syzkaller login: [ 97.418182][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 97.447891][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 97.465637][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:44347' (ECDSA) to the list of known hosts. 1970/01/01 00:02:16 fuzzer started 1970/01/01 00:02:20 connecting to host at localhost:43817 1970/01/01 00:02:21 checking machine... 1970/01/01 00:02:21 checking revisions... 1970/01/01 00:02:23 testing simple program... [ 144.310396][ T2209] cgroup: Unknown subsys name 'net' executing program [ 144.874374][ T2209] cgroup: Unknown subsys name 'rlimit' executing program executing program [ 151.585088][ T2212] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 151.621058][ T2212] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link executing program [ 154.592303][ T2212] device hsr_slave_0 entered promiscuous mode [ 154.650484][ T2212] device hsr_slave_1 entered promiscuous mode [ 156.605086][ T2212] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 156.703562][ T2212] netdevsim netdevsim0 netdevsim1: renamed from eth1 executing program [ 156.787210][ T2212] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 156.860190][ T2212] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 159.239742][ T2212] 8021q: adding VLAN 0 to HW filter on device bond0 [ 159.354786][ T2524] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 159.370002][ T2524] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready executing program [ 160.711577][ T1685] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 160.729523][ T1685] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 160.788605][ T1685] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 160.796405][ T1685] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 160.894087][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 160.959459][ T90] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 161.207595][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 161.228094][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 161.258404][ T2524] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 161.269425][ T2524] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 161.318984][ T2212] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 162.587741][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 162.589739][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready executing program [ 165.401726][ T2531] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 165.408759][ T2531] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready executing program [ 166.718526][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 166.729733][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 166.761638][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 166.769220][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 166.811856][ T2212] device veth0_vlan entered promiscuous mode [ 166.932157][ T2212] device veth1_vlan entered promiscuous mode [ 167.246475][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 167.268165][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 167.350549][ T2212] device veth0_macvtap entered promiscuous mode [ 167.424245][ T2212] device veth1_macvtap entered promiscuous mode [ 167.572134][ T2210] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 167.599189][ T2210] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 167.609425][ T2210] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 167.633379][ T2210] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 167.730454][ T2531] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 167.739713][ T2531] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 167.811833][ T2212] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 167.813360][ T2212] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 167.814017][ T2212] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 167.814555][ T2212] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 168.149185][ C1] ------------[ cut here ]------------ [ 168.150387][ C1] WARNING: CPU: 1 PID: 35 at include/linux/cpumask.h:110 wg_cpumask_next_online+0x1c0/0x2c0 [ 168.153337][ C1] Modules linked in: [ 168.153771][ C1] CPU: 1 PID: 35 Comm: kworker/u4:2 Tainted: G W 6.0.0-syzkaller-10712-g27bc50fc9064 #0 [ 168.154214][ C1] Hardware name: linux,dummy-virt (DT) [ 168.154860][ C1] Workqueue: wg-kex-wg2 wg_packet_handshake_send_worker [ 168.155601][ C1] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 168.156495][ C1] pc : wg_cpumask_next_online+0x1c0/0x2c0 [ 168.157253][ C1] lr : wg_packet_receive+0x978/0x1560 [ 168.157603][ C1] sp : ffff800010aa7480 [ 168.157922][ C1] x29: ffff800010aa7480 x28: 0000000000000001 x27: 1fffe00001cdf219 [ 168.158475][ C1] x26: 0000000000000000 x25: ffff80000de4c000 x24: 0000000000000000 [ 168.159140][ C1] x23: 0000000000000003 x22: ffff80000de4cb68 x21: 0000000000000001 [ 168.159697][ C1] x20: ffff00000e6f90c8 x19: ffff80000de4cd50 x18: 00000000e0ec65a0 [ 168.160261][ C1] x17: ffff80005cbf4000 x16: ffff800010aa8000 x15: ffff00001012cca8 [ 168.160839][ C1] x14: 1ffff00002154e68 x13: 0000000000000000 x12: ffff600001cdf291 [ 168.161383][ C1] x11: 1fffe00001cdf290 x10: ffff600001cdf290 x9 : dfff800000000000 [ 168.161986][ C1] x8 : ffff00000e6f9483 x7 : 00009ffffe320d70 x6 : 0000000000000001 [ 168.162664][ C1] x5 : ffff00000e6f9480 x4 : ffff700001bc99aa x3 : dfff800000000000 [ 168.163405][ C1] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001 [ 168.163970][ C1] Call trace: [ 168.164257][ C1] wg_cpumask_next_online+0x1c0/0x2c0 [ 168.164631][ C1] wg_packet_receive+0x978/0x1560 [ 168.164938][ C1] wg_receive+0x58/0xb0 [ 168.165220][ C1] udpv6_queue_rcv_one_skb+0x8f4/0x17c0 [ 168.165550][ C1] udpv6_queue_rcv_skb+0x134/0x7e0 [ 168.165914][ C1] udp6_unicast_rcv_skb+0xe8/0x270 [ 168.166262][ C1] __udp6_lib_rcv+0x8a4/0x2330 [ 168.166592][ C1] udpv6_rcv+0x1c/0x2c [ 168.166884][ C1] ip6_protocol_deliver_rcu+0x154/0x14f0 [ 168.167221][ C1] ip6_input_finish+0x108/0x220 [ 168.168345][ C1] ip6_input+0xbc/0x2b0 [ 168.169384][ C1] ipv6_rcv+0x39c/0x47c [ 168.171363][ C1] __netif_receive_skb_one_core+0xf4/0x170 [ 168.172142][ C1] __netif_receive_skb+0x24/0x184 [ 168.172769][ C1] process_backlog+0x24c/0x6b0 [ 168.173266][ C1] __napi_poll+0x94/0x3a4 [ 168.174067][ C1] net_rx_action+0x78c/0xb60 [ 168.174562][ C1] _stext+0x28c/0x107c [ 168.174984][ C1] ____do_softirq+0x10/0x20 [ 168.175390][ C1] call_on_irq_stack+0x2c/0x54 [ 168.175824][ C1] do_softirq_own_stack+0x1c/0x30 [ 168.176234][ C1] do_softirq.part.0+0xd0/0xf4 [ 168.176752][ C1] __local_bh_enable_ip+0x50c/0x5d0 [ 168.177143][ C1] _raw_read_unlock_bh+0x54/0x64 [ 168.177586][ C1] wg_socket_send_skb_to_peer+0xf0/0x190 [ 168.178121][ C1] wg_socket_send_buffer_to_peer+0x110/0x160 [ 168.178609][ C1] wg_packet_send_handshake_initiation+0x1a8/0x274 [ 168.179130][ C1] wg_packet_handshake_send_worker+0x1c/0x34 [ 168.179600][ C1] process_one_work+0x780/0x184c [ 168.180081][ C1] worker_thread+0x3cc/0xc40 [ 168.180547][ C1] kthread+0x23c/0x2a0 [ 168.180969][ C1] ret_from_fork+0x10/0x20 [ 168.181409][ C1] irq event stamp: 461237 [ 168.181828][ C1] hardirqs last enabled at (461236): [] __local_bh_enable_ip+0x1e4/0x5d0 [ 168.182447][ C1] hardirqs last disabled at (461237): [] el1_dbg+0x24/0x80 [ 168.183343][ C1] softirqs last enabled at (461228): [] wg_socket_send_skb_to_peer+0xf0/0x190 [ 168.184216][ C1] softirqs last disabled at (461229): [] ____do_softirq+0x10/0x20 [ 168.184854][ C1] ---[ end trace 0000000000000000 ]--- [ 168.257866][ T2531] ------------[ cut here ]------------ [ 168.258548][ T2531] WARNING: CPU: 1 PID: 2531 at include/linux/cpumask.h:110 wg_packet_send_staged_packets+0xe38/0x1380 [ 168.258984][ T2531] Modules linked in: [ 168.259286][ T2531] CPU: 1 PID: 2531 Comm: kworker/1:4 Tainted: G W 6.0.0-syzkaller-10712-g27bc50fc9064 #0 [ 168.259696][ T2531] Hardware name: linux,dummy-virt (DT) [ 168.259999][ T2531] Workqueue: wg-kex-wg2 wg_packet_handshake_receive_worker [ 168.260402][ T2531] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 168.260777][ T2531] pc : wg_packet_send_staged_packets+0xe38/0x1380 [ 168.261087][ T2531] lr : wg_packet_send_staged_packets+0x524/0x1380 [ 168.261496][ T2531] sp : ffff8000119e7800 [ 168.261999][ T2531] x29: ffff8000119e7800 x28: ffff000013e7c000 x27: 0000000000000001 [ 168.262694][ T2531] x26: 0000000000000001 x25: 0000000000000002 x24: 1fffe00003287396 [ 168.263125][ T2531] x23: ffff000019439ca8 x22: ffff80000de4cd50 x21: ffff000012e5aee0 [ 168.263688][ T2531] x20: ffff000019439c80 x19: ffff0000131a8c40 x18: 00000000733fd76c [ 168.264138][ T2531] x17: 00000000d6c1371d x16: 000000001826bfb8 x15: 0000000000000000 [ 168.264588][ T2531] x14: 1ffff0000233cece x13: 0000000000000000 x12: ffff6000025cb5de [ 168.265205][ T2531] x11: ffff700001bc99aa x10: dfff800000000000 x9 : 0000000000000003 [ 168.265751][ T2531] x8 : ffff80000de4c000 x7 : 1fffe000026351b9 x6 : 0000000000000000 [ 168.266224][ T2531] x5 : ffff0000131a8dc8 x4 : ffff80000de4cb68 x3 : ffff800009f29754 [ 168.266698][ T2531] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001 [ 168.267294][ T2531] Call trace: [ 168.267561][ T2531] wg_packet_send_staged_packets+0xe38/0x1380 [ 168.267976][ T2531] wg_packet_send_keepalive+0x40/0x2a0 [ 168.268830][ T2531] wg_receive_handshake_packet+0x2c8/0x7c0 [ 168.270298][ T2531] wg_packet_handshake_receive_worker+0xd8/0x2ec [ 168.271745][ T2531] process_one_work+0x780/0x184c [ 168.273838][ T2531] worker_thread+0x3cc/0xc40 [ 168.275277][ T2531] kthread+0x23c/0x2a0 [ 168.276353][ T2531] ret_from_fork+0x10/0x20 [ 168.277504][ T2531] irq event stamp: 2971 [ 168.278039][ T2531] hardirqs last enabled at (2969): [] seqcount_lockdep_reader_access.constprop.0+0xc4/0xe0 [ 168.278743][ T2531] hardirqs last disabled at (2971): [] el1_dbg+0x24/0x80 [ 168.279155][ T2531] softirqs last enabled at (2966): [] wg_packet_send_staged_packets+0x20c/0x1380 [ 168.279581][ T2531] softirqs last disabled at (2970): [] wg_packet_send_staged_packets+0x460/0x1380 [ 168.280076][ T2531] ---[ end trace 0000000000000000 ]--- executing program 1970/01/01 00:02:49 building call list... [ 170.576682][ T35] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 170.906221][ T35] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 171.170276][ T35] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 171.420965][ T35] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 executing program executing program [ 174.889446][ T35] device hsr_slave_0 left promiscuous mode [ 174.941506][ T35] device hsr_slave_1 left promiscuous mode [ 175.124898][ T35] device veth1_macvtap left promiscuous mode [ 175.126827][ T35] device veth0_macvtap left promiscuous mode [ 175.129116][ T35] device veth1_vlan left promiscuous mode [ 175.130840][ T35] device veth0_vlan left promiscuous mode executing program [ 178.591167][ T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 178.756264][ T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 179.436409][ T35] bond0 (unregistering): Released all slaves executing program executing program executing program executing program executing program [ 193.723972][ T2205] can: request_module (can-proto-0) failed. [ 194.073862][ T2205] can: request_module (can-proto-0) failed. [ 194.264791][ T2205] can: request_module (can-proto-0) failed. executing program VM DIAGNOSIS: 02:23:51 Registers: info registers vcpu 0 PC=ffff80000b4598d8 X00=ffff80000b4598d0 X01=0000000000000000 X02=0000000000000003 X03=1fffe00001246369 X04=1ffff00002178f84 X05=0000000000000000 X06=dfff800000000000 X07=00000000f1f1f1f1 X08=ffff6000023b42f7 X09=dfff800000000000 X10=ffff700002134271 X11=1ffff00002134271 X12=ffff700002134272 X13=0000000000000000 X14=1ffff00002178eee X15=000000400005def8 X16=0000000000000000 X17=0000000000000000 X18=0000000000000000 X19=ffff80000e061e30 X20=0000000000000000 X21=0000000000000003 X22=0000000000000028 X23=ffff80000e061ec0 X24=dfff800000000000 X25=ffff80000e061e00 X26=0000000000000004 X27=ffff80000e061e30 X28=0000000000000000 X29=ffff800010bc7bc0 X30=ffff800008391d98 SP=ffff800010bc7bc0 PSTATE=100000c5 ---V EL1h FPCR=00000000 FPSR=00000010 Q00=0000000000000000:0000000000000000 Q01=0000000000000000:414fffffe0000000 Q02=15669023b4ec18b6:8a3f2d50a4ffd17a Q03=0000000040000000:0000000000000000 Q04=4010040140100401:4000000000000000 Q05=4010040140100401:4010040140100401 Q06=5555400000400000:5555400000400000 Q07=0000000000000000:0000000000000000 Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000 Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000000000000000:0000000000000000 Q17=0000000000000000:0000000000000000 Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000010:0000001f39cee5b0 Q31=0000000000000000:0000000000000000 info registers vcpu 1 PC=ffff8000096ac4f0 X00=0000000000000002 X01=0000000000000000 X02=0000000000000002 X03=1fffe0000134d22e X04=0000000000000000 X05=0000000000000002 X06=1fffe0000134d22e X07=0000000000000030 X08=ffff800010aa6a73 X09=dfff800000000000 X10=ffff700002154d4e X11=1ffff00002154d4e X12=ffff700002154d4f X13=0000000000000000 X14=1ffff00002154d24 X15=0000000000000000 X16=0000000000000000 X17=0000000000000000 X18=00000000e0ec65a0 X19=ffff000009a69080 X20=ffff80000e5622e0 X21=ffff800010a9d000 X22=000000000000005f X23=dfff800000000000 X24=ffff8000107657df X25=0000000000000006 X26=ffff000009a69080 X27=dfff800000000000 X28=000000000000003f X29=ffff800010aa6a50 X30=ffff8000096ac4f0 SP=ffff800010aa6a50 PSTATE=800003c5 N--- EL1h FPCR=00000000 FPSR=00000000 Q00=0000000000000000:0000000000000000 Q01=30253a3a30386566:000a2e6574656c70 Q02=388e9c6c4fa85ca0:0000000000007832 Q03=0000000000000000:ff00000000000000 Q04=0000000000000000:ffffffffffff0000 Q05=0010000000000000:4000000000000000 Q06=0000000000000000:4010040140100000 Q07=4010040140100401:4010040140100401 Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000 Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000555010004000:0000555010004000 Q17=000000ff00ff00ff:000000ff00ff00ff Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000