syzkaller login: [ 532.694433][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 532.762030][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 573.509479][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:26176' (ECDSA) to the list of known hosts. 1970/01/01 00:10:16 fuzzer started 1970/01/01 00:10:29 dialing manager at localhost:42307 [ 635.308202][ T2044] cgroup: Unknown subsys name 'net' [ 637.053413][ T2044] cgroup: Unknown subsys name 'rlimit' 1970/01/01 00:10:36 syscalls: 2918 1970/01/01 00:10:36 code coverage: enabled 1970/01/01 00:10:36 comparison tracing: enabled 1970/01/01 00:10:36 extra coverage: enabled 1970/01/01 00:10:36 delay kcov mmap: mmap returned an invalid pointer 1970/01/01 00:10:36 setuid sandbox: enabled 1970/01/01 00:10:36 namespace sandbox: enabled 1970/01/01 00:10:36 Android sandbox: /sys/fs/selinux/policy does not exist 1970/01/01 00:10:36 fault injection: enabled 1970/01/01 00:10:36 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 1970/01/01 00:10:36 net packet injection: enabled 1970/01/01 00:10:36 net device setup: enabled 1970/01/01 00:10:36 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 1970/01/01 00:10:36 devlink PCI setup: PCI device 0000:00:10.0 is not available 1970/01/01 00:10:36 NIC VF setup: PCI device 0000:00:11.0 is not available 1970/01/01 00:10:36 USB emulation: enabled 1970/01/01 00:10:36 hci packet injection: /dev/vhci does not exist 1970/01/01 00:10:36 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist 1970/01/01 00:10:36 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist 1970/01/01 00:10:37 fetching corpus: 0, signal 0/2000 (executing program) 1970/01/01 00:10:41 fetching corpus: 50, signal 31038/34368 (executing program) 1970/01/01 00:10:44 fetching corpus: 100, signal 40998/45710 (executing program) 1970/01/01 00:10:48 fetching corpus: 150, signal 48806/54783 (executing program) 1970/01/01 00:10:51 fetching corpus: 200, signal 56293/63366 (executing program) 1970/01/01 00:10:55 fetching corpus: 250, signal 64221/72221 (executing program) 1970/01/01 00:10:58 fetching corpus: 300, signal 72821/81536 (executing program) 1970/01/01 00:11:01 fetching corpus: 350, signal 77143/86742 (executing program) 1970/01/01 00:11:03 fetching corpus: 400, signal 81502/91890 (executing program) 1970/01/01 00:11:06 fetching corpus: 450, signal 86726/97730 (executing program) 1970/01/01 00:11:09 fetching corpus: 500, signal 89485/101256 (executing program) 1970/01/01 00:11:11 fetching corpus: 550, signal 93094/105470 (executing program) 1970/01/01 00:11:16 fetching corpus: 600, signal 95215/108349 (executing program) 1970/01/01 00:11:18 fetching corpus: 650, signal 97872/111652 (executing program) 1970/01/01 00:11:22 fetching corpus: 700, signal 99840/114332 (executing program) 1970/01/01 00:11:26 fetching corpus: 750, signal 103886/118688 (executing program) 1970/01/01 00:11:29 fetching corpus: 800, signal 106364/121632 (executing program) 1970/01/01 00:11:35 fetching corpus: 850, signal 109110/124782 (executing program) 1970/01/01 00:11:39 fetching corpus: 900, signal 111244/127396 (executing program) 1970/01/01 00:11:42 fetching corpus: 950, signal 112731/129446 (executing program) 1970/01/01 00:11:44 fetching corpus: 1000, signal 114125/131402 (executing program) 1970/01/01 00:11:47 fetching corpus: 1049, signal 116392/133964 (executing program) 1970/01/01 00:11:51 fetching corpus: 1099, signal 118968/136697 (executing program) 1970/01/01 00:11:54 fetching corpus: 1149, signal 120434/138548 (executing program) 1970/01/01 00:11:56 fetching corpus: 1199, signal 122334/140735 (executing program) 1970/01/01 00:11:58 fetching corpus: 1249, signal 123815/142584 (executing program) 1970/01/01 00:12:01 fetching corpus: 1299, signal 125191/144320 (executing program) 1970/01/01 00:12:03 fetching corpus: 1349, signal 126982/146315 (executing program) 1970/01/01 00:12:07 fetching corpus: 1399, signal 128376/147974 (executing program) 1970/01/01 00:12:10 fetching corpus: 1449, signal 130279/150003 (executing program) 1970/01/01 00:12:14 fetching corpus: 1499, signal 131743/151702 (executing program) 1970/01/01 00:12:17 fetching corpus: 1548, signal 133535/153575 (executing program) 1970/01/01 00:12:19 fetching corpus: 1598, signal 135303/155352 (executing program) 1970/01/01 00:12:23 fetching corpus: 1648, signal 136413/156645 (executing program) 1970/01/01 00:12:25 fetching corpus: 1697, signal 137762/158121 (executing program) 1970/01/01 00:12:28 fetching corpus: 1746, signal 140181/160213 (executing program) 1970/01/01 00:12:30 fetching corpus: 1796, signal 141518/161593 (executing program) 1970/01/01 00:12:31 fetching corpus: 1846, signal 142911/163014 (executing program) 1970/01/01 00:12:35 fetching corpus: 1896, signal 144126/164242 (executing program) 1970/01/01 00:12:38 fetching corpus: 1946, signal 145554/165666 (executing program) 1970/01/01 00:12:40 fetching corpus: 1996, signal 146719/166871 (executing program) 1970/01/01 00:12:43 fetching corpus: 2046, signal 148214/168217 (executing program) 1970/01/01 00:12:45 fetching corpus: 2096, signal 149272/169227 (executing program) 1970/01/01 00:12:49 fetching corpus: 2146, signal 150258/170242 (executing program) 1970/01/01 00:12:53 fetching corpus: 2195, signal 151423/171283 (executing program) 1970/01/01 00:12:55 fetching corpus: 2245, signal 152452/172270 (executing program) 1970/01/01 00:12:59 fetching corpus: 2295, signal 154048/173540 (executing program) 1970/01/01 00:13:01 fetching corpus: 2345, signal 155233/174551 (executing program) 1970/01/01 00:13:04 fetching corpus: 2395, signal 156155/175383 (executing program) 1970/01/01 00:13:07 fetching corpus: 2445, signal 157319/176307 (executing program) 1970/01/01 00:13:10 fetching corpus: 2495, signal 158575/177284 (executing program) 1970/01/01 00:13:13 fetching corpus: 2545, signal 159509/178052 (executing program) 1970/01/01 00:13:15 fetching corpus: 2595, signal 160711/178979 (executing program) 1970/01/01 00:13:18 fetching corpus: 2645, signal 161737/179781 (executing program) 1970/01/01 00:13:21 fetching corpus: 2694, signal 162756/180592 (executing program) 1970/01/01 00:13:24 fetching corpus: 2744, signal 163813/181374 (executing program) 1970/01/01 00:13:26 fetching corpus: 2794, signal 164800/182098 (executing program) 1970/01/01 00:13:30 fetching corpus: 2844, signal 165810/182815 (executing program) 1970/01/01 00:13:31 fetching corpus: 2894, signal 167039/183608 (executing program) 1970/01/01 00:13:34 fetching corpus: 2944, signal 167786/184161 (executing program) 1970/01/01 00:13:37 fetching corpus: 2993, signal 168754/184858 (executing program) 1970/01/01 00:13:41 fetching corpus: 3043, signal 169417/185358 (executing program) 1970/01/01 00:13:46 fetching corpus: 3092, signal 170214/185880 (executing program) 1970/01/01 00:13:49 fetching corpus: 3142, signal 170955/186382 (executing program) 1970/01/01 00:13:52 fetching corpus: 3192, signal 172239/187083 (executing program) 1970/01/01 00:13:54 fetching corpus: 3241, signal 173079/187580 (executing program) 1970/01/01 00:13:57 fetching corpus: 3291, signal 174135/188118 (executing program) 1970/01/01 00:14:00 fetching corpus: 3341, signal 175089/188598 (executing program) 1970/01/01 00:14:02 fetching corpus: 3391, signal 175884/189027 (executing program) 1970/01/01 00:14:06 fetching corpus: 3441, signal 176534/189438 (executing program) 1970/01/01 00:14:08 fetching corpus: 3491, signal 177519/189915 (executing program) 1970/01/01 00:14:12 fetching corpus: 3540, signal 178558/190368 (executing program) 1970/01/01 00:14:15 fetching corpus: 3589, signal 179469/190812 (executing program) 1970/01/01 00:14:17 fetching corpus: 3638, signal 180020/191070 (executing program) 1970/01/01 00:14:21 fetching corpus: 3688, signal 181039/191462 (executing program) 1970/01/01 00:14:24 fetching corpus: 3738, signal 181702/191757 (executing program) 1970/01/01 00:14:26 fetching corpus: 3786, signal 182430/192070 (executing program) 1970/01/01 00:14:28 fetching corpus: 3836, signal 183042/192307 (executing program) 1970/01/01 00:14:32 fetching corpus: 3886, signal 183753/192561 (executing program) 1970/01/01 00:14:35 fetching corpus: 3935, signal 184355/192785 (executing program) 1970/01/01 00:14:37 fetching corpus: 3985, signal 186408/193236 (executing program) 1970/01/01 00:14:40 fetching corpus: 4035, signal 187041/193429 (executing program) 1970/01/01 00:14:43 fetching corpus: 4085, signal 187589/193603 (executing program) 1970/01/01 00:14:46 fetching corpus: 4135, signal 188219/193769 (executing program) 1970/01/01 00:14:48 fetching corpus: 4185, signal 188878/193904 (executing program) 1970/01/01 00:14:52 fetching corpus: 4235, signal 189574/194049 (executing program) 1970/01/01 00:14:54 fetching corpus: 4285, signal 190181/194185 (executing program) 1970/01/01 00:14:56 fetching corpus: 4335, signal 190822/194298 (executing program) 1970/01/01 00:14:58 fetching corpus: 4375, signal 191448/194394 (executing program) 1970/01/01 00:14:58 fetching corpus: 4376, signal 191466/194442 (executing program) 1970/01/01 00:14:58 fetching corpus: 4376, signal 191466/194472 (executing program) 1970/01/01 00:14:59 fetching corpus: 4376, signal 191466/194502 (executing program) 1970/01/01 00:14:59 fetching corpus: 4376, signal 191466/194540 (executing program) 1970/01/01 00:14:59 fetching corpus: 4376, signal 191466/194573 (executing program) 1970/01/01 00:14:59 fetching corpus: 4376, signal 191466/194617 (executing program) 1970/01/01 00:14:59 fetching corpus: 4376, signal 191466/194650 (executing program) 1970/01/01 00:14:59 fetching corpus: 4376, signal 191466/194671 (executing program) 1970/01/01 00:14:59 fetching corpus: 4376, signal 191466/194680 (executing program) 1970/01/01 00:15:00 fetching corpus: 4376, signal 191466/194680 (executing program) 1970/01/01 00:17:01 starting 2 fuzzer processes 00:17:01 executing program 0: r0 = socket$nl_crypto(0x10, 0x3, 0x15) setsockopt$sock_void(r0, 0x1, 0x1b, 0x0, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) fanotify_init(0x0, 0x0) fallocate(0xffffffffffffffff, 0x30, 0x1ffc0000000, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000380), r2) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x58, r3, 0x1, 0xffffffff, 0x0, {}, [@NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x2c, 0x7, 0x0, 0x1, [{0x8}, {0x8}, {0x8}, {0x8}, {0x8}]}]}, 0x58}}, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r5, 0x89f2, &(0x7f0000000080)={'ip6tnl0\x00', 0x0}) ioctl$UI_DEV_CREATE(0xffffffffffffffff, 0x5501) ioctl$UI_SET_SNDBIT(0xffffffffffffffff, 0x4004556a, 0x5) ioctl$UI_DEV_CREATE(0xffffffffffffffff, 0x5501) r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000001ac0), 0x0, 0x0) ioctl$SNDCTL_TMR_STOP(r6, 0x5403) 00:17:01 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x2, 0xe, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, [@sadb_spirange={0x2}, @sadb_spirange={0x2}]}, 0x30}}, 0x0) [ 1053.500109][ T2057] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1053.625912][ T2058] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1053.723370][ T2057] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1053.808820][ T2058] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1065.603189][ T2057] device hsr_slave_0 entered promiscuous mode [ 1065.648990][ T2057] device hsr_slave_1 entered promiscuous mode [ 1067.380065][ T2058] device hsr_slave_0 entered promiscuous mode [ 1067.429350][ T2058] device hsr_slave_1 entered promiscuous mode [ 1067.444208][ T2058] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1067.451012][ T2058] Cannot create hsr debugfs directory [ 1074.528296][ T2057] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1074.709443][ T2057] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1075.029082][ T2057] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1075.262688][ T2057] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1076.273541][ T2058] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 1076.617353][ T2058] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 1076.860543][ T2058] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 1077.039652][ T2058] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 1085.756072][ C0] ================================================================== [ 1085.759820][ C0] BUG: KASAN: stack-out-of-bounds in walk_stackframe+0x11c/0x260 [ 1085.761421][ C0] Read of size 8 at addr ffffaf80212fbd60 by task syz-executor.1/2058 [ 1085.763095][ C0] [ 1085.765555][ C0] CPU: 0 PID: 2058 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 1085.767336][ C0] Hardware name: riscv-virtio,qemu (DT) [ 1085.768567][ C0] Call Trace: [ 1085.769595][ C0] [] dump_backtrace+0x2e/0x3c [ 1085.771019][ C0] [] show_stack+0x34/0x40 [ 1085.772300][ C0] [] dump_stack_lvl+0xe4/0x150 [ 1085.773635][ C0] [] print_address_description.constprop.0+0x2a/0x330 [ 1085.775941][ C0] [] kasan_report+0x184/0x1e0 [ 1085.777830][ C0] [] __asan_load8+0x6e/0x96 [ 1085.779348][ C0] [] walk_stackframe+0x11c/0x260 [ 1085.780707][ C0] [] arch_stack_walk+0x2c/0x3c [ 1085.782033][ C0] [] stack_trace_save+0xa6/0xd8 [ 1085.783454][ C0] [] kasan_save_stack+0x2c/0x58 [ 1085.785314][ C0] [ 1085.786294][ C0] The buggy address belongs to the page: [ 1085.787943][ C0] page:ffffaf807af9e698 refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0xa14fb [ 1085.789674][ C0] flags: 0xa000000000(section=20|node=0|zone=0) [ 1085.792207][ C0] raw: 000000a000000000 ffffaf807af9e6a0 ffffaf807af9e6a0 0000000000000000 [ 1085.793595][ C0] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1085.794915][ C0] raw: 00000000000007ff [ 1085.796258][ C0] page dumped because: kasan: bad access detected [ 1085.797472][ C0] page_owner tracks the page as allocated [ 1085.798728][ C0] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), pid 2055, ts 1026722734800, free_ts 0 [ 1085.800968][ C0] __set_page_owner+0x48/0x136 [ 1085.802189][ C0] post_alloc_hook+0xd0/0x10a [ 1085.803293][ C0] get_page_from_freelist+0x8da/0x12d8 [ 1085.804434][ C0] __alloc_pages+0x150/0x3b6 [ 1085.806073][ C0] copy_process+0x482/0x3c34 [ 1085.807217][ C0] kernel_clone+0xee/0x920 [ 1085.808340][ C0] __do_sys_clone+0xf2/0x12e [ 1085.809499][ C0] sys_clone+0x32/0x44 [ 1085.810645][ C0] ret_from_syscall+0x0/0x2 [ 1085.811901][ C0] page_owner free stack trace missing [ 1085.812959][ C0] [ 1085.813677][ C0] Memory state around the buggy address: [ 1085.815162][ C0] ffffaf80212fbc00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 1085.817305][ C0] ffffaf80212fbc80: 00 00 00 00 f1 f1 f1 f1 04 f2 04 f2 00 00 f2 f2 [ 1085.818604][ C0] >ffffaf80212fbd00: 00 00 00 00 00 00 00 00 00 00 00 00 f2 f2 f2 f2 [ 1085.819856][ C0] ^ [ 1085.821151][ C0] ffffaf80212fbd80: f1 f1 f1 f1 00 00 00 f3 f3 f3 f3 f3 00 00 00 00 [ 1085.822445][ C0] ffffaf80212fbe00: f3 f3 f3 f3 00 00 00 00 00 00 00 00 00 00 00 00 [ 1085.823757][ C0] ================================================================== [ 1085.825140][ C0] Disabling lock debugging due to kernel taint [ 1085.831494][ T2058] Kernel panic - not syncing: corrupted stack end detected inside scheduler [ 1085.833027][ T2058] CPU: 0 PID: 2058 Comm: syz-executor.1 Tainted: G B 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 1085.834390][ T2058] Hardware name: riscv-virtio,qemu (DT) [ 1085.835262][ T2058] Call Trace: [ 1085.836028][ T2058] [] dump_backtrace+0x2e/0x3c [ 1085.837220][ T2058] [] show_stack+0x34/0x40 [ 1085.838510][ T2058] [] dump_stack_lvl+0xe4/0x150 [ 1085.839708][ T2058] [] dump_stack+0x1c/0x24 [ 1085.840811][ T2058] [] panic+0x24a/0x634 [ 1085.841811][ T2058] [] schedule+0x0/0x14c [ 1085.842848][ T2058] [] preempt_schedule_common+0x4e/0xde [ 1085.844067][ T2058] [] preempt_schedule+0x34/0x36 [ 1085.845515][ T2058] [] _raw_spin_unlock_irqrestore+0x8c/0x98 [ 1085.847189][ T2058] [] pcpu_alloc+0x7ca/0x1278 [ 1085.848360][ T2058] [] __alloc_percpu_gfp+0x28/0x36 [ 1085.849512][ T2058] [] fib_nh_common_init+0xa8/0x22e [ 1085.850648][ T2058] [] fib6_nh_init+0x350/0x10c0 [ 1085.851844][ T2058] [] ip6_route_info_create+0xb70/0xf78 [ 1085.853049][ T2058] [] addrconf_f6i_alloc+0x242/0x3d8 [ 1085.854239][ T2058] [] ipv6_add_addr+0x28e/0x12f2 [ 1085.855546][ T2058] [] add_addr+0xc8/0x274 [ 1085.856651][ T2058] [] add_v4_addrs+0x4a8/0x640 [ 1085.857700][ T2058] [] addrconf_notify+0x784/0x1360 [ 1085.858805][ T2058] [] notifier_call_chain+0xb8/0x188 [ 1085.859949][ T2058] [] raw_notifier_call_chain+0x2a/0x38 [ 1085.861109][ T2058] [] call_netdevice_notifiers_info+0x9e/0x10c [ 1085.862274][ T2058] [] __dev_notify_flags+0x108/0x1fa [ 1085.863448][ T2058] [] dev_change_flags+0x9c/0xba [ 1085.864551][ T2058] [] do_setlink+0x5d6/0x21c4 [ 1085.865726][ T2058] [] __rtnl_newlink+0x99e/0xfa0 [ 1085.866780][ T2058] [] rtnl_newlink+0x60/0x8c [ 1085.867815][ T2058] [] rtnetlink_rcv_msg+0x338/0x9a0 [ 1085.868927][ T2058] [] netlink_rcv_skb+0xf8/0x2be [ 1085.870019][ T2058] [] rtnetlink_rcv+0x26/0x30 [ 1085.871098][ T2058] [] netlink_unicast+0x40e/0x5fe [ 1085.872145][ T2058] [] netlink_sendmsg+0x4e0/0x994 [ 1085.873226][ T2058] [] sock_sendmsg+0xa0/0xc4 [ 1085.874314][ T2058] [] __sys_sendto+0x1f2/0x2e0 [ 1085.875779][ T2058] [] sys_sendto+0x3e/0x52 [ 1085.876837][ T2058] [] ret_from_syscall+0x0/0x2 [ 1085.878131][ T2058] SMP: stopping secondary CPUs [ 1085.880426][ T2058] Rebooting in 86400 seconds.. VM DIAGNOSIS: 08:11:46 Registers: info registers vcpu 0 pc ffffffff80c2b612 mhartid 0000000000000000 mstatus 00000000000000a0 mip 00000000000000a0 mie 000000000000022a mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff80475786 sepc ffffffff80475ab2 mcause 8000000000000007 scause 8000000000000009 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff8011c7fa x2/sp ffffaf80212fb740 x3/gp ffffffff85863ac0 x4/tp ffffaf800ed6b080 x5/t0 ffffaf80212fb7e3 x6/t1 fffff5ef0425f6fc x7/t2 0000000000000000 x8/s0 ffffaf80212fb770 x9/s1 ffffffff86bcb640 x10/a0 ffffffff86bcb640 x11/a1 000000000000000a x12/a2 0000000000000000 x13/a3 ffffffff8011c7ec x14/a4 ffffaf800ed6b080 x15/a5 0000000000000000 x16/a6 ffffaf80212fb7e7 x17/a7 ffffaf80212fb7e5 x18/s2 ffffffff86bcb641 x19/s3 ffffffff86bcb640 x20/s4 000000000000000a x21/s5 0000000000000017 x22/s6 0000000000000000 x23/s7 0000000000000400 x24/s8 ffffaf80212fb7d0 x25/s9 0000000000000000 x26/s10 00000000000003e7 x27/s11 ffffaf80212fba20 x28/t3 0000000000000043 x29/t4 fffff5ef0425f6fc x30/t5 fffff5ef0425f6fd x31/t6 ffffaf80212fb7e6 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000 info registers vcpu 1 pc ffffffff80005634 mhartid 0000000000000001 mstatus 00000000000001a0 mip 00000000000000a0 mie 000000000000022a mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff80119b52 sepc ffffffff80119b52 mcause 8000000000000007 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff80119b52 x2/sp ffffaf80102cf6c0 x3/gp ffffffff85863ac0 x4/tp ffffaf800ec6c8c0 x5/t0 0000000000046000 x6/t1 68de486fd6494400 x7/t2 ffffffffffffffff x8/s0 ffffaf80102cf7e0 x9/s1 0000000000000120 x10/a0 ffffaf800bdf8c98 x11/a1 0000000000000003 x12/a2 1ffff5f0017bf193 x13/a3 ffffffff80119b52 x14/a4 0000000000000000 x15/a5 ffffaf800bdf8c98 x16/a6 0000000000f00000 x17/a7 ffffffff826e6226 x18/s2 0000000000000001 x19/s3 ffffaf800ec6c8c0 x20/s4 ffffaf800bdf8ca8 x21/s5 ffffaf800bdf8ca0 x22/s6 ffffaf80102cf960 x23/s7 ffffaf80102cfb00 x24/s8 0000000000000000 x25/s9 0000000000004000 x26/s10 0000000000000040 x27/s11 0000000000000001 x28/t3 fffffffff3f3f300 x29/t4 ffffffff80112282 x30/t5 1ffff5f002059eb4 x31/t6 000000000239e1b1 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000