syzkaller login: [ 199.804256][ T2799] warn_alloc: 4 callbacks suppressed [ 199.804569][ T2799] dhcpcd: vmalloc error: size 4096, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0 [ 199.836988][ T2799] CPU: 1 PID: 2799 Comm: dhcpcd Tainted: G W 6.2.0-rc1-syzkaller #0 [ 199.839230][ T2799] Hardware name: riscv-virtio,qemu (DT) [ 199.840239][ T2799] Call Trace: [ 199.841099][ T2799] [] dump_backtrace+0x2e/0x3c [ 199.842325][ T2799] [] show_stack+0x34/0x40 [ 199.843338][ T2799] [] dump_stack_lvl+0xe0/0x14c [ 199.844560][ T2799] [] dump_stack+0x1c/0x24 [ 199.845703][ T2799] [] warn_alloc+0x168/0x22c [ 199.846865][ T2799] [] __vmalloc_node_range+0xb70/0xdb8 [ 199.848205][ T2799] [] bpf_jit_alloc_exec+0x46/0x52 [ 199.849300][ T2799] [] bpf_jit_binary_alloc+0x96/0x13c [ 199.850373][ T2799] [] bpf_int_jit_compile+0x886/0xaa6 [ 199.851452][ T2799] [] bpf_prog_select_runtime+0x1a2/0x22e [ 199.852562][ T2799] [] bpf_migrate_filter+0x258/0x2be [ 199.853697][ T2799] [] bpf_prepare_filter+0x10e/0x1b4 [ 199.854837][ T2799] [] __get_filter+0x148/0x1a0 [ 199.855965][ T2799] [] sk_attach_filter+0x22/0x11a [ 199.857132][ T2799] [] sk_setsockopt+0x144e/0x270c [ 199.858762][ T2799] [] sock_setsockopt+0x48/0x58 [ 199.859914][ T2799] [] __sys_setsockopt+0x3f0/0x418 [ 199.860975][ T2799] [] sys_setsockopt+0x3a/0x4c [ 199.862002][ T2799] [] ret_from_syscall+0x0/0x2 [ 199.922472][ T2799] Mem-Info: [ 199.930068][ T2799] active_anon:33 inactive_anon:590 isolated_anon:0 [ 199.930068][ T2799] active_file:1644 inactive_file:24 isolated_file:0 [ 199.930068][ T2799] unevictable:768 dirty:19 writeback:0 [ 199.930068][ T2799] slab_reclaimable:4825 slab_unreclaimable:18264 [ 199.930068][ T2799] mapped:704 shmem:802 pagetables:113 [ 199.930068][ T2799] sec_pagetables:0 bounce:0 [ 199.930068][ T2799] kernel_misc_reclaimable:0 [ 199.930068][ T2799] free:284706 free_pcp:1115 free_cma:4096 [ 199.932936][ T2799] Node 0 active_anon:132kB inactive_anon:2360kB active_file:6576kB inactive_file:96kB unevictable:3072kB isolated(anon):0kB isolated(file):0kB mapped:2816kB dirty:76kB writeback:0kB shmem:3208kB writeback_tmp:0kB kernel_stack:4576kB pagetables:452kB sec_pagetables:0kB all_unreclaimable? no [ 199.935021][ T2799] Node 0 DMA32 free:1138824kB boost:0kB min:4652kB low:6004kB high:7356kB reserved_highatomic:0KB active_anon:132kB inactive_anon:2360kB active_file:6576kB inactive_file:96kB unevictable:3072kB writepending:76kB present:2095104kB managed:1357028kB mlocked:0kB bounce:0kB free_pcp:4460kB local_pcp:2100kB free_cma:16384kB [ 199.937560][ T2799] lowmem_reserve[]: 0 0 0 [ 199.958565][ T2799] Node 0 DMA32: 6*4kB (ME) 76*8kB (UME) 17*16kB (U) 16*32kB (UME) 6*64kB (UE) 5*128kB (UME) 1*256kB (M) 1*512kB (U) 1*1024kB (M) 4*2048kB (UMC) 275*4096kB (MC) = 1138824kB [ 200.018633][ T2799] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB ps_bpf_start_bpf: bpf_open: Unknown error 524 [ 200.030947][ T2799] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 200.032189][ T2799] 2470 total pagecache pages [ 200.033028][ T2799] 0 pages in swap cache [ 200.033805][ T2799] Free swap = 0kB [ 200.034582][ T2799] Total swap = 0kB [ 200.035385][ T2799] 523776 pages RAM [ 200.036195][ T2799] 0 pages HighMem/MovableOnly [ 200.036995][ T2799] 184519 pages reserved ps_root_recvmsg: Unknown error 524 [ 200.049446][ T2799] 4096 pages cma reserved ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 [ 211.610527][ T2667] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. ps_root_recvmsgcb: failed to send message to pid 2775: Connection refused ps_root_recvmsgcb: failed to send message to pid 2784: Connection refused [ 211.660288][ T2667] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 211.694032][ T2667] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. ps_root_recvmsgcb: failed to send message to pid 2799: Connection refused ps_root_recvmsgcb: failed to send message to pid 2800: Connection refused Warning: Permanently added '[localhost]:39137' (ECDSA) to the list of known hosts. [ 243.679908][ T2823] warn_alloc: 1 callbacks suppressed [ 243.680225][ T2823] dhcpcd: vmalloc error: size 4096, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0 [ 243.683420][ T2823] CPU: 1 PID: 2823 Comm: dhcpcd Tainted: G W 6.2.0-rc1-syzkaller #0 [ 243.684489][ T2823] Hardware name: riscv-virtio,qemu (DT) [ 243.685243][ T2823] Call Trace: [ 243.685924][ T2823] [] dump_backtrace+0x2e/0x3c [ 243.686975][ T2823] [] show_stack+0x34/0x40 [ 243.688000][ T2823] [] dump_stack_lvl+0xe0/0x14c [ 243.689212][ T2823] [] dump_stack+0x1c/0x24 [ 243.690258][ T2823] [] warn_alloc+0x168/0x22c [ 243.691346][ T2823] [] __vmalloc_node_range+0xb70/0xdb8 [ 243.692442][ T2823] [] bpf_jit_alloc_exec+0x46/0x52 [ 243.693502][ T2823] [] bpf_jit_binary_alloc+0x96/0x13c [ 243.694557][ T2823] [] bpf_int_jit_compile+0x886/0xaa6 [ 243.695671][ T2823] [] bpf_prog_select_runtime+0x1a2/0x22e [ 243.697344][ T2823] [] bpf_migrate_filter+0x258/0x2be [ 243.699190][ T2823] [] bpf_prepare_filter+0x10e/0x1b4 [ 243.700334][ T2823] [] __get_filter+0x148/0x1a0 [ 243.701393][ T2823] [] sk_attach_filter+0x22/0x11a [ 243.702510][ T2823] [] sk_setsockopt+0x144e/0x270c [ 243.703603][ T2823] [] sock_setsockopt+0x48/0x58 [ 243.704683][ T2823] [] __sys_setsockopt+0x3f0/0x418 [ 243.705724][ T2823] [] sys_setsockopt+0x3a/0x4c [ 243.706722][ T2823] [] ret_from_syscall+0x0/0x2 [ 243.720412][ T2823] Mem-Info: [ 243.721301][ T2823] active_anon:34 inactive_anon:712 isolated_anon:0 [ 243.721301][ T2823] active_file:5922 inactive_file:1371 isolated_file:0 [ 243.721301][ T2823] unevictable:768 dirty:371 writeback:0 [ 243.721301][ T2823] slab_reclaimable:5306 slab_unreclaimable:18381 [ 243.721301][ T2823] mapped:1055 shmem:804 pagetables:105 [ 243.721301][ T2823] sec_pagetables:0 bounce:0 [ 243.721301][ T2823] kernel_misc_reclaimable:0 [ 243.721301][ T2823] free:278279 free_pcp:1152 free_cma:4096 [ 243.723947][ T2823] Node 0 active_anon:136kB inactive_anon:2848kB active_file:23688kB inactive_file:5484kB unevictable:3072kB isolated(anon):0kB isolated(file):0kB mapped:4220kB dirty:1484kB writeback:0kB shmem:3216kB writeback_tmp:0kB kernel_stack:4568kB pagetables:420kB sec_pagetables:0kB all_unreclaimable? no [ 243.725916][ T2823] Node 0 DMA32 free:1113116kB boost:0kB min:4652kB low:6004kB high:7356kB reserved_highatomic:0KB active_anon:136kB inactive_anon:2848kB active_file:23688kB inactive_file:5484kB unevictable:3072kB writepending:1484kB present:2095104kB managed:1357028kB mlocked:0kB bounce:0kB free_pcp:4608kB local_pcp:2836kB free_cma:16384kB [ 243.749152][ T2823] lowmem_reserve[]: 0 0 0 [ 243.750989][ T2823] Node 0 DMA32: 43*4kB (UME) 2*8kB (UM) 60*16kB (U) 43*32kB (U) 9*64kB (UME) 2*128kB (UE) 1*256kB (U) 1*512kB (E) 1*1024kB (M) 3*2048kB (EC) 269*4096kB (MC) = 1113116kB [ 243.757632][ T2823] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 243.770267][ T2823] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 243.771317][ T2823] 8099 total pagecache pages [ 243.772100][ T2823] 0 pages in swap cache [ 243.772862][ T2823] Free swap = 0kB [ 243.773601][ T2823] Total swap = 0kB [ 243.774343][ T2823] 523776 pages RAM [ 243.775083][ T2823] 0 pages HighMem/MovableOnly [ 243.775847][ T2823] 184519 pages reserved [ 243.776617][ T2823] 4096 pages cma reserved ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 1970/01/01 00:04:09 fuzzer started runtime: lfstack.push invalid packing: node=0xffffff78a85980 cnt=0x1 packed=0xffff78a859800001 -> node=0xffff78a85980 fatal error: lfstack.push runtime stack: runtime.throw({0x6cfe64, 0xc}) /usr/local/go/src/runtime/panic.go:1198 +0x60 runtime.(*lfstack).push(0x14ab098, 0xffffff78a85980) /usr/local/go/src/runtime/lfstack.go:30 +0x1a8 runtime.(*spanSetBlockAlloc).free(...) /usr/local/go/src/runtime/mspanset.go:292 runtime.(*spanSet).reset(0x14a42e0) /usr/local/go/src/runtime/mspanset.go:265 +0xe4 runtime.finishsweep_m() /usr/local/go/src/runtime/mgcsweep.go:145 +0xb4 runtime.gcStart.func1() /usr/local/go/src/runtime/mgc.go:660 +0x24 runtime.systemstack() /usr/local/go/src/runtime/asm_riscv64.s:131 +0x58 goroutine 1 [running]: runtime.systemstack_switch() /usr/local/go/src/runtime/asm_riscv64.s:94 +0x8 fp=0xc0005bf5c0 sp=0xc0005bf5b8 pc=0x80368 runtime.gcStart({0x0, 0x0, 0x0}) /usr/local/go/src/runtime/mgc.go:659 +0x544 fp=0xc0005bf638 sp=0xc0005bf5c0 pc=0x2bcb4 runtime.mallocgc(0x6ff90, 0x64d960, 0x1) /usr/local/go/src/runtime/malloc.go:1174 +0x7d0 fp=0xc0005bf6b8 sp=0xc0005bf638 pc=0x1d070 runtime.newarray(0x64d960, 0x89d) /usr/local/go/src/runtime/malloc.go:1250 +0x94 fp=0xc0005bf6e0 sp=0xc0005bf6b8 pc=0x1d2dc runtime.makeBucketArray(0x5f1460, 0xb, 0x0) /usr/local/go/src/runtime/map.go:362 +0x204 fp=0xc0005bf710 sp=0xc0005bf6e0 pc=0x1e3ec runtime.hashGrow(0x5f1460, 0xc0004a1650) /usr/local/go/src/runtime/map.go:1036 +0xb4 fp=0xc0005bf758 sp=0xc0005bf710 pc=0x201ac runtime.mapassign_faststr(0x5f1460, 0xc0004a1650, {0x739d40, 0x1f}) /usr/local/go/src/runtime/map_faststr.go:275 +0xe4 fp=0xc0005bf7c0 sp=0xc0005bf758 pc=0x23a0c github.com/google/syzkaller/prog.(*Target).initTarget(0xc0002dddc0) /syzkaller/gopath/src/github.com/google/syzkaller/prog/target.go:159 +0x384 fp=0xc0005bf890 sp=0xc0005bf7c0 pc=0x180914 github.com/google/syzkaller/prog.(*Target).lazyInit(0xc0002dddc0) /syzkaller/gopath/src/github.com/google/syzkaller/prog/target.go:130 +0x80 fp=0xc0005bf908 sp=0xc0005bf890 pc=0x180298 github.com/google/syzkaller/prog.(*Target).lazyInit-fm() /syzkaller/gopath/src/github.com/google/syzkaller/prog/target.go:127 +0x34 fp=0xc0005bf918 sp=0xc0005bf908 pc=0x188cdc sync.(*Once).doSlow(0xc0002ddec8, 0xc0005bf9f8) /usr/local/go/src/sync/once.go:68 +0xcc fp=0xc0005bf960 sp=0xc0005bf918 pc=0x99814 sync.(*Once).Do(...) /usr/local/go/src/sync/once.go:59 github.com/google/syzkaller/prog.GetTarget({0x6b39e6, 0x5}, {0xffffffe614ae92, 0x7}) /syzkaller/gopath/src/github.com/google/syzkaller/prog/target.go:108 +0x17c fp=0xc0005bfa88 sp=0xc0005bf960 pc=0x17ff74 main.main() /syzkaller/gopath/src/github.com/google/syzkaller/syz-fuzzer/fuzzer.go:164 +0x3c0 fp=0xc0005bff88 sp=0xc0005bfa88 pc=0x559f28 runtime.main() /usr/local/go/src/runtime/proc.go:255 +0x268 fp=0xc0005bffd8 sp=0xc0005bff88 pc=0x4f770 runtime.goexit() /usr/local/go/src/runtime/asm_riscv64.s:507 +0x4 fp=0xc0005bffd8 sp=0xc0005bffd8 pc=0x82314 goroutine 6 [select]: go.opencensus.io/stats/view.(*worker).start(0xc0000d0e80) /syzkaller/gopath/src/github.com/google/syzkaller/vendor/go.opencensus.io/stats/view/worker.go:276 +0xb0 created by go.opencensus.io/stats/view.init.0 /syzkaller/gopath/src/github.com/google/syzkaller/vendor/go.opencensus.io/stats/view/worker.go:34 +0x80 VM DIAGNOSIS: 07:10:34 Registers: info registers vcpu 0 pc ffffffff8011d400 mhartid 0000000000000000 mstatus 00000000000001a0 mip 00000000000000a0 mie 000000000000020a mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff80005e88 mepc ffffffff804d777c sepc ffffffff804d777c mcause 8000000000000007 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff833d367a x2/sp ff200000052d5d70 x3/gp ffffffff85cd2e80 x4/tp ff60000010b10000 x5/t0 0000000000046000 x6/t1 00000000000f0000 x7/t2 0000000000000000 x8/s0 ff200000052d5d80 x9/s1 ff60000010b10a88 x10/a0 0000000000000120 x11/a1 00000000000f0000 x12/a2 ffffffff833d4a2a x13/a3 0000000000000000 x14/a4 0000000000000001 x15/a5 ff6000005a5c7848 x16/a6 0000000000000100 x17/a7 0000000000010103 x18/s2 0000000000000000 x19/s3 ffffffff84f7b540 x20/s4 ff60000010b11000 x21/s5 ffffffff83642848 x22/s6 ffffffffffffffff x23/s7 0000000000000120 x24/s8 ffffffff879dafe0 x25/s9 0000000000000004 x26/s10 ff6000005a5caa28 x27/s11 ff6000005a5ca6c0 x28/t3 fffffffff3f3f300 x29/t4 fffffffef0f58cb8 x30/t5 fffffffef0f58cb9 x31/t6 ff6000000efde418 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000 info registers vcpu 1 pc ffffffff8011d3dc mhartid 0000000000000001 mstatus 00000000000001a0 mip 00000000000000a0 mie 000000000000020a mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff80005e88 mepc ffffffff80006294 sepc ffffffff80006298 mcause 8000000000000007 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff833d35d8 x2/sp ff20000000337720 x3/gp ffffffff85cd2e80 x4/tp ff600000080e3100 x5/t0 0000000000046000 x6/t1 00000000000f0000 x7/t2 ffffffff804cc576 x8/s0 ff20000000337730 x9/s1 0000000000001000 x10/a0 0000000000000120 x11/a1 ffffffffffffffff x12/a2 1fec00000101c621 x13/a3 ffffffff8015fdb4 x14/a4 0000000000010003 x15/a5 0000000000000000 x16/a6 0000000000000000 x17/a7 0000000000010004 x18/s2 ff20000000337860 x19/s3 ffffffff84f7b540 x20/s4 ffffffff85cfa460 x21/s5 ffffffff83642848 x22/s6 ffffffffffffffff x23/s7 ffffffff879dafe8 x24/s8 ffffffff879dafe0 x25/s9 1fe4000000066efc x26/s10 ff6000005a5f5518 x27/s11 ffffffff84919e80 x28/t3 fffffffff3f3f300 x29/t4 ffebffff0b4beaa0 x30/t5 ffebffff0b4beaa1 x31/t6 0000000000000002 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 43e0000000000000 f3/ft3 43e0000000000000 f4/ft4 3ff799999999999a f5/ft5 403595c01a39fbd7 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000