IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE IPv6: NLM_F_CREATE should be set when creating new route IPv6: NLM_F_CREATE should be set when creating new route ------------[ cut here ]------------ WARNING: CPU: 1 PID: 32673 at drivers/net/netdevsim/fib.c:831 nsim_fib6_event_init drivers/net/netdevsim/fib.c:831 [inline] WARNING: CPU: 1 PID: 32673 at drivers/net/netdevsim/fib.c:831 nsim_fib6_prepare_event drivers/net/netdevsim/fib.c:947 [inline] WARNING: CPU: 1 PID: 32673 at drivers/net/netdevsim/fib.c:831 nsim_fib_event_schedule_work drivers/net/netdevsim/fib.c:1003 [inline] WARNING: CPU: 1 PID: 32673 at drivers/net/netdevsim/fib.c:831 nsim_fib_event_nb+0x3a4/0x474 drivers/net/netdevsim/fib.c:1043 Modules linked in: CPU: 1 UID: 0 PID: 32673 Comm: syz.0.9954 Not tainted syzkaller #0 PREEMPT Hardware name: linux,dummy-virt (DT) pstate: 81402009 (Nzcv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--) pc : nsim_fib6_event_init drivers/net/netdevsim/fib.c:831 [inline] pc : nsim_fib6_prepare_event drivers/net/netdevsim/fib.c:947 [inline] pc : nsim_fib_event_schedule_work drivers/net/netdevsim/fib.c:1003 [inline] pc : nsim_fib_event_nb+0x3a4/0x474 drivers/net/netdevsim/fib.c:1043 lr : kmalloc_noprof include/linux/slab.h:909 [inline] lr : kmalloc_array_noprof include/linux/slab.h:948 [inline] lr : nsim_fib6_event_init drivers/net/netdevsim/fib.c:810 [inline] lr : nsim_fib6_prepare_event drivers/net/netdevsim/fib.c:947 [inline] lr : nsim_fib_event_schedule_work drivers/net/netdevsim/fib.c:1003 [inline] lr : nsim_fib_event_nb+0x118/0x474 drivers/net/netdevsim/fib.c:1043 sp : ffff80008acdb560 x29: ffff80008acdb560 x28: f2f0000006521200 x27: 0000000000000001 x26: f3f0000004b17140 x25: f7f0000006520e00 x24: 0000000000000001 x23: fbf0000004a1aea0 x22: f0f000000a5a5800 x21: f7f0000006520e00 x20: ffff80008acdb658 x19: 0000000000000001 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000ffffc696bc38 x14: 000000000000018e x13: 0000000000000000 x12: ffff800082911258 x11: 00000000000000c0 x10: aec3a6d76c46414f x9 : 0000000000000920 x8 : 00000000ffff8000 x7 : dead000000000100 x6 : 000000000000001c x5 : 0000000000000002 x4 : 0000000000003b80 x3 : 0000000000000000 x2 : 0000000000000003 x1 : 0000000000000002 x0 : f2f000000652122c Call trace: nsim_fib6_event_init drivers/net/netdevsim/fib.c:831 [inline] (P) nsim_fib6_prepare_event drivers/net/netdevsim/fib.c:947 [inline] (P) nsim_fib_event_schedule_work drivers/net/netdevsim/fib.c:1003 [inline] (P) nsim_fib_event_nb+0x3a4/0x474 drivers/net/netdevsim/fib.c:1043 (P) notifier_call_chain kernel/notifier.c:85 [inline] atomic_notifier_call_chain+0x60/0x90 kernel/notifier.c:223 call_fib_notifiers+0x48/0x70 net/core/fib_notifier.c:35 call_fib6_notifiers+0x18/0x24 net/ipv6/fib6_notifier.c:22 call_fib6_multipath_entry_notifiers+0x48/0x70 net/ipv6/ip6_fib.c:425 ip6_route_multipath_add+0x56c/0x7d0 net/ipv6/route.c:5527 inet6_rtm_newroute+0x74/0xd8 net/ipv6/route.c:5649 rtnetlink_rcv_msg+0x304/0x398 net/core/rtnetlink.c:6946 netlink_rcv_skb+0x5c/0x128 net/netlink/af_netlink.c:2552 rtnetlink_rcv+0x18/0x24 net/core/rtnetlink.c:6973 netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline] netlink_unicast+0x1e4/0x314 net/netlink/af_netlink.c:1346 netlink_sendmsg+0x194/0x3fc net/netlink/af_netlink.c:1896 sock_sendmsg_nosec net/socket.c:714 [inline] __sock_sendmsg+0x54/0x60 net/socket.c:729 ____sys_sendmsg+0x234/0x29c net/socket.c:2614 ___sys_sendmsg+0xac/0x100 net/socket.c:2668 __sys_sendmsg+0x98/0xf8 net/socket.c:2700 __do_sys_sendmsg net/socket.c:2705 [inline] __se_sys_sendmsg net/socket.c:2703 [inline] __arm64_sys_sendmsg+0x24/0x30 net/socket.c:2703 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x48/0x110 arch/arm64/kernel/syscall.c:49 el0_svc_common.constprop.0+0x40/0xe0 arch/arm64/kernel/syscall.c:132 do_el0_svc+0x1c/0x28 arch/arm64/kernel/syscall.c:151 el0_svc+0x34/0x10c arch/arm64/kernel/entry-common.c:879 el0t_64_sync_handler+0xa0/0xe4 arch/arm64/kernel/entry-common.c:898 el0t_64_sync+0x1a4/0x1a8 arch/arm64/kernel/entry.S:596 ---[ end trace 0000000000000000 ]---