syzkaller login: [ 100.472079][ T2051] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 100.489492][ T2051] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 100.494651][ T2051] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:59183' (ECDSA) to the list of known hosts. 1970/01/01 00:02:15 fuzzer started 1970/01/01 00:02:20 connecting to host at localhost:39079 1970/01/01 00:02:20 checking machine... 1970/01/01 00:02:20 checking revisions... 1970/01/01 00:02:22 testing simple program... [ 143.537381][ T2211] cgroup: Unknown subsys name 'net' [ 144.024566][ T2211] cgroup: Unknown subsys name 'rlimit' executing program executing program [ 150.030569][ T2214] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 150.061936][ T2214] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link executing program [ 152.752849][ T2214] device hsr_slave_0 entered promiscuous mode [ 152.822808][ T2214] device hsr_slave_1 entered promiscuous mode executing program [ 154.814318][ T2214] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 154.932051][ T2214] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 155.018026][ T2214] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 155.119559][ T2214] netdevsim netdevsim0 netdevsim3: renamed from eth3 executing program [ 157.068862][ T2214] 8021q: adding VLAN 0 to HW filter on device bond0 [ 157.154426][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 157.163746][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 158.407471][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 158.420863][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 158.478302][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 158.483147][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 158.563433][ T889] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 158.621656][ T1689] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 158.756060][ T889] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 158.763544][ T889] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 158.849190][ T2212] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 158.859686][ T2212] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 158.912633][ T2214] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready executing program [ 160.007702][ T2212] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 160.008952][ T2212] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready executing program [ 162.707217][ T2212] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 162.713616][ T2212] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 164.177684][ T1689] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 164.211191][ T1689] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 164.258097][ T1689] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 164.264295][ T1689] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 164.336052][ T2214] device veth0_vlan entered promiscuous mode [ 164.492321][ T2214] device veth1_vlan entered promiscuous mode [ 164.871939][ T2212] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 164.892106][ T2212] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 164.950722][ T2214] device veth0_macvtap entered promiscuous mode [ 165.024079][ T2214] device veth1_macvtap entered promiscuous mode [ 165.212431][ T2535] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 165.223075][ T2535] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 165.257467][ T2535] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 165.264485][ T2535] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready executing program [ 165.359335][ T1689] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 165.372147][ T1689] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 165.433353][ T2214] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.434569][ T2214] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.437125][ T2214] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.437606][ T2214] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 165.831297][ C0] ------------[ cut here ]------------ [ 165.833004][ C0] WARNING: CPU: 0 PID: 51 at include/linux/cpumask.h:110 wg_cpumask_next_online+0x1c0/0x2c0 [ 165.833474][ C0] Modules linked in: [ 165.833802][ C0] CPU: 0 PID: 51 Comm: kworker/u4:3 Tainted: G W 6.0.0-syzkaller-12155-gb7cef0d21c37 #0 [ 165.834192][ C0] Hardware name: linux,dummy-virt (DT) [ 165.834679][ C0] Workqueue: wg-kex-wg2 wg_packet_handshake_send_worker [ 165.835577][ C0] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 165.838619][ C0] pc : wg_cpumask_next_online+0x1c0/0x2c0 [ 165.839637][ C0] lr : wg_packet_receive+0x978/0x1560 [ 165.839981][ C0] sp : ffff800008007440 [ 165.840278][ C0] x29: ffff800008007440 x28: 0000000000000001 x27: 1fffe00001cdaa19 [ 165.841195][ C0] x26: 0000000000000000 x25: ffff80000de5c000 x24: 0000000000000000 [ 165.841744][ C0] x23: 0000000000000003 x22: ffff80000de5cb68 x21: 0000000000000001 [ 165.842358][ C0] x20: ffff00000e6d50c8 x19: ffff80000de5cd50 x18: ffff00000e301ab8 [ 165.842941][ C0] x17: 1fffe00002645a0c x16: 1fffe00001c60347 x15: ffff00000e301a40 [ 165.843653][ C0] x14: 1ffff00001000e60 x13: 0000000000000000 x12: ffff600001cdaa91 [ 165.844231][ C0] x11: 1fffe00001cdaa90 x10: ffff600001cdaa90 x9 : dfff800000000000 [ 165.845217][ C0] x8 : ffff00000e6d5483 x7 : 00009ffffe325570 x6 : 0000000000000001 [ 165.846036][ C0] x5 : ffff00000e6d5480 x4 : ffff700001bcb9aa x3 : dfff800000000000 [ 165.846444][ C0] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001 [ 165.846850][ C0] Call trace: [ 165.847081][ C0] wg_cpumask_next_online+0x1c0/0x2c0 [ 165.847431][ C0] wg_packet_receive+0x978/0x1560 [ 165.847731][ C0] wg_receive+0x58/0xb0 [ 165.848024][ C0] udp_queue_rcv_one_skb+0x820/0x1a8c [ 165.848299][ C0] udp_queue_rcv_skb+0x134/0x7e0 [ 165.848559][ C0] udp_unicast_rcv_skb+0xe8/0x2e0 [ 165.848856][ C0] __udp4_lib_rcv+0xcf0/0x31b0 [ 165.849224][ C0] udp_rcv+0x20/0x30 [ 165.849506][ C0] ip_protocol_deliver_rcu+0xbc/0x634 [ 165.849817][ C0] ip_local_deliver_finish+0x248/0x3ac [ 165.850126][ C0] ip_local_deliver+0x16c/0x384 [ 165.850416][ C0] ip_rcv_finish+0x144/0x224 [ 165.850715][ C0] ip_rcv+0xc0/0x2b0 [ 165.850983][ C0] __netif_receive_skb_one_core+0xf4/0x170 [ 165.851329][ C0] __netif_receive_skb+0x24/0x184 [ 165.851623][ C0] process_backlog+0x24c/0x6b0 [ 165.851914][ C0] __napi_poll+0x94/0x3a4 [ 165.852208][ C0] net_rx_action+0x78c/0xb60 [ 165.852501][ C0] _stext+0x28c/0x107c [ 165.852862][ C0] ____do_softirq+0x10/0x20 [ 165.853885][ C0] call_on_irq_stack+0x2c/0x54 [ 165.854388][ C0] do_softirq_own_stack+0x1c/0x30 [ 165.854697][ C0] do_softirq.part.0+0xd0/0xf4 [ 165.855174][ C0] __local_bh_enable_ip+0x50c/0x5d0 [ 165.855552][ C0] _raw_read_unlock_bh+0x54/0x64 [ 165.855920][ C0] wg_socket_send_skb_to_peer+0xf0/0x190 [ 165.856244][ C0] wg_socket_send_buffer_to_peer+0x110/0x160 [ 165.856552][ C0] wg_packet_send_handshake_initiation+0x1a8/0x274 [ 165.856880][ C0] wg_packet_handshake_send_worker+0x1c/0x34 [ 165.857205][ C0] process_one_work+0x780/0x184c [ 165.857513][ C0] worker_thread+0x3cc/0xc40 [ 165.857813][ C0] kthread+0x23c/0x2a0 [ 165.858121][ C0] ret_from_fork+0x10/0x20 [ 165.858436][ C0] irq event stamp: 39039 [ 165.858722][ C0] hardirqs last enabled at (39038): [] __local_bh_enable_ip+0x1e4/0x5d0 [ 165.859157][ C0] hardirqs last disabled at (39039): [] el1_dbg+0x24/0x80 [ 165.859511][ C0] softirqs last enabled at (39030): [] wg_socket_send_skb_to_peer+0xf0/0x190 [ 165.859915][ C0] softirqs last disabled at (39031): [] ____do_softirq+0x10/0x20 [ 165.860307][ C0] ---[ end trace 0000000000000000 ]--- [ 165.874585][ T24] ------------[ cut here ]------------ [ 165.877251][ T24] WARNING: CPU: 1 PID: 24 at include/linux/cpumask.h:110 wg_packet_send_staged_packets+0xe38/0x1380 [ 165.880809][ T24] Modules linked in: [ 165.881154][ T24] CPU: 1 PID: 24 Comm: kworker/1:1 Tainted: G W 6.0.0-syzkaller-12155-gb7cef0d21c37 #0 [ 165.881631][ T24] Hardware name: linux,dummy-virt (DT) [ 165.881934][ T24] Workqueue: wg-kex-wg2 wg_packet_handshake_receive_worker [ 165.882310][ T24] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 165.883827][ T24] pc : wg_packet_send_staged_packets+0xe38/0x1380 [ 165.884321][ T24] lr : wg_packet_send_staged_packets+0x524/0x1380 [ 165.885410][ T24] sp : ffff800010c87800 [ 165.885881][ T24] x29: ffff800010c87800 x28: ffff000013e6c800 x27: 0000000000000001 [ 165.886410][ T24] x26: 0000000000000001 x25: 0000000000000002 x24: 1fffe00001c47c7e [ 165.886829][ T24] x23: ffff00000e23e3e8 x22: ffff80000de5cd50 x21: ffff00001010aee0 [ 165.887333][ T24] x20: ffff00000e23e3c0 x19: ffff0000103f0c40 x18: 000000003d859b70 [ 165.887821][ T24] x17: 00000000ef9a3d5c x16: 00000000f970fe63 x15: 0000000000000000 [ 165.888221][ T24] x14: 1ffff00002190ece x13: 0000000000000000 x12: ffff6000020215de [ 165.888692][ T24] x11: ffff700001bcb9aa x10: dfff800000000000 x9 : 0000000000000003 [ 165.889096][ T24] x8 : ffff80000de5c000 x7 : 1fffe0000207e1b9 x6 : 0000000000000000 [ 165.889493][ T24] x5 : ffff0000103f0dc8 x4 : ffff80000de5cb68 x3 : ffff800009f2de04 [ 165.889892][ T24] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001 [ 165.890290][ T24] Call trace: [ 165.890505][ T24] wg_packet_send_staged_packets+0xe38/0x1380 [ 165.890785][ T24] wg_packet_send_keepalive+0x40/0x2a0 [ 165.891056][ T24] wg_receive_handshake_packet+0x2c8/0x7c0 [ 165.891401][ T24] wg_packet_handshake_receive_worker+0xd8/0x2ec [ 165.891737][ T24] process_one_work+0x780/0x184c [ 165.892028][ T24] worker_thread+0x3cc/0xc40 [ 165.892315][ T24] kthread+0x23c/0x2a0 [ 165.892596][ T24] ret_from_fork+0x10/0x20 [ 165.892893][ T24] irq event stamp: 33101 [ 165.893179][ T24] hardirqs last enabled at (33099): [] seqcount_lockdep_reader_access.constprop.0+0xc4/0xe0 [ 165.893604][ T24] hardirqs last disabled at (33101): [] el1_dbg+0x24/0x80 [ 165.893944][ T24] softirqs last enabled at (33096): [] wg_packet_send_staged_packets+0x20c/0x1380 [ 165.894316][ T24] softirqs last disabled at (33100): [] wg_packet_send_staged_packets+0x460/0x1380 [ 165.894743][ T24] ---[ end trace 0000000000000000 ]--- 1970/01/01 00:02:46 building call list... [ 167.572139][ T1057] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 167.768697][ T1057] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 167.950449][ T1057] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.145638][ T1057] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 executing program executing program [ 171.599402][ T1057] device hsr_slave_0 left promiscuous mode [ 171.688109][ T1057] device hsr_slave_1 left promiscuous mode [ 171.871364][ T1057] device veth1_macvtap left promiscuous mode [ 171.873854][ T1057] device veth0_macvtap left promiscuous mode [ 171.890997][ T1057] device veth1_vlan left promiscuous mode [ 171.893242][ T1057] device veth0_vlan left promiscuous mode executing program [ 175.281938][ T1057] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 175.482111][ T1057] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 176.157470][ T1057] bond0 (unregistering): Released all slaves executing program executing program executing program executing program executing program executing program [ 193.059797][ T2204] can: request_module (can-proto-0) failed. [ 193.360611][ T2204] can: request_module (can-proto-0) failed. [ 193.636722][ T2204] can: request_module (can-proto-0) failed. executing program VM DIAGNOSIS: 01:35:58 Registers: info registers vcpu 0 PC=ffff8000096bc00c X00=0000000000000080 X01=00000000000003c0 X02=1fffe00001562369 X03=dfff800000000000 X04=1fffe00001562369 X05=ffff000009a69080 X06=0000000000000001 X07=00009ffffecb2df0 X08=ffff000009a69080 X09=dfff800000000000 X10=ffff60000134d210 X11=1fffe0000134d210 X12=ffff60000134d211 X13=0000000000000000 X14=1ffff00001000d1c X15=0000000000000000 X16=0000000000000000 X17=0000000000000000 X18=ffff00000e301ab8 X19=ffff800010aad030 X20=ffff80000e574020 X21=00000000000003c0 X22=0000000000000f01 X23=1fffe0000134d258 X24=00000000000003c0 X25=0000000000000001 X26=ffff000009a69080 X27=dfff800000000000 X28=ffff80000e5742a0 X29=ffff800008006a90 X30=ffff8000096bc13c SP=ffff800008006a90 PSTATE=100003c5 ---V EL1h FPCR=00000000 FPSR=00000000 Q00=2525252525252525:2525252525252525 Q01=25207334362e2520:732500676f6c2f76 Q02=6f736e6f632f7665:642f000a73252073 Q03=0000000000000000:0000ff0000000000 Q04=0000000000000000:0000ff0000000000 Q05=4000000000000400:0010040000000000 Q06=0000000000000000:0000040000100000 Q07=4010040140100401:4010040140100401 Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000 Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000041040041400:0000041040041400 Q17=0000000000001000:00000010aa80aa80 Q18=0000000000000000:0000000000100000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000 info registers vcpu 1 PC=ffff8000087d7188 X00=ffff80000b461600 X01=ffff000009000200 X02=0000000000000003 X03=0000000000000001 X04=0000000000001220 X05=00000000f2f2f200 X06=00000000f3f3f3f3 X07=1fffe00001e83820 X08=ffff00000f41c100 X09=ffff80000f3d49c0 X10=ffff00000f41c04c X11=0000000000000007 X12=1fffe00001e83809 X13=0000000000000000 X14=1ffff0000231ce2c X15=ffff00006a9eab88 X16=0000000000000000 X17=1ffff0000221edc4 X18=ffff00006a9eabc0 X19=ffff000009002300 X20=ffff00006a9ff7b0 X21=0000000000000000 X22=00000000ffffffff X23=ffff8000118e73b0 X24=ffff80000e1849e0 X25=0000000000000b20 X26=0000000000000000 X27=ffff00000f41b680 X28=0000000000000001 X29=ffff8000118e7310 X30=ffff8000087d7464 SP=ffff8000118e7310 PSTATE=10000005 ---V EL1h FPCR=00000000 FPSR=00000000 Q00=0000000000000000:0000000000000000 Q01=0000000000000000:0000000000000000 Q02=0000000000000000:0000000000000000 Q03=0000000000000000:0000000000000000 Q04=0000000000000000:0000000000000000 Q05=0000000000000000:0000000000000000 Q06=0000000000000000:0000000000000000 Q07=0000000000000000:0000000000000000 Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000 Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000000000000000:0000000000000000 Q17=0000000000000000:0000000000000000 Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000