Warning: Permanently added '[localhost]:56420' (ECDSA) to the list of known hosts.
2023/05/17 05:59:53 fuzzer started
2023/05/17 05:59:53 dialing manager at localhost:35573
2023/05/17 05:59:53 checking machine...
2023/05/17 05:59:53 checking revisions...
syzkaller login: [   64.359069] kmemleak: Automatic memory scanning thread ended
2023/05/17 05:59:54 testing simple program...
[   64.439192] cgroup: Unknown subsys name 'net'
[   64.532002] cgroup: Unknown subsys name 'rlimit'
executing program
executing program
executing program
executing program
[   77.670356] audit: type=1400 audit(1684303207.384:6): avc:  denied  { execmem } for  pid=258 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[   78.773580] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   78.775134] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   78.778014] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   78.781649] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   78.783615] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   78.786712] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   79.212049] ------------[ cut here ]------------
[   79.212757] sysctl net/ipv4/ipfrag_low_thresh: data points to kernel global data: ipfrag_low_thresh_unused
[   79.214579] WARNING: CPU: 1 PID: 259 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   79.215656] Modules linked in:
[   79.216072] CPU: 1 PID: 259 Comm: syz-executor.0 Tainted: G        W    L     6.4.0-rc2-next-20230516 #1
executing program
[   79.218529] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   79.221126] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   79.221906] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 20 24 e2 84 e8 6a cd d5 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   79.224189] RSP: 0018:ffff8880161e7c00 EFLAGS: 00010282
[   79.224997] RAX: 0000000000000000 RBX: ffff88800d733c40 RCX: 0000000000000000
[   79.226241] RDX: ffff88801a121b40 RSI: ffffffff81172af2 RDI: 0000000000000001
[   79.227452] RBP: ffff88800d733c54 R08: 0000000000000001 R09: 0000000000000000
[   79.228606] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000
[   79.229820] R13: ffffffff84e223a0 R14: ffff88800d733c48 R15: ffffffff84d73340
[   79.231021] FS:  0000555555f34400(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[   79.232408] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   79.233135] CR2: 00007fe81f99f6f4 CR3: 000000000f24a000 CR4: 0000000000350ee0
[   79.234046] Call Trace:
[   79.234438]  <TASK>
[   79.234738]  ? __pfx_ipv4_frags_init_net+0x10/0x10
[   79.235486]  ipv4_frags_init_net+0x269/0x440
[   79.236040]  ops_init+0xbb/0x6b0
[   79.236535]  setup_net+0x3d9/0x990
[   79.237012]  ? down_read_killable+0x1d7/0x4e0
[   79.237638]  ? __pfx_setup_net+0x10/0x10
[   79.238144]  ? copy_net_ns+0x17c/0x770
[   79.238715]  copy_net_ns+0x321/0x770
[   79.239192]  create_new_namespaces+0x3f6/0xb30
[   79.239831]  unshare_nsproxy_namespaces+0xc1/0x200
[   79.240503]  ksys_unshare+0x44d/0x8e0
[   79.241010]  ? __pfx_ksys_unshare+0x10/0x10
[   79.241607]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   79.242332]  __x64_sys_unshare+0x31/0x40
[   79.242912]  do_syscall_64+0x3f/0x90
[   79.243444]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   79.244097] RIP: 0033:0x7ff12c1ed0d7
[   79.244613] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   79.246820] RSP: 002b:00007ffe0ec28f28 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[   79.247824] RAX: ffffffffffffffda RBX: 00007ffe0ec29568 RCX: 00007ff12c1ed0d7
[   79.248761] RDX: 00007ff12c25741f RSI: 00007ffe0ec28ec0 RDI: 0000000040000000
[   79.249683] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffe0ec28cd0
[   79.250597] R10: 0000000000000000 R11: 0000000000000206 R12: 00007ff12c2ffbf0
[   79.251515] R13: 00007ffe0ec29000 R14: 0000000000000000 R15: 00000000000000f8
[   79.252448]  </TASK>
[   79.252760] irq event stamp: 9593
[   79.253182] hardirqs last  enabled at (9603): [<ffffffff812fdd38>] __up_console_sem+0x78/0x80
[   79.254316] hardirqs last disabled at (9620): [<ffffffff812fdd1d>] __up_console_sem+0x5d/0x80
[   79.255438] softirqs last  enabled at (9616): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   79.256509] softirqs last disabled at (9611): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   79.257599] ---[ end trace 0000000000000000 ]---
[   79.263093] ------------[ cut here ]------------
[   79.263733] sysctl net/ipv6/ip6frag_low_thresh: data points to kernel global data: ip6_frags_low_thresh_unused
[   79.265541] WARNING: CPU: 1 PID: 259 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   79.266633] Modules linked in:
[   79.267041] CPU: 1 PID: 259 Comm: syz-executor.0 Tainted: G        W    L     6.4.0-rc2-next-20230516 #1
[   79.268231] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   79.269294] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   79.270020] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 20 24 e2 84 e8 6a cd d5 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   79.272250] RSP: 0018:ffff8880161e7c00 EFLAGS: 00010282
[   79.273004] RAX: 0000000000000000 RBX: ffff88800c985c40 RCX: 0000000000000000
[   79.273944] RDX: ffff88801a121b40 RSI: ffffffff81172af2 RDI: 0000000000000001
[   79.274867] RBP: ffff88800c985c54 R08: 0000000000000001 R09: 0000000000000000
[   79.275785] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[   79.276726] R13: ffffffff84e223a0 R14: ffff88800c985c48 R15: ffffffff84da62e0
[   79.277675] FS:  0000555555f34400(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[   79.278719] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   79.279499] CR2: 00007fe81f99f6f4 CR3: 000000000f24a000 CR4: 0000000000350ee0
[   79.280419] Call Trace:
[   79.280749]  <TASK>
[   79.281032]  ? __pfx_ipv6_frags_init_net+0x10/0x10
[   79.281672]  ipv6_frags_init_net+0x206/0x3c0
[   79.282208]  ops_init+0xbb/0x6b0
[   79.282709]  setup_net+0x3d9/0x990
[   79.283148]  ? down_read_killable+0x1d7/0x4e0
[   79.283738]  ? __pfx_setup_net+0x10/0x10
[   79.284221]  ? copy_net_ns+0x17c/0x770
[   79.284780]  copy_net_ns+0x321/0x770
[   79.285249]  create_new_namespaces+0x3f6/0xb30
[   79.285868]  unshare_nsproxy_namespaces+0xc1/0x200
[   79.286510]  ksys_unshare+0x44d/0x8e0
[   79.286978]  ? __pfx_ksys_unshare+0x10/0x10
[   79.287569]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   79.288242]  __x64_sys_unshare+0x31/0x40
[   79.288803]  do_syscall_64+0x3f/0x90
[   79.289255]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   79.289914] RIP: 0033:0x7ff12c1ed0d7
[   79.290420] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   79.292614] RSP: 002b:00007ffe0ec28f28 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[   79.293608] RAX: ffffffffffffffda RBX: 00007ffe0ec29568 RCX: 00007ff12c1ed0d7
[   79.294520] RDX: 00007ff12c25741f RSI: 00007ffe0ec28ec0 RDI: 0000000040000000
[   79.295432] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffe0ec28cd0
[   79.296272] R10: 0000000000000000 R11: 0000000000000206 R12: 00007ff12c2ffbf0
[   79.297186] R13: 00007ffe0ec29000 R14: 0000000000000000 R15: 00000000000000f8
[   79.298116]  </TASK>
[   79.298462] irq event stamp: 11409
[   79.298875] hardirqs last  enabled at (11419): [<ffffffff812fdd38>] __up_console_sem+0x78/0x80
[   79.299940] hardirqs last disabled at (11430): [<ffffffff812fdd1d>] __up_console_sem+0x5d/0x80
[   79.300994] softirqs last  enabled at (10432): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   79.302031] softirqs last disabled at (10423): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   79.303092] ---[ end trace 0000000000000000 ]---
[   79.304503] ------------[ cut here ]------------
[   79.305126] sysctl net/netfilter/nf_conntrack_frag6_low_thresh: data points to kernel global data: nf_conntrack_frag6_low_thresh_unused
[   79.307129] WARNING: CPU: 1 PID: 259 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   79.308253] Modules linked in:
[   79.308741] CPU: 1 PID: 259 Comm: syz-executor.0 Tainted: G        W    L     6.4.0-rc2-next-20230516 #1
[   79.309946] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   79.310999] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   79.311741] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 20 24 e2 84 e8 6a cd d5 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   79.313979] RSP: 0018:ffff8880161e7bf0 EFLAGS: 00010286
[   79.314685] RAX: 0000000000000000 RBX: ffff88800c976040 RCX: 0000000000000000
[   79.315594] RDX: ffff88801a121b40 RSI: ffffffff81172af2 RDI: 0000000000000001
[   79.316537] RBP: ffff88800c976054 R08: 0000000000000001 R09: 0000000000000000
[   79.317538] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[   79.318490] R13: ffffffff84e223a0 R14: ffff88800c976048 R15: ffffffff84daf020
[   79.319563] FS:  0000555555f34400(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[   79.320537] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   79.321220] CR2: 00007fe81f99f6f4 CR3: 000000000f24a000 CR4: 0000000000350ee0
[   79.322116] Call Trace:
[   79.322483]  <TASK>
[   79.322773]  nf_ct_net_init+0x224/0x3d0
[   79.323266]  ? __pfx_nf_ct_net_init+0x10/0x10
[   79.323877]  ops_init+0xbb/0x6b0
[   79.324320]  setup_net+0x3d9/0x990
[   79.324867]  ? down_read_killable+0x1d7/0x4e0
[   79.325474]  ? __pfx_setup_net+0x10/0x10
[   79.325982]  ? copy_net_ns+0x17c/0x770
[   79.326549]  copy_net_ns+0x321/0x770
[   79.327036]  create_new_namespaces+0x3f6/0xb30
[   79.327892]  unshare_nsproxy_namespaces+0xc1/0x200
[   79.328824]  ksys_unshare+0x44d/0x8e0
[   79.329533]  ? __pfx_ksys_unshare+0x10/0x10
[   79.330284]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   79.331316]  __x64_sys_unshare+0x31/0x40
[   79.332081]  do_syscall_64+0x3f/0x90
[   79.332823]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   79.333758] RIP: 0033:0x7ff12c1ed0d7
[   79.334224] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   79.336460] RSP: 002b:00007ffe0ec28f28 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[   79.337463] RAX: ffffffffffffffda RBX: 00007ffe0ec29568 RCX: 00007ff12c1ed0d7
[   79.338326] RDX: 00007ff12c25741f RSI: 00007ffe0ec28ec0 RDI: 0000000040000000
[   79.339254] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffe0ec28cd0
[   79.340184] R10: 0000000000000000 R11: 0000000000000206 R12: 00007ff12c2ffbf0
[   79.341125] R13: 00007ffe0ec29000 R14: 0000000000000000 R15: 00000000000000f8
[   79.342059]  </TASK>
[   79.342416] irq event stamp: 12215
[   79.342854] hardirqs last  enabled at (12225): [<ffffffff812fdd38>] __up_console_sem+0x78/0x80
[   79.343936] hardirqs last disabled at (12236): [<ffffffff812fdd1d>] __up_console_sem+0x5d/0x80
[   79.345056] softirqs last  enabled at (11940): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   79.346107] softirqs last disabled at (11935): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   79.347174] ---[ end trace 0000000000000000 ]---
[   80.854142] Bluetooth: hci0: command 0x0409 tx timeout
executing program
[   82.901430] Bluetooth: hci0: command 0x041b tx timeout
[   84.949436] Bluetooth: hci0: command 0x040f tx timeout
executing program
[   86.998459] Bluetooth: hci0: command 0x0419 tx timeout
executing program

VM DIAGNOSIS:
05:59:38  Registers:
info registers vcpu 0
RAX=1ffff11002d99fa5 RBX=dffffc0000000000 RCX=0000000000000000 RDX=0000000000000001
RSI=ffffffff815a38a8 RDI=ffffc90000683081 RBP=ffff888016ccfd28 RSP=ffff888016ccfc60
R8 =0000000000000006 R9 =00000000c000003e R10=00000000c000003e R11=0000000000000000
R12=ffff888016ccfd28 R13=ffff888016ccfd60 R14=00000000000000a5 R15=ffffc90000683080
RIP=ffffffff815a38e1 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f3545f23900 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f3545334950 CR3=000000000ede2000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ffffffffffffffffffffffffffffffff XMM01=30306234386136303638616663356134
XMM02=38303062343861363036386166633561 XMM03=2f6c616e72756f6a2f676f6c2f6e7572
XMM04=249275c2416682060000000000140ad0 XMM05=d3fdd5f48436fbd700000000000aead0
XMM06=273cdd1204d0b34900000000000ae988 XMM07=00000000000000000000000000000000
XMM08=44495f474f4c5359530069253d595449 XMM09=00000000000000000000000000000000
XMM10=00000000000000000020000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=1ffffffff0c086d1 RBX=ffffffff86043688 RCX=ffffffff844bf597 RDX=0000000000000000
RSI=ffffffff864a26f8 RDI=ffffffff86043670 RBP=ffffffff86043684 RSP=ffff88806cf09948
R8 =ffffffff864a26f8 R9 =ffffffff864a2678 R10=0000000000038001 R11=00000000000b461c
R12=ffffffff86043690 R13=ffffffff86043670 R14=ffffffff86043680 R15=dffffc0000000000
RIP=ffffffff81130c5f RFL=00000216 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555555f34400 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fe81f99f6f4 CR3=000000000f24a000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=0000000000000000000000000000ff00 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000