=============================== [ INFO: suspicious RCU usage. ] 4.9.119-g9dc978d #75 Not tainted ------------------------------- net/ipv6/ip6_fib.c:1471 suspicious rcu_dereference_protected() usage! SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=1530 comm=syz-executor1 other info that might help us debug this: rcu_scheduler_active = 2, debug_locks = 0 6 locks held by kworker/u4:1/26423: #0: ("%s""netns"){.+.+.+}, at: [] work_static include/linux/workqueue.h:186 [inline] #0: ("%s""netns"){.+.+.+}, at: [] set_work_data kernel/workqueue.c:617 [inline] #0: ("%s""netns"){.+.+.+}, at: [] set_work_pool_and_clear_pending kernel/workqueue.c:644 [inline] #0: ("%s""netns"){.+.+.+}, at: [] process_one_work+0x6ee/0x1500 kernel/workqueue.c:2085 #1: (net_cleanup_work){+.+.+.}, at: [] process_one_work+0x728/0x1500 kernel/workqueue.c:2089 #2: (net_mutex){+.+.+.}, at: [] cleanup_net+0x13f/0x630 net/core/net_namespace.c:439 #3: (rtnl_mutex){+.+.+.}, at: [] rtnl_lock+0x17/0x20 net/core/rtnetlink.c:70 #4: (rcu_read_lock){......}, at: [] __fib6_clean_all+0x0/0x220 net/ipv6/ip6_fib.c:1703 #5: (&tb->tb6_lock){++--..}, at: [] __fib6_clean_all+0xe0/0x220 net/ipv6/ip6_fib.c:1717 stack backtrace: CPU: 1 PID: 26423 Comm: kworker/u4:1 Not tainted 4.9.119-g9dc978d #75 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Workqueue: netns cleanup_net ffff88019f47f0b8 ffffffff81eb4be9 ffff88019abc8000 0000000000000000 0000000000000002 ffffffff84167780 ffffed0033e8fe66 ffff88019f47f0e8 ffffffff81426330 ffff8801bb020380 ffff88019f47f2e0 ffff8801bb020380 Call Trace: [] __dump_stack lib/dump_stack.c:15 [inline] [] dump_stack+0xc1/0x128 lib/dump_stack.c:51 [] lockdep_rcu_suspicious.cold.48+0x110/0x141 kernel/locking/lockdep.c:4455 [] fib6_del+0x773/0xa20 net/ipv6/ip6_fib.c:1470 [] fib6_clean_node+0x220/0x4c0 net/ipv6/ip6_fib.c:1657 [] fib6_walk_continue+0x3e5/0x640 net/ipv6/ip6_fib.c:1583 [] fib6_walk+0xd9/0x150 net/ipv6/ip6_fib.c:1628 [] fib6_clean_tree+0xd3/0x110 net/ipv6/ip6_fib.c:1702 [] __fib6_clean_all+0xf9/0x220 net/ipv6/ip6_fib.c:1718 [] fib6_clean_all+0x27/0x30 net/ipv6/ip6_fib.c:1729 [] rt6_ifdown+0xa1/0x7f0 net/ipv6/route.c:2716 [] addrconf_ifdown+0xd0/0x10e0 net/ipv6/addrconf.c:3569 [] addrconf_notify+0x7f8/0x2160 net/ipv6/addrconf.c:3493 [] notifier_call_chain+0xb4/0x1d0 kernel/notifier.c:93 [] __raw_notifier_call_chain kernel/notifier.c:394 [inline] [] raw_notifier_call_chain+0x2d/0x40 kernel/notifier.c:401 [] call_netdevice_notifiers_info+0x55/0x70 net/core/dev.c:1647 [] call_netdevice_notifiers net/core/dev.c:1663 [inline] [] dev_close_many+0x252/0x380 net/core/dev.c:1456 [] rollback_registered_many+0x268/0x920 net/core/dev.c:6810 [] unregister_netdevice_many.part.106+0x1b/0x110 net/core/dev.c:7879 [] unregister_netdevice_many net/core/dev.c:7878 [inline] [] default_device_exit_batch+0x353/0x410 net/core/dev.c:8337 [] ops_exit_list.isra.6+0x105/0x160 net/core/net_namespace.c:139 [] cleanup_net+0x321/0x630 net/core/net_namespace.c:473 [] process_one_work+0x7e1/0x1500 kernel/workqueue.c:2092 [] worker_thread+0xd6/0x10a0 kernel/workqueue.c:2226 [] kthread+0x26d/0x300 kernel/kthread.c:211 [] ret_from_fork+0x5c/0x70 arch/x86/entry/entry_64.S:373 binder: 1534:1538 got transaction with invalid offset (0, min 64 max 64) or object. binder: 1534:1538 transaction failed 29201/-22, size 64-24 line 3199 binder_alloc: binder_alloc_mmap_handler: 1534 20001000-20004000 already mapped failed -16 binder: BINDER_SET_CONTEXT_MGR already set binder: 1534:1538 ioctl 40046207 0 returned -16 binder_alloc: 1534: binder_alloc_buf, no vma binder: 1534:1550 transaction failed 29189/-3, size 64-24 line 3136 binder: undelivered TRANSACTION_ERROR: 29189 binder: undelivered TRANSACTION_ERROR: 29201 binder: 1567:1568 got transaction with invalid offset (0, min 64 max 64) or object. binder: 1567:1568 transaction failed 29201/-22, size 64-24 line 3199 binder: undelivered TRANSACTION_ERROR: 29201 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=1529 comm=syz-executor1 binder: 1581:1582 got transaction with invalid offset (0, min 64 max 64) or object. binder: 1581:1582 transaction failed 29201/-22, size 64-24 line 3199 binder: undelivered TRANSACTION_ERROR: 29201 binder: 1589:1591 got transaction with invalid offset (0, min 64 max 64) or object. SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=1594 comm=syz-executor1 binder: BINDER_SET_CONTEXT_MGR already set binder: 1600:1601 ioctl 40046207 0 returned -16 binder: 1600:1601 got transaction with invalid offset (0, min 64 max 64) or object. binder: 1600:1601 transaction failed 29201/-22, size 64-24 line 3199 binder: undelivered TRANSACTION_ERROR: 29201 binder: BINDER_SET_CONTEXT_MGR already set binder: 1616:1617 ioctl 40046207 0 returned -16 binder: 1616:1617 got transaction with invalid offset (0, min 64 max 64) or object. binder: 1616:1617 transaction failed 29201/-22, size 64-24 line 3199 binder: undelivered TRANSACTION_ERROR: 29201 binder: 1589:1591 transaction failed 29201/-22, size 64-24 line 3199 binder: undelivered TRANSACTION_ERROR: 29201 binder: 1626:1628 got transaction with invalid offset (0, min 64 max 64) or object. binder: 1626:1628 transaction failed 29201/-22, size 64-24 line 3199 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=1630 comm=syz-executor1 binder: BINDER_SET_CONTEXT_MGR already set binder: 1631:1634 ioctl 40046207 0 returned -16 binder: undelivered TRANSACTION_ERROR: 29201 binder: 1658:1666 transaction failed 29189/-22, size 64-24 line 3013 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=1661 comm=syz-executor1 binder: undelivered TRANSACTION_ERROR: 29189 binder: 1684:1687 transaction failed 29189/-22, size 64-24 line 3013 binder_alloc: 1676: binder_alloc_buf, no vma binder: 1676:1686 transaction failed 29189/-3, size 64-24 line 3136 binder: undelivered TRANSACTION_ERROR: 29189 binder: undelivered TRANSACTION_ERROR: 29189 binder: 1704:1706 transaction failed 29189/-22, size 64-24 line 3013 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=1712 comm=syz-executor1 binder: 1705:1723 transaction failed 29189/-22, size 64-24 line 3013 binder: undelivered TRANSACTION_ERROR: 29189 binder: undelivered TRANSACTION_ERROR: 29189 binder: 1743:1745 transaction failed 29189/-22, size 64-24 line 3013 binder: undelivered TRANSACTION_ERROR: 29189 binder_alloc: 1741: binder_alloc_buf, no vma binder: 1741:1746 transaction failed 29189/-3, size 64-24 line 3136 binder: BINDER_SET_CONTEXT_MGR already set binder: 1751:1755 ioctl 40046207 0 returned -16 binder_alloc: 1741: binder_alloc_buf, no vma binder: 1751:1755 transaction failed 29189/-3, size 64-24 line 3136 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=1752 comm=syz-executor1 binder_alloc: 1741: binder_alloc_buf, no vma binder: 1758:1760 transaction failed 29189/-3, size 64-24 line 3136 binder: BINDER_SET_CONTEXT_MGR already set binder: 1761:1764 ioctl 40046207 0 returned -16 binder_alloc: 1741: binder_alloc_buf, no vma binder: 1761:1764 transaction failed 29189/-3, size 64-24 line 3136 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=1763 comm=syz-executor2 binder_alloc: 1741: binder_alloc_buf, no vma binder: 1767:1770 transaction failed 29189/-3, size 64-24 line 3136 binder: BINDER_SET_CONTEXT_MGR already set binder: 1736:1747 ioctl 40046207 0 returned -16 binder: undelivered TRANSACTION_ERROR: 29189 binder: undelivered TRANSACTION_ERROR: 29189 binder: undelivered TRANSACTION_ERROR: 29189 binder: undelivered TRANSACTION_ERROR: 29189 binder: undelivered TRANSACTION_ERROR: 29189 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=1774 comm=syz-executor1 binder: 1775:1781 transaction failed 29189/-22, size 64-24 line 3013 binder: undelivered TRANSACTION_ERROR: 29189 binder: 1789:1791 transaction failed 29189/-22, size 64-24 line 3013 binder: undelivered TRANSACTION_ERROR: 29189 binder: 1779:1787 transaction failed 29189/-22, size 64-24 line 3013 binder: 1808:1810 transaction failed 29189/-22, size 64-24 line 3013 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=1806 comm=syz-executor2 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=1799 comm=syz-executor1 binder: 1813:1817 transaction failed 29189/-22, size 64-24 line 3013 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=1820 comm=syz-executor1 binder: undelivered TRANSACTION_ERROR: 29189 binder: undelivered TRANSACTION_ERROR: 29189 binder: undelivered TRANSACTION_ERROR: 29189 binder_alloc: 1849: binder_alloc_buf, no vma SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=1848 comm=syz-executor2 binder: BINDER_SET_CONTEXT_MGR already set binder: 1857:1858 ioctl 40046207 0 returned -16 binder: 1849:1850 transaction failed 29189/-3, size 64-24 line 3136 binder: undelivered TRANSACTION_ERROR: 29189 binder_alloc: 1867: binder_alloc_buf, no vma SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=1866 comm=syz-executor1 binder: 1867:1873 transaction failed 29189/-3, size 64-24 line 3136 binder: undelivered TRANSACTION_ERROR: 29189 binder_alloc: 1886: binder_alloc_buf, no vma binder: 1886:1888 transaction failed 29189/-3, size 64-24 line 3136 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=1889 comm=syz-executor4 binder: BINDER_SET_CONTEXT_MGR already set binder: 1893:1895 ioctl 40046207 0 returned -16 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=1892 comm=syz-executor2 binder: undelivered TRANSACTION_ERROR: 29189 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=1904 comm=syz-executor2 SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=1908 comm=syz-executor4 binder_alloc: 1912: binder_alloc_buf, no vma binder: 1912:1914 transaction failed 29189/-3, size 64-24 line 3136 binder: undelivered TRANSACTION_ERROR: 29189 binder_alloc: 1923: binder_alloc_buf, no vma binder: 1923:1927 transaction failed 29189/-3, size 64-24 line 3136 binder: undelivered TRANSACTION_ERROR: 29189 binder_alloc: 1931: binder_alloc_buf, no vma binder: 1931:1935 transaction failed 29189/-3, size 64-24 line 3136 binder: undelivered TRANSACTION_ERROR: 29189 binder: 1944:1953 transaction failed 29189/-22, size 64-24 line 3013 binder: undelivered TRANSACTION_ERROR: 29189 binder: 1968:1970 transaction failed 29189/-22, size 64-24 line 3013 binder: undelivered TRANSACTION_ERROR: 29189 binder: 1988:1994 transaction failed 29189/-22, size 64-24 line 3013 binder: undelivered TRANSACTION_ERROR: 29189 binder: 2011:2013 got transaction with too large buffer binder: 2011:2013 transaction failed 29201/-22, size 64-24 line 3295 binder: undelivered TRANSACTION_ERROR: 29201 binder: BINDER_SET_CONTEXT_MGR already set binder: 2016:2017 ioctl 40046207 0 returned -16 binder: 2025:2027 got transaction with invalid offsets ptr binder: 2025:2027 transaction failed 29201/-14, size 64-24 line 3164 binder: undelivered TRANSACTION_ERROR: 29201 binder: 2051:2053 got transaction with invalid offsets ptr binder: 2051:2053 transaction failed 29201/-14, size 64-24 line 3164 binder: undelivered TRANSACTION_ERROR: 29201