syzkaller login: [ 106.574776][ T2048] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 106.594847][ T2048] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 106.606832][ T2048] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:27955' (ECDSA) to the list of known hosts. 1970/01/01 00:02:45 fuzzer started 1970/01/01 00:02:50 connecting to host at localhost:38367 1970/01/01 00:02:50 checking machine... 1970/01/01 00:02:50 checking revisions... executing program 1970/01/01 00:02:53 testing simple program... [ 174.674437][ T2208] cgroup: Unknown subsys name 'net' [ 175.220598][ T2208] cgroup: Unknown subsys name 'rlimit' executing program executing program [ 182.169390][ T2211] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 182.210310][ T2211] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link executing program [ 185.413915][ T2211] device hsr_slave_0 entered promiscuous mode [ 185.558885][ T2211] device hsr_slave_1 entered promiscuous mode executing program [ 187.574193][ T2211] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 187.671536][ T2211] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 187.743475][ T2211] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 187.837861][ T2211] netdevsim netdevsim0 netdevsim3: renamed from eth3 executing program [ 190.289597][ T2211] 8021q: adding VLAN 0 to HW filter on device bond0 [ 190.409110][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 190.424723][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 191.793307][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 191.811400][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 191.877851][ T2209] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 191.883400][ T2209] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 191.955889][ T2209] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 192.022733][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready executing program [ 192.195263][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 192.220125][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 192.283893][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 192.293885][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 192.365516][ T2211] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 193.493532][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 193.513524][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready executing program [ 196.197443][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 196.204514][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 197.539102][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 197.555864][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 197.594012][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 197.609424][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 197.645031][ T2211] device veth0_vlan entered promiscuous mode [ 197.785487][ T2211] device veth1_vlan entered promiscuous mode executing program [ 198.078159][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 198.082568][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 198.130847][ T2211] device veth0_macvtap entered promiscuous mode [ 198.178580][ T2211] device veth1_macvtap entered promiscuous mode [ 198.371997][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 198.392746][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 198.400566][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 198.407193][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 198.464215][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 198.483134][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 198.572907][ T2211] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 198.574166][ T2211] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 198.574671][ T2211] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 198.575265][ T2211] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 198.871199][ C1] ------------[ cut here ]------------ [ 198.871887][ C1] WARNING: CPU: 1 PID: 2267 at include/linux/cpumask.h:110 wg_cpumask_next_online+0x1c0/0x2c0 [ 198.872457][ C1] Modules linked in: [ 198.872802][ C1] CPU: 1 PID: 2267 Comm: kworker/u4:7 Tainted: G W 6.0.0-syzkaller-10822-g60bb8154d1d7 #0 [ 198.873168][ C1] Hardware name: linux,dummy-virt (DT) [ 198.873732][ C1] Workqueue: wg-kex-wg2 wg_packet_handshake_send_worker [ 198.874324][ C1] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 198.875236][ C1] pc : wg_cpumask_next_online+0x1c0/0x2c0 [ 198.875575][ C1] lr : wg_packet_receive+0x978/0x1560 [ 198.877088][ C1] sp : ffff800010ab7480 [ 198.877701][ C1] x29: ffff800010ab7480 x28: 0000000000000001 x27: 1fffe000015d2219 [ 198.878300][ C1] x26: 0000000000000000 x25: ffff80000de5c000 x24: 0000000000000000 [ 198.878896][ C1] x23: 0000000000000003 x22: ffff80000de5cb68 x21: 0000000000000001 [ 198.879503][ C1] x20: ffff00000ae910c8 x19: ffff80000de5cd50 x18: 000000002b1800ff [ 198.880108][ C1] x17: ffff80005cbe4000 x16: ffff800010ab8000 x15: ffff000018c3eca8 [ 198.880692][ C1] x14: 1ffff00002156e68 x13: 0000000000000000 x12: ffff6000015d2291 [ 198.881272][ C1] x11: 1fffe000015d2290 x10: ffff6000015d2290 x9 : dfff800000000000 [ 198.881891][ C1] x8 : ffff00000ae91483 x7 : 00009ffffea2dd70 x6 : 0000000000000001 [ 198.882478][ C1] x5 : ffff00000ae91480 x4 : ffff700001bcb9aa x3 : dfff800000000000 [ 198.883093][ C1] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001 [ 198.883723][ C1] Call trace: [ 198.884018][ C1] wg_cpumask_next_online+0x1c0/0x2c0 [ 198.884402][ C1] wg_packet_receive+0x978/0x1560 [ 198.884751][ C1] wg_receive+0x58/0xb0 [ 198.885098][ C1] udpv6_queue_rcv_one_skb+0x8f4/0x17c0 [ 198.885481][ C1] udpv6_queue_rcv_skb+0x134/0x7e0 [ 198.886447][ C1] udp6_unicast_rcv_skb+0xe8/0x270 [ 198.886832][ C1] __udp6_lib_rcv+0x8a4/0x2330 [ 198.887447][ C1] udpv6_rcv+0x1c/0x2c [ 198.887896][ C1] ip6_protocol_deliver_rcu+0x154/0x14f0 [ 198.888288][ C1] ip6_input_finish+0x108/0x220 [ 198.888725][ C1] ip6_input+0xbc/0x2b0 [ 198.889046][ C1] ipv6_rcv+0x39c/0x47c [ 198.889374][ C1] __netif_receive_skb_one_core+0xf4/0x170 [ 198.889796][ C1] __netif_receive_skb+0x24/0x184 [ 198.890283][ C1] process_backlog+0x24c/0x6b0 [ 198.890640][ C1] __napi_poll+0x94/0x3a4 [ 198.890975][ C1] net_rx_action+0x78c/0xb60 [ 198.891317][ C1] _stext+0x28c/0x107c [ 198.891658][ C1] ____do_softirq+0x10/0x20 [ 198.892031][ C1] call_on_irq_stack+0x2c/0x54 [ 198.892381][ C1] do_softirq_own_stack+0x1c/0x30 [ 198.892744][ C1] do_softirq.part.0+0xd0/0xf4 [ 198.893100][ C1] __local_bh_enable_ip+0x50c/0x5d0 [ 198.893563][ C1] _raw_read_unlock_bh+0x54/0x64 [ 198.893955][ C1] wg_socket_send_skb_to_peer+0xf0/0x190 [ 198.894330][ C1] wg_socket_send_buffer_to_peer+0x110/0x160 [ 198.894723][ C1] wg_packet_send_handshake_initiation+0x1a8/0x274 [ 198.895126][ C1] wg_packet_handshake_send_worker+0x1c/0x34 [ 198.895526][ C1] process_one_work+0x780/0x184c [ 198.895893][ C1] worker_thread+0x3cc/0xc40 [ 198.897553][ C1] kthread+0x23c/0x2a0 [ 198.898399][ C1] ret_from_fork+0x10/0x20 [ 198.898899][ C1] irq event stamp: 6169 [ 198.899222][ C1] hardirqs last enabled at (6168): [] __local_bh_enable_ip+0x1e4/0x5d0 [ 198.899723][ C1] hardirqs last disabled at (6169): [] el1_dbg+0x24/0x80 [ 198.900126][ C1] softirqs last enabled at (6160): [] wg_socket_send_skb_to_peer+0xf0/0x190 [ 198.900587][ C1] softirqs last disabled at (6161): [] ____do_softirq+0x10/0x20 [ 198.901033][ C1] ---[ end trace 0000000000000000 ]--- [ 198.938050][ T21] ------------[ cut here ]------------ [ 198.938716][ T21] WARNING: CPU: 1 PID: 21 at include/linux/cpumask.h:110 wg_packet_send_staged_packets+0xe38/0x1380 [ 198.939125][ T21] Modules linked in: [ 198.939469][ T21] CPU: 1 PID: 21 Comm: kworker/1:0 Tainted: G W 6.0.0-syzkaller-10822-g60bb8154d1d7 #0 [ 198.939853][ T21] Hardware name: linux,dummy-virt (DT) [ 198.940148][ T21] Workqueue: wg-kex-wg2 wg_packet_handshake_receive_worker [ 198.940508][ T21] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 198.940844][ T21] pc : wg_packet_send_staged_packets+0xe38/0x1380 [ 198.941138][ T21] lr : wg_packet_send_staged_packets+0x524/0x1380 [ 198.941427][ T21] sp : ffff800010c57800 [ 198.941718][ T21] x29: ffff800010c57800 x28: ffff0000109b0c00 x27: 0000000000000001 [ 198.942162][ T21] x26: 0000000000000001 x25: 0000000000000002 x24: 1fffe00003187d6e [ 198.942655][ T21] x23: ffff000018c3eb68 x22: ffff80000de5cd50 x21: ffff00000efaa580 [ 198.943430][ T21] x20: ffff000018c3eb40 x19: ffff00000f7e8c40 x18: ffff00006a9eab88 [ 198.943992][ T21] x17: ffff80005cbe4000 x16: ffff800010ab8000 x15: ffff00006a9eabc4 [ 198.944433][ T21] x14: 1ffff0000218aece x13: 0000000000000000 x12: ffff600001df54b2 [ 198.944854][ T21] x11: ffff700001bcb9aa x10: dfff800000000000 x9 : 0000000000000003 [ 198.945301][ T21] x8 : ffff80000de5c000 x7 : 1fffe00001efd1b9 x6 : 0000000000000000 [ 198.945779][ T21] x5 : ffff00000f7e8dc8 x4 : ffff80000de5cb68 x3 : ffff800009f2ac94 [ 198.946494][ T21] x2 : 0000000000000002 x1 : 0000000000000002 x0 : 0000000000000001 [ 198.947073][ T21] Call trace: [ 198.947284][ T21] wg_packet_send_staged_packets+0xe38/0x1380 [ 198.947591][ T21] wg_packet_send_keepalive+0x40/0x2a0 [ 198.947896][ T21] wg_receive_handshake_packet+0x2c8/0x7c0 [ 198.948353][ T21] wg_packet_handshake_receive_worker+0xd8/0x2ec [ 198.948712][ T21] process_one_work+0x780/0x184c [ 198.949213][ T21] worker_thread+0x3cc/0xc40 [ 198.949521][ T21] kthread+0x23c/0x2a0 [ 198.949869][ T21] ret_from_fork+0x10/0x20 [ 198.950116][ T21] irq event stamp: 9151 [ 198.950536][ T21] hardirqs last enabled at (9149): [] seqcount_lockdep_reader_access.constprop.0+0xc4/0xe0 [ 198.950986][ T21] hardirqs last disabled at (9151): [] el1_dbg+0x24/0x80 [ 198.951395][ T21] softirqs last enabled at (9146): [] wg_packet_send_staged_packets+0x20c/0x1380 [ 198.951804][ T21] softirqs last disabled at (9150): [] wg_packet_send_staged_packets+0x460/0x1380 [ 198.952230][ T21] ---[ end trace 0000000000000000 ]--- 1970/01/01 00:03:20 building call list... [ 200.900252][ T2267] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 executing program [ 201.274435][ T2267] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 201.512321][ T2267] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 201.759619][ T2267] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 executing program [ 205.132872][ T2267] device hsr_slave_0 left promiscuous mode [ 205.231911][ T2267] device hsr_slave_1 left promiscuous mode [ 205.438803][ T2267] device veth1_macvtap left promiscuous mode [ 205.442325][ T2267] device veth0_macvtap left promiscuous mode [ 205.462418][ T2267] device veth1_vlan left promiscuous mode [ 205.478583][ T2267] device veth0_vlan left promiscuous mode executing program [ 209.184168][ T2267] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 209.315901][ T2267] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 209.950525][ T2267] bond0 (unregistering): Released all slaves executing program executing program executing program executing program executing program executing program [ 225.561843][ T2199] can: request_module (can-proto-0) failed. [ 225.889909][ T2199] can: request_module (can-proto-0) failed. [ 226.175416][ T2199] can: request_module (can-proto-0) failed. executing program VM DIAGNOSIS: 04:10:53 Registers: info registers vcpu 0 PC=ffff80000836b2f0 X00=00000000000000c0 X01=1ffff00001fd78ed X02=ffff000011c1d1c0 X03=ffff8000081b5448 X04=ffff80000de5fb70 X05=ffff00000efab248 X06=ffff8000081b4438 X07=ffff000011c1d1c0 X08=ffff80000de5cd50 X09=0000000000000003 X10=ffff000011c1db8c X11=1ffff0000212e846 X12=ffff70000212e847 X13=0000000000000000 X14=1ffff00002224d2a X15=ffff00006a9cbbc4 X16=ffff800009f2c5dc X17=ffff800009f2d8e0 X18=ffff00006a9cbb88 X19=ffff80000de13000 X20=0000000000000204 X21=0000000000000000 X22=ffff000011c1d1c0 X23=ffff000011c1dba8 X24=1fffe00001245003 X25=ffff000009228908 X26=00000000ffffffff X27=0000000000000000 X28=ffff80000de5c000 X29=ffff8000111268c0 X30=ffff80000c8ee0b0 SP=ffff8000111268c0 PSTATE=80000005 N--- EL1h FPCR=00000000 FPSR=00000010 Q00=0000000000000000:3f83abef11496779 Q01=0000000000000000:3f847ae147ae147b Q02=0000000000000000:41b02c36cb2491d2 Q03=0000000000000000:41458d4000000000 Q04=0000000000000000:3f845476b50eec9e Q05=4010040140100401:4010040140100401 Q06=0400000000000010:0400000000000010 Q07=0000000000000000:3feb9c82a88c71f8 Q08=0000000000000000:3f94e06f01573f20 Q09=0000000000000000:3fe42f68d2b90deb Q10=0000000000000000:3fe0000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000000000000000:0000000000000000 Q17=0000000000000000:0000000000000000 Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=000000000000000b:00000000dd8202ca Q31=0000000000000000:0000000000000000 info registers vcpu 1 PC=ffff8000096ac860 X00=0000000000000002 X01=0000000000000002 X02=ffff000009a69172 X03=dfff800000000000 X04=1fffe0000134d22e X05=0000000000000002 X06=1fffe0000134d22e X07=0000000000000030 X08=ffff800010ab6a83 X09=dfff800000000000 X10=ffff700002156d50 X11=1ffff00002156d50 X12=ffff700002156d51 X13=0000000000000000 X14=1ffff00002156d26 X15=0000000000000000 X16=0000000000000000 X17=0000000000000000 X18=000000002b1800ff X19=ffff000009a69080 X20=ffff800010aad018 X21=ffff80000e5722e0 X22=0000000000000064 X23=dfff800000000000 X24=ffff8000107757d8 X25=0000000000000001 X26=ffff000009a69080 X27=dfff800000000000 X28=0000000000000038 X29=ffff800010ab6a20 X30=ffff8000096ada30 SP=ffff800010ab6a20 PSTATE=800003c5 N--- EL1h FPCR=00000000 FPSR=00000010 Q00=0000000000000000:3f840f7ca74bada6 Q01=0000000000000000:3f847ae147ae147b Q02=0000000000000000:419711b3122832a6 Q03=0000000000000000:412e256000000000 Q04=0000000000000000:3f8407df321e2fbe Q05=0000000000000000:3fd3333333333333 Q06=0000000000000000:0000001000000000 Q07=0000000000000000:0000000000000000 Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000 Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000000000000000:0000000000000000 Q17=0000000000000000:0000000000000000 Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000000:00000000b610d34e Q31=0000000000000000:0000000000000000