syzkaller login: [ 297.627897][ T1860] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 297.682362][ T1860] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 350.249488][ T1860] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:38705' (ECDSA) to the list of known hosts. 1970/01/01 00:06:16 fuzzer started 1970/01/01 00:06:31 dialing manager at localhost:33913 [ 398.206866][ T2050] cgroup: Unknown subsys name 'net' [ 399.461466][ T2050] cgroup: Unknown subsys name 'rlimit' 1970/01/01 00:06:39 syscalls: 2827 1970/01/01 00:06:39 code coverage: enabled 1970/01/01 00:06:39 comparison tracing: enabled 1970/01/01 00:06:39 extra coverage: enabled 1970/01/01 00:06:39 delay kcov mmap: mmap returned an invalid pointer 1970/01/01 00:06:39 setuid sandbox: enabled 1970/01/01 00:06:39 namespace sandbox: enabled 1970/01/01 00:06:39 Android sandbox: /sys/fs/selinux/policy does not exist 1970/01/01 00:06:39 fault injection: enabled 1970/01/01 00:06:39 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 1970/01/01 00:06:39 net packet injection: enabled 1970/01/01 00:06:39 net device setup: enabled 1970/01/01 00:06:39 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 1970/01/01 00:06:39 devlink PCI setup: PCI device 0000:00:10.0 is not available 1970/01/01 00:06:39 USB emulation: enabled 1970/01/01 00:06:39 hci packet injection: /dev/vhci does not exist 1970/01/01 00:06:39 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist 1970/01/01 00:06:39 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist 1970/01/01 00:06:39 fetching corpus: 0, signal 0/2000 (executing program) 1970/01/01 00:06:45 fetching corpus: 49, signal 32668/34904 (executing program) 1970/01/01 00:06:49 fetching corpus: 99, signal 49708/51776 (executing program) 1970/01/01 00:06:55 fetching corpus: 148, signal 62374/63862 (executing program) 1970/01/01 00:07:00 fetching corpus: 198, signal 67332/68588 (executing program) 1970/01/01 00:07:03 fetching corpus: 238, signal 73728/74269 (executing program) 1970/01/01 00:07:03 fetching corpus: 240, signal 74144/74723 (executing program) 1970/01/01 00:07:03 fetching corpus: 240, signal 74284/74916 (executing program) 1970/01/01 00:07:03 fetching corpus: 240, signal 74284/75007 (executing program) 1970/01/01 00:07:03 fetching corpus: 240, signal 74284/75097 (executing program) 1970/01/01 00:07:04 fetching corpus: 240, signal 74284/75208 (executing program) 1970/01/01 00:07:04 fetching corpus: 240, signal 74284/75304 (executing program) 1970/01/01 00:07:04 fetching corpus: 240, signal 74284/75393 (executing program) 1970/01/01 00:07:04 fetching corpus: 240, signal 74284/75471 (executing program) 1970/01/01 00:07:05 fetching corpus: 240, signal 74284/75548 (executing program) 1970/01/01 00:07:05 fetching corpus: 240, signal 74284/75648 (executing program) 1970/01/01 00:07:05 fetching corpus: 240, signal 74284/75757 (executing program) 1970/01/01 00:07:05 fetching corpus: 240, signal 74284/75854 (executing program) 1970/01/01 00:07:05 fetching corpus: 240, signal 74284/75933 (executing program) 1970/01/01 00:07:05 fetching corpus: 240, signal 74284/76010 (executing program) 1970/01/01 00:07:06 fetching corpus: 240, signal 74284/76090 (executing program) 1970/01/01 00:07:06 fetching corpus: 240, signal 74284/76169 (executing program) 1970/01/01 00:07:06 fetching corpus: 240, signal 74284/76246 (executing program) 1970/01/01 00:07:06 fetching corpus: 240, signal 74284/76340 (executing program) 1970/01/01 00:07:06 fetching corpus: 240, signal 74284/76430 (executing program) 1970/01/01 00:07:06 fetching corpus: 240, signal 74284/76507 (executing program) 1970/01/01 00:07:06 fetching corpus: 240, signal 74284/76607 (executing program) 1970/01/01 00:07:07 fetching corpus: 240, signal 74284/76703 (executing program) 1970/01/01 00:07:07 fetching corpus: 240, signal 74284/76771 (executing program) 1970/01/01 00:07:07 fetching corpus: 240, signal 74284/76854 (executing program) 1970/01/01 00:07:07 fetching corpus: 240, signal 74284/76946 (executing program) 1970/01/01 00:07:07 fetching corpus: 240, signal 74284/77027 (executing program) 1970/01/01 00:07:07 fetching corpus: 240, signal 74284/77101 (executing program) 1970/01/01 00:07:08 fetching corpus: 241, signal 74285/77192 (executing program) 1970/01/01 00:07:08 fetching corpus: 241, signal 74287/77265 (executing program) 1970/01/01 00:07:08 fetching corpus: 241, signal 74287/77364 (executing program) 1970/01/01 00:07:08 fetching corpus: 241, signal 74287/77444 (executing program) 1970/01/01 00:07:08 fetching corpus: 241, signal 74287/77533 (executing program) 1970/01/01 00:07:08 fetching corpus: 241, signal 74287/77600 (executing program) 1970/01/01 00:07:08 fetching corpus: 241, signal 74287/77600 (executing program) 1970/01/01 00:09:07 starting 2 fuzzer processes 00:09:07 executing program 0: r0 = syz_open_dev$sndpcmp(&(0x7f0000002100), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_XRUN(r0, 0x80044100, 0x0) 00:09:07 executing program 1: syz_open_procfs(0x0, &(0x7f00000000c0)='net/packet\x00') syz_open_dev$amidi(&(0x7f0000000080), 0x2, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) pselect6(0x40, &(0x7f0000000180), 0x0, &(0x7f0000000200)={0x1f}, 0x0, 0x0) [ 576.697487][ T2056] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 577.441774][ T2056] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 577.530181][ T2057] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 578.143604][ T2057] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 590.283435][ T2056] device hsr_slave_0 entered promiscuous mode [ 590.316064][ T2056] device hsr_slave_1 entered promiscuous mode [ 592.873492][ T2057] device hsr_slave_0 entered promiscuous mode [ 593.077803][ T2057] device hsr_slave_1 entered promiscuous mode [ 593.091391][ T2057] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 593.096055][ T2057] Cannot create hsr debugfs directory [ 599.580951][ T2056] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 599.919881][ T2056] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 600.690566][ T2056] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 600.862854][ T2056] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 602.711520][ T2057] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 602.814971][ C0] ================================================================== [ 602.820555][ C0] BUG: KASAN: slab-out-of-bounds in walk_stackframe+0x11c/0x260 [ 602.823601][ C0] Read of size 8 at addr ffffaf8010f47cf0 by task syz-executor.1/2057 [ 602.827102][ C0] [ 602.828721][ C0] CPU: 0 PID: 2057 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 602.830764][ C0] Hardware name: riscv-virtio,qemu (DT) [ 602.832222][ C0] Call Trace: [ 602.833336][ C0] [] dump_backtrace+0x2e/0x3c [ 602.835035][ C0] [] show_stack+0x34/0x40 [ 602.836386][ C0] [] dump_stack_lvl+0xe4/0x150 [ 602.837489][ C0] [] print_address_description.constprop.0+0x2a/0x330 [ 602.839123][ C0] [] kasan_report+0x184/0x1e0 [ 602.840646][ C0] [] __asan_load8+0x6e/0x96 [ 602.841992][ C0] [] walk_stackframe+0x11c/0x260 [ 602.843301][ C0] [] arch_stack_walk+0x2c/0x3c [ 602.845441][ C0] [] stack_trace_save+0xa6/0xd8 [ 602.846878][ C0] [] save_stack+0x112/0x16c [ 602.848294][ C0] [] __set_page_owner+0x48/0x136 [ 602.849368][ C0] [] post_alloc_hook+0xd0/0x10a [ 602.850378][ C0] [] get_page_from_freelist+0x8da/0x12d8 [ 602.851616][ C0] [ 602.852262][ C0] Allocated by task 34: [ 602.852957][ C0] (stack is not available) [ 602.853605][ C0] [ 602.854756][ C0] Last potentially related work creation: [ 602.856490][ C0] ------------[ cut here ]------------ [ 602.857626][ C0] slab index 1342704 out of bounds (312) for stack id 10f47cf0 [ 602.861740][ C0] WARNING: CPU: 0 PID: 2057 at lib/stackdepot.c:304 stack_depot_print+0x66/0x70 [ 602.863537][ C0] Modules linked in: [ 602.865315][ C0] CPU: 0 PID: 2057 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 602.866974][ C0] Hardware name: riscv-virtio,qemu (DT) [ 602.868139][ C0] epc : stack_depot_print+0x66/0x70 [ 602.869555][ C0] ra : stack_depot_print+0x66/0x70 [ 602.870949][ C0] epc : ffffffff80c00b8a ra : ffffffff80c00b8a sp : ffffaf8010f47bb0 [ 602.872439][ C0] gp : ffffffff85863ac0 tp : ffffaf800d7a8000 t0 : ffffffff86bcb657 [ 602.873833][ C0] t1 : fffff5ef0b53910c t2 : 0000000000000000 s0 : ffffaf8010f47bc0 [ 602.876276][ C0] s1 : ffffaf807ab0da00 a0 : 000000000000003c a1 : 00000000000f0000 [ 602.878058][ C0] a2 : 0000000000000504 a3 : ffffffff8012252a a4 : 69bce758c23b7800 [ 602.879009][ C0] a5 : 69bce758c23b7800 a6 : 0000000000f00000 a7 : ffffaf805a9c8863 [ 602.879926][ C0] s2 : ffffaf8010f47cf0 s3 : ffffaf8007201dc0 s4 : ffffaf8010f47800 [ 602.880920][ C0] s5 : ffffaf8010f47c00 s6 : 0000000000003fff s7 : ffffaf8010f47c90 [ 602.881868][ C0] s8 : ffffaf805a9de910 s9 : ffffffffffffc000 s10: ffffaf8010f47d60 [ 602.882890][ C0] s11: 0000000000000008 t3 : fffffffff3f3f300 t4 : fffff5ef0b53910c [ 602.883822][ C0] t5 : fffff5ef0b53910d t6 : ffffaf8010f476b8 [ 602.884923][ C0] status: 0000000000000100 badaddr: 0000000000000000 cause: 0000000000000003 [ 602.886489][ C0] [] print_address_description.constprop.0+0x2fc/0x330 [ 602.887756][ C0] [] kasan_report+0x184/0x1e0 [ 602.888893][ C0] [] __asan_load8+0x6e/0x96 [ 602.889861][ C0] [] walk_stackframe+0x11c/0x260 [ 602.890914][ C0] [] arch_stack_walk+0x2c/0x3c [ 602.891888][ C0] [] stack_trace_save+0xa6/0xd8 [ 602.892934][ C0] [] save_stack+0x112/0x16c [ 602.893890][ C0] [] __set_page_owner+0x48/0x136 [ 602.895173][ C0] [] post_alloc_hook+0xd0/0x10a [ 602.896300][ C0] [] get_page_from_freelist+0x8da/0x12d8 [ 602.897452][ C0] irq event stamp: 101341 [ 602.898183][ C0] hardirqs last enabled at (101340): [] get_page_from_freelist+0xfc8/0x12d8 [ 602.899643][ C0] hardirqs last disabled at (101341): [] _raw_spin_lock_irqsave+0x60/0x62 [ 602.900953][ C0] softirqs last enabled at (101198): [] __do_softirq+0x618/0x8fc [ 602.902088][ C0] softirqs last disabled at (101235): [] __irq_exit_rcu+0x142/0x1f8 [ 602.903233][ C0] ---[ end trace 0000000000000000 ]--- [ 602.904331][ C0] [ 602.904994][ C0] Second to last potentially related work creation: [ 602.905920][ C0] ------------[ cut here ]------------ [ 602.906602][ C0] slab index 2076544 out of bounds (312) for stack id ffffaf80 [ 602.909382][ C0] WARNING: CPU: 0 PID: 2057 at lib/stackdepot.c:304 stack_depot_print+0x66/0x70 [ 602.910631][ C0] Modules linked in: [ 602.911555][ C0] CPU: 0 PID: 2057 Comm: syz-executor.1 Tainted: G W 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 602.912790][ C0] Hardware name: riscv-virtio,qemu (DT) [ 602.913559][ C0] epc : stack_depot_print+0x66/0x70 [ 602.914506][ C0] ra : stack_depot_print+0x66/0x70 [ 602.915815][ C0] epc : ffffffff80c00b8a ra : ffffffff80c00b8a sp : ffffaf8010f47bb0 [ 602.916760][ C0] gp : ffffffff85863ac0 tp : ffffaf800d7a8000 t0 : ffffffff86bcb657 [ 602.917677][ C0] t1 : fffff5ef0b53910c t2 : 0000000000000000 s0 : ffffaf8010f47bc0 [ 602.918642][ C0] s1 : ffffaf807ab0da00 a0 : 000000000000003c a1 : 00000000000f0000 [ 602.919565][ C0] a2 : 0000000000000504 a3 : ffffffff8012252a a4 : 69bce758c23b7800 [ 602.920457][ C0] a5 : 69bce758c23b7800 a6 : 0000000000f00000 a7 : ffffaf805a9c8863 [ 602.921410][ C0] s2 : ffffaf8010f47cf0 s3 : ffffaf8007201dc0 s4 : ffffaf8010f47800 [ 602.922411][ C0] s5 : ffffaf8010f47c00 s6 : 0000000000003fff s7 : ffffaf8010f47c90 [ 602.923413][ C0] s8 : ffffaf805a9de910 s9 : ffffffffffffc000 s10: ffffaf8010f47d60 [ 602.924626][ C0] s11: 0000000000000008 t3 : fffffffff3f3f300 t4 : fffff5ef0b53910c [ 602.925825][ C0] t5 : fffff5ef0b53910d t6 : ffffaf8010f476b8 [ 602.927040][ C0] status: 0000000000000100 badaddr: 0000000000000000 cause: 0000000000000003 [ 602.928004][ C0] [] print_address_description.constprop.0+0x2ae/0x330 [ 602.929218][ C0] [] kasan_report+0x184/0x1e0 [ 602.930234][ C0] [] __asan_load8+0x6e/0x96 [ 602.931144][ C0] [] walk_stackframe+0x11c/0x260 [ 602.932096][ C0] [] arch_stack_walk+0x2c/0x3c [ 602.933079][ C0] [] stack_trace_save+0xa6/0xd8 [ 602.934252][ C0] [] save_stack+0x112/0x16c [ 602.935833][ C0] [] __set_page_owner+0x48/0x136 [ 602.937119][ C0] [] post_alloc_hook+0xd0/0x10a [ 602.938259][ C0] [] get_page_from_freelist+0x8da/0x12d8 [ 602.940105][ C0] irq event stamp: 101341 [ 602.941094][ C0] hardirqs last enabled at (101340): [] get_page_from_freelist+0xfc8/0x12d8 [ 602.942620][ C0] hardirqs last disabled at (101341): [] _raw_spin_lock_irqsave+0x60/0x62 [ 602.943938][ C0] softirqs last enabled at (101198): [] __do_softirq+0x618/0x8fc [ 602.945626][ C0] softirqs last disabled at (101235): [] __irq_exit_rcu+0x142/0x1f8 [ 602.946833][ C0] ---[ end trace 0000000000000000 ]--- [ 602.947618][ C0] [ 602.948209][ C0] The buggy address belongs to the object at ffffaf8010f47800 [ 602.948209][ C0] which belongs to the cache kmalloc-1k of size 1024 [ 602.950035][ C0] The buggy address is located 240 bytes to the right of [ 602.950035][ C0] 1024-byte region [ffffaf8010f47800, ffffaf8010f47c00) [ 602.951922][ C0] The buggy address belongs to the page: [ 602.953531][ C0] page:ffffaf807ab0da00 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffffaf8010f41000 pfn:0x91140 [ 602.956881][ C0] head:ffffaf807ab0da00 order:3 compound_mapcount:0 compound_pincount:0 [ 602.958556][ C0] flags: 0x9000010200(slab|head|section=18|node=0|zone=0) [ 602.962051][ C0] raw: 0000009000010200 ffffaf807a876dc8 ffffaf807a9acf08 ffffaf8007201dc0 [ 602.963652][ C0] raw: ffffaf8010f41000 0000000000100001 00000001ffffffff 0000000000000000 [ 602.965758][ C0] raw: 00000000000007ff [ 602.967237][ C0] page dumped because: kasan: bad access detected [ 602.968633][ C0] page_owner tracks the page as allocated [ 602.969756][ C0] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2a20(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1996, ts 319859435000, free_ts 319721861000 [ 602.972370][ C0] __set_page_owner+0x48/0x136 [ 602.973770][ C0] post_alloc_hook+0xd0/0x10a [ 602.975566][ C0] get_page_from_freelist+0x8da/0x12d8 [ 602.977022][ C0] __alloc_pages+0x150/0x3b6 [ 602.978279][ C0] alloc_pages+0x132/0x2a6 [ 602.979558][ C0] alloc_slab_page.constprop.0+0xc2/0xfa [ 602.980949][ C0] new_slab+0x76/0x2cc [ 602.982160][ C0] ___slab_alloc+0x56e/0x918 [ 602.983450][ C0] __slab_alloc.constprop.0+0x50/0x8c [ 602.985268][ C0] __kmalloc_node_track_caller+0x26c/0x362 [ 602.986887][ C0] __alloc_skb+0xee/0x2e4 [ 602.988189][ C0] __napi_alloc_skb+0x72/0x214 [ 602.989485][ C0] page_to_skb+0x16e/0x70e [ 602.990691][ C0] receive_buf+0xa20/0x3e50 [ 602.991886][ C0] virtnet_poll+0x39c/0x986 [ 602.993153][ C0] __napi_poll+0x7c/0x358 [ 602.994797][ C0] page last free stack trace: [ 602.996175][ C0] __reset_page_owner+0x4a/0xea [ 602.997562][ C0] free_pcp_prepare+0x29c/0x45e [ 602.998846][ C0] free_unref_page+0x6a/0x31e [ 603.000071][ C0] free_compound_page+0x70/0x8a [ 603.001334][ C0] __put_compound_page+0x7c/0xb0 [ 603.002373][ C0] __put_page+0x48/0x100 [ 603.003731][ C0] skb_release_data+0x2f8/0x3c4 [ 603.005428][ C0] kfree_skb_reason+0x11a/0x40a [ 603.006620][ C0] skb_release_data+0x33a/0x3c4 [ 603.007840][ C0] __kfree_skb+0x38/0x50 [ 603.009008][ C0] __sk_defer_free_flush+0x52/0x68 [ 603.010287][ C0] tcp_v4_rcv+0x1bbc/0x1f46 [ 603.011543][ C0] ip_protocol_deliver_rcu+0x9c/0x8c0 [ 603.012920][ C0] ip_local_deliver_finish+0x12c/0x278 [ 603.014527][ C0] ip_local_deliver+0x160/0x464 [ 603.016302][ C0] ip_sublist_rcv_finish+0x64/0x1b2 [ 603.017871][ C0] [ 603.018687][ C0] Memory state around the buggy address: [ 603.020192][ C0] ffffaf8010f47b80: 00 00 00 00 00 00 00 00 00 00 00 00 fb fb fb fb [ 603.021661][ C0] ffffaf8010f47c00: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc [ 603.023004][ C0] >ffffaf8010f47c80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 603.024458][ C0] ^ [ 603.026570][ C0] ffffaf8010f47d00: fc fc fc fc fc fc fc fc f1 f1 f1 f1 00 00 00 f3 [ 603.027919][ C0] ffffaf8010f47d80: f3 f3 f3 f3 00 00 00 00 00 00 00 00 00 00 00 00 [ 603.029189][ C0] ================================================================== [ 603.030408][ C0] Disabling lock debugging due to kernel taint [ 603.041771][ T2057] Kernel panic - not syncing: corrupted stack end detected inside scheduler [ 603.043044][ T2057] CPU: 0 PID: 2057 Comm: syz-executor.1 Tainted: G B W 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 603.045350][ T2057] Hardware name: riscv-virtio,qemu (DT) [ 603.046753][ T2057] Call Trace: [ 603.047502][ T2057] [] dump_backtrace+0x2e/0x3c [ 603.048799][ T2057] [] show_stack+0x34/0x40 [ 603.049976][ T2057] [] dump_stack_lvl+0xe4/0x150 [ 603.051259][ T2057] [] dump_stack+0x1c/0x24 [ 603.052488][ T2057] [] panic+0x24a/0x634 [ 603.053696][ T2057] [] schedule+0x0/0x14c [ 603.055495][ T2057] [] preempt_schedule_irq+0x4a/0x13e [ 603.056790][ T2057] [] resume_kernel+0x16/0x18 [ 603.058288][ T2057] SMP: stopping secondary CPUs [ 603.060794][ T2057] Rebooting in 86400 seconds.. VM DIAGNOSIS: 14:51:31 Registers: info registers vcpu 0 pc ffffffff80b08c8a mhartid 0000000000000000 mstatus 00000000000001a0 mip 00000000000000a0 mie 000000000000020a mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff80119b52 sepc ffffffff80119b52 mcause 8000000000000007 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff80b08c8a x2/sp ffffaf800f2a72a0 x3/gp ffffffff85863ac0 x4/tp ffffaf800e4ae100 x5/t0 0000000000046000 x6/t1 69bce758c23b7800 x7/t2 ffffffffffffffff x8/s0 ffffaf800f2a73c0 x9/s1 ffffaf8007216c78 x10/a0 ffffaf8007216c88 x11/a1 0000000000000003 x12/a2 1ffff5f000e42d91 x13/a3 ffffffff80b08c8a x14/a4 0000000000000000 x15/a5 ffffaf8007216c88 x16/a6 0000000000f00000 x17/a7 ffffffff80b08bfe x18/s2 0000000000000003 x19/s3 1ffff5f001e54e58 x20/s4 ffffaf805a9e7d18 x21/s5 ffffaf800f2a7360 x22/s6 ffffffff85889780 x23/s7 ffffffff83643480 x24/s8 ffffffff86dfbe30 x25/s9 0000000000000120 x26/s10 ffffaf805a9e7400 x27/s11 ffffaf805a9e7448 x28/t3 fffffffff3f3f300 x29/t4 ffffffff80112282 x30/t5 1ffff5f001e54dfc x31/t6 0000000002f80673 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000 info registers vcpu 1 pc ffffffff80dc337e mhartid 0000000000000001 mstatus 00000000000000a0 mip 00000000000000a0 mie 000000000000022a mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff80475ab2 sepc ffffffff82af5e4c mcause 8000000000000007 scause 8000000000000009 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff80dc337e x2/sp ffffaf8010f476c0 x3/gp ffffffff85863ac0 x4/tp ffffaf800d7a8000 x5/t0 ffffffff86bcb657 x6/t1 69bce758c23b7800 x7/t2 0000000000000000 x8/s0 ffffaf8010f476f0 x9/s1 ffffffff86e58900 x10/a0 ffffffff86e58948 x11/a1 ffff8f800066c000 x12/a2 1ffffffff0dcb129 x13/a3 ffffffff80dc337e x14/a4 0000000000000000 x15/a5 ffffffff86e58948 x16/a6 ffffffff86e589f1 x17/a7 ffffffff80dcc9fe x18/s2 ffff8f800066c000 x19/s3 0000000000000030 x20/s4 ffffffff86e58900 x21/s5 ffffffff80dc333e x22/s6 0000000000000000 x23/s7 ffffffff86bcb69b x24/s8 0000000000000010 x25/s9 ffffffff86e58958 x26/s10 0000000000000010 x27/s11 0000000000000000 x28/t3 fffffffff3f3f300 x29/t4 ffffffff80112282 x30/t5 1ffff5f0021e8e88 x31/t6 ffffffff86bcb657 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000