[  315.713745][ T1860] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  315.773907][ T1860] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  315.854933][ T1860] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  315.892308][ T1860] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
Warning: Permanently added '[localhost]:58095' (ECDSA) to the list of known hosts.
1970/01/01 00:05:58 fuzzer started
1970/01/01 00:06:10 dialing manager at localhost:35041
[  376.412956][ T2033] cgroup: Unknown subsys name 'net'
[  377.587055][ T2033] cgroup: Unknown subsys name 'rlimit'
1970/01/01 00:06:17 syscalls: 2870
1970/01/01 00:06:17 code coverage: enabled
1970/01/01 00:06:17 comparison tracing: enabled
1970/01/01 00:06:17 extra coverage: enabled
1970/01/01 00:06:17 delay kcov mmap: mmap returned an invalid pointer
1970/01/01 00:06:17 setuid sandbox: enabled
1970/01/01 00:06:17 namespace sandbox: enabled
1970/01/01 00:06:17 Android sandbox: /sys/fs/selinux/policy does not exist
1970/01/01 00:06:17 fault injection: enabled
1970/01/01 00:06:17 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
1970/01/01 00:06:17 net packet injection: enabled
1970/01/01 00:06:17 net device setup: enabled
1970/01/01 00:06:17 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
1970/01/01 00:06:17 devlink PCI setup: PCI device 0000:00:10.0 is not available
1970/01/01 00:06:17 USB emulation: enabled
1970/01/01 00:06:17 hci packet injection: /dev/vhci does not exist
1970/01/01 00:06:17 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist
1970/01/01 00:06:17 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist
1970/01/01 00:06:17 fetching corpus: 0, signal 0/2000 (executing program)
1970/01/01 00:06:23 fetching corpus: 49, signal 33563/36242 (executing program)
1970/01/01 00:06:27 fetching corpus: 99, signal 48105/51294 (executing program)
1970/01/01 00:06:31 fetching corpus: 147, signal 54596/58343 (executing program)
1970/01/01 00:06:35 fetching corpus: 196, signal 65070/68741 (executing program)
1970/01/01 00:06:39 fetching corpus: 243, signal 71590/75264 (executing program)
1970/01/01 00:06:42 fetching corpus: 291, signal 77093/80584 (executing program)
1970/01/01 00:06:45 fetching corpus: 341, signal 81000/84369 (executing program)
1970/01/01 00:06:50 fetching corpus: 391, signal 85891/88871 (executing program)
1970/01/01 00:06:53 fetching corpus: 437, signal 90216/92740 (executing program)
1970/01/01 00:06:55 fetching corpus: 485, signal 93188/95340 (executing program)
1970/01/01 00:06:58 fetching corpus: 533, signal 95635/97430 (executing program)
1970/01/01 00:07:01 fetching corpus: 583, signal 97932/99292 (executing program)
1970/01/01 00:07:04 fetching corpus: 631, signal 100309/101152 (executing program)
1970/01/01 00:07:05 fetching corpus: 653, signal 101285/101934 (executing program)
1970/01/01 00:07:05 fetching corpus: 653, signal 101285/101975 (executing program)
1970/01/01 00:07:05 fetching corpus: 653, signal 101285/102029 (executing program)
1970/01/01 00:07:05 fetching corpus: 653, signal 101285/102096 (executing program)
1970/01/01 00:07:06 fetching corpus: 653, signal 101285/102177 (executing program)
1970/01/01 00:07:06 fetching corpus: 653, signal 101285/102228 (executing program)
1970/01/01 00:07:06 fetching corpus: 653, signal 101285/102293 (executing program)
1970/01/01 00:07:06 fetching corpus: 653, signal 101285/102340 (executing program)
1970/01/01 00:07:06 fetching corpus: 653, signal 101285/102394 (executing program)
1970/01/01 00:07:06 fetching corpus: 654, signal 101293/102436 (executing program)
1970/01/01 00:07:07 fetching corpus: 656, signal 101298/102499 (executing program)
1970/01/01 00:07:07 fetching corpus: 657, signal 101299/102605 (executing program)
1970/01/01 00:07:07 fetching corpus: 657, signal 101320/102663 (executing program)
1970/01/01 00:07:07 fetching corpus: 657, signal 101320/102730 (executing program)
1970/01/01 00:07:07 fetching corpus: 657, signal 101320/102778 (executing program)
1970/01/01 00:07:08 fetching corpus: 657, signal 101320/102837 (executing program)
1970/01/01 00:07:08 fetching corpus: 657, signal 101320/102896 (executing program)
1970/01/01 00:07:08 fetching corpus: 657, signal 101320/102947 (executing program)
1970/01/01 00:07:08 fetching corpus: 657, signal 101320/103010 (executing program)
1970/01/01 00:07:08 fetching corpus: 657, signal 101320/103074 (executing program)
1970/01/01 00:07:08 fetching corpus: 657, signal 101320/103126 (executing program)
1970/01/01 00:07:08 fetching corpus: 657, signal 101320/103190 (executing program)
1970/01/01 00:07:09 fetching corpus: 657, signal 101320/103235 (executing program)
1970/01/01 00:07:09 fetching corpus: 657, signal 101320/103279 (executing program)
1970/01/01 00:07:09 fetching corpus: 657, signal 101320/103341 (executing program)
1970/01/01 00:07:09 fetching corpus: 657, signal 101320/103394 (executing program)
1970/01/01 00:07:09 fetching corpus: 657, signal 101320/103456 (executing program)
1970/01/01 00:07:09 fetching corpus: 657, signal 101320/103513 (executing program)
1970/01/01 00:07:09 fetching corpus: 657, signal 101320/103551 (executing program)
1970/01/01 00:07:10 fetching corpus: 657, signal 101320/103612 (executing program)
1970/01/01 00:07:10 fetching corpus: 657, signal 101320/103658 (executing program)
1970/01/01 00:07:10 fetching corpus: 657, signal 101320/103727 (executing program)
1970/01/01 00:07:10 fetching corpus: 657, signal 101320/103786 (executing program)
1970/01/01 00:07:10 fetching corpus: 657, signal 101320/103843 (executing program)
1970/01/01 00:07:10 fetching corpus: 657, signal 101320/103900 (executing program)
1970/01/01 00:07:10 fetching corpus: 657, signal 101320/103948 (executing program)
1970/01/01 00:07:11 fetching corpus: 657, signal 101320/104019 (executing program)
1970/01/01 00:07:11 fetching corpus: 657, signal 101320/104073 (executing program)
1970/01/01 00:07:11 fetching corpus: 657, signal 101320/104117 (executing program)
1970/01/01 00:07:11 fetching corpus: 657, signal 101320/104117 (executing program)
1970/01/01 00:09:10 starting 2 fuzzer processes
00:09:10 executing program 0:
bpf$BPF_BTF_LOAD(0x1e, &(0x7f0000000400)={0x0, &(0x7f0000001a00)=""/4096, 0x0, 0x1000}, 0x20)

00:09:10 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='comm\x00')
write$RDMA_USER_CM_CMD_BIND(r0, 0x0, 0x0)

[  577.790697][ T2039] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  578.405518][ T2039] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  579.405632][ T2041] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  579.890030][ T2041] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  594.998789][ T2041] device hsr_slave_0 entered promiscuous mode
[  595.031239][ T2041] device hsr_slave_1 entered promiscuous mode
[  598.304654][ T2039] device hsr_slave_0 entered promiscuous mode
[  598.376963][ T2039] device hsr_slave_1 entered promiscuous mode
[  598.409071][ T2039] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  598.413771][ T2039] Cannot create hsr debugfs directory
[  609.769540][ T2041] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  610.012373][ T2041] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  610.392930][ T2041] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  611.286429][ T2041] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  612.623477][ T2039] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  613.054327][ T2039] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  613.283482][ T2039] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  613.461471][ T2039] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  631.713690][ T2041] 8021q: adding VLAN 0 to HW filter on device bond0
[  632.601648][ T2039] 8021q: adding VLAN 0 to HW filter on device bond0
[  632.705437][ T2664] Kernel panic - not syncing: corrupted stack end detected inside scheduler
[  632.709586][ T2664] CPU: 0 PID: 2664 Comm: modprobe Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0
[  632.711372][ T2664] Hardware name: riscv-virtio,qemu (DT)
[  632.712961][ T2664] Call Trace:
[  632.713884][ T2664] [<ffffffff8000a228>] dump_backtrace+0x2e/0x3c
[  632.715182][ T2664] [<ffffffff831668cc>] show_stack+0x34/0x40
[  632.716435][ T2664] [<ffffffff831756ba>] dump_stack_lvl+0xe4/0x150
[  632.717912][ T2664] [<ffffffff83175742>] dump_stack+0x1c/0x24
[  632.719532][ T2664] [<ffffffff83166fa8>] panic+0x24a/0x634
[  632.720665][ T2664] [<ffffffff831a688a>] schedule+0x0/0x14c
[  632.721840][ T2664] [<ffffffff831a6b00>] preempt_schedule_common+0x4e/0xde
[  632.723162][ T2664] [<ffffffff831a6bc4>] preempt_schedule+0x34/0x36
[  632.724978][ T2664] [<ffffffff8025118e>] irq_work_queue+0xc4/0xc6
[  632.726185][ T2664] [<ffffffff804786fa>] __kfence_alloc+0x178/0xe28
[  632.727899][ T2664] [<ffffffff80470a88>] kmem_cache_alloc+0x3c4/0x3de
[  632.729705][ T2664] [<ffffffff807d9998>] jbd2__journal_start+0x110/0x33a
[  632.730935][ T2664] [<ffffffff806db1ce>] __ext4_journal_start_sb+0x1a8/0x40a
[  632.732222][ T2664] [<ffffffff80733152>] ext4_dirty_inode+0x60/0xba
[  632.733405][ T2664] [<ffffffff8053ebec>] __mark_inode_dirty+0x40a/0xf04
[  632.734632][ T2664] [<ffffffff8050f47c>] touch_atime+0x656/0x67a
[  632.735839][ T2664] [<ffffffff8033d34a>] filemap_read+0x780/0x78a
[  632.737023][ T2664] [<ffffffff8033d5de>] generic_file_read_iter+0x28a/0x338
[  632.738904][ T2664] [<ffffffff806fba88>] ext4_file_read_iter+0x126/0x338
[  632.740220][ T2664] [<ffffffff804c4902>] new_sync_read+0x290/0x3d8
[  632.741464][ T2664] [<ffffffff804c83c0>] vfs_read+0x2ce/0x324
[  632.742668][ T2664] [<ffffffff804c8854>] ksys_read+0x10a/0x224
[  632.743860][ T2664] [<ffffffff804c8996>] sys_read+0x28/0x36
[  632.745227][ T2664] [<ffffffff80005716>] ret_from_syscall+0x0/0x2
[  632.746732][ T2664] SMP: stopping secondary CPUs
[  632.750311][ T2664] Rebooting in 86400 seconds..

VM DIAGNOSIS:
08:37:18  Registers:
info registers vcpu 0
 pc       ffffffff80200f00
 mhartid  0000000000000000
 mstatus  00000000000000a0
 mip      00000000000000a0
 mie      000000000000022a
 mideleg  0000000000000222
 medeleg  000000000000b109
 mtvec    0000000080000540
 stvec    ffffffff800055d4
 mepc     ffffffff801165d6
 sepc     ffffffff800bdb3e
 mcause   8000000000000007
 scause   8000000000000005
 mtval  0000000000000000
 stval  0000000000000000
 x0/zero 0000000000000000 x1/ra ffffffff8011eda6 x2/sp ffffaf802052ac40 x3/gp ffffffff85863ac0
 x4/tp ffffaf80212a6100 x5/t0 ffffffff86bcb657 x6/t1 fffffffef0d796ca x7/t2 0000000000000000
 x8/s0 ffffaf802052ae20 x9/s1 0000000000000000 x10/a0 000000000000003d x11/a1 00000000000f0000
 x12/a2 0000000000000002 x13/a3 ffffffff8011c8a6 x14/a4 a4005bade2711100 x15/a5 0000000000000020
 x16/a6 ffffffff86bcb67d x17/a7 ffffffff86bcb656 x18/s2 000000000000003d x19/s3 000000000000000f
 x20/s4 ffffaf802052ada0 x21/s5 ffffaf802052acc0 x22/s6 ffffffff8588c1a0 x23/s7 ffffffff8588c3e0
 x24/s8 ffffffff8588c220 x25/s9 ffffffff84a88520 x26/s10 ffffffff858655c0 x27/s11 ffffaf802052ada0
 x28/t3 0000000000000048 x29/t4 fffffffef0d796c8 x30/t5 fffffffef0d796cb x31/t6 ffffffff86bcb657
 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000
 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000
 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000
 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000
 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000
 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000
 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000
 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000
info registers vcpu 1
 pc       ffffffff8233751e
 mhartid  0000000000000001
 mstatus  00000000000000a0
 mip      0000000000000000
 mie      00000000000002aa
 mideleg  0000000000000222
 medeleg  000000000000b109
 mtvec    0000000080000540
 stvec    ffffffff800055d4
 mepc     ffffffff8000f97e
 sepc     ffffffff80201300
 mcause   0000000000000009
 scause   8000000000000005
 mtval  0000000000000000
 stval  0000000000000000
 x0/zero 0000000000000000 x1/ra ffffffff80112614 x2/sp ffffaf80095ff390 x3/gp ffffffff85863ac0
 x4/tp ffffaf80074648c0 x5/t0 fffff5ef041da06d x6/t1 a4005bade2711100 x7/t2 0000000052333e53
 x8/s0 ffffaf80095ff4f0 x9/s1 000000000000001e x10/a0 ffffffff86686480 x11/a1 0000000000000007
 x12/a2 0000000000000010 x13/a3 ffffffff831a24bc x14/a4 a4005bade2711100 x15/a5 a4005bade2711100
 x16/a6 0000000000f00000 x17/a7 ffffffff800bda98 x18/s2 0000000000000001 x19/s3 ffffaf805a9f5c80
 x20/s4 ffffaf800b9d0000 x21/s5 ffffffff8343c840 x22/s6 ffffffffffffffff x23/s7 ffffaf805a9f5740
 x24/s8 ffffffff85889780 x25/s9 1ffff5f0012bfeb0 x26/s10 ffffaf805a9f4c98 x27/s11 ffffffff800bdb32
 x28/t3 fffffffff3f3f300 x29/t4 ffffffff80112282 x30/t5 1ffff5f0012bfe84 x31/t6 ffffaf80100ce026
 f0/ft0 0000000000000000 f1/ft1 40cfc497f4c07d11 f2/ft2 418ae362c0000000 f3/ft3 43e0000000000000
 f4/ft4 3ffe000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000
 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000
 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000
 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000
 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000
 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000
 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000