syzkaller login: [ 265.305163][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 274.558033][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 274.626422][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 274.656845][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:16300' (ECDSA) to the list of known hosts. 1970/01/01 00:05:39 fuzzer started 1970/01/01 00:05:52 dialing manager at localhost:41167 [ 358.519393][ T2026] cgroup: Unknown subsys name 'net' [ 359.636981][ T2026] cgroup: Unknown subsys name 'rlimit' 1970/01/01 00:05:59 syscalls: 2918 1970/01/01 00:05:59 code coverage: enabled 1970/01/01 00:05:59 comparison tracing: ioctl(KCOV_DISABLE) failed: invalid argument 1970/01/01 00:05:59 extra coverage: enabled 1970/01/01 00:05:59 delay kcov mmap: mmap returned an invalid pointer 1970/01/01 00:05:59 setuid sandbox: enabled 1970/01/01 00:05:59 namespace sandbox: enabled 1970/01/01 00:05:59 Android sandbox: /sys/fs/selinux/policy does not exist 1970/01/01 00:05:59 fault injection: enabled 1970/01/01 00:05:59 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 1970/01/01 00:05:59 net packet injection: enabled 1970/01/01 00:05:59 net device setup: enabled 1970/01/01 00:05:59 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 1970/01/01 00:05:59 devlink PCI setup: PCI device 0000:00:10.0 is not available 1970/01/01 00:05:59 NIC VF setup: PCI device 0000:00:11.0 is not available 1970/01/01 00:05:59 USB emulation: enabled 1970/01/01 00:05:59 hci packet injection: /dev/vhci does not exist 1970/01/01 00:05:59 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist 1970/01/01 00:05:59 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist 1970/01/01 00:05:59 fetching corpus: 0, signal 0/2000 (executing program) 1970/01/01 00:06:05 fetching corpus: 50, signal 39834/42935 (executing program) 1970/01/01 00:06:09 fetching corpus: 100, signal 50005/54276 (executing program) 1970/01/01 00:06:13 fetching corpus: 150, signal 58050/63356 (executing program) 1970/01/01 00:06:16 fetching corpus: 200, signal 64264/70521 (executing program) 1970/01/01 00:06:18 fetching corpus: 250, signal 71382/78458 (executing program) 1970/01/01 00:06:20 fetching corpus: 299, signal 74441/82420 (executing program) 1970/01/01 00:06:23 fetching corpus: 349, signal 77649/86430 (executing program) 1970/01/01 00:06:28 fetching corpus: 399, signal 82940/92263 (executing program) 1970/01/01 00:06:31 fetching corpus: 449, signal 86865/96756 (executing program) 1970/01/01 00:06:34 fetching corpus: 498, signal 89573/100107 (executing program) 1970/01/01 00:06:36 fetching corpus: 547, signal 94531/105303 (executing program) 1970/01/01 00:06:41 fetching corpus: 597, signal 97787/108983 (executing program) 1970/01/01 00:06:43 fetching corpus: 646, signal 99979/111665 (executing program) 1970/01/01 00:06:46 fetching corpus: 696, signal 102330/114419 (executing program) 1970/01/01 00:06:49 fetching corpus: 745, signal 104429/116953 (executing program) 1970/01/01 00:06:53 fetching corpus: 795, signal 106855/119671 (executing program) 1970/01/01 00:06:56 fetching corpus: 845, signal 109588/122576 (executing program) 1970/01/01 00:06:58 fetching corpus: 895, signal 112015/125174 (executing program) 1970/01/01 00:07:02 fetching corpus: 945, signal 114566/127801 (executing program) 1970/01/01 00:07:03 fetching corpus: 995, signal 116339/129775 (executing program) 1970/01/01 00:07:06 fetching corpus: 1045, signal 118601/132090 (executing program) 1970/01/01 00:07:08 fetching corpus: 1095, signal 120659/134243 (executing program) 1970/01/01 00:07:11 fetching corpus: 1144, signal 122315/136039 (executing program) 1970/01/01 00:07:14 fetching corpus: 1194, signal 123623/137536 (executing program) 1970/01/01 00:07:16 fetching corpus: 1244, signal 124932/138968 (executing program) 1970/01/01 00:07:18 fetching corpus: 1294, signal 126957/140866 (executing program) 1970/01/01 00:07:20 fetching corpus: 1344, signal 128508/142436 (executing program) 1970/01/01 00:07:22 fetching corpus: 1394, signal 130186/144033 (executing program) 1970/01/01 00:07:25 fetching corpus: 1444, signal 131394/145303 (executing program) 1970/01/01 00:07:29 fetching corpus: 1493, signal 133575/147180 (executing program) 1970/01/01 00:07:32 fetching corpus: 1543, signal 134716/148337 (executing program) 1970/01/01 00:07:35 fetching corpus: 1592, signal 136174/149670 (executing program) 1970/01/01 00:07:37 fetching corpus: 1641, signal 137348/150794 (executing program) 1970/01/01 00:07:40 fetching corpus: 1691, signal 138499/151844 (executing program) 1970/01/01 00:07:42 fetching corpus: 1741, signal 140107/153125 (executing program) 1970/01/01 00:07:45 fetching corpus: 1791, signal 141486/154241 (executing program) 1970/01/01 00:07:47 fetching corpus: 1841, signal 142596/155212 (executing program) 1970/01/01 00:07:49 fetching corpus: 1891, signal 144069/156339 (executing program) 1970/01/01 00:07:53 fetching corpus: 1941, signal 145242/157264 (executing program) 1970/01/01 00:07:57 fetching corpus: 1991, signal 146540/158221 (executing program) 1970/01/01 00:08:01 fetching corpus: 2041, signal 147966/159197 (executing program) 1970/01/01 00:08:04 fetching corpus: 2091, signal 148901/159929 (executing program) 1970/01/01 00:08:09 fetching corpus: 2139, signal 150009/160729 (executing program) 1970/01/01 00:08:12 fetching corpus: 2189, signal 151013/161466 (executing program) 1970/01/01 00:08:14 fetching corpus: 2239, signal 152149/162227 (executing program) 1970/01/01 00:08:17 fetching corpus: 2289, signal 153557/163107 (executing program) 1970/01/01 00:08:19 fetching corpus: 2339, signal 154605/163758 (executing program) 1970/01/01 00:08:22 fetching corpus: 2389, signal 155500/164302 (executing program) 1970/01/01 00:08:25 fetching corpus: 2439, signal 156649/164952 (executing program) 1970/01/01 00:08:28 fetching corpus: 2488, signal 157693/165571 (executing program) 1970/01/01 00:08:31 fetching corpus: 2538, signal 158457/165987 (executing program) 1970/01/01 00:08:33 fetching corpus: 2587, signal 159360/166462 (executing program) 1970/01/01 00:08:36 fetching corpus: 2637, signal 160585/167017 (executing program) 1970/01/01 00:08:39 fetching corpus: 2687, signal 161434/167440 (executing program) 1970/01/01 00:08:41 fetching corpus: 2737, signal 162115/167789 (executing program) 1970/01/01 00:08:43 fetching corpus: 2787, signal 162678/168069 (executing program) 1970/01/01 00:08:46 fetching corpus: 2837, signal 165208/168967 (executing program) 1970/01/01 00:08:49 fetching corpus: 2887, signal 166476/169470 (executing program) 1970/01/01 00:08:52 fetching corpus: 2937, signal 167230/169747 (executing program) 1970/01/01 00:08:55 fetching corpus: 2987, signal 167961/170003 (executing program) 1970/01/01 00:08:58 fetching corpus: 3037, signal 168914/170297 (executing program) 1970/01/01 00:08:58 fetching corpus: 3053, signal 169091/170371 (executing program) 1970/01/01 00:08:59 fetching corpus: 3053, signal 169091/170398 (executing program) 1970/01/01 00:08:59 fetching corpus: 3053, signal 169091/170419 (executing program) 1970/01/01 00:08:59 fetching corpus: 3053, signal 169091/170442 (executing program) 1970/01/01 00:08:59 fetching corpus: 3053, signal 169091/170464 (executing program) 1970/01/01 00:08:59 fetching corpus: 3053, signal 169091/170484 (executing program) 1970/01/01 00:08:59 fetching corpus: 3053, signal 169091/170507 (executing program) 1970/01/01 00:08:59 fetching corpus: 3053, signal 169091/170533 (executing program) 1970/01/01 00:09:00 fetching corpus: 3053, signal 169091/170562 (executing program) 1970/01/01 00:09:00 fetching corpus: 3053, signal 169091/170579 (executing program) 1970/01/01 00:09:00 fetching corpus: 3053, signal 169091/170597 (executing program) 1970/01/01 00:09:00 fetching corpus: 3053, signal 169091/170614 (executing program) 1970/01/01 00:09:00 fetching corpus: 3053, signal 169091/170636 (executing program) 1970/01/01 00:09:00 fetching corpus: 3053, signal 169091/170652 (executing program) 1970/01/01 00:09:00 fetching corpus: 3053, signal 169091/170677 (executing program) 1970/01/01 00:09:01 fetching corpus: 3053, signal 169091/170705 (executing program) 1970/01/01 00:09:01 fetching corpus: 3054, signal 169097/170731 (executing program) 1970/01/01 00:09:01 fetching corpus: 3054, signal 169097/170752 (executing program) 1970/01/01 00:09:01 fetching corpus: 3054, signal 169097/170767 (executing program) 1970/01/01 00:09:01 fetching corpus: 3054, signal 169097/170790 (executing program) 1970/01/01 00:09:01 fetching corpus: 3054, signal 169097/170810 (executing program) 1970/01/01 00:09:02 fetching corpus: 3054, signal 169097/170829 (executing program) 1970/01/01 00:09:02 fetching corpus: 3054, signal 169097/170846 (executing program) 1970/01/01 00:09:02 fetching corpus: 3054, signal 169097/170857 (executing program) 1970/01/01 00:09:02 fetching corpus: 3054, signal 169097/170857 (executing program) 1970/01/01 00:11:16 starting 2 fuzzer processes 00:11:17 executing program 0: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x83, 0x0, &(0x7f0000002540)) 00:11:17 executing program 1: r0 = socket$inet(0x2, 0x2, 0x1) recvfrom$l2tp(r0, 0x0, 0x0, 0x101, 0x0, 0x0) [ 696.263939][ T2038] Kernel panic - not syncing: corrupted stack end detected inside scheduler [ 696.265679][ T2038] CPU: 0 PID: 2038 Comm: syz-executor.0 Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 696.267149][ T2038] Hardware name: riscv-virtio,qemu (DT) [ 696.268610][ T2038] Call Trace: [ 696.269485][ T2038] [] dump_backtrace+0x2e/0x3c [ 696.270803][ T2038] [] show_stack+0x34/0x40 [ 696.272133][ T2038] [] dump_stack_lvl+0xe4/0x150 [ 696.273701][ T2038] [] dump_stack+0x1c/0x24 [ 696.274849][ T2038] [] panic+0x24a/0x634 [ 696.275865][ T2038] [] schedule+0x0/0x14c [ 696.276930][ T2038] [] preempt_schedule_notrace+0x9c/0x19a [ 696.278103][ T2038] [] kmem_cache_alloc+0x32a/0x3de [ 696.279266][ T2038] [] __kernfs_new_node+0xfc/0x5f2 [ 696.280420][ T2038] [] kernfs_new_node+0x66/0xbe [ 696.281497][ T2038] [] __kernfs_create_file+0x4e/0x1e8 [ 696.283044][ T2038] [] sysfs_add_file_mode_ns+0x138/0x254 [ 696.284300][ T2038] [] internal_create_group+0x274/0x722 [ 696.285408][ T2038] [] internal_create_groups.part.0+0x64/0xe8 [ 696.286621][ T2038] [] sysfs_create_groups+0x2c/0x48 [ 696.287715][ T2038] [] device_add+0xee4/0x129e [ 696.289157][ T2038] [] netdev_register_kobject+0xcc/0x208 [ 696.290405][ T2038] [] register_netdevice+0x8ee/0xc6a [ 696.291630][ T2038] [] veth_newlink+0x30e/0x7dc [ 696.292723][ T2038] [] __rtnl_newlink+0xc16/0xfa0 [ 696.293854][ T2038] [] rtnl_newlink+0x60/0x8c [ 696.294971][ T2038] [] rtnetlink_rcv_msg+0x338/0x9a0 [ 696.297207][ T2038] [] netlink_rcv_skb+0xf8/0x2be [ 696.298569][ T2038] [] rtnetlink_rcv+0x26/0x30 [ 696.300596][ T2038] [] netlink_unicast+0x40e/0x5fe [ 696.302496][ T2038] [] netlink_sendmsg+0x4e0/0x994 [ 696.304331][ T2038] [] sock_sendmsg+0xa0/0xc4 [ 696.306095][ T2038] [] __sys_sendto+0x1f2/0x2e0 [ 696.307258][ T2038] [] sys_sendto+0x3e/0x52 [ 696.308840][ T2038] [] ret_from_syscall+0x0/0x2 [ 696.310399][ T2038] SMP: stopping secondary CPUs [ 696.313346][ T2038] Rebooting in 86400 seconds.. VM DIAGNOSIS: 06:29:38 Registers: info registers vcpu 0 pc ffffffff80dc337e mhartid 0000000000000000 mstatus 00000000000000a0 mip 0000000000000000 mie 00000000000002aa mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff8000f97e sepc ffffffff8010b26a mcause 0000000000000009 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff80dc337e x2/sp ffffaf8009d21ea0 x3/gp ffffffff85863ac0 x4/tp ffffaf800c349840 x5/t0 ffffffff86bcb657 x6/t1 ba41dd0462a9b500 x7/t2 0000000000000000 x8/s0 ffffaf8009d21ed0 x9/s1 ffffffff86e58900 x10/a0 ffffffff86e58948 x11/a1 ffff8f800066c000 x12/a2 1ffffffff0dcb129 x13/a3 ffffffff80dc337e x14/a4 0000000000000000 x15/a5 ffffffff86e58948 x16/a6 ffffffff86e589f1 x17/a7 ffffffff80dcc2ca x18/s2 ffff8f800066c000 x19/s3 000000000000006f x20/s4 ffffffff86e58900 x21/s5 ffffffff80dc333e x22/s6 0000000000000000 x23/s7 ffffffff86bcb67d x24/s8 0000000000000010 x25/s9 ffffffff86e58958 x26/s10 0000000000000010 x27/s11 0000000000000000 x28/t3 fffffffff3f3f300 x29/t4 ffffffff80112282 x30/t5 1ffff5f0013a4384 x31/t6 ffffffff86bcb657 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000 info registers vcpu 1 pc ffffffff804124ee mhartid 0000000000000001 mstatus 00000000000000a0 mip 0000000000000000 mie 00000000000002aa mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff8000f97e sepc ffffffff80201000 mcause 0000000000000009 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff80237834 x2/sp ffffaf8012b37a90 x3/gp ffffffff85863ac0 x4/tp ffffaf800754b080 x5/t0 fffff5ef0175cc00 x6/t1 ba41dd0462a9b500 x7/t2 0000000000000018 x8/s0 ffffaf8012b37a30 x9/s1 ffffaf805a9e4840 x10/a0 ffffffff836290e0 x11/a1 0000000000000000 x12/a2 1ffff5f00b53c908 x13/a3 ffffffff8010ce7e x14/a4 ffffaf800754c080 x15/a5 0000000000000000 x16/a6 0000000000f00000 x17/a7 ffffffff804143a0 x18/s2 0000000000000000 x19/s3 1ffff5f002566f78 x20/s4 ffffaf800bae5000 x21/s5 ffffffff85889780 x22/s6 ffffaf8012b37be0 x23/s7 ffffaf800bae5ff1 x24/s8 0000000000001000 x25/s9 ffffffff85796dae x26/s10 0000000000000001 x27/s11 ffffaf800754b0b8 x28/t3 fffffffff3f3f300 x29/t4 ffffffff80112282 x30/t5 1ffff5f002566f08 x31/t6 0000000000040000 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000