syzkaller login: [ 325.861364][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 325.954047][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 325.981660][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 392.116006][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:32497' (ECDSA) to the list of known hosts. 1970/01/01 00:06:58 fuzzer started 1970/01/01 00:07:13 dialing manager at localhost:42693 [ 440.864381][ T2045] cgroup: Unknown subsys name 'net' [ 442.120135][ T2045] cgroup: Unknown subsys name 'rlimit' 1970/01/01 00:07:21 syscalls: 2827 1970/01/01 00:07:21 code coverage: enabled 1970/01/01 00:07:21 comparison tracing: enabled 1970/01/01 00:07:21 extra coverage: enabled 1970/01/01 00:07:21 delay kcov mmap: mmap returned an invalid pointer 1970/01/01 00:07:21 setuid sandbox: enabled 1970/01/01 00:07:21 namespace sandbox: enabled 1970/01/01 00:07:21 Android sandbox: /sys/fs/selinux/policy does not exist 1970/01/01 00:07:21 fault injection: enabled 1970/01/01 00:07:21 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 1970/01/01 00:07:21 net packet injection: enabled 1970/01/01 00:07:21 net device setup: enabled 1970/01/01 00:07:21 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 1970/01/01 00:07:21 devlink PCI setup: PCI device 0000:00:10.0 is not available 1970/01/01 00:07:21 USB emulation: enabled 1970/01/01 00:07:21 hci packet injection: /dev/vhci does not exist 1970/01/01 00:07:21 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist 1970/01/01 00:07:21 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist 1970/01/01 00:07:21 fetching corpus: 0, signal 0/2000 (executing program) [ 443.891710][ T2044] BUG: sleeping function called from invalid context at kernel/locking/rwsem.c:1460 [ 443.893461][ T2044] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 2044, name: syz-fuzzer [ 443.894950][ T2044] preempt_count: 0, expected: 0 [ 443.895951][ T2044] RCU nest depth: 0, expected: 0 [ 443.897209][ T2044] no locks held by syz-fuzzer/2044. [ 443.898750][ T2044] irq event stamp: 17038 [ 443.899633][ T2044] hardirqs last enabled at (17037): [] _raw_spin_unlock_irq+0x2a/0x76 [ 443.901449][ T2044] hardirqs last disabled at (17038): [] __trace_hardirqs_off+0x18/0x20 [ 443.903205][ T2044] softirqs last enabled at (17032): [] __do_softirq+0x618/0x8fc [ 443.904833][ T2044] softirqs last disabled at (17027): [] __irq_exit_rcu+0x142/0x1f8 [ 443.907002][ T2044] CPU: 1 PID: 2044 Comm: syz-fuzzer Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 443.909481][ T2044] Hardware name: riscv-virtio,qemu (DT) [ 443.911132][ T2044] Call Trace: [ 443.911930][ T2044] [] dump_backtrace+0x2e/0x3c [ 443.913046][ T2044] [] show_stack+0x34/0x40 [ 443.914571][ T2044] [] dump_stack_lvl+0xe4/0x150 [ 443.916024][ T2044] [] dump_stack+0x1c/0x24 [ 443.918083][ T2044] [] __might_resched+0x30a/0x342 [ 443.919575][ T2044] [] __might_sleep+0x5e/0x8e [ 443.921148][ T2044] [] down_read+0x24/0x54 [ 443.922145][ T2037] Kernel panic - not syncing: corrupted stack end detected inside scheduler [ 443.922376][ T2044] [] do_page_fault+0x24e/0xa3c [ 443.923086][ T2044] [] ret_from_exception+0x0/0x10 [ 443.927927][ T2037] CPU: 0 PID: 2037 Comm: kworker/u4:0 Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 443.930171][ T2037] Hardware name: riscv-virtio,qemu (DT) [ 443.932137][ T2037] Workqueue: writeback wb_workfn (flush-253:0) [ 443.933928][ T2037] Call Trace: [ 443.934768][ T2037] [] dump_backtrace+0x2e/0x3c [ 443.935873][ T2037] [] show_stack+0x34/0x40 [ 443.936960][ T2037] [] dump_stack_lvl+0xe4/0x150 [ 443.939563][ T2037] [] dump_stack+0x1c/0x24 [ 443.940879][ T2037] [] panic+0x24a/0x634 [ 443.941941][ T2037] [] schedule+0x0/0x14c [ 443.943076][ T2037] [] preempt_schedule_common+0x4e/0xde [ 443.944325][ T2037] [] preempt_schedule+0x34/0x36 [ 443.945559][ T2037] [] _raw_spin_unlock_irqrestore+0x8c/0x98 [ 443.947503][ T2037] [] __folio_start_writeback+0x342/0x8de [ 443.949600][ T2037] [] set_page_writeback+0x54/0x70 [ 443.950587][ T2037] [] __block_write_full_page+0x61c/0xc48 [ 443.951648][ T2037] [] block_write_full_page+0xfc/0x10a [ 443.952642][ T2037] [] blkdev_writepage+0x2c/0x38 [ 443.953873][ T2037] [] __writepage+0x42/0xfa [ 443.955245][ T2037] [] write_cache_pages+0x5a0/0xcea [ 443.956705][ T2037] [] generic_writepages+0xdc/0x136 [ 443.958632][ T2037] [] blkdev_writepages+0x24/0x30 [ 443.960831][ T2037] [] do_writepages+0x16e/0x452 [ 443.962093][ T2037] [] __writeback_single_inode+0xea/0x1124 [ 443.963399][ T2037] [] writeback_sb_inodes+0x3dc/0xb06 [ 443.964441][ T2037] [] __writeback_inodes_wb+0x70/0x18c [ 443.965532][ T2037] [] wb_writeback+0x80c/0xc7c [ 443.966514][ T2037] [] wb_workfn+0x752/0xf94 [ 443.968211][ T2037] [] process_one_work+0x654/0xffe [ 443.969760][ T2037] [] worker_thread+0x360/0x8fa [ 443.970900][ T2037] [] kthread+0x19e/0x1fa [ 443.971853][ T2037] [] ret_from_exception+0x0/0x10 [ 443.973279][ T2037] SMP: stopping secondary CPUs [ 443.975370][ T2037] Rebooting in 86400 seconds.. VM DIAGNOSIS: 15:56:06 Registers: info registers vcpu 0 pc ffffffff82b8330c mhartid 0000000000000000 mstatus 00000000000000a2 mip 0000000000000000 mie 00000000000002aa mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff8000f97e sepc ffffffff802009d2 mcause 0000000000000009 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff82b8365a x2/sp ffffaf800f7023f0 x3/gp ffffffff85863ac0 x4/tp ffffaf800f09c8c0 x5/t0 ffffaf800ccedae0 x6/t1 fffff5ef0199db5f x7/t2 0000000000000032 x8/s0 ffffaf800f702490 x9/s1 ffffaf800f51cb40 x10/a0 ffffaf80091a2870 x11/a1 ffffaf800f09c8c0 x12/a2 0000000000000101 x13/a3 ffffffff82b837cc x14/a4 0000000000000003 x15/a5 0000000000000000 x16/a6 0000000000f00000 x17/a7 ffffaf800ccedaff x18/s2 ffffaf800f51c500 x19/s3 0000000000000000 x20/s4 ffffaf800e8ce008 x21/s5 ffffffff85692440 x22/s6 ffffffff855d9a60 x23/s7 ffffaf800e8ce048 x24/s8 0000000000000000 x25/s9 0000000000000000 x26/s10 ffffffff84b73e00 x27/s11 ffffffff827b42f8 x28/t3 fffffffff3f3f300 x29/t4 fffff5ef0199db5e x30/t5 fffff5ef0199db60 x31/t6 ffffaf800cced878 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000 info registers vcpu 1 pc ffffffff800baeb4 mhartid 0000000000000001 mstatus 0000000000080080 mip 0000000000000000 mie 00000000000002aa mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff8000f97e sepc 00000000000657fc mcause 0000000000000009 scause 000000000000000d mtval 0000000000000000 stval 000000000000003d x0/zero 0000000000000000 x1/ra ffffffff800baeb4 x2/sp ffffaf800f6ffdb0 x3/gp ffffffff85863ac0 x4/tp ffffaf800f166100 x5/t0 ffffffff86bcb657 x6/t1 fffff5ef0b53c90c x7/t2 0000000000000000 x8/s0 ffffaf800f6ffe00 x9/s1 ffffaf800f166100 x10/a0 000000000000001e x11/a1 00000000000f0000 x12/a2 0000000000000002 x13/a3 ffffffff8012252a x14/a4 0000000000000000 x15/a5 ffffaf800f166130 x16/a6 0000000000f00000 x17/a7 ffffaf805a9e4863 x18/s2 0000000000000000 x19/s3 0000000000080000 x20/s4 ffffaf800f166100 x21/s5 0000000000000000 x22/s6 0000000000000000 x23/s7 0000000000000000 x24/s8 ffffaf800f6ffff0 x25/s9 0000000000000254 x26/s10 ffffaf800bc7aaa8 x27/s11 ffffffff8360a420 x28/t3 fffffffff3f3f300 x29/t4 fffff5ef0b53c90c x30/t5 fffff5ef0b53c90d x31/t6 ffffaf800f6ff8b8 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 414fffffe0000000 f3/ft3 43e0000000000000 f4/ft4 3ffe000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000