Warning: Permanently added '[localhost]:15018' (ECDSA) to the list of known hosts.
2023/05/17 09:34:21 fuzzer started
2023/05/17 09:34:21 dialing manager at localhost:35573
2023/05/17 09:34:21 checking machine...
2023/05/17 09:34:21 checking revisions...
syzkaller login: [   42.929459] kmemleak: Automatic memory scanning thread ended
2023/05/17 09:34:21 testing simple program...
[   42.985975] cgroup: Unknown subsys name 'net'
[   43.054866] cgroup: Unknown subsys name 'rlimit'
executing program
executing program
executing program
executing program
[   55.596974] audit: type=1400 audit(1684316074.185:6): avc:  denied  { execmem } for  pid=260 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[   56.706220] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   56.707532] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   56.709927] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   56.711925] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   56.713010] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   56.713787] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   57.000942] ------------[ cut here ]------------
[   57.001494] sysctl net/ipv4/ipfrag_low_thresh: data points to kernel global data: ipfrag_low_thresh_unused
[   57.002663] WARNING: CPU: 0 PID: 261 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   57.003368] Modules linked in:
[   57.003690] CPU: 0 PID: 261 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-next-20230516 #1
[   57.006064] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   57.007702] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   57.008166] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 20 24 e2 84 e8 6a cd d5 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   57.009967] RSP: 0018:ffff888016b27c00 EFLAGS: 00010282
[   57.010424] RAX: 0000000000000000 RBX: ffff88800cab4440 RCX: 0000000000000000
[   57.011178] RDX: ffff888017bbb680 RSI: ffffffff81172af2 RDI: 0000000000000001
[   57.011866] RBP: ffff88800cab4454 R08: 0000000000000001 R09: 0000000000000000
[   57.012465] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[   57.013072] R13: ffffffff84e223a0 R14: ffff88800cab4448 R15: ffffffff84d73340
[   57.013725] FS:  0000555555f45400(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[   57.014394] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   57.014917] CR2: 00007fb0fbb18000 CR3: 000000001ed60000 CR4: 0000000000350ef0
[   57.015539] Call Trace:
[   57.015772]  <TASK>
[   57.015977]  ? __pfx_ipv4_frags_init_net+0x10/0x10
[   57.016398]  ipv4_frags_init_net+0x269/0x440
[   57.016820]  ops_init+0xbb/0x6b0
[   57.017123]  setup_net+0x3d9/0x990
[   57.017459]  ? down_read_killable+0x1d7/0x4e0
[   57.017876]  ? __pfx_setup_net+0x10/0x10
[   57.018224]  ? copy_net_ns+0x17c/0x770
[   57.018611]  copy_net_ns+0x321/0x770
[   57.018953]  create_new_namespaces+0x3f6/0xb30
[   57.019360]  unshare_nsproxy_namespaces+0xc1/0x200
[   57.019810]  ksys_unshare+0x44d/0x8e0
[   57.020156]  ? __pfx_ksys_unshare+0x10/0x10
[   57.020575]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   57.021064]  __x64_sys_unshare+0x31/0x40
[   57.021467]  do_syscall_64+0x3f/0x90
[   57.021831]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   57.022283] RIP: 0033:0x7fdd34cf30d7
[   57.022656] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   57.024180] RSP: 002b:00007ffd753cdf78 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[   57.024857] RAX: ffffffffffffffda RBX: 00007ffd753ce5b8 RCX: 00007fdd34cf30d7
[   57.025457] RDX: 00007fdd34d5d41f RSI: 00007ffd753cdf10 RDI: 0000000040000000
[   57.026071] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffd753cdd20
[   57.026698] R10: 0000000000000000 R11: 0000000000000206 R12: 00007fdd34e05bf0
[   57.027308] R13: 00007ffd753ce050 R14: 0000000000000000 R15: 00000000000000f8
[   57.027964]  </TASK>
[   57.028193] irq event stamp: 8125
[   57.028544] hardirqs last  enabled at (8137): [<ffffffff812fdd38>] __up_console_sem+0x78/0x80
[   57.029349] hardirqs last disabled at (8146): [<ffffffff812fdd1d>] __up_console_sem+0x5d/0x80
[   57.030203] softirqs last  enabled at (8024): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   57.030944] softirqs last disabled at (8015): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   57.031692] ---[ end trace 0000000000000000 ]---
[   57.035758] ------------[ cut here ]------------
[   57.036217] sysctl net/ipv6/ip6frag_low_thresh: data points to kernel global data: ip6_frags_low_thresh_unused
[   57.037574] WARNING: CPU: 0 PID: 261 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   57.038322] Modules linked in:
[   57.038630] CPU: 0 PID: 261 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-next-20230516 #1
[   57.039414] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   57.040141] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   57.040619] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 20 24 e2 84 e8 6a cd d5 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   57.042172] RSP: 0018:ffff888016b27c00 EFLAGS: 00010282
[   57.042646] RAX: 0000000000000000 RBX: ffff888006869440 RCX: 0000000000000000
[   57.043221] RDX: ffff888017bbb680 RSI: ffffffff81172af2 RDI: 0000000000000001
[   57.043857] RBP: ffff888006869454 R08: 0000000000000001 R09: 0000000000000000
[   57.044464] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[   57.045090] R13: ffffffff84e223a0 R14: ffff888006869448 R15: ffffffff84da62e0
[   57.045761] FS:  0000555555f45400(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[   57.046427] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   57.046962] CR2: 00007fb0fbb18000 CR3: 000000001ed60000 CR4: 0000000000350ef0
[   57.047582] Call Trace:
[   57.047819]  <TASK>
[   57.048031]  ? __pfx_ipv6_frags_init_net+0x10/0x10
[   57.048463]  ipv6_frags_init_net+0x206/0x3c0
[   57.048888]  ops_init+0xbb/0x6b0
[   57.049199]  setup_net+0x3d9/0x990
[   57.049563]  ? down_read_killable+0x1d7/0x4e0
[   57.049966]  ? __pfx_setup_net+0x10/0x10
[   57.050319]  ? copy_net_ns+0x17c/0x770
[   57.050708]  copy_net_ns+0x321/0x770
[   57.051054]  create_new_namespaces+0x3f6/0xb30
[   57.051503]  unshare_nsproxy_namespaces+0xc1/0x200
[   57.051940]  ksys_unshare+0x44d/0x8e0
[   57.052291]  ? __pfx_ksys_unshare+0x10/0x10
[   57.052698]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   57.053197]  __x64_sys_unshare+0x31/0x40
[   57.053608]  do_syscall_64+0x3f/0x90
[   57.053947]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   57.054401] RIP: 0033:0x7fdd34cf30d7
[   57.054770] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   57.056291] RSP: 002b:00007ffd753cdf78 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[   57.056956] RAX: ffffffffffffffda RBX: 00007ffd753ce5b8 RCX: 00007fdd34cf30d7
[   57.057634] RDX: 00007fdd34d5d41f RSI: 00007ffd753cdf10 RDI: 0000000040000000
[   57.058229] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffd753cdd20
[   57.058860] R10: 0000000000000000 R11: 0000000000000206 R12: 00007fdd34e05bf0
[   57.059505] R13: 00007ffd753ce050 R14: 0000000000000000 R15: 00000000000000f8
[   57.060127]  </TASK>
[   57.060345] irq event stamp: 9971
[   57.060679] hardirqs last  enabled at (9983): [<ffffffff812fdd38>] __up_console_sem+0x78/0x80
[   57.061440] hardirqs last disabled at (9992): [<ffffffff812fdd1d>] __up_console_sem+0x5d/0x80
[   57.062181] softirqs last  enabled at (9900): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   57.062917] softirqs last disabled at (9895): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   57.063673] ---[ end trace 0000000000000000 ]---
[   57.065077] ------------[ cut here ]------------
[   57.065544] sysctl net/netfilter/nf_conntrack_frag6_low_thresh: data points to kernel global data: nf_conntrack_frag6_low_thresh_unused
[   57.066907] WARNING: CPU: 0 PID: 261 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   57.067629] Modules linked in:
[   57.067902] CPU: 0 PID: 261 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-next-20230516 #1
[   57.068661] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   57.069338] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   57.069843] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 20 24 e2 84 e8 6a cd d5 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   57.071343] RSP: 0018:ffff888016b27bf0 EFLAGS: 00010286
[   57.071819] RAX: 0000000000000000 RBX: ffff888006869a40 RCX: 0000000000000000
[   57.072433] RDX: ffff888017bbb680 RSI: ffffffff81172af2 RDI: 0000000000000001
[   57.073066] RBP: ffff888006869a54 R08: 0000000000000001 R09: 0000000000000000
[   57.073743] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[   57.074383] R13: ffffffff84e223a0 R14: ffff888006869a48 R15: ffffffff84daf020
[   57.075036] FS:  0000555555f45400(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[   57.075759] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   57.076263] CR2: 00007fb0fbb18000 CR3: 000000001ed60000 CR4: 0000000000350ef0
[   57.076888] Call Trace:
[   57.077116]  <TASK>
[   57.077336]  nf_ct_net_init+0x224/0x3d0
[   57.077795]  ? __pfx_nf_ct_net_init+0x10/0x10
[   57.078215]  ops_init+0xbb/0x6b0
[   57.078555]  setup_net+0x3d9/0x990
[   57.078874]  ? down_read_killable+0x1d7/0x4e0
[   57.079268]  ? __pfx_setup_net+0x10/0x10
[   57.079654]  ? copy_net_ns+0x17c/0x770
[   57.080019]  copy_net_ns+0x321/0x770
[   57.080364]  create_new_namespaces+0x3f6/0xb30
[   57.080818]  unshare_nsproxy_namespaces+0xc1/0x200
[   57.081259]  ksys_unshare+0x44d/0x8e0
[   57.081670]  ? __pfx_ksys_unshare+0x10/0x10
[   57.082047]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   57.082583]  __x64_sys_unshare+0x31/0x40
[   57.082961]  do_syscall_64+0x3f/0x90
[   57.083304]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   57.083791] RIP: 0033:0x7fdd34cf30d7
[   57.084122] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   57.085712] RSP: 002b:00007ffd753cdf78 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[   57.086362] RAX: ffffffffffffffda RBX: 00007ffd753ce5b8 RCX: 00007fdd34cf30d7
[   57.087006] RDX: 00007fdd34d5d41f RSI: 00007ffd753cdf10 RDI: 0000000040000000
[   57.087637] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffd753cdd20
[   57.088245] R10: 0000000000000000 R11: 0000000000000206 R12: 00007fdd34e05bf0
[   57.088880] R13: 00007ffd753ce050 R14: 0000000000000000 R15: 00000000000000f8
[   57.089556]  </TASK>
[   57.089769] irq event stamp: 10705
[   57.090082] hardirqs last  enabled at (10715): [<ffffffff812fdd38>] __up_console_sem+0x78/0x80
[   57.090853] hardirqs last disabled at (10726): [<ffffffff812fdd1d>] __up_console_sem+0x5d/0x80
[   57.091623] softirqs last  enabled at (9900): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   57.092330] softirqs last disabled at (9895): [<ffffffff8118e283>] irq_exit_rcu+0x93/0xc0
[   57.093059] ---[ end trace 0000000000000000 ]---
executing program
[   58.727097] Bluetooth: hci0: command 0x0409 tx timeout
[   60.775118] Bluetooth: hci0: command 0x041b tx timeout
executing program
[   62.822731] Bluetooth: hci0: command 0x040f tx timeout
executing program
[   64.870925] Bluetooth: hci0: command 0x0419 tx timeout
executing program

VM DIAGNOSIS:
09:34:35  Registers:
info registers vcpu 0
RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff82507685 RDI=ffffffff87f27c00 RBP=ffffffff87f27bc0 RSP=ffff888016b275f0
R8 =0000000000000001 R9 =000000000000000a R10=000000000000002d R11=0000000000000001
R12=000000000000002d R13=ffffffff87f27bc0 R14=0000000000000010 R15=ffffffff82507670
RIP=ffffffff825076dd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555555f45400 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fb0fbb18000 CR3=000000001ed60000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=afc1b8a2641a20948f4f196f13070c72
XMM02=00000000000fb1402fccd54c36d8a3f3 XMM03=00000000000fb1f8f61f520134a0d9c2
XMM04=58ac1b01463000c800000000000ae988 XMM05=9ac40fe84c99e5c8000000000013b7e0
XMM06=6098c19552daab49000000000011ef98 XMM07=ee7587d5db12e8e300000000000fb1f8
XMM08=5d82995fcda3111200000000000fb140 XMM09=00000000000000000000000000000000
XMM10=00200000000000000020000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=00000000ffffffff RBX=0000000000000003 RCX=00007ffe33d03d10 RDX=00000000ffffffff
RSI=00007ffe33d03eb0 RDI=00007ffe33d03e90 RBP=0000000000000002 RSP=00007ffe33d03c30
R8 =0000000000000000 R9 =0000000000000010 R10=0000000000000002 R11=0000000000656434
R12=00007ffe33d03e90 R13=00007ffe33d03eb0 R14=0000000000000000 R15=00007ffe33d03d20
RIP=00007fb0fcdf97b0 RFL=00000286 [--S--P-] CPL=3 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0033 0000000000000000 ffffffff 00a0fb00 DPL=3 CS64 [-RA]
SS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fb0fc5f1900 00000000 00000000
GS =0000 0000000000000000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fb0fba66690 CR3=000000000eb6a000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=58ac1b01463000c800000000000ae988 XMM01=58ac1b01463000c800000000000ae988
XMM02=ffffffffffffffffffffffffffffffff XMM03=2f6c616e72756f6a2f676f6c2f6e7572
XMM04=117864066a3bf720000000000010d798 XMM05=d3fdd5f48436fbd700000000000aead0
XMM06=58ac1b01463000c800000000000ae988 XMM07=00000000000000000000000000000000
XMM08=44495f474f4c5359530069253d595449 XMM09=00000000000000000000000000000000
XMM10=00200000000000000020000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000