syzkaller login: [ 67.589571][ T2048] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 67.593495][ T2048] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 67.603058][ T2048] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:56004' (ECDSA) to the list of known hosts. 1970/01/01 00:01:18 fuzzer started 1970/01/01 00:01:21 connecting to host at localhost:38525 1970/01/01 00:01:21 checking machine... 1970/01/01 00:01:21 checking revisions... 1970/01/01 00:01:23 testing simple program... [ 83.773967][ T2208] cgroup: Unknown subsys name 'net' [ 84.228661][ T2208] cgroup: Unknown subsys name 'rlimit' executing program executing program [ 88.493938][ T2211] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 88.514220][ T2211] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 90.196198][ T2211] device hsr_slave_0 entered promiscuous mode [ 90.248782][ T2211] device hsr_slave_1 entered promiscuous mode executing program [ 91.412688][ T2211] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 91.486753][ T2211] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 91.557466][ T2211] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 91.639501][ T2211] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 92.949858][ T2211] 8021q: adding VLAN 0 to HW filter on device bond0 [ 93.018246][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 93.033674][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 93.721731][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 93.731927][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 93.763545][ T1684] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 93.768675][ T1684] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 93.799023][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 93.833126][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready executing program [ 93.931045][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 93.934650][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 93.977700][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 93.981422][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 94.014398][ T2211] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 94.622008][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 94.623266][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 96.126771][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 96.130550][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready executing program [ 96.906008][ T1684] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 96.910294][ T1684] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 96.914504][ T1684] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 96.928788][ T1684] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 96.953596][ T2211] device veth0_vlan entered promiscuous mode [ 97.023598][ T2211] device veth1_vlan entered promiscuous mode [ 97.139072][ T2209] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 97.144234][ T2209] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 97.170951][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 97.179393][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 97.214288][ T2211] device veth0_macvtap entered promiscuous mode [ 97.246212][ T2211] device veth1_macvtap entered promiscuous mode [ 97.340714][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 97.344305][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 97.353768][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 97.358884][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 97.394115][ T2209] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 97.402155][ T2209] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 97.434700][ T2211] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.436616][ T2211] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.436992][ T2211] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.437364][ T2211] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.617424][ C0] ------------[ cut here ]------------ [ 97.618019][ C0] WARNING: CPU: 0 PID: 49 at include/linux/cpumask.h:110 wg_cpumask_next_online+0x1c0/0x2c0 [ 97.618633][ C0] Modules linked in: [ 97.618976][ C0] CPU: 0 PID: 49 Comm: kworker/u4:2 Tainted: G W 6.0.0-syzkaller-11658-ga185a0995518 #0 [ 97.619414][ C0] Hardware name: linux,dummy-virt (DT) [ 97.619884][ C0] Workqueue: wg-kex-wg2 wg_packet_handshake_send_worker [ 97.620339][ C0] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 97.620706][ C0] pc : wg_cpumask_next_online+0x1c0/0x2c0 [ 97.621047][ C0] lr : wg_packet_receive+0x978/0x1560 [ 97.621331][ C0] sp : ffff800008007480 [ 97.621525][ C0] x29: ffff800008007480 x28: 0000000000000001 x27: 1fffe00002938219 [ 97.622523][ C0] x26: 0000000000000000 x25: ffff80000de5c000 x24: 0000000000000000 [ 97.623534][ C0] x23: 0000000000000003 x22: ffff80000de5cb68 x21: 0000000000000001 [ 97.624427][ C0] x20: ffff0000149c10c8 x19: ffff80000de5cd50 x18: 000000008967d518 [ 97.625254][ C0] x17: ffff80005cbc5000 x16: ffff800008008000 x15: ffff000015afb8e8 [ 97.625715][ C0] x14: 1ffff00001000e68 x13: 0000000000000000 x12: ffff600002938291 [ 97.626114][ C0] x11: 1fffe00002938290 x10: ffff600002938290 x9 : dfff800000000000 [ 97.626505][ C0] x8 : ffff0000149c1483 x7 : 00009ffffd6c7d70 x6 : 0000000000000001 [ 97.626888][ C0] x5 : ffff0000149c1480 x4 : ffff700001bcb9aa x3 : dfff800000000000 [ 97.627358][ C0] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001 [ 97.627730][ C0] Call trace: [ 97.627921][ C0] wg_cpumask_next_online+0x1c0/0x2c0 [ 97.628165][ C0] wg_packet_receive+0x978/0x1560 [ 97.628426][ C0] wg_receive+0x58/0xb0 [ 97.628629][ C0] udpv6_queue_rcv_one_skb+0x8f4/0x17c0 [ 97.628887][ C0] udpv6_queue_rcv_skb+0x134/0x7e0 [ 97.629123][ C0] udp6_unicast_rcv_skb+0xe8/0x270 [ 97.629360][ C0] __udp6_lib_rcv+0x8a4/0x2330 [ 97.629739][ C0] udpv6_rcv+0x1c/0x2c [ 97.630026][ C0] ip6_protocol_deliver_rcu+0x154/0x14f0 [ 97.630263][ C0] ip6_input_finish+0x108/0x220 [ 97.630482][ C0] ip6_input+0xbc/0x2b0 [ 97.630686][ C0] ipv6_rcv+0x39c/0x47c [ 97.630890][ C0] __netif_receive_skb_one_core+0xf4/0x170 [ 97.631127][ C0] __netif_receive_skb+0x24/0x184 [ 97.631355][ C0] process_backlog+0x24c/0x6b0 [ 97.631566][ C0] __napi_poll+0x94/0x3a4 [ 97.631769][ C0] net_rx_action+0x78c/0xb60 [ 97.632016][ C0] _stext+0x28c/0x107c [ 97.632249][ C0] ____do_softirq+0x10/0x20 [ 97.632460][ C0] call_on_irq_stack+0x2c/0x54 [ 97.632672][ C0] do_softirq_own_stack+0x1c/0x30 [ 97.632894][ C0] do_softirq.part.0+0xd0/0xf4 [ 97.633115][ C0] __local_bh_enable_ip+0x50c/0x5d0 [ 97.633349][ C0] _raw_read_unlock_bh+0x54/0x64 [ 97.633571][ C0] wg_socket_send_skb_to_peer+0xf0/0x190 [ 97.633801][ C0] wg_socket_send_buffer_to_peer+0x110/0x160 [ 97.634035][ C0] wg_packet_send_handshake_initiation+0x1a8/0x274 [ 97.634286][ C0] wg_packet_handshake_send_worker+0x1c/0x34 [ 97.634525][ C0] process_one_work+0x780/0x184c [ 97.634894][ C0] worker_thread+0x3cc/0xc40 [ 97.635126][ C0] kthread+0x23c/0x2a0 [ 97.635400][ C0] ret_from_fork+0x10/0x20 [ 97.635645][ C0] irq event stamp: 269799 [ 97.635841][ C0] hardirqs last enabled at (269798): [] __local_bh_enable_ip+0x1e4/0x5d0 [ 97.636142][ C0] hardirqs last disabled at (269799): [] el1_dbg+0x24/0x80 [ 97.636452][ C0] softirqs last enabled at (269790): [] wg_socket_send_skb_to_peer+0xf0/0x190 [ 97.636762][ C0] softirqs last disabled at (269791): [] ____do_softirq+0x10/0x20 [ 97.637047][ C0] ---[ end trace 0000000000000000 ]--- [ 97.658944][ T25] ------------[ cut here ]------------ [ 97.659535][ T25] WARNING: CPU: 1 PID: 25 at include/linux/cpumask.h:110 wg_packet_send_staged_packets+0xe38/0x1380 [ 97.659894][ T25] Modules linked in: [ 97.660136][ T25] CPU: 1 PID: 25 Comm: kworker/1:1 Tainted: G W 6.0.0-syzkaller-11658-ga185a0995518 #0 [ 97.660508][ T25] Hardware name: linux,dummy-virt (DT) [ 97.660840][ T25] Workqueue: wg-kex-wg2 wg_packet_handshake_receive_worker [ 97.661181][ T25] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 97.661440][ T25] pc : wg_packet_send_staged_packets+0xe38/0x1380 [ 97.661673][ T25] lr : wg_packet_send_staged_packets+0x524/0x1380 [ 97.661899][ T25] sp : ffff800010c97800 [ 97.662082][ T25] x29: ffff800010c97800 x28: ffff000013ceb400 x27: 0000000000000001 [ 97.662520][ T25] x26: 0000000000000001 x25: 0000000000000002 x24: 1fffe00001f66996 [ 97.662878][ T25] x23: ffff00000fb34ca8 x22: ffff80000de5cd50 x21: ffff00000f992580 [ 97.663236][ T25] x20: ffff00000fb34c80 x19: ffff0000104d8c40 x18: 0000000090d7a539 [ 97.663601][ T25] x17: 0000000014e51f51 x16: 000000007285baa5 x15: 0000000000000000 [ 97.663981][ T25] x14: 1ffff00002192ece x13: 0000000000000000 x12: ffff600001f324b2 [ 97.664386][ T25] x11: ffff700001bcb9aa x10: dfff800000000000 x9 : 0000000000000003 [ 97.664810][ T25] x8 : ffff80000de5c000 x7 : 1fffe0000209b1b9 x6 : 0000000000000000 [ 97.665293][ T25] x5 : ffff0000104d8dc8 x4 : ffff80000de5cb68 x3 : ffff800009f2c124 [ 97.665743][ T25] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001 [ 97.666149][ T25] Call trace: [ 97.666344][ T25] wg_packet_send_staged_packets+0xe38/0x1380 [ 97.666591][ T25] wg_packet_send_keepalive+0x40/0x2a0 [ 97.666820][ T25] wg_receive_handshake_packet+0x2c8/0x7c0 [ 97.667066][ T25] wg_packet_handshake_receive_worker+0xd8/0x2ec [ 97.667330][ T25] process_one_work+0x780/0x184c [ 97.667567][ T25] worker_thread+0x3cc/0xc40 [ 97.667792][ T25] kthread+0x23c/0x2a0 [ 97.668011][ T25] ret_from_fork+0x10/0x20 [ 97.668262][ T25] irq event stamp: 35235 [ 97.668465][ T25] hardirqs last enabled at (35233): [] seqcount_lockdep_reader_access.constprop.0+0xc4/0xe0 [ 97.668827][ T25] hardirqs last disabled at (35235): [] el1_dbg+0x24/0x80 [ 97.669137][ T25] softirqs last enabled at (35230): [] wg_packet_send_staged_packets+0x20c/0x1380 [ 97.669478][ T25] softirqs last disabled at (35234): [] wg_packet_send_staged_packets+0x460/0x1380 [ 97.669815][ T25] ---[ end trace 0000000000000000 ]--- 1970/01/01 00:01:38 building call list... [ 98.682487][ T740] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.079179][ T740] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.481584][ T740] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.780228][ T740] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 executing program [ 102.047098][ T740] device hsr_slave_0 left promiscuous mode [ 102.100499][ T740] device hsr_slave_1 left promiscuous mode [ 102.251826][ T740] device veth1_macvtap left promiscuous mode [ 102.253169][ T740] device veth0_macvtap left promiscuous mode [ 102.262846][ T740] device veth1_vlan left promiscuous mode [ 102.264465][ T740] device veth0_vlan left promiscuous mode executing program [ 104.593349][ T740] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 104.721488][ T740] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 105.228831][ T740] bond0 (unregistering): Released all slaves executing program executing program executing program executing program [ 115.582680][ T2203] can: request_module (can-proto-0) failed. [ 115.787150][ T2203] can: request_module (can-proto-0) failed. [ 115.905912][ T2203] can: request_module (can-proto-0) failed. executing program executing program executing program executing program VM DIAGNOSIS: 02:16:29 Registers: info registers vcpu 0 PC=ffff8000096adcf0 X00=0000000000000002 X01=0000000000000002 X02=ffff000009ae6172 X03=dfff800000000000 X04=1fffe0000135cc2e X05=ffff800008006a70 X06=0000000000000001 X07=0000000000000004 X08=ffff800008006a73 X09=dfff800000000000 X10=ffff700001000d4e X11=1ffff00001000d4e X12=ffff700001000d4f X13=0000000000000000 X14=1ffff00001000d24 X15=3a34327820303030 X16=3030303030303020 X17=3030303030303030 X18=000000008967d518 X19=ffff000009ae6080 X20=ffff800010aad030 X21=ffff80000e573720 X22=0000000000000000 X23=1fffe0000135cc58 X24=00000000000003c0 X25=0000000000000001 X26=ffff000009ae6080 X27=1ffff00001000db6 X28=0000000000000059 X29=ffff800008006a90 X30=ffff8000096ba3d8 SP=ffff800008006a90 PSTATE=800003c5 N--- EL1h FPCR=00000000 FPSR=00000010 Q00=0000000000000000:3f841f2ba5c6b9cc Q01=0000000000000000:3f847ae147ae147b Q02=0000000000000000:41913c5ca7e2d803 Q03=0000000000000000:4126746000000000 Q04=0000000000000000:3f84215d6008d762 Q05=4010040140100401:4010040140100401 Q06=0000004000000000:0000004000000000 Q07=0000000000000000:0000000000000001 Q08=0000000000000000:0000000000000001 Q09=0000000000000000:0000000000000000 Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000000000000000:0000000000000000 Q17=0000000000000000:0000000000000000 Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000003:0000000033275d0e Q31=0000000000000000:0000000000000000 info registers vcpu 1 PC=ffff800009127000 X00=4f6d98b6cff556e5 X01=000c137ae3b95527 X02=000b18daae990e6e X03=003d19090eb8766e X04=0004b539c5a885ef X05=003cc91dc84c1849 X06=000000027551c504 X07=0006d65571db12d5 X08=0001401d92b01a3c X09=00025e99e5e18519 X10=0007084da28be991 X11=0000c77537ba2fe6 X12=0011be450f08f55c X13=000171b3815ad354 X14=000511f6992873d1 X15=000135ecf5e2779a X16=000000916103db4a X17=00003086d2903dbd X18=00060aa079410e36 X19=0006426c19fcb8fe X20=005a7d5c7dec31c8 X21=0044f7093bf0e114 X22=00000025ee06532b X23=00099d25c8f6727e X24=028be6d928ce96e4 X25=41bc19ea1c1c91e4 X26=197ac4482215ab65 X27=003ffffffffffff8 X28=d27a36860d2a0363 X29=ffff800010f37230 X30=0437c880a2ee198c SP=ffff800010f37230 PSTATE=80000005 N--- EL1h FPCR=00000000 FPSR=00000010 Q00=0000000000000000:3f841f2ba5c6b9cc Q01=0000000000000000:3f847ae147ae147b Q02=0000000000000000:41913c5ca7e2d803 Q03=0000000000000000:4126746000000000 Q04=0000000000000000:3f84215d6008d762 Q05=4010040140100401:4010040140100401 Q06=0000004000000000:0000004000000000 Q07=0000000000000000:0000000000000001 Q08=0000000000000000:0000000000000001 Q09=0000000000000000:0000000000000000 Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000000000000000:0000000000000000 Q17=0000000000000000:0000000000000000 Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000003:0000000033275d0e Q31=0000000000000000:0000000000000000