Warning: Permanently added '[localhost]:65109' (ECDSA) to the list of known hosts.
2023/05/17 09:57:38 fuzzer started
2023/05/17 09:57:38 dialing manager at localhost:35573
2023/05/17 09:57:39 checking machine...
2023/05/17 09:57:39 checking revisions...
syzkaller login: [  208.615019] kmemleak: Automatic memory scanning thread ended
2023/05/17 09:57:39 testing simple program...
[  208.701448] cgroup: Unknown subsys name 'net'
[  208.811651] cgroup: Unknown subsys name 'rlimit'
executing program
executing program
executing program
executing program
[  222.843020] audit: type=1400 audit(1684317473.410:6): avc:  denied  { execmem } for  pid=265 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
executing program
[  224.044298] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  224.052040] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  224.052983] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  224.063334] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  224.071067] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  224.071952] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  224.420120] ------------[ cut here ]------------
[  224.420614] sysctl net/ipv4/ipfrag_low_thresh: data points to kernel global data: ipfrag_low_thresh_unused
[  224.421700] WARNING: CPU: 1 PID: 266 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[  224.422381] Modules linked in:
[  224.422640] CPU: 1 PID: 266 Comm: syz-executor.0 Tainted: G        W    L     6.4.0-rc2-next-20230516 #1
[  224.426325] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  224.427491] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[  224.427960] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 20 24 e2 84 e8 6a cd d5 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[  224.430389] RSP: 0018:ffff88801fb9fc00 EFLAGS: 00010282
[  224.430833] RAX: 0000000000000000 RBX: ffff88800c434040 RCX: 0000000000000000
[  224.432875] RDX: ffff888016e2d1c0 RSI: ffffffff81172af2 RDI: 0000000000000001
[  224.433643] RBP: ffff88800c434054 R08: 0000000000000001 R09: 0000000000000000
[  224.434216] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000
[  224.434951] R13: ffffffff84e223a0 R14: ffff88800c434048 R15: ffffffff84d73340
[  224.435622] FS:  0000555555df7400(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[  224.436340] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  224.436833] CR2: 00007f6f7068a6f4 CR3: 000000000e5c6000 CR4: 0000000000350ee0
[  224.437517] Call Trace:
[  224.437733]  <TASK>
[  224.437931]  ? __pfx_ipv4_frags_init_net+0x10/0x10
[  224.438467]  ipv4_frags_init_net+0x269/0x440
[  224.438853]  ops_init+0xbb/0x6b0
[  224.439260]  setup_net+0x3d9/0x990
[  224.439650]  ? down_read_killable+0x1d7/0x4e0
[  224.440031]  ? __pfx_setup_net+0x10/0x10
[  224.440510]  ? copy_net_ns+0x17c/0x770
[  224.440849]  copy_net_ns+0x321/0x770
[  224.441189]  create_new_namespaces+0x3f6/0xb30
[  224.441631]  unshare_nsproxy_namespaces+0xc1/0x200
[  224.442036]  ksys_unshare+0x44d/0x8e0
[  224.442390]  ? __pfx_ksys_unshare+0x10/0x10
[  224.442752]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[  224.443377]  __x64_sys_unshare+0x31/0x40
[  224.443719]  do_syscall_64+0x3f/0x90
[  224.444028]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[  224.444629] RIP: 0033:0x7f8d24b6e0d7
[  224.444942] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  224.446328] RSP: 002b:00007ffe3b7c50a8 EFLAGS: 00000202 ORIG_RAX: 0000000000000110
[  224.446922] RAX: ffffffffffffffda RBX: 00007ffe3b7c56e8 RCX: 00007f8d24b6e0d7
[  224.447554] RDX: 00007f8d24bd841f RSI: 00007ffe3b7c5040 RDI: 0000000040000000
[  224.448061] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffe3b7c4e50
[  224.448721] R10: 0000000000000000 R11: 0000000000000202 R12: 00007f8d24c80bf0
[  224.449248] R13: 00007ffe3b7c5180 R14: 0000000000000000 R15: 00000000000000f8
[  224.449811]  </TASK>
[  224.449992] irq event stamp: 9325
[  224.450296] hardirqs last  enabled at (9337): [<ffffffff812fdd38>] __up_console_sem+0x78/0x80
[  224.450975] hardirqs last disabled at (9346): [<ffffffff812fdd1d>] __up_console_sem+0x5d/0x80
[  224.451850] softirqs last  enabled at (8954): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[  224.452517] softirqs last disabled at (8929): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[  224.453212] ---[ end trace 0000000000000000 ]---
[  224.473015] ------------[ cut here ]------------
[  224.473493] sysctl net/ipv6/ip6frag_low_thresh: data points to kernel global data: ip6_frags_low_thresh_unused
[  224.474558] WARNING: CPU: 1 PID: 266 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[  224.475274] Modules linked in:
[  224.475549] CPU: 1 PID: 266 Comm: syz-executor.0 Tainted: G        W    L     6.4.0-rc2-next-20230516 #1
[  224.476332] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  224.476980] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[  224.477492] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 20 24 e2 84 e8 6a cd d5 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[  224.478945] RSP: 0018:ffff88801fb9fc00 EFLAGS: 00010282
[  224.479436] RAX: 0000000000000000 RBX: ffff888006ad0c40 RCX: 0000000000000000
[  224.480016] RDX: ffff888016e2d1c0 RSI: ffffffff81172af2 RDI: 0000000000000001
[  224.480615] RBP: ffff888006ad0c54 R08: 0000000000000001 R09: 0000000000000000
[  224.481201] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  224.481761] R13: ffffffff84e223a0 R14: ffff888006ad0c48 R15: ffffffff84da62e0
[  224.482358] FS:  0000555555df7400(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[  224.494912] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  224.495432] CR2: 00007f6f7068a6f4 CR3: 000000000e5c6000 CR4: 0000000000350ee0
[  224.496002] Call Trace:
[  224.496248]  <TASK>
[  224.496484]  ? __pfx_ipv6_frags_init_net+0x10/0x10
[  224.496895]  ipv6_frags_init_net+0x206/0x3c0
[  224.497288]  ops_init+0xbb/0x6b0
[  224.497639]  setup_net+0x3d9/0x990
[  224.497943]  ? down_read_killable+0x1d7/0x4e0
[  224.498367]  ? __pfx_setup_net+0x10/0x10
[  224.498720]  ? copy_net_ns+0x17c/0x770
[  224.499077]  copy_net_ns+0x321/0x770
[  224.499443]  create_new_namespaces+0x3f6/0xb30
[  224.499867]  unshare_nsproxy_namespaces+0xc1/0x200
[  224.500305]  ksys_unshare+0x44d/0x8e0
[  224.500638]  ? __pfx_ksys_unshare+0x10/0x10
[  224.501004]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[  224.501544]  __x64_sys_unshare+0x31/0x40
[  224.501892]  do_syscall_64+0x3f/0x90
[  224.502234]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[  224.502711] RIP: 0033:0x7f8d24b6e0d7
[  224.503042] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  224.504514] RSP: 002b:00007ffe3b7c50a8 EFLAGS: 00000202 ORIG_RAX: 0000000000000110
[  224.505136] RAX: ffffffffffffffda RBX: 00007ffe3b7c56e8 RCX: 00007f8d24b6e0d7
[  224.505728] RDX: 00007f8d24bd841f RSI: 00007ffe3b7c5040 RDI: 0000000040000000
[  224.506319] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffe3b7c4e50
[  224.527006] R10: 0000000000000000 R11: 0000000000000202 R12: 00007f8d24c80bf0
[  224.527573] R13: 00007ffe3b7c5180 R14: 0000000000000000 R15: 00000000000000f8
[  224.528118]  </TASK>
[  224.528338] irq event stamp: 11197
[  224.528641] hardirqs last  enabled at (11207): [<ffffffff812fdd38>] __up_console_sem+0x78/0x80
[  224.529305] hardirqs last disabled at (11218): [<ffffffff812fdd1d>] __up_console_sem+0x5d/0x80
[  224.529998] softirqs last  enabled at (10770): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[  224.530670] softirqs last disabled at (10765): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[  224.531349] ---[ end trace 0000000000000000 ]---
[  224.532456] ------------[ cut here ]------------
[  224.532824] sysctl net/netfilter/nf_conntrack_frag6_low_thresh: data points to kernel global data: nf_conntrack_frag6_low_thresh_unused
[  224.534126] WARNING: CPU: 1 PID: 266 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[  224.534807] Modules linked in:
[  224.535090] CPU: 1 PID: 266 Comm: syz-executor.0 Tainted: G        W    L     6.4.0-rc2-next-20230516 #1
[  224.535853] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  224.536497] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[  224.536934] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 20 24 e2 84 e8 6a cd d5 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[  224.538288] RSP: 0018:ffff88801fb9fbf0 EFLAGS: 00010286
[  224.538707] RAX: 0000000000000000 RBX: ffff8880069f8640 RCX: 0000000000000000
[  224.547330] RDX: ffff888016e2d1c0 RSI: ffffffff81172af2 RDI: 0000000000000001
[  224.547866] RBP: ffff8880069f8654 R08: 0000000000000001 R09: 0000000000000000
[  224.548430] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  224.549005] R13: ffffffff84e223a0 R14: ffff8880069f8648 R15: ffffffff84daf020
[  224.549600] FS:  0000555555df7400(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[  224.550222] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  224.550714] CR2: 00007f6f7068a6f4 CR3: 000000000e5c6000 CR4: 0000000000350ee0
[  224.551303] Call Trace:
[  224.551510]  <TASK>
[  224.551697]  nf_ct_net_init+0x224/0x3d0
[  224.552021]  ? __pfx_nf_ct_net_init+0x10/0x10
[  224.552404]  ops_init+0xbb/0x6b0
[  224.552712]  setup_net+0x3d9/0x990
[  224.552992]  ? down_read_killable+0x1d7/0x4e0
[  224.553366]  ? __pfx_setup_net+0x10/0x10
[  224.553730]  ? copy_net_ns+0x17c/0x770
[  224.554047]  copy_net_ns+0x321/0x770
[  224.554380]  create_new_namespaces+0x3f6/0xb30
[  224.554754]  unshare_nsproxy_namespaces+0xc1/0x200
[  224.555213]  ksys_unshare+0x44d/0x8e0
[  224.555525]  ? __pfx_ksys_unshare+0x10/0x10
[  224.555874]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[  224.556351]  __x64_sys_unshare+0x31/0x40
[  224.556677]  do_syscall_64+0x3f/0x90
[  224.556975]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[  224.557401] RIP: 0033:0x7f8d24b6e0d7
[  224.557702] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  224.559081] RSP: 002b:00007ffe3b7c50a8 EFLAGS: 00000202 ORIG_RAX: 0000000000000110
[  224.559680] RAX: ffffffffffffffda RBX: 00007ffe3b7c56e8 RCX: 00007f8d24b6e0d7
[  224.560230] RDX: 00007f8d24bd841f RSI: 00007ffe3b7c5040 RDI: 0000000040000000
[  224.560777] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffe3b7c4e50
[  224.561348] R10: 0000000000000000 R11: 0000000000000202 R12: 00007f8d24c80bf0
[  224.561917] R13: 00007ffe3b7c5180 R14: 0000000000000000 R15: 00000000000000f8
[  224.562514]  </TASK>
[  224.562744] irq event stamp: 12031
[  224.563038] hardirqs last  enabled at (12041): [<ffffffff812fdd38>] __up_console_sem+0x78/0x80
[  224.563751] hardirqs last disabled at (12052): [<ffffffff812fdd1d>] __up_console_sem+0x5d/0x80
[  224.564425] softirqs last  enabled at (11650): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[  224.565070] softirqs last disabled at (11645): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[  224.565741] ---[ end trace 0000000000000000 ]---
[  226.143714] Bluetooth: hci0: command 0x0409 tx timeout
executing program
[  228.187276] Bluetooth: hci0: command 0x041b tx timeout
executing program
[  230.235058] Bluetooth: hci0: command 0x040f tx timeout
[  232.295241] Bluetooth: hci0: command 0x0419 tx timeout
executing program

VM DIAGNOSIS:
09:55:17  Registers:
info registers vcpu 0
RAX=0000000000000001 RBX=000000000000009f RCX=ffffffff812d1969 RDX=fffffbfff0ef2d3b
RSI=0000000000000008 RDI=ffffffff877969d0 RBP=0000000000000000 RSP=ffff888015cefbe0
R8 =0000000000000000 R9 =fffffbfff0ef2d3a R10=ffffffff877969d7 R11=0000000000000001
R12=ffff888016df2530 R13=ffff888016df1b40 R14=ffffffff85d35b6c R15=0000000000000001
RIP=ffffffff812d1971 RFL=00000047 [---Z-PC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f7a3f275900 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f7a3e7ac000 CR3=0000000015d66000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ffffffffffffffffffffffffffffffff XMM01=30306234386136303638616663356134
XMM02=38303062343861363036386166633561 XMM03=2f6c616e72756f6a2f676f6c2f6e7572
XMM04=4dc2b59220411224000000000014bea8 XMM05=d3fdd5f48436fbd700000000000aead0
XMM06=36d9049e7d50997600000000000ae988 XMM07=00000000000000000000000000000000
XMM08=44495f474f4c5359530069253d595449 XMM09=00000000000000000000000000000000
XMM10=00000000000000000020200000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=ffffffff8799e8d8 RBX=0000000000000030 RCX=ffffffff877bc850 RDX=00000000000003ff
RSI=1ffffffff0f33c9d RDI=ffffffff8799e518 RBP=ffffffff812c2540 RSP=ffff88801fb9f468
R8 =ffffffff8779e9d0 R9 =ffffffff87925e28 R10=00000000000000f2 R11=1ffffffff0e6462f
R12=ffff88801fb9f5d0 R13=ffffffff87936c28 R14=dffffc0000000000 R15=ffffffff87936c18
RIP=ffffffff812c422b RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555555df7400 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f6f7068a6f4 CR3=000000000e5c6000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=0000000000000000000000000000ff00 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000