Warning: Permanently added '[localhost]:46546' (ECDSA) to the list of known hosts.
2023/05/16 13:25:50 fuzzer started
2023/05/16 13:25:50 dialing manager at localhost:35573
2023/05/16 13:25:50 checking machine...
2023/05/16 13:25:50 checking revisions...
syzkaller login: [   51.755695] kmemleak: Automatic memory scanning thread ended
2023/05/16 13:25:51 testing simple program...
[   51.825219] cgroup: Unknown subsys name 'net'
[   51.924733] cgroup: Unknown subsys name 'rlimit'
executing program
executing program
executing program
executing program
[   63.930050] audit: type=1400 audit(1684243563.221:6): avc:  denied  { execmem } for  pid=257 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[   65.052018] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   65.055289] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   65.056852] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   65.061138] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   65.062831] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   65.065569] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   65.474675] ------------[ cut here ]------------
[   65.475740] sysctl net/ipv4/ipfrag_low_thresh: data points to kernel global data: ipfrag_low_thresh_unused
[   65.477516] WARNING: CPU: 0 PID: 258 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   65.478702] Modules linked in:
[   65.479174] CPU: 0 PID: 258 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-next-20230516 #1
[   65.484384] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   65.485505] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   65.486238] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 20 24 e2 84 e8 6a cd d5 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   65.488559] RSP: 0018:ffff8880146e7c00 EFLAGS: 00010282
[   65.489287] RAX: 0000000000000000 RBX: ffff88800ea93c40 RCX: 0000000000000000
[   65.490237] RDX: ffff888015bd0000 RSI: ffffffff81172af2 RDI: 0000000000000001
[   65.491178] RBP: ffff88800ea93c54 R08: 0000000000000001 R09: 0000000000000000
[   65.492152] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000
[   65.493096] R13: ffffffff84e223a0 R14: ffff88800ea93c48 R15: ffffffff84d73340
[   65.494043] FS:  00005555557ab400(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[   65.495101] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   65.495888] CR2: 00007f1014ba8300 CR3: 0000000016e50000 CR4: 0000000000350ef0
[   65.496863] Call Trace:
[   65.497212]  <TASK>
[   65.497525]  ? __pfx_ipv4_frags_init_net+0x10/0x10
[   65.498202]  ipv4_frags_init_net+0x269/0x440
[   65.498822]  ops_init+0xbb/0x6b0
[   65.499298]  setup_net+0x3d9/0x990
[   65.499813]  ? down_read_killable+0x1d7/0x4e0
[   65.500434]  ? __pfx_setup_net+0x10/0x10
[   65.501004]  ? copy_net_ns+0x17c/0x770
[   65.501547]  copy_net_ns+0x321/0x770
[   65.502093]  create_new_namespaces+0x3f6/0xb30
[   65.502713]  unshare_nsproxy_namespaces+0xc1/0x200
[   65.503402]  ksys_unshare+0x44d/0x8e0
[   65.503968]  ? __pfx_ksys_unshare+0x10/0x10
[   65.504553]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   65.505342]  __x64_sys_unshare+0x31/0x40
[   65.505923]  do_syscall_64+0x3f/0x90
[   65.506433]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   65.507147] RIP: 0033:0x7fefe158a0d7
[   65.507638] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   65.509947] RSP: 002b:00007ffde34b6808 EFLAGS: 00000202 ORIG_RAX: 0000000000000110
[   65.510951] RAX: ffffffffffffffda RBX: 00007ffde34b6e48 RCX: 00007fefe158a0d7
[   65.511890] RDX: 00007fefe15f441f RSI: 00007ffde34b67a0 RDI: 0000000040000000
[   65.512845] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffde34b65b0
[   65.513788] R10: 0000000000000000 R11: 0000000000000202 R12: 00007fefe169cbf0
[   65.514702] R13: 00007ffde34b68e0 R14: 0000000000000000 R15: 00000000000000f8
[   65.515673]  </TASK>
[   65.516032] irq event stamp: 8153
[   65.516489] hardirqs last  enabled at (8163): [<ffffffff812fdd38>] __up_console_sem+0x78/0x80
[   65.517617] hardirqs last disabled at (8174): [<ffffffff812fdd1d>] __up_console_sem+0x5d/0x80
[   65.518732] softirqs last  enabled at (7698): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   65.519846] softirqs last disabled at (7687): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   65.520960] ---[ end trace 0000000000000000 ]---
[   65.526505] ------------[ cut here ]------------
[   65.527166] sysctl net/ipv6/ip6frag_low_thresh: data points to kernel global data: ip6_frags_low_thresh_unused
[   65.529049] WARNING: CPU: 0 PID: 258 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   65.530164] Modules linked in:
[   65.530600] CPU: 0 PID: 258 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-next-20230516 #1
[   65.531842] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   65.532947] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   65.533631] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 20 24 e2 84 e8 6a cd d5 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   65.535979] RSP: 0018:ffff8880146e7c00 EFLAGS: 00010282
[   65.536677] RAX: 0000000000000000 RBX: ffff8880094c8a40 RCX: 0000000000000000
[   65.537652] RDX: ffff888015bd0000 RSI: ffffffff81172af2 RDI: 0000000000000001
[   65.538602] RBP: ffff8880094c8a54 R08: 0000000000000001 R09: 0000000000000000
[   65.539548] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[   65.540515] R13: ffffffff84e223a0 R14: ffff8880094c8a48 R15: ffffffff84da62e0
[   65.541459] FS:  00005555557ab400(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[   65.542510] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   65.543294] CR2: 00007f1014ba8300 CR3: 0000000016e50000 CR4: 0000000000350ef0
[   65.544247] Call Trace:
[   65.544596]  <TASK>
[   65.544952]  ? __pfx_ipv6_frags_init_net+0x10/0x10
[   65.545610]  ipv6_frags_init_net+0x206/0x3c0
[   65.546246]  ops_init+0xbb/0x6b0
[   65.546722]  setup_net+0x3d9/0x990
[   65.547244]  ? down_read_killable+0x1d7/0x4e0
[   65.547891]  ? __pfx_setup_net+0x10/0x10
[   65.548457]  ? copy_net_ns+0x17c/0x770
[   65.549029]  copy_net_ns+0x321/0x770
[   65.549539]  create_new_namespaces+0x3f6/0xb30
[   65.550220]  unshare_nsproxy_namespaces+0xc1/0x200
[   65.550917]  ksys_unshare+0x44d/0x8e0
[   65.551446]  ? __pfx_ksys_unshare+0x10/0x10
[   65.552068]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   65.552878]  __x64_sys_unshare+0x31/0x40
[   65.553427]  do_syscall_64+0x3f/0x90
[   65.553966]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   65.554650] RIP: 0033:0x7fefe158a0d7
[   65.555174] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   65.557491] RSP: 002b:00007ffde34b6808 EFLAGS: 00000202 ORIG_RAX: 0000000000000110
[   65.558491] RAX: ffffffffffffffda RBX: 00007ffde34b6e48 RCX: 00007fefe158a0d7
[   65.559427] RDX: 00007fefe15f441f RSI: 00007ffde34b67a0 RDI: 0000000040000000
[   65.560391] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffde34b65b0
[   65.561332] R10: 0000000000000000 R11: 0000000000000202 R12: 00007fefe169cbf0
[   65.562276] R13: 00007ffde34b68e0 R14: 0000000000000000 R15: 00000000000000f8
[   65.563267]  </TASK>
[   65.563587] irq event stamp: 9659
[   65.564087] hardirqs last  enabled at (9671): [<ffffffff812fdd38>] __up_console_sem+0x78/0x80
[   65.565217] hardirqs last disabled at (9682): [<ffffffff812fdd1d>] __up_console_sem+0x5d/0x80
[   65.566354] softirqs last  enabled at (9464): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   65.567468] softirqs last disabled at (9455): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   65.568584] ---[ end trace 0000000000000000 ]---
[   65.570212] ------------[ cut here ]------------
[   65.570918] sysctl net/netfilter/nf_conntrack_frag6_low_thresh: data points to kernel global data: nf_conntrack_frag6_low_thresh_unused
[   65.573103] WARNING: CPU: 0 PID: 258 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   65.574232] Modules linked in:
[   65.574668] CPU: 0 PID: 258 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-next-20230516 #1
[   65.575892] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   65.576993] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   65.577678] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 20 24 e2 84 e8 6a cd d5 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   65.579987] RSP: 0018:ffff8880146e7bf0 EFLAGS: 00010286
[   65.580686] RAX: 0000000000000000 RBX: ffff8880094c9040 RCX: 0000000000000000
[   65.581625] RDX: ffff888015bd0000 RSI: ffffffff81172af2 RDI: 0000000000000001
[   65.582555] RBP: ffff8880094c9054 R08: 0000000000000001 R09: 0000000000000000
[   65.583501] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[   65.584458] R13: ffffffff84e223a0 R14: ffff8880094c9048 R15: ffffffff84daf020
[   65.585411] FS:  00005555557ab400(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[   65.586461] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   65.587242] CR2: 00007f1014ba8300 CR3: 0000000016e50000 CR4: 0000000000350ef0
[   65.588189] Call Trace:
[   65.588538]  <TASK>
[   65.588887]  nf_ct_net_init+0x224/0x3d0
[   65.589435]  ? __pfx_nf_ct_net_init+0x10/0x10
[   65.590071]  ops_init+0xbb/0x6b0
[   65.590554]  setup_net+0x3d9/0x990
[   65.591069]  ? down_read_killable+0x1d7/0x4e0
[   65.591668]  ? __pfx_setup_net+0x10/0x10
[   65.592258]  ? copy_net_ns+0x17c/0x770
[   65.592833]  copy_net_ns+0x321/0x770
[   65.593339]  create_new_namespaces+0x3f6/0xb30
[   65.593989]  unshare_nsproxy_namespaces+0xc1/0x200
[   65.594642]  ksys_unshare+0x44d/0x8e0
[   65.595195]  ? __pfx_ksys_unshare+0x10/0x10
[   65.595806]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   65.596576]  __x64_sys_unshare+0x31/0x40
[   65.597151]  do_syscall_64+0x3f/0x90
[   65.597656]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   65.598362] RIP: 0033:0x7fefe158a0d7
[   65.598889] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   65.601215] RSP: 002b:00007ffde34b6808 EFLAGS: 00000202 ORIG_RAX: 0000000000000110
[   65.602228] RAX: ffffffffffffffda RBX: 00007ffde34b6e48 RCX: 00007fefe158a0d7
[   65.603174] RDX: 00007fefe15f441f RSI: 00007ffde34b67a0 RDI: 0000000040000000
[   65.604116] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffde34b65b0
[   65.605083] R10: 0000000000000000 R11: 0000000000000202 R12: 00007fefe169cbf0
[   65.606033] R13: 00007ffde34b68e0 R14: 0000000000000000 R15: 00000000000000f8
[   65.606998]  </TASK>
[   65.607315] irq event stamp: 10449
[   65.607803] hardirqs last  enabled at (10461): [<ffffffff812fdd38>] __up_console_sem+0x78/0x80
[   65.608969] hardirqs last disabled at (10472): [<ffffffff812fdd1d>] __up_console_sem+0x5d/0x80
[   65.610108] softirqs last  enabled at (10096): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   65.611204] softirqs last disabled at (10091): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   65.612308] ---[ end trace 0000000000000000 ]---
executing program
[   67.134348] Bluetooth: hci0: command 0x0409 tx timeout
[   69.181820] Bluetooth: hci0: command 0x041b tx timeout
executing program
[   71.229827] Bluetooth: hci0: command 0x040f tx timeout
executing program
[   73.277853] Bluetooth: hci0: command 0x0419 tx timeout

VM DIAGNOSIS:
13:25:57  Registers:
info registers vcpu 0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff82507685 RDI=ffffffff87f27c00 RBP=ffffffff87f27bc0 RSP=ffff8880146e75f0
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000020 R11=0000000000000001
R12=0000000000000020 R13=ffffffff87f27bc0 R14=0000000000000010 R15=ffffffff82507670
RIP=ffffffff825076dd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00005555557ab400 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f1014ba8300 CR3=0000000016e50000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=0000000000000000000000000000ff00 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=000000000003ee27 RBX=0000000000000001 RCX=ffffffff844c4a0e RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff81288625 RBP=dffffc0000000000 RSP=ffff888008dcfe68
R8 =0000000000000001 R9 =ffffed100d9e69f8 R10=ffff88806cf34fc3 R11=0000000000000001
R12=ffffffff85d34a10 R13=1ffff110011b9fd2 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff844c599f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f1014b77610 CR3=0000000010126000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=2034303a36323a33312036312079614d XMM01=5d3437313937342e35362020205b203a
XMM02=75636578652d7a7973203a6d6d6f4320 XMM03=20202020202020572020202020202020
XMM04=6e2d3263722d302e342e362020202020 XMM05=3a6465746e69615420302e726f747563
XMM06=32203a4449502030203a555043205d34 XMM07=6e72656b2072656c6c616b7a79732034
XMM08=7475636578652d7a7973223d6d6d6f63 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000