netlink: 5 bytes leftover after parsing attributes in process `syz-executor6'.
netlink: 17 bytes leftover after parsing attributes in process `syz-executor1'.

=============================
WARNING: suspicious RCU usage
4.15.0+ #216 Not tainted
netlink: 17 bytes leftover after parsing attributes in process `syz-executor1'.
-----------------------------
net/tipc/bearer.c:177 suspicious rcu_dereference_protected() usage!

other info that might help us debug this:


rcu_scheduler_active = 2, debug_locks = 1
2 locks held by syz-executor6/25482:
 #0:  (cb_lock){++++}, at: [<000000000966e140>] genl_rcv+0x19/0x40 net/netlink/genetlink.c:634
 #1:  (genl_mutex){+.+.}, at: [<000000001562a9a5>] genl_lock net/netlink/genetlink.c:33 [inline]
 #1:  (genl_mutex){+.+.}, at: [<000000001562a9a5>] genl_rcv_msg+0x115/0x140 net/netlink/genetlink.c:622

stack backtrace:
CPU: 1 PID: 25482 Comm: syz-executor6 Not tainted 4.15.0+ #216
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:17 [inline]
 dump_stack+0x194/0x257 lib/dump_stack.c:53
 lockdep_rcu_suspicious+0x123/0x170 kernel/locking/lockdep.c:4592
 tipc_bearer_find+0x2b4/0x3b0 net/tipc/bearer.c:177
 tipc_nl_compat_link_set+0x329/0x9f0 net/tipc/netlink_compat.c:729
 __tipc_nl_compat_doit net/tipc/netlink_compat.c:288 [inline]
 tipc_nl_compat_doit+0x15b/0x670 net/tipc/netlink_compat.c:335
 tipc_nl_compat_handle net/tipc/netlink_compat.c:1119 [inline]
 tipc_nl_compat_recv+0x1135/0x18f0 net/tipc/netlink_compat.c:1201
 genl_family_rcv_msg+0x7b7/0xfb0 net/netlink/genetlink.c:599
 genl_rcv_msg+0xb2/0x140 net/netlink/genetlink.c:624
 netlink_rcv_skb+0x14b/0x380 net/netlink/af_netlink.c:2442
 genl_rcv+0x28/0x40 net/netlink/genetlink.c:635
 netlink_unicast_kernel net/netlink/af_netlink.c:1308 [inline]
 netlink_unicast+0x4c4/0x6b0 net/netlink/af_netlink.c:1334
 netlink_sendmsg+0xa4a/0xe60 net/netlink/af_netlink.c:1897
 sock_sendmsg_nosec net/socket.c:630 [inline]
 sock_sendmsg+0xca/0x110 net/socket.c:640
 ___sys_sendmsg+0x767/0x8b0 net/socket.c:2046
 __sys_sendmsg+0xe5/0x210 net/socket.c:2080
 C_SYSC_sendmsg net/compat.c:739 [inline]
 compat_SyS_sendmsg+0x2a/0x40 net/compat.c:737
 do_syscall_32_irqs_on arch/x86/entry/common.c:330 [inline]
 do_fast_syscall_32+0x3ee/0xfa1 arch/x86/entry/common.c:392
 entry_SYSENTER_compat+0x54/0x63 arch/x86/entry/entry_64_compat.S:129
RIP: 0023:0xf7f33c79
RSP: 002b:00000000f772f08c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
RAX: ffffffffffffffda RBX: 0000000000000013 RCX: 0000000020003000
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
netlink: 28 bytes leftover after parsing attributes in process `syz-executor1'.
netlink: 28 bytes leftover after parsing attributes in process `syz-executor1'.
netlink: 28 bytes leftover after parsing attributes in process `syz-executor1'.
netlink: 'syz-executor7': attribute type 46 has an invalid length.
netlink: 8 bytes leftover after parsing attributes in process `syz-executor7'.
netlink: 'syz-executor7': attribute type 46 has an invalid length.
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=315 sclass=netlink_route_socket pig=25567 comm=syz-executor0
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=315 sclass=netlink_route_socket pig=25579 comm=syz-executor0
device erspan0 entered promiscuous mode
do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
netlink: 'syz-executor6': attribute type 4 has an invalid length.
bridge0: Invalid MTU 132552 requested, hw max 65535
netlink: 'syz-executor6': attribute type 4 has an invalid length.
bridge0: Invalid MTU 132552 requested, hw max 65535
do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
netlink: 'syz-executor6': attribute type 15 has an invalid length.
netlink: 'syz-executor6': attribute type 15 has an invalid length.
netlink: 'syz-executor6': attribute type 15 has an invalid length.
kauditd_printk_skb: 29 callbacks suppressed
audit: type=1400 audit(1518205880.678:141): avc:  denied  { net_bind_service } for  pid=26055 comm="syz-executor0" capability=10  scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=cap_userns permissive=1
netlink: 'syz-executor6': attribute type 15 has an invalid length.
IPv6: Can't replace route, no match found
device bridge0 entered promiscuous mode
IPv6: Can't replace route, no match found
netlink: 'syz-executor6': attribute type 15 has an invalid length.
netlink: 'syz-executor6': attribute type 15 has an invalid length.
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pig=26340 comm=syz-executor4
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=26341 comm=syz-executor4
audit: type=1400 audit(1518205881.842:142): avc:  denied  { map } for  pid=26382 comm="syz-executor0" path="socket:[74124]" dev="sockfs" ino=74124 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=packet_socket permissive=1
nla_parse: 67 callbacks suppressed
netlink: 5 bytes leftover after parsing attributes in process `syz-executor5'.
netlink: 5 bytes leftover after parsing attributes in process `syz-executor5'.
netlink: 28 bytes leftover after parsing attributes in process `syz-executor5'.
netlink: 11 bytes leftover after parsing attributes in process `syz-executor6'.
openvswitch: netlink: Flow key attr not present in new flow.
netlink: 28 bytes leftover after parsing attributes in process `syz-executor5'.
netlink: 11 bytes leftover after parsing attributes in process `syz-executor6'.
openvswitch: netlink: Flow key attr not present in new flow.
netlink: 4 bytes leftover after parsing attributes in process `syz-executor6'.
netlink: 4 bytes leftover after parsing attributes in process `syz-executor6'.
netlink: 11 bytes leftover after parsing attributes in process `syz-executor5'.
netlink: 11 bytes leftover after parsing attributes in process `syz-executor5'.
sctp: [Deprecated]: syz-executor5 (pid 26879) Use of struct sctp_assoc_value in delayed_ack socket option.
Use struct sctp_sack_info instead
sctp: [Deprecated]: syz-executor5 (pid 26879) Use of struct sctp_assoc_value in delayed_ack socket option.
Use struct sctp_sack_info instead
sctp: [Deprecated]: syz-executor5 (pid 26902) Use of struct sctp_assoc_value in delayed_ack socket option.
Use struct sctp_sack_info instead
sctp: [Deprecated]: syz-executor5 (pid 26935) Use of struct sctp_assoc_value in delayed_ack socket option.
Use struct sctp_sack_info instead
sctp: [Deprecated]: syz-executor5 (pid 26965) Use of struct sctp_assoc_value in delayed_ack socket option.
Use struct sctp_sack_info instead
sctp: [Deprecated]: syz-executor5 (pid 27008) Use of struct sctp_assoc_value in delayed_ack socket option.
Use struct sctp_sack_info instead
sctp: [Deprecated]: syz-executor5 (pid 27029) Use of struct sctp_assoc_value in delayed_ack socket option.
Use struct sctp_sack_info instead
sctp: [Deprecated]: syz-executor5 (pid 27047) Use of struct sctp_assoc_value in delayed_ack socket option.
Use struct sctp_sack_info instead
sctp: [Deprecated]: syz-executor5 (pid 27154) Use of struct sctp_assoc_value in delayed_ack socket option.
Use struct sctp_sack_info instead
sctp: [Deprecated]: syz-executor5 (pid 27181) Use of struct sctp_assoc_value in delayed_ack socket option.
Use struct sctp_sack_info instead
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pig=27207 comm=syz-executor1
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pig=27482 comm=syz-executor4
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pig=27509 comm=syz-executor4
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pig=27526 comm=syz-executor4
validate_nla: 9 callbacks suppressed
netlink: 'syz-executor6': attribute type 4 has an invalid length.
netlink: 'syz-executor6': attribute type 4 has an invalid length.
audit: type=1400 audit(1518205886.935:143): avc:  denied  { map } for  pid=27706 comm="syz-executor0" path="socket:[79129]" dev="sockfs" ino=79129 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_route_socket permissive=1
netlink: 'syz-executor0': attribute type 11 has an invalid length.
netlink: 'syz-executor0': attribute type 11 has an invalid length.
dccp_close: ABORT with 1 bytes unread
netlink: 'syz-executor6': attribute type 46 has an invalid length.
netlink: 'syz-executor6': attribute type 46 has an invalid length.