syzkaller login: [ 109.454884][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 109.483732][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 109.505559][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 109.515614][ T2049] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:41486' (ECDSA) to the list of known hosts. 1970/01/01 00:02:23 fuzzer started 1970/01/01 00:02:27 connecting to host at localhost:36741 1970/01/01 00:02:27 checking machine... 1970/01/01 00:02:27 checking revisions... 1970/01/01 00:02:30 testing simple program... [ 151.235048][ T2216] cgroup: Unknown subsys name 'net' executing program [ 151.777114][ T2216] cgroup: Unknown subsys name 'rlimit' executing program executing program [ 158.514173][ T2220] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 158.543820][ T2220] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link executing program [ 161.477992][ T2220] device hsr_slave_0 entered promiscuous mode [ 161.544076][ T2220] device hsr_slave_1 entered promiscuous mode executing program [ 163.967146][ T2220] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 164.098420][ T2220] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 164.218287][ T2220] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 164.354182][ T2220] netdevsim netdevsim0 netdevsim3: renamed from eth3 executing program [ 166.570819][ T2220] 8021q: adding VLAN 0 to HW filter on device bond0 [ 166.667724][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 166.703464][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 168.159124][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 168.176424][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 168.268041][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 168.276973][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 168.341095][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 168.408145][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 168.532759][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 168.538144][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 168.607148][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 168.625918][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 168.695963][ T2220] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready executing program [ 169.949179][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 169.957384][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready executing program [ 173.132580][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 173.162292][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 174.687284][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 174.705247][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 174.762445][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 174.767597][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 174.804331][ T2220] device veth0_vlan entered promiscuous mode [ 174.966377][ T2220] device veth1_vlan entered promiscuous mode [ 175.278823][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 175.286799][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 175.355714][ T2220] device veth0_macvtap entered promiscuous mode [ 175.448508][ T2220] device veth1_macvtap entered promiscuous mode executing program [ 175.653797][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 175.663785][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 175.682908][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 175.698435][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 175.763863][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 175.783882][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 175.902849][ T2220] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 175.904264][ T2220] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 175.904819][ T2220] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 175.905364][ T2220] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 176.205499][ C1] ------------[ cut here ]------------ [ 176.206378][ C1] WARNING: CPU: 1 PID: 54 at include/linux/cpumask.h:110 wg_cpumask_next_online+0x1c0/0x2c0 [ 176.207032][ C1] Modules linked in: [ 176.207377][ C1] CPU: 1 PID: 54 Comm: kworker/u4:4 Tainted: G W 6.0.0-syzkaller-10712-g27bc50fc9064 #0 [ 176.207893][ C1] Hardware name: linux,dummy-virt (DT) [ 176.208432][ C1] Workqueue: wg-kex-wg2 wg_packet_handshake_send_worker [ 176.208916][ C1] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 176.209235][ C1] pc : wg_cpumask_next_online+0x1c0/0x2c0 [ 176.212336][ C1] lr : wg_packet_receive+0x978/0x1560 [ 176.213500][ C1] sp : ffff800010aa7440 [ 176.214151][ C1] x29: ffff800010aa7440 x28: 0000000000000001 x27: 1fffe0000147aa19 [ 176.215226][ C1] x26: 0000000000000000 x25: ffff80000de4c000 x24: 0000000000000000 [ 176.216384][ C1] x23: 0000000000000003 x22: ffff80000de4cb68 x21: 0000000000000001 [ 176.217419][ C1] x20: ffff00000a3d50c8 x19: ffff80000de4cd50 x18: ffff000015fa2d38 [ 176.218126][ C1] x17: 1fffe00002bfc60c x16: 1fffe00002bf4597 x15: ffff000015fa2cc0 [ 176.218776][ C1] x14: 1ffff00002154e60 x13: 0000000000000000 x12: ffff60000147aa91 [ 176.219382][ C1] x11: 1fffe0000147aa90 x10: ffff60000147aa90 x9 : dfff800000000000 [ 176.220162][ C1] x8 : ffff00000a3d5483 x7 : 00009ffffeb85570 x6 : 0000000000000001 [ 176.220935][ C1] x5 : ffff00000a3d5480 x4 : ffff700001bc99aa x3 : dfff800000000000 [ 176.221610][ C1] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001 [ 176.222223][ C1] Call trace: [ 176.223592][ C1] wg_cpumask_next_online+0x1c0/0x2c0 [ 176.225068][ C1] wg_packet_receive+0x978/0x1560 [ 176.226248][ C1] wg_receive+0x58/0xb0 [ 176.226596][ C1] udp_queue_rcv_one_skb+0x820/0x1a8c [ 176.226961][ C1] udp_queue_rcv_skb+0x134/0x7e0 [ 176.227352][ C1] udp_unicast_rcv_skb+0xe8/0x2e0 [ 176.227699][ C1] __udp4_lib_rcv+0xcf0/0x31b0 [ 176.228026][ C1] udp_rcv+0x20/0x30 [ 176.228370][ C1] ip_protocol_deliver_rcu+0xbc/0x634 [ 176.228752][ C1] ip_local_deliver_finish+0x248/0x3ac [ 176.229143][ C1] ip_local_deliver+0x16c/0x384 [ 176.229502][ C1] ip_rcv_finish+0x144/0x224 [ 176.230545][ C1] ip_rcv+0xc0/0x2b0 [ 176.231118][ C1] __netif_receive_skb_one_core+0xf4/0x170 [ 176.232448][ C1] __netif_receive_skb+0x24/0x184 [ 176.232806][ C1] process_backlog+0x24c/0x6b0 [ 176.233179][ C1] __napi_poll+0x94/0x3a4 [ 176.234243][ C1] net_rx_action+0x78c/0xb60 [ 176.235328][ C1] _stext+0x28c/0x107c [ 176.236376][ C1] ____do_softirq+0x10/0x20 [ 176.236739][ C1] call_on_irq_stack+0x2c/0x54 [ 176.237916][ C1] do_softirq_own_stack+0x1c/0x30 [ 176.238683][ C1] do_softirq.part.0+0xd0/0xf4 [ 176.239053][ C1] __local_bh_enable_ip+0x50c/0x5d0 [ 176.241002][ C1] _raw_read_unlock_bh+0x54/0x64 [ 176.241479][ C1] wg_socket_send_skb_to_peer+0xf0/0x190 [ 176.242824][ C1] wg_socket_send_buffer_to_peer+0x110/0x160 [ 176.243238][ C1] wg_packet_send_handshake_initiation+0x1a8/0x274 [ 176.243609][ C1] wg_packet_handshake_send_worker+0x1c/0x34 [ 176.244900][ C1] process_one_work+0x780/0x184c [ 176.245955][ C1] worker_thread+0x3cc/0xc40 [ 176.247087][ C1] kthread+0x23c/0x2a0 [ 176.247727][ C1] ret_from_fork+0x10/0x20 [ 176.248177][ C1] irq event stamp: 243869 [ 176.249563][ C1] hardirqs last enabled at (243868): [] __local_bh_enable_ip+0x1e4/0x5d0 [ 176.250166][ C1] hardirqs last disabled at (243869): [] el1_dbg+0x24/0x80 [ 176.250746][ C1] softirqs last enabled at (243860): [] wg_socket_send_skb_to_peer+0xf0/0x190 [ 176.251690][ C1] softirqs last disabled at (243861): [] ____do_softirq+0x10/0x20 [ 176.252202][ C1] ---[ end trace 0000000000000000 ]--- [ 176.293670][ T13] ------------[ cut here ]------------ [ 176.296005][ T13] WARNING: CPU: 0 PID: 13 at include/linux/cpumask.h:110 wg_packet_send_staged_packets+0xe38/0x1380 [ 176.297021][ T13] Modules linked in: [ 176.297357][ T13] CPU: 0 PID: 13 Comm: kworker/0:1 Tainted: G W 6.0.0-syzkaller-10712-g27bc50fc9064 #0 [ 176.297888][ T13] Hardware name: linux,dummy-virt (DT) [ 176.298356][ T13] Workqueue: wg-kex-wg2 wg_packet_handshake_receive_worker [ 176.298827][ T13] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 176.299287][ T13] pc : wg_packet_send_staged_packets+0xe38/0x1380 [ 176.299709][ T13] lr : wg_packet_send_staged_packets+0x524/0x1380 [ 176.300130][ T13] sp : ffff800010bb7800 [ 176.300403][ T13] x29: ffff800010bb7800 x28: ffff00000998d800 x27: 0000000000000001 [ 176.301030][ T13] x26: 0000000000000001 x25: 0000000000000002 x24: 1fffe00002bf4546 [ 176.301668][ T13] x23: ffff000015fa2a28 x22: ffff80000de4cd50 x21: ffff00000e402ee0 [ 176.302196][ T13] x20: ffff000015fa2a00 x19: ffff000010960c40 x18: 00000000c240efdf [ 176.302730][ T13] x17: 00000000c0f87673 x16: 00000000f0222203 x15: 0000000000000000 [ 176.304463][ T13] x14: 1ffff00002176ece x13: 0000000000000000 x12: ffff600001c805de [ 176.304956][ T13] x11: ffff700001bc99aa x10: dfff800000000000 x9 : 0000000000000003 [ 176.305522][ T13] x8 : ffff80000de4c000 x7 : 1fffe0000212c1b9 x6 : 0000000000000000 [ 176.306101][ T13] x5 : ffff000010960dc8 x4 : ffff80000de4cb68 x3 : ffff800009f29754 [ 176.306687][ T13] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001 [ 176.307270][ T13] Call trace: [ 176.307541][ T13] wg_packet_send_staged_packets+0xe38/0x1380 [ 176.307929][ T13] wg_packet_send_keepalive+0x40/0x2a0 [ 176.308270][ T13] wg_receive_handshake_packet+0x2c8/0x7c0 [ 176.308616][ T13] wg_packet_handshake_receive_worker+0xd8/0x2ec [ 176.308972][ T13] process_one_work+0x780/0x184c [ 176.309379][ T13] worker_thread+0x3cc/0xc40 [ 176.310359][ T13] kthread+0x23c/0x2a0 [ 176.311125][ T13] ret_from_fork+0x10/0x20 [ 176.311615][ T13] irq event stamp: 11329 [ 176.311999][ T13] hardirqs last enabled at (11327): [] seqcount_lockdep_reader_access.constprop.0+0xc4/0xe0 [ 176.312516][ T13] hardirqs last disabled at (11329): [] el1_dbg+0x24/0x80 [ 176.312964][ T13] softirqs last enabled at (11324): [] wg_packet_send_staged_packets+0x20c/0x1380 [ 176.313445][ T13] softirqs last disabled at (11328): [] wg_packet_send_staged_packets+0x460/0x1380 [ 176.313919][ T13] ---[ end trace 0000000000000000 ]--- 1970/01/01 00:02:57 building call list... [ 178.216973][ T54] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 178.479387][ T54] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 executing program [ 178.756781][ T54] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 178.995237][ T54] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 executing program [ 182.160439][ T54] device hsr_slave_0 left promiscuous mode [ 182.236128][ T54] device hsr_slave_1 left promiscuous mode [ 182.402716][ T54] device veth1_macvtap left promiscuous mode [ 182.405374][ T54] device veth0_macvtap left promiscuous mode [ 182.432633][ T54] device veth1_vlan left promiscuous mode [ 182.434509][ T54] device veth0_vlan left promiscuous mode executing program [ 185.457899][ T54] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 185.601466][ T54] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 186.248514][ T54] bond0 (unregistering): Released all slaves executing program executing program executing program executing program executing program executing program [ 205.796893][ T2213] can: request_module (can-proto-0) failed. [ 206.052987][ T2213] can: request_module (can-proto-0) failed. VM DIAGNOSIS: 02:14:14 Registers: info registers vcpu 0 PC=ffff80000b4598d8 X00=ffff80000b4598d0 X01=0000000000000000 X02=ffff80000de6dd60 X03=1ffff00001bc9f6e X04=1ffff00001bcda71 X05=ffff800008007d40 X06=0000000000000001 X07=0000000000000004 X08=ffff800008007d43 X09=dfff800000000000 X10=ffff700001000fa8 X11=1ffff00001000fa8 X12=ffff700001000fa9 X13=1ffff00001bcdbb1 X14=1ffff00001000f7e X15=0000000000008000 X16=ffff800008008000 X17=ffff80005cbd5000 X18=ffff00006a9cbb88 X19=ffff80000e061e30 X20=0000000000000000 X21=0000000000000003 X22=0000000000000028 X23=ffff80000e061ec0 X24=dfff800000000000 X25=ffff80000e061e00 X26=0000000000000004 X27=ffff80000e061e30 X28=ffff80000de6dd68 X29=ffff800008007ce0 X30=ffff800008391d98 SP=ffff800008007ce0 PSTATE=600000c5 -ZC- EL1h FPCR=00000000 FPSR=00000010 Q00=0000000000000000:0000000000000000 Q01=0000000000000000:414fffffe0000000 Q02=10ea17691427531e:9d6a99a182243c30 Q03=0000000040000000:0000000000000000 Q04=4010040140100401:4000000000000000 Q05=4010040140100401:4010040140100401 Q06=5555400000400000:5555400000400000 Q07=0000000000000000:0000000000000000 Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000 Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000000000000000:0000000000000000 Q17=0000000000000000:0000000000000000 Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000010:000000209886a8f0 Q31=0000000000000000:0000000000000000 info registers vcpu 1 PC=ffff80000829336c X00=00000000000003c0 X01=00000000000003c0 X02=0000000000000003 X03=1fffe0000155aa39 X04=1fffe0000d53d001 X05=0000000000000000 X06=ffff8000082c4af0 X07=ffff00000aad51c0 X08=ffff80000de4cd50 X09=ffff80000de4c000 X10=00000000f3000000 X11=dfff800000000000 X12=000000000000f1f1 X13=205d314320202020 X14=0000000000000000 X15=0000000000000000 X16=0000000000000000 X17=0000000000000000 X18=ffff000015fa2d38 X19=0000000000000000 X20=ffff00000aad5c48 X21=ffff80000e02ca80 X22=0000000000000028 X23=ffff00000aad5ba8 X24=ffff80000ddf6c48 X25=ffff80000c981e40 X26=00000000ffffffff X27=00000000000003c0 X28=ffff00000aad51c0 X29=ffff800010aa6940 X30=ffff80000c8ebd54 SP=ffff800010aa6940 PSTATE=100003c5 ---V EL1h FPCR=00000000 FPSR=00000000 Q00=0000000000000000:0000000000000000 Q01=0000000000000000:0000000000000000 Q02=0000000000000000:0000000000000000 Q03=0000000000000000:0000000000000000 Q04=0000000000000000:0000000000000000 Q05=0000000000000000:0000000000000000 Q06=0000000000000000:0000000000000000 Q07=0000000000000000:0000000000000000 Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000 Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000000000000000:0000000000000000 Q17=0000000000000000:0000000000000000 Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000