[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.214' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 71.806570][ T8412] netlink: 24 bytes leftover after parsing attributes in process `syz-executor682'. [ 71.840298][ T8412] ------------[ cut here ]------------ [ 71.845809][ T8412] refcount_t: decrement hit 0; leaking memory. [ 71.857952][ T8412] WARNING: CPU: 0 PID: 8412 at lib/refcount.c:31 refcount_warn_saturate+0xbf/0x1e0 [ 71.868433][ T8412] Modules linked in: [ 71.873427][ T8412] CPU: 0 PID: 8412 Comm: syz-executor682 Not tainted 5.12.0-rc4-syzkaller #0 [ 71.882576][ T8412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 71.893005][ T8412] RIP: 0010:refcount_warn_saturate+0xbf/0x1e0 [ 71.899128][ T8412] Code: 1d 6a 5a e8 09 31 ff 89 de e8 8d 1a ab fd 84 db 75 e0 e8 d4 13 ab fd 48 c7 c7 a0 e1 c1 89 c6 05 4a 5a e8 09 01 e8 2e 36 fb 04 <0f> 0b eb c4 e8 b8 13 ab fd 0f b6 1d 39 5a e8 09 31 ff 89 de e8 58 [ 71.919058][ T8412] RSP: 0018:ffffc900093cefd0 EFLAGS: 00010282 [ 71.925285][ T8412] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 71.933431][ T8412] RDX: ffff888020898000 RSI: ffffffff815c51f5 RDI: fffff52001279dec [ 71.941552][ T8412] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000 [ 71.949681][ T8412] R10: ffffffff815bdf8e R11: 0000000000000000 R12: ffff888018dda568 [ 71.957685][ T8412] R13: ffff888018ddac00 R14: ffff888147ba5800 R15: ffffffff8d659b80 [ 71.965776][ T8412] FS: 0000000001a0d300(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 71.975052][ T8412] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 71.981920][ T8412] CR2: 000055fd52caad9f CR3: 0000000025ca6000 CR4: 00000000001506e0 [ 71.990217][ T8412] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 71.998257][ T8412] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 72.007674][ T8412] Call Trace: [ 72.011119][ T8412] ip6gre_tunnel_uninit+0x3d7/0x440 [ 72.016351][ T8412] ? ip6erspan_tunnel_uninit+0x3f0/0x3f0 [ 72.022320][ T8412] register_netdevice+0xadf/0x1500 [ 72.027489][ T8412] ? netdev_change_features+0xb0/0xb0 [ 72.033062][ T8412] ? memset+0x20/0x40 [ 72.037074][ T8412] ip6gre_newlink_common.constprop.0+0x158/0x410 [ 72.043505][ T8412] ? skb_tunnel_info_txcheck+0x370/0x370 [ 72.049169][ T8412] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 72.055632][ T8412] ? ip6gre_tunnel_find+0x483/0x640 [ 72.061005][ T8412] ip6gre_newlink+0x275/0x7a0 [ 72.065758][ T8412] ? ip6erspan_newlink+0x790/0x790 [ 72.071095][ T8412] __rtnl_newlink+0x1062/0x1710 [ 72.075983][ T8412] ? rtnl_setlink+0x3c0/0x3c0 [ 72.080844][ T8412] ? find_held_lock+0x2d/0x110 [ 72.085651][ T8412] ? is_bpf_text_address+0xa9/0x160 [ 72.091063][ T8412] ? lock_downgrade+0x6e0/0x6e0 [ 72.095958][ T8412] ? unwind_next_frame+0xec8/0x1ce0 [ 72.101273][ T8412] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 72.107418][ T8412] ? __sanitizer_cov_trace_cmp4+0x1c/0x70 [ 72.113283][ T8412] ? is_bpf_text_address+0xcb/0x160 [ 72.118504][ T8412] ? kernel_text_address+0xbd/0xf0 [ 72.123708][ T8412] ? __kernel_text_address+0x9/0x30 [ 72.128944][ T8412] ? unwind_get_return_address+0x51/0x90 [ 72.135663][ T8412] ? create_prof_cpu_mask+0x20/0x20 [ 72.141186][ T8412] ? arch_stack_walk+0x93/0xe0 [ 72.146023][ T8412] ? fs_reclaim_release+0x9c/0xe0 [ 72.151197][ T8412] ? rcu_read_lock_sched_held+0x3a/0x70 [ 72.156786][ T8412] rtnl_newlink+0x64/0xa0 [ 72.161191][ T8412] ? __rtnl_newlink+0x1710/0x1710 [ 72.166239][ T8412] rtnetlink_rcv_msg+0x44e/0xad0 [ 72.171307][ T8412] ? rtnetlink_put_metrics+0x510/0x510 [ 72.176803][ T8412] netlink_rcv_skb+0x153/0x420 [ 72.181650][ T8412] ? rtnetlink_put_metrics+0x510/0x510 [ 72.187151][ T8412] ? netlink_ack+0xaa0/0xaa0 [ 72.191871][ T8412] ? netlink_deliver_tap+0x227/0xba0 [ 72.197204][ T8412] netlink_unicast+0x533/0x7d0 [ 72.202106][ T8412] ? netlink_attachskb+0x870/0x870 [ 72.207276][ T8412] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 72.213650][ T8412] ? __phys_addr_symbol+0x2c/0x70 [ 72.218699][ T8412] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 72.224522][ T8412] ? __check_object_size+0x171/0x3f0 [ 72.229925][ T8412] netlink_sendmsg+0x856/0xd90 [ 72.234719][ T8412] ? netlink_unicast+0x7d0/0x7d0 [ 72.239734][ T8412] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 72.246005][ T8412] ? netlink_unicast+0x7d0/0x7d0 [ 72.251048][ T8412] sock_sendmsg+0xcf/0x120 [ 72.255492][ T8412] ____sys_sendmsg+0x6e8/0x810 [ 72.261307][ T8412] ? kernel_sendmsg+0x50/0x50 [ 72.266054][ T8412] ? do_recvmmsg+0x6d0/0x6d0 [ 72.270964][ T8412] ? lock_chain_count+0x20/0x20 [ 72.275856][ T8412] ___sys_sendmsg+0xf3/0x170 [ 72.280657][ T8412] ? sendmsg_copy_msghdr+0x160/0x160 [ 72.285973][ T8412] ? __lock_acquire+0x16b3/0x54c0 [ 72.291108][ T8412] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 72.297127][ T8412] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 72.303510][ T8412] ? __fget_light+0x215/0x280 [ 72.308209][ T8412] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 72.314546][ T8412] __sys_sendmsg+0xe5/0x1b0 [ 72.319089][ T8412] ? __sys_sendmsg_sock+0x30/0x30 [ 72.324224][ T8412] ? syscall_enter_from_user_mode+0x27/0x70 [ 72.330238][ T8412] do_syscall_64+0x2d/0x70 [ 72.334676][ T8412] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 72.340689][ T8412] RIP: 0033:0x43f2a9 [ 72.344607][ T8412] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 72.364381][ T8412] RSP: 002b:00007ffe3db0cdb8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 72.372929][ T8412] RAX: ffffffffffffffda RBX: 0000000000400488 RCX: 000000000043f2a9 [ 72.381031][ T8412] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 72.389018][ T8412] RBP: 0000000000403290 R08: 0000000000000070 R09: 0000000000400488 [ 72.398163][ T8412] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000403320 [ 72.406296][ T8412] R13: 0000000000000000 R14: 00000000004ad018 R15: 0000000000400488 [ 72.414410][ T8412] Kernel panic - not syncing: panic_on_warn set ... [ 72.421014][ T8412] CPU: 1 PID: 8412 Comm: syz-executor682 Not tainted 5.12.0-rc4-syzkaller #0 [ 72.429779][ T8412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 72.439834][ T8412] Call Trace: [ 72.443119][ T8412] dump_stack+0x141/0x1d7 [ 72.447488][ T8412] panic+0x306/0x73d [ 72.451381][ T8412] ? __warn_printk+0xf3/0xf3 [ 72.455973][ T8412] ? __warn.cold+0x1a/0x44 [ 72.460386][ T8412] ? refcount_warn_saturate+0xbf/0x1e0 [ 72.465846][ T8412] __warn.cold+0x35/0x44 [ 72.470090][ T8412] ? refcount_warn_saturate+0xbf/0x1e0 [ 72.475567][ T8412] report_bug+0x1bd/0x210 [ 72.479909][ T8412] handle_bug+0x3c/0x60 [ 72.484090][ T8412] exc_invalid_op+0x14/0x40 [ 72.488611][ T8412] asm_exc_invalid_op+0x12/0x20 [ 72.493500][ T8412] RIP: 0010:refcount_warn_saturate+0xbf/0x1e0 [ 72.499609][ T8412] Code: 1d 6a 5a e8 09 31 ff 89 de e8 8d 1a ab fd 84 db 75 e0 e8 d4 13 ab fd 48 c7 c7 a0 e1 c1 89 c6 05 4a 5a e8 09 01 e8 2e 36 fb 04 <0f> 0b eb c4 e8 b8 13 ab fd 0f b6 1d 39 5a e8 09 31 ff 89 de e8 58 [ 72.519262][ T8412] RSP: 0018:ffffc900093cefd0 EFLAGS: 00010282 [ 72.525382][ T8412] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 72.533384][ T8412] RDX: ffff888020898000 RSI: ffffffff815c51f5 RDI: fffff52001279dec [ 72.541385][ T8412] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000 [ 72.549405][ T8412] R10: ffffffff815bdf8e R11: 0000000000000000 R12: ffff888018dda568 [ 72.557411][ T8412] R13: ffff888018ddac00 R14: ffff888147ba5800 R15: ffffffff8d659b80 [ 72.565428][ T8412] ? wake_up_klogd.part.0+0x8e/0xd0 [ 72.570668][ T8412] ? vprintk_func+0x95/0x1e0 [ 72.575314][ T8412] ip6gre_tunnel_uninit+0x3d7/0x440 [ 72.580538][ T8412] ? ip6erspan_tunnel_uninit+0x3f0/0x3f0 [ 72.586229][ T8412] register_netdevice+0xadf/0x1500 [ 72.591388][ T8412] ? netdev_change_features+0xb0/0xb0 [ 72.596867][ T8412] ? memset+0x20/0x40 [ 72.600890][ T8412] ip6gre_newlink_common.constprop.0+0x158/0x410 [ 72.607249][ T8412] ? skb_tunnel_info_txcheck+0x370/0x370 [ 72.612926][ T8412] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 72.620422][ T8412] ? ip6gre_tunnel_find+0x483/0x640 [ 72.625691][ T8412] ip6gre_newlink+0x275/0x7a0 [ 72.630396][ T8412] ? ip6erspan_newlink+0x790/0x790 [ 72.635539][ T8412] __rtnl_newlink+0x1062/0x1710 [ 72.640431][ T8412] ? rtnl_setlink+0x3c0/0x3c0 [ 72.645133][ T8412] ? find_held_lock+0x2d/0x110 [ 72.649915][ T8412] ? is_bpf_text_address+0xa9/0x160 [ 72.655129][ T8412] ? lock_downgrade+0x6e0/0x6e0 [ 72.660017][ T8412] ? unwind_next_frame+0xec8/0x1ce0 [ 72.665495][ T8412] ? entry_SYSCALL_64_after_hwframe+0x44/0xae [ 72.671584][ T8412] ? __sanitizer_cov_trace_cmp4+0x1c/0x70 [ 72.678648][ T8412] ? is_bpf_text_address+0xcb/0x160 [ 72.683889][ T8412] ? kernel_text_address+0xbd/0xf0 [ 72.689034][ T8412] ? __kernel_text_address+0x9/0x30 [ 72.694259][ T8412] ? unwind_get_return_address+0x51/0x90 [ 72.699910][ T8412] ? create_prof_cpu_mask+0x20/0x20 [ 72.705131][ T8412] ? arch_stack_walk+0x93/0xe0 [ 72.709973][ T8412] ? fs_reclaim_release+0x9c/0xe0 [ 72.715033][ T8412] ? rcu_read_lock_sched_held+0x3a/0x70 [ 72.720600][ T8412] rtnl_newlink+0x64/0xa0 [ 72.724953][ T8412] ? __rtnl_newlink+0x1710/0x1710 [ 72.729996][ T8412] rtnetlink_rcv_msg+0x44e/0xad0 [ 72.734959][ T8412] ? rtnetlink_put_metrics+0x510/0x510 [ 72.740459][ T8412] netlink_rcv_skb+0x153/0x420 [ 72.745252][ T8412] ? rtnetlink_put_metrics+0x510/0x510 [ 72.750758][ T8412] ? netlink_ack+0xaa0/0xaa0 [ 72.755366][ T8412] ? netlink_deliver_tap+0x227/0xba0 [ 72.760686][ T8412] netlink_unicast+0x533/0x7d0 [ 72.765484][ T8412] ? netlink_attachskb+0x870/0x870 [ 72.770616][ T8412] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 72.776887][ T8412] ? __phys_addr_symbol+0x2c/0x70 [ 72.781952][ T8412] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 72.787705][ T8412] ? __check_object_size+0x171/0x3f0 [ 72.793028][ T8412] netlink_sendmsg+0x856/0xd90 [ 72.797830][ T8412] ? netlink_unicast+0x7d0/0x7d0 [ 72.802818][ T8412] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 72.809096][ T8412] ? netlink_unicast+0x7d0/0x7d0 [ 72.814068][ T8412] sock_sendmsg+0xcf/0x120 [ 72.818511][ T8412] ____sys_sendmsg+0x6e8/0x810 [ 72.823305][ T8412] ? kernel_sendmsg+0x50/0x50 [ 72.828005][ T8412] ? do_recvmmsg+0x6d0/0x6d0 [ 72.832642][ T8412] ? lock_chain_count+0x20/0x20 [ 72.837527][ T8412] ___sys_sendmsg+0xf3/0x170 [ 72.842150][ T8412] ? sendmsg_copy_msghdr+0x160/0x160 [ 72.847463][ T8412] ? __lock_acquire+0x16b3/0x54c0 [ 72.852526][ T8412] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 72.858543][ T8412] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 72.864809][ T8412] ? __fget_light+0x215/0x280 [ 72.869510][ T8412] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 72.875784][ T8412] __sys_sendmsg+0xe5/0x1b0 [ 72.880316][ T8412] ? __sys_sendmsg_sock+0x30/0x30 [ 72.885385][ T8412] ? syscall_enter_from_user_mode+0x27/0x70 [ 72.891336][ T8412] do_syscall_64+0x2d/0x70 [ 72.895773][ T8412] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 72.901704][ T8412] RIP: 0033:0x43f2a9 [ 72.905610][ T8412] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 72.925231][ T8412] RSP: 002b:00007ffe3db0cdb8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 72.933670][ T8412] RAX: ffffffffffffffda RBX: 0000000000400488 RCX: 000000000043f2a9 [ 72.941652][ T8412] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 72.949641][ T8412] RBP: 0000000000403290 R08: 0000000000000070 R09: 0000000000400488 [ 72.957623][ T8412] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000403320 [ 72.965605][ T8412] R13: 0000000000000000 R14: 00000000004ad018 R15: 0000000000400488 [ 72.974322][ T8412] Kernel Offset: disabled [ 72.978769][ T8412] Rebooting in 86400 seconds..