         Starting Load/Save RF Kill Switch Status...
[[0;32m  OK  [0m] Started Load/Save RF Kill Switch Status.

Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.0.122' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   72.133320][ T8409] netlink: 24 bytes leftover after parsing attributes in process `syz-executor424'.
[   72.153441][ T8409] netlink: 12 bytes leftover after parsing attributes in process `syz-executor424'.
[   72.177535][ T8409] netlink: 'syz-executor424': attribute type 3 has an invalid length.
[   72.185930][ T8409] netlink: 68 bytes leftover after parsing attributes in process `syz-executor424'.
[   72.196620][ T8409] ------------[ cut here ]------------
[   72.202915][ T8409] refcount_t: decrement hit 0; leaking memory.
[   72.210156][ T8409] WARNING: CPU: 1 PID: 8409 at lib/refcount.c:31 refcount_warn_saturate+0xbf/0x1e0
[   72.219878][ T8409] Modules linked in:
[   72.223832][ T8409] CPU: 1 PID: 8409 Comm: syz-executor424 Not tainted 5.12.0-rc4-syzkaller #0
[   72.233736][ T8409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   72.244834][ T8409] RIP: 0010:refcount_warn_saturate+0xbf/0x1e0
[   72.251049][ T8409] Code: 1d 6a 5a e8 09 31 ff 89 de e8 8d 1a ab fd 84 db 75 e0 e8 d4 13 ab fd 48 c7 c7 a0 e1 c1 89 c6 05 4a 5a e8 09 01 e8 2e 36 fb 04 <0f> 0b eb c4 e8 b8 13 ab fd 0f b6 1d 39 5a e8 09 31 ff 89 de e8 58
[   72.270948][ T8409] RSP: 0018:ffffc9000185ee90 EFLAGS: 00010282
[   72.277181][ T8409] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   72.285190][ T8409] RDX: ffff88801db6b880 RSI: ffffffff815c51f5 RDI: fffff5200030bdc4
[   72.293362][ T8409] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[   72.301626][ T8409] R10: ffffffff815bdf8e R11: 0000000000000000 R12: ffff8880186b2568
[   72.310164][ T8409] R13: ffff8880218d9000 R14: ffff888021ddb000 R15: ffffffff8d659b80
[   72.318547][ T8409] FS:  0000000000db4300(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000
[   72.327601][ T8409] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   72.334811][ T8409] CR2: 000055e7f3930e40 CR3: 00000000210fb000 CR4: 00000000001506f0
[   72.343300][ T8409] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   72.351517][ T8409] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   72.360214][ T8409] Call Trace:
[   72.363625][ T8409]  ip6erspan_tunnel_uninit+0x387/0x3f0
[   72.370254][ T8409]  ? ip6gre_dellink+0x2d0/0x2d0
[   72.375146][ T8409]  register_netdevice+0xadf/0x1500
[   72.381155][ T8409]  ? netdev_change_features+0xb0/0xb0
[   72.386588][ T8409]  ? find_held_lock+0x2d/0x110
[   72.391478][ T8409]  ? memset+0x20/0x40
[   72.395523][ T8409]  ip6gre_newlink_common.constprop.0+0x158/0x410
[   72.401976][ T8409]  ? skb_tunnel_info_txcheck+0x370/0x370
[   72.408248][ T8409]  ip6erspan_newlink+0x280/0x790
[   72.413243][ T8409]  ? gre_rcv+0x1280/0x1280
[   72.436937][ T8409]  __rtnl_newlink+0x1062/0x1710
[   72.442223][ T8409]  ? rtnl_setlink+0x3c0/0x3c0
[   72.456720][ T8409]  ? mark_lock+0xef/0x17b0
[   72.462209][ T8409]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   72.470150][ T8409]  ? lock_chain_count+0x20/0x20
[   72.475150][ T8409]  ? find_held_lock+0x2d/0x110
[   72.481112][ T8409]  ? stack_depot_save+0x239/0x4e0
[   72.486291][ T8409]  ? mark_held_locks+0x9f/0xe0
[   72.492306][ T8409]  ? _raw_spin_unlock_irqrestore+0x50/0x70
[   72.499002][ T8409]  ? lockdep_hardirqs_on+0x79/0x100
[   72.504397][ T8409]  ? fs_reclaim_release+0x9c/0xe0
[   72.510358][ T8409]  ? rcu_read_lock_sched_held+0x3a/0x70
[   72.516145][ T8409]  rtnl_newlink+0x64/0xa0
[   72.520770][ T8409]  ? __rtnl_newlink+0x1710/0x1710
[   72.525930][ T8409]  rtnetlink_rcv_msg+0x44e/0xad0
[   72.531301][ T8409]  ? rtnetlink_put_metrics+0x510/0x510
[   72.536948][ T8409]  netlink_rcv_skb+0x153/0x420
[   72.541745][ T8409]  ? rtnetlink_put_metrics+0x510/0x510
[   72.547301][ T8409]  ? netlink_ack+0xaa0/0xaa0
[   72.551972][ T8409]  ? netlink_deliver_tap+0x227/0xba0
[   72.557390][ T8409]  netlink_unicast+0x533/0x7d0
[   72.562191][ T8409]  ? netlink_attachskb+0x870/0x870
[   72.567406][ T8409]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   72.573676][ T8409]  ? __phys_addr_symbol+0x2c/0x70
[   72.578889][ T8409]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   72.584740][ T8409]  ? __check_object_size+0x171/0x3f0
[   72.590531][ T8409]  netlink_sendmsg+0x856/0xd90
[   72.595420][ T8409]  ? netlink_unicast+0x7d0/0x7d0
[   72.600657][ T8409]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   72.608580][ T8409]  ? netlink_unicast+0x7d0/0x7d0
[   72.613766][ T8409]  sock_sendmsg+0xcf/0x120
[   72.618314][ T8409]  ____sys_sendmsg+0x331/0x810
[   72.623107][ T8409]  ? kernel_sendmsg+0x50/0x50
[   72.627999][ T8409]  ? do_recvmmsg+0x6d0/0x6d0
[   72.632654][ T8409]  ? __kasan_slab_alloc+0x75/0x90
[   72.637819][ T8409]  ? kmem_cache_alloc+0x155/0x370
[   72.642930][ T8409]  ? security_file_alloc+0x34/0x170
[   72.648468][ T8409]  ? alloc_file+0x5e/0x5a0
[   72.653014][ T8409]  ? alloc_file_pseudo+0x165/0x250
[   72.658375][ T8409]  ? sock_alloc_file+0x4f/0x190
[   72.663274][ T8409]  ? __sys_socket+0x13d/0x200
[   72.668193][ T8409]  ? __x64_sys_socket+0x6f/0xb0
[   72.673083][ T8409]  ? do_syscall_64+0x2d/0x70
[   72.677751][ T8409]  ? mark_lock+0xef/0x17b0
[   72.682191][ T8409]  ___sys_sendmsg+0xf3/0x170
[   72.687082][ T8409]  ? sendmsg_copy_msghdr+0x160/0x160
[   72.692408][ T8409]  ? mark_lock+0xef/0x17b0
[   72.697957][ T8409]  ? lock_chain_count+0x20/0x20
[   72.702889][ T8409]  ? fs_reclaim_release+0x9c/0xe0
[   72.708027][ T8409]  ? lock_chain_count+0x20/0x20
[   72.713445][ T8409]  ? __lock_acquire+0xb43/0x54c0
[   72.718936][ T8409]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   72.725297][ T8409]  ? __fget_light+0x215/0x280
[   72.730140][ T8409]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   72.736428][ T8409]  __sys_sendmmsg+0x195/0x470
[   72.741657][ T8409]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   72.746720][ T8409]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   72.753221][ T8409]  ? find_held_lock+0x2d/0x110
[   72.758141][ T8409]  ? __context_tracking_exit+0xb8/0xe0
[   72.763628][ T8409]  ? lock_downgrade+0x6e0/0x6e0
[   72.768814][ T8409]  __x64_sys_sendmmsg+0x99/0x100
[   72.773889][ T8409]  ? syscall_enter_from_user_mode+0x27/0x70
[   72.779990][ T8409]  do_syscall_64+0x2d/0x70
[   72.784479][ T8409]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   72.790690][ T8409] RIP: 0033:0x43f049
[   72.794630][ T8409] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   72.814905][ T8409] RSP: 002b:00007ffeddd8a668 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   72.823858][ T8409] RAX: ffffffffffffffda RBX: 0000000000400488 RCX: 000000000043f049
[   72.832119][ T8409] RDX: 000000000000e303 RSI: 0000000020000000 RDI: 0000000000000004
[   72.840382][ T8409] RBP: 0000000000403030 R08: 0000000000400488 R09: 0000000000400488
[   72.849237][ T8409] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000004030c0
[   72.857353][ T8409] R13: 0000000000000000 R14: 00000000004ac018 R15: 0000000000400488
[   72.865363][ T8409] Kernel panic - not syncing: panic_on_warn set ...
[   72.871965][ T8409] CPU: 0 PID: 8409 Comm: syz-executor424 Not tainted 5.12.0-rc4-syzkaller #0
[   72.880911][ T8409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   72.891624][ T8409] Call Trace:
[   72.894911][ T8409]  dump_stack+0x141/0x1d7
[   72.899349][ T8409]  panic+0x306/0x73d
[   72.903351][ T8409]  ? __warn_printk+0xf3/0xf3
[   72.907955][ T8409]  ? __warn.cold+0x1a/0x44
[   72.912394][ T8409]  ? refcount_warn_saturate+0xbf/0x1e0
[   72.917850][ T8409]  __warn.cold+0x35/0x44
[   72.922102][ T8409]  ? refcount_warn_saturate+0xbf/0x1e0
[   72.927588][ T8409]  report_bug+0x1bd/0x210
[   72.931923][ T8409]  handle_bug+0x3c/0x60
[   72.936178][ T8409]  exc_invalid_op+0x14/0x40
[   72.940689][ T8409]  asm_exc_invalid_op+0x12/0x20
[   72.945708][ T8409] RIP: 0010:refcount_warn_saturate+0xbf/0x1e0
[   72.952072][ T8409] Code: 1d 6a 5a e8 09 31 ff 89 de e8 8d 1a ab fd 84 db 75 e0 e8 d4 13 ab fd 48 c7 c7 a0 e1 c1 89 c6 05 4a 5a e8 09 01 e8 2e 36 fb 04 <0f> 0b eb c4 e8 b8 13 ab fd 0f b6 1d 39 5a e8 09 31 ff 89 de e8 58
[   72.971787][ T8409] RSP: 0018:ffffc9000185ee90 EFLAGS: 00010282
[   72.977970][ T8409] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   72.985940][ T8409] RDX: ffff88801db6b880 RSI: ffffffff815c51f5 RDI: fffff5200030bdc4
[   72.994176][ T8409] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[   73.002157][ T8409] R10: ffffffff815bdf8e R11: 0000000000000000 R12: ffff8880186b2568
[   73.010411][ T8409] R13: ffff8880218d9000 R14: ffff888021ddb000 R15: ffffffff8d659b80
[   73.018641][ T8409]  ? wake_up_klogd.part.0+0x8e/0xd0
[   73.023855][ T8409]  ? vprintk_func+0x95/0x1e0
[   73.028740][ T8409]  ip6erspan_tunnel_uninit+0x387/0x3f0
[   73.034233][ T8409]  ? ip6gre_dellink+0x2d0/0x2d0
[   73.039097][ T8409]  register_netdevice+0xadf/0x1500
[   73.044263][ T8409]  ? netdev_change_features+0xb0/0xb0
[   73.049636][ T8409]  ? find_held_lock+0x2d/0x110
[   73.054420][ T8409]  ? memset+0x20/0x40
[   73.058410][ T8409]  ip6gre_newlink_common.constprop.0+0x158/0x410
[   73.064771][ T8409]  ? skb_tunnel_info_txcheck+0x370/0x370
[   73.070430][ T8409]  ip6erspan_newlink+0x280/0x790
[   73.075454][ T8409]  ? gre_rcv+0x1280/0x1280
[   73.079861][ T8409]  __rtnl_newlink+0x1062/0x1710
[   73.085109][ T8409]  ? rtnl_setlink+0x3c0/0x3c0
[   73.089828][ T8409]  ? mark_lock+0xef/0x17b0
[   73.094660][ T8409]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   73.100656][ T8409]  ? lock_chain_count+0x20/0x20
[   73.105511][ T8409]  ? find_held_lock+0x2d/0x110
[   73.110283][ T8409]  ? stack_depot_save+0x239/0x4e0
[   73.115341][ T8409]  ? mark_held_locks+0x9f/0xe0
[   73.120100][ T8409]  ? _raw_spin_unlock_irqrestore+0x50/0x70
[   73.125973][ T8409]  ? lockdep_hardirqs_on+0x79/0x100
[   73.131395][ T8409]  ? fs_reclaim_release+0x9c/0xe0
[   73.136435][ T8409]  ? rcu_read_lock_sched_held+0x3a/0x70
[   73.142110][ T8409]  rtnl_newlink+0x64/0xa0
[   73.146467][ T8409]  ? __rtnl_newlink+0x1710/0x1710
[   73.151529][ T8409]  rtnetlink_rcv_msg+0x44e/0xad0
[   73.156474][ T8409]  ? rtnetlink_put_metrics+0x510/0x510
[   73.161990][ T8409]  netlink_rcv_skb+0x153/0x420
[   73.166784][ T8409]  ? rtnetlink_put_metrics+0x510/0x510
[   73.172259][ T8409]  ? netlink_ack+0xaa0/0xaa0
[   73.176851][ T8409]  ? netlink_deliver_tap+0x227/0xba0
[   73.182278][ T8409]  netlink_unicast+0x533/0x7d0
[   73.187066][ T8409]  ? netlink_attachskb+0x870/0x870
[   73.192245][ T8409]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   73.198667][ T8409]  ? __phys_addr_symbol+0x2c/0x70
[   73.203704][ T8409]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   73.209420][ T8409]  ? __check_object_size+0x171/0x3f0
[   73.215112][ T8409]  netlink_sendmsg+0x856/0xd90
[   73.220179][ T8409]  ? netlink_unicast+0x7d0/0x7d0
[   73.225132][ T8409]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   73.231631][ T8409]  ? netlink_unicast+0x7d0/0x7d0
[   73.236618][ T8409]  sock_sendmsg+0xcf/0x120
[   73.241060][ T8409]  ____sys_sendmsg+0x331/0x810
[   73.246010][ T8409]  ? kernel_sendmsg+0x50/0x50
[   73.250690][ T8409]  ? do_recvmmsg+0x6d0/0x6d0
[   73.255288][ T8409]  ? __kasan_slab_alloc+0x75/0x90
[   73.260323][ T8409]  ? kmem_cache_alloc+0x155/0x370
[   73.265341][ T8409]  ? security_file_alloc+0x34/0x170
[   73.270620][ T8409]  ? alloc_file+0x5e/0x5a0
[   73.275049][ T8409]  ? alloc_file_pseudo+0x165/0x250
[   73.280182][ T8409]  ? sock_alloc_file+0x4f/0x190
[   73.285150][ T8409]  ? __sys_socket+0x13d/0x200
[   73.291322][ T8409]  ? __x64_sys_socket+0x6f/0xb0
[   73.298287][ T8409]  ? do_syscall_64+0x2d/0x70
[   73.302900][ T8409]  ? mark_lock+0xef/0x17b0
[   73.307349][ T8409]  ___sys_sendmsg+0xf3/0x170
[   73.311952][ T8409]  ? sendmsg_copy_msghdr+0x160/0x160
[   73.317234][ T8409]  ? mark_lock+0xef/0x17b0
[   73.321791][ T8409]  ? lock_chain_count+0x20/0x20
[   73.326649][ T8409]  ? fs_reclaim_release+0x9c/0xe0
[   73.331828][ T8409]  ? lock_chain_count+0x20/0x20
[   73.337932][ T8409]  ? __lock_acquire+0xb43/0x54c0
[   73.343212][ T8409]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   73.349489][ T8409]  ? __fget_light+0x215/0x280
[   73.354173][ T8409]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   73.360425][ T8409]  __sys_sendmmsg+0x195/0x470
[   73.365217][ T8409]  ? __ia32_sys_sendmsg+0xb0/0xb0
[   73.370260][ T8409]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   73.376285][ T8409]  ? find_held_lock+0x2d/0x110
[   73.381146][ T8409]  ? __context_tracking_exit+0xb8/0xe0
[   73.386606][ T8409]  ? lock_downgrade+0x6e0/0x6e0
[   73.391988][ T8409]  __x64_sys_sendmmsg+0x99/0x100
[   73.396959][ T8409]  ? syscall_enter_from_user_mode+0x27/0x70
[   73.403082][ T8409]  do_syscall_64+0x2d/0x70
[   73.407613][ T8409]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   73.413524][ T8409] RIP: 0033:0x43f049
[   73.417413][ T8409] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   73.437031][ T8409] RSP: 002b:00007ffeddd8a668 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   73.445600][ T8409] RAX: ffffffffffffffda RBX: 0000000000400488 RCX: 000000000043f049
[   73.453580][ T8409] RDX: 000000000000e303 RSI: 0000000020000000 RDI: 0000000000000004
[   73.461816][ T8409] RBP: 0000000000403030 R08: 0000000000400488 R09: 0000000000400488
[   73.469791][ T8409] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000004030c0
[   73.477783][ T8409] R13: 0000000000000000 R14: 00000000004ac018 R15: 0000000000400488
[   73.486929][ T8409] Kernel Offset: disabled
[   73.491466][ T8409] Rebooting in 86400 seconds..