[ 483.915039][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 483.940558][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 483.976631][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 484.033499][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:20749' (ECDSA) to the list of known hosts. 1970/01/01 00:09:11 fuzzer started 1970/01/01 00:09:23 dialing manager at localhost:40615 [ 569.425331][ T2026] cgroup: Unknown subsys name 'net' [ 570.618001][ T2026] cgroup: Unknown subsys name 'rlimit' 1970/01/01 00:09:30 syscalls: 2918 1970/01/01 00:09:30 code coverage: enabled 1970/01/01 00:09:30 comparison tracing: enabled 1970/01/01 00:09:30 extra coverage: enabled 1970/01/01 00:09:30 delay kcov mmap: mmap returned an invalid pointer 1970/01/01 00:09:30 setuid sandbox: enabled 1970/01/01 00:09:30 namespace sandbox: enabled 1970/01/01 00:09:30 Android sandbox: /sys/fs/selinux/policy does not exist 1970/01/01 00:09:30 fault injection: enabled 1970/01/01 00:09:30 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 1970/01/01 00:09:30 net packet injection: enabled 1970/01/01 00:09:30 net device setup: enabled 1970/01/01 00:09:30 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 1970/01/01 00:09:30 devlink PCI setup: PCI device 0000:00:10.0 is not available 1970/01/01 00:09:30 NIC VF setup: PCI device 0000:00:11.0 is not available 1970/01/01 00:09:30 USB emulation: enabled 1970/01/01 00:09:30 hci packet injection: /dev/vhci does not exist 1970/01/01 00:09:30 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist 1970/01/01 00:09:30 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist 1970/01/01 00:09:30 fetching corpus: 0, signal 0/2000 (executing program) 1970/01/01 00:09:35 fetching corpus: 50, signal 28290/31846 (executing program) 1970/01/01 00:09:39 fetching corpus: 100, signal 43668/48613 (executing program) 1970/01/01 00:09:43 fetching corpus: 150, signal 53163/59460 (executing program) 1970/01/01 00:09:45 fetching corpus: 199, signal 59021/66642 (executing program) 1970/01/01 00:09:47 fetching corpus: 249, signal 65851/74623 (executing program) 1970/01/01 00:09:50 fetching corpus: 299, signal 71653/81571 (executing program) 1970/01/01 00:09:52 fetching corpus: 349, signal 76614/87640 (executing program) 1970/01/01 00:09:54 fetching corpus: 399, signal 81560/93603 (executing program) 1970/01/01 00:09:57 fetching corpus: 449, signal 86860/99777 (executing program) 1970/01/01 00:10:00 fetching corpus: 499, signal 89763/103708 (executing program) 1970/01/01 00:10:03 fetching corpus: 548, signal 94978/109708 (executing program) 1970/01/01 00:10:06 fetching corpus: 596, signal 97612/113302 (executing program) 1970/01/01 00:10:08 fetching corpus: 646, signal 100626/117211 (executing program) 1970/01/01 00:10:10 fetching corpus: 696, signal 102883/120364 (executing program) 1970/01/01 00:10:12 fetching corpus: 746, signal 105837/124096 (executing program) 1970/01/01 00:10:16 fetching corpus: 796, signal 108088/127191 (executing program) 1970/01/01 00:10:18 fetching corpus: 845, signal 109947/129910 (executing program) 1970/01/01 00:10:20 fetching corpus: 895, signal 111965/132727 (executing program) 1970/01/01 00:10:22 fetching corpus: 945, signal 114555/136029 (executing program) 1970/01/01 00:10:26 fetching corpus: 995, signal 116927/139040 (executing program) 1970/01/01 00:10:28 fetching corpus: 1045, signal 119445/142198 (executing program) 1970/01/01 00:10:30 fetching corpus: 1095, signal 120780/144309 (executing program) 1970/01/01 00:10:32 fetching corpus: 1145, signal 122009/146312 (executing program) 1970/01/01 00:10:34 fetching corpus: 1194, signal 124089/149010 (executing program) 1970/01/01 00:10:36 fetching corpus: 1244, signal 126088/151547 (executing program) 1970/01/01 00:10:39 fetching corpus: 1294, signal 127744/153848 (executing program) 1970/01/01 00:10:41 fetching corpus: 1344, signal 129418/156091 (executing program) 1970/01/01 00:10:43 fetching corpus: 1394, signal 130804/158084 (executing program) 1970/01/01 00:10:45 fetching corpus: 1444, signal 131630/159643 (executing program) 1970/01/01 00:10:47 fetching corpus: 1494, signal 133121/161670 (executing program) 1970/01/01 00:10:49 fetching corpus: 1544, signal 134333/163488 (executing program) 1970/01/01 00:10:51 fetching corpus: 1594, signal 135789/165497 (executing program) 1970/01/01 00:10:54 fetching corpus: 1644, signal 136790/167109 (executing program) 1970/01/01 00:10:57 fetching corpus: 1694, signal 137709/168640 (executing program) 1970/01/01 00:10:59 fetching corpus: 1744, signal 138826/170289 (executing program) 1970/01/01 00:11:01 fetching corpus: 1793, signal 140240/172109 (executing program) 1970/01/01 00:11:04 fetching corpus: 1841, signal 140894/173432 (executing program) 1970/01/01 00:11:05 fetching corpus: 1891, signal 142207/175194 (executing program) 1970/01/01 00:11:08 fetching corpus: 1941, signal 143636/177031 (executing program) 1970/01/01 00:11:11 fetching corpus: 1991, signal 145117/178877 (executing program) 1970/01/01 00:11:13 fetching corpus: 2040, signal 146771/180803 (executing program) 1970/01/01 00:11:16 fetching corpus: 2090, signal 147665/182195 (executing program) 1970/01/01 00:11:20 fetching corpus: 2140, signal 149111/183976 (executing program) 1970/01/01 00:11:22 fetching corpus: 2190, signal 150374/185583 (executing program) 1970/01/01 00:11:25 fetching corpus: 2239, signal 151541/187150 (executing program) 1970/01/01 00:11:28 fetching corpus: 2289, signal 152457/188445 (executing program) 1970/01/01 00:11:31 fetching corpus: 2339, signal 153539/189857 (executing program) 1970/01/01 00:11:33 fetching corpus: 2388, signal 154226/191086 (executing program) 1970/01/01 00:11:36 fetching corpus: 2438, signal 155441/192579 (executing program) 1970/01/01 00:11:37 fetching corpus: 2488, signal 156443/193926 (executing program) 1970/01/01 00:11:39 fetching corpus: 2538, signal 157600/195309 (executing program) 1970/01/01 00:11:42 fetching corpus: 2588, signal 158287/196453 (executing program) 1970/01/01 00:11:44 fetching corpus: 2638, signal 159804/198043 (executing program) 1970/01/01 00:11:46 fetching corpus: 2688, signal 160967/199384 (executing program) 1970/01/01 00:11:49 fetching corpus: 2738, signal 162293/200840 (executing program) 1970/01/01 00:11:51 fetching corpus: 2788, signal 163312/202055 (executing program) 1970/01/01 00:11:53 fetching corpus: 2838, signal 164003/203078 (executing program) 1970/01/01 00:11:56 fetching corpus: 2888, signal 164958/204266 (executing program) 1970/01/01 00:11:59 fetching corpus: 2938, signal 165773/205321 (executing program) 1970/01/01 00:12:00 fetching corpus: 2988, signal 166609/206427 (executing program) 1970/01/01 00:12:03 fetching corpus: 3038, signal 167281/207433 (executing program) 1970/01/01 00:12:05 fetching corpus: 3087, signal 168048/208466 (executing program) 1970/01/01 00:12:07 fetching corpus: 3137, signal 169160/209623 (executing program) 1970/01/01 00:12:11 fetching corpus: 3187, signal 170038/210615 (executing program) 1970/01/01 00:12:13 fetching corpus: 3237, signal 170626/211513 (executing program) 1970/01/01 00:12:15 fetching corpus: 3286, signal 171303/212443 (executing program) 1970/01/01 00:12:20 fetching corpus: 3336, signal 172299/213534 (executing program) 1970/01/01 00:12:23 fetching corpus: 3386, signal 173466/214643 (executing program) 1970/01/01 00:12:25 fetching corpus: 3436, signal 174201/215555 (executing program) 1970/01/01 00:12:28 fetching corpus: 3486, signal 175508/216658 (executing program) 1970/01/01 00:12:31 fetching corpus: 3535, signal 176449/217593 (executing program) 1970/01/01 00:12:34 fetching corpus: 3585, signal 177530/218603 (executing program) 1970/01/01 00:12:36 fetching corpus: 3635, signal 178123/219433 (executing program) 1970/01/01 00:12:39 fetching corpus: 3685, signal 178903/220286 (executing program) 1970/01/01 00:12:42 fetching corpus: 3735, signal 179659/221126 (executing program) 1970/01/01 00:12:44 fetching corpus: 3785, signal 180433/221939 (executing program) 1970/01/01 00:12:47 fetching corpus: 3834, signal 181163/222717 (executing program) 1970/01/01 00:12:50 fetching corpus: 3884, signal 181939/223512 (executing program) 1970/01/01 00:12:53 fetching corpus: 3934, signal 182719/224332 (executing program) 1970/01/01 00:12:55 fetching corpus: 3983, signal 183179/224966 (executing program) 1970/01/01 00:12:57 fetching corpus: 4032, signal 183960/225681 (executing program) 1970/01/01 00:12:59 fetching corpus: 4081, signal 184720/226451 (executing program) 1970/01/01 00:13:03 fetching corpus: 4131, signal 185419/227193 (executing program) 1970/01/01 00:13:06 fetching corpus: 4181, signal 185952/227843 (executing program) 1970/01/01 00:13:08 fetching corpus: 4230, signal 186640/228560 (executing program) 1970/01/01 00:13:10 fetching corpus: 4279, signal 187142/229209 (executing program) 1970/01/01 00:13:12 fetching corpus: 4329, signal 187701/229845 (executing program) 1970/01/01 00:13:15 fetching corpus: 4379, signal 189130/230749 (executing program) 1970/01/01 00:13:17 fetching corpus: 4429, signal 189872/231414 (executing program) 1970/01/01 00:13:19 fetching corpus: 4479, signal 192022/232386 (executing program) 1970/01/01 00:13:20 fetching corpus: 4529, signal 192748/233029 (executing program) 1970/01/01 00:13:22 fetching corpus: 4579, signal 193182/233583 (executing program) 1970/01/01 00:13:25 fetching corpus: 4629, signal 193766/234181 (executing program) 1970/01/01 00:13:28 fetching corpus: 4679, signal 194575/234754 (executing program) 1970/01/01 00:13:30 fetching corpus: 4729, signal 195544/235400 (executing program) 1970/01/01 00:13:33 fetching corpus: 4779, signal 196379/235963 (executing program) 1970/01/01 00:13:35 fetching corpus: 4829, signal 196830/236452 (executing program) 1970/01/01 00:13:38 fetching corpus: 4879, signal 197449/237014 (executing program) 1970/01/01 00:13:42 fetching corpus: 4929, signal 198075/237525 (executing program) 1970/01/01 00:13:45 fetching corpus: 4979, signal 198783/238032 (executing program) 1970/01/01 00:13:47 fetching corpus: 5029, signal 199407/238536 (executing program) 1970/01/01 00:13:49 fetching corpus: 5079, signal 199902/239012 (executing program) 1970/01/01 00:13:51 fetching corpus: 5129, signal 200528/239499 (executing program) 1970/01/01 00:13:54 fetching corpus: 5179, signal 201026/239976 (executing program) 1970/01/01 00:13:56 fetching corpus: 5228, signal 201757/240444 (executing program) 1970/01/01 00:13:59 fetching corpus: 5278, signal 202365/240900 (executing program) 1970/01/01 00:14:00 fetching corpus: 5327, signal 202826/241328 (executing program) 1970/01/01 00:14:04 fetching corpus: 5377, signal 203649/241760 (executing program) 1970/01/01 00:14:05 fetching corpus: 5427, signal 204039/242192 (executing program) 1970/01/01 00:14:07 fetching corpus: 5477, signal 204570/242556 (executing program) 1970/01/01 00:14:09 fetching corpus: 5526, signal 204958/242912 (executing program) 1970/01/01 00:14:11 fetching corpus: 5576, signal 205352/243315 (executing program) 1970/01/01 00:14:13 fetching corpus: 5626, signal 205941/243674 (executing program) 1970/01/01 00:14:15 fetching corpus: 5676, signal 206567/244037 (executing program) 1970/01/01 00:14:18 fetching corpus: 5726, signal 207007/244395 (executing program) 1970/01/01 00:14:20 fetching corpus: 5775, signal 207448/244713 (executing program) 1970/01/01 00:14:22 fetching corpus: 5825, signal 207894/245070 (executing program) 1970/01/01 00:14:23 fetching corpus: 5875, signal 208373/245403 (executing program) 1970/01/01 00:14:26 fetching corpus: 5925, signal 208706/245747 (executing program) 1970/01/01 00:14:29 fetching corpus: 5975, signal 209134/246101 (executing program) 1970/01/01 00:14:31 fetching corpus: 6025, signal 209753/246435 (executing program) 1970/01/01 00:14:33 fetching corpus: 6075, signal 210375/246736 (executing program) 1970/01/01 00:14:35 fetching corpus: 6125, signal 211308/246877 (executing program) 1970/01/01 00:14:38 fetching corpus: 6175, signal 212053/246877 (executing program) 1970/01/01 00:14:41 fetching corpus: 6225, signal 213009/246879 (executing program) 1970/01/01 00:14:46 fetching corpus: 6275, signal 213702/246879 (executing program) 1970/01/01 00:14:48 fetching corpus: 6325, signal 214319/246879 (executing program) 1970/01/01 00:14:50 fetching corpus: 6375, signal 214876/246885 (executing program) 1970/01/01 00:14:53 fetching corpus: 6425, signal 215501/246923 (executing program) 1970/01/01 00:14:55 fetching corpus: 6475, signal 215945/246923 (executing program) 1970/01/01 00:14:57 fetching corpus: 6525, signal 216336/246924 (executing program) 1970/01/01 00:15:00 fetching corpus: 6575, signal 216883/246924 (executing program) 1970/01/01 00:15:03 fetching corpus: 6625, signal 217199/246929 (executing program) 1970/01/01 00:15:07 fetching corpus: 6674, signal 217716/246929 (executing program) 1970/01/01 00:15:11 fetching corpus: 6724, signal 218191/246929 (executing program) 1970/01/01 00:15:13 fetching corpus: 6774, signal 218797/246953 (executing program) 1970/01/01 00:15:14 fetching corpus: 6824, signal 219339/246953 (executing program) 1970/01/01 00:15:17 fetching corpus: 6874, signal 219778/246953 (executing program) 1970/01/01 00:15:18 fetching corpus: 6924, signal 220325/246953 (executing program) 1970/01/01 00:15:21 fetching corpus: 6974, signal 220799/246956 (executing program) 1970/01/01 00:15:24 fetching corpus: 7024, signal 221408/246956 (executing program) 1970/01/01 00:15:26 fetching corpus: 7073, signal 221828/246959 (executing program) 1970/01/01 00:15:27 fetching corpus: 7123, signal 222233/246962 (executing program) 1970/01/01 00:15:29 fetching corpus: 7173, signal 222769/246962 (executing program) 1970/01/01 00:15:31 fetching corpus: 7223, signal 223075/246968 (executing program) 1970/01/01 00:15:33 fetching corpus: 7273, signal 223408/246968 (executing program) 1970/01/01 00:15:36 fetching corpus: 7323, signal 223836/246968 (executing program) 1970/01/01 00:15:39 fetching corpus: 7373, signal 224346/246969 (executing program) 1970/01/01 00:15:41 fetching corpus: 7423, signal 224719/246971 (executing program) 1970/01/01 00:15:43 fetching corpus: 7473, signal 225131/246971 (executing program) 1970/01/01 00:15:46 fetching corpus: 7523, signal 225447/246974 (executing program) 1970/01/01 00:15:47 fetching corpus: 7573, signal 225903/246975 (executing program) 1970/01/01 00:15:48 fetching corpus: 7623, signal 226356/246975 (executing program) 1970/01/01 00:15:51 fetching corpus: 7673, signal 226702/246979 (executing program) 1970/01/01 00:15:55 fetching corpus: 7723, signal 227142/246979 (executing program) 1970/01/01 00:15:58 fetching corpus: 7772, signal 227522/246985 (executing program) 1970/01/01 00:16:01 fetching corpus: 7822, signal 228011/247001 (executing program) 1970/01/01 00:16:03 fetching corpus: 7872, signal 228387/247001 (executing program) 1970/01/01 00:16:05 fetching corpus: 7922, signal 228828/247001 (executing program) 1970/01/01 00:16:07 fetching corpus: 7972, signal 229328/247005 (executing program) 1970/01/01 00:16:09 fetching corpus: 8021, signal 229847/247008 (executing program) 1970/01/01 00:16:12 fetching corpus: 8071, signal 230156/247008 (executing program) 1970/01/01 00:16:15 fetching corpus: 8121, signal 230449/247018 (executing program) 1970/01/01 00:16:18 fetching corpus: 8171, signal 231069/247018 (executing program) 1970/01/01 00:16:21 fetching corpus: 8221, signal 231441/247018 (executing program) 1970/01/01 00:16:23 fetching corpus: 8271, signal 231828/247018 (executing program) 1970/01/01 00:16:25 fetching corpus: 8321, signal 232253/247018 (executing program) 1970/01/01 00:16:27 fetching corpus: 8371, signal 232853/247018 (executing program) 1970/01/01 00:16:29 fetching corpus: 8420, signal 233125/247019 (executing program) 1970/01/01 00:16:32 fetching corpus: 8470, signal 233650/247093 (executing program) 1970/01/01 00:16:33 fetching corpus: 8520, signal 233997/247093 (executing program) 1970/01/01 00:16:35 fetching corpus: 8570, signal 234310/247103 (executing program) 1970/01/01 00:16:37 fetching corpus: 8620, signal 234600/247103 (executing program) 1970/01/01 00:16:39 fetching corpus: 8670, signal 234930/247103 (executing program) 1970/01/01 00:16:40 fetching corpus: 8720, signal 235250/247111 (executing program) 1970/01/01 00:16:43 fetching corpus: 8770, signal 235604/247111 (executing program) 1970/01/01 00:16:45 fetching corpus: 8820, signal 235922/247111 (executing program) 1970/01/01 00:16:47 fetching corpus: 8869, signal 236251/247111 (executing program) 1970/01/01 00:16:49 fetching corpus: 8919, signal 236850/247111 (executing program) 1970/01/01 00:16:52 fetching corpus: 8969, signal 237111/247116 (executing program) 1970/01/01 00:16:53 fetching corpus: 9019, signal 237386/247116 (executing program) 1970/01/01 00:16:55 fetching corpus: 9069, signal 237746/247116 (executing program) 1970/01/01 00:16:57 fetching corpus: 9119, signal 238294/247116 (executing program) 1970/01/01 00:16:59 fetching corpus: 9169, signal 238613/247116 (executing program) 1970/01/01 00:17:02 fetching corpus: 9219, signal 238908/247116 (executing program) 1970/01/01 00:17:04 fetching corpus: 9269, signal 239384/247116 (executing program) 1970/01/01 00:17:07 fetching corpus: 9319, signal 239838/247116 (executing program) 1970/01/01 00:17:08 fetching corpus: 9369, signal 240084/247116 (executing program) 1970/01/01 00:17:10 fetching corpus: 9419, signal 240491/247116 (executing program) 1970/01/01 00:17:12 fetching corpus: 9469, signal 240918/247117 (executing program) 1970/01/01 00:17:13 fetching corpus: 9519, signal 241211/247118 (executing program) 1970/01/01 00:17:15 fetching corpus: 9569, signal 241623/247118 (executing program) 1970/01/01 00:17:18 fetching corpus: 9619, signal 242039/247135 (executing program) 1970/01/01 00:17:21 fetching corpus: 9669, signal 242346/247135 (executing program) 1970/01/01 00:17:23 fetching corpus: 9718, signal 242646/247136 (executing program) 1970/01/01 00:17:25 fetching corpus: 9768, signal 242924/247139 (executing program) 1970/01/01 00:17:26 fetching corpus: 9818, signal 243225/247139 (executing program) 1970/01/01 00:17:28 fetching corpus: 9868, signal 243616/247167 (executing program) 1970/01/01 00:17:30 fetching corpus: 9917, signal 243958/247167 (executing program) 1970/01/01 00:17:32 fetching corpus: 9967, signal 244220/247167 (executing program) 1970/01/01 00:17:33 fetching corpus: 9978, signal 244254/247167 (executing program) 1970/01/01 00:17:33 fetching corpus: 9978, signal 244254/247167 (executing program) 1970/01/01 00:19:14 starting 2 fuzzer processes 00:19:14 executing program 0: openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x8aa42, 0x0) getxattr(&(0x7f0000000040)='./file1\x00', &(0x7f0000000080)=@known='system.posix_acl_access\x00', 0x0, 0x0) 00:19:14 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000180)=@v2={0x2, @adiantum, 0x0, '\x00', @auto="4ca710ab77f2c97c2305aa018491c3e7"}) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, 0x0) [ 1184.893148][ T2046] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1185.579475][ T2046] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1185.735968][ T2045] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1186.290439][ T2045] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1197.595884][ T2046] device hsr_slave_0 entered promiscuous mode [ 1197.637054][ T2046] device hsr_slave_1 entered promiscuous mode [ 1199.810856][ T2045] device hsr_slave_0 entered promiscuous mode [ 1199.835293][ T2045] device hsr_slave_1 entered promiscuous mode [ 1199.850951][ T2045] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1199.858855][ T2045] Cannot create hsr debugfs directory [ 1206.355706][ T2046] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 1206.531481][ T2046] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 1206.645433][ T2046] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 1206.879348][ T2046] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 1208.266445][ T2045] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1208.555822][ T2045] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1208.715494][ T2045] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1208.840278][ T2045] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1219.066472][ T2046] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1219.626611][ C1] ================================================================== [ 1219.628960][ C1] BUG: KASAN: stack-out-of-bounds in __bfs+0x154/0x394 [ 1219.631949][ C1] Read of size 8 at addr ffffaf800c0f3e10 by task syz-executor.0/2045 [ 1219.636658][ C1] [ 1219.638010][ C1] CPU: 1 PID: 2045 Comm: syz-executor.0 Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 1219.640282][ C1] Hardware name: riscv-virtio,qemu (DT) [ 1219.641429][ C1] Call Trace: [ 1219.642727][ C1] [] dump_backtrace+0x2e/0x3c [ 1219.645007][ C1] [] show_stack+0x34/0x40 [ 1219.646226][ C1] [] dump_stack_lvl+0xe4/0x150 [ 1219.647436][ C1] [] print_address_description.constprop.0+0x2a/0x330 [ 1219.648927][ C1] [] kasan_report+0x184/0x1e0 [ 1219.650217][ C1] [] __asan_load8+0x6e/0x96 [ 1219.651389][ C1] [] __bfs+0x154/0x394 [ 1219.652805][ C1] [] check_path.constprop.0+0x24/0x46 [ 1219.654480][ C1] [] check_noncircular+0x11a/0x1fe [ 1219.655602][ C1] [] __lock_acquire+0x19a4/0x333e [ 1219.656826][ C1] [ 1219.657390][ C1] The buggy address belongs to the page: [ 1219.658549][ C1] page:ffffaf807a9ad458 refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x8c2f3 [ 1219.660060][ C1] flags: 0x8800000000(section=17|node=0|zone=0) [ 1219.662460][ C1] raw: 0000008800000000 0000000000000000 ffffaf807a9ad460 0000000000000000 [ 1219.663833][ C1] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 1219.665018][ C1] raw: 00000000000007ff [ 1219.665837][ C1] page dumped because: kasan: bad access detected [ 1219.667031][ C1] page_owner tracks the page as allocated [ 1219.667906][ C1] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), pid 2044, ts 1159944848100, free_ts 1056506435100 [ 1219.670210][ C1] __set_page_owner+0x48/0x136 [ 1219.671339][ C1] post_alloc_hook+0xd0/0x10a [ 1219.672344][ C1] get_page_from_freelist+0x8da/0x12d8 [ 1219.673339][ C1] __alloc_pages+0x150/0x3b6 [ 1219.674159][ C1] copy_process+0x482/0x3c34 [ 1219.675000][ C1] kernel_clone+0xee/0x920 [ 1219.675845][ C1] __do_sys_clone+0xf2/0x12e [ 1219.676689][ C1] sys_clone+0x32/0x44 [ 1219.677509][ C1] ret_from_syscall+0x0/0x2 [ 1219.678350][ C1] page last free stack trace: [ 1219.678930][ C1] __reset_page_owner+0x4a/0xea [ 1219.679881][ C1] free_pcp_prepare+0x29c/0x45e [ 1219.681916][ C1] free_unref_page+0x6a/0x31e [ 1219.683793][ C1] __free_pages+0xe2/0x112 [ 1219.684820][ C1] put_task_stack+0x1d0/0x2b0 [ 1219.686615][ C1] finish_task_switch.isra.0+0x3ce/0x420 [ 1219.688676][ C1] __schedule+0x58e/0x118e [ 1219.689742][ C1] schedule+0x74/0x14c [ 1219.691451][ C1] ret_from_exception+0x0/0x10 [ 1219.694164][ C1] [ 1219.695443][ C1] Memory state around the buggy address: [ 1219.697643][ C1] ffffaf800c0f3d00: 00 00 00 00 00 00 00 00 00 00 00 00 f2 f2 f2 f2 [ 1219.700063][ C1] ffffaf800c0f3d80: 00 00 00 00 00 00 00 00 f1 f1 f1 f1 00 f2 f2 f2 [ 1219.701213][ C1] >ffffaf800c0f3e00: f3 f3 f3 f3 00 00 00 f3 f3 f3 f3 f3 00 00 00 00 [ 1219.702330][ C1] ^ [ 1219.703063][ C1] ffffaf800c0f3e80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 1219.703954][ C1] ffffaf800c0f3f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 1219.705017][ C1] ================================================================== [ 1219.705857][ C1] Disabling lock debugging due to kernel taint [ 1219.710986][ T2045] Kernel panic - not syncing: corrupted stack end detected inside scheduler [ 1219.722230][ T2045] CPU: 1 PID: 2045 Comm: syz-executor.0 Tainted: G B 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 1219.725714][ T2045] Hardware name: riscv-virtio,qemu (DT) [ 1219.727394][ T2045] Call Trace: [ 1219.728506][ T2045] [] dump_backtrace+0x2e/0x3c [ 1219.729740][ T2045] [] show_stack+0x34/0x40 [ 1219.730683][ T2045] [] dump_stack_lvl+0xe4/0x150 [ 1219.731938][ T2045] [] dump_stack+0x1c/0x24 [ 1219.733083][ T2045] [] panic+0x24a/0x634 [ 1219.734036][ T2045] [] schedule+0x0/0x14c [ 1219.734954][ T2045] [] preempt_schedule_irq+0x4a/0x13e [ 1219.735892][ T2045] [] resume_kernel+0x16/0x18 [ 1219.736925][ T2045] SMP: stopping secondary CPUs [ 1219.738767][ T2045] Rebooting in 86400 seconds.. VM DIAGNOSIS: 18:50:24 Registers: info registers vcpu 0 pc ffffffff8010b22c mhartid 0000000000000000 mstatus 00000000000001a0 mip 00000000000000a0 mie 000000000000020a mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff80146d5e sepc ffffffff80146d5e mcause 8000000000000007 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff831a18d8 x2/sp ffffaf800734f2e0 x3/gp ffffffff85863ac0 x4/tp ffffaf80073ee100 x5/t0 0000000000046000 x6/t1 a1db418909e46100 x7/t2 00007fffdffa7c06 x8/s0 ffffaf800734f2f0 x9/s1 0000000000001000 x10/a0 0000000000000120 x11/a1 ffffffffffffffff x12/a2 1ffff5f000e7dc21 x13/a3 ffffffff80146d84 x14/a4 0000000000010005 x15/a5 0000000000000000 x16/a6 0000000000f00000 x17/a7 ffffffff800dddaa x18/s2 0000000000000000 x19/s3 ffffffff84b73ec0 x20/s4 000000000000b7f0 x21/s5 ffffffff8343c840 x22/s6 ffffffffffffffff x23/s7 00000000028e3542 x24/s8 ffffffff86c1a620 x25/s9 0000000000000000 x26/s10 ffffffff83626988 x27/s11 0000000002015142 x28/t3 fffffffff3f3f300 x29/t4 ffffffff80112282 x30/t5 1ffff5f000e69e38 x31/t6 00000000000000ff f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000 info registers vcpu 1 pc ffffffff80dc337e mhartid 0000000000000001 mstatus 00000000000001a0 mip 00000000000000a0 mie 000000000000022a mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff80475986 sepc ffffffff80009fba mcause 8000000000000007 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff80dc337e x2/sp ffffaf800c0f36b0 x3/gp ffffffff85863ac0 x4/tp ffffaf80074048c0 x5/t0 ffffffff86bcb657 x6/t1 fffffffff3f3f3f3 x7/t2 0000000000000000 x8/s0 ffffaf800c0f36e0 x9/s1 ffffffff86e58900 x10/a0 ffffffff86e58948 x11/a1 ffff8f800066c000 x12/a2 1ffffffff0dcb129 x13/a3 ffffffff80dc337e x14/a4 0000000000000000 x15/a5 ffffffff86e58948 x16/a6 ffffffff86e589f1 x17/a7 a1db418909e46100 x18/s2 ffff8f800066c000 x19/s3 0000000000000020 x20/s4 ffffffff86e58900 x21/s5 ffffffff80dc333e x22/s6 0000000000000000 x23/s7 ffffffff86bcb69b x24/s8 0000000000000010 x25/s9 ffffffff86e58958 x26/s10 0000000000000010 x27/s11 0000000000000000 x28/t3 ffffffff801163b2 x29/t4 fffffffef0d796c8 x30/t5 fffffffef0d796cb x31/t6 ffffffff86bcb657 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000