syzkaller login: [  265.674554][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  265.720615][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  265.786702][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  275.594753][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
Warning: Permanently added '[localhost]:47339' (ECDSA) to the list of known hosts.
1970/01/01 00:05:49 fuzzer started
1970/01/01 00:06:00 dialing manager at localhost:44711
[  367.080326][ T2025] cgroup: Unknown subsys name 'net'
[  368.259060][ T2025] cgroup: Unknown subsys name 'rlimit'
1970/01/01 00:06:08 syscalls: 2918
1970/01/01 00:06:08 code coverage: enabled
1970/01/01 00:06:08 comparison tracing: ioctl(KCOV_DISABLE) failed: invalid argument
1970/01/01 00:06:08 extra coverage: enabled
1970/01/01 00:06:08 delay kcov mmap: mmap returned an invalid pointer
1970/01/01 00:06:08 setuid sandbox: enabled
1970/01/01 00:06:08 namespace sandbox: enabled
1970/01/01 00:06:08 Android sandbox: /sys/fs/selinux/policy does not exist
1970/01/01 00:06:08 fault injection: enabled
1970/01/01 00:06:08 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
1970/01/01 00:06:08 net packet injection: enabled
1970/01/01 00:06:08 net device setup: enabled
1970/01/01 00:06:08 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
1970/01/01 00:06:08 devlink PCI setup: PCI device 0000:00:10.0 is not available
1970/01/01 00:06:08 NIC VF setup: PCI device 0000:00:11.0 is not available
1970/01/01 00:06:08 USB emulation: enabled
1970/01/01 00:06:08 hci packet injection: /dev/vhci does not exist
1970/01/01 00:06:08 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist
1970/01/01 00:06:08 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist
1970/01/01 00:06:08 fetching corpus: 0, signal 0/2000 (executing program)
1970/01/01 00:06:13 fetching corpus: 50, signal 36619/39833 (executing program)
1970/01/01 00:06:18 fetching corpus: 100, signal 49411/53876 (executing program)
1970/01/01 00:06:22 fetching corpus: 150, signal 55156/60874 (executing program)
1970/01/01 00:06:24 fetching corpus: 199, signal 62240/69067 (executing program)
1970/01/01 00:06:27 fetching corpus: 249, signal 68463/76298 (executing program)
1970/01/01 00:06:29 fetching corpus: 299, signal 72843/81645 (executing program)
1970/01/01 00:06:32 fetching corpus: 347, signal 76155/85921 (executing program)
1970/01/01 00:06:34 fetching corpus: 397, signal 79602/90289 (executing program)
1970/01/01 00:06:36 fetching corpus: 447, signal 85213/96508 (executing program)
1970/01/01 00:06:39 fetching corpus: 497, signal 88447/100493 (executing program)
1970/01/01 00:06:41 fetching corpus: 546, signal 90747/103597 (executing program)
1970/01/01 00:06:45 fetching corpus: 596, signal 94538/107937 (executing program)
1970/01/01 00:06:48 fetching corpus: 646, signal 97280/111342 (executing program)
1970/01/01 00:06:52 fetching corpus: 696, signal 99648/114352 (executing program)
1970/01/01 00:06:55 fetching corpus: 746, signal 102818/118014 (executing program)
1970/01/01 00:06:59 fetching corpus: 796, signal 105513/121241 (executing program)
1970/01/01 00:07:03 fetching corpus: 845, signal 108066/124257 (executing program)
1970/01/01 00:07:06 fetching corpus: 894, signal 110379/127067 (executing program)
1970/01/01 00:07:09 fetching corpus: 944, signal 112274/129472 (executing program)
1970/01/01 00:07:11 fetching corpus: 994, signal 114358/131989 (executing program)
1970/01/01 00:07:14 fetching corpus: 1044, signal 116241/134319 (executing program)
1970/01/01 00:07:16 fetching corpus: 1094, signal 117780/136315 (executing program)
1970/01/01 00:07:19 fetching corpus: 1144, signal 119744/138620 (executing program)
1970/01/01 00:07:22 fetching corpus: 1193, signal 121964/141018 (executing program)
1970/01/01 00:07:24 fetching corpus: 1242, signal 123767/143098 (executing program)
1970/01/01 00:07:27 fetching corpus: 1292, signal 125720/145261 (executing program)
1970/01/01 00:07:29 fetching corpus: 1342, signal 127472/147243 (executing program)
1970/01/01 00:07:32 fetching corpus: 1391, signal 128857/148909 (executing program)
1970/01/01 00:07:35 fetching corpus: 1441, signal 130685/150854 (executing program)
1970/01/01 00:07:38 fetching corpus: 1491, signal 132300/152652 (executing program)
1970/01/01 00:07:40 fetching corpus: 1541, signal 134820/154984 (executing program)
1970/01/01 00:07:42 fetching corpus: 1591, signal 136716/156862 (executing program)
1970/01/01 00:07:45 fetching corpus: 1641, signal 138476/158654 (executing program)
1970/01/01 00:07:48 fetching corpus: 1690, signal 139234/159730 (executing program)
1970/01/01 00:07:51 fetching corpus: 1740, signal 140497/161126 (executing program)
1970/01/01 00:07:56 fetching corpus: 1790, signal 142130/162693 (executing program)
1970/01/01 00:07:58 fetching corpus: 1840, signal 143255/163964 (executing program)
1970/01/01 00:08:01 fetching corpus: 1890, signal 144828/165495 (executing program)
1970/01/01 00:08:03 fetching corpus: 1940, signal 146197/166868 (executing program)
1970/01/01 00:08:05 fetching corpus: 1990, signal 147274/168029 (executing program)
1970/01/01 00:08:08 fetching corpus: 2040, signal 148542/169237 (executing program)
1970/01/01 00:08:10 fetching corpus: 2090, signal 149508/170251 (executing program)
1970/01/01 00:08:13 fetching corpus: 2139, signal 150815/171437 (executing program)
1970/01/01 00:08:15 fetching corpus: 2188, signal 151751/172418 (executing program)
1970/01/01 00:08:17 fetching corpus: 2238, signal 153277/173684 (executing program)
1970/01/01 00:08:20 fetching corpus: 2287, signal 154355/174687 (executing program)
1970/01/01 00:08:23 fetching corpus: 2337, signal 155517/175743 (executing program)
1970/01/01 00:08:25 fetching corpus: 2387, signal 156646/176778 (executing program)
1970/01/01 00:08:27 fetching corpus: 2437, signal 157742/177726 (executing program)
1970/01/01 00:08:30 fetching corpus: 2487, signal 158787/178613 (executing program)
1970/01/01 00:08:33 fetching corpus: 2536, signal 160124/179635 (executing program)
1970/01/01 00:08:36 fetching corpus: 2586, signal 161121/180455 (executing program)
1970/01/01 00:08:38 fetching corpus: 2636, signal 162235/181316 (executing program)
1970/01/01 00:08:41 fetching corpus: 2686, signal 163379/182155 (executing program)
1970/01/01 00:08:43 fetching corpus: 2736, signal 164167/182842 (executing program)
1970/01/01 00:08:45 fetching corpus: 2786, signal 165030/183557 (executing program)
1970/01/01 00:08:48 fetching corpus: 2835, signal 165872/184195 (executing program)
1970/01/01 00:08:50 fetching corpus: 2884, signal 166645/184858 (executing program)
1970/01/01 00:08:52 fetching corpus: 2934, signal 167634/185572 (executing program)
1970/01/01 00:08:55 fetching corpus: 2984, signal 168675/186258 (executing program)
1970/01/01 00:08:59 fetching corpus: 3034, signal 169507/186888 (executing program)
1970/01/01 00:09:01 fetching corpus: 3082, signal 170285/187472 (executing program)
1970/01/01 00:09:04 fetching corpus: 3132, signal 171136/188042 (executing program)
1970/01/01 00:09:07 fetching corpus: 3181, signal 172085/188608 (executing program)
1970/01/01 00:09:10 fetching corpus: 3230, signal 173158/189252 (executing program)
1970/01/01 00:09:11 fetching corpus: 3280, signal 173742/189687 (executing program)
1970/01/01 00:09:14 fetching corpus: 3329, signal 174264/190037 (executing program)
1970/01/01 00:09:19 fetching corpus: 3378, signal 174995/190489 (executing program)
1970/01/01 00:09:21 fetching corpus: 3428, signal 175809/190973 (executing program)
1970/01/01 00:09:23 fetching corpus: 3478, signal 176460/191392 (executing program)
1970/01/01 00:09:27 fetching corpus: 3528, signal 177386/191827 (executing program)
1970/01/01 00:09:29 fetching corpus: 3578, signal 178192/192261 (executing program)
1970/01/01 00:09:31 fetching corpus: 3627, signal 178910/192619 (executing program)
1970/01/01 00:09:33 fetching corpus: 3677, signal 179323/192925 (executing program)
1970/01/01 00:09:36 fetching corpus: 3727, signal 180085/193324 (executing program)
1970/01/01 00:09:38 fetching corpus: 3777, signal 180658/193645 (executing program)
1970/01/01 00:09:41 fetching corpus: 3827, signal 181339/193983 (executing program)
1970/01/01 00:09:43 fetching corpus: 3877, signal 181964/194261 (executing program)
1970/01/01 00:09:46 fetching corpus: 3927, signal 182746/194569 (executing program)
1970/01/01 00:09:49 fetching corpus: 3976, signal 183645/194903 (executing program)
1970/01/01 00:09:51 fetching corpus: 4026, signal 184200/195133 (executing program)
1970/01/01 00:09:54 fetching corpus: 4075, signal 184913/195385 (executing program)
1970/01/01 00:09:56 fetching corpus: 4125, signal 185587/195602 (executing program)
1970/01/01 00:09:58 fetching corpus: 4175, signal 186274/195824 (executing program)
1970/01/01 00:10:02 fetching corpus: 4225, signal 187072/196054 (executing program)
1970/01/01 00:10:05 fetching corpus: 4275, signal 187801/196286 (executing program)
1970/01/01 00:10:08 fetching corpus: 4325, signal 188458/196476 (executing program)
1970/01/01 00:10:11 fetching corpus: 4375, signal 189295/196646 (executing program)
1970/01/01 00:10:13 fetching corpus: 4425, signal 190251/196829 (executing program)
1970/01/01 00:10:17 fetching corpus: 4474, signal 191216/196986 (executing program)
1970/01/01 00:10:20 fetching corpus: 4524, signal 191800/197099 (executing program)
1970/01/01 00:10:23 fetching corpus: 4574, signal 192295/197191 (executing program)
1970/01/01 00:10:25 fetching corpus: 4624, signal 192971/197287 (executing program)
1970/01/01 00:10:26 fetching corpus: 4674, signal 193633/197367 (executing program)
1970/01/01 00:10:29 fetching corpus: 4723, signal 194216/197419 (executing program)
1970/01/01 00:10:32 fetching corpus: 4773, signal 194960/197472 (executing program)
1970/01/01 00:10:35 fetching corpus: 4816, signal 195513/197508 (executing program)
1970/01/01 00:10:35 fetching corpus: 4816, signal 195517/197545 (executing program)
1970/01/01 00:10:36 fetching corpus: 4816, signal 195517/197545 (executing program)
1970/01/01 00:12:24 starting 2 fuzzer processes
00:12:24 executing program 1:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000900), 0x82001, 0x0)
write$vga_arbiter(r0, &(0x7f0000000140)=@other={'unlock', ' ', 'mem'}, 0xb)

00:12:24 executing program 0:
r0 = syz_io_uring_setup(0x2, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0x5, 0x2, 0x0)

[  773.342877][ T2042] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  773.945372][ T2042] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  774.045519][ T2041] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  774.580208][ T2041] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  786.416683][ T2042] device hsr_slave_0 entered promiscuous mode
[  786.484333][ T2042] device hsr_slave_1 entered promiscuous mode
[  788.518960][ T2041] device hsr_slave_0 entered promiscuous mode
[  788.569698][ T2041] device hsr_slave_1 entered promiscuous mode
[  788.605528][ T2041] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  788.609914][ T2041] Cannot create hsr debugfs directory
[  790.731099][ T2042] Kernel panic - not syncing: corrupted stack end detected inside scheduler
[  790.734026][ T2042] CPU: 0 PID: 2042 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0
[  790.737894][ T2042] Hardware name: riscv-virtio,qemu (DT)
[  790.739277][ T2042] Call Trace:
[  790.740243][ T2042] [<ffffffff8000a228>] dump_backtrace+0x2e/0x3c
[  790.742388][ T2042] [<ffffffff831668cc>] show_stack+0x34/0x40
[  790.743635][ T2042] [<ffffffff831756ba>] dump_stack_lvl+0xe4/0x150
[  790.744992][ T2042] [<ffffffff83175742>] dump_stack+0x1c/0x24
[  790.746249][ T2042] [<ffffffff83166fa8>] panic+0x24a/0x634
[  790.747493][ T2042] [<ffffffff831a688a>] schedule+0x0/0x14c
[  790.748822][ T2042] [<ffffffff831a6c62>] preempt_schedule_notrace+0x9c/0x19a
[  790.750297][ T2042] [<ffffffff8010f014>] trace_lock_acquire+0xd6/0x1fc
[  790.752413][ T2042] [<ffffffff801167fe>] lock_acquire+0x28/0x6a
[  790.753735][ T2042] [<ffffffff8040f5da>] fs_reclaim_acquire+0xb4/0xda
[  790.755091][ T2042] [<ffffffff8046efb6>] __kmalloc_node_track_caller+0x5e/0x362
[  790.756542][ T2042] [<ffffffff826ed714>] __alloc_skb+0xee/0x2e4
[  790.757862][ T2042] [<ffffffff82d3e414>] inet6_netconf_notify_devconf+0xb6/0x1f2
[  790.759245][ T2042] [<ffffffff82d3e742>] __addrconf_sysctl_register+0x1f2/0x2c2
[  790.760670][ T2042] [<ffffffff82d3e918>] addrconf_sysctl_register+0x106/0x138
[  790.762952][ T2042] [<ffffffff82d3ef5a>] ipv6_add_dev+0x610/0xa7e
[  790.764227][ T2042] [<ffffffff82d4e186>] addrconf_notify+0x5e8/0x1360
[  790.765668][ T2042] [<ffffffff800aac84>] notifier_call_chain+0xb8/0x188
[  790.767056][ T2042] [<ffffffff800aad7e>] raw_notifier_call_chain+0x2a/0x38
[  790.768485][ T2042] [<ffffffff8271d086>] call_netdevice_notifiers_info+0x9e/0x10c
[  790.769815][ T2042] [<ffffffff82746492>] register_netdevice+0xae8/0xc6a
[  790.771496][ T2042] [<ffffffff817530ee>] ipvlan_link_new+0x21a/0x6a6
[  790.773540][ T2042] [<ffffffff8276a91a>] __rtnl_newlink+0xc16/0xfa0
[  790.774955][ T2042] [<ffffffff8276ad04>] rtnl_newlink+0x60/0x8c
[  790.776284][ T2042] [<ffffffff8276b46c>] rtnetlink_rcv_msg+0x338/0x9a0
[  790.777668][ T2042] [<ffffffff8296ded2>] netlink_rcv_skb+0xf8/0x2be
[  790.778939][ T2042] [<ffffffff827624f4>] rtnetlink_rcv+0x26/0x30
[  790.780154][ T2042] [<ffffffff8296cbcc>] netlink_unicast+0x40e/0x5fe
[  790.782008][ T2042] [<ffffffff8296d29c>] netlink_sendmsg+0x4e0/0x994
[  790.784281][ T2042] [<ffffffff826d264e>] sock_sendmsg+0xa0/0xc4
[  790.785710][ T2042] [<ffffffff826d7026>] __sys_sendto+0x1f2/0x2e0
[  790.786947][ T2042] [<ffffffff826d7152>] sys_sendto+0x3e/0x52
[  790.788188][ T2042] [<ffffffff80005716>] ret_from_syscall+0x0/0x2
[  790.789927][ T2042] SMP: stopping secondary CPUs
[  790.793787][ T2042] Rebooting in 86400 seconds..

VM DIAGNOSIS:
23:09:36  Registers:
info registers vcpu 0
 pc       ffffffff802009d2
 mhartid  0000000000000000
 mstatus  00000000000001a0
 mip      00000000000000a0
 mie      000000000000020a
 mideleg  0000000000000222
 medeleg  000000000000b109
 mtvec    0000000080000540
 stvec    ffffffff800055d4
 mepc     ffffffff8000f97e
 sepc     ffffffff831afd22
 mcause   8000000000000007
 scause   8000000000000005
 mtval  0000000000000000
 stval  0000000000000000
 x0/zero 0000000000000000 x1/ra ffffffff80201160 x2/sp ffffaf800743f6b0 x3/gp ffffffff85863ac0
 x4/tp ffffaf800e5f48c0 x5/t0 0000000000046000 x6/t1 ceb5916bb104f900 x7/t2 0000000000000032
 x8/s0 ffffaf800743f6e0 x9/s1 ffffaf800e5f48c0 x10/a0 0000000000000003 x11/a1 ffffaf800e5f48c0
 x12/a2 0000000000010002 x13/a3 ffffffff8016d730 x14/a4 ffffaf800e5f48c0 x15/a5 0000000000000000
 x16/a6 0000000000f00000 x17/a7 ffffffff8016f3a6 x18/s2 ffffffff8016d73c x19/s3 0000000000000001
 x20/s4 0000000000000000 x21/s5 ffffaf805a9e744c x22/s6 ffffaf805a9e7668 x23/s7 ffffaf805a9e75e8
 x24/s8 ffffaf805a9e7568 x25/s9 ffffaf805a9e7460 x26/s10 ffffaf805a9e7400 x27/s11 ffffaf805a9e7448
 x28/t3 fffffffff3f3f300 x29/t4 ffffffff80112282 x30/t5 1ffff5f000e87ea4 x31/t6 0000000000040000
 f0/ft0 0000000000000000 f1/ft1 40c6a57914718c5a f2/ft2 41773c5780000000 f3/ft3 43e0000000000000
 f4/ft4 3ffe000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000
 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000
 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000
 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000
 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000
 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000
 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000
info registers vcpu 1
 pc       ffffffff8010b250
 mhartid  0000000000000001
 mstatus  00000000000000a0
 mip      00000000000000a0
 mie      000000000000022a
 mideleg  0000000000000222
 medeleg  000000000000b109
 mtvec    0000000080000540
 stvec    ffffffff800055d4
 mepc     ffffffff80ac06c6
 sepc     ffffffff80200f48
 mcause   8000000000000007
 scause   8000000000000009
 mtval  0000000000000000
 stval  0000000000000000
 x0/zero 0000000000000000 x1/ra ffffffff831a197a x2/sp ffffaf8020d3a2a0 x3/gp ffffffff85863ac0
 x4/tp ffffaf800cf048c0 x5/t0 ffffffff86bcb657 x6/t1 ceb5916bb104f900 x7/t2 0000000000000000
 x8/s0 ffffaf8020d3a2b0 x9/s1 ffffaf800cf05330 x10/a0 0000000000000020 x11/a1 00000000000f0000
 x12/a2 0000000000000002 x13/a3 0000000000000000 x14/a4 0000000000000001 x15/a5 ffffaf805a9c8840
 x16/a6 0000000000f00000 x17/a7 ffffffff80dcc2ca x18/s2 0000000000000000 x19/s3 ffffffff84b73ec0
 x20/s4 ffffaf800cf058c0 x21/s5 ffffffff8343c840 x22/s6 ffffffffffffffff x23/s7 0000000000000020
 x24/s8 ffffffff86c1a620 x25/s9 0000000000000003 x26/s10 ffffffff858655c0 x27/s11 ffffffff850d8410
 x28/t3 fffffffff3f3f300 x29/t4 ffffffff80112282 x30/t5 1ffff5f0041a73f8 x31/t6 ffffffff86bcb657
 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000
 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000
 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000
 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000
 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000
 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000
 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000
 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000