syzkaller login: [ 103.540143][ T2050] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 103.591724][ T2050] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 103.672594][ T2050] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:48304' (ECDSA) to the list of known hosts. 1970/01/01 00:02:23 fuzzer started 1970/01/01 00:02:28 connecting to host at localhost:40871 1970/01/01 00:02:28 checking machine... 1970/01/01 00:02:28 checking revisions... 1970/01/01 00:02:31 testing simple program... [ 152.061641][ T2210] cgroup: Unknown subsys name 'net' executing program [ 152.614208][ T2210] cgroup: Unknown subsys name 'rlimit' executing program executing program [ 159.466503][ T2213] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 159.523541][ T2213] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link executing program [ 162.580475][ T2213] device hsr_slave_0 entered promiscuous mode [ 162.633235][ T2213] device hsr_slave_1 entered promiscuous mode executing program [ 165.055952][ T2213] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 165.179529][ T2213] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 165.260383][ T2213] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 165.373674][ T2213] netdevsim netdevsim0 netdevsim3: renamed from eth3 executing program [ 167.819499][ T2213] 8021q: adding VLAN 0 to HW filter on device bond0 [ 167.932429][ T887] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 167.955285][ T887] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 169.353462][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 169.361467][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 169.421189][ T2532] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 169.432664][ T2532] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 169.497874][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 169.564897][ T887] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 169.784210][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 169.803327][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 169.893517][ T2532] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 169.901244][ T2532] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 169.981779][ T2213] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready executing program [ 171.180775][ T2532] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 171.182714][ T2532] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready executing program [ 174.165043][ T2532] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 174.189886][ T2532] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 175.485102][ T2532] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 175.508813][ T2532] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 175.558601][ T2213] device veth0_vlan entered promiscuous mode [ 175.566143][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 175.576277][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 175.705550][ T2213] device veth1_vlan entered promiscuous mode [ 175.983222][ T2532] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 176.000367][ T2532] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 176.071311][ T2213] device veth0_macvtap entered promiscuous mode [ 176.139096][ T2213] device veth1_macvtap entered promiscuous mode [ 176.295734][ T887] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 176.323927][ T887] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 176.340858][ T887] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 176.353204][ T887] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 176.438770][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 176.444368][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 176.506964][ T2213] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 176.512327][ T2213] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 176.514147][ T2213] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 176.515766][ T2213] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 executing program [ 176.894021][ C1] ------------[ cut here ]------------ [ 176.895244][ C1] WARNING: CPU: 1 PID: 930 at include/linux/cpumask.h:110 wg_cpumask_next_online+0x1c0/0x2c0 [ 176.895844][ C1] Modules linked in: [ 176.896270][ C1] CPU: 1 PID: 930 Comm: kworker/u4:5 Tainted: G W 6.0.0-syzkaller-12091-g1df046ab1c65 #0 [ 176.896806][ C1] Hardware name: linux,dummy-virt (DT) [ 176.897614][ C1] Workqueue: wg-kex-wg2 wg_packet_handshake_send_worker [ 176.898298][ C1] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 176.899301][ C1] pc : wg_cpumask_next_online+0x1c0/0x2c0 [ 176.900373][ C1] lr : wg_packet_receive+0x978/0x1560 [ 176.901162][ C1] sp : ffff800010ab7480 [ 176.901592][ C1] x29: ffff800010ab7480 x28: 0000000000000001 x27: 1fffe00001c79219 [ 176.902316][ C1] x26: 0000000000000000 x25: ffff80000de5c000 x24: 0000000000000000 [ 176.902990][ C1] x23: 0000000000000003 x22: ffff80000de5cb68 x21: 0000000000000001 [ 176.903720][ C1] x20: ffff00000e3c90c8 x19: ffff80000de5cd50 x18: 0000000033aff58f [ 176.904426][ C1] x17: ffff80005cbe4000 x16: ffff800010ab8000 x15: ffff00000ed8c668 [ 176.905118][ C1] x14: 1ffff00002156e68 x13: 0000000000000000 x12: ffff600001c79291 [ 176.905774][ C1] x11: 1fffe00001c79290 x10: ffff600001c79290 x9 : dfff800000000000 [ 176.906444][ C1] x8 : ffff00000e3c9483 x7 : 00009ffffe386d70 x6 : 0000000000000001 [ 176.907347][ C1] x5 : ffff00000e3c9480 x4 : ffff700001bcb9aa x3 : dfff800000000000 [ 176.908100][ C1] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001 [ 176.908771][ C1] Call trace: [ 176.909088][ C1] wg_cpumask_next_online+0x1c0/0x2c0 [ 176.909508][ C1] wg_packet_receive+0x978/0x1560 [ 176.909887][ C1] wg_receive+0x58/0xb0 [ 176.910249][ C1] udpv6_queue_rcv_one_skb+0x8f4/0x17c0 [ 176.910718][ C1] udpv6_queue_rcv_skb+0x134/0x7e0 [ 176.911098][ C1] udp6_unicast_rcv_skb+0xe8/0x270 [ 176.911505][ C1] __udp6_lib_rcv+0x8a4/0x2330 [ 176.911893][ C1] udpv6_rcv+0x1c/0x2c [ 176.912279][ C1] ip6_protocol_deliver_rcu+0x154/0x14f0 [ 176.912722][ C1] ip6_input_finish+0x108/0x220 [ 176.913204][ C1] ip6_input+0xbc/0x2b0 [ 176.913570][ C1] ipv6_rcv+0x39c/0x47c [ 176.913914][ C1] __netif_receive_skb_one_core+0xf4/0x170 [ 176.914339][ C1] __netif_receive_skb+0x24/0x184 [ 176.914726][ C1] process_backlog+0x24c/0x6b0 [ 176.915103][ C1] __napi_poll+0x94/0x3a4 [ 176.915551][ C1] net_rx_action+0x78c/0xb60 [ 176.915943][ C1] _stext+0x28c/0x107c [ 176.916303][ C1] ____do_softirq+0x10/0x20 [ 176.916668][ C1] call_on_irq_stack+0x2c/0x54 [ 176.917308][ C1] do_softirq_own_stack+0x1c/0x30 [ 176.917882][ C1] do_softirq.part.0+0xd0/0xf4 [ 176.918296][ C1] __local_bh_enable_ip+0x50c/0x5d0 [ 176.918716][ C1] _raw_read_unlock_bh+0x54/0x64 [ 176.919150][ C1] wg_socket_send_skb_to_peer+0xf0/0x190 [ 176.919586][ C1] wg_socket_send_buffer_to_peer+0x110/0x160 [ 176.919973][ C1] wg_packet_send_handshake_initiation+0x1a8/0x274 [ 176.920397][ C1] wg_packet_handshake_send_worker+0x1c/0x34 [ 176.920817][ C1] process_one_work+0x780/0x184c [ 176.921226][ C1] worker_thread+0x3cc/0xc40 [ 176.921621][ C1] kthread+0x23c/0x2a0 [ 176.922015][ C1] ret_from_fork+0x10/0x20 [ 176.922415][ C1] irq event stamp: 235637 [ 176.922781][ C1] hardirqs last enabled at (235636): [] __local_bh_enable_ip+0x1e4/0x5d0 [ 176.923334][ C1] hardirqs last disabled at (235637): [] el1_dbg+0x24/0x80 [ 176.923847][ C1] softirqs last enabled at (235628): [] wg_socket_send_skb_to_peer+0xf0/0x190 [ 176.924413][ C1] softirqs last disabled at (235629): [] ____do_softirq+0x10/0x20 [ 176.924938][ C1] ---[ end trace 0000000000000000 ]--- [ 177.005061][ T887] ------------[ cut here ]------------ [ 177.006481][ T887] WARNING: CPU: 1 PID: 887 at include/linux/cpumask.h:110 wg_packet_send_staged_packets+0xe38/0x1380 [ 177.007386][ T887] Modules linked in: [ 177.007975][ T887] CPU: 1 PID: 887 Comm: kworker/1:2 Tainted: G W 6.0.0-syzkaller-12091-g1df046ab1c65 #0 [ 177.008537][ T887] Hardware name: linux,dummy-virt (DT) [ 177.008936][ T887] Workqueue: wg-kex-wg2 wg_packet_handshake_receive_worker [ 177.009433][ T887] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 177.009867][ T887] pc : wg_packet_send_staged_packets+0xe38/0x1380 [ 177.010367][ T887] lr : wg_packet_send_staged_packets+0x524/0x1380 [ 177.010788][ T887] sp : ffff800012a97800 [ 177.011197][ T887] x29: ffff800012a97800 x28: ffff000013821c00 x27: 0000000000000001 [ 177.012259][ T887] x26: 0000000000000001 x25: 0000000000000002 x24: 1fffe000029ae42e [ 177.013284][ T887] x23: ffff000014d72168 x22: ffff80000de5cd50 x21: ffff00000f9b2ee0 [ 177.013984][ T887] x20: ffff000014d72140 x19: ffff000014990c40 x18: 00000000e018e09c [ 177.014565][ T887] x17: 00000000e6c37cd1 x16: 00000000e6abcdb6 x15: 0000000000000000 [ 177.015121][ T887] x14: 1ffff00002552ece x13: 0000000000000000 x12: ffff600001f365de [ 177.015780][ T887] x11: ffff700001bcb9aa x10: dfff800000000000 x9 : 0000000000000003 [ 177.016435][ T887] x8 : ffff80000de5c000 x7 : 1fffe000029321b9 x6 : 0000000000000000 [ 177.018558][ T887] x5 : ffff000014990dc8 x4 : ffff80000de5cb68 x3 : ffff800009f2d784 [ 177.021274][ T887] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001 [ 177.023425][ T887] Call trace: [ 177.024351][ T887] wg_packet_send_staged_packets+0xe38/0x1380 [ 177.025794][ T887] wg_packet_send_keepalive+0x40/0x2a0 [ 177.027283][ T887] wg_receive_handshake_packet+0x2c8/0x7c0 [ 177.029041][ T887] wg_packet_handshake_receive_worker+0xd8/0x2ec [ 177.030762][ T887] process_one_work+0x780/0x184c [ 177.031154][ T887] worker_thread+0x3cc/0xc40 [ 177.031566][ T887] kthread+0x23c/0x2a0 [ 177.031945][ T887] ret_from_fork+0x10/0x20 [ 177.032387][ T887] irq event stamp: 34241 [ 177.032716][ T887] hardirqs last enabled at (34239): [] seqcount_lockdep_reader_access.constprop.0+0xc4/0xe0 [ 177.033309][ T887] hardirqs last disabled at (34241): [] el1_dbg+0x24/0x80 [ 177.033785][ T887] softirqs last enabled at (34236): [] wg_packet_send_staged_packets+0x20c/0x1380 [ 177.034342][ T887] softirqs last disabled at (34240): [] wg_packet_send_staged_packets+0x460/0x1380 [ 177.034861][ T887] ---[ end trace 0000000000000000 ]--- 1970/01/01 00:02:58 building call list... [ 178.879665][ T930] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 179.173942][ T930] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 179.392590][ T930] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 executing program [ 179.694267][ T930] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 executing program [ 183.113591][ T930] device hsr_slave_0 left promiscuous mode [ 183.182146][ T930] device hsr_slave_1 left promiscuous mode [ 183.391082][ T930] device veth1_macvtap left promiscuous mode [ 183.395616][ T930] device veth0_macvtap left promiscuous mode [ 183.420213][ T930] device veth1_vlan left promiscuous mode [ 183.422814][ T930] device veth0_vlan left promiscuous mode executing program [ 187.506633][ T930] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 187.680369][ T930] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 188.420944][ T930] bond0 (unregistering): Released all slaves executing program executing program executing program executing program executing program executing program [ 205.139895][ T2205] can: request_module (can-proto-0) failed. [ 205.468629][ T2205] can: request_module (can-proto-0) failed. [ 205.704701][ T2205] can: request_module (can-proto-0) failed. executing program VM DIAGNOSIS: 20:29:05 Registers: info registers vcpu 0 PC=ffff80000b460f88 X00=ffff80000b460f80 X01=0000000000000000 X02=0000000000000000 X03=1ffff00002342f2a X04=ffff0000091a7000 X05=ffff00006a9dce40 X06=0000000000000001 X07=00009ffff2ac4638 X08=0000000000000001 X09=dfff800000000000 X10=ffff60000d53b9c8 X11=1fffe0000d53b9c8 X12=ffff60000d53b9c9 X13=1fffe00001f40b83 X14=ffff00006a9cbbbc X15=ffff00006a9cbbc4 X16=ffff800009f2f0cc X17=ffff800009f303d0 X18=ffff00006a9cbb88 X19=ffff80000e071db0 X20=0000000000000000 X21=0000000000000003 X22=0000000000000028 X23=ffff80000e071e40 X24=dfff800000000000 X25=ffff80000e071d80 X26=0000000000000004 X27=ffff80000e071db0 X28=ffff0000091a7000 X29=ffff800011a179b0 X30=ffff800008391808 SP=ffff800011a179b0 PSTATE=600000c5 -ZC- EL1h FPCR=00000000 FPSR=00000000 Q00=0000000000000000:0000000000000000 Q01=0000000000000000:0000000000000000 Q02=0000000000000000:0000000000000000 Q03=0000000000000000:0000000000000000 Q04=0000000000000000:0000000000000000 Q05=0000000000000000:0000000000000000 Q06=0000000000000000:0000000000000000 Q07=0000000000000000:0000000000000000 Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000 Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000000000000000:0000000000000000 Q17=0000000000000000:0000000000000000 Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000 info registers vcpu 1 PC=ffff800008292d6c X00=00000000000003c0 X01=00000000000003c0 X02=0000000000000003 X03=1fffe00002341369 X04=00000000f204f1f1 X05=ffff700002156d8a X06=dfff800000000000 X07=00000000f1f1f1f1 X08=ffff800010ab6a77 X09=dfff800000000000 X10=ffff700002156d4e X11=1ffff00002156d4e X12=ffff700002156d4f X13=0000000000000000 X14=1ffff00002156d34 X15=0000000000000000 X16=0000000000000000 X17=0000000000000000 X18=0000000033aff58f X19=0000000000000000 X20=ffff000011a0a5c8 X21=ffff80000e03ca80 X22=0000000000000028 X23=ffff000011a0a528 X24=ffff80000de06c48 X25=ffff80000c991f40 X26=00000000ffffffff X27=00000000000003c0 X28=ffff000011a09b40 X29=ffff800010ab6b60 X30=ffff80000c8f31f4 SP=ffff800010ab6b60 PSTATE=100003c5 ---V EL1h FPCR=00000000 FPSR=00000000 Q00=0000000000000000:0000000000000000 Q01=0000000000000000:0000000000000000 Q02=0000000000000000:0000000000000000 Q03=0000000000000000:0000000000000000 Q04=0000000000000000:0000000000000000 Q05=0000000000000000:0000000000000000 Q06=0000000000000000:0000000000000000 Q07=0000000000000000:0000000000000000 Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000 Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000000000000000:0000000000000000 Q17=0000000000000000:0000000000000000 Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000