netlink: 830 bytes leftover after parsing attributes in process `syz.4.25583'.
==================================================================
BUG: KCSAN: data-race in _prb_read_valid / prb_reserve

write to 0xffffffff869211d8 of 88 bytes by task 32430 on cpu 0:
 prb_reserve+0x696/0xaf0 kernel/printk/printk_ringbuffer.c:1635
 vprintk_store+0x56d/0x860 kernel/printk/printk.c:2326
 vprintk_emit+0x178/0x650 kernel/printk/printk.c:2426
 dev_vprintk_emit+0x242/0x2a0 drivers/base/core.c:4917
 dev_printk_emit+0x84/0xb0 drivers/base/core.c:4928
 __netdev_printk+0x35c/0x3e0 net/core/dev.c:12509
 netdev_info+0x9b/0xd0 net/core/dev.c:12564
 nsim_udp_tunnel_unset_port+0x1bd/0x1e0 drivers/net/netdevsim/udp_tunnels.c:64
 udp_tunnel_nic_device_sync_one net/ipv4/udp_tunnel_nic.c:-1 [inline]
 udp_tunnel_nic_device_sync_by_port net/ipv4/udp_tunnel_nic.c:246 [inline]
 __udp_tunnel_nic_device_sync+0x567/0x9c0 net/ipv4/udp_tunnel_nic.c:289
 udp_tunnel_nic_flush+0x21b/0x300 net/ipv4/udp_tunnel_nic.c:670
 udp_tunnel_nic_unregister net/ipv4/udp_tunnel_nic.c:864 [inline]
 udp_tunnel_nic_netdevice_event+0x791/0xc90 net/ipv4/udp_tunnel_nic.c:904
 notifier_call_chain kernel/notifier.c:85 [inline]
 raw_notifier_call_chain+0x6f/0x1b0 kernel/notifier.c:453
 call_netdevice_notifiers_info+0xae/0x100 net/core/dev.c:2230
 call_netdevice_notifiers_extack net/core/dev.c:2268 [inline]
 call_netdevice_notifiers net/core/dev.c:2282 [inline]
 unregister_netdevice_many_notify+0xd9d/0x1690 net/core/dev.c:12077
 unregister_netdevice_many net/core/dev.c:12140 [inline]
 unregister_netdevice_queue+0x1f5/0x220 net/core/dev.c:11984
 unregister_netdevice include/linux/netdevice.h:3379 [inline]
 nsim_destroy+0xf4/0x360 drivers/net/netdevsim/netdev.c:1069
 __nsim_dev_port_del+0xcf/0x110 drivers/net/netdevsim/dev.c:1428
 nsim_dev_port_del_all drivers/net/netdevsim/dev.c:1440 [inline]
 nsim_dev_reload_destroy+0x1a3/0x2c0 drivers/net/netdevsim/dev.c:1661
 nsim_dev_reload_down+0x67/0x80 drivers/net/netdevsim/dev.c:968
 devlink_reload+0xad/0x580 net/devlink/dev.c:461
 devlink_nl_reload_doit+0x772/0x8f0 net/devlink/dev.c:584
 genl_family_rcv_msg_doit+0x140/0x1b0 net/netlink/genetlink.c:1115
 genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]
 genl_rcv_msg+0x422/0x460 net/netlink/genetlink.c:1210
 netlink_rcv_skb+0x120/0x220 net/netlink/af_netlink.c:2534
 genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219
 netlink_unicast_kernel net/netlink/af_netlink.c:1313 [inline]
 netlink_unicast+0x59e/0x670 net/netlink/af_netlink.c:1339
 netlink_sendmsg+0x58b/0x6b0 net/netlink/af_netlink.c:1883
 sock_sendmsg_nosec net/socket.c:712 [inline]
 __sock_sendmsg+0x142/0x180 net/socket.c:727
 ____sys_sendmsg+0x31e/0x4e0 net/socket.c:2566
 ___sys_sendmsg+0x17b/0x1d0 net/socket.c:2620
 __sys_sendmsg net/socket.c:2652 [inline]
 __do_sys_sendmsg net/socket.c:2657 [inline]
 __se_sys_sendmsg net/socket.c:2655 [inline]
 __x64_sys_sendmsg+0xd4/0x160 net/socket.c:2655
 x64_sys_call+0x2999/0x2fb0 arch/x86/include/generated/asm/syscalls_64.h:47
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xd2/0x200 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

read to 0xffffffff869211d8 of 8 bytes by task 32435 on cpu 1:
 desc_read kernel/printk/printk_ringbuffer.c:486 [inline]
 desc_read_finalized_seq kernel/printk/printk_ringbuffer.c:1874 [inline]
 prb_read kernel/printk/printk_ringbuffer.c:1922 [inline]
 _prb_read_valid+0x1c4/0x920 kernel/printk/printk_ringbuffer.c:2113
 prb_read_valid+0x3c/0x60 kernel/printk/printk_ringbuffer.c:2185
 printk_get_next_message+0xc8/0x510 kernel/printk/printk.c:3005
 console_emit_next_record kernel/printk/printk.c:3092 [inline]
 console_flush_all+0x290/0x730 kernel/printk/printk.c:3226
 __console_flush_and_unlock kernel/printk/printk.c:3285 [inline]
 console_unlock+0xa1/0x330 kernel/printk/printk.c:3325
 con_flush_chars+0xb2/0x1b0 drivers/tty/vt/vt.c:3587
 con_write+0x2e/0x40 drivers/tty/vt/vt.c:3517
 do_output_char+0x49a/0x500 drivers/tty/n_tty.c:422
 process_output drivers/tty/n_tty.c:486 [inline]
 n_tty_write+0x85b/0xb10 drivers/tty/n_tty.c:2388
 iterate_tty_write drivers/tty/tty_io.c:1006 [inline]
 file_tty_write+0x38c/0x670 drivers/tty/tty_io.c:1081
 tty_write+0x25/0x30 drivers/tty/tty_io.c:1102
 new_sync_write fs/read_write.c:593 [inline]
 vfs_write+0x4a0/0x8e0 fs/read_write.c:686
 ksys_write+0xda/0x1a0 fs/read_write.c:738
 __do_sys_write fs/read_write.c:749 [inline]
 __se_sys_write fs/read_write.c:746 [inline]
 __x64_sys_write+0x40/0x50 fs/read_write.c:746
 x64_sys_call+0x2cdd/0x2fb0 arch/x86/include/generated/asm/syscalls_64.h:2
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xd2/0x200 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

value changed: 0x00000000000078b5 -> 0x00000000000098b5

Reported by Kernel Concurrency Sanitizer on:
CPU: 1 UID: 0 PID: 32435 Comm: syz.4.25583 Not tainted 6.16.0-rc2-syzkaller-00318-g739a6c93cc75 #0 PREEMPT(voluntary) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
==================================================================