syzkaller login: [ 96.569045][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 96.603008][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 96.608537][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:52897' (ECDSA) to the list of known hosts. 1970/01/01 00:02:17 fuzzer started 1970/01/01 00:02:21 connecting to host at localhost:39993 1970/01/01 00:02:21 checking machine... 1970/01/01 00:02:21 checking revisions... 1970/01/01 00:02:24 testing simple program... [ 144.856920][ T2209] cgroup: Unknown subsys name 'net' executing program [ 145.328874][ T2209] cgroup: Unknown subsys name 'rlimit' executing program [ 151.228467][ T2212] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 151.257545][ T2212] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link executing program [ 153.929776][ T2212] device hsr_slave_0 entered promiscuous mode [ 153.978198][ T2212] device hsr_slave_1 entered promiscuous mode executing program [ 155.692831][ T2212] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 155.796631][ T2212] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 155.877441][ T2212] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 155.960352][ T2212] netdevsim netdevsim0 netdevsim3: renamed from eth3 executing program [ 158.070036][ T2212] 8021q: adding VLAN 0 to HW filter on device bond0 [ 158.154688][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 158.193570][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 159.306823][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 159.325507][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 159.395750][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 159.407725][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 159.470136][ T2529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 159.523900][ T2529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 159.662405][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 159.667925][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 159.734318][ T2529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 159.759248][ T2529] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 159.826267][ T2212] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready executing program [ 160.907858][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 160.909768][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready executing program [ 163.645481][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 163.694130][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 165.232253][ T888] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 165.255673][ T888] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 165.279231][ T888] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 165.289643][ T888] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 165.376024][ T2212] device veth0_vlan entered promiscuous mode [ 165.502566][ T2212] device veth1_vlan entered promiscuous mode [ 165.883076][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 165.890011][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 165.944256][ T2212] device veth0_macvtap entered promiscuous mode [ 166.000594][ T2212] device veth1_macvtap entered promiscuous mode [ 166.149998][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 166.157631][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 166.173203][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 166.179032][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 166.268434][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 166.278857][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready executing program [ 166.344655][ T2212] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 166.346033][ T2212] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 166.346503][ T2212] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 166.347015][ T2212] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 166.716635][ C1] ------------[ cut here ]------------ [ 166.717351][ C1] WARNING: CPU: 1 PID: 44 at include/linux/cpumask.h:110 wg_cpumask_next_online+0x1c0/0x2c0 [ 166.717711][ C1] Modules linked in: [ 166.718044][ C1] CPU: 1 PID: 44 Comm: kworker/u4:2 Tainted: G W 6.0.0-syzkaller-12155-gb7cef0d21c37 #0 [ 166.718421][ C1] Hardware name: linux,dummy-virt (DT) [ 166.718862][ C1] Workqueue: wg-kex-wg2 wg_packet_handshake_send_worker [ 166.719352][ C1] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 166.719906][ C1] pc : wg_cpumask_next_online+0x1c0/0x2c0 [ 166.720241][ C1] lr : wg_packet_receive+0x978/0x1560 [ 166.721077][ C1] sp : ffff800010ab7480 [ 166.721679][ C1] x29: ffff800010ab7480 x28: 0000000000000001 x27: 1fffe00002b64219 [ 166.722288][ C1] x26: 0000000000000000 x25: ffff80000de5c000 x24: 0000000000000000 [ 166.722716][ C1] x23: 0000000000000003 x22: ffff80000de5cb68 x21: 0000000000000001 [ 166.723204][ C1] x20: ffff000015b210c8 x19: ffff80000de5cd50 x18: ffff00006a9eabc0 [ 166.723686][ C1] x17: ffff80005cbe4000 x16: ffff800010ab8000 x15: ffff00000abc7028 [ 166.724137][ C1] x14: 1ffff00002156e68 x13: 0000000000000000 x12: ffff600002b64291 [ 166.724602][ C1] x11: 1fffe00002b64290 x10: ffff600002b64290 x9 : dfff800000000000 [ 166.725075][ C1] x8 : ffff000015b21483 x7 : 00009ffffd49bd70 x6 : 0000000000000001 [ 166.725571][ C1] x5 : ffff000015b21480 x4 : ffff700001bcb9aa x3 : dfff800000000000 [ 166.726013][ C1] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001 [ 166.726445][ C1] Call trace: [ 166.726684][ C1] wg_cpumask_next_online+0x1c0/0x2c0 [ 166.727030][ C1] wg_packet_receive+0x978/0x1560 [ 166.727350][ C1] wg_receive+0x58/0xb0 [ 166.727632][ C1] udpv6_queue_rcv_one_skb+0x8f4/0x17c0 [ 166.727958][ C1] udpv6_queue_rcv_skb+0x134/0x7e0 [ 166.728257][ C1] udp6_unicast_rcv_skb+0xe8/0x270 [ 166.728586][ C1] __udp6_lib_rcv+0x8a4/0x2330 [ 166.728869][ C1] udpv6_rcv+0x1c/0x2c [ 166.729174][ C1] ip6_protocol_deliver_rcu+0x154/0x14f0 [ 166.729475][ C1] ip6_input_finish+0x108/0x220 [ 166.729769][ C1] ip6_input+0xbc/0x2b0 [ 166.730060][ C1] ipv6_rcv+0x39c/0x47c [ 166.730379][ C1] __netif_receive_skb_one_core+0xf4/0x170 [ 166.730678][ C1] __netif_receive_skb+0x24/0x184 [ 166.731122][ C1] process_backlog+0x24c/0x6b0 [ 166.731406][ C1] __napi_poll+0x94/0x3a4 [ 166.731852][ C1] net_rx_action+0x78c/0xb60 [ 166.732136][ C1] _stext+0x28c/0x107c [ 166.732404][ C1] ____do_softirq+0x10/0x20 [ 166.732664][ C1] call_on_irq_stack+0x2c/0x54 [ 166.732933][ C1] do_softirq_own_stack+0x1c/0x30 [ 166.733303][ C1] do_softirq.part.0+0xd0/0xf4 [ 166.733577][ C1] __local_bh_enable_ip+0x50c/0x5d0 [ 166.733845][ C1] _raw_read_unlock_bh+0x54/0x64 [ 166.734149][ C1] wg_socket_send_skb_to_peer+0xf0/0x190 [ 166.734423][ C1] wg_socket_send_buffer_to_peer+0x110/0x160 [ 166.734715][ C1] wg_packet_send_handshake_initiation+0x1a8/0x274 [ 166.735077][ C1] wg_packet_handshake_send_worker+0x1c/0x34 [ 166.735369][ C1] process_one_work+0x780/0x184c [ 166.735643][ C1] worker_thread+0x3cc/0xc40 [ 166.735914][ C1] kthread+0x23c/0x2a0 [ 166.736174][ C1] ret_from_fork+0x10/0x20 [ 166.736446][ C1] irq event stamp: 127063 [ 166.736709][ C1] hardirqs last enabled at (127062): [] __local_bh_enable_ip+0x1e4/0x5d0 [ 166.737066][ C1] hardirqs last disabled at (127063): [] el1_dbg+0x24/0x80 [ 166.737433][ C1] softirqs last enabled at (127054): [] wg_socket_send_skb_to_peer+0xf0/0x190 [ 166.737786][ C1] softirqs last disabled at (127055): [] ____do_softirq+0x10/0x20 [ 166.738130][ C1] ---[ end trace 0000000000000000 ]--- [ 166.826176][ T2553] ------------[ cut here ]------------ [ 166.826967][ T2553] WARNING: CPU: 1 PID: 2553 at include/linux/cpumask.h:110 wg_packet_send_staged_packets+0xe38/0x1380 [ 166.830225][ T2553] Modules linked in: [ 166.831552][ T2553] CPU: 1 PID: 2553 Comm: kworker/1:5 Tainted: G W 6.0.0-syzkaller-12155-gb7cef0d21c37 #0 [ 166.832741][ T2553] Hardware name: linux,dummy-virt (DT) [ 166.833193][ T2553] Workqueue: wg-kex-wg2 wg_packet_handshake_receive_worker [ 166.833722][ T2553] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 166.835037][ T2553] pc : wg_packet_send_staged_packets+0xe38/0x1380 [ 166.837045][ T2553] lr : wg_packet_send_staged_packets+0x524/0x1380 [ 166.838405][ T2553] sp : ffff8000119c7800 [ 166.838687][ T2553] x29: ffff8000119c7800 x28: ffff000010168c00 x27: 0000000000000001 [ 166.839242][ T2553] x26: 0000000000000001 x25: 0000000000000002 x24: 1fffe00001ce3546 [ 166.840912][ T2553] x23: ffff00000e71aa28 x22: ffff80000de5cd50 x21: ffff000015beaee0 [ 166.841612][ T2553] x20: ffff00000e71aa00 x19: ffff00000e350c40 x18: 0000000012c9ad08 [ 166.842300][ T2553] x17: 0000000048941b76 x16: 000000009a3402ba x15: 0000000000000000 [ 166.842841][ T2553] x14: 1ffff00002338ece x13: 0000000000000000 x12: ffff600002b7d5de [ 166.843385][ T2553] x11: ffff700001bcb9aa x10: dfff800000000000 x9 : 0000000000000003 [ 166.843927][ T2553] x8 : ffff80000de5c000 x7 : 1fffe00001c6a1b9 x6 : 0000000000000000 [ 166.844474][ T2553] x5 : ffff00000e350dc8 x4 : ffff80000de5cb68 x3 : ffff800009f2de04 [ 166.845027][ T2553] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001 [ 166.845602][ T2553] Call trace: [ 166.845878][ T2553] wg_packet_send_staged_packets+0xe38/0x1380 [ 166.846244][ T2553] wg_packet_send_keepalive+0x40/0x2a0 [ 166.846573][ T2553] wg_receive_handshake_packet+0x2c8/0x7c0 [ 166.846892][ T2553] wg_packet_handshake_receive_worker+0xd8/0x2ec [ 166.847253][ T2553] process_one_work+0x780/0x184c [ 166.847573][ T2553] worker_thread+0x3cc/0xc40 [ 166.847887][ T2553] kthread+0x23c/0x2a0 [ 166.848196][ T2553] ret_from_fork+0x10/0x20 [ 166.848517][ T2553] irq event stamp: 83 [ 166.848808][ T2553] hardirqs last enabled at (81): [] seqcount_lockdep_reader_access.constprop.0+0xc4/0xe0 [ 166.849341][ T2553] hardirqs last disabled at (83): [] el1_dbg+0x24/0x80 [ 166.849752][ T2553] softirqs last enabled at (78): [] wg_packet_send_staged_packets+0x20c/0x1380 [ 166.850201][ T2553] softirqs last disabled at (82): [] wg_packet_send_staged_packets+0x460/0x1380 [ 166.851009][ T2553] ---[ end trace 0000000000000000 ]--- 1970/01/01 00:02:48 building call list... [ 168.828023][ T27] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 169.105279][ T27] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 169.302736][ T27] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 executing program [ 169.557737][ T27] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 executing program [ 173.023292][ T27] device hsr_slave_0 left promiscuous mode [ 173.093904][ T27] device hsr_slave_1 left promiscuous mode [ 173.276517][ T27] device veth1_macvtap left promiscuous mode [ 173.278840][ T27] device veth0_macvtap left promiscuous mode [ 173.289363][ T27] device veth1_vlan left promiscuous mode [ 173.304074][ T27] device veth0_vlan left promiscuous mode executing program [ 177.278877][ T27] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 177.436840][ T27] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 178.250056][ T27] bond0 (unregistering): Released all slaves executing program executing program executing program executing program executing program executing program [ 194.282881][ T2205] can: request_module (can-proto-0) failed. [ 194.546311][ T2205] can: request_module (can-proto-0) failed. [ 194.776728][ T2205] can: request_module (can-proto-0) failed. executing program VM DIAGNOSIS: 01:35:59 Registers: info registers vcpu 0 PC=ffff80000b461608 X00=ffff80000b461600 X01=0000000000000000 X02=0000000000000000 X03=1fffe0000d539789 X04=0000000010ebfeb6 X05=0000000000000000 X06=00000000f3f3f3f3 X07=1fffe0000150a141 X08=ffff00000a850a08 X09=0000000000000000 X10=ffff00000a8509cc X11=0000000000000007 X12=1fffe0000150a139 X13=1fffe0000150a141 X14=1ffff0000221ef8a X15=ffff000019589c00 X16=0000000000000000 X17=0000000000000000 X18=0000000000000000 X19=ffff80000e071fb0 X20=0000000000000000 X21=0000000000000003 X22=0000000000000028 X23=ffff80000e072040 X24=dfff800000000000 X25=ffff80000e071f80 X26=0000000000000004 X27=ffff80000e071fb0 X28=ffff00000a850000 X29=ffff8000110f7ce0 X30=ffff800008392558 SP=ffff8000110f7ce0 PSTATE=600003c5 -ZC- EL1h FPCR=00000000 FPSR=00000000 Q00=0000000000000000:0000000000000000 Q01=0000000000000000:0000000000000000 Q02=0000000000000000:0000000000000000 Q03=0000000000000000:0000000000000000 Q04=0000000000000000:0000000000000000 Q05=0000000000000000:0000000000000000 Q06=0000000000000000:0000000000000000 Q07=0000000000000000:0000000000000000 Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000 Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000000000000000:0000000000000000 Q17=0000000000000000:0000000000000000 Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000 info registers vcpu 1 PC=ffff800008293abc X00=00000000000003c0 X01=00000000000003c0 X02=0000000000000003 X03=1fffe00001541001 X04=1ffff00001bcbf6e X05=0000000000000000 X06=00000000f3f3f3f3 X07=1fffe0000154115f X08=ffff00000aa08af8 X09=00000000000000f0 X10=ffff00000aa089cc X11=0000000000000004 X12=1fffe00001541139 X13=1fffe0000154115f X14=1ffff00002156d16 X15=0000000000000000 X16=0000000000000000 X17=0000000000000000 X18=ffff00006a9eabc0 X19=0000000000000001 X20=ffff00000aa08ad8 X21=ffff80000e51c638 X22=0000000000000028 X23=ffff00000aa089e8 X24=ffff80000de06c48 X25=ffff80000c992000 X26=00000000ffffffff X27=00000000000003c0 X28=ffff00000aa08000 X29=ffff800010ab6a00 X30=ffff80000c8f38f4 SP=ffff800010ab6a00 PSTATE=100003c5 ---V EL1h FPCR=00000000 FPSR=00000000 Q00=0000000000000000:0000000000000000 Q01=0000000000000000:0000000000000000 Q02=0000000000000000:0000000000000000 Q03=0000000000000000:0000000000000000 Q04=0000000000000000:0000000000000000 Q05=0000000000000000:0000000000000000 Q06=0000000000000000:0000000000000000 Q07=0000000000000000:0000000000000000 Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000 Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000000000000000:0000000000000000 Q17=0000000000000000:0000000000000000 Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000