[ 251.573794][ T1858] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 251.634432][ T1858] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 251.688562][ T1858] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:20153' (ECDSA) to the list of known hosts. 1970/01/01 00:05:17 fuzzer started 1970/01/01 00:05:27 dialing manager at localhost:45165 [ 333.202746][ T2025] cgroup: Unknown subsys name 'net' [ 334.212928][ T2025] cgroup: Unknown subsys name 'rlimit' 1970/01/01 00:05:34 syscalls: 2918 1970/01/01 00:05:34 code coverage: enabled 1970/01/01 00:05:34 comparison tracing: enabled 1970/01/01 00:05:34 extra coverage: ioctl(KCOV_DISABLE) failed: invalid argument 1970/01/01 00:05:34 delay kcov mmap: mmap returned an invalid pointer 1970/01/01 00:05:34 setuid sandbox: enabled 1970/01/01 00:05:34 namespace sandbox: enabled 1970/01/01 00:05:34 Android sandbox: /sys/fs/selinux/policy does not exist 1970/01/01 00:05:34 fault injection: enabled 1970/01/01 00:05:34 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 1970/01/01 00:05:34 net packet injection: enabled 1970/01/01 00:05:34 net device setup: enabled 1970/01/01 00:05:34 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 1970/01/01 00:05:34 devlink PCI setup: PCI device 0000:00:10.0 is not available 1970/01/01 00:05:34 NIC VF setup: PCI device 0000:00:11.0 is not available 1970/01/01 00:05:34 USB emulation: enabled 1970/01/01 00:05:34 hci packet injection: /dev/vhci does not exist 1970/01/01 00:05:34 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist 1970/01/01 00:05:34 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist 1970/01/01 00:05:34 fetching corpus: 0, signal 0/2000 (executing program) 1970/01/01 00:05:40 fetching corpus: 50, signal 31386/34378 (executing program) 1970/01/01 00:05:44 fetching corpus: 100, signal 46290/50123 (executing program) 1970/01/01 00:05:48 fetching corpus: 149, signal 53717/58324 (executing program) 1970/01/01 00:05:50 fetching corpus: 199, signal 60243/65489 (executing program) 1970/01/01 00:05:53 fetching corpus: 249, signal 68543/74047 (executing program) 1970/01/01 00:05:57 fetching corpus: 298, signal 75388/81141 (executing program) 1970/01/01 00:06:00 fetching corpus: 347, signal 80578/86469 (executing program) 1970/01/01 00:06:02 fetching corpus: 397, signal 84489/90622 (executing program) 1970/01/01 00:06:05 fetching corpus: 447, signal 88061/94266 (executing program) 1970/01/01 00:06:07 fetching corpus: 496, signal 90116/96570 (executing program) 1970/01/01 00:06:10 fetching corpus: 545, signal 94230/100500 (executing program) 1970/01/01 00:06:13 fetching corpus: 595, signal 96761/103001 (executing program) 1970/01/01 00:06:15 fetching corpus: 643, signal 100013/105975 (executing program) 1970/01/01 00:06:19 fetching corpus: 693, signal 101877/107814 (executing program) 1970/01/01 00:06:22 fetching corpus: 742, signal 104517/110192 (executing program) 1970/01/01 00:06:27 fetching corpus: 791, signal 106767/112196 (executing program) 1970/01/01 00:06:30 fetching corpus: 840, signal 109400/114364 (executing program) 1970/01/01 00:06:32 fetching corpus: 889, signal 111302/116013 (executing program) 1970/01/01 00:06:37 fetching corpus: 939, signal 114967/118702 (executing program) 1970/01/01 00:06:40 fetching corpus: 989, signal 116578/119956 (executing program) 1970/01/01 00:06:43 fetching corpus: 1038, signal 118273/121251 (executing program) 1970/01/01 00:06:45 fetching corpus: 1088, signal 119958/122431 (executing program) 1970/01/01 00:06:48 fetching corpus: 1136, signal 122145/123907 (executing program) 1970/01/01 00:06:50 fetching corpus: 1186, signal 123883/125022 (executing program) 1970/01/01 00:06:51 fetching corpus: 1222, signal 124768/125587 (executing program) 1970/01/01 00:06:51 fetching corpus: 1223, signal 124810/125656 (executing program) 1970/01/01 00:06:52 fetching corpus: 1223, signal 124810/125693 (executing program) 1970/01/01 00:06:52 fetching corpus: 1223, signal 124810/125731 (executing program) 1970/01/01 00:06:52 fetching corpus: 1223, signal 124810/125773 (executing program) 1970/01/01 00:06:53 fetching corpus: 1224, signal 124821/125808 (executing program) 1970/01/01 00:06:53 fetching corpus: 1224, signal 124821/125835 (executing program) 1970/01/01 00:06:53 fetching corpus: 1224, signal 124821/125864 (executing program) 1970/01/01 00:06:53 fetching corpus: 1224, signal 124821/125898 (executing program) 1970/01/01 00:06:53 fetching corpus: 1224, signal 124821/125937 (executing program) 1970/01/01 00:06:54 fetching corpus: 1224, signal 124821/125984 (executing program) 1970/01/01 00:06:54 fetching corpus: 1224, signal 124821/126015 (executing program) 1970/01/01 00:06:54 fetching corpus: 1224, signal 124821/126049 (executing program) 1970/01/01 00:06:54 fetching corpus: 1224, signal 124821/126085 (executing program) 1970/01/01 00:06:54 fetching corpus: 1224, signal 124821/126128 (executing program) 1970/01/01 00:06:54 fetching corpus: 1224, signal 124821/126170 (executing program) 1970/01/01 00:06:54 fetching corpus: 1224, signal 124821/126217 (executing program) 1970/01/01 00:06:55 fetching corpus: 1224, signal 124821/126248 (executing program) 1970/01/01 00:06:55 fetching corpus: 1224, signal 124821/126288 (executing program) 1970/01/01 00:06:55 fetching corpus: 1224, signal 124821/126317 (executing program) 1970/01/01 00:06:55 fetching corpus: 1224, signal 124821/126358 (executing program) 1970/01/01 00:06:55 fetching corpus: 1224, signal 124821/126399 (executing program) 1970/01/01 00:06:55 fetching corpus: 1224, signal 124821/126437 (executing program) 1970/01/01 00:06:55 fetching corpus: 1224, signal 124821/126472 (executing program) 1970/01/01 00:06:55 fetching corpus: 1224, signal 124821/126496 (executing program) 1970/01/01 00:06:56 fetching corpus: 1224, signal 124821/126531 (executing program) 1970/01/01 00:06:56 fetching corpus: 1224, signal 124821/126563 (executing program) 1970/01/01 00:06:56 fetching corpus: 1224, signal 124821/126600 (executing program) 1970/01/01 00:06:56 fetching corpus: 1225, signal 124837/126639 (executing program) 1970/01/01 00:06:56 fetching corpus: 1226, signal 124848/126672 (executing program) 1970/01/01 00:06:57 fetching corpus: 1226, signal 124848/126710 (executing program) 1970/01/01 00:06:57 fetching corpus: 1226, signal 124848/126747 (executing program) 1970/01/01 00:06:57 fetching corpus: 1226, signal 124848/126778 (executing program) 1970/01/01 00:06:57 fetching corpus: 1226, signal 124848/126811 (executing program) 1970/01/01 00:06:57 fetching corpus: 1226, signal 124848/126847 (executing program) 1970/01/01 00:06:57 fetching corpus: 1226, signal 124848/126881 (executing program) 1970/01/01 00:06:57 fetching corpus: 1226, signal 124848/126911 (executing program) 1970/01/01 00:06:57 fetching corpus: 1226, signal 124848/126938 (executing program) 1970/01/01 00:06:58 fetching corpus: 1226, signal 124848/126952 (executing program) 1970/01/01 00:06:58 fetching corpus: 1226, signal 124848/126952 (executing program) 1970/01/01 00:08:43 starting 2 fuzzer processes 00:08:43 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = fcntl$dupfd(r0, 0x0, r0) r2 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f00000000c0)={'vxcan1\x00', 0x0}) sendmmsg$inet6(r1, &(0x7f0000001380)=[{{&(0x7f0000000000)={0xa, 0x3, 0x0, @dev, 0x9}, 0x1c, 0x0, 0x0, &(0x7f0000000200)=[@pktinfo={{0x24, 0x29, 0x32, {@local, r3}}}], 0x28}}], 0x1, 0x0) 00:08:43 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}) read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1}, 0x50) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) syz_fuse_handle_req(r0, &(0x7f00000042c0), 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20, 0x0, 0x0, {0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getdents64(r2, &(0x7f0000006380)=""/1024, 0x400) syz_fuse_handle_req(r0, &(0x7f0000006780), 0x2000, &(0x7f0000008780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000008800)={0x30, 0x0, 0x0, [{0x0, 0x0, 0x4, 0x0, '#,,-'}]}, 0x0, 0x0, 0x0}) [ 551.837762][ T2037] Kernel panic - not syncing: corrupted stack end detected inside scheduler [ 551.841471][ T2037] CPU: 0 PID: 2037 Comm: syz-executor.0 Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 551.843189][ T2037] Hardware name: riscv-virtio,qemu (DT) [ 551.844424][ T2037] Call Trace: [ 551.846347][ T2037] [] dump_backtrace+0x2e/0x3c [ 551.848461][ T2037] [] show_stack+0x34/0x40 [ 551.849640][ T2037] [] dump_stack_lvl+0xe4/0x150 [ 551.850967][ T2037] [] dump_stack+0x1c/0x24 [ 551.852203][ T2037] [] panic+0x24a/0x634 [ 551.853296][ T2037] [] schedule+0x0/0x14c [ 551.854505][ T2037] [] preempt_schedule_common+0x4e/0xde [ 551.856772][ T2037] [] preempt_schedule+0x34/0x36 [ 551.858111][ T2037] [] __kernfs_new_node+0x5e8/0x5f2 [ 551.859424][ T2037] [] kernfs_new_node+0x66/0xbe [ 551.860585][ T2037] [] __kernfs_create_file+0x4e/0x1e8 [ 551.861773][ T2037] [] sysfs_add_file_mode_ns+0x138/0x254 [ 551.864081][ T2037] [] internal_create_group+0x274/0x722 [ 551.865658][ T2037] [] internal_create_groups.part.0+0x64/0xe8 [ 551.867622][ T2037] [] sysfs_create_groups+0x2c/0x48 [ 551.868862][ T2037] [] device_add+0xee4/0x129e [ 551.870132][ T2037] [] netdev_register_kobject+0xcc/0x208 [ 551.871463][ T2037] [] register_netdevice+0x8ee/0xc6a [ 551.872770][ T2037] [] veth_newlink+0x454/0x7dc [ 551.874052][ T2037] [] __rtnl_newlink+0xc16/0xfa0 [ 551.875544][ T2037] [] rtnl_newlink+0x60/0x8c [ 551.877182][ T2037] [] rtnetlink_rcv_msg+0x338/0x9a0 [ 551.878464][ T2037] [] netlink_rcv_skb+0xf8/0x2be [ 551.879727][ T2037] [] rtnetlink_rcv+0x26/0x30 [ 551.880913][ T2037] [] netlink_unicast+0x40e/0x5fe [ 551.882152][ T2037] [] netlink_sendmsg+0x4e0/0x994 [ 551.883360][ T2037] [] sock_sendmsg+0xa0/0xc4 [ 551.884611][ T2037] [] __sys_sendto+0x1f2/0x2e0 [ 551.886392][ T2037] [] sys_sendto+0x3e/0x52 [ 551.887691][ T2037] [] ret_from_syscall+0x0/0x2 [ 551.889249][ T2037] SMP: stopping secondary CPUs [ 551.892365][ T2037] Rebooting in 86400 seconds.. VM DIAGNOSIS: 17:31:46 Registers: info registers vcpu 0 pc ffffffff80200f00 mhartid 0000000000000000 mstatus 00000000000000a0 mip 0000000000000000 mie 00000000000002aa mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff8000f97e sepc ffffffff800bdb3e mcause 0000000000000009 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff8012102c x2/sp ffffaf800cc52080 x3/gp ffffffff85863ac0 x4/tp ffffaf800b273080 x5/t0 ffffffff86bd8e78 x6/t1 fffff5ef0198a410 x7/t2 0000000000000000 x8/s0 ffffaf800cc52300 x9/s1 ffffffff8343c87c x10/a0 0000000000000000 x11/a1 00000000000f0000 x12/a2 1ffff5f00164e611 x13/a3 ffffffff8010ef76 x14/a4 0000000000000000 x15/a5 0000000000000000 x16/a6 0000000000f00000 x17/a7 ffffaf800cc52087 x18/s2 ffffffff86c1a620 x19/s3 0000000000000000 x20/s4 0000000000000000 x21/s5 ffffffff831a2658 x22/s6 ffffffffffffffff x23/s7 0000000000000020 x24/s8 0000000000000000 x25/s9 ffffffff85889780 x26/s10 1ffff5f00198a420 x27/s11 0000000000000000 x28/t3 fffffffff3f3f300 x29/t4 ffffffff80112282 x30/t5 1ffff5f00198a3fc x31/t6 ffffffff86bd8e86 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000 info registers vcpu 1 pc ffffffff8010b22c mhartid 0000000000000001 mstatus 00000000000001a0 mip 00000000000000a0 mie 000000000000022a mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff80475986 sepc ffffffff80475986 mcause 8000000000000007 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff831a18d8 x2/sp ffffaf800cd02a30 x3/gp ffffffff85863ac0 x4/tp ffffaf800e578000 x5/t0 0000000000046000 x6/t1 19b005583838c600 x7/t2 5896df57f99d6495 x8/s0 ffffaf800cd02a40 x9/s1 0000000000001000 x10/a0 0000000000000120 x11/a1 ffffffffffffffff x12/a2 1ffff5f001caf001 x13/a3 ffffffff80146d84 x14/a4 0000000000010402 x15/a5 0000000000000000 x16/a6 0000000000f00000 x17/a7 ffffffff80133e3c x18/s2 ffffaf800722b820 x19/s3 ffffffff84b73e00 x20/s4 0000000000000000 x21/s5 ffffffff8343c840 x22/s6 ffffffffffffffff x23/s7 0000000000000000 x24/s8 ffffffff86c1a620 x25/s9 ffffaf800c88fad0 x26/s10 0000000000000000 x27/s11 00000000000000ca x28/t3 fffffffff3f3f300 x29/t4 ffffffff80112282 x30/t5 1ffff5f0019a0504 x31/t6 ffffaf800c88f0c0 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000