device syz1 entered promiscuous mode ============================= WARNING: suspicious RCU usage 4.15.0-rc7+ #257 Not tainted ----------------------------- net/ipv6/ip6_fib.c:1707 suspicious rcu_dereference_protected() usage! other info that might help us debug this: rcu_scheduler_active = 2, debug_locks = 1 4 locks held by syz-executor1/1661: #0: (rtnl_mutex){+.+.}, at: [<00000000913983d3>] rtnl_lock+0x17/0x20 net/core/rtnetlink.c:72 #1: (&(&net->ipv6.fib6_gc_lock)->rlock){+.-.}, at: [<00000000f926c3ca>] spin_trylock_bh include/linux/spinlock.h:370 [inline] #1: (&(&net->ipv6.fib6_gc_lock)->rlock){+.-.}, at: [<00000000f926c3ca>] fib6_run_gc+0x2b7/0x3c0 net/ipv6/ip6_fib.c:2013 #2: (rcu_read_lock){....}, at: [<00000000a51e9008>] __fib6_clean_all+0x0/0x3a0 net/ipv6/ip6_fib.c:1565 #3: (&(&tb->tb6_lock)->rlock){+.-.}, at: [<000000007dd7c769>] spin_lock_bh include/linux/spinlock.h:315 [inline] #3: (&(&tb->tb6_lock)->rlock){+.-.}, at: [<000000007dd7c769>] __fib6_clean_all+0x1d0/0x3a0 net/ipv6/ip6_fib.c:1953 stack backtrace: CPU: 1 PID: 1661 Comm: syz-executor1 Not tainted 4.15.0-rc7+ #257 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x194/0x257 lib/dump_stack.c:53 lockdep_rcu_suspicious+0x123/0x170 kernel/locking/lockdep.c:4585 fib6_del+0xcb9/0x11b0 net/ipv6/ip6_fib.c:1706 fib6_clean_node+0x3b0/0x4f0 net/ipv6/ip6_fib.c:1897 fib6_walk_continue+0x46c/0x8a0 net/ipv6/ip6_fib.c:1820 fib6_walk+0x91/0xf0 net/ipv6/ip6_fib.c:1868 fib6_clean_tree+0x1e6/0x340 net/ipv6/ip6_fib.c:1938 __fib6_clean_all+0x1f4/0x3a0 net/ipv6/ip6_fib.c:1954 fib6_clean_all net/ipv6/ip6_fib.c:1965 [inline] fib6_run_gc+0x16b/0x3c0 net/ipv6/ip6_fib.c:2021 ndisc_netdev_event+0x3c2/0x4a0 net/ipv6/ndisc.c:1776 notifier_call_chain+0x136/0x2c0 kernel/notifier.c:93 __raw_notifier_call_chain kernel/notifier.c:394 [inline] raw_notifier_call_chain+0x2d/0x40 kernel/notifier.c:401 call_netdevice_notifiers_info+0x32/0x60 net/core/dev.c:1691 call_netdevice_notifiers net/core/dev.c:1709 [inline] dev_close_many+0x3fb/0x850 net/core/dev.c:1504 rollback_registered_many+0x4d5/0xdf0 net/core/dev.c:7233 rollback_registered+0x1be/0x3c0 net/core/dev.c:7297 unregister_netdevice_queue+0x2e3/0x5d0 net/core/dev.c:8285 unregister_netdevice include/linux/netdevice.h:2462 [inline] __tun_detach+0x1177/0x1550 drivers/net/tun.c:658 tun_detach drivers/net/tun.c:669 [inline] tun_chr_close+0x44/0x60 drivers/net/tun.c:2861 __fput+0x327/0x7e0 fs/file_table.c:210 ____fput+0x15/0x20 fs/file_table.c:244 task_work_run+0x199/0x270 kernel/task_work.c:113 exit_task_work include/linux/task_work.h:22 [inline] do_exit+0x9bb/0x1ad0 kernel/exit.c:865 do_group_exit+0x149/0x400 kernel/exit.c:968 get_signal+0x73f/0x16c0 kernel/signal.c:2335 do_signal+0x90/0x1eb0 arch/x86/kernel/signal.c:809 exit_to_usermode_loop+0x214/0x310 arch/x86/entry/common.c:158 prepare_exit_to_usermode arch/x86/entry/common.c:195 [inline] syscall_return_slowpath+0x490/0x550 arch/x86/entry/common.c:264 entry_SYSCALL_64_fastpath+0x98/0x9a RIP: 0033:0x452ac9 RSP: 002b:00007f558d3fbce8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca RAX: fffffffffffffe00 RBX: 000000000071bf80 RCX: 0000000000452ac9 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000071bf80 RBP: 000000000071bf80 R08: 000000000000049d R09: 000000000071bf58 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 0000000000a2f7ef R14: 00007f558d3fc9c0 R15: 0000000000000002 ============================= WARNING: suspicious RCU usage 4.15.0-rc7+ #257 Not tainted ----------------------------- net/ipv6/ip6_fib.c:1734 suspicious rcu_dereference_protected() usage! other info that might help us debug this: rcu_scheduler_active = 2, debug_locks = 1 4 locks held by syz-executor1/1661: #0: (rtnl_mutex){+.+.}, at: [<00000000913983d3>] rtnl_lock+0x17/0x20 net/core/rtnetlink.c:72 #1: (&(&net->ipv6.fib6_gc_lock)->rlock){+.-.}, at: [<00000000f926c3ca>] spin_trylock_bh include/linux/spinlock.h:370 [inline] #1: (&(&net->ipv6.fib6_gc_lock)->rlock){+.-.}, at: [<00000000f926c3ca>] fib6_run_gc+0x2b7/0x3c0 net/ipv6/ip6_fib.c:2013 #2: (rcu_read_lock){....}, at: [<00000000a51e9008>] __fib6_clean_all+0x0/0x3a0 net/ipv6/ip6_fib.c:1565 #3: (&(&tb->tb6_lock)->rlock){+.-.}, at: [<000000007dd7c769>] spin_lock_bh include/linux/spinlock.h:315 [inline] #3: (&(&tb->tb6_lock)->rlock){+.-.}, at: [<000000007dd7c769>] __fib6_clean_all+0x1d0/0x3a0 net/ipv6/ip6_fib.c:1953 stack backtrace: CPU: 1 PID: 1661 Comm: syz-executor1 Not tainted 4.15.0-rc7+ #257 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x194/0x257 lib/dump_stack.c:53 lockdep_rcu_suspicious+0x123/0x170 kernel/locking/lockdep.c:4585 fib6_del+0x42b/0x11b0 net/ipv6/ip6_fib.c:1733 fib6_clean_node+0x3b0/0x4f0 net/ipv6/ip6_fib.c:1897 fib6_walk_continue+0x46c/0x8a0 net/ipv6/ip6_fib.c:1820 fib6_walk+0x91/0xf0 net/ipv6/ip6_fib.c:1868 fib6_clean_tree+0x1e6/0x340 net/ipv6/ip6_fib.c:1938 __fib6_clean_all+0x1f4/0x3a0 net/ipv6/ip6_fib.c:1954 fib6_clean_all net/ipv6/ip6_fib.c:1965 [inline] fib6_run_gc+0x16b/0x3c0 net/ipv6/ip6_fib.c:2021 ndisc_netdev_event+0x3c2/0x4a0 net/ipv6/ndisc.c:1776 notifier_call_chain+0x136/0x2c0 kernel/notifier.c:93 __raw_notifier_call_chain kernel/notifier.c:394 [inline] raw_notifier_call_chain+0x2d/0x40 kernel/notifier.c:401 call_netdevice_notifiers_info+0x32/0x60 net/core/dev.c:1691 call_netdevice_notifiers net/core/dev.c:1709 [inline] dev_close_many+0x3fb/0x850 net/core/dev.c:1504 rollback_registered_many+0x4d5/0xdf0 net/core/dev.c:7233 rollback_registered+0x1be/0x3c0 net/core/dev.c:7297 unregister_netdevice_queue+0x2e3/0x5d0 net/core/dev.c:8285 unregister_netdevice include/linux/netdevice.h:2462 [inline] __tun_detach+0x1177/0x1550 drivers/net/tun.c:658 tun_detach drivers/net/tun.c:669 [inline] tun_chr_close+0x44/0x60 drivers/net/tun.c:2861 __fput+0x327/0x7e0 fs/file_table.c:210 ____fput+0x15/0x20 fs/file_table.c:244 task_work_run+0x199/0x270 kernel/task_work.c:113 exit_task_work include/linux/task_work.h:22 [inline] do_exit+0x9bb/0x1ad0 kernel/exit.c:865 do_group_exit+0x149/0x400 kernel/exit.c:968 get_signal+0x73f/0x16c0 kernel/signal.c:2335 do_signal+0x90/0x1eb0 arch/x86/kernel/signal.c:809 exit_to_usermode_loop+0x214/0x310 arch/x86/entry/common.c:158 prepare_exit_to_usermode arch/x86/entry/common.c:195 [inline] syscall_return_slowpath+0x490/0x550 arch/x86/entry/common.c:264 entry_SYSCALL_64_fastpath+0x98/0x9a RIP: 0033:0x452ac9 RSP: 002b:00007f558d3fbce8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca RAX: fffffffffffffe00 RBX: 000000000071bf80 RCX: 0000000000452ac9 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000071bf80 RBP: 000000000071bf80 R08: 000000000000049d R09: 000000000071bf58 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 0000000000a2f7ef R14: 00007f558d3fc9c0 R15: 0000000000000002 ============================= WARNING: suspicious RCU usage 4.15.0-rc7+ #257 Not tainted ----------------------------- net/ipv6/ip6_fib.c:1644 suspicious rcu_dereference_protected() usage! other info that might help us debug this: rcu_scheduler_active = 2, debug_locks = 1 4 locks held by syz-executor1/1661: #0: (rtnl_mutex){+.+.}, at: [<00000000913983d3>] rtnl_lock+0x17/0x20 net/core/rtnetlink.c:72 #1: (&(&net->ipv6.fib6_gc_lock)->rlock){+.-.}, at: [<00000000f926c3ca>] spin_trylock_bh include/linux/spinlock.h:370 [inline] #1: (&(&net->ipv6.fib6_gc_lock)->rlock){+.-.}, at: [<00000000f926c3ca>] fib6_run_gc+0x2b7/0x3c0 net/ipv6/ip6_fib.c:2013 #2: (rcu_read_lock){....}, at: [<00000000a51e9008>] __fib6_clean_all+0x0/0x3a0 net/ipv6/ip6_fib.c:1565 #3: (&(&tb->tb6_lock)->rlock){+.-.}, at: [<000000007dd7c769>] spin_lock_bh include/linux/spinlock.h:315 [inline] #3: (&(&tb->tb6_lock)->rlock){+.-.}, at: [<000000007dd7c769>] __fib6_clean_all+0x1d0/0x3a0 net/ipv6/ip6_fib.c:1953 stack backtrace: CPU: 1 PID: 1661 Comm: syz-executor1 Not tainted 4.15.0-rc7+ #257 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x194/0x257 lib/dump_stack.c:53 lockdep_rcu_suspicious+0x123/0x170 kernel/locking/lockdep.c:4585 fib6_del_route net/ipv6/ip6_fib.c:1643 [inline] fib6_del+0xd27/0x11b0 net/ipv6/ip6_fib.c:1736 fib6_clean_node+0x3b0/0x4f0 net/ipv6/ip6_fib.c:1897 fib6_walk_continue+0x46c/0x8a0 net/ipv6/ip6_fib.c:1820 fib6_walk+0x91/0xf0 net/ipv6/ip6_fib.c:1868 fib6_clean_tree+0x1e6/0x340 net/ipv6/ip6_fib.c:1938 __fib6_clean_all+0x1f4/0x3a0 net/ipv6/ip6_fib.c:1954 fib6_clean_all net/ipv6/ip6_fib.c:1965 [inline] fib6_run_gc+0x16b/0x3c0 net/ipv6/ip6_fib.c:2021 ndisc_netdev_event+0x3c2/0x4a0 net/ipv6/ndisc.c:1776 notifier_call_chain+0x136/0x2c0 kernel/notifier.c:93 __raw_notifier_call_chain kernel/notifier.c:394 [inline] raw_notifier_call_chain+0x2d/0x40 kernel/notifier.c:401 call_netdevice_notifiers_info+0x32/0x60 net/core/dev.c:1691 call_netdevice_notifiers net/core/dev.c:1709 [inline] dev_close_many+0x3fb/0x850 net/core/dev.c:1504 rollback_registered_many+0x4d5/0xdf0 net/core/dev.c:7233 rollback_registered+0x1be/0x3c0 net/core/dev.c:7297 unregister_netdevice_queue+0x2e3/0x5d0 net/core/dev.c:8285 unregister_netdevice include/linux/netdevice.h:2462 [inline] __tun_detach+0x1177/0x1550 drivers/net/tun.c:658 tun_detach drivers/net/tun.c:669 [inline] tun_chr_close+0x44/0x60 drivers/net/tun.c:2861 __fput+0x327/0x7e0 fs/file_table.c:210 ____fput+0x15/0x20 fs/file_table.c:244 task_work_run+0x199/0x270 kernel/task_work.c:113 exit_task_work include/linux/task_work.h:22 [inline] do_exit+0x9bb/0x1ad0 kernel/exit.c:865 do_group_exit+0x149/0x400 kernel/exit.c:968 get_signal+0x73f/0x16c0 kernel/signal.c:2335 do_signal+0x90/0x1eb0 arch/x86/kernel/signal.c:809 exit_to_usermode_loop+0x214/0x310 arch/x86/entry/common.c:158 prepare_exit_to_usermode arch/x86/entry/common.c:195 [inline] syscall_return_slowpath+0x490/0x550 arch/x86/entry/common.c:264 entry_SYSCALL_64_fastpath+0x98/0x9a RIP: 0033:0x452ac9 RSP: 002b:00007f558d3fbce8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca RAX: fffffffffffffe00 RBX: 000000000071bf80 RCX: 0000000000452ac9 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000071bf80 RBP: 000000000071bf80 R08: 000000000000049d R09: 000000000071bf58 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 0000000000a2f7ef R14: 00007f558d3fc9c0 R15: 0000000000000002 ============================= WARNING: suspicious RCU usage 4.15.0-rc7+ #257 Not tainted ----------------------------- net/ipv6/ip6_fib.c:1681 suspicious rcu_dereference_protected() usage! other info that might help us debug this: rcu_scheduler_active = 2, debug_locks = 1 5 locks held by syz-executor1/1661: #0: (rtnl_mutex){+.+.}, at: [<00000000913983d3>] rtnl_lock+0x17/0x20 net/core/rtnetlink.c:72 #1: (&(&net->ipv6.fib6_gc_lock)->rlock){+.-.}, at: [<00000000f926c3ca>] spin_trylock_bh include/linux/spinlock.h:370 [inline] #1: (&(&net->ipv6.fib6_gc_lock)->rlock){+.-.}, at: [<00000000f926c3ca>] fib6_run_gc+0x2b7/0x3c0 net/ipv6/ip6_fib.c:2013 #2: (rcu_read_lock){....}, at: [<00000000a51e9008>] __fib6_clean_all+0x0/0x3a0 net/ipv6/ip6_fib.c:1565 #3: (&(&tb->tb6_lock)->rlock){+.-.}, at: [<000000007dd7c769>] spin_lock_bh include/linux/spinlock.h:315 [inline] #3: (&(&tb->tb6_lock)->rlock){+.-.}, at: [<000000007dd7c769>] __fib6_clean_all+0x1d0/0x3a0 net/ipv6/ip6_fib.c:1953 #4: (&net->ipv6.fib6_walker_lock){++-.}, at: [<00000000b5e00b76>] fib6_del_route net/ipv6/ip6_fib.c:1676 [inline] #4: (&net->ipv6.fib6_walker_lock){++-.}, at: [<00000000b5e00b76>] fib6_del+0x941/0x11b0 net/ipv6/ip6_fib.c:1736 stack backtrace: CPU: 1 PID: 1661 Comm: syz-executor1 Not tainted 4.15.0-rc7+ #257 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:17 [inline] dump_stack+0x194/0x257 lib/dump_stack.c:53 lockdep_rcu_suspicious+0x123/0x170 kernel/locking/lockdep.c:4585 fib6_del_route net/ipv6/ip6_fib.c:1680 [inline] fib6_del+0xec2/0x11b0 net/ipv6/ip6_fib.c:1736 fib6_clean_node+0x3b0/0x4f0 net/ipv6/ip6_fib.c:1897 fib6_walk_continue+0x46c/0x8a0 net/ipv6/ip6_fib.c:1820 fib6_walk+0x91/0xf0 net/ipv6/ip6_fib.c:1868 fib6_clean_tree+0x1e6/0x340 net/ipv6/ip6_fib.c:1938 __fib6_clean_all+0x1f4/0x3a0 net/ipv6/ip6_fib.c:1954 fib6_clean_all net/ipv6/ip6_fib.c:1965 [inline] fib6_run_gc+0x16b/0x3c0 net/ipv6/ip6_fib.c:2021 ndisc_netdev_event+0x3c2/0x4a0 net/ipv6/ndisc.c:1776 notifier_call_chain+0x136/0x2c0 kernel/notifier.c:93 __raw_notifier_call_chain kernel/notifier.c:394 [inline] raw_notifier_call_chain+0x2d/0x40 kernel/notifier.c:401 call_netdevice_notifiers_info+0x32/0x60 net/core/dev.c:1691 call_netdevice_notifiers net/core/dev.c:1709 [inline] dev_close_many+0x3fb/0x850 net/core/dev.c:1504 rollback_registered_many+0x4d5/0xdf0 net/core/dev.c:7233 rollback_registered+0x1be/0x3c0 net/core/dev.c:7297 unregister_netdevice_queue+0x2e3/0x5d0 net/core/dev.c:8285 unregister_netdevice include/linux/netdevice.h:2462 [inline] __tun_detach+0x1177/0x1550 drivers/net/tun.c:658 tun_detach drivers/net/tun.c:669 [inline] tun_chr_close+0x44/0x60 drivers/net/tun.c:2861 __fput+0x327/0x7e0 fs/file_table.c:210 ____fput+0x15/0x20 fs/file_table.c:244 task_work_run+0x199/0x270 kernel/task_work.c:113 exit_task_work include/linux/task_work.h:22 [inline] do_exit+0x9bb/0x1ad0 kernel/exit.c:865 do_group_exit+0x149/0x400 kernel/exit.c:968 get_signal+0x73f/0x16c0 kernel/signal.c:2335 do_signal+0x90/0x1eb0 arch/x86/kernel/signal.c:809 exit_to_usermode_loop+0x214/0x310 arch/x86/entry/common.c:158 prepare_exit_to_usermode arch/x86/entry/common.c:195 [inline] syscall_return_slowpath+0x490/0x550 arch/x86/entry/common.c:264 entry_SYSCALL_64_fastpath+0x98/0x9a RIP: 0033:0x452ac9 RSP: 002b:00007f558d3fbce8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca RAX: fffffffffffffe00 RBX: 000000000071bf80 RCX: 0000000000452ac9 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000071bf80 RBP: 000000000071bf80 R08: 000000000000049d R09: 000000000071bf58 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 0000000000a2f7ef R14: 00007f558d3fc9c0 R15: 0000000000000002 kauditd_printk_skb: 94 callbacks suppressed audit: type=1326 audit(1515650698.022:3136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=1722 comm="syz-executor2" exe="/root/syz-executor2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x452ac9 code=0x7ffc0000 audit: type=1326 audit(1515650698.022:3137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=1722 comm="syz-executor2" exe="/root/syz-executor2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x452ac9 code=0x7ffc0000 audit: type=1326 audit(1515650698.023:3138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=1722 comm="syz-executor2" exe="/root/syz-executor2" sig=0 arch=c000003e syscall=68 compat=0 ip=0x452ac9 code=0x7ffc0000 audit: type=1326 audit(1515650698.024:3139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=1722 comm="syz-executor2" exe="/root/syz-executor2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x452ac9 code=0x7ffc0000 audit: type=1326 audit(1515650698.024:3140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=1722 comm="syz-executor2" exe="/root/syz-executor2" sig=0 arch=c000003e syscall=71 compat=0 ip=0x452ac9 code=0x7ffc0000 audit: type=1326 audit(1515650698.026:3141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=1722 comm="syz-executor2" exe="/root/syz-executor2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x452ac9 code=0x7ffc0000 audit: type=1326 audit(1515650698.028:3142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=1722 comm="syz-executor2" exe="/root/syz-executor2" sig=0 arch=c000003e syscall=298 compat=0 ip=0x452ac9 code=0x7ffc0000 audit: type=1326 audit(1515650698.081:3143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=1722 comm="syz-executor2" exe="/root/syz-executor2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x452ac9 code=0x7ffc0000 audit: type=1326 audit(1515650698.081:3144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=1722 comm="syz-executor2" exe="/root/syz-executor2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x452ac9 code=0x7ffc0000 audit: type=1326 audit(1515650698.098:3145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=1722 comm="syz-executor2" exe="/root/syz-executor2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x452ac9 code=0x7ffc0000 x86/PAT: syz-executor1:1799 map pfn RAM range req write-combining for [mem 0x1a0ea0000-0x1a0ea1fff], got write-back QAT: Invalid ioctl QAT: Invalid ioctl QAT: Invalid ioctl QAT: Invalid ioctl QAT: Invalid ioctl QAT: Invalid ioctl QAT: Invalid ioctl x86/PAT: syz-executor1:1799 map pfn RAM range req write-combining for [mem 0x1a57f0000-0x1a57f1fff], got write-back SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pig=2038 comm=syz-executor0 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pig=2038 comm=syz-executor0 netlink: 11 bytes leftover after parsing attributes in process `syz-executor6'. sctp: [Deprecated]: syz-executor4 (pid 2115) Use of struct sctp_assoc_value in delayed_ack socket option. Use struct sctp_sack_info instead sctp: [Deprecated]: syz-executor4 (pid 2115) Use of struct sctp_assoc_value in delayed_ack socket option. Use struct sctp_sack_info instead netlink: 11 bytes leftover after parsing attributes in process `syz-executor6'. device eql entered promiscuous mode netlink: 'syz-executor5': attribute type 1 has an invalid length. netlink: 'syz-executor5': attribute type 1 has an invalid length. program syz-executor5 is using a deprecated SCSI ioctl, please convert it to SG_IO netlink: 3 bytes leftover after parsing attributes in process `syz-executor2'. netlink: 3 bytes leftover after parsing attributes in process `syz-executor2'. netlink: 3 bytes leftover after parsing attributes in process `syz-executor2'. netlink: 3 bytes leftover after parsing attributes in process `syz-executor2'. netlink: 3 bytes leftover after parsing attributes in process `syz-executor2'. netlink: 3 bytes leftover after parsing attributes in process `syz-executor2'. netlink: 3 bytes leftover after parsing attributes in process `syz-executor2'. netlink: 3 bytes leftover after parsing attributes in process `syz-executor2'. binder_alloc: 2433: binder_alloc_buf, no vma binder: 2433:2441 transaction failed 29189/-3, size 40-8 line 2903 binder: 2433:2452 BC_CLEAR_DEATH_NOTIFICATION invalid ref 0 binder: 2433:2452 Acquire 1 refcount change on invalid ref 4 ret -22 binder: 2433:2452 got reply transaction with no transaction stack binder: 2433:2452 transaction failed 29201/-71, size 0-0 line 2703 binder: BINDER_SET_CONTEXT_MGR already set binder: 2433:2466 ioctl 40046207 0 returned -16 binder_alloc: 2433: binder_alloc_buf, no vma binder: 2433:2452 transaction failed 29189/-3, size 40-8 line 2903 binder: 2433:2466 BC_CLEAR_DEATH_NOTIFICATION invalid ref 0 binder: 2433:2466 Acquire 1 refcount change on invalid ref 4 ret -22 binder: 2433:2466 got reply transaction with no transaction stack binder: 2433:2466 transaction failed 29201/-71, size 0-0 line 2703 binder: undelivered TRANSACTION_ERROR: 29189 binder: undelivered TRANSACTION_ERROR: 29201 binder: undelivered TRANSACTION_ERROR: 29189 binder: undelivered TRANSACTION_ERROR: 29201 device eql entered promiscuous mode binder: 2709:2712 ERROR: BC_REGISTER_LOOPER called without request binder: 2709:2723 ERROR: BC_REGISTER_LOOPER called without request SELinux: unrecognized netlink message: protocol=0 nlmsg_type=6368 sclass=netlink_route_socket pig=2780 comm=syz-executor0 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=6368 sclass=netlink_route_socket pig=2780 comm=syz-executor0 kauditd_printk_skb: 120 callbacks suppressed audit: type=1326 audit(1515650703.207:3266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=2830 comm="syz-executor4" exe="/root/syz-executor4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x452ac9 code=0x7ffc0000 audit: type=1326 audit(1515650703.215:3267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=2830 comm="syz-executor4" exe="/root/syz-executor4" sig=0 arch=c000003e syscall=88 compat=0 ip=0x452ac9 code=0x7ffc0000 audit: type=1326 audit(1515650703.215:3268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=2830 comm="syz-executor4" exe="/root/syz-executor4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x452ac9 code=0x7ffc0000 audit: type=1326 audit(1515650703.215:3269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=2830 comm="syz-executor4" exe="/root/syz-executor4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x452ac9 code=0x7ffc0000 audit: type=1326 audit(1515650703.249:3270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=2830 comm="syz-executor4" exe="/root/syz-executor4" sig=0 arch=c000003e syscall=265 compat=0 ip=0x452ac9 code=0x7ffc0000 audit: type=1326 audit(1515650703.249:3271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=2830 comm="syz-executor4" exe="/root/syz-executor4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x452ac9 code=0x7ffc0000 audit: type=1326 audit(1515650703.249:3272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=2830 comm="syz-executor4" exe="/root/syz-executor4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x452ac9 code=0x7ffc0000 audit: type=1326 audit(1515650703.250:3273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=2830 comm="syz-executor4" exe="/root/syz-executor4" sig=0 arch=c000003e syscall=54 compat=0 ip=0x452ac9 code=0x7ffc0000 audit: type=1326 audit(1515650703.250:3274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=2830 comm="syz-executor4" exe="/root/syz-executor4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x452ac9 code=0x7ffc0000 audit: type=1326 audit(1515650703.250:3275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 pid=2830 comm="syz-executor4" exe="/root/syz-executor4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x452ac9 code=0x7ffc0000 binder: 2885 RLIMIT_NICE not set binder_alloc: 2876: binder_alloc_buf, no vma binder: 2876:2897 transaction failed 29189/-3, size 0-0 line 2903 binder: BINDER_SET_CONTEXT_MGR already set binder: 2876:2897 ioctl 40046207 0 returned -16 binder_alloc: 2876: binder_alloc_buf, no vma binder: 2876:2915 transaction failed 29189/-3, size 0-0 line 2903 binder: undelivered TRANSACTION_ERROR: 29189 binder: undelivered TRANSACTION_ERROR: 29189