[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.75' (ECDSA) to the list of known hosts. executing program executing program syzkaller login: [ 70.733077][ T8414] ------------[ cut here ]------------ [ 70.740180][ T8414] refcount_t: decrement hit 0; leaking memory. [ 70.748805][ T8414] WARNING: CPU: 0 PID: 8414 at lib/refcount.c:31 refcount_warn_saturate+0xbf/0x1e0 [ 70.758373][ T8414] Modules linked in: [ 70.762419][ T8414] CPU: 0 PID: 8414 Comm: syz-executor025 Not tainted 5.12.0-rc4-syzkaller #0 [ 70.772068][ T8414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 70.783497][ T8414] RIP: 0010:refcount_warn_saturate+0xbf/0x1e0 [ 70.790744][ T8414] Code: 1d 6a 5a e8 09 31 ff 89 de e8 8d 1a ab fd 84 db 75 e0 e8 d4 13 ab fd 48 c7 c7 a0 e1 c1 89 c6 05 4a 5a e8 09 01 e8 2e 36 fb 04 <0f> 0b eb c4 e8 b8 13 ab fd 0f b6 1d 39 5a e8 09 31 ff 89 de e8 58 [ 70.813375][ T8414] RSP: 0018:ffffc90003646fa0 EFLAGS: 00010282 [ 70.819526][ T8414] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 70.827820][ T8414] RDX: ffff88801fb38000 RSI: ffffffff815c51f5 RDI: fffff520006c8de6 [ 70.835897][ T8414] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000 [ 70.843964][ T8414] R10: ffffffff815bdf8e R11: 0000000000000000 R12: ffff888014870568 [ 70.852023][ T8414] R13: ffff888147f06000 R14: 00000000ffffffff R15: ffffffff8d659b80 [ 70.860080][ T8414] FS: 0000000000646300(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 70.869141][ T8414] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 70.875742][ T8414] CR2: 0000564e168b2138 CR3: 00000000153dd000 CR4: 00000000001506e0 [ 70.883786][ T8414] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 70.891851][ T8414] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 70.899895][ T8414] Call Trace: [ 70.903398][ T8414] ipip6_tunnel_uninit+0x389/0x3f0 [ 70.908780][ T8414] ? ipip6_dellink+0x2d0/0x2d0 [ 70.913576][ T8414] register_netdevice+0xadf/0x1500 [ 70.918770][ T8414] ? netdev_change_features+0xb0/0xb0 [ 70.932318][ T8414] ipip6_tunnel_create+0x29e/0x4e0 [ 70.937529][ T8414] ipip6_newlink+0x137/0x370 [ 70.942138][ T8414] ? ipip6_changelink+0x5b0/0x5b0 [ 70.947276][ T8414] ? alloc_netdev_mqs+0xade/0xe80 [ 70.952319][ T8414] ? rtnl_create_link+0x746/0xae0 [ 70.957703][ T8414] ? ipip6_changelink+0x5b0/0x5b0 [ 70.962781][ T8414] __rtnl_newlink+0x1062/0x1710 [ 70.967761][ T8414] ? rtnl_setlink+0x3c0/0x3c0 [ 70.972746][ T8414] ? find_held_lock+0x2d/0x110 [ 70.977613][ T8414] ? is_bpf_text_address+0xa9/0x160 [ 70.982833][ T8414] ? lock_downgrade+0x6e0/0x6e0 [ 70.987807][ T8414] ? unwind_next_frame+0xec8/0x1ce0 [ 70.993030][ T8414] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 70.999203][ T8414] ? __sanitizer_cov_trace_cmp4+0x1c/0x70 [ 71.004952][ T8414] ? is_bpf_text_address+0xcb/0x160 [ 71.010284][ T8414] ? kernel_text_address+0xbd/0xf0 [ 71.015415][ T8414] ? __kernel_text_address+0x9/0x30 [ 71.020695][ T8414] ? unwind_get_return_address+0x51/0x90 [ 71.027128][ T8414] ? create_prof_cpu_mask+0x20/0x20 [ 71.032667][ T8414] ? arch_stack_walk+0x93/0xe0 [ 71.037572][ T8414] ? fs_reclaim_release+0x9c/0xe0 [ 71.042633][ T8414] ? rcu_read_lock_sched_held+0x3a/0x70 [ 71.048294][ T8414] rtnl_newlink+0x64/0xa0 [ 71.052776][ T8414] ? __rtnl_newlink+0x1710/0x1710 [ 71.058344][ T8414] rtnetlink_rcv_msg+0x44e/0xad0 [ 71.063484][ T8414] ? rtnetlink_put_metrics+0x510/0x510 [ 71.069178][ T8414] netlink_rcv_skb+0x153/0x420 [ 71.073964][ T8414] ? rtnetlink_put_metrics+0x510/0x510 [ 71.079526][ T8414] ? netlink_ack+0xaa0/0xaa0 [ 71.084669][ T8414] ? netlink_deliver_tap+0x227/0xba0 [ 71.090085][ T8414] netlink_unicast+0x533/0x7d0 [ 71.095132][ T8414] ? netlink_attachskb+0x870/0x870 [ 71.100336][ T8414] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 71.106694][ T8414] ? __phys_addr_symbol+0x2c/0x70 [ 71.111847][ T8414] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 71.117931][ T8414] ? __check_object_size+0x171/0x3f0 [ 71.123246][ T8414] netlink_sendmsg+0x856/0xd90 [ 71.128332][ T8414] ? netlink_unicast+0x7d0/0x7d0 [ 71.133300][ T8414] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 71.139683][ T8414] ? netlink_unicast+0x7d0/0x7d0 [ 71.144642][ T8414] sock_sendmsg+0xcf/0x120 [ 71.149187][ T8414] ____sys_sendmsg+0x6e8/0x810 [ 71.153990][ T8414] ? kernel_sendmsg+0x50/0x50 [ 71.158857][ T8414] ? do_recvmmsg+0x6d0/0x6d0 [ 71.163470][ T8414] ? lock_chain_count+0x20/0x20 [ 71.168689][ T8414] ___sys_sendmsg+0xf3/0x170 [ 71.173298][ T8414] ? sendmsg_copy_msghdr+0x160/0x160 [ 71.178683][ T8414] ? __lock_acquire+0x16b3/0x54c0 [ 71.183755][ T8414] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 71.190448][ T8414] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 71.197933][ T8414] ? __fget_light+0x215/0x280 [ 71.202887][ T8414] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 71.209231][ T8414] __sys_sendmsg+0xe5/0x1b0 [ 71.213759][ T8414] ? __sys_sendmsg_sock+0x30/0x30 [ 71.220019][ T8414] ? syscall_enter_from_user_mode+0x27/0x70 [ 71.225960][ T8414] do_syscall_64+0x2d/0x70 [ 71.230553][ T8414] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 71.236647][ T8414] RIP: 0033:0x43fd09 [ 71.240589][ T8414] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 71.260869][ T8414] RSP: 002b:00007ffe26ee4988 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 71.269978][ T8414] RAX: ffffffffffffffda RBX: 0000000000011442 RCX: 000000000043fd09 [ 71.278513][ T8414] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003 [ 71.286596][ T8414] RBP: 0000000000000000 R08: 00007ffe26ee4b28 R09: 00007ffe26ee4b28 [ 71.294593][ T8414] R10: 00007ffe26ee4b28 R11: 0000000000000246 R12: 00007ffe26ee499c [ 71.303268][ T8414] R13: 431bde82d7b634db R14: 00000000004ae018 R15: 0000000000400488 [ 71.312000][ T8414] Kernel panic - not syncing: panic_on_warn set ... [ 71.319133][ T8414] CPU: 0 PID: 8414 Comm: syz-executor025 Not tainted 5.12.0-rc4-syzkaller #0 [ 71.328098][ T8414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 71.338607][ T8414] Call Trace: [ 71.342058][ T8414] dump_stack+0x141/0x1d7 [ 71.346391][ T8414] panic+0x306/0x73d [ 71.350283][ T8414] ? __warn_printk+0xf3/0xf3 [ 71.354890][ T8414] ? __warn.cold+0x1a/0x44 [ 71.359647][ T8414] ? refcount_warn_saturate+0xbf/0x1e0 [ 71.365126][ T8414] __warn.cold+0x35/0x44 [ 71.369384][ T8414] ? refcount_warn_saturate+0xbf/0x1e0 [ 71.374837][ T8414] report_bug+0x1bd/0x210 [ 71.379602][ T8414] handle_bug+0x3c/0x60 [ 71.383772][ T8414] exc_invalid_op+0x14/0x40 [ 71.388288][ T8414] asm_exc_invalid_op+0x12/0x20 [ 71.393141][ T8414] RIP: 0010:refcount_warn_saturate+0xbf/0x1e0 [ 71.399208][ T8414] Code: 1d 6a 5a e8 09 31 ff 89 de e8 8d 1a ab fd 84 db 75 e0 e8 d4 13 ab fd 48 c7 c7 a0 e1 c1 89 c6 05 4a 5a e8 09 01 e8 2e 36 fb 04 <0f> 0b eb c4 e8 b8 13 ab fd 0f b6 1d 39 5a e8 09 31 ff 89 de e8 58 [ 71.418906][ T8414] RSP: 0018:ffffc90003646fa0 EFLAGS: 00010282 [ 71.424970][ T8414] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 71.433465][ T8414] RDX: ffff88801fb38000 RSI: ffffffff815c51f5 RDI: fffff520006c8de6 [ 71.441432][ T8414] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000 [ 71.449492][ T8414] R10: ffffffff815bdf8e R11: 0000000000000000 R12: ffff888014870568 [ 71.457472][ T8414] R13: ffff888147f06000 R14: 00000000ffffffff R15: ffffffff8d659b80 [ 71.465434][ T8414] ? wake_up_klogd.part.0+0x8e/0xd0 [ 71.470849][ T8414] ? vprintk_func+0x95/0x1e0 [ 71.475437][ T8414] ipip6_tunnel_uninit+0x389/0x3f0 [ 71.480541][ T8414] ? ipip6_dellink+0x2d0/0x2d0 [ 71.485311][ T8414] register_netdevice+0xadf/0x1500 [ 71.490416][ T8414] ? netdev_change_features+0xb0/0xb0 [ 71.495784][ T8414] ipip6_tunnel_create+0x29e/0x4e0 [ 71.500886][ T8414] ipip6_newlink+0x137/0x370 [ 71.505806][ T8414] ? ipip6_changelink+0x5b0/0x5b0 [ 71.510834][ T8414] ? alloc_netdev_mqs+0xade/0xe80 [ 71.515876][ T8414] ? rtnl_create_link+0x746/0xae0 [ 71.521384][ T8414] ? ipip6_changelink+0x5b0/0x5b0 [ 71.526406][ T8414] __rtnl_newlink+0x1062/0x1710 [ 71.531351][ T8414] ? rtnl_setlink+0x3c0/0x3c0 [ 71.536037][ T8414] ? find_held_lock+0x2d/0x110 [ 71.541041][ T8414] ? is_bpf_text_address+0xa9/0x160 [ 71.546232][ T8414] ? lock_downgrade+0x6e0/0x6e0 [ 71.551105][ T8414] ? unwind_next_frame+0xec8/0x1ce0 [ 71.556303][ T8414] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 71.562370][ T8414] ? __sanitizer_cov_trace_cmp4+0x1c/0x70 [ 71.568081][ T8414] ? is_bpf_text_address+0xcb/0x160 [ 71.573273][ T8414] ? kernel_text_address+0xbd/0xf0 [ 71.578388][ T8414] ? __kernel_text_address+0x9/0x30 [ 71.583576][ T8414] ? unwind_get_return_address+0x51/0x90 [ 71.589206][ T8414] ? create_prof_cpu_mask+0x20/0x20 [ 71.594415][ T8414] ? arch_stack_walk+0x93/0xe0 [ 71.599220][ T8414] ? fs_reclaim_release+0x9c/0xe0 [ 71.604248][ T8414] ? rcu_read_lock_sched_held+0x3a/0x70 [ 71.609977][ T8414] rtnl_newlink+0x64/0xa0 [ 71.614300][ T8414] ? __rtnl_newlink+0x1710/0x1710 [ 71.619313][ T8414] rtnetlink_rcv_msg+0x44e/0xad0 [ 71.624244][ T8414] ? rtnetlink_put_metrics+0x510/0x510 [ 71.629709][ T8414] netlink_rcv_skb+0x153/0x420 [ 71.634558][ T8414] ? rtnetlink_put_metrics+0x510/0x510 [ 71.640118][ T8414] ? netlink_ack+0xaa0/0xaa0 [ 71.644712][ T8414] ? netlink_deliver_tap+0x227/0xba0 [ 71.650002][ T8414] netlink_unicast+0x533/0x7d0 [ 71.654756][ T8414] ? netlink_attachskb+0x870/0x870 [ 71.659854][ T8414] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 71.666085][ T8414] ? __phys_addr_symbol+0x2c/0x70 [ 71.671194][ T8414] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 71.676901][ T8414] ? __check_object_size+0x171/0x3f0 [ 71.682175][ T8414] netlink_sendmsg+0x856/0xd90 [ 71.686932][ T8414] ? netlink_unicast+0x7d0/0x7d0 [ 71.691860][ T8414] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 71.698559][ T8414] ? netlink_unicast+0x7d0/0x7d0 [ 71.703485][ T8414] sock_sendmsg+0xcf/0x120 [ 71.707891][ T8414] ____sys_sendmsg+0x6e8/0x810 [ 71.712653][ T8414] ? kernel_sendmsg+0x50/0x50 [ 71.717315][ T8414] ? do_recvmmsg+0x6d0/0x6d0 [ 71.721895][ T8414] ? lock_chain_count+0x20/0x20 [ 71.726741][ T8414] ___sys_sendmsg+0xf3/0x170 [ 71.731334][ T8414] ? sendmsg_copy_msghdr+0x160/0x160 [ 71.736638][ T8414] ? __lock_acquire+0x16b3/0x54c0 [ 71.741695][ T8414] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 71.747678][ T8414] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 71.760005][ T8414] ? __fget_light+0x215/0x280 [ 71.764672][ T8414] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 71.770902][ T8414] __sys_sendmsg+0xe5/0x1b0 [ 71.775915][ T8414] ? __sys_sendmsg_sock+0x30/0x30 [ 71.780933][ T8414] ? syscall_enter_from_user_mode+0x27/0x70 [ 71.786820][ T8414] do_syscall_64+0x2d/0x70 [ 71.791226][ T8414] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 71.797569][ T8414] RIP: 0033:0x43fd09 [ 71.801472][ T8414] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 71.821470][ T8414] RSP: 002b:00007ffe26ee4988 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 71.830160][ T8414] RAX: ffffffffffffffda RBX: 0000000000011442 RCX: 000000000043fd09 [ 71.838261][ T8414] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003 [ 71.846516][ T8414] RBP: 0000000000000000 R08: 00007ffe26ee4b28 R09: 00007ffe26ee4b28 [ 71.855910][ T8414] R10: 00007ffe26ee4b28 R11: 0000000000000246 R12: 00007ffe26ee499c [ 71.864570][ T8414] R13: 431bde82d7b634db R14: 00000000004ae018 R15: 0000000000400488 [ 71.873501][ T8414] Kernel Offset: disabled [ 71.877983][ T8414] Rebooting in 86400 seconds..