Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.25' (ECDSA) to the list of known hosts. executing program executing program syzkaller login: [ 71.444304][ T8406] ------------[ cut here ]------------ [ 71.450379][ T8406] refcount_t: decrement hit 0; leaking memory. [ 71.459126][ T8406] WARNING: CPU: 0 PID: 8406 at lib/refcount.c:31 refcount_warn_saturate+0xbf/0x1e0 [ 71.469096][ T8406] Modules linked in: [ 71.473182][ T8406] CPU: 0 PID: 8406 Comm: syz-executor849 Not tainted 5.12.0-rc4-syzkaller #0 [ 71.483146][ T8406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 71.493367][ T8406] RIP: 0010:refcount_warn_saturate+0xbf/0x1e0 [ 71.499581][ T8406] Code: 1d 6a 5a e8 09 31 ff 89 de e8 8d 1a ab fd 84 db 75 e0 e8 d4 13 ab fd 48 c7 c7 a0 e1 c1 89 c6 05 4a 5a e8 09 01 e8 2e 36 fb 04 <0f> 0b eb c4 e8 b8 13 ab fd 0f b6 1d 39 5a e8 09 31 ff 89 de e8 58 [ 71.519687][ T8406] RSP: 0018:ffffc9000168efa0 EFLAGS: 00010282 [ 71.525882][ T8406] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 71.535076][ T8406] RDX: ffff8880297c3880 RSI: ffffffff815c51f5 RDI: fffff520002d1de6 [ 71.543471][ T8406] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000 [ 71.551925][ T8406] R10: ffffffff815bdf8e R11: 0000000000000000 R12: ffff888017000568 [ 71.560032][ T8406] R13: ffff888147917000 R14: 00000000ffffffff R15: ffffffff8d659b80 [ 71.568105][ T8406] FS: 0000000000dba300(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000 [ 71.577144][ T8406] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 71.583763][ T8406] CR2: 00000000200001c0 CR3: 0000000021d9f000 CR4: 00000000001506f0 [ 71.591823][ T8406] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 71.599897][ T8406] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 71.608001][ T8406] Call Trace: [ 71.611337][ T8406] ipip6_tunnel_uninit+0x389/0x3f0 [ 71.616762][ T8406] ? ipip6_dellink+0x2d0/0x2d0 [ 71.621612][ T8406] register_netdevice+0xadf/0x1500 [ 71.626769][ T8406] ? netdev_change_features+0xb0/0xb0 [ 71.632269][ T8406] ipip6_tunnel_create+0x29e/0x4e0 [ 71.637613][ T8406] ipip6_newlink+0x137/0x370 [ 71.642234][ T8406] ? ipip6_changelink+0x5b0/0x5b0 [ 71.647618][ T8406] ? alloc_netdev_mqs+0xade/0xe80 [ 71.652676][ T8406] ? rtnl_create_link+0x746/0xae0 [ 71.659294][ T8406] ? ipip6_changelink+0x5b0/0x5b0 [ 71.664350][ T8406] __rtnl_newlink+0x1062/0x1710 [ 71.669592][ T8406] ? rtnl_setlink+0x3c0/0x3c0 [ 71.674407][ T8406] ? find_held_lock+0x2d/0x110 [ 71.679270][ T8406] ? is_bpf_text_address+0xa9/0x160 [ 71.684513][ T8406] ? lock_downgrade+0x6e0/0x6e0 [ 71.689691][ T8406] ? unwind_next_frame+0xec8/0x1ce0 [ 71.695032][ T8406] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 71.701306][ T8406] ? __sanitizer_cov_trace_cmp4+0x1c/0x70 [ 71.707150][ T8406] ? is_bpf_text_address+0xcb/0x160 [ 71.712379][ T8406] ? kernel_text_address+0xbd/0xf0 [ 71.717711][ T8406] ? __kernel_text_address+0x9/0x30 [ 71.722957][ T8406] ? unwind_get_return_address+0x51/0x90 [ 71.728742][ T8406] ? create_prof_cpu_mask+0x20/0x20 [ 71.734010][ T8406] ? arch_stack_walk+0x93/0xe0 [ 71.739031][ T8406] ? rtnl_newlink+0x46/0xa0 [ 71.743580][ T8406] ? mark_held_locks+0x9f/0xe0 [ 71.748438][ T8406] ? rcu_read_lock_sched_held+0x3a/0x70 [ 71.754543][ T8406] rtnl_newlink+0x64/0xa0 [ 71.759217][ T8406] ? __rtnl_newlink+0x1710/0x1710 [ 71.764275][ T8406] rtnetlink_rcv_msg+0x44e/0xad0 [ 71.769338][ T8406] ? rtnetlink_put_metrics+0x510/0x510 [ 71.774896][ T8406] netlink_rcv_skb+0x153/0x420 [ 71.779974][ T8406] ? rtnetlink_put_metrics+0x510/0x510 [ 71.790173][ T8406] ? netlink_ack+0xaa0/0xaa0 [ 71.794784][ T8406] ? netlink_deliver_tap+0x227/0xba0 [ 71.800442][ T8406] netlink_unicast+0x533/0x7d0 [ 71.805266][ T8406] ? netlink_attachskb+0x870/0x870 [ 71.810578][ T8406] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 71.817276][ T8406] ? __phys_addr_symbol+0x2c/0x70 [ 71.822673][ T8406] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 71.830132][ T8406] ? __check_object_size+0x171/0x3f0 [ 71.835679][ T8406] netlink_sendmsg+0x856/0xd90 [ 71.840681][ T8406] ? netlink_unicast+0x7d0/0x7d0 [ 71.845723][ T8406] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 71.852092][ T8406] ? netlink_unicast+0x7d0/0x7d0 [ 71.857145][ T8406] sock_sendmsg+0xcf/0x120 [ 71.861616][ T8406] ____sys_sendmsg+0x6e8/0x810 [ 71.866402][ T8406] ? kernel_sendmsg+0x50/0x50 [ 71.871399][ T8406] ? do_recvmmsg+0x6d0/0x6d0 [ 71.876106][ T8406] ? lock_chain_count+0x20/0x20 [ 71.881208][ T8406] ___sys_sendmsg+0xf3/0x170 [ 71.885856][ T8406] ? sendmsg_copy_msghdr+0x160/0x160 [ 71.891257][ T8406] ? __lock_acquire+0x16b3/0x54c0 [ 71.896681][ T8406] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 71.903037][ T8406] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 71.910351][ T8406] ? __fget_light+0x215/0x280 [ 71.915076][ T8406] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 71.922571][ T8406] __sys_sendmsg+0xe5/0x1b0 [ 71.927509][ T8406] ? __sys_sendmsg_sock+0x30/0x30 [ 71.932677][ T8406] ? syscall_enter_from_user_mode+0x27/0x70 [ 71.938871][ T8406] do_syscall_64+0x2d/0x70 [ 71.943316][ T8406] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 71.949298][ T8406] RIP: 0033:0x43fd09 [ 71.953232][ T8406] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 71.973178][ T8406] RSP: 002b:00007ffdfb5f1428 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 71.981736][ T8406] RAX: ffffffffffffffda RBX: 0000000000011702 RCX: 000000000043fd09 [ 71.989833][ T8406] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003 [ 71.997962][ T8406] RBP: 0000000000000000 R08: 00007ffdfb5f15c8 R09: 00007ffdfb5f15c8 [ 72.005991][ T8406] R10: 00007ffdfb5f15c8 R11: 0000000000000246 R12: 00007ffdfb5f143c [ 72.014061][ T8406] R13: 431bde82d7b634db R14: 00000000004ae018 R15: 0000000000400488 [ 72.022144][ T8406] Kernel panic - not syncing: panic_on_warn set ... [ 72.028830][ T8406] CPU: 0 PID: 8406 Comm: syz-executor849 Not tainted 5.12.0-rc4-syzkaller #0 [ 72.037588][ T8406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 72.047786][ T8406] Call Trace: [ 72.051193][ T8406] dump_stack+0x141/0x1d7 [ 72.055536][ T8406] panic+0x306/0x73d [ 72.059457][ T8406] ? __warn_printk+0xf3/0xf3 [ 72.064081][ T8406] ? __warn.cold+0x1a/0x44 [ 72.068699][ T8406] ? refcount_warn_saturate+0xbf/0x1e0 [ 72.074200][ T8406] __warn.cold+0x35/0x44 [ 72.078579][ T8406] ? refcount_warn_saturate+0xbf/0x1e0 [ 72.084158][ T8406] report_bug+0x1bd/0x210 [ 72.088580][ T8406] handle_bug+0x3c/0x60 [ 72.092836][ T8406] exc_invalid_op+0x14/0x40 [ 72.097359][ T8406] asm_exc_invalid_op+0x12/0x20 [ 72.102367][ T8406] RIP: 0010:refcount_warn_saturate+0xbf/0x1e0 [ 72.108445][ T8406] Code: 1d 6a 5a e8 09 31 ff 89 de e8 8d 1a ab fd 84 db 75 e0 e8 d4 13 ab fd 48 c7 c7 a0 e1 c1 89 c6 05 4a 5a e8 09 01 e8 2e 36 fb 04 <0f> 0b eb c4 e8 b8 13 ab fd 0f b6 1d 39 5a e8 09 31 ff 89 de e8 58 [ 72.128070][ T8406] RSP: 0018:ffffc9000168efa0 EFLAGS: 00010282 [ 72.134141][ T8406] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 72.142125][ T8406] RDX: ffff8880297c3880 RSI: ffffffff815c51f5 RDI: fffff520002d1de6 [ 72.150113][ T8406] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000 [ 72.158096][ T8406] R10: ffffffff815bdf8e R11: 0000000000000000 R12: ffff888017000568 [ 72.166097][ T8406] R13: ffff888147917000 R14: 00000000ffffffff R15: ffffffff8d659b80 [ 72.174081][ T8406] ? wake_up_klogd.part.0+0x8e/0xd0 [ 72.179285][ T8406] ? vprintk_func+0x95/0x1e0 [ 72.183949][ T8406] ipip6_tunnel_uninit+0x389/0x3f0 [ 72.189126][ T8406] ? ipip6_dellink+0x2d0/0x2d0 [ 72.194020][ T8406] register_netdevice+0xadf/0x1500 [ 72.199448][ T8406] ? netdev_change_features+0xb0/0xb0 [ 72.204853][ T8406] ipip6_tunnel_create+0x29e/0x4e0 [ 72.209988][ T8406] ipip6_newlink+0x137/0x370 [ 72.214598][ T8406] ? ipip6_changelink+0x5b0/0x5b0 [ 72.219624][ T8406] ? alloc_netdev_mqs+0xade/0xe80 [ 72.224658][ T8406] ? rtnl_create_link+0x746/0xae0 [ 72.229695][ T8406] ? ipip6_changelink+0x5b0/0x5b0 [ 72.234722][ T8406] __rtnl_newlink+0x1062/0x1710 [ 72.239596][ T8406] ? rtnl_setlink+0x3c0/0x3c0 [ 72.244285][ T8406] ? find_held_lock+0x2d/0x110 [ 72.249079][ T8406] ? is_bpf_text_address+0xa9/0x160 [ 72.254313][ T8406] ? lock_downgrade+0x6e0/0x6e0 [ 72.259201][ T8406] ? unwind_next_frame+0xec8/0x1ce0 [ 72.264436][ T8406] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 72.270541][ T8406] ? __sanitizer_cov_trace_cmp4+0x1c/0x70 [ 72.276303][ T8406] ? is_bpf_text_address+0xcb/0x160 [ 72.281545][ T8406] ? kernel_text_address+0xbd/0xf0 [ 72.286689][ T8406] ? __kernel_text_address+0x9/0x30 [ 72.291909][ T8406] ? unwind_get_return_address+0x51/0x90 [ 72.297551][ T8406] ? create_prof_cpu_mask+0x20/0x20 [ 72.302786][ T8406] ? arch_stack_walk+0x93/0xe0 [ 72.307707][ T8406] ? rtnl_newlink+0x46/0xa0 [ 72.312256][ T8406] ? mark_held_locks+0x9f/0xe0 [ 72.317067][ T8406] ? rcu_read_lock_sched_held+0x3a/0x70 [ 72.322650][ T8406] rtnl_newlink+0x64/0xa0 [ 72.327012][ T8406] ? __rtnl_newlink+0x1710/0x1710 [ 72.332077][ T8406] rtnetlink_rcv_msg+0x44e/0xad0 [ 72.337071][ T8406] ? rtnetlink_put_metrics+0x510/0x510 [ 72.342586][ T8406] netlink_rcv_skb+0x153/0x420 [ 72.347389][ T8406] ? rtnetlink_put_metrics+0x510/0x510 [ 72.352886][ T8406] ? netlink_ack+0xaa0/0xaa0 [ 72.357505][ T8406] ? netlink_deliver_tap+0x227/0xba0 [ 72.362842][ T8406] netlink_unicast+0x533/0x7d0 [ 72.367639][ T8406] ? netlink_attachskb+0x870/0x870 [ 72.372770][ T8406] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 72.379041][ T8406] ? __phys_addr_symbol+0x2c/0x70 [ 72.384083][ T8406] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 72.389804][ T8406] ? __check_object_size+0x171/0x3f0 [ 72.395113][ T8406] netlink_sendmsg+0x856/0xd90 [ 72.399889][ T8406] ? netlink_unicast+0x7d0/0x7d0 [ 72.404869][ T8406] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 72.411322][ T8406] ? netlink_unicast+0x7d0/0x7d0 [ 72.416282][ T8406] sock_sendmsg+0xcf/0x120 [ 72.420719][ T8406] ____sys_sendmsg+0x6e8/0x810 [ 72.425513][ T8406] ? kernel_sendmsg+0x50/0x50 [ 72.430305][ T8406] ? do_recvmmsg+0x6d0/0x6d0 [ 72.435013][ T8406] ? lock_chain_count+0x20/0x20 [ 72.440026][ T8406] ___sys_sendmsg+0xf3/0x170 [ 72.444663][ T8406] ? sendmsg_copy_msghdr+0x160/0x160 [ 72.450086][ T8406] ? __lock_acquire+0x16b3/0x54c0 [ 72.455125][ T8406] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 72.461113][ T8406] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 72.467379][ T8406] ? __fget_light+0x215/0x280 [ 72.472074][ T8406] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 72.478458][ T8406] __sys_sendmsg+0xe5/0x1b0 [ 72.483014][ T8406] ? __sys_sendmsg_sock+0x30/0x30 [ 72.488164][ T8406] ? syscall_enter_from_user_mode+0x27/0x70 [ 72.494068][ T8406] do_syscall_64+0x2d/0x70 [ 72.498600][ T8406] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 72.504506][ T8406] RIP: 0033:0x43fd09 [ 72.508418][ T8406] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 72.528159][ T8406] RSP: 002b:00007ffdfb5f1428 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 72.536589][ T8406] RAX: ffffffffffffffda RBX: 0000000000011702 RCX: 000000000043fd09 [ 72.544563][ T8406] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003 [ 72.552540][ T8406] RBP: 0000000000000000 R08: 00007ffdfb5f15c8 R09: 00007ffdfb5f15c8 [ 72.560637][ T8406] R10: 00007ffdfb5f15c8 R11: 0000000000000246 R12: 00007ffdfb5f143c [ 72.568780][ T8406] R13: 431bde82d7b634db R14: 00000000004ae018 R15: 0000000000400488 [ 72.577503][ T8406] Kernel Offset: disabled [ 72.581985][ T8406] Rebooting in 86400 seconds..