syzkaller login: [  250.921863][ T1860] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  259.416513][ T1860] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  259.493445][ T1860] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  259.542069][ T1860] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  259.585511][ T1860] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
Warning: Permanently added '[localhost]:7757' (ECDSA) to the list of known hosts.
1970/01/01 00:05:18 fuzzer started
1970/01/01 00:05:30 dialing manager at localhost:45165
[  335.376463][ T2027] cgroup: Unknown subsys name 'net'
[  336.253026][ T2027] cgroup: Unknown subsys name 'rlimit'
1970/01/01 00:05:36 syscalls: 2918
1970/01/01 00:05:36 code coverage: enabled
1970/01/01 00:05:36 comparison tracing: enabled
1970/01/01 00:05:36 extra coverage: ioctl(KCOV_DISABLE) failed: invalid argument
1970/01/01 00:05:36 delay kcov mmap: mmap returned an invalid pointer
1970/01/01 00:05:36 setuid sandbox: enabled
1970/01/01 00:05:36 namespace sandbox: enabled
1970/01/01 00:05:36 Android sandbox: /sys/fs/selinux/policy does not exist
1970/01/01 00:05:36 fault injection: enabled
1970/01/01 00:05:36 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
1970/01/01 00:05:36 net packet injection: enabled
1970/01/01 00:05:36 net device setup: enabled
1970/01/01 00:05:36 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
1970/01/01 00:05:36 devlink PCI setup: PCI device 0000:00:10.0 is not available
1970/01/01 00:05:36 NIC VF setup: PCI device 0000:00:11.0 is not available
1970/01/01 00:05:36 USB emulation: enabled
1970/01/01 00:05:36 hci packet injection: /dev/vhci does not exist
1970/01/01 00:05:36 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist
1970/01/01 00:05:36 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist
1970/01/01 00:05:36 fetching corpus: 0, signal 0/2000 (executing program)
1970/01/01 00:05:43 fetching corpus: 50, signal 34364/37082 (executing program)
1970/01/01 00:05:47 fetching corpus: 100, signal 46484/49886 (executing program)
1970/01/01 00:05:51 fetching corpus: 150, signal 56698/60401 (executing program)
1970/01/01 00:05:53 fetching corpus: 200, signal 62301/66404 (executing program)
1970/01/01 00:05:58 fetching corpus: 250, signal 68270/72485 (executing program)
1970/01/01 00:06:01 fetching corpus: 300, signal 74037/78226 (executing program)
1970/01/01 00:06:03 fetching corpus: 350, signal 78377/82458 (executing program)
1970/01/01 00:06:06 fetching corpus: 400, signal 81286/85355 (executing program)
1970/01/01 00:06:09 fetching corpus: 449, signal 85344/89080 (executing program)
1970/01/01 00:06:12 fetching corpus: 498, signal 89628/92785 (executing program)
1970/01/01 00:06:15 fetching corpus: 548, signal 94602/96924 (executing program)
1970/01/01 00:06:18 fetching corpus: 598, signal 97097/98964 (executing program)
1970/01/01 00:06:21 fetching corpus: 648, signal 99971/101222 (executing program)
1970/01/01 00:06:23 fetching corpus: 679, signal 102059/102817 (executing program)
1970/01/01 00:06:23 fetching corpus: 679, signal 102059/102875 (executing program)
1970/01/01 00:06:23 fetching corpus: 679, signal 102059/102924 (executing program)
1970/01/01 00:06:23 fetching corpus: 679, signal 102059/102974 (executing program)
1970/01/01 00:06:23 fetching corpus: 679, signal 102059/103030 (executing program)
1970/01/01 00:06:24 fetching corpus: 679, signal 102059/103081 (executing program)
1970/01/01 00:06:24 fetching corpus: 679, signal 102059/103126 (executing program)
1970/01/01 00:06:24 fetching corpus: 679, signal 102059/103182 (executing program)
1970/01/01 00:06:24 fetching corpus: 679, signal 102059/103245 (executing program)
1970/01/01 00:06:24 fetching corpus: 679, signal 102059/103310 (executing program)
1970/01/01 00:06:24 fetching corpus: 679, signal 102059/103359 (executing program)
1970/01/01 00:06:24 fetching corpus: 679, signal 102059/103407 (executing program)
1970/01/01 00:06:25 fetching corpus: 679, signal 102059/103451 (executing program)
1970/01/01 00:06:25 fetching corpus: 679, signal 102059/103509 (executing program)
1970/01/01 00:06:25 fetching corpus: 679, signal 102059/103560 (executing program)
1970/01/01 00:06:25 fetching corpus: 679, signal 102059/103618 (executing program)
1970/01/01 00:06:25 fetching corpus: 679, signal 102059/103666 (executing program)
1970/01/01 00:06:25 fetching corpus: 679, signal 102059/103719 (executing program)
1970/01/01 00:06:26 fetching corpus: 679, signal 102059/103769 (executing program)
1970/01/01 00:06:26 fetching corpus: 679, signal 102059/103821 (executing program)
1970/01/01 00:06:26 fetching corpus: 679, signal 102059/103885 (executing program)
1970/01/01 00:06:26 fetching corpus: 680, signal 102633/104513 (executing program)
1970/01/01 00:06:26 fetching corpus: 680, signal 102633/104572 (executing program)
1970/01/01 00:06:26 fetching corpus: 680, signal 102633/104637 (executing program)
1970/01/01 00:06:26 fetching corpus: 680, signal 102633/104682 (executing program)
1970/01/01 00:06:27 fetching corpus: 680, signal 102633/104725 (executing program)
1970/01/01 00:06:27 fetching corpus: 680, signal 102633/104772 (executing program)
1970/01/01 00:06:27 fetching corpus: 680, signal 102633/104843 (executing program)
1970/01/01 00:06:27 fetching corpus: 680, signal 102633/104895 (executing program)
1970/01/01 00:06:27 fetching corpus: 680, signal 102633/104944 (executing program)
1970/01/01 00:06:27 fetching corpus: 680, signal 102633/104999 (executing program)
1970/01/01 00:06:28 fetching corpus: 680, signal 102633/105059 (executing program)
1970/01/01 00:06:28 fetching corpus: 680, signal 102633/105117 (executing program)
1970/01/01 00:06:28 fetching corpus: 680, signal 102633/105181 (executing program)
1970/01/01 00:06:28 fetching corpus: 680, signal 102633/105235 (executing program)
1970/01/01 00:06:28 fetching corpus: 680, signal 102633/105286 (executing program)
1970/01/01 00:06:28 fetching corpus: 680, signal 102633/105356 (executing program)
1970/01/01 00:06:28 fetching corpus: 680, signal 102633/105415 (executing program)
1970/01/01 00:06:28 fetching corpus: 680, signal 102633/105439 (executing program)
1970/01/01 00:06:29 fetching corpus: 680, signal 102633/105439 (executing program)
1970/01/01 00:08:16 starting 2 fuzzer processes
00:08:16 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mdstat\x00', 0x0, 0x0)
read$dsp(r0, &(0x7f00000000c0)=""/251, 0xfb)
read$dsp(r0, &(0x7f0000000780)=""/225, 0xe1)

00:08:16 executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x17, 0x4, &(0x7f0000000640)=@framed={{0x18, 0x2}, [@alu={0x4}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x80)

[  523.203313][ T2033] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  523.721843][ T2033] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  524.697642][ T2034] Kernel panic - not syncing: corrupted stack end detected inside scheduler
[  524.699345][ T2034] CPU: 0 PID: 2034 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0
[  524.702236][ T2034] Hardware name: riscv-virtio,qemu (DT)
[  524.703506][ T2034] Call Trace:
[  524.704699][ T2034] [<ffffffff8000a228>] dump_backtrace+0x2e/0x3c
[  524.705803][ T2034] [<ffffffff831668cc>] show_stack+0x34/0x40
[  524.706713][ T2034] [<ffffffff831756ba>] dump_stack_lvl+0xe4/0x150
[  524.707665][ T2034] [<ffffffff83175742>] dump_stack+0x1c/0x24
[  524.708608][ T2034] [<ffffffff83166fa8>] panic+0x24a/0x634
[  524.709465][ T2034] [<ffffffff831a688a>] schedule+0x0/0x14c
[  524.710415][ T2034] [<ffffffff831a6c62>] preempt_schedule_notrace+0x9c/0x19a
[  524.711391][ T2034] [<ffffffff8010f014>] trace_lock_acquire+0xd6/0x1fc
[  524.712387][ T2034] [<ffffffff801167fe>] lock_acquire+0x28/0x6a
[  524.713315][ T2034] [<ffffffff831ab57e>] down_write+0xa4/0x140
[  524.714755][ T2034] [<ffffffff8066a83c>] kernfs_activate+0x66/0x19e
[  524.716284][ T2034] [<ffffffff8066ac0c>] kernfs_add_one+0x298/0x30e
[  524.717229][ T2034] [<ffffffff8066e548>] __kernfs_create_file+0x19a/0x1e8
[  524.718199][ T2034] [<ffffffff806700ba>] sysfs_add_file_mode_ns+0x138/0x254
[  524.719170][ T2034] [<ffffffff806702d6>] sysfs_create_file_ns+0x100/0x15a
[  524.720141][ T2034] [<ffffffff8067039c>] sysfs_create_files+0x6c/0x136
[  524.721061][ T2034] [<ffffffff81742fe8>] bond_sysfs_slave_add+0x28/0x32
[  524.722028][ T2034] [<ffffffff81726eaa>] bond_enslave+0x1f58/0x3016
[  524.722947][ T2034] [<ffffffff82761d3a>] do_set_master+0x13c/0x168
[  524.724124][ T2034] [<ffffffff82767e62>] do_setlink+0x622/0x21c4
[  524.725779][ T2034] [<ffffffff8276a6a2>] __rtnl_newlink+0x99e/0xfa0
[  524.726751][ T2034] [<ffffffff8276ad04>] rtnl_newlink+0x60/0x8c
[  524.727671][ T2034] [<ffffffff8276b46c>] rtnetlink_rcv_msg+0x338/0x9a0
[  524.728638][ T2034] [<ffffffff8296ded2>] netlink_rcv_skb+0xf8/0x2be
[  524.729592][ T2034] [<ffffffff827624f4>] rtnetlink_rcv+0x26/0x30
[  524.730554][ T2034] [<ffffffff8296cbcc>] netlink_unicast+0x40e/0x5fe
[  524.731435][ T2034] [<ffffffff8296d29c>] netlink_sendmsg+0x4e0/0x994
[  524.732367][ T2034] [<ffffffff826d264e>] sock_sendmsg+0xa0/0xc4
[  524.733315][ T2034] [<ffffffff826d7026>] __sys_sendto+0x1f2/0x2e0
[  524.735052][ T2034] [<ffffffff826d7152>] sys_sendto+0x3e/0x52
[  524.736710][ T2034] [<ffffffff80005716>] ret_from_syscall+0x0/0x2
[  524.737915][ T2034] SMP: stopping secondary CPUs
[  524.740014][ T2034] Rebooting in 86400 seconds..

VM DIAGNOSIS:
16:25:39  Registers:
info registers vcpu 0
 pc       ffffffff8011dc44
 mhartid  0000000000000000
 mstatus  00000000000000a0
 mip      0000000000000200
 mie      00000000000002aa
 mideleg  0000000000000222
 medeleg  000000000000b109
 mtvec    0000000080000540
 stvec    ffffffff800055d4
 mepc     ffffffff8000f97e
 sepc     ffffffff8010b26a
 mcause   0000000000000009
 scause   8000000000000005
 mtval  0000000000000000
 stval  0000000000000000
 x0/zero 0000000000000000 x1/ra ffffffff8011dc38 x2/sp ffffaf800ed66220 x3/gp ffffffff85863ac0
 x4/tp ffffaf800baf9840 x5/t0 ffffffff86bcb657 x6/t1 fffff5ef01dacbdc x7/t2 0000000000000000
 x8/s0 ffffaf800ed66250 x9/s1 0000000000000020 x10/a0 ffffaf805a9c8850 x11/a1 0000000000000003
 x12/a2 1ffff5f00b53910a x13/a3 ffffffff8011dc38 x14/a4 0000000000000000 x15/a5 0000000000000001
 x16/a6 0000000000f00000 x17/a7 ffffaf800ed65ee7 x18/s2 ffffffff86c1a620 x19/s3 ffffffff86c1a620
 x20/s4 0000000000000020 x21/s5 ffffffff838d2e60 x22/s6 ffffffff80121ba4 x23/s7 0000000000000000
 x24/s8 0000000000000000 x25/s9 ffffaf800ed64000 x26/s10 ffffaf800f913228 x27/s11 ffffaf80210e8d98
 x28/t3 fffffffff3f3f300 x29/t4 fffff5ef01dacbdc x30/t5 fffff5ef01dacbdd x31/t6 ffffaf800ed65ef8
 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000
 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000
 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000
 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000
 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000
 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000
 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000
 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000
info registers vcpu 1
 pc       00007fffbb119f18
 mhartid  0000000000000001
 mstatus  00000000000040a2
 mip      0000000000000000
 mie      00000000000002aa
 mideleg  0000000000000222
 medeleg  000000000000b109
 mtvec    0000000080000540
 stvec    ffffffff800055d4
 mepc     ffffffff8000f97e
 sepc     00007fffbad97268
 mcause   0000000000000009
 scause   8000000000000005
 mtval  0000000000000000
 stval  0000000000000000
 x0/zero 0000000000000000 x1/ra 00007fffbafab254 x2/sp 00007fffc2c1d0c0 x3/gp 00007fffbb17ca68
 x4/tp 00007fffbad576c8 x5/t0 fffffffff909f110 x6/t1 ffffffffd8fb5c49 x7/t2 00000000305a1150
 x8/s0 00007fffbae0b4e8 x9/s1 00007fffcd9e86d0 x10/a0 00007fffcd9f9ea0 x11/a1 0000000000000000
 x12/a2 0000000000000001 x13/a3 00000000000002e4 x14/a4 00007fffbae0b8b8 x15/a5 00007fffbadf2268
 x16/a6 00007fffcd9e87d0 x17/a7 00007fffcd9e87d0 x18/s2 0000000000000000 x19/s3 0000000000000000
 x20/s4 0000000000000001 x21/s5 0000000000000000 x22/s6 00007fffc2c1d0c0 x23/s7 00007fffc2c1d080
 x24/s8 000000000000003f x25/s9 0000000015aaa464 x26/s10 00000000285c80b7 x27/s11 00c2114ccf53268c
 x28/t3 0001e30c2d05b8f6 x29/t4 0000000003ffffff x30/t5 00000000023cead2 x31/t6 000000002c388a84
 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000
 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000
 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000
 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000
 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000
 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000
 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000
 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000