Warning: Permanently added '[localhost]:19471' (ECDSA) to the list of known hosts.
2023/05/17 13:14:07 fuzzer started
2023/05/17 13:14:07 dialing manager at localhost:44319
2023/05/17 13:14:07 checking machine...
2023/05/17 13:14:07 checking revisions...
syzkaller login: [   43.486189] kmemleak: Automatic memory scanning thread ended
2023/05/17 13:14:07 testing simple program...
[   43.554816] cgroup: Unknown subsys name 'net'
[   43.630512] cgroup: Unknown subsys name 'rlimit'
executing program
executing program
executing program
executing program
[   55.779417] audit: type=1400 audit(1684329259.873:6): avc:  denied  { execmem } for  pid=261 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[   56.905010] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   56.906755] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   56.909762] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   56.915462] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   56.918413] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   56.921282] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   57.328542] ------------[ cut here ]------------
[   57.329732] sysctl net/ipv4/ipfrag_low_thresh: data points to kernel global data: ipfrag_low_thresh_unused
[   57.332023] WARNING: CPU: 0 PID: 262 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   57.333719] Modules linked in:
[   57.334474] CPU: 0 PID: 262 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-next-20230517 #1
[   57.339663] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   57.340927] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   57.341747] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 60 40 e2 84 e8 fa ff d4 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   57.344433] RSP: 0018:ffff8880164bfc00 EFLAGS: 00010282
[   57.345275] RAX: 0000000000000000 RBX: ffff88800d112440 RCX: 0000000000000000
[   57.346423] RDX: ffff88801639d1c0 RSI: ffffffff81171ad2 RDI: 0000000000000001
[   57.347523] RBP: ffff88800d112454 R08: 0000000000000001 R09: 0000000000000000
[   57.348621] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000
[   57.349735] R13: ffffffff84e23fe0 R14: ffff88800d112448 R15: ffffffff84d74dc0
[   57.350871] FS:  0000555555ad4400(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[   57.352130] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   57.353050] CR2: 00007fee8a7416f4 CR3: 000000000cd24000 CR4: 0000000000350ef0
[   57.354185] Call Trace:
[   57.354579]  <TASK>
[   57.355030]  ? __pfx_ipv4_frags_init_net+0x10/0x10
[   57.355793]  ipv4_frags_init_net+0x269/0x440
[   57.356518]  ops_init+0xbb/0x6b0
[   57.357115]  setup_net+0x3d9/0x990
[   57.357694]  ? down_read_killable+0x1d7/0x4e0
[   57.358451]  ? __pfx_setup_net+0x10/0x10
[   57.359136]  ? copy_net_ns+0x17c/0x770
[   57.359776]  copy_net_ns+0x321/0x770
[   57.360417]  create_new_namespaces+0x3f6/0xb30
[   57.361178]  unshare_nsproxy_namespaces+0xc1/0x200
[   57.362036]  ksys_unshare+0x44d/0x8e0
[   57.362637]  ? __pfx_ksys_unshare+0x10/0x10
[   57.363354]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   57.364278]  __x64_sys_unshare+0x31/0x40
[   57.364973]  do_syscall_64+0x3f/0x90
[   57.365553]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   57.366419] RIP: 0033:0x7f4eabdde0d7
[   57.367056] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   57.369720] RSP: 002b:00007ffdaa53e068 EFLAGS: 00000202 ORIG_RAX: 0000000000000110
[   57.370929] RAX: ffffffffffffffda RBX: 00007ffdaa53e6a8 RCX: 00007f4eabdde0d7
[   57.372030] RDX: 00007f4eabe4841f RSI: 00007ffdaa53e000 RDI: 0000000040000000
[   57.373103] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffdaa53de10
[   57.374219] R10: 0000000000000000 R11: 0000000000000202 R12: 00007f4eabef0bf0
[   57.375302] R13: 00007ffdaa53e140 R14: 0000000000000000 R15: 00000000000000f8
[   57.376415]  </TASK>
[   57.376790] irq event stamp: 7729
[   57.377338] hardirqs last  enabled at (7741): [<ffffffff812fcb28>] __up_console_sem+0x78/0x80
[   57.378676] hardirqs last disabled at (7752): [<ffffffff812fcb0d>] __up_console_sem+0x5d/0x80
[   57.379975] softirqs last  enabled at (7376): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   57.381241] softirqs last disabled at (7367): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   57.382556] ---[ end trace 0000000000000000 ]---
[   57.390280] ------------[ cut here ]------------
[   57.391028] sysctl net/ipv6/ip6frag_low_thresh: data points to kernel global data: ip6_frags_low_thresh_unused
[   57.393181] WARNING: CPU: 0 PID: 262 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   57.394416] Modules linked in:
[   57.394879] CPU: 0 PID: 262 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-next-20230517 #1
[   57.396264] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   57.397414] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   57.398198] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 60 40 e2 84 e8 fa ff d4 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   57.400741] RSP: 0018:ffff8880164bfc00 EFLAGS: 00010282
[   57.401552] RAX: 0000000000000000 RBX: ffff888006968440 RCX: 0000000000000000
[   57.402617] RDX: ffff88801639d1c0 RSI: ffffffff81171ad2 RDI: 0000000000000001
[   57.403674] RBP: ffff888006968454 R08: 0000000000000001 R09: 0000000000000000
[   57.404720] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[   57.405752] R13: ffffffff84e23fe0 R14: ffff888006968448 R15: ffffffff84da7d60
[   57.406832] FS:  0000555555ad4400(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[   57.408006] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   57.408829] CR2: 00007fee8a7416f4 CR3: 000000000cd24000 CR4: 0000000000350ef0
[   57.409885] Call Trace:
[   57.410293]  <TASK>
[   57.410642]  ? __pfx_ipv6_frags_init_net+0x10/0x10
[   57.411404]  ipv6_frags_init_net+0x206/0x3c0
[   57.412091]  ops_init+0xbb/0x6b0
[   57.412615]  setup_net+0x3d9/0x990
[   57.413182]  ? down_read_killable+0x1d7/0x4e0
[   57.413876]  ? __pfx_setup_net+0x10/0x10
[   57.414514]  ? copy_net_ns+0x17c/0x770
[   57.415141]  copy_net_ns+0x321/0x770
[   57.415708]  create_new_namespaces+0x3f6/0xb30
[   57.416438]  unshare_nsproxy_namespaces+0xc1/0x200
[   57.417193]  ksys_unshare+0x44d/0x8e0
[   57.417763]  ? __pfx_ksys_unshare+0x10/0x10
[   57.418455]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   57.419316]  __x64_sys_unshare+0x31/0x40
[   57.419960]  do_syscall_64+0x3f/0x90
[   57.420515]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   57.421308] RIP: 0033:0x7f4eabdde0d7
[   57.421872] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   57.424427] RSP: 002b:00007ffdaa53e068 EFLAGS: 00000202 ORIG_RAX: 0000000000000110
[   57.425537] RAX: ffffffffffffffda RBX: 00007ffdaa53e6a8 RCX: 00007f4eabdde0d7
[   57.426576] RDX: 00007f4eabe4841f RSI: 00007ffdaa53e000 RDI: 0000000040000000
[   57.427620] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffdaa53de10
[   57.428651] R10: 0000000000000000 R11: 0000000000000202 R12: 00007f4eabef0bf0
[   57.429697] R13: 00007ffdaa53e140 R14: 0000000000000000 R15: 00000000000000f8
[   57.430765]  </TASK>
[   57.431157] irq event stamp: 10239
[   57.431658] hardirqs last  enabled at (10249): [<ffffffff812fcb28>] __up_console_sem+0x78/0x80
[   57.432916] hardirqs last disabled at (10262): [<ffffffff812fcb0d>] __up_console_sem+0x5d/0x80
[   57.434179] softirqs last  enabled at (9648): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   57.435370] softirqs last disabled at (9627): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   57.436563] ---[ end trace 0000000000000000 ]---
[   57.438180] ------------[ cut here ]------------
[   57.438853] sysctl net/netfilter/nf_conntrack_frag6_low_thresh: data points to kernel global data: nf_conntrack_frag6_low_thresh_unused
[   57.441194] WARNING: CPU: 0 PID: 262 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   57.442422] Modules linked in:
[   57.442926] CPU: 0 PID: 262 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-next-20230517 #1
[   57.444254] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   57.445440] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   57.446239] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 60 40 e2 84 e8 fa ff d4 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   57.448769] RSP: 0018:ffff8880164bfbf0 EFLAGS: 00010286
[   57.449556] RAX: 0000000000000000 RBX: ffff888006969e40 RCX: 0000000000000000
[   57.450601] RDX: ffff88801639d1c0 RSI: ffffffff81171ad2 RDI: 0000000000000001
[   57.451626] RBP: ffff888006969e54 R08: 0000000000000001 R09: 0000000000000000
[   57.452657] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[   57.453676] R13: ffffffff84e23fe0 R14: ffff888006969e48 R15: ffffffff84db0aa0
[   57.454718] FS:  0000555555ad4400(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[   57.455872] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   57.456725] CR2: 00007fee8a7416f4 CR3: 000000000cd24000 CR4: 0000000000350ef0
[   57.457766] Call Trace:
[   57.458188]  <TASK>
[   57.458528]  nf_ct_net_init+0x224/0x3d0
[   57.459153]  ? __pfx_nf_ct_net_init+0x10/0x10
[   57.459811]  ops_init+0xbb/0x6b0
[   57.460356]  setup_net+0x3d9/0x990
[   57.460871]  ? down_read_killable+0x1d7/0x4e0
[   57.461557]  ? __pfx_setup_net+0x10/0x10
[   57.462203]  ? copy_net_ns+0x17c/0x770
[   57.462785]  copy_net_ns+0x321/0x770
[   57.463372]  create_new_namespaces+0x3f6/0xb30
[   57.464071]  unshare_nsproxy_namespaces+0xc1/0x200
[   57.464775]  ksys_unshare+0x44d/0x8e0
[   57.465373]  ? __pfx_ksys_unshare+0x10/0x10
[   57.466043]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   57.466853]  __x64_sys_unshare+0x31/0x40
[   57.467470]  do_syscall_64+0x3f/0x90
[   57.468061]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   57.468782] RIP: 0033:0x7f4eabdde0d7
[   57.469344] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   57.471801] RSP: 002b:00007ffdaa53e068 EFLAGS: 00000202 ORIG_RAX: 0000000000000110
[   57.472869] RAX: ffffffffffffffda RBX: 00007ffdaa53e6a8 RCX: 00007f4eabdde0d7
[   57.473879] RDX: 00007f4eabe4841f RSI: 00007ffdaa53e000 RDI: 0000000040000000
[   57.474879] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffdaa53de10
[   57.475870] R10: 0000000000000000 R11: 0000000000000202 R12: 00007f4eabef0bf0
[   57.476915] R13: 00007ffdaa53e140 R14: 0000000000000000 R15: 00000000000000f8
[   57.477993]  </TASK>
[   57.478343] irq event stamp: 11011
[   57.478843] hardirqs last  enabled at (11021): [<ffffffff812fcb28>] __up_console_sem+0x78/0x80
[   57.480103] hardirqs last disabled at (11034): [<ffffffff812fcb0d>] __up_console_sem+0x5d/0x80
[   57.481333] softirqs last  enabled at (10576): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   57.482533] softirqs last disabled at (10567): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   57.483724] ---[ end trace 0000000000000000 ]---
executing program
[   58.991859] Bluetooth: hci0: command 0x0409 tx timeout
[   61.038981] Bluetooth: hci0: command 0x041b tx timeout
executing program
[   63.087009] Bluetooth: hci0: command 0x040f tx timeout
executing program
[   65.135986] Bluetooth: hci0: command 0x0419 tx timeout
executing program

VM DIAGNOSIS:
13:14:21  Registers:
info registers vcpu 0
RAX=000000000000003a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff82507f85 RDI=ffffffff87f2dc00 RBP=ffffffff87f2dbc0 RSP=ffff8880164bf5f0
R8 =0000000000000001 R9 =000000000000000a R10=000000000000003a R11=0000000000000001
R12=000000000000003a R13=ffffffff87f2dbc0 R14=0000000000000010 R15=ffffffff82507f70
RIP=ffffffff82507fdd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555555ad4400 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fee8a7416f4 CR3=000000000cd24000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=0000000000000000000000000000ff00 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=000000000002d07f RBX=0000000000000001 RCX=ffffffff844d0a0e RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff81287415 RBP=dffffc0000000000 RSP=ffff888008dcfe70
R8 =0000000000000001 R9 =ffffed100d9e69f8 R10=ffff88806cf34fc3 R11=0000000000000001
R12=ffffffff85d35a10 R13=1ffff110011b9fd3 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff844d199f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f6a59624ee8 CR3=000000000ea40000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=48e661782ce192b8844b8a1c59b68d18
XMM02=6b1e99b806172e3b00000000000aea28 XMM03=ac8bc31478ec851100000000000aefa0
XMM04=ea193b8bb6fc36f0000000000013ca50 XMM05=d3fdd5f48436fbd700000000000aead0
XMM06=812f23579e43189600000000000ae988 XMM07=a1fcdcf819d7e1e500000000000ae728
XMM08=44495f474f4c5359530069253d595449 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000202000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000