syzkaller login: [   99.210004][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[   99.217780][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[   99.226772][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
Warning: Permanently added '[localhost]:56740' (ECDSA) to the list of known hosts.
1970/01/01 00:02:25 fuzzer started
1970/01/01 00:02:29 connecting to host at localhost:40993
1970/01/01 00:02:29 checking machine...
1970/01/01 00:02:29 checking revisions...
1970/01/01 00:02:32 testing simple program...
[  152.845126][ T2208] cgroup: Unknown subsys name 'net'
executing program
[  153.357204][ T2208] cgroup: Unknown subsys name 'rlimit'
executing program
executing program
[  159.727582][ T2212] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  159.754035][ T2212] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
executing program
[  162.383028][ T2212] device hsr_slave_0 entered promiscuous mode
[  162.508659][ T2212] device hsr_slave_1 entered promiscuous mode
executing program
[  165.275920][ T2212] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  165.369160][ T2212] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  165.487890][ T2212] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  165.624655][ T2212] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  167.753692][ T2212] 8021q: adding VLAN 0 to HW filter on device bond0
[  167.878005][ T2523] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  167.913173][ T2523] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
executing program
[  169.195093][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  169.215447][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  169.279792][ T2209] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  169.289321][ T2209] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  169.368917][   T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  169.474475][ T2209] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  169.642600][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  169.649206][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  169.743986][ T2209] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  169.765892][ T2209] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  169.868035][ T2212] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
executing program
[  171.386600][ T2523] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  171.388777][ T2523] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
executing program
[  174.887515][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  174.897965][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  176.227506][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  176.237609][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  176.264627][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  176.269690][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  176.328686][ T2212] device veth0_vlan entered promiscuous mode
[  176.413883][ T2212] device veth1_vlan entered promiscuous mode
[  176.725710][   T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  176.748606][   T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  176.812865][ T2212] device veth0_macvtap entered promiscuous mode
[  176.867515][ T2212] device veth1_macvtap entered promiscuous mode
[  177.050146][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  177.057816][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  177.069562][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  177.076357][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  177.149514][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  177.169318][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
executing program
[  177.245465][ T2212] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  177.246885][ T2212] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  177.247459][ T2212] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  177.248043][ T2212] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  177.562000][    C1] ------------[ cut here ]------------
[  177.564058][    C1] WARNING: CPU: 1 PID: 55 at include/linux/cpumask.h:110 wg_cpumask_next_online+0x1c0/0x2c0
[  177.564577][    C1] Modules linked in:
[  177.565482][    C1] CPU: 1 PID: 55 Comm: kworker/u4:4 Tainted: G        W          6.0.0-syzkaller-10822-g60bb8154d1d7 #0
[  177.567425][    C1] Hardware name: linux,dummy-virt (DT)
[  177.570165][    C1] Workqueue: wg-kex-wg2 wg_packet_handshake_send_worker
[  177.572576][    C1] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  177.574830][    C1] pc : wg_cpumask_next_online+0x1c0/0x2c0
[  177.575455][    C1] lr : wg_packet_receive+0x978/0x1560
[  177.575904][    C1] sp : ffff800010ab7480
[  177.576293][    C1] x29: ffff800010ab7480 x28: 0000000000000001 x27: 1fffe00001d55219
[  177.576920][    C1] x26: 0000000000000000 x25: ffff80000de5c000 x24: 0000000000000000
[  177.577679][    C1] x23: 0000000000000003 x22: ffff80000de5cb68 x21: 0000000000000001
[  177.578360][    C1] x20: ffff00000eaa90c8 x19: ffff80000de5cd50 x18: 0000000013d75bfe
[  177.579030][    C1] x17: ffff80005cbe4000 x16: ffff800010ab8000 x15: ffff000015bf5028
[  177.579802][    C1] x14: 1ffff00002156e68 x13: 0000000000000000 x12: ffff600001d55291
[  177.580597][    C1] x11: 1fffe00001d55290 x10: ffff600001d55290 x9 : dfff800000000000
[  177.581228][    C1] x8 : ffff00000eaa9483 x7 : 00009ffffe2aad70 x6 : 0000000000000001
[  177.582119][    C1] x5 : ffff00000eaa9480 x4 : ffff700001bcb9aa x3 : dfff800000000000
[  177.582787][    C1] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001
[  177.583435][    C1] Call trace:
[  177.583735][    C1]  wg_cpumask_next_online+0x1c0/0x2c0
[  177.584254][    C1]  wg_packet_receive+0x978/0x1560
[  177.584607][    C1]  wg_receive+0x58/0xb0
[  177.585026][    C1]  udpv6_queue_rcv_one_skb+0x8f4/0x17c0
[  177.585453][    C1]  udpv6_queue_rcv_skb+0x134/0x7e0
[  177.585814][    C1]  udp6_unicast_rcv_skb+0xe8/0x270
[  177.586171][    C1]  __udp6_lib_rcv+0x8a4/0x2330
[  177.586543][    C1]  udpv6_rcv+0x1c/0x2c
[  177.586906][    C1]  ip6_protocol_deliver_rcu+0x154/0x14f0
[  177.587284][    C1]  ip6_input_finish+0x108/0x220
[  177.587618][    C1]  ip6_input+0xbc/0x2b0
[  177.587948][    C1]  ipv6_rcv+0x39c/0x47c
[  177.588268][    C1]  __netif_receive_skb_one_core+0xf4/0x170
[  177.588514][    C1]  __netif_receive_skb+0x24/0x184
[  177.588740][    C1]  process_backlog+0x24c/0x6b0
[  177.588971][    C1]  __napi_poll+0x94/0x3a4
[  177.589184][    C1]  net_rx_action+0x78c/0xb60
[  177.589415][    C1]  _stext+0x28c/0x107c
[  177.589651][    C1]  ____do_softirq+0x10/0x20
[  177.589871][    C1]  call_on_irq_stack+0x2c/0x54
[  177.590093][    C1]  do_softirq_own_stack+0x1c/0x30
[  177.590309][    C1]  do_softirq.part.0+0xd0/0xf4
[  177.590644][    C1]  __local_bh_enable_ip+0x50c/0x5d0
[  177.591035][    C1]  _raw_read_unlock_bh+0x54/0x64
[  177.591720][    C1]  wg_socket_send_skb_to_peer+0xf0/0x190
[  177.592020][    C1]  wg_socket_send_buffer_to_peer+0x110/0x160
[  177.592312][    C1]  wg_packet_send_handshake_initiation+0x1a8/0x274
[  177.592641][    C1]  wg_packet_handshake_send_worker+0x1c/0x34
[  177.592950][    C1]  process_one_work+0x780/0x184c
[  177.593269][    C1]  worker_thread+0x3cc/0xc40
[  177.593660][    C1]  kthread+0x23c/0x2a0
[  177.593924][    C1]  ret_from_fork+0x10/0x20
[  177.594199][    C1] irq event stamp: 24355
[  177.594455][    C1] hardirqs last  enabled at (24354): [<ffff80000816f1d4>] __local_bh_enable_ip+0x1e4/0x5d0
[  177.594842][    C1] hardirqs last disabled at (24355): [<ffff80000c8ec9b4>] el1_dbg+0x24/0x80
[  177.595201][    C1] softirqs last  enabled at (24346): [<ffff800009f35a60>] wg_socket_send_skb_to_peer+0xf0/0x190
[  177.595574][    C1] softirqs last disabled at (24347): [<ffff800008019cb0>] ____do_softirq+0x10/0x20
[  177.595917][    C1] ---[ end trace 0000000000000000 ]---
[  177.660803][   T25] ------------[ cut here ]------------
[  177.661839][   T25] WARNING: CPU: 1 PID: 25 at include/linux/cpumask.h:110 wg_packet_send_staged_packets+0xe38/0x1380
[  177.662458][   T25] Modules linked in:
[  177.667094][   T25] CPU: 1 PID: 25 Comm: kworker/1:1 Tainted: G        W          6.0.0-syzkaller-10822-g60bb8154d1d7 #0
[  177.669137][   T25] Hardware name: linux,dummy-virt (DT)
[  177.669528][   T25] Workqueue: wg-kex-wg2 wg_packet_handshake_receive_worker
[  177.670035][   T25] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  177.670448][   T25] pc : wg_packet_send_staged_packets+0xe38/0x1380
[  177.671547][   T25] lr : wg_packet_send_staged_packets+0x524/0x1380
[  177.672266][   T25] sp : ffff800010c97800
[  177.672517][   T25] x29: ffff800010c97800 x28: ffff000013c34c00 x27: 0000000000000001
[  177.673087][   T25] x26: 0000000000000001 x25: 0000000000000002 x24: 1fffe0000200adbe
[  177.673837][   T25] x23: ffff000010056de8 x22: ffff80000de5cd50 x21: ffff000015762580
[  177.674334][   T25] x20: ffff000010056dc0 x19: ffff00000eaacc40 x18: 0000000087bd50b3
[  177.674724][   T25] x17: 000000005d11eb56 x16: 0000000006cee686 x15: 0000000000000000
[  177.675292][   T25] x14: 1ffff00002192ece x13: 0000000000000000 x12: ffff600002aec4b2
[  177.675845][   T25] x11: ffff700001bcb9aa x10: dfff800000000000 x9 : 0000000000000003
[  177.676359][   T25] x8 : ffff80000de5c000 x7 : 1fffe00001d559b9 x6 : 0000000000000000
[  177.676986][   T25] x5 : ffff00000eaacdc8 x4 : ffff80000de5cb68 x3 : ffff800009f2ac94
[  177.677582][   T25] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001
[  177.678166][   T25] Call trace:
[  177.678467][   T25]  wg_packet_send_staged_packets+0xe38/0x1380
[  177.678895][   T25]  wg_packet_send_keepalive+0x40/0x2a0
[  177.679262][   T25]  wg_receive_handshake_packet+0x2c8/0x7c0
[  177.679628][   T25]  wg_packet_handshake_receive_worker+0xd8/0x2ec
[  177.679940][   T25]  process_one_work+0x780/0x184c
[  177.680180][   T25]  worker_thread+0x3cc/0xc40
[  177.680425][   T25]  kthread+0x23c/0x2a0
[  177.680783][   T25]  ret_from_fork+0x10/0x20
[  177.681026][   T25] irq event stamp: 46437
[  177.681376][   T25] hardirqs last  enabled at (46435): [<ffff80000836a618>] seqcount_lockdep_reader_access.constprop.0+0xc4/0xe0
[  177.681738][   T25] hardirqs last disabled at (46437): [<ffff80000c8ec9b4>] el1_dbg+0x24/0x80
[  177.682097][   T25] softirqs last  enabled at (46432): [<ffff800009f2e19c>] wg_packet_send_staged_packets+0x20c/0x1380
[  177.682546][   T25] softirqs last disabled at (46436): [<ffff800009f2e3f0>] wg_packet_send_staged_packets+0x460/0x1380
[  177.683029][   T25] ---[ end trace 0000000000000000 ]---
1970/01/01 00:02:59 building call list...
[  179.712803][ T1457] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.055654][ T1457] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
executing program
[  180.285833][ T1457] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.558802][ T1457] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
executing program
[  184.209674][ T1457] device hsr_slave_0 left promiscuous mode
[  184.265319][ T1457] device hsr_slave_1 left promiscuous mode
[  184.449876][ T1457] device veth1_macvtap left promiscuous mode
[  184.453242][ T1457] device veth0_macvtap left promiscuous mode
[  184.474755][ T1457] device veth1_vlan left promiscuous mode
[  184.477005][ T1457] device veth0_vlan left promiscuous mode
executing program
[  188.238862][ T1457] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  188.400408][ T1457] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  189.147301][ T1457] bond0 (unregistering): Released all slaves
executing program
executing program
executing program
executing program
executing program
executing program
[  205.138987][ T2204] can: request_module (can-proto-0) failed.
[  205.498736][ T2204] can: request_module (can-proto-0) failed.
[  205.697313][ T2204] can: request_module (can-proto-0) failed.
executing program

VM DIAGNOSIS:
04:10:31  Registers:
info registers vcpu 0
 PC=ffff80000816e7d0 X00=0000000000000000 X01=ffff80000de06c48
X02=0000000000000000 X03=0000000000000003 X04=1ffff0000216cf36
X05=00000000f2f2f200 X06=00000000f3f3f3f3 X07=1fffe00001244820
X08=ffff000009224100 X09=dfff800000000000 X10=ffff600002b3c2e3
X11=dfff800000000000 X12=000000000000f1f1 X13=0000000000000000
X14=1ffff0000216cf1e X15=ffff00006a9cbbc4 X16=ffff800008008000
X17=ffff80005cbc5000 X18=ffff00006a9cbb88 X19=0000000000000000
X20=ffff800010775da0 X21=ffff000009224108 X22=dead000000000122
X23=1ffff0000212bba2 X24=0000000000000001 X25=ffff80000c90e540
X26=0000000000000001 X27=0000000000000000 X28=dfff800000000000
X29=ffff800010b676b0 X30=ffff80000829c3e8  SP=ffff800010b67720
PSTATE=10000005 ---V EL1h     FPCR=00000000 FPSR=00000010
Q00=0000000000000000:0000000000000000 Q01=0000000000000000:00000000447a0000
Q02=746963696c6f7320:3a732500656c6261 Q03=0000000000000000:0000000000000000
Q04=0000000000000000:000000ff00000000 Q05=0000000000000000:0000000000000000
Q06=0000000000000000:0000040100000000 Q07=4010040140100401:4010040140100401
Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000
Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000
Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000
Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000
Q16=0000050000000000:0000050000000000 Q17=a0000000a00a8002:a000aa82aa80aa00
Q18=8020000000000000:8020080280000002 Q19=0000000000000000:0000000000000000
Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000
Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000
Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000
Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000
Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000
Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000
info registers vcpu 1
 PC=ffff8000096ada30 X00=0000000000000002 X01=0000000000000000
X02=0000000000000002 X03=1fffe00001352c2e X04=0000000000000000
X05=0000000000000002 X06=1fffe00001352c2e X07=0000000000000030
X08=ffff800010ab69f3 X09=dfff800000000000 X10=ffff700002156d3e
X11=1ffff00002156d3e X12=ffff700002156d3f X13=0000000000000000
X14=1ffff00002156d14 X15=0000000000000000 X16=0000000000000000
X17=0000000000000000 X18=0000000013d75bfe X19=ffff000009a96080
X20=ffff80000e5722e0 X21=ffff800010aad000 X22=000000000000002c
X23=dfff800000000000 X24=ffff8000107757dc X25=0000000000000003
X26=ffff000009a96080 X27=dfff800000000000 X28=000000000000003c
X29=ffff800010ab69d0 X30=ffff8000096ada30  SP=ffff800010ab69d0
PSTATE=800003c5 N--- EL1h     FPCR=00000000 FPSR=00000000
Q00=0000000000000000:0000000000000000 Q01=30253a3a30386566:000a2e6574656c70
Q02=388e9c6c4fa85ca0:0000000000007832 Q03=0000000000000000:ff00000000000000
Q04=0000000000000000:ffffffffffff0000 Q05=0010000000000000:4000000000000000
Q06=0000000000000000:4010040140100000 Q07=4010040140100401:4010040140100401
Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000
Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000
Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000
Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000
Q16=0000555010004000:0000555010004000 Q17=000000ff00ff00ff:000000ff00ff00ff
Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000
Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000
Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000
Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000
Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000
Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000
Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000