syzkaller login: [ 294.978035][ T1860] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 295.047801][ T1860] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 295.138155][ T1860] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 295.249324][ T1860] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:5345' (ECDSA) to the list of known hosts. 1970/01/01 00:05:40 fuzzer started 1970/01/01 00:05:59 dialing manager at localhost:37007 [ 367.616730][ T2032] cgroup: Unknown subsys name 'net' [ 368.993860][ T2032] cgroup: Unknown subsys name 'rlimit' 1970/01/01 00:06:08 syscalls: 2853 1970/01/01 00:06:08 code coverage: enabled 1970/01/01 00:06:08 comparison tracing: enabled 1970/01/01 00:06:08 extra coverage: enabled 1970/01/01 00:06:08 delay kcov mmap: mmap returned an invalid pointer 1970/01/01 00:06:08 setuid sandbox: enabled 1970/01/01 00:06:08 namespace sandbox: enabled 1970/01/01 00:06:08 Android sandbox: /sys/fs/selinux/policy does not exist 1970/01/01 00:06:08 fault injection: enabled 1970/01/01 00:06:08 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 1970/01/01 00:06:08 net packet injection: enabled 1970/01/01 00:06:08 net device setup: enabled 1970/01/01 00:06:08 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 1970/01/01 00:06:08 devlink PCI setup: PCI device 0000:00:10.0 is not available 1970/01/01 00:06:08 USB emulation: enabled 1970/01/01 00:06:08 hci packet injection: /dev/vhci does not exist 1970/01/01 00:06:08 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist 1970/01/01 00:06:08 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist 1970/01/01 00:06:15 fetching corpus: 50, signal 28319/30172 (executing program) 1970/01/01 00:06:19 fetching corpus: 100, signal 43810/47326 (executing program) 1970/01/01 00:06:24 fetching corpus: 150, signal 54716/59840 (executing program) 1970/01/01 00:06:27 fetching corpus: 200, signal 61868/68547 (executing program) 1970/01/01 00:06:31 fetching corpus: 250, signal 75773/83717 (executing program) 1970/01/01 00:06:33 fetching corpus: 300, signal 81824/91185 (executing program) 1970/01/01 00:06:37 fetching corpus: 350, signal 87274/97957 (executing program) 1970/01/01 00:06:39 fetching corpus: 400, signal 90263/102288 (executing program) 1970/01/01 00:06:45 fetching corpus: 450, signal 96172/109440 (executing program) 1970/01/01 00:06:48 fetching corpus: 500, signal 99009/113567 (executing program) 1970/01/01 00:06:51 fetching corpus: 550, signal 103365/119119 (executing program) 1970/01/01 00:06:55 fetching corpus: 600, signal 108750/125596 (executing program) 1970/01/01 00:06:57 fetching corpus: 650, signal 113079/131069 (executing program) 1970/01/01 00:07:00 fetching corpus: 700, signal 115380/134572 (executing program) 1970/01/01 00:07:03 fetching corpus: 750, signal 118270/138632 (executing program) 1970/01/01 00:07:06 fetching corpus: 800, signal 125177/146318 (executing program) 1970/01/01 00:07:09 fetching corpus: 850, signal 127837/150024 (executing program) 1970/01/01 00:07:12 fetching corpus: 900, signal 129849/153140 (executing program) 1970/01/01 00:07:14 fetching corpus: 950, signal 132927/157204 (executing program) 1970/01/01 00:07:17 fetching corpus: 1000, signal 134701/160105 (executing program) 1970/01/01 00:07:19 fetching corpus: 1050, signal 136973/163373 (executing program) 1970/01/01 00:07:22 fetching corpus: 1100, signal 139066/166476 (executing program) 1970/01/01 00:07:24 fetching corpus: 1150, signal 140862/169300 (executing program) 1970/01/01 00:07:27 fetching corpus: 1200, signal 148515/177230 (executing program) 1970/01/01 00:07:32 fetching corpus: 1250, signal 150155/179843 (executing program) 1970/01/01 00:07:34 fetching corpus: 1300, signal 151751/182380 (executing program) 1970/01/01 00:07:37 fetching corpus: 1350, signal 152922/184579 (executing program) 1970/01/01 00:07:40 fetching corpus: 1400, signal 154196/186860 (executing program) 1970/01/01 00:07:43 fetching corpus: 1450, signal 155916/189430 (executing program) 1970/01/01 00:07:45 fetching corpus: 1500, signal 157028/191550 (executing program) 1970/01/01 00:07:47 fetching corpus: 1550, signal 159435/194770 (executing program) 1970/01/01 00:07:49 fetching corpus: 1600, signal 161593/197671 (executing program) 1970/01/01 00:07:52 fetching corpus: 1650, signal 164204/200984 (executing program) 1970/01/01 00:07:53 fetching corpus: 1700, signal 165659/203254 (executing program) 1970/01/01 00:07:58 fetching corpus: 1750, signal 169701/207632 (executing program) 1970/01/01 00:08:02 fetching corpus: 1800, signal 171551/210160 (executing program) 1970/01/01 00:08:05 fetching corpus: 1850, signal 173028/212413 (executing program) 1970/01/01 00:08:12 fetching corpus: 1900, signal 174071/214298 (executing program) 1970/01/01 00:08:15 fetching corpus: 1950, signal 175643/216576 (executing program) 1970/01/01 00:08:17 fetching corpus: 2000, signal 176912/218593 (executing program) 1970/01/01 00:08:20 fetching corpus: 2050, signal 178441/220812 (executing program) 1970/01/01 00:08:24 fetching corpus: 2100, signal 180261/223257 (executing program) 1970/01/01 00:08:28 fetching corpus: 2150, signal 181819/225464 (executing program) 1970/01/01 00:08:30 fetching corpus: 2200, signal 183162/227466 (executing program) 1970/01/01 00:08:35 fetching corpus: 2250, signal 185147/229941 (executing program) 1970/01/01 00:08:38 fetching corpus: 2300, signal 187254/232480 (executing program) 1970/01/01 00:08:40 fetching corpus: 2350, signal 189772/235310 (executing program) 1970/01/01 00:08:44 fetching corpus: 2400, signal 191161/237313 (executing program) 1970/01/01 00:08:47 fetching corpus: 2450, signal 192556/239313 (executing program) 1970/01/01 00:08:50 fetching corpus: 2500, signal 193856/241250 (executing program) 1970/01/01 00:08:53 fetching corpus: 2550, signal 195438/243340 (executing program) 1970/01/01 00:08:56 fetching corpus: 2600, signal 197879/246025 (executing program) 1970/01/01 00:08:58 fetching corpus: 2650, signal 198911/247704 (executing program) 1970/01/01 00:09:01 fetching corpus: 2700, signal 200394/249697 (executing program) 1970/01/01 00:09:04 fetching corpus: 2750, signal 203565/252818 (executing program) 1970/01/01 00:09:07 fetching corpus: 2800, signal 204562/254434 (executing program) 1970/01/01 00:09:09 fetching corpus: 2850, signal 205465/255968 (executing program) 1970/01/01 00:09:11 fetching corpus: 2900, signal 206493/257621 (executing program) 1970/01/01 00:09:14 fetching corpus: 2950, signal 207778/259357 (executing program) 1970/01/01 00:09:15 fetching corpus: 3000, signal 209040/261092 (executing program) 1970/01/01 00:09:19 fetching corpus: 3050, signal 210400/262882 (executing program) 1970/01/01 00:09:21 fetching corpus: 3100, signal 211356/264403 (executing program) 1970/01/01 00:09:25 fetching corpus: 3150, signal 214003/266978 (executing program) 1970/01/01 00:09:28 fetching corpus: 3200, signal 215016/268465 (executing program) 1970/01/01 00:09:31 fetching corpus: 3250, signal 217050/270616 (executing program) 1970/01/01 00:09:33 fetching corpus: 3300, signal 217659/271793 (executing program) 1970/01/01 00:09:36 fetching corpus: 3350, signal 218377/273124 (executing program) 1970/01/01 00:09:38 fetching corpus: 3400, signal 219267/274499 (executing program) 1970/01/01 00:09:42 fetching corpus: 3450, signal 220179/275893 (executing program) 1970/01/01 00:09:46 fetching corpus: 3500, signal 223793/278974 (executing program) 1970/01/01 00:09:48 fetching corpus: 3550, signal 225494/280812 (executing program) 1970/01/01 00:09:50 fetching corpus: 3600, signal 226729/282358 (executing program) 1970/01/01 00:09:52 fetching corpus: 3650, signal 227652/283684 (executing program) 1970/01/01 00:09:56 fetching corpus: 3700, signal 230154/285947 (executing program) 1970/01/01 00:10:00 fetching corpus: 3750, signal 231021/287227 (executing program) 1970/01/01 00:10:03 fetching corpus: 3800, signal 233819/289576 (executing program) 1970/01/01 00:10:05 fetching corpus: 3850, signal 234628/290804 (executing program) 1970/01/01 00:10:08 fetching corpus: 3900, signal 235387/291985 (executing program) 1970/01/01 00:10:10 fetching corpus: 3950, signal 236019/293079 (executing program) 1970/01/01 00:10:12 fetching corpus: 4000, signal 236657/294137 (executing program) 1970/01/01 00:10:16 fetching corpus: 4050, signal 237660/295420 (executing program) 1970/01/01 00:10:19 fetching corpus: 4100, signal 238149/296418 (executing program) 1970/01/01 00:10:24 fetching corpus: 4150, signal 241542/299017 (executing program) 1970/01/01 00:10:27 fetching corpus: 4200, signal 242509/300238 (executing program) 1970/01/01 00:10:30 fetching corpus: 4250, signal 243248/301321 (executing program) 1970/01/01 00:10:32 fetching corpus: 4300, signal 244779/302785 (executing program) 1970/01/01 00:10:35 fetching corpus: 4350, signal 247149/304695 (executing program) 1970/01/01 00:10:40 fetching corpus: 4400, signal 248090/305853 (executing program) 1970/01/01 00:10:43 fetching corpus: 4450, signal 249068/307083 (executing program) 1970/01/01 00:10:45 fetching corpus: 4500, signal 250086/308237 (executing program) [ 646.829053][ T1795] Kernel panic - not syncing: corrupted stack end detected inside scheduler [ 646.832598][ T1795] CPU: 0 PID: 1795 Comm: jbd2/vda-8 Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 646.836061][ T1795] Hardware name: riscv-virtio,qemu (DT) [ 646.837630][ T1795] Call Trace: [ 646.838858][ T1795] [] dump_backtrace+0x2e/0x3c [ 646.841373][ T1795] [] show_stack+0x34/0x40 [ 646.843044][ T1795] [] dump_stack_lvl+0xe4/0x150 [ 646.844906][ T1795] [] dump_stack+0x1c/0x24 [ 646.846768][ T1795] [] panic+0x24a/0x634 [ 646.848425][ T1795] [] schedule+0x0/0x14c [ 646.850749][ T1795] [] preempt_schedule_common+0x4e/0xde [ 646.852689][ T1795] [] preempt_schedule+0x34/0x36 [ 646.854457][ T1795] [] __blk_mq_delay_run_hw_queue+0x4f4/0x5f2 [ 646.856478][ T1795] [] blk_mq_run_hw_queue+0x276/0x39e [ 646.858259][ T1795] [] blk_mq_sched_insert_requests+0x1d6/0x8c2 [ 646.860680][ T1795] [] blk_mq_flush_plug_list+0x2c6/0x992 [ 646.862460][ T1795] [] blk_finish_plug+0x9c/0xe6 [ 646.864312][ T1795] [] jbd2_journal_commit_transaction+0x29cc/0x4a38 [ 646.866300][ T1795] [] kjournald2+0x19e/0x614 [ 646.868756][ T1795] [] kthread+0x19e/0x1fa [ 646.870461][ T1795] [] ret_from_exception+0x0/0x10 [ 646.872860][ T1795] SMP: stopping secondary CPUs [ 646.876081][ T1795] Rebooting in 86400 seconds.. VM DIAGNOSIS: 17:21:37 Registers: info registers vcpu 0 pc ffffffff80dc337e mhartid 0000000000000000 mstatus 00000000000000a0 mip 00000000000002a0 mie 000000000000022a mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff8020100c sepc ffffffff831afd22 mcause 8000000000000007 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff80dc337e x2/sp ffffaf800f78af10 x3/gp ffffffff85863ac0 x4/tp ffffaf800c0b48c0 x5/t0 ffffffff86bcb657 x6/t1 0961401bc2922000 x7/t2 0000000000000000 x8/s0 ffffaf800f78af40 x9/s1 ffffffff86e58900 x10/a0 ffffffff86e58948 x11/a1 ffff8f800066c000 x12/a2 1ffffffff0dcb129 x13/a3 ffffffff80dc337e x14/a4 0000000000000000 x15/a5 ffffffff86e58948 x16/a6 ffffffff86e589f1 x17/a7 ffffffff80dcc2ca x18/s2 ffff8f800066c000 x19/s3 000000000000006d x20/s4 ffffffff86e58900 x21/s5 ffffffff80dc333e x22/s6 0000000000000000 x23/s7 ffffffff86bcb6b1 x24/s8 0000000000000010 x25/s9 ffffffff86e58958 x26/s10 0000000000000010 x27/s11 0000000000000000 x28/t3 fffffffff3f3f300 x29/t4 ffffffff80112282 x30/t5 1ffff5f001ef1590 x31/t6 ffffffff86bcb657 f0/ft0 0000000000000000 f1/ft1 40a342f7f65ebd6c f2/ft2 4155dbf000000000 f3/ft3 403a000000000000 f4/ft4 4105a39000000000 f5/ft5 40382118b119b4f4 f6/ft6 3fe0e4249cc5797c f7/ft7 3fab0f1699246490 f8/fs0 3fee61edcbef7a09 f9/fs1 3f939e2244036be0 f10/fa0 3fa1bef1f939d453 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000 info registers vcpu 1 pc ffffffff8014488c mhartid 0000000000000001 mstatus 00000000000000a2 mip 0000000000000000 mie 00000000000002aa mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff8000f97e sepc ffffffff802010e8 mcause 0000000000000009 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff82736dea x2/sp ffffaf800c07ad60 x3/gp ffffffff85863ac0 x4/tp ffffaf800e61b080 x5/t0 fffff5ef017d830d x6/t1 0000000070300000 x7/t2 6406f499af29f241 x8/s0 ffffaf800c07ad90 x9/s1 ffffaf800bec1c80 x10/a0 ffffaf800e5a4a40 x11/a1 0000000000000003 x12/a2 0000000000000002 x13/a3 ffffffff817e46f0 x14/a4 0000000000000000 x15/a5 ffffaf800e5a4800 x16/a6 0000000000f00000 x17/a7 fffffffff8c846dc x18/s2 ffffaf800e5a4800 x19/s3 0000000000000040 x20/s4 ffffaf800ead8000 x21/s5 ffffffff86c1a628 x22/s6 ffffaf800c07ac20 x23/s7 0000000000000000 x24/s8 ffffffff85889780 x25/s9 1ffff5f00180f580 x26/s10 ffffffff857c2d60 x27/s11 ffffffff83be8e80 x28/t3 fffffffff3f3f300 x29/t4 ffffffff80112282 x30/t5 1ffff5f00180f4f8 x31/t6 ffffaf800bec1840 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000