syzkaller login: [  201.036806][ T2921] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  201.124273][ T2921] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  201.165045][ T2921] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  201.219259][ T2921] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
Warning: Permanently added '[localhost]:60362' (ECDSA) to the list of known hosts.
1970/01/01 00:03:59 fuzzer started
1970/01/01 00:04:04 connecting to host at localhost:42007
1970/01/01 00:04:05 checking machine...
1970/01/01 00:04:05 checking revisions...
executing program
1970/01/01 00:04:09 testing simple program...
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[  278.080405][ T3091] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  278.128660][ T3091] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
executing program
executing program
[  282.977173][ T3091] device hsr_slave_0 entered promiscuous mode
[  283.010036][ T3091] device hsr_slave_1 entered promiscuous mode
[  285.486395][ T3091] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  285.630056][ T3091] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  285.728874][ T3091] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  285.792933][ T3091] netdevsim netdevsim0 netdevsim3: renamed from eth3
executing program
executing program
[  290.628716][ T3091] 8021q: adding VLAN 0 to HW filter on device bond0
[  290.890255][   T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  290.939172][   T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
executing program
[  294.068432][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  294.118456][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  294.214678][   T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  294.264774][   T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  294.477580][   T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  294.626056][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
executing program
[  295.034213][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  295.068768][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  295.238709][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  295.285720][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  295.366129][ T3091] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  295.868735][   T23] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  295.894018][   T23] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
executing program
executing program
[  302.032181][ T3295] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  302.042831][ T3295] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
executing program
[  304.700181][ T3295] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  304.730435][ T3295] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  304.747505][ T3295] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  304.763644][ T3295] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  304.865834][ T3091] device veth0_vlan entered promiscuous mode
[  305.110524][ T3091] device veth1_vlan entered promiscuous mode
[  305.673981][   T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  305.704783][   T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  305.804354][ T3091] device veth0_macvtap entered promiscuous mode
[  305.928866][ T3091] device veth1_macvtap entered promiscuous mode
[  306.228826][   T23] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  306.239420][   T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  306.363905][   T23] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  306.395661][   T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  306.612976][ T3091] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  306.615281][ T3091] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  306.616362][ T3091] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  306.617457][ T3091] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
executing program
[  308.673586][ T3091] cgroup: cgroup: disabling cgroup2 socket matching due to net_prio or net_cls activation
executing program
1970/01/01 00:05:10 building call list...
executing program
[  314.409816][ T2630] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  315.429072][ T2630] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
executing program
[  316.036089][ T2630] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  316.899973][ T2630] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
executing program
executing program
[  324.163230][ T2630] device hsr_slave_0 left promiscuous mode
[  324.232964][ T2630] device hsr_slave_1 left promiscuous mode
[  324.599012][ T2630] device veth1_macvtap left promiscuous mode
[  324.643454][ T2630] device veth0_macvtap left promiscuous mode
[  324.676169][ T2630] device veth1_vlan left promiscuous mode
[  324.682686][ T2630] device veth0_vlan left promiscuous mode
executing program
executing program
executing program
executing program
[  335.937885][ T2630] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  336.147827][ T2630] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
executing program
[  338.358706][ T2630] bond0 (unregistering): Released all slaves
executing program
executing program
executing program
executing program
[  349.135597][ T2922] Unable to handle kernel paging request at virtual address 0000000000002d48
[  349.138913][ T2922] Oops [#1]
[  349.139839][ T2922] Modules linked in:
[  349.141853][ T2922] CPU: 1 PID: 2922 Comm: dhcpcd Not tainted 5.14.0-syzkaller #0
[  349.142976][ T2922] Hardware name: riscv-virtio,qemu (DT)
[  349.143675][ T2922] epc : __kmalloc+0xce/0x388
[  349.144389][ T2922]  ra : __kmalloc+0x6e/0x388
[  349.145006][ T2922] epc : ffffffff803e3568 ra : ffffffff803e3508 sp : ffffffe00bfcf4d0
[  349.145776][ T2922]  gp : ffffffff83f967d8 tp : ffffffe00bed97c0 t0 : ffffffe00ec973a8
[  349.146808][ T2922]  t1 : 0000000000000001 t2 : 0000000000000000 s0 : ffffffe00bfcf570
[  349.147533][ T2922]  s1 : ffffffe005601640 a0 : 0000000000000000 a1 : ffffffe00bfcf8bc
[  349.148593][ T2922]  a2 : 1ffffffff07aa51f a3 : 0000000000002d48 a4 : 0000000004000000
[  349.149649][ T2922]  a5 : ffffffff82e4b2b0 a6 : 0000000000f00000 a7 : ffffffff8038ca52
[  349.150437][ T2922]  s2 : ffffffff83f96adc s3 : 0000000000002d40 s4 : 0000000000000030
[  349.152407][ T2922]  s5 : ffffffff80807294 s6 : ffffffff83f9a0d0 s7 : 0000000000000000
[  349.153584][ T2922]  s8 : 0000000000002d40 s9 : 0000000000000001 s10: ffffffffffffffff
[  349.154571][ T2922]  s11: ffffffe00bfcf671 t3 : 259093367511a400 t4 : ffffffc401d92ea0
[  349.155450][ T2922]  t5 : ffffffc401d92ea1 t6 : ffffffe00ede35af
[  349.156435][ T2922] status: 0000000000000120 badaddr: 0000000000002d48 cause: 000000000000000d
[  349.157504][ T2922] [<ffffffff803e3568>] __kmalloc+0xce/0x388
[  349.158849][ T2922] [<ffffffff80807294>] kzalloc.constprop.0+0x24/0x2e
[  349.159936][ T2922] [<ffffffff808074ba>] tomoyo_commit_ok+0x26/0x92
[  349.160700][ T2922] [<ffffffff807ff40e>] tomoyo_update_domain+0x118/0x528
[  349.162654][ T2922] [<ffffffff80804d96>] tomoyo_write_file+0x376/0x692
[  349.163530][ T2922] [<ffffffff807f2ddc>] tomoyo_write_domain2+0xa4/0x118
[  349.164415][ T2922] [<ffffffff807f9d48>] tomoyo_supervisor+0x2e6/0xb0c
[  349.165247][ T2922] [<ffffffff8080232e>] tomoyo_path_permission+0x152/0x18e
[  349.166279][ T2922] [<ffffffff808040be>] tomoyo_check_open_permission+0x26a/0x288
[  349.167160][ T2922] [<ffffffff8080c23a>] tomoyo_file_open+0x78/0x7c
[  349.168213][ T2922] [<ffffffff807eb766>] security_file_open+0x4c/0x2fa
[  349.169396][ T2922] [<ffffffff804228da>] do_dentry_open+0x1c6/0x7d4
[  349.170289][ T2922] [<ffffffff80425bb8>] vfs_open+0x52/0x5e
[  349.171899][ T2922] [<ffffffff8044b89a>] path_openat+0x11ae/0x1694
[  349.173662][ T2922] [<ffffffff8044efda>] do_filp_open+0xac/0x1a8
[  349.174637][ T2922] [<ffffffff804262be>] do_sys_openat2+0x102/0x26a
[  349.175422][ T2922] [<ffffffff80426abe>] sys_openat+0x80/0xee
[  349.176510][ T2922] [<ffffffff80005150>] ret_from_syscall+0x0/0x2
[  349.179119][ T2922] ---[ end trace 96131c09dc22424f ]---
[  349.180298][ T2922] Kernel panic - not syncing: Fatal exception
[  349.181895][ T2922] SMP: stopping secondary CPUs
[  349.184258][ T2922] Rebooting in 86400 seconds..

VM DIAGNOSIS:
13:46:16  Registers:
info registers vcpu 0
 pc       ffffffff801ae16c
 mhartid  0000000000000000
 mstatus  00000000000000a2
 mip      0000000000000000
 mie      00000000000002aa
 mideleg  0000000000000222
 medeleg  000000000000b109
 mtvec    0000000080000540
 stvec    ffffffff80005004
 mepc     ffffffff8000f030
 sepc     00000000000c0710
 mcause   0000000000000009
 scause   0000000000000008
 mtval  0000000000000000
 stval  0000000000000000
 x0/zero 0000000000000000 x1/ra ffffffff8015a3da x2/sp ffffffe0071fbb40 x3/gp ffffffff83f967d8
 x4/tp ffffffe0071897c0 x5/t0 00000000000001f8 x6/t1 ffffffc401d9a03e x7/t2 0000003f9401a800
 x8/s0 ffffffe0071fbb60 x9/s1 ffffffe0061fd4a0 x10/a0 ffffffff8366b4d0 x11/a1 ffffffe0071897c0
 x12/a2 0000000000000000 x13/a3 ffffffff80adf182 x14/a4 0000000000000003 x15/a5 0000000000000000
 x16/a6 0000000000f00000 x17/a7 ffffffe0071fbae7 x18/s2 ffffffff8366b4d0 x19/s3 0000000000000002
 x20/s4 0000000000001000 x21/s5 0000000000000078 x22/s6 ffffffffffffffff x23/s7 ffffffff8313a250
 x24/s8 0000000000000010 x25/s9 0000000000000000 x26/s10 0000000000000000 x27/s11 ffffffff83914874
 x28/t3 0000000000000000 x29/t4 ffffffc400e3f739 x30/t5 ffffffc400e3f73a x31/t6 ffffffe00ecd01f3
 f0/ft0 3f37942876b27ffb f1/ft1 4248fbf58c780000 f2/ft2 43e0000000000000 f3/ft3 43e0000000000000
 f4/ft4 3ff799999999999a f5/ft5 3fde666666666666 f6/ft6 3ff09daf15911b0b f7/ft7 3fe2082af7ef02e3
 f8/fs0 3feaaaaaaaaaaaab f9/fs1 3fdccdaf1475d73e f10/fa0 3fc81f32bda24f7a f11/fa1 0000000000000000
 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000
 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000
 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000
 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000
 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000
info registers vcpu 1
 pc       ffffffff803e8aa6
 mhartid  0000000000000001
 mstatus  00000000000001a0
 mip      00000000000000a2
 mie      000000000000022a
 mideleg  0000000000000222
 medeleg  000000000000b109
 mtvec    0000000080000540
 stvec    ffffffff80005004
 mepc     ffffffff803e8aa6
 sepc     ffffffff803e3568
 mcause   8000000000000007
 scause   000000000000000d
 mtval  0000000000000000
 stval  0000000000002d48
 x0/zero 0000000000000000 x1/ra ffffffff80c840be x2/sp ffffffe00bfceef0 x3/gp ffffffff83f967d8
 x4/tp ffffffe00bed97c0 x5/t0 ffffffff852b2bc7 x6/t1 ffffffc7f0a56578 x7/t2 0000000000000000
 x8/s0 ffffffe00bfcef20 x9/s1 ffffffff8552e4d8 x10/a0 ffffffe00bed97e0 x11/a1 ffffffd010695000
 x12/a2 1ffffffff0aa5ca4 x13/a3 ffffffff80c840a8 x14/a4 0000000000000000 x15/a5 ffffffff8552e520
 x16/a6 0000000000f00000 x17/a7 ffffffff852b2bc6 x18/s2 ffffffe00bed97c0 x19/s3 0000000000000005
 x20/s4 0000000000000005 x21/s5 ffffffff852b2bb0 x22/s6 000000000000002a x23/s7 ffffffff8552e530
 x24/s8 0000000000000001 x25/s9 ffffffff83f9a0d0 x26/s10 ffffffff8552e760 x27/s11 ffffffff8552e528
 x28/t3 000000000000004d x29/t4 ffffffc7f0a56576 x30/t5 ffffffc7f0a56579 x31/t6 ffffffff852b2bc7
 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000
 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000
 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000
 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000
 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000
 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000
 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000
 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000