syzkaller login: [ 106.874355][ T2050] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 106.905068][ T2050] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 106.932265][ T2050] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:8636' (ECDSA) to the list of known hosts. 1970/01/01 00:02:27 fuzzer started 1970/01/01 00:02:32 connecting to host at localhost:34791 1970/01/01 00:02:32 checking machine... 1970/01/01 00:02:32 checking revisions... 1970/01/01 00:02:35 testing simple program... [ 156.527815][ T2210] cgroup: Unknown subsys name 'net' executing program [ 157.061997][ T2210] cgroup: Unknown subsys name 'rlimit' executing program executing program [ 164.565330][ T2213] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 164.622986][ T2213] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link executing program [ 168.154652][ T2213] device hsr_slave_0 entered promiscuous mode [ 168.215527][ T2213] device hsr_slave_1 entered promiscuous mode executing program [ 170.309385][ T2213] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 170.394247][ T2213] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 170.478114][ T2213] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 170.560353][ T2213] netdevsim netdevsim0 netdevsim3: renamed from eth3 executing program [ 172.678151][ T2213] 8021q: adding VLAN 0 to HW filter on device bond0 [ 172.843529][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 172.869206][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 174.139455][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 174.170258][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 174.243071][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 174.255631][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 174.303621][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 174.380331][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready executing program [ 174.577773][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 174.582781][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 174.678241][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 174.691146][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 174.742336][ T2213] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 175.967235][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 175.969570][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready executing program [ 178.806742][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 178.813652][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 180.311886][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 180.350317][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 180.410453][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 180.424936][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 180.438059][ T2213] device veth0_vlan entered promiscuous mode executing program [ 180.563542][ T2213] device veth1_vlan entered promiscuous mode [ 180.857906][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 180.868702][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 180.920079][ T2213] device veth0_macvtap entered promiscuous mode [ 180.965482][ T2213] device veth1_macvtap entered promiscuous mode [ 181.139584][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 181.154260][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 181.161540][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 181.170777][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 181.237839][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 181.258771][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 181.312041][ T2213] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.313501][ T2213] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.314130][ T2213] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.314722][ T2213] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.731573][ C1] ------------[ cut here ]------------ [ 181.734987][ C1] WARNING: CPU: 1 PID: 9 at include/linux/cpumask.h:110 wg_cpumask_next_online+0x1c0/0x2c0 [ 181.736239][ C1] Modules linked in: [ 181.737010][ C1] CPU: 1 PID: 9 Comm: kworker/u4:0 Tainted: G W 6.0.0-syzkaller-11840-gf2b220ef93ea #0 [ 181.737785][ C1] Hardware name: linux,dummy-virt (DT) [ 181.738934][ C1] Workqueue: wg-kex-wg2 wg_packet_handshake_send_worker [ 181.740946][ C1] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 181.743482][ C1] pc : wg_cpumask_next_online+0x1c0/0x2c0 [ 181.745118][ C1] lr : wg_packet_receive+0x978/0x1560 [ 181.747068][ C1] sp : ffff800010ab7480 [ 181.748479][ C1] x29: ffff800010ab7480 x28: 0000000000000001 x27: 1fffe000014b8219 [ 181.754481][ C1] x26: 0000000000000000 x25: ffff80000de5c000 x24: 0000000000000000 [ 181.755088][ C1] x23: 0000000000000003 x22: ffff80000de5cb68 x21: 0000000000000001 [ 181.755781][ C1] x20: ffff00000a5c10c8 x19: ffff80000de5cd50 x18: 0000000093ba0bb0 [ 181.758196][ C1] x17: ffff80005cbe4000 x16: ffff800010ab8000 x15: ffff00001186a528 [ 181.759954][ C1] x14: 1ffff00002156e68 x13: 0000000000000000 x12: ffff6000014b8291 [ 181.760702][ C1] x11: 1fffe000014b8290 x10: ffff6000014b8290 x9 : dfff800000000000 [ 181.761465][ C1] x8 : ffff00000a5c1483 x7 : 00009ffffeb47d70 x6 : 0000000000000001 [ 181.762199][ C1] x5 : ffff00000a5c1480 x4 : ffff700001bcb9aa x3 : dfff800000000000 [ 181.762901][ C1] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001 [ 181.763632][ C1] Call trace: [ 181.763994][ C1] wg_cpumask_next_online+0x1c0/0x2c0 [ 181.764489][ C1] wg_packet_receive+0x978/0x1560 [ 181.764928][ C1] wg_receive+0x58/0xb0 [ 181.765334][ C1] udpv6_queue_rcv_one_skb+0x8f4/0x17c0 [ 181.765901][ C1] udpv6_queue_rcv_skb+0x134/0x7e0 [ 181.766434][ C1] udp6_unicast_rcv_skb+0xe8/0x270 [ 181.767206][ C1] __udp6_lib_rcv+0x8a4/0x2330 [ 181.767686][ C1] udpv6_rcv+0x1c/0x2c [ 181.768150][ C1] ip6_protocol_deliver_rcu+0x154/0x14f0 [ 181.768792][ C1] ip6_input_finish+0x108/0x220 [ 181.769254][ C1] ip6_input+0xbc/0x2b0 [ 181.769663][ C1] ipv6_rcv+0x39c/0x47c [ 181.770067][ C1] __netif_receive_skb_one_core+0xf4/0x170 [ 181.770540][ C1] __netif_receive_skb+0x24/0x184 [ 181.770976][ C1] process_backlog+0x24c/0x6b0 [ 181.771429][ C1] __napi_poll+0x94/0x3a4 [ 181.771836][ C1] net_rx_action+0x78c/0xb60 [ 181.772269][ C1] _stext+0x28c/0x107c [ 181.772683][ C1] ____do_softirq+0x10/0x20 [ 181.773104][ C1] call_on_irq_stack+0x2c/0x54 [ 181.773541][ C1] do_softirq_own_stack+0x1c/0x30 [ 181.773980][ C1] do_softirq.part.0+0xd0/0xf4 [ 181.774411][ C1] __local_bh_enable_ip+0x50c/0x5d0 [ 181.774856][ C1] _raw_read_unlock_bh+0x54/0x64 [ 181.775337][ C1] wg_socket_send_skb_to_peer+0xf0/0x190 [ 181.775913][ C1] wg_socket_send_buffer_to_peer+0x110/0x160 [ 181.776594][ C1] wg_packet_send_handshake_initiation+0x1a8/0x274 [ 181.777211][ C1] wg_packet_handshake_send_worker+0x1c/0x34 [ 181.777703][ C1] process_one_work+0x780/0x184c [ 181.778165][ C1] worker_thread+0x3cc/0xc40 [ 181.778590][ C1] kthread+0x23c/0x2a0 [ 181.779003][ C1] ret_from_fork+0x10/0x20 [ 181.779470][ C1] irq event stamp: 117673 [ 181.779866][ C1] hardirqs last enabled at (117672): [] __local_bh_enable_ip+0x1e4/0x5d0 [ 181.780527][ C1] hardirqs last disabled at (117673): [] el1_dbg+0x24/0x80 [ 181.781079][ C1] softirqs last enabled at (117664): [] wg_socket_send_skb_to_peer+0xf0/0x190 [ 181.781713][ C1] softirqs last disabled at (117665): [] ____do_softirq+0x10/0x20 [ 181.782301][ C1] ---[ end trace 0000000000000000 ]--- [ 181.802544][ C1] ------------[ cut here ]------------ [ 181.804893][ C1] WARNING: CPU: 1 PID: 21 at include/linux/cpumask.h:110 wg_packet_send_staged_packets+0xe38/0x1380 [ 181.805695][ C1] Modules linked in: [ 181.806284][ C1] CPU: 1 PID: 21 Comm: kworker/1:0 Tainted: G W 6.0.0-syzkaller-11840-gf2b220ef93ea #0 [ 181.807056][ C1] Hardware name: linux,dummy-virt (DT) [ 181.807533][ C1] Workqueue: wg-crypt-wg0 wg_packet_decrypt_worker [ 181.808079][ C1] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 181.808612][ C1] pc : wg_packet_send_staged_packets+0xe38/0x1380 [ 181.809090][ C1] lr : wg_packet_send_staged_packets+0x524/0x1380 [ 181.809574][ C1] sp : ffff800010ab7960 [ 181.810428][ C1] x29: ffff800010ab7960 x28: ffff000013cf4800 x27: 0000000000000001 [ 181.811160][ C1] x26: 0000000000000001 x25: 0000000000000002 x24: 1fffe000029e1b1e [ 181.811885][ C1] x23: ffff000014f0d8e8 x22: ffff80000de5cd50 x21: ffff00000f970960 [ 181.812612][ C1] x20: ffff000014f0d8c0 x19: ffff00000a5c0c40 x18: ffff00006a9eab88 [ 181.813344][ C1] x17: ffff80005cbe4000 x16: ffff800010ab8000 x15: 0000000000008000 [ 181.814089][ C1] x14: 1ffff00002156efa x13: 1fffe0000125b4b3 x12: ffff600001f2e12e [ 181.814750][ C1] x11: ffff700001bcb9aa x10: dfff800000000000 x9 : 0000000000000003 [ 181.815493][ C1] x8 : ffff80000de5c000 x7 : 1fffe000014b81b9 x6 : 0000000000000000 [ 181.816423][ C1] x5 : ffff00000a5c0dc8 x4 : ffff80000de5cb68 x3 : ffff800009f2c124 [ 181.817307][ C1] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001 [ 181.818001][ C1] Call trace: [ 181.818400][ C1] wg_packet_send_staged_packets+0xe38/0x1380 [ 181.818953][ C1] wg_packet_rx_poll+0xd94/0x1580 [ 181.819441][ C1] __napi_poll+0x94/0x3a4 [ 181.819951][ C1] net_rx_action+0x78c/0xb60 [ 181.820395][ C1] _stext+0x28c/0x107c [ 181.820808][ C1] ____do_softirq+0x10/0x20 [ 181.821243][ C1] call_on_irq_stack+0x2c/0x54 [ 181.821747][ C1] do_softirq_own_stack+0x1c/0x30 [ 181.822247][ C1] do_softirq.part.0+0xd0/0xf4 [ 181.822775][ C1] __local_bh_enable_ip+0x50c/0x5d0 [ 181.823218][ C1] _raw_spin_unlock_bh+0x54/0x64 [ 181.823681][ C1] wg_packet_decrypt_worker+0x210/0x3c0 [ 181.824154][ C1] process_one_work+0x780/0x184c [ 181.824619][ C1] worker_thread+0x3cc/0xc40 [ 181.825033][ C1] kthread+0x23c/0x2a0 [ 181.825441][ C1] ret_from_fork+0x10/0x20 [ 181.826010][ C1] irq event stamp: 10029 [ 181.826393][ C1] hardirqs last enabled at (10028): [] seqcount_lockdep_reader_access.constprop.0+0xc4/0xe0 [ 181.827250][ C1] hardirqs last disabled at (10029): [] el1_dbg+0x24/0x80 [ 181.827913][ C1] softirqs last enabled at (10006): [] wg_packet_decrypt_worker+0x210/0x3c0 [ 181.828638][ C1] softirqs last disabled at (10007): [] ____do_softirq+0x10/0x20 [ 181.829374][ C1] ---[ end trace 0000000000000000 ]--- 1970/01/01 00:03:02 building call list... executing program [ 183.954003][ T9] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.313970][ T9] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.583583][ T9] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.872499][ T9] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 executing program [ 188.643172][ T9] device hsr_slave_0 left promiscuous mode [ 188.720251][ T9] device hsr_slave_1 left promiscuous mode [ 188.908018][ T9] device veth1_macvtap left promiscuous mode [ 188.910274][ T9] device veth0_macvtap left promiscuous mode [ 188.920514][ T9] device veth1_vlan left promiscuous mode [ 188.922679][ T9] device veth0_vlan left promiscuous mode executing program executing program [ 192.861497][ T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 193.016947][ T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 193.855685][ T9] bond0 (unregistering): Released all slaves executing program executing program executing program executing program executing program executing program VM DIAGNOSIS: 18:55:19 Registers: info registers vcpu 0 PC=ffff800009127000 X00=0043a68da8a0e84b X01=0043155e3b0fbb69 X02=7af4ada2f7638d36 X03=00393c369f60eace X04=e81d27c82e8153d1 X05=0002facfac60c517 X06=0039e95f607da536 X07=0042024e1835dfc4 X08=000001b085837fc7 X09=003cbed287235426 X10=003f60724fe27d46 X11=00073325047ca108 X12=7fb6246785be7adb X13=0007532c229d4a9a X14=0007369a656eff43 X15=8521c822468e8ffc X16=00ec6200bfd82a6d X17=00201e702722e680 X18=dec2c19c95de2d88 X19=00067cc088bb9dd2 X20=c15f9c87c81e9d61 X21=2edb56af886044fe X22=00e83ef93a5b59fe X23=0003b9f5fa8dc5f7 X24=00087e04356fe2d0 X25=000514a2045f2b2b X26=00012f62824eaea9 X27=003ffffffffffff8 X28=ffff00000f970bf8 X29=ffff800010b67400 X30=000000070333d890 SP=ffff800010b67400 PSTATE=20000005 --C- EL1h FPCR=00000000 FPSR=00000000 Q00=0000000000000000:0000000000000000 Q01=30253a3a30386566:000a2e6574656c70 Q02=388e9c6c4fa85ca0:0000000000007832 Q03=0000000000000000:ff00000000000000 Q04=0000000000000000:ffffffffffff0000 Q05=0010000000000000:4000000000000000 Q06=0000000000000000:4010040140100000 Q07=4010040140100401:4010040140100401 Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000 Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000555010004000:0000555010004000 Q17=000000ff00ff00ff:000000ff00ff00ff Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000 info registers vcpu 1 PC=ffff8000096aeec0 X00=0000000000000002 X01=0000000000000000 X02=0000000000000002 X03=1fffe00001355a2e X04=0000000000000000 X05=0000000000000002 X06=1fffe00001355a2e X07=0000000000000030 X08=ffff800010ab6883 X09=dfff800000000000 X10=ffff700002156d10 X11=1ffff00002156d10 X12=ffff700002156d11 X13=0000000000000000 X14=1ffff00002156ce6 X15=0000000000000000 X16=0000000000000000 X17=0000000000000000 X18=0000000093ba0bb0 X19=ffff000009aad080 X20=ffff80000e573720 X21=ffff800010aad000 X22=0000000000000067 X23=dfff800000000000 X24=ffff8000107777ad X25=0000000000000003 X26=ffff000009aad080 X27=dfff800000000000 X28=000000000000004d X29=ffff800010ab6860 X30=ffff8000096aeec0 SP=ffff800010ab6860 PSTATE=800003c5 N--- EL1h FPCR=00000000 FPSR=00000000 Q00=0000000000000000:0000000000000000 Q01=30253a3a30386566:000a2e6574656c70 Q02=388e9c6c4fa85ca0:0000000000007832 Q03=0000000000000000:ff00000000000000 Q04=0000000000000000:ffffffffffff0000 Q05=0010000000000000:4000000000000000 Q06=0000000000000000:4010040140100000 Q07=4010040140100401:4010040140100401 Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000 Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000555010004000:0000555010004000 Q17=000000ff00ff00ff:000000ff00ff00ff Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000