syzkaller login: [ 260.539261][ T1860] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 268.740986][ T1860] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 277.703315][ T1860] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:16152' (ECDSA) to the list of known hosts. 1970/01/01 00:05:31 fuzzer started 1970/01/01 00:05:48 dialing manager at localhost:44187 [ 353.584843][ T2027] cgroup: Unknown subsys name 'net' [ 354.475628][ T2027] cgroup: Unknown subsys name 'rlimit' 1970/01/01 00:05:54 syscalls: 2870 1970/01/01 00:05:54 code coverage: enabled 1970/01/01 00:05:54 comparison tracing: enabled 1970/01/01 00:05:54 extra coverage: enabled 1970/01/01 00:05:54 delay kcov mmap: mmap returned an invalid pointer 1970/01/01 00:05:54 setuid sandbox: enabled 1970/01/01 00:05:54 namespace sandbox: enabled 1970/01/01 00:05:54 Android sandbox: /sys/fs/selinux/policy does not exist 1970/01/01 00:05:54 fault injection: enabled 1970/01/01 00:05:54 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 1970/01/01 00:05:54 net packet injection: enabled 1970/01/01 00:05:54 net device setup: enabled 1970/01/01 00:05:54 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 1970/01/01 00:05:54 devlink PCI setup: PCI device 0000:00:10.0 is not available 1970/01/01 00:05:54 USB emulation: enabled 1970/01/01 00:05:54 hci packet injection: /dev/vhci does not exist 1970/01/01 00:05:54 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist 1970/01/01 00:05:54 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist 1970/01/01 00:05:54 fetching corpus: 0, signal 0/2000 (executing program) 1970/01/01 00:05:59 fetching corpus: 50, signal 27210/30629 (executing program) 1970/01/01 00:06:03 fetching corpus: 100, signal 46588/51033 (executing program) 1970/01/01 00:06:08 fetching corpus: 149, signal 54666/60190 (executing program) 1970/01/01 00:06:11 fetching corpus: 199, signal 63901/70215 (executing program) 1970/01/01 00:06:13 fetching corpus: 249, signal 68535/75810 (executing program) 1970/01/01 00:06:15 fetching corpus: 298, signal 74420/82433 (executing program) 1970/01/01 00:06:18 fetching corpus: 348, signal 77806/86686 (executing program) 1970/01/01 00:06:22 fetching corpus: 398, signal 81331/90953 (executing program) 1970/01/01 00:06:25 fetching corpus: 448, signal 85054/95332 (executing program) 1970/01/01 00:06:28 fetching corpus: 498, signal 88414/99347 (executing program) 1970/01/01 00:06:30 fetching corpus: 548, signal 91253/102791 (executing program) 1970/01/01 00:06:34 fetching corpus: 598, signal 95811/107674 (executing program) 1970/01/01 00:06:36 fetching corpus: 648, signal 97964/110379 (executing program) 1970/01/01 00:06:39 fetching corpus: 698, signal 100581/113470 (executing program) 1970/01/01 00:06:41 fetching corpus: 747, signal 102607/116008 (executing program) 1970/01/01 00:06:43 fetching corpus: 797, signal 104956/118706 (executing program) 1970/01/01 00:06:49 fetching corpus: 847, signal 107353/121344 (executing program) 1970/01/01 00:06:52 fetching corpus: 896, signal 109421/123745 (executing program) 1970/01/01 00:06:55 fetching corpus: 945, signal 112677/127033 (executing program) 1970/01/01 00:06:58 fetching corpus: 995, signal 115396/129834 (executing program) 1970/01/01 00:07:01 fetching corpus: 1045, signal 116839/131588 (executing program) 1970/01/01 00:07:04 fetching corpus: 1094, signal 117985/133072 (executing program) 1970/01/01 00:07:06 fetching corpus: 1143, signal 119726/135024 (executing program) 1970/01/01 00:07:09 fetching corpus: 1193, signal 121546/136947 (executing program) 1970/01/01 00:07:11 fetching corpus: 1243, signal 123484/138917 (executing program) 1970/01/01 00:07:14 fetching corpus: 1293, signal 125588/140925 (executing program) 1970/01/01 00:07:18 fetching corpus: 1342, signal 128282/143389 (executing program) 1970/01/01 00:07:21 fetching corpus: 1392, signal 129721/144876 (executing program) 1970/01/01 00:07:23 fetching corpus: 1441, signal 131132/146339 (executing program) 1970/01/01 00:07:25 fetching corpus: 1491, signal 132220/147539 (executing program) 1970/01/01 00:07:28 fetching corpus: 1540, signal 133575/148866 (executing program) 1970/01/01 00:07:30 fetching corpus: 1589, signal 134940/150199 (executing program) 1970/01/01 00:07:33 fetching corpus: 1639, signal 136494/151547 (executing program) 1970/01/01 00:07:37 fetching corpus: 1689, signal 138082/152937 (executing program) 1970/01/01 00:07:40 fetching corpus: 1737, signal 139330/154067 (executing program) 1970/01/01 00:07:42 fetching corpus: 1787, signal 140351/155039 (executing program) 1970/01/01 00:07:45 fetching corpus: 1836, signal 142024/156406 (executing program) 1970/01/01 00:07:48 fetching corpus: 1885, signal 144314/158062 (executing program) 1970/01/01 00:07:51 fetching corpus: 1935, signal 145536/159069 (executing program) 1970/01/01 00:07:54 fetching corpus: 1984, signal 146572/159940 (executing program) 1970/01/01 00:07:58 fetching corpus: 2034, signal 147526/160748 (executing program) 1970/01/01 00:08:02 fetching corpus: 2084, signal 148551/161584 (executing program) 1970/01/01 00:08:04 fetching corpus: 2133, signal 149940/162569 (executing program) 1970/01/01 00:08:07 fetching corpus: 2183, signal 151003/163360 (executing program) 1970/01/01 00:08:10 fetching corpus: 2232, signal 151927/164061 (executing program) 1970/01/01 00:08:12 fetching corpus: 2282, signal 153255/164933 (executing program) 1970/01/01 00:08:16 fetching corpus: 2331, signal 154645/165844 (executing program) 1970/01/01 00:08:18 fetching corpus: 2381, signal 155529/166465 (executing program) 1970/01/01 00:08:21 fetching corpus: 2431, signal 156407/167054 (executing program) 1970/01/01 00:08:24 fetching corpus: 2480, signal 157132/167549 (executing program) 1970/01/01 00:08:26 fetching corpus: 2529, signal 158037/168157 (executing program) 1970/01/01 00:08:30 fetching corpus: 2579, signal 159500/168941 (executing program) 1970/01/01 00:08:32 fetching corpus: 2629, signal 160591/169533 (executing program) 1970/01/01 00:08:34 fetching corpus: 2678, signal 161599/170089 (executing program) 1970/01/01 00:08:38 fetching corpus: 2728, signal 162395/170555 (executing program) 1970/01/01 00:08:40 fetching corpus: 2778, signal 163628/171121 (executing program) 1970/01/01 00:08:43 fetching corpus: 2828, signal 164632/171577 (executing program) 1970/01/01 00:08:45 fetching corpus: 2878, signal 165210/171902 (executing program) 1970/01/01 00:08:48 fetching corpus: 2928, signal 165940/172254 (executing program) 1970/01/01 00:08:51 fetching corpus: 2978, signal 166719/172578 (executing program) 1970/01/01 00:08:54 fetching corpus: 3027, signal 167338/172898 (executing program) 1970/01/01 00:08:56 fetching corpus: 3077, signal 168082/173204 (executing program) 1970/01/01 00:08:59 fetching corpus: 3126, signal 168879/173489 (executing program) 1970/01/01 00:09:01 fetching corpus: 3176, signal 169889/173813 (executing program) 1970/01/01 00:09:04 fetching corpus: 3225, signal 170954/174153 (executing program) 1970/01/01 00:09:08 fetching corpus: 3275, signal 171773/174403 (executing program) 1970/01/01 00:09:12 fetching corpus: 3324, signal 172522/174614 (executing program) 1970/01/01 00:09:15 fetching corpus: 3370, signal 173258/174823 (executing program) 1970/01/01 00:09:15 fetching corpus: 3371, signal 173273/174853 (executing program) 1970/01/01 00:09:15 fetching corpus: 3371, signal 173273/174873 (executing program) 1970/01/01 00:09:15 fetching corpus: 3372, signal 173274/174898 (executing program) 1970/01/01 00:09:15 fetching corpus: 3372, signal 173274/174920 (executing program) 1970/01/01 00:09:15 fetching corpus: 3372, signal 173274/174942 (executing program) 1970/01/01 00:09:16 fetching corpus: 3372, signal 173274/174961 (executing program) 1970/01/01 00:09:16 fetching corpus: 3372, signal 173274/174984 (executing program) 1970/01/01 00:09:16 fetching corpus: 3372, signal 173274/175011 (executing program) 1970/01/01 00:09:16 fetching corpus: 3372, signal 173274/175025 (executing program) 1970/01/01 00:09:16 fetching corpus: 3372, signal 173274/175049 (executing program) 1970/01/01 00:09:16 fetching corpus: 3373, signal 173278/175070 (executing program) 1970/01/01 00:09:16 fetching corpus: 3373, signal 173278/175088 (executing program) 1970/01/01 00:09:17 fetching corpus: 3373, signal 173278/175113 (executing program) 1970/01/01 00:09:17 fetching corpus: 3373, signal 173278/175136 (executing program) 1970/01/01 00:09:17 fetching corpus: 3374, signal 173279/175154 (executing program) 1970/01/01 00:09:17 fetching corpus: 3374, signal 173279/175173 (executing program) 1970/01/01 00:09:17 fetching corpus: 3374, signal 173279/175198 (executing program) 1970/01/01 00:09:17 fetching corpus: 3374, signal 173279/175216 (executing program) 1970/01/01 00:09:17 fetching corpus: 3374, signal 173279/175231 (executing program) 1970/01/01 00:09:18 fetching corpus: 3374, signal 173279/175231 (executing program) 1970/01/01 00:11:23 starting 2 fuzzer processes 00:11:24 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000000040), 0x8) 00:11:24 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xe66e1, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)) r1 = memfd_secret(0x0) ioctl$NS_GET_PARENT(r1, 0x5460, 0xec000) statx(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) ftruncate(r0, 0xa00005) ioctl$TCXONC(0xffffffffffffffff, 0x540f, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0xc01c) ioctl$EXT4_IOC_MIGRATE(r0, 0x6609) [ 712.363924][ T2035] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 712.585048][ T2034] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 712.765741][ T2035] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 712.949852][ T2034] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 725.292459][ T2035] device hsr_slave_0 entered promiscuous mode [ 725.370717][ T2035] device hsr_slave_1 entered promiscuous mode [ 728.174616][ T2034] device hsr_slave_0 entered promiscuous mode [ 728.221786][ T2034] device hsr_slave_1 entered promiscuous mode [ 728.252357][ T2034] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 728.259130][ T2034] Cannot create hsr debugfs directory [ 737.171128][ T2035] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 737.471951][ T2035] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 737.930313][ T2035] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 738.399788][ T2035] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 740.819817][ T2034] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 741.094659][ T2034] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 742.156290][ T2034] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 742.411281][ T2034] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 758.891059][ T2035] 8021q: adding VLAN 0 to HW filter on device bond0 [ 759.594576][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 759.731335][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 761.182731][ T2034] 8021q: adding VLAN 0 to HW filter on device bond0 [ 761.924617][ T947] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 762.000380][ T947] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 772.703900][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 772.775324][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 774.082919][ T82] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 774.243973][ T82] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 774.333602][ T82] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 774.405779][ T82] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 775.025211][ T947] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 775.108379][ T947] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 776.834717][ T2035] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 776.836400][ T2035] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 776.958807][ T2099] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 776.975957][ T2099] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 777.008856][ T2099] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 777.063619][ T2099] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 777.128525][ T2099] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 777.201030][ T2099] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 777.299653][ T2099] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 777.362424][ T2099] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 777.760966][ T2099] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 779.001294][ T2034] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 779.002602][ T2034] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 779.166171][ T2099] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 779.252776][ T2099] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 779.306376][ T2099] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 779.322420][ T2099] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 779.325752][ T2099] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 779.364317][ T2099] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 779.701606][ T2677] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 780.453461][ T947] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 780.479683][ T947] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 796.213896][ T2677] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 796.246469][ T2677] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 796.487879][ T947] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 796.554677][ T947] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 802.206515][ T2035] Kernel panic - not syncing: corrupted stack end detected inside scheduler [ 802.209911][ T2035] CPU: 0 PID: 2035 Comm: syz-executor.0 Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 802.212571][ T2035] Hardware name: riscv-virtio,qemu (DT) [ 802.214496][ T2035] Call Trace: [ 802.215610][ T2035] [] dump_backtrace+0x2e/0x3c [ 802.217759][ T2035] [] show_stack+0x34/0x40 [ 802.219676][ T2035] [] dump_stack_lvl+0xe4/0x150 [ 802.221677][ T2035] [] dump_stack+0x1c/0x24 [ 802.223016][ T2035] [] panic+0x24a/0x634 [ 802.224169][ T2035] [] schedule+0x0/0x14c [ 802.224365][ T2033] Unable to handle kernel paging request at virtual address dfffaf7f0ec598d0 [ 802.225516][ T2033] Oops [#1] [ 802.226186][ T2035] [] preempt_schedule_common+0x4e/0xde [ 802.227167][ T2033] Modules linked in: [ 802.228357][ T2035] [] preempt_schedule+0x34/0x36 [ 802.229119][ T2033] CPU: 1 PID: 2033 Comm: syz-fuzzer Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 802.232459][ T2033] Hardware name: riscv-virtio,qemu (DT) [ 802.230723][ T2035] [] __slab_alloc.constprop.0+0x8a/0x8c [ 802.233815][ T2035] [] __kmalloc+0x268/0x318 [ 802.235226][ T2033] epc : mark_lock+0x11e/0xe10 [ 802.235665][ T2033] ra : mark_lock+0x108/0xe10 [ 802.237976][ T2035] [] kzalloc.constprop.0+0x24/0x2e [ 802.238904][ T2033] epc : ffffffff801110fa ra : ffffffff801110e4 sp : ffffaf800f9abba0 [ 802.239200][ T2035] [] tnode_new+0x1be/0x230 [ 802.241490][ T2033] gp : ffffffff85863ac0 tp : ffffaf8007401840 t0 : 0000000000000001 [ 802.241809][ T2033] t1 : 5b6eda58699eee00 t2 : 0000000000000018 s0 : ffffaf800f9abd50 [ 802.243181][ T2033] s1 : ffffaf800f9abc90 a0 : 0000000000000000 a1 : 00000000000f0000 [ 802.245487][ T2035] [] resize+0x3f0/0x18d2 [ 802.246357][ T2033] a2 : 0000000000000002 a3 : ffffffff831af270 a4 : 5b6eda58699eee00 [ 802.246641][ T2035] [] fib_insert_alias+0x63c/0x750 [ 802.248078][ T2033] a5 : dfffffff00000000 a6 : 0000000000f00000 a7 : ffffffff80b09886 [ 802.248327][ T2033] s2 : 0000000000025914 s3 : 0000000000000000 s4 : 0000000000000001 [ 802.249830][ T2033] s5 : dfffaf7f0ec598d0 s6 : ffffaf800ec598d0 s7 : 0000000000000080 [ 802.251413][ T2033] s8 : ffffaf800f9abe20 s9 : ffffaf800ec59800 s10: ffffaf800f9abd60 [ 802.253060][ T2033] s11: 0000000000000001 t3 : fffffffff3f3f300 t4 : ffffffff80112282 [ 802.254653][ T2033] t5 : 1ffff5f001f356f0 t6 : ffffaf800bcd2c00 [ 802.256066][ T2033] status: 0000000000000120 badaddr: dfffaf7f0ec598d0 cause: 000000000000000f [ 802.260055][ T2035] [] fib_table_insert+0x3a8/0xebe [ 802.261298][ T2035] [] fib_magic+0x3f4/0x438 [ 802.262442][ T2035] [] fib_add_ifaddr+0xd2/0x2e2 [ 802.263439][ T2035] [] fib_inetaddr_event+0xfe/0x19e [ 802.264469][ T2035] [] notifier_call_chain+0xb8/0x188 [ 802.265573][ T2035] [] blocking_notifier_call_chain+0x50/0x78 [ 802.267443][ T2035] [] __inet_insert_ifa+0x6ca/0x7e4 [ 802.268625][ T2035] [] inet_rtm_newaddr+0x7c2/0xbc2 [ 802.269673][ T2035] [] rtnetlink_rcv_msg+0x338/0x9a0 [ 802.270842][ T2035] [] netlink_rcv_skb+0xf8/0x2be [ 802.271937][ T2035] [] rtnetlink_rcv+0x26/0x30 [ 802.273009][ T2035] [] netlink_unicast+0x40e/0x5fe [ 802.274038][ T2035] [] netlink_sendmsg+0x4e0/0x994 [ 802.274217][ C1] Unable to handle kernel paging request at virtual address ffffaf80073eecd8 [ 802.274519][ C1] Oops [#2] [ 802.275042][ T2035] [] sock_sendmsg+0xa0/0xc4 [ 802.276859][ C1] Modules linked in: [ 802.278041][ T2035] [] __sys_sendto+0x1f2/0x2e0 [ 802.279154][ C1] CPU: 1 PID: 2017 Comm: sshd Tainted: G D 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 802.281581][ C1] Hardware name: riscv-virtio,qemu (DT) [ 802.280181][ T2035] [] sys_sendto+0x3e/0x52 [ 802.283031][ C1] epc : 0xffffaf80073eecd8 [ 802.284478][ T2035] [] ret_from_syscall+0x0/0x2 [ 802.285866][ C1] ra : __wake_up_common+0xb6/0x236 [ 802.287269][ T2035] SMP: stopping secondary CPUs [ 802.289643][ C1] epc : ffffaf80073eecd8 ra : ffffffff800f7678 sp : ffffaf80109b6090 [ 802.291797][ C1] gp : ffffffff85863ac0 tp : ffffaf800e5c8000 t0 : ffffaf80100803a8 [ 802.294087][ C1] t1 : fffff5ef01d8b327 t2 : fefbc9996c492e4b s0 : ffffaf80109b6100 [ 802.296409][ C1] s1 : ffffaf800f9abcf0 a0 : ffffaf800f9abcf0 a1 : 0000000000000003 [ 802.298537][ C1] a2 : 0000000000000000 a3 : 0000000000000000 a4 : ffffaf80073eecd8 [ 802.300441][ C1] a5 : ffffaf800f9abd00 a6 : ffffffff800f78bc a7 : ffffffff800f77f8 [ 802.301844][ C1] s2 : 0000000000001fe7 s3 : 0000000000001fff s4 : 0000000000000000 [ 802.302785][ C1] s5 : ffffaf800ec598d0 s6 : ffffaf80109b6150 s7 : 0000000000000001 [ 802.303773][ C1] s8 : 0000000000000003 s9 : 0000000000000000 s10: 0000000000000000 [ 802.304709][ C1] s11: 000000000f9abeb0 t3 : fffffffff3f3f304 t4 : fffff5ef01d8b327 [ 802.305676][ C1] t5 : fffff5ef01d8b328 t6 : ffffaf80100803c0 [ 802.306548][ C1] status: 0000000000000100 badaddr: ffffaf80073eecd8 cause: 000000000000000c [ 802.314598][ T2035] Rebooting in 86400 seconds.. VM DIAGNOSIS: 13:57:59 Registers: info registers vcpu 0 pc ffffffff80200f00 mhartid 0000000000000000 mstatus 00000000000000a2 mip 0000000000000000 mie 00000000000002aa mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff8000f97e sepc ffffffff8010b26a mcause 0000000000000009 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff80476c36 x2/sp ffffaf800743b570 x3/gp ffffffff85863ac0 x4/tp ffffaf8007416100 x5/t0 fffff5ef01d8b6c0 x6/t1 0000000036c80000 x7/t2 0000000000000018 x8/s0 ffffaf800743b570 x9/s1 00000000000652f0 x10/a0 0000000000000001 x11/a1 00000000000f0000 x12/a2 0000000000000100 x13/a3 ffffffff831a24bc x14/a4 5b6eda58699eee00 x15/a5 0000000000000000 x16/a6 ffffaf800bcd2a7e x17/a7 000000004bb8b061 x18/s2 ffffaf8007416100 x19/s3 0000000000000100 x20/s4 ffffaf8007416100 x21/s5 0000000000000001 x22/s6 0000000000000001 x23/s7 ffffffff85889780 x24/s8 ffffaf800bcd2a70 x25/s9 ffffaf800ec5b428 x26/s10 ffffaf800bcd2ab4 x27/s11 ffffaf800bcd2ac8 x28/t3 fffffffff3f3f300 x29/t4 ffffffff80112282 x30/t5 1ffff5f000e87658 x31/t6 fffffffffffffff8 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000 info registers vcpu 1 pc ffffffff8010b250 mhartid 0000000000000001 mstatus 00000000000000a0 mip 00000000000000a0 mie 000000000000022a mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff8233751e sepc ffffffff8046e97c mcause 8000000000000007 scause 8000000000000009 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff831a197a x2/sp ffffaf800f9ae570 x3/gp ffffffff85863ac0 x4/tp ffffaf80073ee100 x5/t0 ffffffff86bcb657 x6/t1 5b6eda58699eee00 x7/t2 0000000000000000 x8/s0 ffffaf800f9ae580 x9/s1 ffffaf80073eeb70 x10/a0 0000000000000020 x11/a1 00000000000f0000 x12/a2 0000000000000002 x13/a3 0000000000000000 x14/a4 0000000000000001 x15/a5 ffffaf805a9c8840 x16/a6 0000000000f00000 x17/a7 ffffffff8011ede2 x18/s2 0000000000000000 x19/s3 ffffffff84b73ec0 x20/s4 ffffaf80073ef100 x21/s5 ffffffff8343c840 x22/s6 ffffffffffffffff x23/s7 0000000000000020 x24/s8 ffffffff86c1a620 x25/s9 0000000000000003 x26/s10 ffffffff858655c0 x27/s11 ffffaf800f9ae820 x28/t3 fffffffff3f3f300 x29/t4 ffffffff80112282 x30/t5 1ffff5f001f35c84 x31/t6 ffffffff86bcb657 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000