Warning: Permanently added '[localhost]:29592' (ECDSA) to the list of known hosts.
2023/05/18 00:29:45 fuzzer started
2023/05/18 00:29:45 dialing manager at localhost:44319
2023/05/18 00:29:45 checking machine...
2023/05/18 00:29:45 checking revisions...
syzkaller login: [  136.438185] kmemleak: Automatic memory scanning thread ended
2023/05/18 00:29:45 testing simple program...
[  136.498396] cgroup: Unknown subsys name 'net'
[  136.583267] cgroup: Unknown subsys name 'rlimit'
executing program
executing program
executing program
executing program
[  149.080801] audit: type=1400 audit(1684369798.238:6): avc:  denied  { execmem } for  pid=258 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[  150.246276] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  150.248876] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  150.250547] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  150.253407] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  150.255344] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  150.256664] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  150.656946] ------------[ cut here ]------------
[  150.657699] sysctl net/ipv4/ipfrag_low_thresh: data points to kernel global data: ipfrag_low_thresh_unused
[  150.659928] WARNING: CPU: 0 PID: 259 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[  150.661195] Modules linked in:
[  150.661685] CPU: 0 PID: 259 Comm: syz-executor.0 Tainted: G        W    L     6.4.0-rc2-next-20230517 #1
[  150.666822] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  150.667828] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[  150.668471] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 60 40 e2 84 e8 fa ff d4 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[  150.670663] RSP: 0018:ffff88801f217c00 EFLAGS: 00010282
[  150.671347] RAX: 0000000000000000 RBX: ffff88800d7df040 RCX: 0000000000000000
[  150.672235] RDX: ffff888015919b40 RSI: ffffffff81171ad2 RDI: 0000000000000001
[  150.673113] RBP: ffff88800d7df054 R08: 0000000000000001 R09: 0000000000000000
[  150.673998] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000
[  150.674892] R13: ffffffff84e23fe0 R14: ffff88800d7df048 R15: ffffffff84d74dc0
[  150.675785] FS:  000055555595e400(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  150.676782] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  150.677486] CR2: 00007f49889218d0 CR3: 0000000016a74000 CR4: 0000000000350ef0
[  150.678372] Call Trace:
[  150.678749]  <TASK>
[  150.679044]  ? __pfx_ipv4_frags_init_net+0x10/0x10
[  150.679652]  ipv4_frags_init_net+0x269/0x440
[  150.680251]  ops_init+0xbb/0x6b0
[  150.680697]  setup_net+0x3d9/0x990
[  150.681181]  ? down_read_killable+0x1d7/0x4e0
[  150.681775]  ? __pfx_setup_net+0x10/0x10
[  150.682278]  ? copy_net_ns+0x17c/0x770
[  150.682829]  copy_net_ns+0x321/0x770
[  150.683311]  create_new_namespaces+0x3f6/0xb30
[  150.683927]  unshare_nsproxy_namespaces+0xc1/0x200
[  150.684536]  ksys_unshare+0x44d/0x8e0
[  150.685069]  ? __pfx_ksys_unshare+0x10/0x10
[  150.685609]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[  150.686343]  __x64_sys_unshare+0x31/0x40
[  150.686910]  do_syscall_64+0x3f/0x90
[  150.687385]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[  150.688060] RIP: 0033:0x7f48c1b6b0d7
[  150.688527] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  150.690690] RSP: 002b:00007ffd7793cc68 EFLAGS: 00000202 ORIG_RAX: 0000000000000110
[  150.691625] RAX: ffffffffffffffda RBX: 00007ffd7793d2a8 RCX: 00007f48c1b6b0d7
[  150.692507] RDX: 00007f48c1bd541f RSI: 00007ffd7793cc00 RDI: 0000000040000000
[  150.693398] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffd7793ca10
[  150.694277] R10: 0000000000000000 R11: 0000000000000202 R12: 00007f48c1c7dbf0
[  150.695201] R13: 00007ffd7793cd40 R14: 0000000000000000 R15: 00000000000000f8
[  150.696096]  </TASK>
[  150.696400] irq event stamp: 9023
[  150.696857] hardirqs last  enabled at (9035): [<ffffffff812fcb28>] __up_console_sem+0x78/0x80
[  150.697910] hardirqs last disabled at (9046): [<ffffffff812fcb0d>] __up_console_sem+0x5d/0x80
[  150.698976] softirqs last  enabled at (8518): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[  150.700000] softirqs last disabled at (8507): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[  150.701025] ---[ end trace 0000000000000000 ]---
[  150.707692] ------------[ cut here ]------------
[  150.708459] sysctl net/ipv6/ip6frag_low_thresh: data points to kernel global data: ip6_frags_low_thresh_unused
[  150.710465] WARNING: CPU: 0 PID: 259 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[  150.711724] Modules linked in:
[  150.712199] CPU: 0 PID: 259 Comm: syz-executor.0 Tainted: G        W    L     6.4.0-rc2-next-20230517 #1
[  150.713544] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  150.714741] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[  150.715492] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 60 40 e2 84 e8 fa ff d4 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[  150.718010] RSP: 0018:ffff88801f217c00 EFLAGS: 00010282
[  150.718821] RAX: 0000000000000000 RBX: ffff88800d6a3840 RCX: 0000000000000000
[  150.719873] RDX: ffff888015919b40 RSI: ffffffff81171ad2 RDI: 0000000000000001
[  150.720934] RBP: ffff88800d6a3854 R08: 0000000000000001 R09: 0000000000000000
[  150.721996] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  150.723079] R13: ffffffff84e23fe0 R14: ffff88800d6a3848 R15: ffffffff84da7d60
[  150.724133] FS:  000055555595e400(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  150.725312] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  150.726174] CR2: 00007f49889218d0 CR3: 0000000016a74000 CR4: 0000000000350ef0
[  150.727230] Call Trace:
[  150.727622]  <TASK>
[  150.728008]  ? __pfx_ipv6_frags_init_net+0x10/0x10
[  150.728762]  ipv6_frags_init_net+0x206/0x3c0
[  150.729432]  ops_init+0xbb/0x6b0
[  150.730005]  setup_net+0x3d9/0x990
[  150.730551]  ? down_read_killable+0x1d7/0x4e0
[  150.731288]  ? __pfx_setup_net+0x10/0x10
[  150.731926]  ? copy_net_ns+0x17c/0x770
[  150.732541]  copy_net_ns+0x321/0x770
[  150.733150]  create_new_namespaces+0x3f6/0xb30
[  150.733883]  unshare_nsproxy_namespaces+0xc1/0x200
[  150.734627]  ksys_unshare+0x44d/0x8e0
[  150.735259]  ? __pfx_ksys_unshare+0x10/0x10
[  150.735944]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[  150.736834]  __x64_sys_unshare+0x31/0x40
[  150.737448]  do_syscall_64+0x3f/0x90
[  150.738053]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[  150.738860] RIP: 0033:0x7f48c1b6b0d7
[  150.739416] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  150.741983] RSP: 002b:00007ffd7793cc68 EFLAGS: 00000202 ORIG_RAX: 0000000000000110
[  150.743115] RAX: ffffffffffffffda RBX: 00007ffd7793d2a8 RCX: 00007f48c1b6b0d7
[  150.744166] RDX: 00007f48c1bd541f RSI: 00007ffd7793cc00 RDI: 0000000040000000
[  150.745213] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffd7793ca10
[  150.746260] R10: 0000000000000000 R11: 0000000000000202 R12: 00007f48c1c7dbf0
[  150.747321] R13: 00007ffd7793cd40 R14: 0000000000000000 R15: 00000000000000f8
[  150.748399]  </TASK>
[  150.748793] irq event stamp: 10987
[  150.749310] hardirqs last  enabled at (10997): [<ffffffff812fcb28>] __up_console_sem+0x78/0x80
[  150.750574] hardirqs last disabled at (11008): [<ffffffff812fcb0d>] __up_console_sem+0x5d/0x80
[  150.751834] softirqs last  enabled at (10460): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[  150.753040] softirqs last disabled at (10439): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[  150.754239] ---[ end trace 0000000000000000 ]---
[  150.755877] ------------[ cut here ]------------
[  150.756551] sysctl net/netfilter/nf_conntrack_frag6_low_thresh: data points to kernel global data: nf_conntrack_frag6_low_thresh_unused
[  150.758845] WARNING: CPU: 0 PID: 259 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[  150.760083] Modules linked in:
[  150.760560] CPU: 0 PID: 259 Comm: syz-executor.0 Tainted: G        W    L     6.4.0-rc2-next-20230517 #1
[  150.761909] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  150.763114] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[  150.763915] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 60 40 e2 84 e8 fa ff d4 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[  150.766516] RSP: 0018:ffff88801f217bf0 EFLAGS: 00010286
[  150.767348] RAX: 0000000000000000 RBX: ffff88800d6a3040 RCX: 0000000000000000
[  150.768395] RDX: ffff888015919b40 RSI: ffffffff81171ad2 RDI: 0000000000000001
[  150.769437] RBP: ffff88800d6a3054 R08: 0000000000000001 R09: 0000000000000000
[  150.770471] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[  150.771537] R13: ffffffff84e23fe0 R14: ffff88800d6a3048 R15: ffffffff84db0aa0
[  150.772576] FS:  000055555595e400(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  150.773750] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  150.774583] CR2: 00007f49889218d0 CR3: 0000000016a74000 CR4: 0000000000350ef0
[  150.775640] Call Trace:
[  150.776056]  <TASK>
[  150.776412]  nf_ct_net_init+0x224/0x3d0
[  150.777056]  ? __pfx_nf_ct_net_init+0x10/0x10
[  150.777767]  ops_init+0xbb/0x6b0
[  150.778289]  setup_net+0x3d9/0x990
[  150.778877]  ? down_read_killable+0x1d7/0x4e0
[  150.779547]  ? __pfx_setup_net+0x10/0x10
[  150.780188]  ? copy_net_ns+0x17c/0x770
[  150.780822]  copy_net_ns+0x321/0x770
[  150.781399]  create_new_namespaces+0x3f6/0xb30
[  150.782120]  unshare_nsproxy_namespaces+0xc1/0x200
[  150.782885]  ksys_unshare+0x44d/0x8e0
[  150.783458]  ? __pfx_ksys_unshare+0x10/0x10
[  150.784137]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[  150.785003]  __x64_sys_unshare+0x31/0x40
[  150.785612]  do_syscall_64+0x3f/0x90
[  150.786199]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[  150.786991] RIP: 0033:0x7f48c1b6b0d7
[  150.787538] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  150.790034] RSP: 002b:00007ffd7793cc68 EFLAGS: 00000202 ORIG_RAX: 0000000000000110
[  150.791150] RAX: ffffffffffffffda RBX: 00007ffd7793d2a8 RCX: 00007f48c1b6b0d7
[  150.792180] RDX: 00007f48c1bd541f RSI: 00007ffd7793cc00 RDI: 0000000040000000
[  150.793211] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffd7793ca10
[  150.794227] R10: 0000000000000000 R11: 0000000000000202 R12: 00007f48c1c7dbf0
[  150.795270] R13: 00007ffd7793cd40 R14: 0000000000000000 R15: 00000000000000f8
[  150.796341]  </TASK>
[  150.796692] irq event stamp: 11771
[  150.797241] hardirqs last  enabled at (11783): [<ffffffff812fcb28>] __up_console_sem+0x78/0x80
[  150.798487] hardirqs last disabled at (11794): [<ffffffff812fcb0d>] __up_console_sem+0x5d/0x80
[  150.799758] softirqs last  enabled at (11382): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[  150.800996] softirqs last disabled at (11377): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[  150.802210] ---[ end trace 0000000000000000 ]---
executing program
[  152.331421] Bluetooth: hci0: command 0x0409 tx timeout
executing program
[  154.378852] Bluetooth: hci0: command 0x041b tx timeout
[  156.426836] Bluetooth: hci0: command 0x040f tx timeout
executing program
[  158.474871] Bluetooth: hci0: command 0x0419 tx timeout
executing program

VM DIAGNOSIS:
00:28:21  Registers:
info registers vcpu 0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff82507f85 RDI=ffffffff87f2dc00 RBP=ffffffff87f2dbc0 RSP=ffff88801f2175f0
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000020 R11=0000000000000001
R12=0000000000000020 R13=ffffffff87f2dbc0 R14=0000000000000010 R15=ffffffff82507f70
RIP=ffffffff82507fdd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 000055555595e400 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f49889218d0 CR3=0000000016a74000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=0000000000000000000000000000ff00 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=00000000000bb96d RBX=0000000000000001 RCX=ffffffff844d0a0e RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff81287415 RBP=dffffc0000000000 RSP=ffff888008dcfe70
R8 =0000000000000001 R9 =ffffed100d9e69f8 R10=ffff88806cf34fc3 R11=0000000000000001
R12=ffffffff85d35a10 R13=1ffff110011b9fd3 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff844d199f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f49888fbb30 CR3=00000000096da000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=1f53c2d7a9926184764ab6af57cc0ece
XMM02=6b1e99b806172e3b00000000000aea28 XMM03=ac8bc31478ec851100000000000aefa0
XMM04=8a11759662a181b60000000000143b88 XMM05=d3fdd5f48436fbd700000000000aead0
XMM06=dd5a0a5ae28debb100000000000ae988 XMM07=a1fcdcf819d7e1e500000000000ae728
XMM08=44495f474f4c5359530069253d595449 XMM09=00000000000000000000000000000000
XMM10=00002000000000000000200000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000