syzkaller login: [  574.671374][ T1858] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  574.725707][ T1858] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  574.750765][ T1858] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  584.819536][ T1858] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
Warning: Permanently added '[localhost]:57474' (ECDSA) to the list of known hosts.
1970/01/01 00:11:14 fuzzer started
1970/01/01 00:11:26 dialing manager at localhost:41167
[  692.741530][ T2032] cgroup: Unknown subsys name 'net'
[  693.795038][ T2032] cgroup: Unknown subsys name 'rlimit'
1970/01/01 00:11:33 syscalls: 2918
1970/01/01 00:11:33 code coverage: enabled
1970/01/01 00:11:33 comparison tracing: ioctl(KCOV_DISABLE) failed: invalid argument
1970/01/01 00:11:33 extra coverage: enabled
1970/01/01 00:11:33 delay kcov mmap: mmap returned an invalid pointer
1970/01/01 00:11:33 setuid sandbox: enabled
1970/01/01 00:11:33 namespace sandbox: enabled
1970/01/01 00:11:33 Android sandbox: /sys/fs/selinux/policy does not exist
1970/01/01 00:11:33 fault injection: enabled
1970/01/01 00:11:33 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
1970/01/01 00:11:33 net packet injection: enabled
1970/01/01 00:11:33 net device setup: enabled
1970/01/01 00:11:33 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
1970/01/01 00:11:33 devlink PCI setup: PCI device 0000:00:10.0 is not available
1970/01/01 00:11:33 NIC VF setup: PCI device 0000:00:11.0 is not available
1970/01/01 00:11:33 USB emulation: enabled
1970/01/01 00:11:33 hci packet injection: /dev/vhci does not exist
1970/01/01 00:11:33 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist
1970/01/01 00:11:33 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist
1970/01/01 00:11:34 fetching corpus: 0, signal 0/2000 (executing program)
1970/01/01 00:11:38 fetching corpus: 50, signal 36011/38590 (executing program)
1970/01/01 00:11:42 fetching corpus: 100, signal 49853/52877 (executing program)
1970/01/01 00:11:47 fetching corpus: 147, signal 56165/59662 (executing program)
1970/01/01 00:11:51 fetching corpus: 197, signal 62692/66332 (executing program)
1970/01/01 00:11:54 fetching corpus: 245, signal 70861/74249 (executing program)
1970/01/01 00:11:58 fetching corpus: 293, signal 78319/81208 (executing program)
1970/01/01 00:12:01 fetching corpus: 343, signal 82488/85132 (executing program)
1970/01/01 00:12:04 fetching corpus: 391, signal 85434/87874 (executing program)
1970/01/01 00:12:07 fetching corpus: 440, signal 87991/90216 (executing program)
1970/01/01 00:12:09 fetching corpus: 490, signal 91814/93429 (executing program)
1970/01/01 00:12:11 fetching corpus: 540, signal 94590/95627 (executing program)
1970/01/01 00:12:13 fetching corpus: 579, signal 97331/97781 (executing program)
1970/01/01 00:12:14 fetching corpus: 579, signal 97339/97825 (executing program)
1970/01/01 00:12:14 fetching corpus: 579, signal 97339/97852 (executing program)
1970/01/01 00:12:14 fetching corpus: 579, signal 97339/97890 (executing program)
1970/01/01 00:12:14 fetching corpus: 579, signal 97339/97915 (executing program)
1970/01/01 00:12:14 fetching corpus: 579, signal 97339/97958 (executing program)
1970/01/01 00:12:14 fetching corpus: 579, signal 97339/97991 (executing program)
1970/01/01 00:12:15 fetching corpus: 579, signal 97339/98039 (executing program)
1970/01/01 00:12:15 fetching corpus: 579, signal 97339/98078 (executing program)
1970/01/01 00:12:15 fetching corpus: 579, signal 97339/98108 (executing program)
1970/01/01 00:12:15 fetching corpus: 579, signal 97339/98147 (executing program)
1970/01/01 00:12:15 fetching corpus: 579, signal 97339/98178 (executing program)
1970/01/01 00:12:15 fetching corpus: 579, signal 97339/98213 (executing program)
1970/01/01 00:12:16 fetching corpus: 579, signal 97343/98255 (executing program)
1970/01/01 00:12:16 fetching corpus: 579, signal 97343/98291 (executing program)
1970/01/01 00:12:16 fetching corpus: 579, signal 97343/98325 (executing program)
1970/01/01 00:12:16 fetching corpus: 579, signal 97343/98353 (executing program)
1970/01/01 00:12:16 fetching corpus: 579, signal 97343/98393 (executing program)
1970/01/01 00:12:17 fetching corpus: 579, signal 97343/98429 (executing program)
1970/01/01 00:12:17 fetching corpus: 579, signal 97343/98471 (executing program)
1970/01/01 00:12:17 fetching corpus: 579, signal 97343/98511 (executing program)
1970/01/01 00:12:17 fetching corpus: 579, signal 97343/98543 (executing program)
1970/01/01 00:12:17 fetching corpus: 579, signal 97343/98582 (executing program)
1970/01/01 00:12:18 fetching corpus: 579, signal 97343/98617 (executing program)
1970/01/01 00:12:18 fetching corpus: 579, signal 97343/98656 (executing program)
1970/01/01 00:12:18 fetching corpus: 579, signal 97343/98692 (executing program)
1970/01/01 00:12:18 fetching corpus: 579, signal 97343/98728 (executing program)
1970/01/01 00:12:18 fetching corpus: 579, signal 97343/98765 (executing program)
1970/01/01 00:12:19 fetching corpus: 580, signal 97379/98822 (executing program)
1970/01/01 00:12:19 fetching corpus: 580, signal 97379/98863 (executing program)
1970/01/01 00:12:19 fetching corpus: 580, signal 97379/98903 (executing program)
1970/01/01 00:12:19 fetching corpus: 580, signal 97379/98939 (executing program)
1970/01/01 00:12:19 fetching corpus: 580, signal 97379/98962 (executing program)
1970/01/01 00:12:19 fetching corpus: 580, signal 97379/98993 (executing program)
1970/01/01 00:12:19 fetching corpus: 580, signal 97379/99031 (executing program)
1970/01/01 00:12:19 fetching corpus: 580, signal 97379/99059 (executing program)
1970/01/01 00:12:20 fetching corpus: 580, signal 97379/99097 (executing program)
1970/01/01 00:12:20 fetching corpus: 580, signal 97379/99109 (executing program)
1970/01/01 00:12:20 fetching corpus: 580, signal 97379/99109 (executing program)
1970/01/01 00:14:08 starting 2 fuzzer processes
00:14:09 executing program 0:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1636e1, 0x0)
pwritev2(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

00:14:09 executing program 1:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r0, 0x28, 0x6, 0x0, 0x0)

[  875.312105][ T2039] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  875.481138][ T2039] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  877.188041][ T2040] Kernel panic - not syncing: corrupted stack end detected inside scheduler
[  877.190861][ T2040] CPU: 0 PID: 2040 Comm: syz-executor.0 Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0
[  877.192837][ T2040] Hardware name: riscv-virtio,qemu (DT)
[  877.195390][ T2040] Call Trace:
[  877.196353][ T2040] [<ffffffff8000a228>] dump_backtrace+0x2e/0x3c
[  877.197749][ T2040] [<ffffffff831668cc>] show_stack+0x34/0x40
[  877.198885][ T2040] [<ffffffff831756ba>] dump_stack_lvl+0xe4/0x150
[  877.200147][ T2040] [<ffffffff83175742>] dump_stack+0x1c/0x24
[  877.201405][ T2040] [<ffffffff83166fa8>] panic+0x24a/0x634
[  877.202509][ T2040] [<ffffffff831a688a>] schedule+0x0/0x14c
[  877.204258][ T2040] [<ffffffff831a6b00>] preempt_schedule_common+0x4e/0xde
[  877.205610][ T2040] [<ffffffff831a6bc4>] preempt_schedule+0x34/0x36
[  877.206859][ T2040] [<ffffffff831afd78>] _raw_spin_unlock_irqrestore+0x8c/0x98
[  877.208085][ T2040] [<ffffffff80b09fdc>] debug_check_no_obj_freed+0x14c/0x24a
[  877.209369][ T2040] [<ffffffff80410994>] free_pcp_prepare+0x24e/0x45e
[  877.210592][ T2040] [<ffffffff804142fe>] free_unref_page+0x6a/0x31e
[  877.211768][ T2040] [<ffffffff8041471e>] __free_pages+0xe2/0x112
[  877.213012][ T2040] [<ffffffff8046d728>] __free_slab+0x122/0x27c
[  877.214990][ T2040] [<ffffffff8046d8ce>] discard_slab+0x4c/0x7a
[  877.216155][ T2040] [<ffffffff8046d190>] __slab_free+0x20a/0x29c
[  877.217416][ T2040] [<ffffffff8047258c>] ___cache_free+0x17c/0x354
[  877.218677][ T2040] [<ffffffff8047692e>] qlist_free_all+0x7c/0x132
[  877.219878][ T2040] [<ffffffff80476ed4>] kasan_quarantine_reduce+0x14c/0x1c8
[  877.221170][ T2040] [<ffffffff804742b2>] __kasan_slab_alloc+0x5c/0x98
[  877.222502][ T2040] [<ffffffff8046f410>] __kmalloc_track_caller+0x156/0x30e
[  877.224538][ T2040] [<ffffffff803938e6>] kmemdup+0x2a/0x5a
[  877.225783][ T2040] [<ffffffff82bb59d6>] __devinet_sysctl_register+0xb0/0x1fc
[  877.227046][ T2040] [<ffffffff82bb5c32>] devinet_sysctl_register+0x110/0x142
[  877.228310][ T2040] [<ffffffff82bb5e3c>] inetdev_init+0x1d8/0x3d8
[  877.229514][ T2040] [<ffffffff82bb7a1e>] inetdev_event+0x88c/0xe9e
[  877.230730][ T2040] [<ffffffff800aac84>] notifier_call_chain+0xb8/0x188
[  877.232017][ T2040] [<ffffffff800aad7e>] raw_notifier_call_chain+0x2a/0x38
[  877.234323][ T2040] [<ffffffff8271d086>] call_netdevice_notifiers_info+0x9e/0x10c
[  877.235767][ T2040] [<ffffffff82746492>] register_netdevice+0xae8/0xc6a
[  877.237110][ T2040] [<ffffffff817d75b2>] veth_newlink+0x30e/0x7dc
[  877.238402][ T2040] [<ffffffff8276a91a>] __rtnl_newlink+0xc16/0xfa0
[  877.239692][ T2040] [<ffffffff8276ad04>] rtnl_newlink+0x60/0x8c
[  877.240927][ T2040] [<ffffffff8276b46c>] rtnetlink_rcv_msg+0x338/0x9a0
[  877.242231][ T2040] [<ffffffff8296ded2>] netlink_rcv_skb+0xf8/0x2be
[  877.244276][ T2040] [<ffffffff827624f4>] rtnetlink_rcv+0x26/0x30
[  877.245647][ T2040] [<ffffffff8296cbcc>] netlink_unicast+0x40e/0x5fe
[  877.246874][ T2040] [<ffffffff8296d29c>] netlink_sendmsg+0x4e0/0x994
[  877.248016][ T2040] [<ffffffff826d264e>] sock_sendmsg+0xa0/0xc4
[  877.249270][ T2040] [<ffffffff826d7026>] __sys_sendto+0x1f2/0x2e0
[  877.250444][ T2040] [<ffffffff826d7152>] sys_sendto+0x3e/0x52
[  877.251648][ T2040] [<ffffffff80005716>] ret_from_syscall+0x0/0x2
[  877.253341][ T2040] SMP: stopping secondary CPUs
[  877.256824][ T2040] Rebooting in 86400 seconds..

VM DIAGNOSIS:
03:42:52  Registers:
info registers vcpu 0
 pc       ffffffff8013fa44
 mhartid  0000000000000000
 mstatus  00000000000000a0
 mip      0000000000000080
 mie      00000000000002aa
 mideleg  0000000000000222
 medeleg  000000000000b109
 mtvec    0000000080000540
 stvec    ffffffff800055d4
 mepc     ffffffff8000f97e
 sepc     00007fff89c611b8
 mcause   0000000000000009
 scause   0000000000000008
 mtval  0000000000000000
 stval  0000000000000000
 x0/zero 0000000000000000 x1/ra ffffffff8013fa44 x2/sp ffffaf801016fbb0 x3/gp ffffffff85863ac0
 x4/tp ffffaf800e799840 x5/t0 ffffaf801016fe48 x6/t1 fffffffef0b11aa4 x7/t2 ffffffff8dd63494
 x8/s0 ffffaf801016fbd0 x9/s1 0000000000000001 x10/a0 0000000000000001 x11/a1 0000000000000003
 x12/a2 1ffff5f001cf3309 x13/a3 ffffffff80146d84 x14/a4 0000000000000002 x15/a5 0000000000000003
 x16/a6 0000000000f00000 x17/a7 ffffffff8588d523 x18/s2 ffffaf801016fc80 x19/s3 ffffffff8588a420
 x20/s4 0000000000000001 x21/s5 ffffffff85889780 x22/s6 0000000000000000 x23/s7 ffffaf800e799840
 x24/s8 ffffffff85889780 x25/s9 1ffff5f00202df80 x26/s10 ffffaf8009f78018 x27/s11 ffffffff8007357a
 x28/t3 fffffffff3f3f300 x29/t4 fffffffef0b11aa4 x30/t5 fffffffef0b11aa5 x31/t6 0000000000040000
 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000
 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000
 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000
 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000
 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000
 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000
 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000
 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000
info registers vcpu 1
 pc       ffffffff80dc337e
 mhartid  0000000000000001
 mstatus  00000000000000a0
 mip      00000000000002a0
 mie      000000000000022a
 mideleg  0000000000000222
 medeleg  000000000000b109
 mtvec    0000000080000540
 stvec    ffffffff800055d4
 mepc     ffffffff80c38a98
 sepc     ffffffff831afd22
 mcause   8000000000000007
 scause   8000000000000009
 mtval  0000000000000000
 stval  0000000000000000
 x0/zero 0000000000000000 x1/ra ffffffff80dc337e x2/sp ffffaf800e575c80 x3/gp ffffffff85863ac0
 x4/tp ffffaf800ecb0000 x5/t0 ffffffff86bcb657 x6/t1 a932167ffba8f800 x7/t2 0000000000000000
 x8/s0 ffffaf800e575cb0 x9/s1 ffffffff86e58900 x10/a0 ffffffff86e58948 x11/a1 ffff8f800066c000
 x12/a2 1ffffffff0dcb129 x13/a3 ffffffff80dc337e x14/a4 0000000000000000 x15/a5 ffffffff86e58948
 x16/a6 ffffffff86e589f1 x17/a7 ffffffff80dcc2ca x18/s2 ffff8f800066c000 x19/s3 0000000000000072
 x20/s4 ffffffff86e58900 x21/s5 ffffffff80dc333e x22/s6 0000000000000000 x23/s7 ffffffff86bcb67d
 x24/s8 0000000000000010 x25/s9 ffffffff86e58958 x26/s10 0000000000000010 x27/s11 0000000000000000
 x28/t3 fffffffff3f3f300 x29/t4 ffffffff80112282 x30/t5 1ffff5f001caeb40 x31/t6 ffffffff86bcb657
 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000
 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000
 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000
 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000
 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000
 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000
 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000
 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000