Warning: Permanently added '[localhost]:33495' (ECDSA) to the list of known hosts.
2023/05/17 02:24:58 fuzzer started
2023/05/17 02:24:58 dialing manager at localhost:35573
2023/05/17 02:24:58 checking machine...
2023/05/17 02:24:58 checking revisions...
syzkaller login: [   44.287401] kmemleak: Automatic memory scanning thread ended
2023/05/17 02:24:59 testing simple program...
[   44.361716] cgroup: Unknown subsys name 'net'
[   44.461717] cgroup: Unknown subsys name 'rlimit'
executing program
executing program
executing program
executing program
[   57.850840] audit: type=1400 audit(1684290312.645:6): avc:  denied  { execmem } for  pid=258 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[   58.966928] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   58.968682] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   58.970748] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   58.975266] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   58.977226] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   58.981324] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
executing program
[   59.455549] ------------[ cut here ]------------
[   59.456822] sysctl net/ipv4/ipfrag_low_thresh: data points to kernel global data: ipfrag_low_thresh_unused
[   59.458965] WARNING: CPU: 0 PID: 259 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   59.460196] Modules linked in:
[   59.460605] CPU: 0 PID: 259 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-next-20230516 #1
[   59.465354] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   59.466367] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   59.467007] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 20 24 e2 84 e8 6a cd d5 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   59.469215] RSP: 0018:ffff88801a1c7c00 EFLAGS: 00010282
[   59.469856] RAX: 0000000000000000 RBX: ffff88800df2dc40 RCX: 0000000000000000
[   59.470744] RDX: ffff8880159bd1c0 RSI: ffffffff81172af2 RDI: 0000000000000001
[   59.471631] RBP: ffff88800df2dc54 R08: 0000000000000001 R09: 0000000000000000
[   59.472501] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[   59.473375] R13: ffffffff84e223a0 R14: ffff88800df2dc48 R15: ffffffff84d73340
[   59.474271] FS:  0000555555d32400(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[   59.475259] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   59.475965] CR2: 00007fddaf0226f4 CR3: 0000000015b74000 CR4: 0000000000350ef0
[   59.476844] Call Trace:
[   59.477194]  <TASK>
[   59.477493]  ? __pfx_ipv4_frags_init_net+0x10/0x10
[   59.478131]  ipv4_frags_init_net+0x269/0x440
[   59.478684]  ops_init+0xbb/0x6b0
[   59.479161]  setup_net+0x3d9/0x990
[   59.479651]  ? down_read_killable+0x1d7/0x4e0
[   59.480251]  ? __pfx_setup_net+0x10/0x10
[   59.480749]  ? copy_net_ns+0x17c/0x770
[   59.481280]  copy_net_ns+0x321/0x770
[   59.481760]  create_new_namespaces+0x3f6/0xb30
[   59.482412]  unshare_nsproxy_namespaces+0xc1/0x200
[   59.483074]  ksys_unshare+0x44d/0x8e0
[   59.483586]  ? __pfx_ksys_unshare+0x10/0x10
[   59.484181]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   59.484908]  __x64_sys_unshare+0x31/0x40
[   59.485477]  do_syscall_64+0x3f/0x90
[   59.485965]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   59.486669] RIP: 0033:0x7f9dc1dd90d7
[   59.487177] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   59.489460] RSP: 002b:00007ffeb2fd3bb8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[   59.490454] RAX: ffffffffffffffda RBX: 00007ffeb2fd41f8 RCX: 00007f9dc1dd90d7
[   59.491389] RDX: 00007f9dc1e4341f RSI: 00007ffeb2fd3b50 RDI: 0000000040000000
[   59.492319] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffeb2fd3960
[   59.493237] R10: 0000000000000000 R11: 0000000000000206 R12: 00007f9dc1eebbf0
[   59.494157] R13: 00007ffeb2fd3c90 R14: 0000000000000000 R15: 00000000000000f8
[   59.495093]  </TASK>
[   59.495409] irq event stamp: 8431
[   59.495854] hardirqs last  enabled at (8441): [<ffffffff812fdd38>] __up_console_sem+0x78/0x80
[   59.496949] hardirqs last disabled at (8452): [<ffffffff812fdd1d>] __up_console_sem+0x5d/0x80
[   59.498058] softirqs last  enabled at (8314): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   59.499139] softirqs last disabled at (8309): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   59.500226] ---[ end trace 0000000000000000 ]---
[   59.505825] ------------[ cut here ]------------
[   59.506460] sysctl net/ipv6/ip6frag_low_thresh: data points to kernel global data: ip6_frags_low_thresh_unused
[   59.508471] WARNING: CPU: 0 PID: 259 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   59.509562] Modules linked in:
[   59.509983] CPU: 0 PID: 259 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-next-20230516 #1
[   59.511202] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   59.512273] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   59.512940] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 20 24 e2 84 e8 6a cd d5 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   59.515193] RSP: 0018:ffff88801a1c7c00 EFLAGS: 00010282
[   59.515891] RAX: 0000000000000000 RBX: ffff88800d596a40 RCX: 0000000000000000
[   59.516824] RDX: ffff8880159bd1c0 RSI: ffffffff81172af2 RDI: 0000000000000001
[   59.517749] RBP: ffff88800d596a54 R08: 0000000000000001 R09: 0000000000000000
[   59.518676] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[   59.519611] R13: ffffffff84e223a0 R14: ffff88800d596a48 R15: ffffffff84da62e0
[   59.520536] FS:  0000555555d32400(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[   59.521553] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   59.522322] CR2: 00007fddaf0226f4 CR3: 0000000015b74000 CR4: 0000000000350ef0
[   59.523234] Call Trace:
[   59.523610]  <TASK>
[   59.523910]  ? __pfx_ipv6_frags_init_net+0x10/0x10
[   59.524551]  ipv6_frags_init_net+0x206/0x3c0
[   59.525139]  ops_init+0xbb/0x6b0
[   59.525579]  setup_net+0x3d9/0x990
[   59.526052]  ? down_read_killable+0x1d7/0x4e0
[   59.526615]  ? __pfx_setup_net+0x10/0x10
[   59.527159]  ? copy_net_ns+0x17c/0x770
[   59.527683]  copy_net_ns+0x321/0x770
[   59.528198]  create_new_namespaces+0x3f6/0xb30
[   59.528801]  unshare_nsproxy_namespaces+0xc1/0x200
[   59.529458]  ksys_unshare+0x44d/0x8e0
[   59.529965]  ? __pfx_ksys_unshare+0x10/0x10
[   59.530557]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   59.531319]  __x64_sys_unshare+0x31/0x40
[   59.531879]  do_syscall_64+0x3f/0x90
[   59.532400]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   59.533096] RIP: 0033:0x7f9dc1dd90d7
[   59.533576] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   59.535763] RSP: 002b:00007ffeb2fd3bb8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[   59.536693] RAX: ffffffffffffffda RBX: 00007ffeb2fd41f8 RCX: 00007f9dc1dd90d7
[   59.537568] RDX: 00007f9dc1e4341f RSI: 00007ffeb2fd3b50 RDI: 0000000040000000
[   59.538444] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffeb2fd3960
[   59.539313] R10: 0000000000000000 R11: 0000000000000206 R12: 00007f9dc1eebbf0
[   59.540191] R13: 00007ffeb2fd3c90 R14: 0000000000000000 R15: 00000000000000f8
[   59.541094]  </TASK>
[   59.541389] irq event stamp: 10233
[   59.541813] hardirqs last  enabled at (10243): [<ffffffff812fdd38>] __up_console_sem+0x78/0x80
[   59.542894] hardirqs last disabled at (10254): [<ffffffff812fdd1d>] __up_console_sem+0x5d/0x80
[   59.544030] softirqs last  enabled at (9728): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   59.545106] softirqs last disabled at (9707): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   59.546164] ---[ end trace 0000000000000000 ]---
[   59.547511] ------------[ cut here ]------------
[   59.548111] sysctl net/netfilter/nf_conntrack_frag6_low_thresh: data points to kernel global data: nf_conntrack_frag6_low_thresh_unused
[   59.550095] WARNING: CPU: 0 PID: 259 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   59.551151] Modules linked in:
[   59.551574] CPU: 0 PID: 259 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-next-20230516 #1
[   59.552733] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   59.553729] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   59.554394] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 20 24 e2 84 e8 6a cd d5 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   59.556622] RSP: 0018:ffff88801a1c7bf0 EFLAGS: 00010286
[   59.557360] RAX: 0000000000000000 RBX: ffff88800d596240 RCX: 0000000000000000
[   59.558333] RDX: ffff8880159bd1c0 RSI: ffffffff81172af2 RDI: 0000000000000001
[   59.559312] RBP: ffff88800d596254 R08: 0000000000000001 R09: 0000000000000000
[   59.560370] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[   59.561357] R13: ffffffff84e223a0 R14: ffff88800d596248 R15: ffffffff84daf020
[   59.562332] FS:  0000555555d32400(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[   59.563454] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   59.564261] CR2: 00007fddaf0226f4 CR3: 0000000015b74000 CR4: 0000000000350ef0
[   59.565228] Call Trace:
[   59.565585]  <TASK>
[   59.565907]  nf_ct_net_init+0x224/0x3d0
[   59.566500]  ? __pfx_nf_ct_net_init+0x10/0x10
[   59.567153]  ops_init+0xbb/0x6b0
[   59.567638]  setup_net+0x3d9/0x990
[   59.568159]  ? down_read_killable+0x1d7/0x4e0
[   59.568766]  ? __pfx_setup_net+0x10/0x10
[   59.569346]  ? copy_net_ns+0x17c/0x770
[   59.569893]  copy_net_ns+0x321/0x770
[   59.570450]  create_new_namespaces+0x3f6/0xb30
[   59.571119]  unshare_nsproxy_namespaces+0xc1/0x200
[   59.571798]  ksys_unshare+0x44d/0x8e0
[   59.572363]  ? __pfx_ksys_unshare+0x10/0x10
[   59.572961]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   59.573754]  __x64_sys_unshare+0x31/0x40
[   59.574350]  do_syscall_64+0x3f/0x90
[   59.574869]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   59.575613] RIP: 0033:0x7f9dc1dd90d7
[   59.576157] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   59.578516] RSP: 002b:00007ffeb2fd3bb8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[   59.579565] RAX: ffffffffffffffda RBX: 00007ffeb2fd41f8 RCX: 00007f9dc1dd90d7
[   59.580540] RDX: 00007f9dc1e4341f RSI: 00007ffeb2fd3b50 RDI: 0000000040000000
[   59.581510] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffeb2fd3960
[   59.582492] R10: 0000000000000000 R11: 0000000000000206 R12: 00007f9dc1eebbf0
[   59.583478] R13: 00007ffeb2fd3c90 R14: 0000000000000000 R15: 00000000000000f8
[   59.584472]  </TASK>
[   59.584807] irq event stamp: 10985
[   59.585318] hardirqs last  enabled at (10997): [<ffffffff812fdd38>] __up_console_sem+0x78/0x80
[   59.586484] hardirqs last disabled at (11008): [<ffffffff812fdd1d>] __up_console_sem+0x5d/0x80
[   59.587675] softirqs last  enabled at (10644): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   59.588822] softirqs last disabled at (10635): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   59.589967] ---[ end trace 0000000000000000 ]---
[   61.051697] Bluetooth: hci0: command 0x0409 tx timeout
executing program
[   63.099329] Bluetooth: hci0: command 0x041b tx timeout
executing program
[   65.147097] Bluetooth: hci0: command 0x040f tx timeout
[   67.195227] Bluetooth: hci0: command 0x0419 tx timeout
executing program

VM DIAGNOSIS:
02:25:07  Registers:
info registers vcpu 0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff82507685 RDI=ffffffff87f27c00 RBP=ffffffff87f27bc0 RSP=ffff88801a1c75f0
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000020 R11=0000000000000001
R12=0000000000000020 R13=ffffffff87f27bc0 R14=0000000000000010 R15=ffffffff82507670
RIP=ffffffff825076dd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555555d32400 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fddaf0226f4 CR3=0000000015b74000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=0000000000000000000000000000ff00 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000026953 RBX=0000000000000001 RCX=ffffffff844c4a0e RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff81288625 RBP=dffffc0000000000 RSP=ffff888008dcfe68
R8 =0000000000000001 R9 =ffffed100d9e69f8 R10=ffff88806cf34fc3 R11=0000000000000001
R12=ffffffff85d34a10 R13=1ffff110011b9fd2 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff844c599f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffa8dc4a780 CR3=0000000015b56000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=6258c1fa81455eaa7d471f2f9e62b1dc
XMM02=6b1e99b806172e3b00000000000aea28 XMM03=ac8bc31478ec851100000000000aefa0
XMM04=1403a8b1cf8042c0000000000013c488 XMM05=d3fdd5f48436fbd700000000000aead0
XMM06=26b89b4951ccbf2700000000000ae988 XMM07=a1fcdcf819d7e1e500000000000ae728
XMM08=44495f474f4c5359530069253d595449 XMM09=00000000000000000000000000000000
XMM10=00000000000000000020000000200000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000