Warning: Permanently added '[localhost]:10668' (ECDSA) to the list of known hosts.
2023/05/17 13:21:34 fuzzer started
2023/05/17 13:21:34 dialing manager at localhost:44319
2023/05/17 13:21:34 checking machine...
2023/05/17 13:21:34 checking revisions...
syzkaller login: [   46.258650] kmemleak: Automatic memory scanning thread ended
2023/05/17 13:21:34 testing simple program...
[   46.315973] cgroup: Unknown subsys name 'net'
[   46.370509] cgroup: Unknown subsys name 'rlimit'
executing program
executing program
executing program
executing program
[   58.701283] audit: type=1400 audit(1684329706.930:6): avc:  denied  { execmem } for  pid=265 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[   59.839417] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   59.841102] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   59.843294] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   59.846122] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   59.848218] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   59.849424] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   60.247418] ------------[ cut here ]------------
[   60.248070] sysctl net/ipv4/ipfrag_low_thresh: data points to kernel global data: ipfrag_low_thresh_unused
[   60.250388] WARNING: CPU: 1 PID: 266 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   60.251464] Modules linked in:
[   60.251866] CPU: 1 PID: 266 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-next-20230517 #1
[   60.253278] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   60.257631] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   60.258267] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 60 40 e2 84 e8 fa ff d4 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   60.260431] RSP: 0018:ffff88801e377c00 EFLAGS: 00010282
[   60.261070] RAX: 0000000000000000 RBX: ffff88800e811c40 RCX: 0000000000000000
[   60.261958] RDX: ffff88801a18d1c0 RSI: ffffffff81171ad2 RDI: 0000000000000001
[   60.262845] RBP: ffff88800e811c54 R08: 0000000000000001 R09: 0000000000000000
[   60.263716] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000
[   60.264604] R13: ffffffff84e23fe0 R14: ffff88800e811c48 R15: ffffffff84d74dc0
[   60.265485] FS:  00005555570e0400(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[   60.266483] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   60.267179] CR2: 00007f5e5d4c66f4 CR3: 0000000018714000 CR4: 0000000000350ee0
[   60.268068] Call Trace:
[   60.268432]  <TASK>
[   60.268726]  ? __pfx_ipv4_frags_init_net+0x10/0x10
[   60.269374]  ipv4_frags_init_net+0x269/0x440
[   60.269934]  ops_init+0xbb/0x6b0
[   60.270414]  setup_net+0x3d9/0x990
[   60.270870]  ? down_read_killable+0x1d7/0x4e0
[   60.271463]  ? __pfx_setup_net+0x10/0x10
[   60.271971]  ? copy_net_ns+0x17c/0x770
[   60.272538]  copy_net_ns+0x321/0x770
[   60.273014]  create_new_namespaces+0x3f6/0xb30
[   60.273625]  unshare_nsproxy_namespaces+0xc1/0x200
[   60.274237]  ksys_unshare+0x44d/0x8e0
[   60.274753]  ? __pfx_ksys_unshare+0x10/0x10
[   60.275294]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   60.276029]  __x64_sys_unshare+0x31/0x40
[   60.276585]  do_syscall_64+0x3f/0x90
[   60.277062]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   60.277735] RIP: 0033:0x7f83180a50d7
[   60.278195] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   60.280384] RSP: 002b:00007fffe4ad90a8 EFLAGS: 00000202 ORIG_RAX: 0000000000000110
[   60.281291] RAX: ffffffffffffffda RBX: 00007fffe4ad96e8 RCX: 00007f83180a50d7
[   60.282180] RDX: 00007f831810f41f RSI: 00007fffe4ad9040 RDI: 0000000040000000
[   60.283062] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007fffe4ad8e50
[   60.283945] R10: 0000000000000000 R11: 0000000000000202 R12: 00007f83181b7bf0
[   60.284840] R13: 00007fffe4ad9180 R14: 0000000000000000 R15: 00000000000000f8
[   60.285748]  </TASK>
[   60.286051] irq event stamp: 11521
[   60.286511] hardirqs last  enabled at (11533): [<ffffffff812fcb28>] __up_console_sem+0x78/0x80
[   60.287579] hardirqs last disabled at (11544): [<ffffffff812fcb0d>] __up_console_sem+0x5d/0x80
[   60.288650] softirqs last  enabled at (11126): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   60.289697] softirqs last disabled at (11121): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   60.290738] ---[ end trace 0000000000000000 ]---
[   60.297317] ------------[ cut here ]------------
[   60.297933] sysctl net/ipv6/ip6frag_low_thresh: data points to kernel global data: ip6_frags_low_thresh_unused
[   60.299775] WARNING: CPU: 1 PID: 266 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   60.300836] Modules linked in:
[   60.301243] CPU: 1 PID: 266 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-next-20230517 #1
[   60.302400] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   60.303401] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   60.304042] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 60 40 e2 84 e8 fa ff d4 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   60.306213] RSP: 0018:ffff88801e377c00 EFLAGS: 00010282
[   60.306896] RAX: 0000000000000000 RBX: ffff88801450a840 RCX: 0000000000000000
[   60.307782] RDX: ffff88801a18d1c0 RSI: ffffffff81171ad2 RDI: 0000000000000001
[   60.308675] RBP: ffff88801450a854 R08: 0000000000000001 R09: 0000000000000000
[   60.309568] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[   60.310440] R13: ffffffff84e23fe0 R14: ffff88801450a848 R15: ffffffff84da7d60
[   60.311295] FS:  00005555570e0400(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[   60.312287] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   60.313033] CR2: 00007f5e5d4c66f4 CR3: 0000000018714000 CR4: 0000000000350ee0
[   60.313916] Call Trace:
[   60.314244]  <TASK>
[   60.314577]  ? __pfx_ipv6_frags_init_net+0x10/0x10
[   60.315197]  ipv6_frags_init_net+0x206/0x3c0
[   60.315785]  ops_init+0xbb/0x6b0
[   60.316225]  setup_net+0x3d9/0x990
[   60.316734]  ? down_read_killable+0x1d7/0x4e0
[   60.317294]  ? __pfx_setup_net+0x10/0x10
[   60.317839]  ? copy_net_ns+0x17c/0x770
[   60.318375]  copy_net_ns+0x321/0x770
[   60.318868]  create_new_namespaces+0x3f6/0xb30
[   60.319487]  unshare_nsproxy_namespaces+0xc1/0x200
[   60.320094]  ksys_unshare+0x44d/0x8e0
[   60.320628]  ? __pfx_ksys_unshare+0x10/0x10
[   60.321172]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   60.321908]  __x64_sys_unshare+0x31/0x40
[   60.322458]  do_syscall_64+0x3f/0x90
[   60.322937]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   60.323624] RIP: 0033:0x7f83180a50d7
[   60.324083] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   60.326242] RSP: 002b:00007fffe4ad90a8 EFLAGS: 00000202 ORIG_RAX: 0000000000000110
[   60.327191] RAX: ffffffffffffffda RBX: 00007fffe4ad96e8 RCX: 00007f83180a50d7
[   60.328073] RDX: 00007f831810f41f RSI: 00007fffe4ad9040 RDI: 0000000040000000
[   60.328984] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007fffe4ad8e50
[   60.329879] R10: 0000000000000000 R11: 0000000000000202 R12: 00007f83181b7bf0
[   60.330762] R13: 00007fffe4ad9180 R14: 0000000000000000 R15: 00000000000000f8
[   60.331678]  </TASK>
[   60.331972] irq event stamp: 13385
[   60.332442] hardirqs last  enabled at (13397): [<ffffffff812fcb28>] __up_console_sem+0x78/0x80
[   60.333500] hardirqs last disabled at (13408): [<ffffffff812fcb0d>] __up_console_sem+0x5d/0x80
[   60.334549] softirqs last  enabled at (13292): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   60.335579] softirqs last disabled at (13287): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   60.336617] ---[ end trace 0000000000000000 ]---
[   60.337977] ------------[ cut here ]------------
[   60.338582] sysctl net/netfilter/nf_conntrack_frag6_low_thresh: data points to kernel global data: nf_conntrack_frag6_low_thresh_unused
[   60.340540] WARNING: CPU: 1 PID: 266 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   60.341593] Modules linked in:
[   60.341993] CPU: 1 PID: 266 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-next-20230517 #1
[   60.343140] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   60.344161] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   60.344848] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 60 40 e2 84 e8 fa ff d4 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   60.347024] RSP: 0018:ffff88801e377bf0 EFLAGS: 00010286
[   60.347708] RAX: 0000000000000000 RBX: ffff88800d686040 RCX: 0000000000000000
[   60.348597] RDX: ffff88801a18d1c0 RSI: ffffffff81171ad2 RDI: 0000000000000001
[   60.349493] RBP: ffff88800d686054 R08: 0000000000000001 R09: 0000000000000000
[   60.350380] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[   60.351228] R13: ffffffff84e23fe0 R14: ffff88800d686048 R15: ffffffff84db0aa0
[   60.352113] FS:  00005555570e0400(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[   60.353118] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   60.353868] CR2: 00007f5e5d4c66f4 CR3: 0000000018714000 CR4: 0000000000350ee0
[   60.354767] Call Trace:
[   60.355088]  <TASK>
[   60.355434]  nf_ct_net_init+0x224/0x3d0
[   60.355951]  ? __pfx_nf_ct_net_init+0x10/0x10
[   60.356606]  ops_init+0xbb/0x6b0
[   60.357077]  setup_net+0x3d9/0x990
[   60.357577]  ? down_read_killable+0x1d7/0x4e0
[   60.358144]  ? __pfx_setup_net+0x10/0x10
[   60.358696]  ? copy_net_ns+0x17c/0x770
[   60.359204]  copy_net_ns+0x321/0x770
[   60.359724]  create_new_namespaces+0x3f6/0xb30
[   60.360312]  unshare_nsproxy_namespaces+0xc1/0x200
[   60.360987]  ksys_unshare+0x44d/0x8e0
[   60.361531]  ? __pfx_ksys_unshare+0x10/0x10
[   60.362091]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   60.362856]  __x64_sys_unshare+0x31/0x40
[   60.363426]  do_syscall_64+0x3f/0x90
[   60.363928]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   60.364667] RIP: 0033:0x7f83180a50d7
[   60.365152] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   60.367417] RSP: 002b:00007fffe4ad90a8 EFLAGS: 00000202 ORIG_RAX: 0000000000000110
[   60.368422] RAX: ffffffffffffffda RBX: 00007fffe4ad96e8 RCX: 00007f83180a50d7
[   60.369310] RDX: 00007f831810f41f RSI: 00007fffe4ad9040 RDI: 0000000040000000
[   60.370222] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007fffe4ad8e50
[   60.371152] R10: 0000000000000000 R11: 0000000000000202 R12: 00007f83181b7bf0
[   60.372076] R13: 00007fffe4ad9180 R14: 0000000000000000 R15: 00000000000000f8
[   60.373049]  </TASK>
[   60.373388] irq event stamp: 14147
[   60.373839] hardirqs last  enabled at (14157): [<ffffffff812fcb28>] __up_console_sem+0x78/0x80
[   60.374956] hardirqs last disabled at (14168): [<ffffffff812fcb0d>] __up_console_sem+0x5d/0x80
[   60.376074] softirqs last  enabled at (13630): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   60.377167] softirqs last disabled at (13625): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   60.378254] ---[ end trace 0000000000000000 ]---
executing program
[   61.920844] Bluetooth: hci0: command 0x0409 tx timeout
[   63.968451] Bluetooth: hci0: command 0x041b tx timeout
executing program
[   66.016447] Bluetooth: hci0: command 0x040f tx timeout
executing program
[   68.064498] Bluetooth: hci0: command 0x0419 tx timeout
executing program

VM DIAGNOSIS:
13:21:38  Registers:
info registers vcpu 0
RAX=0000000000000020 RBX=0000000000000003 RCX=0000000000000000 RDX=ffff88800c659600
RSI=ffffffff84e306a0 RDI=0000000000000003 RBP=ffffffff84e306a0 RSP=ffff888015a17cb8
R8 =0000000000000007 R9 =0000000000001000 R10=ffff88800c65961e R11=0000000000000001
R12=0000000000000003 R13=ffffed1002b42fcb R14=ffff88800c65961c R15=ffff888015a17e59
RIP=ffffffff814be256 RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 00000000 00000000
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fa65dbdb900 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fa65d102000 CR3=000000000dfc2000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=0000000000000000343d595449524f49
XMM02=ffffffffffffffffffffffffffffffff XMM03=2f6c616e72756f6a2f676f6c2f6e7572
XMM04=0013ad65119292df000000000010bf80 XMM05=d3fdd5f48436fbd700000000000aead0
XMM06=f81722fea7d35efd00000000000ae988 XMM07=00000000000000000000000000000000
XMM08=44495f474f4c5359530069253d595449 XMM09=00000000000000000000000000000000
XMM10=00002000000000000000200000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000032 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff82507f85 RDI=ffffffff87f2dc00 RBP=ffffffff87f2dbc0 RSP=ffff88801e377618
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000032 R11=0000000000000001
R12=0000000000000032 R13=ffffffff87f2dbc0 R14=0000000000000010 R15=ffffffff82507f70
RIP=ffffffff82507fdd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00005555570e0400 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f5e5d4c66f4 CR3=0000000018714000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=0000000000000000000000000000ff00 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000