syzkaller login: [   60.607145][ T2048] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[   60.616361][ T2048] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[   60.630359][ T2048] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
Warning: Permanently added '[localhost]:3556' (ECDSA) to the list of known hosts.
1970/01/01 00:01:21 fuzzer started
1970/01/01 00:01:24 connecting to host at localhost:33115
1970/01/01 00:01:24 checking machine...
1970/01/01 00:01:24 checking revisions...
1970/01/01 00:01:26 testing simple program...
[   87.180953][ T2208] cgroup: Unknown subsys name 'net'
[   87.509001][ T2208] cgroup: Unknown subsys name 'rlimit'
executing program
executing program
[   91.812586][ T2210] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   91.834226][ T2210] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   93.416522][ T2210] device hsr_slave_0 entered promiscuous mode
[   93.466557][ T2210] device hsr_slave_1 entered promiscuous mode
executing program
[   94.716698][ T2210] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   94.790422][ T2210] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   94.878735][ T2210] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   94.969725][ T2210] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   96.349685][ T2210] 8021q: adding VLAN 0 to HW filter on device bond0
[   96.395841][   T90] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   96.405428][   T90] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
executing program
[   97.124186][   T90] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   97.127982][   T90] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   97.167019][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   97.178311][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   97.214017][   T90] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   97.258598][   T90] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   97.387349][ T2528] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   97.391063][ T2528] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   97.437207][  T890] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   97.450475][  T890] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   97.499036][ T2210] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   98.101200][ T2521] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   98.103700][ T2521] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   99.698686][   T90] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   99.710022][   T90] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
executing program
[  100.671408][   T90] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  100.680737][   T90] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  100.713834][ T2528] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  100.717805][ T2528] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  100.727469][ T2210] device veth0_vlan entered promiscuous mode
[  100.800358][ T2210] device veth1_vlan entered promiscuous mode
[  100.960988][   T90] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  100.966771][   T90] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  101.001321][ T2210] device veth0_macvtap entered promiscuous mode
[  101.041476][ T2210] device veth1_macvtap entered promiscuous mode
[  101.177176][  T890] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  101.184967][  T890] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  101.191267][  T890] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  101.200410][  T890] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  101.247422][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  101.251396][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  101.308209][ T2210] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  101.309082][ T2210] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  101.309415][ T2210] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  101.309726][ T2210] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  101.524974][    C0] ------------[ cut here ]------------
[  101.525561][    C0] WARNING: CPU: 0 PID: 9 at include/linux/cpumask.h:110 wg_cpumask_next_online+0x1c0/0x2c0
[  101.525870][    C0] Modules linked in:
[  101.526117][    C0] CPU: 0 PID: 9 Comm: kworker/u4:0 Tainted: G        W          6.0.0-syzkaller-10822-g60bb8154d1d7 #0
[  101.526414][    C0] Hardware name: linux,dummy-virt (DT)
[  101.526790][    C0] Workqueue: wg-kex-wg2 wg_packet_handshake_send_worker
[  101.527121][    C0] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  101.527402][    C0] pc : wg_cpumask_next_online+0x1c0/0x2c0
[  101.527638][    C0] lr : wg_packet_receive+0x978/0x1560
[  101.527851][    C0] sp : ffff800008007440
[  101.528040][    C0] x29: ffff800008007440 x28: 0000000000000001 x27: 1fffe000029e4a19
[  101.528435][    C0] x26: 0000000000000000 x25: ffff80000de5c000 x24: 0000000000000000
[  101.528783][    C0] x23: 0000000000000003 x22: ffff80000de5cb68 x21: 0000000000000001
[  101.529576][    C0] x20: ffff000014f250c8 x19: ffff80000de5cd50 x18: ffff000013297d38
[  101.530670][    C0] x17: 1fffe00002b7f90c x16: 1fffe00002652f97 x15: ffff000013297cc0
[  101.531306][    C0] x14: 1ffff00001000e60 x13: 0000000000000000 x12: ffff6000029e4a91
[  101.531794][    C0] x11: 1fffe000029e4a90 x10: ffff6000029e4a90 x9 : dfff800000000000
[  101.532161][    C0] x8 : ffff000014f25483 x7 : 00009ffffd61b570 x6 : 0000000000000001
[  101.532615][    C0] x5 : ffff000014f25480 x4 : ffff700001bcb9aa x3 : dfff800000000000
[  101.532993][    C0] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001
[  101.533356][    C0] Call trace:
[  101.533538][    C0]  wg_cpumask_next_online+0x1c0/0x2c0
[  101.533760][    C0]  wg_packet_receive+0x978/0x1560
[  101.533976][    C0]  wg_receive+0x58/0xb0
[  101.534177][    C0]  udp_queue_rcv_one_skb+0x820/0x1a8c
[  101.534398][    C0]  udp_queue_rcv_skb+0x134/0x7e0
[  101.534603][    C0]  udp_unicast_rcv_skb+0xe8/0x2e0
[  101.534813][    C0]  __udp4_lib_rcv+0xcf0/0x31b0
[  101.535021][    C0]  udp_rcv+0x20/0x30
[  101.535339][    C0]  ip_protocol_deliver_rcu+0xbc/0x634
[  101.535564][    C0]  ip_local_deliver_finish+0x248/0x3ac
[  101.535869][    C0]  ip_local_deliver+0x16c/0x384
[  101.536082][    C0]  ip_rcv_finish+0x144/0x224
[  101.536286][    C0]  ip_rcv+0xc0/0x2b0
[  101.536482][    C0]  __netif_receive_skb_one_core+0xf4/0x170
[  101.536731][    C0]  __netif_receive_skb+0x24/0x184
[  101.536935][    C0]  process_backlog+0x24c/0x6b0
[  101.537142][    C0]  __napi_poll+0x94/0x3a4
[  101.537391][    C0]  net_rx_action+0x78c/0xb60
[  101.537590][    C0]  _stext+0x28c/0x107c
[  101.537789][    C0]  ____do_softirq+0x10/0x20
[  101.537993][    C0]  call_on_irq_stack+0x2c/0x54
[  101.538197][    C0]  do_softirq_own_stack+0x1c/0x30
[  101.538404][    C0]  do_softirq.part.0+0xd0/0xf4
[  101.538612][    C0]  __local_bh_enable_ip+0x50c/0x5d0
[  101.538823][    C0]  _raw_read_unlock_bh+0x54/0x64
[  101.539042][    C0]  wg_socket_send_skb_to_peer+0xf0/0x190
[  101.539319][    C0]  wg_socket_send_buffer_to_peer+0x110/0x160
[  101.539540][    C0]  wg_packet_send_handshake_initiation+0x1a8/0x274
[  101.539773][    C0]  wg_packet_handshake_send_worker+0x1c/0x34
[  101.540003][    C0]  process_one_work+0x780/0x184c
[  101.540216][    C0]  worker_thread+0x3cc/0xc40
[  101.540416][    C0]  kthread+0x23c/0x2a0
[  101.540675][    C0]  ret_from_fork+0x10/0x20
[  101.540884][    C0] irq event stamp: 313283
[  101.541076][    C0] hardirqs last  enabled at (313282): [<ffff80000816f1d4>] __local_bh_enable_ip+0x1e4/0x5d0
[  101.541363][    C0] hardirqs last disabled at (313283): [<ffff80000c8ec9b4>] el1_dbg+0x24/0x80
[  101.541670][    C0] softirqs last  enabled at (313274): [<ffff800009f35a60>] wg_socket_send_skb_to_peer+0xf0/0x190
[  101.542130][    C0] softirqs last disabled at (313275): [<ffff800008019cb0>] ____do_softirq+0x10/0x20
[  101.542533][    C0] ---[ end trace 0000000000000000 ]---
[  101.580111][   T26] ------------[ cut here ]------------
[  101.580910][   T26] WARNING: CPU: 1 PID: 26 at include/linux/cpumask.h:110 wg_packet_send_staged_packets+0xe38/0x1380
[  101.581463][   T26] Modules linked in:
[  101.582255][   T26] CPU: 1 PID: 26 Comm: kworker/1:1 Tainted: G        W          6.0.0-syzkaller-10822-g60bb8154d1d7 #0
[  101.583051][   T26] Hardware name: linux,dummy-virt (DT)
[  101.583450][   T26] Workqueue: wg-kex-wg2 wg_packet_handshake_receive_worker
[  101.583912][   T26] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  101.584314][   T26] pc : wg_packet_send_staged_packets+0xe38/0x1380
[  101.584714][   T26] lr : wg_packet_send_staged_packets+0x524/0x1380
[  101.585161][   T26] sp : ffff800010d67800
[  101.585446][   T26] x29: ffff800010d67800 x28: ffff000011894c00 x27: 0000000000000001
[  101.586067][   T26] x26: 0000000000000001 x25: 0000000000000002 x24: 1fffe00001ddefbe
[  101.586778][   T26] x23: ffff00000eef7de8 x22: ffff80000de5cd50 x21: ffff00000f752580
[  101.587418][   T26] x20: ffff00000eef7dc0 x19: ffff00000e340c40 x18: 000000000066eb73
[  101.588168][   T26] x17: 000000001aa3eb2b x16: 0000000016950f8c x15: 0000000000000000
[  101.588932][   T26] x14: 1ffff000021acece x13: 0000000000000000 x12: ffff600001eea4b2
[  101.589669][   T26] x11: ffff700001bcb9aa x10: dfff800000000000 x9 : 0000000000000003
[  101.590411][   T26] x8 : ffff80000de5c000 x7 : 1fffe00001c681b9 x6 : 0000000000000000
[  101.591128][   T26] x5 : ffff00000e340dc8 x4 : ffff80000de5cb68 x3 : ffff800009f2ac94
[  101.591834][   T26] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001
[  101.592582][   T26] Call trace:
[  101.592904][   T26]  wg_packet_send_staged_packets+0xe38/0x1380
[  101.593486][   T26]  wg_packet_send_keepalive+0x40/0x2a0
[  101.594151][   T26]  wg_receive_handshake_packet+0x2c8/0x7c0
[  101.594966][   T26]  wg_packet_handshake_receive_worker+0xd8/0x2ec
[  101.595366][   T26]  process_one_work+0x780/0x184c
[  101.595724][   T26]  worker_thread+0x3cc/0xc40
[  101.596152][   T26]  kthread+0x23c/0x2a0
[  101.596516][   T26]  ret_from_fork+0x10/0x20
[  101.596892][   T26] irq event stamp: 14633
[  101.597222][   T26] hardirqs last  enabled at (14631): [<ffff80000836a618>] seqcount_lockdep_reader_access.constprop.0+0xc4/0xe0
[  101.598761][   T26] hardirqs last disabled at (14633): [<ffff80000c8ec9b4>] el1_dbg+0x24/0x80
[  101.599986][   T26] softirqs last  enabled at (14628): [<ffff800009f2e19c>] wg_packet_send_staged_packets+0x20c/0x1380
[  101.600626][   T26] softirqs last disabled at (14632): [<ffff800009f2e3f0>] wg_packet_send_staged_packets+0x460/0x1380
[  101.601156][   T26] ---[ end trace 0000000000000000 ]---
[  102.706495][    T9] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
1970/01/01 00:01:42 building call list...
executing program
[  102.980371][    T9] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.191136][    T9] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.374529][    T9] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.632443][    T9] device hsr_slave_0 left promiscuous mode
[  105.675002][    T9] device hsr_slave_1 left promiscuous mode
[  105.807982][    T9] device veth1_macvtap left promiscuous mode
[  105.809320][    T9] device veth0_macvtap left promiscuous mode
[  105.819135][    T9] device veth1_vlan left promiscuous mode
[  105.820556][    T9] device veth0_vlan left promiscuous mode
executing program
[  107.754702][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  107.854366][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  108.275513][    T9] bond0 (unregistering): Released all slaves
executing program
executing program
executing program
[  116.823065][ T2201] can: request_module (can-proto-0) failed.
[  116.981490][ T2201] can: request_module (can-proto-0) failed.
[  117.155341][ T2201] can: request_module (can-proto-0) failed.
executing program
executing program
executing program
[  131.066770][ T2048] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  131.070675][ T2048] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  131.075632][ T2048] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  131.078697][ T2048] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.

VM DIAGNOSIS:
14:09:05  Registers:
info registers vcpu 0
 PC=ffff80000b45be18 X00=ffff80000b45be10 X01=0000000000000000
X02=1fffe0000d53978f X03=0000000000000001 X04=ffff800008006e10
X05=ffff700001000d8e X06=ffff000009228000 X07=00000000f2f2f2f2
X08=00000000f3f3f300 X09=00000000f2000000 X10=00000000f204f204
X11=00000000f3f3f3f3 X12=00000000f1f1f1f1 X13=0000000000000000
X14=1ffff00001000d54 X15=ffff80000f2b4600 X16=0000000000000007
X17=3030303030303030 X18=ffff000013297d38 X19=ffff80000e071e30
X20=0000000000000000 X21=0000000000000003 X22=0000000000000028
X23=ffff80000e071ec0 X24=dfff800000000000 X25=ffff80000e071e00
X26=0000000000000004 X27=ffff80000e071e30 X28=ffff800008031404
X29=ffff800008006b50 X30=ffff800008392d88  SP=ffff800008006b50
PSTATE=800003c5 N--- EL1h     FPCR=00000000 FPSR=00000010
Q00=0000000000000000:0000000000000000 Q01=0000000000000000:4110fe8000000000
Q02=24895c295111aae4:aff54213dad3cef8 Q03=0000000040000000:0000000000000000
Q04=4010040140100401:4000000000000000 Q05=4010040140100401:4010040140100401
Q06=5555400000400000:5555400000400000 Q07=0000000000000000:0000000000000000
Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000
Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000
Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000
Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000
Q16=0000000000000000:0000000000000000 Q17=0000000000000000:0000000000000000
Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000
Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000
Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000
Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000
Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000
Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000
Q30=0000000000000010:00000012b4c329a0 Q31=0000000000000000:0000000000000000
info registers vcpu 1
 PC=ffff80000c8ee040 X00=0000000000000001 X01=0000000100000002
X02=0000000000000003 X03=dfff800000000000 X04=1fffe00001d18001
X05=ffff700002220dac X06=dfff800000000000 X07=00000000f1f1f1f1
X08=ffff800011106d87 X09=dfff800000000000 X10=ffff700002220db0
X11=1fffe00001cdc382 X12=ffff700002220dcf X13=0000000000000000
X14=1ffff00002220d86 X15=ffff800011106de4 X16=0000000000000000
X17=1ffff00002220dc4 X18=0000000000000000 X19=ffff80000f1895a0
X20=0000000000000001 X21=ffff00000e340000 X22=ffff80000c8ef200
X23=0000000000000000 X24=0000000000000000 X25=0000000000000001
X26=ffff800011107090 X27=0000000000000003 X28=1ffff00001e312b4
X29=ffff800011106e80 X30=ffff80000c8ee084  SP=ffff800011106e80
PSTATE=500000c5 -Z-V EL1h     FPCR=00000000 FPSR=00000010
Q00=0000000000000000:3f844e89503751ee Q01=0000000000000000:3f847ae147ae147b
Q02=0000000000000000:4191a7f0df4848e2 Q03=0000000000000000:4126cae000000000
Q04=0000000000000000:3f843707ff0638f8 Q05=4010040140100401:4010040140100401
Q06=0000004000000000:0000004000000000 Q07=0000000000000000:3ff31d1992034fdb
Q08=0000000000000000:3fbfe6636b870978 Q09=0000000000000000:3fe1fabf8bc63064
Q10=0000000000000000:3fe0000000000000 Q11=0000000000000000:0000000000000000
Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000
Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000
Q16=0000000000000000:0000000000000000 Q17=0000000000000000:0000000000000000
Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000
Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000
Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000
Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000
Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000
Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000
Q30=000000000000000c:00000000a8399908 Q31=0000000000000000:0000000000000000