syzkaller login: [ 106.136521][ T2051] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 106.147085][ T2051] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 106.164513][ T2051] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:56670' (ECDSA) to the list of known hosts. 1970/01/01 00:02:16 fuzzer started 1970/01/01 00:02:20 connecting to host at localhost:41353 1970/01/01 00:02:20 checking machine... 1970/01/01 00:02:20 checking revisions... 1970/01/01 00:02:23 testing simple program... [ 143.976876][ T2211] cgroup: Unknown subsys name 'net' executing program [ 144.615185][ T2211] cgroup: Unknown subsys name 'rlimit' [ 146.819114][ C0] hrtimer: interrupt took 81214112 ns executing program executing program [ 151.545514][ T2214] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 151.586344][ T2214] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link executing program [ 154.834423][ T2214] device hsr_slave_0 entered promiscuous mode [ 154.910922][ T2214] device hsr_slave_1 entered promiscuous mode executing program [ 156.819640][ T2214] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 156.905557][ T2214] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 157.016970][ T2214] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 157.102663][ T2214] netdevsim netdevsim0 netdevsim3: renamed from eth3 executing program [ 159.654965][ T2214] 8021q: adding VLAN 0 to HW filter on device bond0 [ 159.793328][ T1686] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 159.821397][ T1686] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 161.182097][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 161.200530][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 161.263749][ T1686] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 161.284776][ T1686] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 161.364305][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 161.425023][ T1686] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 161.604051][ T2525] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 161.616341][ T2525] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 161.703801][ T2525] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 161.710973][ T2525] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 161.757132][ T2214] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready executing program [ 163.086426][ T1686] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 163.126070][ T1686] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready executing program [ 166.566886][ T2525] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 166.575035][ T2525] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready executing program [ 168.056311][ T2525] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 168.069095][ T2525] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 168.121753][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 168.130290][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 168.186271][ T2214] device veth0_vlan entered promiscuous mode [ 168.341952][ T2214] device veth1_vlan entered promiscuous mode [ 168.661296][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 168.690787][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 168.790986][ T2214] device veth0_macvtap entered promiscuous mode [ 168.869778][ T2214] device veth1_macvtap entered promiscuous mode [ 169.033089][ T91] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 169.045967][ T91] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 169.061259][ T91] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 169.067367][ T91] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 169.171144][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 169.186614][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 169.274142][ T2214] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 169.275533][ T2214] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 169.276019][ T2214] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 169.276541][ T2214] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 169.637564][ C0] ------------[ cut here ]------------ [ 169.638686][ C0] WARNING: CPU: 0 PID: 1006 at include/linux/cpumask.h:110 wg_cpumask_next_online+0x1c0/0x2c0 [ 169.639413][ C0] Modules linked in: [ 169.639891][ C0] CPU: 0 PID: 1006 Comm: kworker/u4:6 Tainted: G W 6.0.0-syzkaller-10822-g60bb8154d1d7 #0 [ 169.640430][ C0] Hardware name: linux,dummy-virt (DT) [ 169.641019][ C0] Workqueue: wg-kex-wg2 wg_packet_handshake_send_worker [ 169.641982][ C0] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 169.642776][ C0] pc : wg_cpumask_next_online+0x1c0/0x2c0 [ 169.643140][ C0] lr : wg_packet_receive+0x978/0x1560 [ 169.643490][ C0] sp : ffff800008007480 [ 169.643771][ C0] x29: ffff800008007480 x28: 0000000000000001 x27: 1fffe00001cc1219 [ 169.644366][ C0] x26: 0000000000000000 x25: ffff80000de5c000 x24: 0000000000000000 [ 169.644928][ C0] x23: 0000000000000003 x22: ffff80000de5cb68 x21: 0000000000000001 [ 169.645505][ C0] x20: ffff00000e6090c8 x19: ffff80000de5cd50 x18: 00000000ec65860f [ 169.646551][ C0] x17: ffff80005cbc5000 x16: ffff800008008000 x15: ffff000013b623e8 [ 169.647208][ C0] x14: 1ffff00001000e68 x13: 0000000000000000 x12: ffff600001cc1291 [ 169.648001][ C0] x11: 1fffe00001cc1290 x10: ffff600001cc1290 x9 : dfff800000000000 [ 169.648779][ C0] x8 : ffff00000e609483 x7 : 00009ffffe33ed70 x6 : 0000000000000001 [ 169.649400][ C0] x5 : ffff00000e609480 x4 : ffff700001bcb9aa x3 : dfff800000000000 [ 169.649982][ C0] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001 [ 169.650593][ C0] Call trace: [ 169.650905][ C0] wg_cpumask_next_online+0x1c0/0x2c0 [ 169.651288][ C0] wg_packet_receive+0x978/0x1560 [ 169.651644][ C0] wg_receive+0x58/0xb0 [ 169.651983][ C0] udpv6_queue_rcv_one_skb+0x8f4/0x17c0 [ 169.652379][ C0] udpv6_queue_rcv_skb+0x134/0x7e0 [ 169.652747][ C0] udp6_unicast_rcv_skb+0xe8/0x270 [ 169.653115][ C0] __udp6_lib_rcv+0x8a4/0x2330 [ 169.653502][ C0] udpv6_rcv+0x1c/0x2c [ 169.653821][ C0] ip6_protocol_deliver_rcu+0x154/0x14f0 [ 169.654210][ C0] ip6_input_finish+0x108/0x220 [ 169.654579][ C0] ip6_input+0xbc/0x2b0 [ 169.654924][ C0] ipv6_rcv+0x39c/0x47c [ 169.655274][ C0] __netif_receive_skb_one_core+0xf4/0x170 [ 169.655679][ C0] __netif_receive_skb+0x24/0x184 [ 169.656037][ C0] process_backlog+0x24c/0x6b0 [ 169.656429][ C0] __napi_poll+0x94/0x3a4 [ 169.656767][ C0] net_rx_action+0x78c/0xb60 [ 169.657116][ C0] _stext+0x28c/0x107c [ 169.657746][ C0] ____do_softirq+0x10/0x20 [ 169.658152][ C0] call_on_irq_stack+0x2c/0x54 [ 169.658710][ C0] do_softirq_own_stack+0x1c/0x30 [ 169.659062][ C0] do_softirq.part.0+0xd0/0xf4 [ 169.659427][ C0] __local_bh_enable_ip+0x50c/0x5d0 [ 169.659796][ C0] _raw_read_unlock_bh+0x54/0x64 [ 169.660151][ C0] wg_socket_send_skb_to_peer+0xf0/0x190 [ 169.660513][ C0] wg_socket_send_buffer_to_peer+0x110/0x160 [ 169.660876][ C0] wg_packet_send_handshake_initiation+0x1a8/0x274 [ 169.661282][ C0] wg_packet_handshake_send_worker+0x1c/0x34 [ 169.661653][ C0] process_one_work+0x780/0x184c [ 169.661976][ C0] worker_thread+0x3cc/0xc40 [ 169.662314][ C0] kthread+0x23c/0x2a0 [ 169.662686][ C0] ret_from_fork+0x10/0x20 [ 169.663045][ C0] irq event stamp: 290921 [ 169.663386][ C0] hardirqs last enabled at (290920): [] __local_bh_enable_ip+0x1e4/0x5d0 [ 169.663847][ C0] hardirqs last disabled at (290921): [] el1_dbg+0x24/0x80 [ 169.664337][ C0] softirqs last enabled at (290912): [] wg_socket_send_skb_to_peer+0xf0/0x190 [ 169.665004][ C0] softirqs last disabled at (290913): [] ____do_softirq+0x10/0x20 [ 169.665502][ C0] ---[ end trace 0000000000000000 ]--- [ 169.684802][ T25] ------------[ cut here ]------------ [ 169.686068][ T25] WARNING: CPU: 1 PID: 25 at include/linux/cpumask.h:110 wg_packet_send_staged_packets+0xe38/0x1380 [ 169.686860][ T25] Modules linked in: [ 169.687483][ T25] CPU: 1 PID: 25 Comm: kworker/1:1 Tainted: G W 6.0.0-syzkaller-10822-g60bb8154d1d7 #0 [ 169.688298][ T25] Hardware name: linux,dummy-virt (DT) [ 169.688780][ T25] Workqueue: wg-kex-wg2 wg_packet_handshake_receive_worker [ 169.689436][ T25] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 169.690093][ T25] pc : wg_packet_send_staged_packets+0xe38/0x1380 [ 169.690591][ T25] lr : wg_packet_send_staged_packets+0x524/0x1380 [ 169.691087][ T25] sp : ffff800010c97800 [ 169.691489][ T25] x29: ffff800010c97800 x28: ffff000011972c00 x27: 0000000000000001 [ 169.692254][ T25] x26: 0000000000000001 x25: 0000000000000002 x24: 1fffe00002657c2e [ 169.693013][ T25] x23: ffff0000132be168 x22: ffff80000de5cd50 x21: ffff000013922580 [ 169.693773][ T25] x20: ffff0000132be140 x19: ffff00000e9d0c40 x18: 0000000018742df5 [ 169.694569][ T25] x17: 0000000056363ea2 x16: 00000000d8ef8069 x15: 0000000000000000 [ 169.695327][ T25] x14: 1ffff00002192ece x13: 0000000000000000 x12: ffff6000027244b2 [ 169.696063][ T25] x11: ffff700001bcb9aa x10: dfff800000000000 x9 : 0000000000000003 [ 169.696820][ T25] x8 : ffff80000de5c000 x7 : 1fffe00001d3a1b9 x6 : 0000000000000000 [ 169.697857][ T25] x5 : ffff00000e9d0dc8 x4 : ffff80000de5cb68 x3 : ffff800009f2ac94 [ 169.698824][ T25] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001 [ 169.699537][ T25] Call trace: [ 169.699904][ T25] wg_packet_send_staged_packets+0xe38/0x1380 [ 169.700453][ T25] wg_packet_send_keepalive+0x40/0x2a0 [ 169.700925][ T25] wg_receive_handshake_packet+0x2c8/0x7c0 [ 169.701442][ T25] wg_packet_handshake_receive_worker+0xd8/0x2ec [ 169.701936][ T25] process_one_work+0x780/0x184c [ 169.702403][ T25] worker_thread+0x3cc/0xc40 [ 169.702834][ T25] kthread+0x23c/0x2a0 [ 169.703248][ T25] ret_from_fork+0x10/0x20 [ 169.703651][ T25] irq event stamp: 41775 [ 169.704051][ T25] hardirqs last enabled at (41773): [] seqcount_lockdep_reader_access.constprop.0+0xc4/0xe0 [ 169.704755][ T25] hardirqs last disabled at (41775): [] el1_dbg+0x24/0x80 [ 169.705403][ T25] softirqs last enabled at (41770): [] wg_packet_send_staged_packets+0x20c/0x1380 [ 169.706060][ T25] softirqs last disabled at (41774): [] wg_packet_send_staged_packets+0x460/0x1380 [ 169.706699][ T25] ---[ end trace 0000000000000000 ]--- executing program 1970/01/01 00:02:51 building call list... [ 172.139564][ T1006] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 172.445057][ T1006] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 172.792224][ T1006] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 173.076993][ T1006] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 executing program [ 176.465278][ T1006] device hsr_slave_0 left promiscuous mode [ 176.524332][ T1006] device hsr_slave_1 left promiscuous mode [ 176.770312][ T1006] device veth1_macvtap left promiscuous mode [ 176.773200][ T1006] device veth0_macvtap left promiscuous mode [ 176.783256][ T1006] device veth1_vlan left promiscuous mode [ 176.786105][ T1006] device veth0_vlan left promiscuous mode executing program executing program [ 180.396029][ T1006] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 180.620681][ T1006] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 181.494933][ T1006] bond0 (unregistering): Released all slaves executing program executing program executing program executing program executing program [ 197.472906][ T2202] can: request_module (can-proto-0) failed. [ 197.738846][ T2202] can: request_module (can-proto-0) failed. [ 197.924999][ T2202] can: request_module (can-proto-0) failed. executing program VM DIAGNOSIS: 04:00:20 Registers: info registers vcpu 0 PC=ffff8000082a3ee4 X00=00000000000003c0 X01=00000000000003c0 X02=0000000000000000 X03=1fffe0000d539789 X04=000000005bb8a613 X05=0000000000000000 X06=00000000f3f3f3f3 X07=1fffe000025b282f X08=ffff000012d94178 X09=00000000000000f0 X10=ffff000012d9404c X11=0000000000000004 X12=1fffe000025b2809 X13=1fffe000025b282f X14=1ffff00001000d16 X15=0000000000000000 X16=0000000000000000 X17=0000000000000000 X18=00000000ec65860f X19=1ffff00001000d34 X20=ffff80000de06c48 X21=ffff80000de06c48 X22=ffff80005cbc5000 X23=0000000000000001 X24=ffff80000e51a8f8 X25=0000000000000000 X26=0000000000000000 X27=ffff80000957ca98 X28=ffff80000c991e40 X29=ffff800008006920 X30=ffff8000082a3e94 SP=ffff800008006910 PSTATE=100003c5 ---V EL1h FPCR=00000000 FPSR=00000010 Q00=0000000000000000:3f8427f7dd325114 Q01=0000000000000000:3f847ae147ae147b Q02=0000000000000000:41a442017aa7c39a Q03=0000000000000000:413a58c000000000 Q04=0000000000000000:3f84204b080fa4c2 Q05=0000000000000000:4010040140100401 Q06=0000000000000000:0400000000000010 Q07=0000000000000000:3ff531118a5bd528 Q08=0000000000000000:3fbbdf651641ca08 Q09=0000000000000000:3fe230e7dff5f8c1 Q10=0000000000000000:3fe0000000000000 Q11=0000000000000000:0562bd93ad1209b2 Q12=0000000000000000:ccb2a57224f4ea3f Q13=0000000000000000:cd3c9a34c8738b21 Q14=0000000000000000:c8e54899346fc22c Q15=0000000000000000:43e2f79c5c0aa1fa Q16=0000000000000000:0000000000000000 Q17=0000000000000000:0000000000000000 Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000000:000000002abbc599 Q31=0000000000000000:0000000000000000 info registers vcpu 1 PC=ffff8000087df4c4 X00=ffff800010c979c8 X01=ffff800010c974a0 X02=ffff800010c97440 X03=ffff0000092dd1c0 X04=ffff700002192e3a X05=ffff800010c971d0 X06=ffff700002192e62 X07=0000000000000000 X08=ffff800010c971d0 X09=0000000000000000 X10=ffff700002192e61 X11=0000000000000000 X12=0003e4b7e4021f3d X13=0000000000000000 X14=0000000000000000 X15=0005edd99059af82 X16=00062c3910913d43 X17=fa95be1e29c3a038 X18=0043e4b7e4021f35 X19=0000000000000000 X20=00062c3910913d43 X21=00462c3910913d3b X22=0000000000000000 X23=001eb7435a4a14c0 X24=321f2b57cd5b4f0f X25=b5000000000057e4 X26=0000000000000000 X27=003ffffffffffff8 X28=290cd0c36d6a3230 X29=ffff800010c97070 X30=cdf6b7435a4a1478 SP=ffff800010c97070 PSTATE=40000005 -Z-- EL1h FPCR=00000000 FPSR=00000000 Q00=0000000000000000:0000000000000000 Q01=0000000000000000:0000000000000000 Q02=0000000000000000:0000000000000000 Q03=0000000000000000:0000000000000000 Q04=0000000000000000:0000000000000000 Q05=0000000000000000:0000000000000000 Q06=0000000000000000:0000000000000000 Q07=0000000000000000:0000000000000000 Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000 Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000000000000000:0000000000000000 Q17=0000000000000000:0000000000000000 Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000