Starting sshd: OK

syzkaller
syzkaller login: [   38.248581][ T2604] cgroup: Unknown subsys name 'net'
[   38.384141][ T2604] cgroup: Unknown subsys name 'cpuset'
[   38.390204][ T2604] cgroup: Unknown subsys name 'rlimit'
[   39.440728][ T2604] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   41.600436][ T2611] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
Warning: Permanently added '10.128.1.29' (ED25519) to the list of known hosts.
2025/03/22 14:00:34 ignoring optional flag "sandboxArg"="0"
2025/03/22 14:00:35 parsed 1 programs
[   64.868226][ T3444] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   65.203641][    T8] cfg80211: failed to load regulatory.db
2025/03/22 14:00:38 executed programs: 0
[   68.807611][ T4260] ------------[ cut here ]------------
[   68.813157][ T4260] refcount_t: underflow; use-after-free.
[   68.819760][ T4260] WARNING: CPU: 1 PID: 4260 at lib/refcount.c:28 refcount_warn_saturate+0xad/0x130
[   68.829149][ T4260] Modules linked in:
[   68.833018][ T4260] CPU: 1 UID: 0 PID: 4260 Comm: syz.3.16 Not tainted 6.13.0-syzkaller #0
[   68.841437][ T4260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   68.851589][ T4260] RIP: 0010:refcount_warn_saturate+0xad/0x130
[   68.857674][ T4260] Code: 6a ff 90 0f 0b 90 90 c3 cc cc cc cc 80 3d a1 7f cf 02 00 75 97 c6 05 98 7f cf 02 01 90 48 c7 c7 62 55 ce 83 e8 34 c3 6a ff 90 <0f> 0b 90 90 c3 cc cc cc cc 80 3d 77 7f cf 02 00 0f 85 6c ff ff ff
[   68.877471][ T4260] RSP: 0018:ffffc9000364fc80 EFLAGS: 00010246
[   68.883723][ T4260] RAX: 603bfb9eba684000 RBX: ffff8881110cde00 RCX: 0000000000000002
[   68.891852][ T4260] RDX: 0000000000000002 RSI: c0000000ffffdfff RDI: 00000000ffffffff
[   68.900294][ T4260] RBP: 0000000000000000 R08: ffffffff8432c850 R09: 00000000ffffdfff
[   68.908261][ T4260] R10: 0000000000000000 R11: 3fffffffffffffff R12: ffff888121793000
[   68.916226][ T4260] R13: ffff8881110cde78 R14: ffff888108311c00 R15: ffffffffffffbfff
[   68.924193][ T4260] FS:  00007fcc2072e6c0(0000) GS:ffff88813bb00000(0000) knlGS:0000000000000000
[   68.933094][ T4260] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   68.939677][ T4260] CR2: 0000000000000040 CR3: 0000000111af6000 CR4: 00000000003506f0
[   68.947657][ T4260] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   68.955701][ T4260] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   68.963790][ T4260] Call Trace:
[   68.967052][ T4260]  <TASK>
[   68.969978][ T4260]  ? __warn+0xca/0x220
[   68.974052][ T4260]  ? refcount_warn_saturate+0xad/0x130
[   68.979772][ T4260]  ? report_bug+0xce/0x160
[   68.984177][ T4260]  ? handle_bug+0x60/0x90
[   68.988512][ T4260]  ? exc_invalid_op+0x1a/0x50
[   68.993241][ T4260]  ? asm_exc_invalid_op+0x1a/0x20
[   68.998274][ T4260]  ? refcount_warn_saturate+0xad/0x130
[   69.003737][ T4260]  io_send_zc_cleanup+0x4c/0x60
[   69.008703][ T4260]  io_clean_op+0x140/0x200
[   69.013085][ T4260]  __io_submit_flush_completions+0x3d5/0x420
[   69.019163][ T4260]  ? io_handle_tw_list+0x58/0x160
[   69.024180][ T4260]  ctx_flush_and_put+0x39/0xc0
[   69.028912][ T4260]  io_handle_tw_list+0x135/0x160
[   69.033871][ T4260]  tctx_task_work_run+0x4b/0x140
[   69.038793][ T4260]  tctx_task_work+0x34/0x80
[   69.043264][ T4260]  task_work_run+0x82/0xb0
[   69.047673][ T4260]  get_signal+0x65/0x6d0
[   69.051893][ T4260]  arch_do_signal_or_restart+0x89/0x2a0
[   69.057435][ T4260]  syscall_exit_to_user_mode+0x65/0x1f0
[   69.062951][ T4260]  do_syscall_64+0xed/0x1f0
[   69.067448][ T4260]  ? clear_bhb_loop+0x55/0xb0
[   69.072182][ T4260]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.078079][ T4260] RIP: 0033:0x7fcc1f98d169
[   69.082488][ T4260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.102525][ T4260] RSP: 002b:00007fcc2072e038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[   69.111128][ T4260] RAX: 0000000000001000 RBX: 00007fcc1fba5fa0 RCX: 00007fcc1f98d169
[   69.119106][ T4260] RDX: 0000000000000000 RSI: 00000000000047bc RDI: 0000000000000007
[   69.127089][ T4260] RBP: 00007fcc1fa0e2a0 R08: 0000000000000000 R09: 0000000000000000
[   69.135147][ T4260] R10: 0000000000000021 R11: 0000000000000246 R12: 0000000000000000
[   69.143094][ T4260] R13: 0000000000000000 R14: 00007fcc1fba5fa0 R15: 00007fff10d7d418
[   69.151081][ T4260]  </TASK>
[   69.154092][ T4260] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   69.161343][ T4260] CPU: 1 UID: 0 PID: 4260 Comm: syz.3.16 Not tainted 6.13.0-syzkaller #0
[   69.169713][ T4260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   69.179731][ T4260] Call Trace:
[   69.182992][ T4260]  <TASK>
[   69.185917][ T4260]  dump_stack_lvl+0x3e/0xe0
[   69.190403][ T4260]  panic+0x110/0x2f0
[   69.194301][ T4260]  ? refcount_warn_saturate+0xad/0x130
[   69.199728][ T4260]  __warn+0x193/0x220
[   69.203683][ T4260]  ? refcount_warn_saturate+0xad/0x130
[   69.209104][ T4260]  report_bug+0xce/0x160
[   69.213309][ T4260]  handle_bug+0x60/0x90
[   69.217451][ T4260]  exc_invalid_op+0x1a/0x50
[   69.221916][ T4260]  asm_exc_invalid_op+0x1a/0x20
[   69.226734][ T4260] RIP: 0010:refcount_warn_saturate+0xad/0x130
[   69.232761][ T4260] Code: 6a ff 90 0f 0b 90 90 c3 cc cc cc cc 80 3d a1 7f cf 02 00 75 97 c6 05 98 7f cf 02 01 90 48 c7 c7 62 55 ce 83 e8 34 c3 6a ff 90 <0f> 0b 90 90 c3 cc cc cc cc 80 3d 77 7f cf 02 00 0f 85 6c ff ff ff
[   69.252331][ T4260] RSP: 0018:ffffc9000364fc80 EFLAGS: 00010246
[   69.258378][ T4260] RAX: 603bfb9eba684000 RBX: ffff8881110cde00 RCX: 0000000000000002
[   69.266402][ T4260] RDX: 0000000000000002 RSI: c0000000ffffdfff RDI: 00000000ffffffff
[   69.274338][ T4260] RBP: 0000000000000000 R08: ffffffff8432c850 R09: 00000000ffffdfff
[   69.282275][ T4260] R10: 0000000000000000 R11: 3fffffffffffffff R12: ffff888121793000
[   69.290210][ T4260] R13: ffff8881110cde78 R14: ffff888108311c00 R15: ffffffffffffbfff
[   69.298166][ T4260]  io_send_zc_cleanup+0x4c/0x60
[   69.302989][ T4260]  io_clean_op+0x140/0x200
[   69.307367][ T4260]  __io_submit_flush_completions+0x3d5/0x420
[   69.313317][ T4260]  ? io_handle_tw_list+0x58/0x160
[   69.318390][ T4260]  ctx_flush_and_put+0x39/0xc0
[   69.323126][ T4260]  io_handle_tw_list+0x135/0x160
[   69.328039][ T4260]  tctx_task_work_run+0x4b/0x140
[   69.333041][ T4260]  tctx_task_work+0x34/0x80
[   69.337509][ T4260]  task_work_run+0x82/0xb0
[   69.341901][ T4260]  get_signal+0x65/0x6d0
[   69.346111][ T4260]  arch_do_signal_or_restart+0x89/0x2a0
[   69.351620][ T4260]  syscall_exit_to_user_mode+0x65/0x1f0
[   69.357127][ T4260]  do_syscall_64+0xed/0x1f0
[   69.361594][ T4260]  ? clear_bhb_loop+0x55/0xb0
[   69.366237][ T4260]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.372100][ T4260] RIP: 0033:0x7fcc1f98d169
[   69.376589][ T4260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.396171][ T4260] RSP: 002b:00007fcc2072e038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[   69.404732][ T4260] RAX: 0000000000001000 RBX: 00007fcc1fba5fa0 RCX: 00007fcc1f98d169
[   69.412673][ T4260] RDX: 0000000000000000 RSI: 00000000000047bc RDI: 0000000000000007
[   69.420622][ T4260] RBP: 00007fcc1fa0e2a0 R08: 0000000000000000 R09: 0000000000000000
[   69.428557][ T4260] R10: 0000000000000021 R11: 0000000000000246 R12: 0000000000000000
[   69.436494][ T4260] R13: 0000000000000000 R14: 00007fcc1fba5fa0 R15: 00007fff10d7d418
[   69.444434][ T4260]  </TASK>
[   69.447768][ T4260] Kernel Offset: disabled
[   69.452071][ T4260] Rebooting in 86400 seconds..