syzkaller login: [ 82.615205][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 82.621748][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 82.628783][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:36879' (ECDSA) to the list of known hosts. 1970/01/01 00:02:07 fuzzer started 1970/01/01 00:02:11 connecting to host at localhost:44877 1970/01/01 00:02:11 checking machine... 1970/01/01 00:02:11 checking revisions... 1970/01/01 00:02:13 testing simple program... [ 134.171936][ T2209] cgroup: Unknown subsys name 'net' [ 134.607192][ T2209] cgroup: Unknown subsys name 'rlimit' executing program executing program [ 139.788207][ T2212] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 139.824245][ T2212] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link executing program [ 142.264391][ T2212] device hsr_slave_0 entered promiscuous mode [ 142.315822][ T2212] device hsr_slave_1 entered promiscuous mode executing program [ 143.907714][ T2212] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 144.016797][ T2212] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 144.095246][ T2212] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 144.162064][ T2212] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 145.758207][ T2212] 8021q: adding VLAN 0 to HW filter on device bond0 [ 145.827705][ T892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 145.844384][ T892] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 146.766148][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 146.769828][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready executing program [ 146.849145][ T91] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 146.861437][ T91] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 146.906336][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 146.966110][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 147.109226][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 147.117945][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 147.204695][ T91] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 147.217625][ T91] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 147.275102][ T2212] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 148.158470][ T892] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 148.160028][ T892] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready executing program [ 150.157089][ T892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 150.166049][ T892] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 151.415122][ T892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 151.444923][ T892] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 151.489392][ T892] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 151.498459][ T892] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 151.526635][ T2212] device veth0_vlan entered promiscuous mode [ 151.631592][ T2212] device veth1_vlan entered promiscuous mode [ 151.847368][ T892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 151.852646][ T892] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 151.889094][ T2212] device veth0_macvtap entered promiscuous mode [ 151.926584][ T2212] device veth1_macvtap entered promiscuous mode [ 152.054814][ T91] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 152.066083][ T91] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 152.079413][ T91] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 152.092530][ T91] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 152.156767][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 152.168802][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 152.215092][ T2212] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 152.216311][ T2212] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 152.216862][ T2212] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 152.217391][ T2212] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 152.574270][ C0] ------------[ cut here ]------------ [ 152.575073][ C0] WARNING: CPU: 0 PID: 9 at include/linux/cpumask.h:110 wg_cpumask_next_online+0x1c0/0x2c0 [ 152.575455][ C0] Modules linked in: [ 152.575734][ C0] CPU: 0 PID: 9 Comm: kworker/u4:0 Tainted: G W 6.0.0-syzkaller-10822-g60bb8154d1d7 #0 [ 152.576167][ C0] Hardware name: linux,dummy-virt (DT) [ 152.576605][ C0] Workqueue: wg-kex-wg2 wg_packet_handshake_send_worker [ 152.576992][ C0] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 152.577311][ C0] pc : wg_cpumask_next_online+0x1c0/0x2c0 [ 152.577553][ C0] lr : wg_packet_receive+0x978/0x1560 [ 152.577782][ C0] sp : ffff800008007480 [ 152.577995][ C0] x29: ffff800008007480 x28: 0000000000000001 x27: 1fffe00001ca7219 [ 152.578771][ C0] x26: 0000000000000000 x25: ffff80000de5c000 x24: 0000000000000000 [ 152.579845][ C0] x23: 0000000000000003 x22: ffff80000de5cb68 x21: 0000000000000001 [ 152.580872][ C0] x20: ffff00000e5390c8 x19: ffff80000de5cd50 x18: 000000003386679f [ 152.581469][ C0] x17: ffff80005cbc5000 x16: ffff800008008000 x15: ffff000010a56668 [ 152.581872][ C0] x14: 1ffff00001000e68 x13: 0000000000000000 x12: ffff600001ca7291 [ 152.582250][ C0] x11: 1fffe00001ca7290 x10: ffff600001ca7290 x9 : dfff800000000000 [ 152.582669][ C0] x8 : ffff00000e539483 x7 : 00009ffffe358d70 x6 : 0000000000000001 [ 152.583146][ C0] x5 : ffff00000e539480 x4 : ffff700001bcb9aa x3 : dfff800000000000 [ 152.583520][ C0] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001 [ 152.583949][ C0] Call trace: [ 152.584139][ C0] wg_cpumask_next_online+0x1c0/0x2c0 [ 152.584437][ C0] wg_packet_receive+0x978/0x1560 [ 152.584655][ C0] wg_receive+0x58/0xb0 [ 152.584899][ C0] udpv6_queue_rcv_one_skb+0x8f4/0x17c0 [ 152.585134][ C0] udpv6_queue_rcv_skb+0x134/0x7e0 [ 152.585350][ C0] udp6_unicast_rcv_skb+0xe8/0x270 [ 152.585651][ C0] __udp6_lib_rcv+0x8a4/0x2330 [ 152.585867][ C0] udpv6_rcv+0x1c/0x2c [ 152.586078][ C0] ip6_protocol_deliver_rcu+0x154/0x14f0 [ 152.586348][ C0] ip6_input_finish+0x108/0x220 [ 152.586565][ C0] ip6_input+0xbc/0x2b0 [ 152.586798][ C0] ipv6_rcv+0x39c/0x47c [ 152.587056][ C0] __netif_receive_skb_one_core+0xf4/0x170 [ 152.587357][ C0] __netif_receive_skb+0x24/0x184 [ 152.587585][ C0] process_backlog+0x24c/0x6b0 [ 152.587828][ C0] __napi_poll+0x94/0x3a4 [ 152.588069][ C0] net_rx_action+0x78c/0xb60 [ 152.588278][ C0] _stext+0x28c/0x107c [ 152.588493][ C0] ____do_softirq+0x10/0x20 [ 152.588700][ C0] call_on_irq_stack+0x2c/0x54 [ 152.588952][ C0] do_softirq_own_stack+0x1c/0x30 [ 152.589170][ C0] do_softirq.part.0+0xd0/0xf4 [ 152.589382][ C0] __local_bh_enable_ip+0x50c/0x5d0 [ 152.589611][ C0] _raw_read_unlock_bh+0x54/0x64 [ 152.589847][ C0] wg_socket_send_skb_to_peer+0xf0/0x190 [ 152.590080][ C0] wg_socket_send_buffer_to_peer+0x110/0x160 [ 152.590461][ C0] wg_packet_send_handshake_initiation+0x1a8/0x274 [ 152.590783][ C0] wg_packet_handshake_send_worker+0x1c/0x34 [ 152.591084][ C0] process_one_work+0x780/0x184c [ 152.591301][ C0] worker_thread+0x3cc/0xc40 [ 152.591543][ C0] kthread+0x23c/0x2a0 [ 152.591757][ C0] ret_from_fork+0x10/0x20 [ 152.591977][ C0] irq event stamp: 7837 [ 152.592233][ C0] hardirqs last enabled at (7836): [] __local_bh_enable_ip+0x1e4/0x5d0 [ 152.592537][ C0] hardirqs last disabled at (7837): [] el1_dbg+0x24/0x80 [ 152.592861][ C0] softirqs last enabled at (7828): [] wg_socket_send_skb_to_peer+0xf0/0x190 [ 152.593190][ C0] softirqs last disabled at (7829): [] ____do_softirq+0x10/0x20 [ 152.593480][ C0] ---[ end trace 0000000000000000 ]--- [ 152.616500][ C1] ------------[ cut here ]------------ [ 152.617933][ C1] WARNING: CPU: 1 PID: 21 at include/linux/cpumask.h:110 wg_packet_send_staged_packets+0xe38/0x1380 [ 152.618522][ C1] Modules linked in: [ 152.618949][ C1] CPU: 1 PID: 21 Comm: kworker/1:0 Tainted: G W 6.0.0-syzkaller-10822-g60bb8154d1d7 #0 [ 152.619450][ C1] Hardware name: linux,dummy-virt (DT) [ 152.619805][ C1] Workqueue: wg-crypt-wg1 wg_packet_decrypt_worker [ 152.620476][ C1] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 152.621004][ C1] pc : wg_packet_send_staged_packets+0xe38/0x1380 [ 152.621548][ C1] lr : wg_packet_send_staged_packets+0x524/0x1380 [ 152.621943][ C1] sp : ffff800010ab7960 [ 152.622262][ C1] x29: ffff800010ab7960 x28: ffff000013dc2400 x27: 0000000000000001 [ 152.622880][ C1] x26: 0000000000000001 x25: 0000000000000002 x24: 1fffe0000207ef1e [ 152.623499][ C1] x23: ffff0000103f78e8 x22: ffff80000de5cd50 x21: ffff00000f389c20 [ 152.624096][ C1] x20: ffff0000103f78c0 x19: ffff00000e53cc40 x18: ffff00006a9eab88 [ 152.624702][ C1] x17: ffff80005cbe4000 x16: ffff800010ab8000 x15: 0000000000008000 [ 152.625301][ C1] x14: 1ffff00002156efa x13: 1fffe0000125b4b3 x12: ffff600001e71386 [ 152.625979][ C1] x11: ffff700001bcb9aa x10: dfff800000000000 x9 : 0000000000000003 [ 152.627269][ C1] x8 : ffff80000de5c000 x7 : 1fffe00001ca79b9 x6 : 0000000000000000 [ 152.627894][ C1] x5 : ffff00000e53cdc8 x4 : ffff80000de5cb68 x3 : ffff800009f2ac94 [ 152.628505][ C1] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001 [ 152.629089][ C1] Call trace: [ 152.629391][ C1] wg_packet_send_staged_packets+0xe38/0x1380 [ 152.629813][ C1] wg_packet_rx_poll+0xd94/0x1580 [ 152.630283][ C1] __napi_poll+0x94/0x3a4 [ 152.630719][ C1] net_rx_action+0x78c/0xb60 [ 152.631205][ C1] _stext+0x28c/0x107c [ 152.631573][ C1] ____do_softirq+0x10/0x20 [ 152.631916][ C1] call_on_irq_stack+0x2c/0x54 [ 152.632384][ C1] do_softirq_own_stack+0x1c/0x30 [ 152.632748][ C1] do_softirq.part.0+0xd0/0xf4 [ 152.633558][ C1] __local_bh_enable_ip+0x50c/0x5d0 [ 152.633928][ C1] _raw_spin_unlock_bh+0x54/0x64 [ 152.634297][ C1] wg_packet_decrypt_worker+0x210/0x3c0 [ 152.634695][ C1] process_one_work+0x780/0x184c [ 152.635112][ C1] worker_thread+0x3cc/0xc40 [ 152.635480][ C1] kthread+0x23c/0x2a0 [ 152.635821][ C1] ret_from_fork+0x10/0x20 [ 152.636601][ C1] irq event stamp: 323 [ 152.636927][ C1] hardirqs last enabled at (322): [] seqcount_lockdep_reader_access.constprop.0+0xc4/0xe0 [ 152.637606][ C1] hardirqs last disabled at (323): [] el1_dbg+0x24/0x80 [ 152.638043][ C1] softirqs last enabled at (300): [] wg_packet_decrypt_worker+0x210/0x3c0 [ 152.638688][ C1] softirqs last disabled at (301): [] ____do_softirq+0x10/0x20 [ 152.639159][ C1] ---[ end trace 0000000000000000 ]--- executing program 1970/01/01 00:02:33 building call list... [ 154.229567][ T9] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 154.505208][ T9] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 154.718570][ T9] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 154.882576][ T9] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 executing program [ 158.242323][ T9] device hsr_slave_0 left promiscuous mode [ 158.322726][ T9] device hsr_slave_1 left promiscuous mode [ 158.536497][ T9] device veth1_macvtap left promiscuous mode [ 158.537798][ T9] device veth0_macvtap left promiscuous mode [ 158.539358][ T9] device veth1_vlan left promiscuous mode [ 158.562541][ T9] device veth0_vlan left promiscuous mode executing program executing program [ 162.814168][ T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 162.948782][ T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 163.512622][ T9] bond0 (unregistering): Released all slaves executing program executing program executing program executing program executing program [ 178.879938][ T2203] can: request_module (can-proto-0) failed. [ 179.089966][ T2203] can: request_module (can-proto-0) failed. [ 179.335588][ T2203] can: request_module (can-proto-0) failed. executing program VM DIAGNOSIS: 14:50:36 Registers: info registers vcpu 0 PC=ffff8000096ac860 X00=0000000000000002 X01=0000000000000002 X02=ffff000009ae5172 X03=dfff800000000000 X04=1fffe0000135ca2e X05=0000000000000002 X06=1fffe0000135ca2e X07=0000000000000030 X08=ffff800008006a73 X09=dfff800000000000 X10=ffff700001000d4e X11=1ffff00001000d4e X12=ffff700001000d4f X13=0000000000000000 X14=1ffff00001000d24 X15=3a34327820303030 X16=3030303030303020 X17=3030303030303030 X18=000000003386679f X19=ffff000009ae5080 X20=ffff800010aad018 X21=ffff80000e5722e0 X22=0000000000000030 X23=dfff800000000000 X24=ffff8000107757f9 X25=0000000000000000 X26=ffff000009ae5080 X27=dfff800000000000 X28=0000000000000059 X29=ffff800008006a10 X30=ffff8000096ada30 SP=ffff800008006a10 PSTATE=800003c5 N--- EL1h FPCR=00000000 FPSR=00000010 Q00=0000000000000000:0000000000000000 Q01=0000000000000000:00000000447a0000 Q02=746963696c6f7320:3a732500656c6261 Q03=0000000000000000:0000000000000000 Q04=0000000000000000:000000ff00000000 Q05=0000000000000000:0000000000000000 Q06=0000000000000000:0000040100000000 Q07=4010040140100401:4010040140100401 Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000 Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000050000000000:0000050000000000 Q17=a00a0000a00a0000:aa00aa00aa82a000 Q18=8020080200000000:8020080200000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000 info registers vcpu 1 PC=ffff80000829335c X00=00000000000000c0 X01=00000000000000c0 X02=0000000000000003 X03=1fffe0000125ba39 X04=1ffff00002192dd8 X05=0000000000000000 X06=000be93f2bdc2561 X07=f373e4b8fc9fc088 X08=00403a22fdfde58b X09=003de5fa24099146 X10=00464c9f207f9137 X11=000001875472b9f5 X12=00032767170f6319 X13=003f40623b6535e0 X14=007d1c1f443f17b9 X15=00080b5edf9d54b2 X16=005f288eef06148c X17=000049b692e69fc7 X18=00001f9ac2ccfc36 X19=0000000000000000 X20=ffff0000092ddc20 X21=ffff80000e03ca80 X22=0000000000000028 X23=ffff0000092ddba8 X24=ffff80000de06c48 X25=ffff80000c991e40 X26=00000000ffffffff X27=00000000000000c0 X28=ffff0000092dd1c0 X29=ffff800010c96e80 X30=ffff80000c8ee0d4 SP=ffff800010c96e80 PSTATE=100000c5 ---V EL1h FPCR=00000000 FPSR=00000000 Q00=0000000000000000:0000000000000000 Q01=0000000000000000:0000000000000000 Q02=0000000000000000:0000000000000000 Q03=0000000000000000:0000000000000000 Q04=0000000000000000:0000000000000000 Q05=0000000000000000:0000000000000000 Q06=0000000000000000:0000000000000000 Q07=0000000000000000:0000000000000000 Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000 Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000000000000000:0000000000000000 Q17=0000000000000000:0000000000000000 Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000