syzkaller login: [ 284.348101][ T1858] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 284.385517][ T1858] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 325.257449][ T1858] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:59950' (ECDSA) to the list of known hosts. 1970/01/01 00:05:50 fuzzer started 1970/01/01 00:06:04 dialing manager at localhost:46069 [ 374.497696][ T2043] cgroup: Unknown subsys name 'net' [ 375.680778][ T2043] cgroup: Unknown subsys name 'rlimit' 1970/01/01 00:06:15 syscalls: 2870 1970/01/01 00:06:15 code coverage: enabled 1970/01/01 00:06:15 comparison tracing: enabled 1970/01/01 00:06:15 extra coverage: enabled 1970/01/01 00:06:15 delay kcov mmap: mmap returned an invalid pointer 1970/01/01 00:06:15 setuid sandbox: enabled 1970/01/01 00:06:15 namespace sandbox: enabled 1970/01/01 00:06:15 Android sandbox: /sys/fs/selinux/policy does not exist 1970/01/01 00:06:15 fault injection: enabled 1970/01/01 00:06:15 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 1970/01/01 00:06:15 net packet injection: enabled 1970/01/01 00:06:15 net device setup: enabled 1970/01/01 00:06:15 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 1970/01/01 00:06:15 devlink PCI setup: PCI device 0000:00:10.0 is not available 1970/01/01 00:06:15 USB emulation: enabled 1970/01/01 00:06:15 hci packet injection: /dev/vhci does not exist 1970/01/01 00:06:15 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist 1970/01/01 00:06:15 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist 1970/01/01 00:06:15 fetching corpus: 0, signal 0/2000 (executing program) 1970/01/01 00:06:19 fetching corpus: 50, signal 21512/25186 (executing program) 1970/01/01 00:06:23 fetching corpus: 100, signal 41342/46315 (executing program) 1970/01/01 00:06:27 fetching corpus: 149, signal 49874/56215 (executing program) 1970/01/01 00:06:33 fetching corpus: 199, signal 59837/67361 (executing program) 1970/01/01 00:06:36 fetching corpus: 249, signal 66692/75351 (executing program) 1970/01/01 00:06:39 fetching corpus: 299, signal 71900/81707 (executing program) 1970/01/01 00:06:41 fetching corpus: 349, signal 76112/87007 (executing program) 1970/01/01 00:06:44 fetching corpus: 399, signal 80870/92824 (executing program) 1970/01/01 00:06:47 fetching corpus: 449, signal 84688/97631 (executing program) 1970/01/01 00:06:49 fetching corpus: 499, signal 89244/103098 (executing program) 1970/01/01 00:06:53 fetching corpus: 549, signal 91929/106766 (executing program) 1970/01/01 00:06:56 fetching corpus: 599, signal 94757/110499 (executing program) 1970/01/01 00:06:59 fetching corpus: 649, signal 97632/114183 (executing program) 1970/01/01 00:07:02 fetching corpus: 698, signal 99782/117278 (executing program) 1970/01/01 00:07:05 fetching corpus: 748, signal 101775/120117 (executing program) 1970/01/01 00:07:07 fetching corpus: 798, signal 104366/123507 (executing program) 1970/01/01 00:07:11 fetching corpus: 848, signal 107000/126854 (executing program) 1970/01/01 00:07:14 fetching corpus: 897, signal 108375/129154 (executing program) 1970/01/01 00:07:16 fetching corpus: 947, signal 110286/131856 (executing program) 1970/01/01 00:07:22 fetching corpus: 997, signal 112343/134586 (executing program) 1970/01/01 00:07:25 fetching corpus: 1047, signal 114066/137103 (executing program) 1970/01/01 00:07:29 fetching corpus: 1097, signal 116276/139939 (executing program) 1970/01/01 00:07:32 fetching corpus: 1147, signal 118142/142438 (executing program) 1970/01/01 00:07:35 fetching corpus: 1197, signal 119937/144877 (executing program) 1970/01/01 00:07:37 fetching corpus: 1247, signal 121004/146687 (executing program) 1970/01/01 00:07:40 fetching corpus: 1297, signal 122357/148688 (executing program) 1970/01/01 00:07:43 fetching corpus: 1347, signal 123738/150710 (executing program) 1970/01/01 00:07:45 fetching corpus: 1397, signal 125738/153182 (executing program) 1970/01/01 00:07:47 fetching corpus: 1447, signal 127119/155186 (executing program) 1970/01/01 00:07:51 fetching corpus: 1497, signal 128285/156955 (executing program) 1970/01/01 00:07:54 fetching corpus: 1546, signal 130480/159532 (executing program) 1970/01/01 00:07:57 fetching corpus: 1596, signal 131748/161327 (executing program) 1970/01/01 00:08:01 fetching corpus: 1646, signal 133845/163753 (executing program) 1970/01/01 00:08:05 fetching corpus: 1696, signal 135280/165663 (executing program) 1970/01/01 00:08:07 fetching corpus: 1746, signal 135973/167028 (executing program) 1970/01/01 00:08:10 fetching corpus: 1796, signal 137118/168660 (executing program) 1970/01/01 00:08:13 fetching corpus: 1846, signal 138524/170451 (executing program) 1970/01/01 00:08:14 fetching corpus: 1896, signal 139755/172107 (executing program) 1970/01/01 00:08:16 fetching corpus: 1945, signal 140469/173439 (executing program) 1970/01/01 00:08:20 fetching corpus: 1995, signal 141895/175208 (executing program) 1970/01/01 00:08:22 fetching corpus: 2045, signal 143032/176755 (executing program) 1970/01/01 00:08:25 fetching corpus: 2095, signal 145820/179351 (executing program) 1970/01/01 00:08:27 fetching corpus: 2145, signal 146499/180586 (executing program) 1970/01/01 00:08:30 fetching corpus: 2195, signal 147592/182046 (executing program) 1970/01/01 00:08:32 fetching corpus: 2244, signal 148839/183557 (executing program) 1970/01/01 00:08:35 fetching corpus: 2294, signal 150029/185018 (executing program) 1970/01/01 00:08:37 fetching corpus: 2344, signal 150858/186243 (executing program) 1970/01/01 00:08:39 fetching corpus: 2394, signal 151866/187598 (executing program) 1970/01/01 00:08:42 fetching corpus: 2443, signal 152888/188942 (executing program) 1970/01/01 00:08:45 fetching corpus: 2493, signal 153914/190211 (executing program) 1970/01/01 00:08:48 fetching corpus: 2543, signal 154830/191486 (executing program) 1970/01/01 00:08:50 fetching corpus: 2593, signal 155846/192767 (executing program) 1970/01/01 00:08:52 fetching corpus: 2643, signal 156758/193988 (executing program) 1970/01/01 00:08:54 fetching corpus: 2693, signal 157659/195170 (executing program) 1970/01/01 00:08:57 fetching corpus: 2742, signal 158493/196329 (executing program) 1970/01/01 00:08:59 fetching corpus: 2792, signal 159445/197493 (executing program) 1970/01/01 00:09:01 fetching corpus: 2842, signal 160072/198438 (executing program) 1970/01/01 00:09:05 fetching corpus: 2892, signal 160953/199576 (executing program) 1970/01/01 00:09:08 fetching corpus: 2942, signal 161730/200649 (executing program) 1970/01/01 00:09:10 fetching corpus: 2991, signal 162648/201718 (executing program) 1970/01/01 00:09:12 fetching corpus: 3041, signal 163780/202886 (executing program) 1970/01/01 00:09:15 fetching corpus: 3091, signal 164789/203997 (executing program) 1970/01/01 00:09:17 fetching corpus: 3141, signal 165676/205022 (executing program) 1970/01/01 00:09:20 fetching corpus: 3190, signal 166373/205985 (executing program) 1970/01/01 00:09:21 fetching corpus: 3239, signal 167159/206962 (executing program) 1970/01/01 00:09:24 fetching corpus: 3289, signal 168005/207916 (executing program) 1970/01/01 00:09:26 fetching corpus: 3339, signal 168856/208868 (executing program) 1970/01/01 00:09:28 fetching corpus: 3389, signal 169433/209718 (executing program) 1970/01/01 00:09:32 fetching corpus: 3439, signal 170394/210703 (executing program) 1970/01/01 00:09:34 fetching corpus: 3487, signal 171198/211579 (executing program) 1970/01/01 00:09:35 fetching corpus: 3537, signal 171892/212419 (executing program) 1970/01/01 00:09:41 fetching corpus: 3587, signal 172880/213344 (executing program) 1970/01/01 00:09:44 fetching corpus: 3637, signal 173703/214199 (executing program) 1970/01/01 00:09:47 fetching corpus: 3687, signal 174141/214891 (executing program) 1970/01/01 00:09:50 fetching corpus: 3737, signal 174907/215706 (executing program) 1970/01/01 00:09:52 fetching corpus: 3787, signal 175788/216547 (executing program) 1970/01/01 00:09:55 fetching corpus: 3837, signal 176941/217465 (executing program) 1970/01/01 00:09:57 fetching corpus: 3887, signal 177517/218189 (executing program) 1970/01/01 00:09:59 fetching corpus: 3936, signal 178504/219045 (executing program) 1970/01/01 00:10:02 fetching corpus: 3986, signal 179018/219744 (executing program) 1970/01/01 00:10:05 fetching corpus: 4036, signal 180743/220815 (executing program) 1970/01/01 00:10:07 fetching corpus: 4086, signal 181487/221509 (executing program) 1970/01/01 00:10:10 fetching corpus: 4136, signal 181999/222155 (executing program) 1970/01/01 00:10:13 fetching corpus: 4184, signal 182732/222870 (executing program) 1970/01/01 00:10:16 fetching corpus: 4234, signal 183375/223506 (executing program) 1970/01/01 00:10:17 fetching corpus: 4284, signal 184036/224125 (executing program) 1970/01/01 00:10:19 fetching corpus: 4334, signal 184498/224724 (executing program) 1970/01/01 00:10:21 fetching corpus: 4384, signal 185183/225365 (executing program) 1970/01/01 00:10:25 fetching corpus: 4434, signal 185654/225936 (executing program) 1970/01/01 00:10:28 fetching corpus: 4484, signal 186515/226604 (executing program) 1970/01/01 00:10:31 fetching corpus: 4534, signal 187308/227257 (executing program) 1970/01/01 00:10:34 fetching corpus: 4584, signal 188160/227866 (executing program) 1970/01/01 00:10:36 fetching corpus: 4634, signal 188617/228374 (executing program) 1970/01/01 00:10:40 fetching corpus: 4684, signal 189278/228928 (executing program) 1970/01/01 00:10:42 fetching corpus: 4734, signal 190403/229621 (executing program) 1970/01/01 00:10:44 fetching corpus: 4784, signal 190829/230119 (executing program) 1970/01/01 00:10:46 fetching corpus: 4834, signal 191518/230623 (executing program) 1970/01/01 00:10:48 fetching corpus: 4884, signal 192098/231122 (executing program) 1970/01/01 00:10:51 fetching corpus: 4934, signal 192624/231600 (executing program) 1970/01/01 00:10:54 fetching corpus: 4984, signal 193176/232077 (executing program) 1970/01/01 00:10:56 fetching corpus: 5034, signal 195080/232753 (executing program) 1970/01/01 00:10:59 fetching corpus: 5084, signal 195676/233208 (executing program) 1970/01/01 00:11:03 fetching corpus: 5134, signal 196700/233685 (executing program) 1970/01/01 00:11:06 fetching corpus: 5183, signal 197285/234101 (executing program) 1970/01/01 00:11:08 fetching corpus: 5233, signal 197946/234520 (executing program) 1970/01/01 00:11:10 fetching corpus: 5283, signal 198507/234957 (executing program) 1970/01/01 00:11:12 fetching corpus: 5333, signal 198987/235328 (executing program) 1970/01/01 00:11:14 fetching corpus: 5383, signal 199538/235681 (executing program) 1970/01/01 00:11:17 fetching corpus: 5433, signal 200333/236031 (executing program) 1970/01/01 00:11:20 fetching corpus: 5483, signal 201033/236403 (executing program) 1970/01/01 00:11:22 fetching corpus: 5532, signal 201534/236726 (executing program) 1970/01/01 00:11:25 fetching corpus: 5582, signal 202106/237020 (executing program) 1970/01/01 00:11:27 fetching corpus: 5632, signal 202575/237346 (executing program) 1970/01/01 00:11:29 fetching corpus: 5682, signal 203264/237677 (executing program) 1970/01/01 00:11:32 fetching corpus: 5732, signal 203829/237989 (executing program) [ 693.664825][ T2033] Kernel panic - not syncing: stack-protector: Kernel stack is corrupted in: ksys_write+0x224/0x224 [ 693.667520][ T2033] CPU: 1 PID: 2033 Comm: sshd Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 693.673145][ T2033] Hardware name: riscv-virtio,qemu (DT) [ 693.674691][ T2033] Call Trace: [ 693.675779][ T2033] [] dump_backtrace+0x2e/0x3c [ 693.677359][ T2033] [] show_stack+0x34/0x40 [ 693.678704][ T2033] [] dump_stack_lvl+0xe4/0x150 [ 693.680884][ T2033] [] dump_stack+0x1c/0x24 [ 693.682459][ T2033] [] panic+0x24a/0x634 [ 693.683711][ T2033] [] warn_bogus_irq_restore+0x0/0x34 [ 693.685232][ T2033] [] sys_write+0x0/0x36 [ 693.687163][ T2033] SMP: stopping secondary CPUs [ 693.690519][ T2033] Rebooting in 86400 seconds.. VM DIAGNOSIS: 12:00:53 Registers: info registers vcpu 0 pc ffffffff8010b250 mhartid 0000000000000000 mstatus 00000000000001a0 mip 00000000000000a0 mie 000000000000022a mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff826f956c sepc ffffffff826f956c mcause 8000000000000007 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff831a197a x2/sp ffffaf800e7921e0 x3/gp ffffffff85863ac0 x4/tp ffffaf800a0ec8c0 x5/t0 0000000000046000 x6/t1 45f43c3a20761700 x7/t2 0000000000000032 x8/s0 ffffaf800e7921f0 x9/s1 ffffaf800a0ed330 x10/a0 0000000000000120 x11/a1 00000000000f0000 x12/a2 0000000000010102 x13/a3 0000000000000000 x14/a4 0000000000000001 x15/a5 ffffaf805a9c8840 x16/a6 0000000000f00000 x17/a7 ffffffff80133e3c x18/s2 0000000000000000 x19/s3 ffffffff84b73ec0 x20/s4 ffffaf800a0ed8c0 x21/s5 ffffffff8343c840 x22/s6 ffffffffffffffff x23/s7 0000000000000120 x24/s8 ffffffff86c1a620 x25/s9 0000000000000003 x26/s10 ffffaf80108ea488 x27/s11 ffffaf80108ea484 x28/t3 fffffffff3f3f300 x29/t4 ffffffff80112282 x30/t5 1ffff5f001cf2408 x31/t6 ffffaf80108ea3f4 f0/ft0 0000000000000000 f1/ft1 408201c853a2fb55 f2/ft2 4134b0d000000000 f3/ft3 403a000000000000 f4/ft4 412a60e800000000 f5/ft5 4037359ebc5b69d9 f6/ft6 3fe06dcd70c90f22 f7/ft7 3fa3a9a3d95dbef0 f8/fs0 3feb81603c0e1675 f9/fs1 3f726afab61f8f80 f10/fa0 3fa1af0c93628a60 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000 info registers vcpu 1 pc ffffffff8011edb6 mhartid 0000000000000001 mstatus 00000000000000a0 mip 00000000000000a0 mie 000000000000022a mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff80112568 sepc ffffffff802010c8 mcause 8000000000000007 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff8011eda6 x2/sp ffffaf800e78f880 x3/gp ffffffff85863ac0 x4/tp ffffaf800f070000 x5/t0 ffffffff86bcb657 x6/t1 fffffffef0d796ca x7/t2 0000000000000000 x8/s0 ffffaf800e78fa60 x9/s1 0000000000000000 x10/a0 000000000000006b x11/a1 00000000000f0000 x12/a2 0000000000000002 x13/a3 ffffffff8011c8a6 x14/a4 45f43c3a20761700 x15/a5 0000000000000020 x16/a6 ffffffff86bcb6ab x17/a7 ffffffff86bcb656 x18/s2 000000000000006b x19/s3 000000000000000f x20/s4 ffffaf800e78f9e0 x21/s5 ffffaf800e78f900 x22/s6 ffffffff8588c1a0 x23/s7 ffffffff8588c3e0 x24/s8 ffffffff8588c220 x25/s9 ffffffff84a88520 x26/s10 ffffffff858655c0 x27/s11 ffffaf800e78f9e0 x28/t3 0000000000000043 x29/t4 fffffffef0d796c8 x30/t5 fffffffef0d796cb x31/t6 ffffffff86bcb657 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000