syzkaller login: [   43.807209][ T2804] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[   43.810206][ T2804] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[   43.810842][ T2804] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
Warning: Permanently added '[localhost]:32608' (ECDSA) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[  125.114260][ T3090] usercopy: Kernel memory overwrite attempt detected to SLUB object 'task_struct' (offset 96, size 116)!
[  125.115572][ T3090] ------------[ cut here ]------------
[  125.115816][ T3090] kernel BUG at mm/usercopy.c:102!
[  125.116092][ T3090] Internal error: Oops - BUG: 0 [#1] PREEMPT SMP ARM
[  125.116516][ T3090] Modules linked in:
[  125.116986][ T3090] CPU: 1 PID: 3090 Comm: syz-executor177 Not tainted 6.3.0-syzkaller #0
[  125.117330][ T3090] Hardware name: ARM-Versatile Express
[  125.117605][ T3090] PC is at usercopy_abort+0x98/0x9c
[  125.119581][ T3090] LR is at __wake_up_klogd.part.0+0x7c/0xac
[  125.119795][ T3090] pc : [<817b706c>]    lr : [<802aef04>]    psr: 60000013
[  125.120153][ T3090] sp : dfaade58  ip : dfaadd98  fp : dfaade7c
[  125.120349][ T3090] r10: 0000001a  r9 : 00003e4d  r8 : 83e4dc60
[  125.120520][ T3090] r7 : dde85220  r6 : 00000000  r5 : 00000074  r4 : 00000060
[  125.120778][ T3090] r3 : 00000000  r2 : 00000000  r1 : ddddc584  r0 : 00000066
[  125.121057][ T3090] Flags: nZCv  IRQs on  FIQs on  Mode SVC_32  ISA ARM  Segment none
[  125.121708][ T3090] Control: 30c5387d  Table: 841e40c0  DAC: 00000000
[  125.122012][ T3090] Register r0 information: non-paged memory
[  125.122486][ T3090] Register r1 information: non-slab/vmalloc memory
[  125.122837][ T3090] Register r2 information: NULL pointer
[  125.123022][ T3090] Register r3 information: NULL pointer
[  125.123195][ T3090] Register r4 information: non-paged memory
[  125.123379][ T3090] Register r5 information: non-paged memory
[  125.123576][ T3090] Register r6 information: NULL pointer
[  125.123757][ T3090] Register r7 information: non-slab/vmalloc memory
[  125.123969][ T3090] Register r8 information: slab task_struct start 83e4dc00 pointer offset 96 size 2944
[  125.124861][ T3090] Register r9 information: non-paged memory
[  125.125060][ T3090] Register r10 information: non-paged memory
[  125.125248][ T3090] Register r11 information: 2-page vmalloc region starting at 0xdfaac000 allocated at kernel_clone+0x9c/0x3d4
[  125.125646][ T3090] Register r12 information: 2-page vmalloc region starting at 0xdfaac000 allocated at kernel_clone+0x9c/0x3d4
[  125.125953][ T3090] Process syz-executor177 (pid: 3090, stack limit = 0xdfaac000)
[  125.126313][ T3090] Stack: (0xdfaade58 to 0xdfaae000)
[  125.126583][ T3090] de40:                                                       81da9fcc 81d8176c
[  125.126831][ T3090] de60: 81d94abc 00000060 00000074 00003e4d dfaadeac dfaade80 804956ec 817b6fe0
[  125.127049][ T3090] de80: 00000074 dfaade90 80216d0c 83e4dc60 00000074 00000000 83e4dcd4 dde85220
[  125.127252][ T3090] dea0: dfaadee4 dfaadeb0 804b5624 80495620 00000074 0000000f dfaaded4 83e4dc60
[  125.127467][ T3090] dec0: 00000074 0000000f 00000000 00000000 833edc00 0000001a dfaadefc dfaadee8
[  125.127681][ T3090] dee0: 80209fc8 804b5454 00000000 83e4dc00 dfaadf74 dfaadf00 8020a728 80209f44
[  125.128021][ T3090] df00: 00000000 00000000 817dae24 802756e8 dfaadf74 dfaadf20 8027c28c 817dae00
[  125.128440][ T3090] df20: dfaadf3c 00000000 00000000 833edc00 80276968 60000013 8178d188 817a1de8
[  125.128795][ T3090] df40: dfaadf5c a154bf06 00000000 83e4dc00 00000000 a154bf06 83e4dc00 00000000
[  125.129064][ T3090] df60: 0000000f 00000000 dfaadfa4 dfaadf78 80251188 8020a480 00000000 a154bf06
[  125.129305][ T3090] df80: 00000000 00000000 000118c0 0000001a 80200288 833edc00 00000000 dfaadfa8
[  125.129549][ T3090] dfa0: 80200060 80250f20 00000000 00000000 0000000f 00000c13 00000000 00000000
[  125.129791][ T3090] dfc0: 00000000 00000000 000118c0 0000001a 000f4240 00000000 7ec23ca4 00003a97
[  125.130022][ T3090] dfe0: 7ec23c90 7ec23c80 00010624 0002a910 00000010 0000000f 00000000 00000000
[  125.130325][ T3090] Backtrace: 
[  125.130635][ T3090] [<817b6fd4>] (usercopy_abort) from [<804956ec>] (__check_heap_object+0xd8/0xf4)
[  125.131157][ T3090] [<80495614>] (__check_heap_object) from [<804b5624>] (__check_object_size+0x1dc/0x2fc)
[  125.131483][ T3090]  r8:dde85220 r7:83e4dcd4 r6:00000000 r5:00000074 r4:83e4dc60
[  125.131713][ T3090] [<804b5448>] (__check_object_size) from [<80209fc8>] (fpa_set+0x90/0xb0)
[  125.132000][ T3090]  r10:0000001a r9:833edc00 r8:00000000 r7:00000000 r6:0000000f r5:00000074
[  125.132234][ T3090]  r4:83e4dc60
[  125.132358][ T3090] [<80209f38>] (fpa_set) from [<8020a728>] (arch_ptrace+0x2b4/0x40c)
[  125.132640][ T3090]  r5:83e4dc00 r4:00000000
[  125.132843][ T3090] [<8020a474>] (arch_ptrace) from [<80251188>] (sys_ptrace+0x274/0x4f4)
[  125.133171][ T3090]  r7:00000000 r6:0000000f r5:00000000 r4:83e4dc00
[  125.133351][ T3090] [<80250f14>] (sys_ptrace) from [<80200060>] (ret_fast_syscall+0x0/0x1c)
[  125.133629][ T3090] Exception stack(0xdfaadfa8 to 0xdfaadff0)
[  125.133821][ T3090] dfa0:                   00000000 00000000 0000000f 00000c13 00000000 00000000
[  125.134070][ T3090] dfc0: 00000000 00000000 000118c0 0000001a 000f4240 00000000 7ec23ca4 00003a97
[  125.134322][ T3090] dfe0: 7ec23c90 7ec23c80 00010624 0002a910
[  125.134523][ T3090]  r9:833edc00 r8:80200288 r7:0000001a r6:000118c0 r5:00000000 r4:00000000
[  125.135022][ T3090] Code: e3090fd0 e34801da e58dc000 ebfff87f (e7f001f2) 
[  125.135833][ T3090] ---[ end trace 0000000000000000 ]---
[  125.136233][ T3090] Kernel panic - not syncing: Fatal exception
[  125.136848][    C0] CPU0: stopping
[  125.137572][    C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G      D            6.3.0-syzkaller #0
[  125.138329][    C0] Hardware name: ARM-Versatile Express
[  125.138765][    C0] Backtrace: 
[  125.139119][    C0] [<817b2528>] (dump_backtrace) from [<817b261c>] (show_stack+0x18/0x1c)
[  125.139890][    C0]  r7:81d7d1d8 r6:00000000 r5:600001d3 r4:81d901cc
[  125.140291][    C0] [<817b2604>] (show_stack) from [<817cec84>] (dump_stack_lvl+0x48/0x54)
[  125.140943][    C0] [<817cec3c>] (dump_stack_lvl) from [<817ceca8>] (dump_stack+0x18/0x1c)
[  125.141743][    C0]  r5:8280cb80 r4:00000003
[  125.142060][    C0] [<817cec90>] (dump_stack) from [<80210348>] (do_handle_IPI+0x2e4/0x318)
[  125.142552][    C0] [<80210064>] (do_handle_IPI) from [<8021039c>] (ipi_handler+0x20/0x28)
[  125.142972][    C0]  r9:8241ae40 r8:82401e30 r7:00000014 r6:8190faa8 r5:8280cb80 r4:82890a00
[  125.143607][    C0] [<8021037c>] (ipi_handler) from [<802bb634>] (handle_percpu_devid_irq+0x9c/0x2d4)
[  125.144272][    C0] [<802bb598>] (handle_percpu_devid_irq) from [<802b4ee8>] (generic_handle_domain_irq+0x30/0x40)
[  125.145176][    C0]  r10:825df961 r9:8241ae40 r8:00000000 r7:df80a00c r6:822ac1a0 r5:df80a000
[  125.145884][    C0]  r4:8240cde8 r3:00010001
[  125.146257][    C0] [<802b4eb8>] (generic_handle_domain_irq) from [<8086ab30>] (gic_handle_irq+0x68/0x7c)
[  125.146748][    C0] [<8086aac8>] (gic_handle_irq) from [<817cf360>] (generic_handle_arch_irq+0x60/0x80)
[  125.147384][    C0]  r7:82401eb8 r6:81f47dd4 r5:81f47dec r4:822ad81c
[  125.147844][    C0] [<817cf300>] (generic_handle_arch_irq) from [<80200b34>] (__irq_svc+0x74/0xac)
[  125.148654][    C0] Exception stack(0x82401eb8 to 0x82401f00)
[  125.149099][    C0] 1ea0:                                                       00000000 81d901cc
[  125.150041][    C0] 1ec0: 0001e114 00000001 8241ae40 8240c498 00000000 8240c4e0 00000000 00000000
[  125.150933][    C0] 1ee0: 825df961 82401f24 82401ef8 82401f08 817cfe70 817d08e0 20000113 ffffffff
[  125.151841][    C0]  r9:8241ae40 r8:00000000 r7:82401eec r6:ffffffff r5:20000113 r4:817d08e0
[  125.152486][    C0] [<817d0894>] (default_idle_call) from [<8028ff88>] (do_idle+0x20c/0x294)
[  125.153306][    C0]  r7:8240c4e0 r6:8241ae40 r5:8240c498 r4:00000000
[  125.153693][    C0] [<8028fd7c>] (do_idle) from [<8029032c>] (cpu_startup_entry+0x20/0x24)
[  125.154613][    C0]  r10:8264d000 r9:8240c440 r8:8241a934 r7:00000000 r6:8240c440 r5:82425e58
[  125.155443][    C0]  r4:000000eb
[  125.155665][    C0] [<8029030c>] (cpu_startup_entry) from [<817d0be0>] (rest_init+0xd8/0xdc)
[  125.156356][    C0] [<817d0b08>] (rest_init) from [<82200bb8>] (arch_post_acpi_subsys_init+0x0/0x20)
[  125.157013][    C0]  r5:deffc0c0 r4:8264d060
[  125.157452][    C0] [<82200ba8>] (arch_call_rest_init) from [<8220137c>] (start_kernel+0x764/0x7bc)
[  125.158165][    C0] [<82200c18>] (start_kernel) from [<00000000>] (0x0)
[  125.160300][ T3090] Rebooting in 86400 seconds..

VM DIAGNOSIS:
11:01:16  Registers:
info registers vcpu 0
R00=00000000 R01=00000000 R02=0001e101 R03=8021be40
R04=60000193 R05=8240c498 R06=00000000 R07=8240c4e0
R08=00000000 R09=00000000 R10=825df961 R11=82401f04
R12=82401f08 R13=82401ef0 R14=817d08d0 R15=817cf614
PSR=60000193 -ZC- A S svc32
s00=72702067 s01=6172676f d00=6172676f72702067
s02=00000000 s03=00000000 d01=0000000000000000
s04=f0000000 s05=f0000000 d02=f0000000f0000000
s06=00000000 s07=00000000 d03=0000000000000000
s08=00000000 s09=c0300000 d04=c030000000000000
s10=00000000 s11=80402010 d05=8040201000000000
s12=08040201 s13=80402010 d06=8040201008040201
s14=08040201 s15=80402010 d07=8040201008040201
s16=00000000 s17=00000000 d08=0000000000000000
s18=00000000 s19=00000000 d09=0000000000000000
s20=00000000 s21=00000000 d10=0000000000000000
s22=00000000 s23=00000000 d11=0000000000000000
s24=00000000 s25=00000000 d12=0000000000000000
s26=00000000 s27=00000000 d13=0000000000000000
s28=00000000 s29=00000000 d14=0000000000000000
s30=00000000 s31=00000000 d15=0000000000000000
s32=9b645e2d s33=a1044bf0 d16=a1044bf09b645e2d
s34=15b87b2d s35=095dafb5 d17=095dafb515b87b2d
s36=cbc89cd0 s37=1bbd7b4a d18=1bbd7b4acbc89cd0
s38=9a665a75 s39=ca9b410f d19=ca9b410f9a665a75
s40=84074688 s41=312e7726 d20=312e772684074688
s42=d0c41926 s43=9797106f d21=9797106fd0c41926
s44=11cc4ff8 s45=550dd6ab d22=550dd6ab11cc4ff8
s46=56276bb6 s47=5f5b878a d23=5f5b878a56276bb6
s48=00000001 s49=00000000 d24=0000000000000001
s50=00000000 s51=00000000 d25=0000000000000000
s52=9cba2399 s53=66be7358 d26=66be73589cba2399
s54=b96e9788 s55=999bcc70 d27=999bcc70b96e9788
s56=7ebd2219 s57=59d007db d28=59d007db7ebd2219
s58=fa30e006 s59=4b7fd5df d29=4b7fd5dffa30e006
s60=42d11ca0 s61=2c210cb5 d30=2c210cb542d11ca0
s62=0000007d s63=00000068 d31=000000680000007d
FPSCR: 00000000
info registers vcpu 1
R00=00000021 R01=00000000 R02=00000000 R03=00000000
R04=dfaade08 R05=00000000 R06=00000000 R07=60000093
R08=8264d41c R09=8241c964 R10=833edc00 R11=dfaadda4
R12=dfaadc78 R13=dfaadd38 R14=802aef04 R15=80208f68
PSR=60000093 -ZC- A S svc32
s00=00000000 s01=00000000 d00=0000000000000000
s02=00000000 s03=00000000 d01=0000000000000000
s04=00000000 s05=00000000 d02=0000000000000000
s06=00000000 s07=00000000 d03=0000000000000000
s08=00000000 s09=00000000 d04=0000000000000000
s10=00000000 s11=00000000 d05=0000000000000000
s12=00000000 s13=00000000 d06=0000000000000000
s14=00000000 s15=00000000 d07=0000000000000000
s16=00000000 s17=00000000 d08=0000000000000000
s18=00000000 s19=00000000 d09=0000000000000000
s20=00000000 s21=00000000 d10=0000000000000000
s22=00000000 s23=00000000 d11=0000000000000000
s24=00000000 s25=00000000 d12=0000000000000000
s26=00000000 s27=00000000 d13=0000000000000000
s28=00000000 s29=00000000 d14=0000000000000000
s30=00000000 s31=00000000 d15=0000000000000000
s32=00000000 s33=00000000 d16=0000000000000000
s34=00000000 s35=00000000 d17=0000000000000000
s36=00000000 s37=00000000 d18=0000000000000000
s38=00000000 s39=00000000 d19=0000000000000000
s40=00000000 s41=00000000 d20=0000000000000000
s42=00000000 s43=00000000 d21=0000000000000000
s44=00000000 s45=00000000 d22=0000000000000000
s46=00000000 s47=00000000 d23=0000000000000000
s48=00000000 s49=00000000 d24=0000000000000000
s50=00000000 s51=00000000 d25=0000000000000000
s52=00000000 s53=00000000 d26=0000000000000000
s54=00000000 s55=00000000 d27=0000000000000000
s56=00000000 s57=00000000 d28=0000000000000000
s58=00000000 s59=00000000 d29=0000000000000000
s60=00000000 s61=00000000 d30=0000000000000000
s62=00000000 s63=00000000 d31=0000000000000000
FPSCR: 00000000