scheduler_active = 2, debug_locks = 1
5 locks held by syz-fuzzer/3510:
#0: ((&net->ipv6.ip6_fib_timer)){+.-.}, at: [<000000000373905a>] lockdep_copy_map include/linux/lockdep.h:178 [inline]
#0: ((&net->ipv6.ip6_fib_timer)){+.-.}, at: [<000000000373905a>] call_timer_fn+0x1c6/0x820 kernel/time/timer.c:1310
#1: (&(&net->ipv6.fib6_gc_lock)->rlock){+.-.}, at: [<00000000b6972a54>] spin_lock_bh include/linux/spinlock.h:315 [inline]
#1: (&(&net->ipv6.fib6_gc_lock)->rlock){+.-.}, at: [<00000000b6972a54>] fib6_run_gc+0x9d/0x3c0 net/ipv6/ip6_fib.c:2016
#2: (rcu_read_lock){....}, at: [<00000000b1eb85a0>] __fib6_clean_all+0x0/0x3a0 net/ipv6/ip6_fib.c:1562
#3: (&(&tb->tb6_lock)->rlock){+.-.}, at: [<000000000f35daac>] spin_lock_bh include/linux/spinlock.h:315 [inline]
#3: (&(&tb->tb6_lock)->rlock){+.-.}, at: [<000000000f35daac>] __fib6_clean_all+0x1d0/0x3a0 net/ipv6/ip6_fib.c:1957
#4: (&net->ipv6.fib6_walker_lock){++--}, at: [<00000000b86a8a6a>] fib6_del_route net/ipv6/ip6_fib.c:1673 [inline]
#4: (&net->ipv6.fib6_walker_lock){++--}, at: [<00000000b86a8a6a>] fib6_del+0x935/0x11b0 net/ipv6/ip6_fib.c:1733
stack backtrace:
CPU: 1 PID: 3510 Comm: syz-fuzzer Not tainted 4.15.0-rc5+ #178
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
__dump_stack lib/dump_stack.c:17 [inline]
dump_stack+0x194/0x257 lib/dump_stack.c:53
lockdep_rcu_suspicious+0x123/0x170 kernel/locking/lockdep.c:4585
fib6_del_route net/ipv6/ip6_fib.c:1677 [inline]
fib6_del+0xeb3/0x11b0 net/ipv6/ip6_fib.c:1733
fib6_clean_node+0x42e/0x580 net/ipv6/ip6_fib.c:1894
fib6_walk_continue+0x46c/0x8a0 net/ipv6/ip6_fib.c:1817
fib6_walk+0x91/0xf0 net/ipv6/ip6_fib.c:1865
fib6_clean_tree+0x1e6/0x340 net/ipv6/ip6_fib.c:1942
__fib6_clean_all+0x1f4/0x3a0 net/ipv6/ip6_fib.c:1958
fib6_clean_all net/ipv6/ip6_fib.c:1969 [inline]
fib6_run_gc+0x16b/0x3c0 net/ipv6/ip6_fib.c:2025
fib6_gc_timer_cb+0x20/0x30 net/ipv6/ip6_fib.c:2042
call_timer_fn+0x228/0x820 kernel/time/timer.c:1320
expire_timers kernel/time/timer.c:1357 [inline]
__run_timers+0x7ee/0xb70 kernel/time/timer.c:1660
run_timer_softirq+0x4c/0xb0 kernel/time/timer.c:1686
__do_softirq+0x2d7/0xb85 kernel/softirq.c:285
invoke_softirq kernel/softirq.c:365 [inline]
irq_exit+0x1cc/0x200 kernel/softirq.c:405
exiting_irq arch/x86/include/asm/apic.h:540 [inline]
smp_apic_timer_interrupt+0x16b/0x700 arch/x86/kernel/apic/apic.c:1052
apic_timer_interrupt+0xa9/0xb0 arch/x86/entry/entry_64.S:904
RIP: 0033:0x41decf
RSP: 002b:000000c42003fe68 EFLAGS: 00000293 ORIG_RAX: ffffffffffffff11
RAX: 000000c420000000 RBX: 000000c41ffbd884 RCX: 0000000000000000
RDX: 000000c429450000 RSI: 000000c42084ef60 RDI: 0000000000000000
RBP: 000000c42003ff00 R08: 0000000000000000 R09: 0000000000b210e0
R10: 0000000000000020 R11: 000000c42084f220 R12: 01ffffffffffffff
R13: 00000000000000ff R14: 00000000000000ff R15: 0000000000000029
netlink: 1 bytes leftover after parsing attributes in process `syz-executor7'.
netlink: 1 bytes leftover after parsing attributes in process `syz-executor7'.
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
SELinux: unrecognized netlink message: protocol=9 nlmsg_type=28 sclass=netlink_audit_socket pig=14529 comm=syz-executor3
sctp: [Deprecated]: syz-executor4 (pid 14561) Use of int in max_burst socket option.
Use struct sctp_assoc_value instead
netlink: 'syz-executor1': attribute type 5 has an invalid length.
netlink: 'syz-executor1': attribute type 5 has an invalid length.
device lo entered promiscuous mode
device lo left promiscuous mode
sctp: [Deprecated]: syz-executor4 (pid 14573) Use of int in max_burst socket option.
Use struct sctp_assoc_value instead
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=27 sclass=netlink_route_socket pig=14665 comm=syz-executor3
device lo entered promiscuous mode
device lo left promiscuous mode
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=27 sclass=netlink_route_socket pig=14679 comm=syz-executor3
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
openvswitch: netlink: Message has 10 unknown bytes.
device lo entered promiscuous mode
device lo left promiscuous mode
openvswitch: netlink: Message has 10 unknown bytes.
device lo entered promiscuous mode
device lo left promiscuous mode
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=9242 sclass=netlink_route_socket pig=15157 comm=syz-executor0
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=9242 sclass=netlink_route_socket pig=15172 comm=syz-executor0
sctp: [Deprecated]: syz-executor2 (pid 15451) Use of int in max_burst socket option deprecated.
Use struct sctp_assoc_value instead
sctp: [Deprecated]: syz-executor2 (pid 15471) Use of int in max_burst socket option deprecated.
Use struct sctp_assoc_value instead
dccp_invalid_packet: P.Data Offset(0) too small
dccp_invalid_packet: P.Data Offset(0) too small
sctp: [Deprecated]: syz-executor7 (pid 15761) Use of struct sctp_assoc_value in delayed_ack socket option.
Use struct sctp_sack_info instead
sctp: [Deprecated]: syz-executor7 (pid 15776) Use of struct sctp_assoc_value in delayed_ack socket option.
Use struct sctp_sack_info instead
netlink: 3 bytes leftover after parsing attributes in process `syz-executor7'.
netlink: 3 bytes leftover after parsing attributes in process `syz-executor7'.
device lo entered promiscuous mode
sctp: [Deprecated]: syz-executor0 (pid 16281) Use of struct sctp_assoc_value in delayed_ack socket option.
Use struct sctp_sack_info instead
sctp: [Deprecated]: syz-executor0 (pid 16290) Use of struct sctp_assoc_value in delayed_ack socket option.
Use struct sctp_sack_info instead
device lo entered promiscuous mode
dccp_invalid_packet: P.Data Offset(4) too small
dccp_invalid_packet: P.Data Offset(4) too small