syzkaller login: [   62.723939][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[   62.727906][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[   65.855077][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
Warning: Permanently added '[localhost]:51055' (ECDSA) to the list of known hosts.
1970/01/01 00:01:34 fuzzer started
1970/01/01 00:01:37 connecting to host at localhost:43681
1970/01/01 00:01:37 checking machine...
1970/01/01 00:01:37 checking revisions...
1970/01/01 00:01:39 testing simple program...
[   99.410366][ T2209] cgroup: Unknown subsys name 'net'
[   99.841326][ T2209] cgroup: Unknown subsys name 'rlimit'
executing program
executing program
[  103.665192][ T2212] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  103.681838][ T2212] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  105.358480][ T2212] device hsr_slave_0 entered promiscuous mode
[  105.415470][ T2212] device hsr_slave_1 entered promiscuous mode
executing program
[  106.471666][ T2212] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  106.543663][ T2212] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  106.596939][ T2212] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  106.652421][ T2212] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  107.848728][ T2212] 8021q: adding VLAN 0 to HW filter on device bond0
[  107.917411][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  107.937443][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  108.726539][   T91] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  108.737555][   T91] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  108.771285][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  108.775998][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  108.826483][ T2523] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  108.878562][   T91] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  108.974932][ T2523] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  108.983153][ T2523] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  109.023232][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  109.027161][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  109.075724][ T2212] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
executing program
[  109.867417][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  109.868618][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  111.437097][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  111.441526][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  112.236025][ T2523] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  112.242317][ T2523] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  112.248018][ T2523] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  112.254982][ T2523] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  112.286795][ T2212] device veth0_vlan entered promiscuous mode
[  112.352909][ T2212] device veth1_vlan entered promiscuous mode
executing program
[  112.443353][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  112.461524][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  112.535974][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  112.543966][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  112.572301][ T2212] device veth0_macvtap entered promiscuous mode
[  112.611505][ T2212] device veth1_macvtap entered promiscuous mode
[  112.723805][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  112.727543][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  112.736808][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  112.743499][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  112.785331][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  112.791297][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  112.819111][ T2212] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  112.820518][ T2212] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  112.820846][ T2212] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  112.821197][ T2212] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  113.047869][    C1] ------------[ cut here ]------------
[  113.048538][    C1] WARNING: CPU: 1 PID: 9 at include/linux/cpumask.h:110 wg_cpumask_next_online+0x1c0/0x2c0
[  113.048926][    C1] Modules linked in:
[  113.049219][    C1] CPU: 1 PID: 9 Comm: kworker/u4:0 Tainted: G        W          6.0.0-syzkaller-10822-g60bb8154d1d7 #0
[  113.049833][    C1] Hardware name: linux,dummy-virt (DT)
[  113.050343][    C1] Workqueue: wg-kex-wg2 wg_packet_handshake_send_worker
[  113.050726][    C1] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  113.051036][    C1] pc : wg_cpumask_next_online+0x1c0/0x2c0
[  113.051283][    C1] lr : wg_packet_receive+0x978/0x1560
[  113.051505][    C1] sp : ffff800010ab7480
[  113.051733][    C1] x29: ffff800010ab7480 x28: 0000000000000001 x27: 1fffe0000285a219
[  113.052796][    C1] x26: 0000000000000000 x25: ffff80000de5c000 x24: 0000000000000000
[  113.053601][    C1] x23: 0000000000000003 x22: ffff80000de5cb68 x21: 0000000000000001
[  113.054259][    C1] x20: ffff0000142d10c8 x19: ffff80000de5cd50 x18: 0000000033659320
[  113.054640][    C1] x17: ffff80005cbe4000 x16: ffff800010ab8000 x15: ffff000016eb77a8
[  113.055024][    C1] x14: 1ffff00002156e68 x13: 0000000000000000 x12: ffff60000285a291
[  113.055411][    C1] x11: 1fffe0000285a290 x10: ffff60000285a290 x9 : dfff800000000000
[  113.055793][    C1] x8 : ffff0000142d1483 x7 : 00009ffffd7a5d70 x6 : 0000000000000001
[  113.056184][    C1] x5 : ffff0000142d1480 x4 : ffff700001bcb9aa x3 : dfff800000000000
[  113.056572][    C1] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001
[  113.056965][    C1] Call trace:
[  113.057155][    C1]  wg_cpumask_next_online+0x1c0/0x2c0
[  113.057410][    C1]  wg_packet_receive+0x978/0x1560
[  113.057629][    C1]  wg_receive+0x58/0xb0
[  113.057873][    C1]  udpv6_queue_rcv_one_skb+0x8f4/0x17c0
[  113.058113][    C1]  udpv6_queue_rcv_skb+0x134/0x7e0
[  113.058334][    C1]  udp6_unicast_rcv_skb+0xe8/0x270
[  113.058546][    C1]  __udp6_lib_rcv+0x8a4/0x2330
[  113.058754][    C1]  udpv6_rcv+0x1c/0x2c
[  113.058977][    C1]  ip6_protocol_deliver_rcu+0x154/0x14f0
[  113.059367][    C1]  ip6_input_finish+0x108/0x220
[  113.059667][    C1]  ip6_input+0xbc/0x2b0
[  113.059890][    C1]  ipv6_rcv+0x39c/0x47c
[  113.060231][    C1]  __netif_receive_skb_one_core+0xf4/0x170
[  113.060485][    C1]  __netif_receive_skb+0x24/0x184
[  113.060707][    C1]  process_backlog+0x24c/0x6b0
[  113.060918][    C1]  __napi_poll+0x94/0x3a4
[  113.061121][    C1]  net_rx_action+0x78c/0xb60
[  113.061336][    C1]  _stext+0x28c/0x107c
[  113.061548][    C1]  ____do_softirq+0x10/0x20
[  113.061776][    C1]  call_on_irq_stack+0x2c/0x54
[  113.061990][    C1]  do_softirq_own_stack+0x1c/0x30
[  113.062292][    C1]  do_softirq.part.0+0xd0/0xf4
[  113.062525][    C1]  __local_bh_enable_ip+0x50c/0x5d0
[  113.062740][    C1]  _raw_read_unlock_bh+0x54/0x64
[  113.062976][    C1]  wg_socket_send_skb_to_peer+0xf0/0x190
[  113.063231][    C1]  wg_socket_send_buffer_to_peer+0x110/0x160
[  113.063466][    C1]  wg_packet_send_handshake_initiation+0x1a8/0x274
[  113.063713][    C1]  wg_packet_handshake_send_worker+0x1c/0x34
[  113.063955][    C1]  process_one_work+0x780/0x184c
[  113.064177][    C1]  worker_thread+0x3cc/0xc40
[  113.064386][    C1]  kthread+0x23c/0x2a0
[  113.064597][    C1]  ret_from_fork+0x10/0x20
[  113.064811][    C1] irq event stamp: 42027
[  113.065018][    C1] hardirqs last  enabled at (42026): [<ffff80000816f1d4>] __local_bh_enable_ip+0x1e4/0x5d0
[  113.065348][    C1] hardirqs last disabled at (42027): [<ffff80000c8ec9b4>] el1_dbg+0x24/0x80
[  113.065649][    C1] softirqs last  enabled at (42018): [<ffff800009f35a60>] wg_socket_send_skb_to_peer+0xf0/0x190
[  113.066019][    C1] softirqs last disabled at (42019): [<ffff800008019cb0>] ____do_softirq+0x10/0x20
[  113.066357][    C1] ---[ end trace 0000000000000000 ]---
[  113.093094][    C1] ------------[ cut here ]------------
[  113.093665][    C1] WARNING: CPU: 1 PID: 21 at include/linux/cpumask.h:110 wg_packet_send_staged_packets+0xe38/0x1380
[  113.094079][    C1] Modules linked in:
[  113.094331][    C1] CPU: 1 PID: 21 Comm: kworker/1:0 Tainted: G        W          6.0.0-syzkaller-10822-g60bb8154d1d7 #0
[  113.094681][    C1] Hardware name: linux,dummy-virt (DT)
[  113.094891][    C1] Workqueue: wg-crypt-wg0 wg_packet_decrypt_worker
[  113.095421][    C1] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  113.095868][    C1] pc : wg_packet_send_staged_packets+0xe38/0x1380
[  113.096126][    C1] lr : wg_packet_send_staged_packets+0x524/0x1380
[  113.096360][    C1] sp : ffff800010ab7960
[  113.096596][    C1] x29: ffff800010ab7960 x28: ffff000010d9e400 x27: 0000000000000001
[  113.097061][    C1] x26: 0000000000000001 x25: 0000000000000002 x24: 1fffe00002705796
[  113.097619][    C1] x23: ffff00001382bca8 x22: ffff80000de5cd50 x21: ffff00000f738960
[  113.098153][    C1] x20: ffff00001382bc80 x19: ffff0000142d0c40 x18: ffff00006a9eab88
[  113.098552][    C1] x17: ffff80005cbe4000 x16: ffff800010ab8000 x15: 0000000000008000
[  113.098946][    C1] x14: 1ffff00002156efa x13: 1fffe0000125b4b3 x12: ffff600001ee712e
[  113.099475][    C1] x11: ffff700001bcb9aa x10: dfff800000000000 x9 : 0000000000000003
[  113.100497][    C1] x8 : ffff80000de5c000 x7 : 1fffe0000285a1b9 x6 : 0000000000000000
[  113.101173][    C1] x5 : ffff0000142d0dc8 x4 : ffff80000de5cb68 x3 : ffff800009f2ac94
[  113.101653][    C1] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001
[  113.102142][    C1] Call trace:
[  113.102360][    C1]  wg_packet_send_staged_packets+0xe38/0x1380
[  113.102632][    C1]  wg_packet_rx_poll+0xd94/0x1580
[  113.102872][    C1]  __napi_poll+0x94/0x3a4
[  113.103099][    C1]  net_rx_action+0x78c/0xb60
[  113.103320][    C1]  _stext+0x28c/0x107c
[  113.103543][    C1]  ____do_softirq+0x10/0x20
[  113.103769][    C1]  call_on_irq_stack+0x2c/0x54
[  113.103997][    C1]  do_softirq_own_stack+0x1c/0x30
[  113.104220][    C1]  do_softirq.part.0+0xd0/0xf4
[  113.104447][    C1]  __local_bh_enable_ip+0x50c/0x5d0
[  113.104679][    C1]  _raw_spin_unlock_bh+0x54/0x64
[  113.104922][    C1]  wg_packet_decrypt_worker+0x210/0x3c0
[  113.105159][    C1]  process_one_work+0x780/0x184c
[  113.105385][    C1]  worker_thread+0x3cc/0xc40
[  113.105605][    C1]  kthread+0x23c/0x2a0
[  113.105883][    C1]  ret_from_fork+0x10/0x20
[  113.106110][    C1] irq event stamp: 53001
[  113.106322][    C1] hardirqs last  enabled at (53000): [<ffff80000836a618>] seqcount_lockdep_reader_access.constprop.0+0xc4/0xe0
[  113.106696][    C1] hardirqs last disabled at (53001): [<ffff80000c8ec9b4>] el1_dbg+0x24/0x80
[  113.107007][    C1] softirqs last  enabled at (52978): [<ffff800009f32d00>] wg_packet_decrypt_worker+0x210/0x3c0
[  113.107358][    C1] softirqs last disabled at (52979): [<ffff800008019cb0>] ____do_softirq+0x10/0x20
[  113.107677][    C1] ---[ end trace 0000000000000000 ]---
[  114.345182][ T1245] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
1970/01/01 00:01:54 building call list...
[  114.574428][ T1245] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.911513][ T1245] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.186818][ T1245] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
executing program
[  117.472760][ T1245] device hsr_slave_0 left promiscuous mode
[  117.561660][ T1245] device hsr_slave_1 left promiscuous mode
[  117.727362][ T1245] device veth1_macvtap left promiscuous mode
[  117.728653][ T1245] device veth0_macvtap left promiscuous mode
[  117.734302][ T1245] device veth1_vlan left promiscuous mode
[  117.737137][ T1245] device veth0_vlan left promiscuous mode
executing program
[  119.681766][ T1245] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  119.795611][ T1245] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  120.227760][ T1245] bond0 (unregistering): Released all slaves
executing program
executing program
executing program
[  129.495099][ T2202] can: request_module (can-proto-0) failed.
[  129.674271][ T2202] can: request_module (can-proto-0) failed.
[  129.851761][ T2202] can: request_module (can-proto-0) failed.
executing program
executing program
executing program
executing program
[  142.791589][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  142.794921][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  142.798018][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  142.804167][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.

VM DIAGNOSIS:
14:09:16  Registers:
info registers vcpu 0
 PC=ffff80000c8ed8bc X00=000000000001afa7 X01=0000000000000000
X02=0000000000000003 X03=0000000000000001 X04=ffff60000d53b0a5
X05=ffff00006a9d8520 X06=0000000000000001 X07=00009ffff2ac4f5c
X08=ffff00006a9d8523 X09=dfff800000000000 X10=ffff60000d53b0a4
X11=1fffe0000d53b0a4 X12=ffff60000d53b0a5 X13=1ffff00001bcfbb1
X14=1ffff00001bc4f4e X15=ffff00006a9cbbc4 X16=ffff800008008000
X17=ffff80005cbc5000 X18=ffff00006a9cbb88 X19=ffff80000de7d380
X20=ffff80000de5cd50 X21=ffff80000de5cb68 X22=0000000000000000
X23=ffff80000de5cbe8 X24=0000000000000000 X25=1ffff00001bcb96d
X26=ffff80000de5cc08 X27=0000000000000000 X28=0000000000000000
X29=ffff80000de27ce0 X30=ffff80000c8ed8d4  SP=ffff80000de27ce0
PSTATE=100000c5 ---V EL1h     FPCR=00000000 FPSR=00000000
Q00=0000000000000000:0000000000000000 Q01=30253a3a30386566:000a2e6574656c70
Q02=388e9c6c4fa85ca0:0000000000007832 Q03=0000000000000000:ff00000000000000
Q04=0000000000000000:ffffffffffff0000 Q05=0010000000000000:4000000000000000
Q06=0000000000000000:4010040140100000 Q07=4010040140100401:4010040140100401
Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000
Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000
Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000
Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000
Q16=0000555010004000:0000555010004000 Q17=000000ff00ff00ff:000000ff00ff00ff
Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000
Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000
Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000
Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000
Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000
Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000
Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000
info registers vcpu 1
 PC=ffff8000096ada30 X00=0000000000000002 X01=0000000000000000
X02=0000000000000002 X03=1fffe0000135aa2e X04=0000000000000000
X05=0000000000000002 X06=1fffe0000135aa2e X07=0000000000000030
X08=ffff800010ab6a73 X09=dfff800000000000 X10=ffff700002156d4e
X11=1ffff00002156d4e X12=ffff700002156d4f X13=0000000000000000
X14=1ffff00002156d24 X15=3a31327820383662 X16=3030303030303020
X17=3030303030303030 X18=0000000033659320 X19=ffff000009ad5080
X20=ffff80000e5722e0 X21=ffff800010aad000 X22=0000000000000032
X23=dfff800000000000 X24=ffff8000107757f9 X25=0000000000000000
X26=ffff000009ad5080 X27=dfff800000000000 X28=0000000000000059
X29=ffff800010ab6a50 X30=ffff8000096ada30  SP=ffff800010ab6a50
PSTATE=800003c5 N--- EL1h     FPCR=00000000 FPSR=00000000
Q00=0000000000000000:0000000000000000 Q01=30253a3a30386566:000a2e6574656c70
Q02=388e9c6c4fa85ca0:0000000000007832 Q03=0000000000000000:ff00000000000000
Q04=0000000000000000:ffffffffffff0000 Q05=0010000000000000:4000000000000000
Q06=0000000000000000:4010040140100000 Q07=4010040140100401:4010040140100401
Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000
Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000
Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000
Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000
Q16=0000555010004000:0000555010004000 Q17=000000ff00ff00ff:000000ff00ff00ff
Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000
Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000
Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000
Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000
Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000
Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000
Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000