Warning: Permanently added '[localhost]:50155' (ECDSA) to the list of known hosts.
2023/05/18 08:07:48 fuzzer started
2023/05/18 08:07:49 dialing manager at localhost:44319
2023/05/18 08:07:49 checking machine...
2023/05/18 08:07:49 checking revisions...
syzkaller login: [   47.173522] kmemleak: Automatic memory scanning thread ended
2023/05/18 08:07:49 testing simple program...
[   47.250606] cgroup: Unknown subsys name 'net'
[   47.366473] cgroup: Unknown subsys name 'rlimit'
executing program
executing program
executing program
executing program
[   60.862095] audit: type=1400 audit(1684397283.190:6): avc:  denied  { execmem } for  pid=258 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[   62.009594] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   62.013884] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   62.022294] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   62.024148] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   62.025359] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   62.030205] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
executing program
[   62.393606] ------------[ cut here ]------------
[   62.394083] sysctl net/ipv4/ipfrag_low_thresh: data points to kernel global data: ipfrag_low_thresh_unused
[   62.395210] WARNING: CPU: 0 PID: 259 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   62.395907] Modules linked in:
[   62.396178] CPU: 0 PID: 259 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-next-20230517 #1
[   62.396919] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   62.397547] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   62.398003] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 60 40 e2 84 e8 fa ff d4 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   62.403624] RSP: 0018:ffff88801fb6fc00 EFLAGS: 00010282
[   62.404124] RAX: 0000000000000000 RBX: ffff88800d9a7040 RCX: 0000000000000000
[   62.404681] RDX: ffff88800fa9b680 RSI: ffffffff81171ad2 RDI: 0000000000000001
[   62.405266] RBP: ffff88800d9a7054 R08: 0000000000000001 R09: 0000000000000000
[   62.409090] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[   62.409656] R13: ffffffff84e23fe0 R14: ffff88800d9a7048 R15: ffffffff84d74dc0
[   62.410259] FS:  0000555556105400(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[   62.410907] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   62.411367] CR2: 00007f169c5e26f4 CR3: 0000000006a88000 CR4: 0000000000350ef0
[   62.411975] Call Trace:
[   62.412191]  <TASK>
[   62.412390]  ? __pfx_ipv4_frags_init_net+0x10/0x10
[   62.412841]  ipv4_frags_init_net+0x269/0x440
[   62.413236]  ops_init+0xbb/0x6b0
[   62.413537]  setup_net+0x3d9/0x990
[   62.421998]  ? down_read_killable+0x1d7/0x4e0
[   62.422380]  ? __pfx_setup_net+0x10/0x10
[   62.422741]  ? copy_net_ns+0x17c/0x770
[   62.423081]  copy_net_ns+0x321/0x770
[   62.423403]  create_new_namespaces+0x3f6/0xb30
[   62.423821]  unshare_nsproxy_namespaces+0xc1/0x200
[   62.424230]  ksys_unshare+0x44d/0x8e0
[   62.424550]  ? __pfx_ksys_unshare+0x10/0x10
[   62.424958]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   62.425421]  __x64_sys_unshare+0x31/0x40
[   62.429267]  do_syscall_64+0x3f/0x90
[   62.429586]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   62.430073] RIP: 0033:0x7f7cedaea0d7
[   62.430377] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   62.431806] RSP: 002b:00007ffc630d9c78 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[   62.432397] RAX: ffffffffffffffda RBX: 00007ffc630da2b8 RCX: 00007f7cedaea0d7
[   62.432964] RDX: 00007f7cedb5441f RSI: 00007ffc630d9c10 RDI: 0000000040000000
[   62.433517] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffc630d9a20
[   62.441713] R10: 0000000000000000 R11: 0000000000000206 R12: 00007f7cedbfcbf0
[   62.443162] R13: 00007ffc630d9d50 R14: 0000000000000000 R15: 00000000000000f8
[   62.443751]  </TASK>
[   62.443992] irq event stamp: 9051
[   62.444276] hardirqs last  enabled at (9061): [<ffffffff812fcb28>] __up_console_sem+0x78/0x80
[   62.444966] hardirqs last disabled at (9072): [<ffffffff812fcb0d>] __up_console_sem+0x5d/0x80
[   62.445634] softirqs last  enabled at (9024): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   62.446329] softirqs last disabled at (9019): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   62.446995] ---[ end trace 0000000000000000 ]---
[   62.455588] ------------[ cut here ]------------
[   62.456124] sysctl net/ipv6/ip6frag_low_thresh: data points to kernel global data: ip6_frags_low_thresh_unused
[   62.457243] WARNING: CPU: 0 PID: 259 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   62.457979] Modules linked in:
[   62.458250] CPU: 0 PID: 259 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-next-20230517 #1
[   62.458994] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   62.459623] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   62.460065] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 60 40 e2 84 e8 fa ff d4 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   62.461471] RSP: 0018:ffff88801fb6fc00 EFLAGS: 00010282
[   62.461950] RAX: 0000000000000000 RBX: ffff888008ee3240 RCX: 0000000000000000
[   62.462514] RDX: ffff88800fa9b680 RSI: ffffffff81171ad2 RDI: 0000000000000001
[   62.463066] RBP: ffff888008ee3254 R08: 0000000000000001 R09: 0000000000000000
[   62.463600] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[   62.464161] R13: ffffffff84e23fe0 R14: ffff888008ee3248 R15: ffffffff84da7d60
[   62.464730] FS:  0000555556105400(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[   62.465368] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   62.465890] CR2: 00007f169c5e26f4 CR3: 0000000006a88000 CR4: 0000000000350ef0
[   62.466472] Call Trace:
[   62.466683]  <TASK>
[   62.466901]  ? __pfx_ipv6_frags_init_net+0x10/0x10
[   62.467298]  ipv6_frags_init_net+0x206/0x3c0
[   62.467659]  ops_init+0xbb/0x6b0
[   62.467984]  setup_net+0x3d9/0x990
[   62.468283]  ? down_read_killable+0x1d7/0x4e0
[   62.468654]  ? __pfx_setup_net+0x10/0x10
[   62.469010]  ? copy_net_ns+0x17c/0x770
[   62.469347]  copy_net_ns+0x321/0x770
[   62.469670]  create_new_namespaces+0x3f6/0xb30
[   62.470110]  unshare_nsproxy_namespaces+0xc1/0x200
[   62.470503]  ksys_unshare+0x44d/0x8e0
[   62.470842]  ? __pfx_ksys_unshare+0x10/0x10
[   62.471240]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   62.471722]  __x64_sys_unshare+0x31/0x40
[   62.472061]  do_syscall_64+0x3f/0x90
[   62.472373]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   62.472811] RIP: 0033:0x7f7cedaea0d7
[   62.473115] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   62.474533] RSP: 002b:00007ffc630d9c78 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[   62.475171] RAX: ffffffffffffffda RBX: 00007ffc630da2b8 RCX: 00007f7cedaea0d7
[   62.475729] RDX: 00007f7cedb5441f RSI: 00007ffc630d9c10 RDI: 0000000040000000
[   62.476321] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffc630d9a20
[   62.476897] R10: 0000000000000000 R11: 0000000000000206 R12: 00007f7cedbfcbf0
[   62.477443] R13: 00007ffc630d9d50 R14: 0000000000000000 R15: 00000000000000f8
[   62.478066]  </TASK>
[   62.478266] irq event stamp: 10803
[   62.478545] hardirqs last  enabled at (10813): [<ffffffff812fcb28>] __up_console_sem+0x78/0x80
[   62.479260] hardirqs last disabled at (10824): [<ffffffff812fcb0d>] __up_console_sem+0x5d/0x80
[   62.479957] softirqs last  enabled at (10766): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   62.480629] softirqs last disabled at (10757): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   62.481291] ---[ end trace 0000000000000000 ]---
[   62.482408] ------------[ cut here ]------------
[   62.482811] sysctl net/netfilter/nf_conntrack_frag6_low_thresh: data points to kernel global data: nf_conntrack_frag6_low_thresh_unused
[   62.484050] WARNING: CPU: 0 PID: 259 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   62.484732] Modules linked in:
[   62.485028] CPU: 0 PID: 259 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-next-20230517 #1
[   62.485814] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   62.486439] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   62.486882] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 60 40 e2 84 e8 fa ff d4 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   62.488273] RSP: 0018:ffff88801fb6fbf0 EFLAGS: 00010286
[   62.488717] RAX: 0000000000000000 RBX: ffff88800f22d840 RCX: 0000000000000000
[   62.489312] RDX: ffff88800fa9b680 RSI: ffffffff81171ad2 RDI: 0000000000000001
[   62.490034] RBP: ffff88800f22d854 R08: 0000000000000001 R09: 0000000000000000
[   62.490588] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[   62.491166] R13: ffffffff84e23fe0 R14: ffff88800f22d848 R15: ffffffff84db0aa0
[   62.491750] FS:  0000555556105400(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[   62.492397] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   62.492880] CR2: 00007f169c5e26f4 CR3: 0000000006a88000 CR4: 0000000000350ef0
[   62.493482] Call Trace:
[   62.493765]  <TASK>
[   62.493968]  nf_ct_net_init+0x224/0x3d0
[   62.494315]  ? __pfx_nf_ct_net_init+0x10/0x10
[   62.494690]  ops_init+0xbb/0x6b0
[   62.495020]  setup_net+0x3d9/0x990
[   62.495324]  ? down_read_killable+0x1d7/0x4e0
[   62.495724]  ? __pfx_setup_net+0x10/0x10
[   62.496064]  ? copy_net_ns+0x17c/0x770
[   62.496402]  copy_net_ns+0x321/0x770
[   62.496752]  create_new_namespaces+0x3f6/0xb30
[   62.497145]  unshare_nsproxy_namespaces+0xc1/0x200
[   62.497543]  ksys_unshare+0x44d/0x8e0
[   62.497924]  ? __pfx_ksys_unshare+0x10/0x10
[   62.498324]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   62.498818]  __x64_sys_unshare+0x31/0x40
[   62.499160]  do_syscall_64+0x3f/0x90
[   62.499476]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   62.499926] RIP: 0033:0x7f7cedaea0d7
[   62.500235] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   62.501663] RSP: 002b:00007ffc630d9c78 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[   62.502332] RAX: ffffffffffffffda RBX: 00007ffc630da2b8 RCX: 00007f7cedaea0d7
[   62.502906] RDX: 00007f7cedb5441f RSI: 00007ffc630d9c10 RDI: 0000000040000000
[   62.503464] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007ffc630d9a20
[   62.504047] R10: 0000000000000000 R11: 0000000000000206 R12: 00007f7cedbfcbf0
[   62.504597] R13: 00007ffc630d9d50 R14: 0000000000000000 R15: 00000000000000f8
[   62.505201]  </TASK>
[   62.505404] irq event stamp: 11575
[   62.505756] hardirqs last  enabled at (11587): [<ffffffff812fcb28>] __up_console_sem+0x78/0x80
[   62.506450] hardirqs last disabled at (11596): [<ffffffff812fcb0d>] __up_console_sem+0x5d/0x80
[   62.507185] softirqs last  enabled at (11560): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   62.507867] softirqs last disabled at (11555): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   62.508520] ---[ end trace 0000000000000000 ]---
[   64.093811] Bluetooth: hci0: command 0x0409 tx timeout
executing program
[   66.142208] Bluetooth: hci0: command 0x041b tx timeout
executing program
[   68.190446] Bluetooth: hci0: command 0x040f tx timeout
[   70.236788] Bluetooth: hci0: command 0x0419 tx timeout
executing program

VM DIAGNOSIS:
08:08:04  Registers:
info registers vcpu 0
RAX=0000000000000078 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff82507f85 RDI=ffffffff87f2dc00 RBP=ffffffff87f2dbc0 RSP=ffff88801fb6f568
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000078 R11=0000000000000001
R12=0000000000000078 R13=ffffffff87f2dbc0 R14=0000000000000010 R15=ffffffff82507f70
RIP=ffffffff82507fdd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555556105400 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f169c5e26f4 CR3=0000000006a88000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=0000000000000000000000000000ff00 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff844f436b RDX=fffffbfff0abfc9d
RSI=0000000000000004 RDI=ffffffff855fe4e0 RBP=ffffffff855fe4e0 RSP=ffff8880168bf800
R8 =0000000000000000 R9 =fffffbfff0abfc9c R10=ffffffff855fe4e3 R11=0000000000000001
R12=0000000000000003 R13=fffffbfff0abfc9c R14=0000000000000001 R15=1ffff11002d17f01
RIP=ffffffff844f43e8 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f5c8f2db700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f87865fa740 CR3=000000000e4f0000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=f5afafd38299a995da46b827ced561cf
XMM02=6b1e99b806172e3b00000000000aea28 XMM03=ac8bc31478ec851100000000000aefa0
XMM04=8212a15e5288f25a000000000013f388 XMM05=d3fdd5f48436fbd700000000000aead0
XMM06=fe59b9abce696c3b00000000000ae988 XMM07=a1fcdcf819d7e1e500000000000ae728
XMM08=44495f474f4c5359530069253d595449 XMM09=00000000000000000000000000000000
XMM10=00002000000000000000200000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000