[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.120' (ECDSA) to the list of known hosts. executing program executing program syzkaller login: [ 33.120606] dccp_xmit_packet: Payload too large (65475) for featneg. [ 33.139947] dccp_xmit_packet: Payload too large (65475) for featneg. [ 33.153791] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 33.164375] CPU: 0 PID: 7965 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 33.172249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 33.181687] Call Trace: [ 33.184267] dump_stack+0x1b2/0x281 [ 33.188102] ccid3_update_send_interval.cold+0x87/0x93 [ 33.193396] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 33.198163] ? ccid3_update_send_interval+0x100/0x100 [ 33.203344] dccp_xmit_packet+0x24b/0x6d0 [ 33.207498] dccp_write_xmit+0x140/0x1a0 [ 33.211550] dccp_sendmsg+0x708/0x880 [ 33.216042] ? dccp_ioctl+0x150/0x150 [ 33.219848] ? copy_msghdr_from_user+0x218/0x3b0 [ 33.224653] ? kernel_recvmsg+0x210/0x210 [ 33.228797] inet_sendmsg+0x11a/0x4e0 [ 33.232585] ? security_socket_sendmsg+0x83/0xb0 [ 33.237325] ? inet_recvmsg+0x4d0/0x4d0 [ 33.241304] sock_sendmsg+0xb5/0x100 [ 33.245011] ___sys_sendmsg+0x6c8/0x800 [ 33.248976] ? dccp_sendmsg+0x4fd/0x880 [ 33.252938] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 33.257679] ? dccp_sendmsg+0x50c/0x880 [ 33.261647] ? dccp_ioctl+0x150/0x150 [ 33.265454] ? inet_sendmsg+0x122/0x4e0 [ 33.269431] ? security_socket_sendmsg+0x83/0xb0 [ 33.274191] ? inet_recvmsg+0x4d0/0x4d0 [ 33.278150] ? sock_sendmsg+0xc4/0x100 [ 33.282022] ? SyS_sendto+0x1e7/0x2c0 [ 33.285811] ? SyS_getpeername+0x220/0x220 [ 33.290038] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 33.295136] ? __fdget+0x167/0x1f0 [ 33.298687] ? sockfd_lookup_light+0xb2/0x160 [ 33.303184] __sys_sendmsg+0xa3/0x120 [ 33.306991] ? SyS_shutdown+0x160/0x160 [ 33.310960] ? up_read+0x17/0x30 [ 33.314326] ? __do_page_fault+0x159/0xad0 [ 33.318567] SyS_sendmsg+0x27/0x40 [ 33.322110] ? __sys_sendmsg+0x120/0x120 [ 33.326161] do_syscall_64+0x1d5/0x640 [ 33.330043] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 33.335221] RIP: 0033:0x7f65fb48aec9 [ 33.338921] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 33.346619] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f65fb48aec9 [ 33.354004] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 33.361340] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 33.368768] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 33.376021] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 33.385673] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 33.396389] CPU: 1 PID: 7965 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 33.404278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 33.413666] Call Trace: [ 33.416245] dump_stack+0x1b2/0x281 [ 33.419863] ccid3_update_send_interval.cold+0x87/0x93 [ 33.425158] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 33.429903] ? ccid3_update_send_interval+0x100/0x100 [ 33.435076] dccp_xmit_packet+0x24b/0x6d0 [ 33.439205] dccp_write_xmit+0x140/0x1a0 [ 33.443258] dccp_sendmsg+0x708/0x880 [ 33.447042] ? dccp_ioctl+0x150/0x150 [ 33.450832] ? copy_msghdr_from_user+0x218/0x3b0 [ 33.455595] ? kernel_recvmsg+0x210/0x210 [ 33.459746] inet_sendmsg+0x11a/0x4e0 [ 33.463542] ? security_socket_sendmsg+0x83/0xb0 [ 33.468297] ? inet_recvmsg+0x4d0/0x4d0 [ 33.472272] sock_sendmsg+0xb5/0x100 [ 33.475978] ___sys_sendmsg+0x6c8/0x800 [ 33.479932] ? dccp_sendmsg+0x4fd/0x880 [ 33.483890] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 33.488630] ? dccp_sendmsg+0x50c/0x880 [ 33.492605] ? dccp_ioctl+0x150/0x150 [ 33.496394] ? inet_sendmsg+0x122/0x4e0 [ 33.500347] ? security_socket_sendmsg+0x83/0xb0 [ 33.505082] ? inet_recvmsg+0x4d0/0x4d0 [ 33.509038] ? sock_sendmsg+0xc4/0x100 [ 33.512921] ? SyS_sendto+0x1e7/0x2c0 [ 33.516725] ? SyS_getpeername+0x220/0x220 [ 33.520958] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 33.525968] ? __fdget+0x167/0x1f0 [ 33.529490] ? sockfd_lookup_light+0xb2/0x160 [ 33.533981] __sys_sendmsg+0xa3/0x120 [ 33.537779] ? SyS_shutdown+0x160/0x160 [ 33.541745] ? up_read+0x17/0x30 [ 33.545104] ? __do_page_fault+0x159/0xad0 [ 33.549322] SyS_sendmsg+0x27/0x40 [ 33.552859] ? __sys_sendmsg+0x120/0x120 [ 33.556906] do_syscall_64+0x1d5/0x640 [ 33.560801] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 33.565982] RIP: 0033:0x7f65fb48aec9 [ 33.569672] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 33.577365] RAX: ffffffffffffffda RBX: 000000000000000f RCX: 00007f65fb48aec9 [ 33.584622] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 33.591885] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 33.599137] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 33.606398] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 33.615044] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 33.625641] CPU: 1 PID: 7965 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 33.633615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 33.642966] Call Trace: [ 33.645539] dump_stack+0x1b2/0x281 [ 33.649157] ccid3_update_send_interval.cold+0x87/0x93 [ 33.654432] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 33.659444] ? ccid3_update_send_interval+0x100/0x100 [ 33.664634] dccp_xmit_packet+0x24b/0x6d0 [ 33.668781] dccp_write_xmit+0x140/0x1a0 [ 33.672848] dccp_sendmsg+0x708/0x880 [ 33.676639] ? dccp_ioctl+0x150/0x150 [ 33.680434] ? copy_msghdr_from_user+0x218/0x3b0 [ 33.685312] ? kernel_recvmsg+0x210/0x210 [ 33.689550] inet_sendmsg+0x11a/0x4e0 [ 33.693352] ? security_socket_sendmsg+0x83/0xb0 [ 33.698130] ? inet_recvmsg+0x4d0/0x4d0 [ 33.702114] sock_sendmsg+0xb5/0x100 [ 33.705829] ___sys_sendmsg+0x6c8/0x800 [ 33.709795] ? dccp_sendmsg+0x4fd/0x880 [ 33.713757] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 33.718608] ? dccp_sendmsg+0x50c/0x880 [ 33.722585] ? dccp_ioctl+0x150/0x150 [ 33.726401] ? inet_sendmsg+0x122/0x4e0 [ 33.730364] ? security_socket_sendmsg+0x83/0xb0 [ 33.735107] ? inet_recvmsg+0x4d0/0x4d0 [ 33.739065] ? sock_sendmsg+0xc4/0x100 [ 33.742949] ? SyS_sendto+0x1e7/0x2c0 [ 33.746733] ? SyS_getpeername+0x220/0x220 [ 33.750956] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 33.755966] ? __fdget+0x167/0x1f0 [ 33.759498] ? sockfd_lookup_light+0xb2/0x160 [ 33.763979] __sys_sendmsg+0xa3/0x120 [ 33.767762] ? SyS_shutdown+0x160/0x160 [ 33.771822] ? up_read+0x17/0x30 [ 33.775174] ? __do_page_fault+0x159/0xad0 [ 33.779398] SyS_sendmsg+0x27/0x40 [ 33.782927] ? __sys_sendmsg+0x120/0x120 [ 33.786972] do_syscall_64+0x1d5/0x640 [ 33.790849] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 33.796020] RIP: 0033:0x7f65fb48aec9 [ 33.799737] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 33.807434] RAX: ffffffffffffffda RBX: 000000000000000e RCX: 00007f65fb48aec9 [ 33.814687] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 33.822152] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 33.829420] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 33.836683] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 33.844524] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 33.855105] CPU: 1 PID: 7965 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 33.863108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 33.872470] Call Trace: [ 33.875044] dump_stack+0x1b2/0x281 [ 33.878661] ccid3_update_send_interval.cold+0x87/0x93 [ 33.883932] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 33.888673] ? ccid3_update_send_interval+0x100/0x100 [ 33.893863] dccp_xmit_packet+0x24b/0x6d0 [ 33.897998] dccp_write_xmit+0x140/0x1a0 [ 33.902064] dccp_sendmsg+0x708/0x880 [ 33.905863] ? dccp_ioctl+0x150/0x150 [ 33.909663] ? copy_msghdr_from_user+0x218/0x3b0 [ 33.914409] ? kernel_recvmsg+0x210/0x210 [ 33.918543] inet_sendmsg+0x11a/0x4e0 [ 33.922415] ? security_socket_sendmsg+0x83/0xb0 [ 33.927171] ? inet_recvmsg+0x4d0/0x4d0 [ 33.931233] sock_sendmsg+0xb5/0x100 [ 33.934938] ___sys_sendmsg+0x6c8/0x800 [ 33.938919] ? dccp_sendmsg+0x4fd/0x880 [ 33.942898] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 33.947647] ? dccp_sendmsg+0x50c/0x880 [ 33.951608] ? dccp_ioctl+0x150/0x150 [ 33.955405] ? inet_sendmsg+0x122/0x4e0 [ 33.959371] ? security_socket_sendmsg+0x83/0xb0 [ 33.964133] ? inet_recvmsg+0x4d0/0x4d0 [ 33.968117] ? sock_sendmsg+0xc4/0x100 [ 33.972003] ? SyS_sendto+0x1e7/0x2c0 [ 33.975784] ? SyS_getpeername+0x220/0x220 [ 33.980014] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 33.985016] ? __fdget+0x167/0x1f0 [ 33.988540] ? sockfd_lookup_light+0xb2/0x160 [ 33.993021] __sys_sendmsg+0xa3/0x120 [ 33.996804] ? SyS_shutdown+0x160/0x160 [ 34.000766] ? up_read+0x17/0x30 [ 34.004133] ? __do_page_fault+0x159/0xad0 [ 34.008443] SyS_sendmsg+0x27/0x40 [ 34.011967] ? __sys_sendmsg+0x120/0x120 [ 34.016012] do_syscall_64+0x1d5/0x640 [ 34.020089] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 34.025266] RIP: 0033:0x7f65fb48aec9 [ 34.028962] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 34.036662] RAX: ffffffffffffffda RBX: 000000000000000d RCX: 00007f65fb48aec9 [ 34.043915] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 34.051687] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 34.058954] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 34.066205] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 34.074450] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 34.085021] CPU: 1 PID: 7965 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 34.092922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 34.102271] Call Trace: [ 34.104859] dump_stack+0x1b2/0x281 [ 34.108488] ccid3_update_send_interval.cold+0x87/0x93 [ 34.113754] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 34.118499] ? ccid3_update_send_interval+0x100/0x100 [ 34.123677] dccp_xmit_packet+0x24b/0x6d0 [ 34.127811] dccp_write_xmit+0x140/0x1a0 [ 34.131858] dccp_sendmsg+0x708/0x880 [ 34.135649] ? dccp_ioctl+0x150/0x150 [ 34.139436] ? copy_msghdr_from_user+0x218/0x3b0 [ 34.144178] ? kernel_recvmsg+0x210/0x210 [ 34.148323] inet_sendmsg+0x11a/0x4e0 [ 34.152128] ? security_socket_sendmsg+0x83/0xb0 [ 34.156872] ? inet_recvmsg+0x4d0/0x4d0 [ 34.160858] sock_sendmsg+0xb5/0x100 [ 34.164580] ___sys_sendmsg+0x6c8/0x800 [ 34.168549] ? dccp_sendmsg+0x4fd/0x880 [ 34.172517] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 34.177367] ? dccp_sendmsg+0x50c/0x880 [ 34.181347] ? dccp_ioctl+0x150/0x150 [ 34.185151] ? inet_sendmsg+0x122/0x4e0 [ 34.189115] ? security_socket_sendmsg+0x83/0xb0 [ 34.193856] ? inet_recvmsg+0x4d0/0x4d0 [ 34.197819] ? sock_sendmsg+0xc4/0x100 [ 34.201711] ? SyS_sendto+0x1e7/0x2c0 [ 34.205498] ? SyS_getpeername+0x220/0x220 [ 34.209717] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 34.214717] ? __fdget+0x167/0x1f0 [ 34.218250] ? sockfd_lookup_light+0xb2/0x160 [ 34.222747] __sys_sendmsg+0xa3/0x120 [ 34.226540] ? SyS_shutdown+0x160/0x160 [ 34.230505] ? up_read+0x17/0x30 [ 34.233878] ? __do_page_fault+0x159/0xad0 [ 34.238107] SyS_sendmsg+0x27/0x40 [ 34.241635] ? __sys_sendmsg+0x120/0x120 [ 34.245684] do_syscall_64+0x1d5/0x640 [ 34.249830] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 34.255047] RIP: 0033:0x7f65fb48aec9 [ 34.258745] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 34.266542] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 00007f65fb48aec9 [ 34.273800] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 34.281054] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 34.288328] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 34.295584] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 34.303433] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 34.313990] CPU: 1 PID: 7965 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 34.321872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 34.331228] Call Trace: [ 34.333824] dump_stack+0x1b2/0x281 [ 34.337651] ccid3_update_send_interval.cold+0x87/0x93 [ 34.342920] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 34.347678] ? ccid3_update_send_interval+0x100/0x100 [ 34.353327] dccp_xmit_packet+0x24b/0x6d0 [ 34.357550] dccp_write_xmit+0x140/0x1a0 [ 34.361594] dccp_sendmsg+0x708/0x880 [ 34.365384] ? dccp_ioctl+0x150/0x150 [ 34.369200] ? copy_msghdr_from_user+0x218/0x3b0 [ 34.373943] ? kernel_recvmsg+0x210/0x210 [ 34.378101] inet_sendmsg+0x11a/0x4e0 [ 34.381900] ? security_socket_sendmsg+0x83/0xb0 [ 34.386650] ? inet_recvmsg+0x4d0/0x4d0 [ 34.390607] sock_sendmsg+0xb5/0x100 [ 34.394317] ___sys_sendmsg+0x6c8/0x800 [ 34.398281] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 34.403024] ? __lock_acquire+0x5fc/0x3f20 [ 34.407254] ? trace_hardirqs_on+0x10/0x10 [ 34.411472] ? task_numa_work+0x790/0xab0 [ 34.415604] ? lock_downgrade+0x740/0x740 [ 34.419739] ? __fdget+0x167/0x1f0 [ 34.423270] ? sockfd_lookup_light+0xb2/0x160 [ 34.427766] __sys_sendmsg+0xa3/0x120 [ 34.431549] ? SyS_shutdown+0x160/0x160 [ 34.435512] SyS_sendmsg+0x27/0x40 [ 34.439060] ? __sys_sendmsg+0x120/0x120 [ 34.443102] do_syscall_64+0x1d5/0x640 [ 34.446975] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 34.452159] RIP: 0033:0x7f65fb48aec9 [ 34.455866] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 34.463565] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00007f65fb48aec9 [ 34.470819] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 34.478072] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 34.485335] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 34.492588] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 34.500116] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 34.510843] CPU: 1 PID: 7965 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 34.518714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 34.528084] Call Trace: [ 34.530663] dump_stack+0x1b2/0x281 [ 34.534295] ccid3_update_send_interval.cold+0x87/0x93 [ 34.539660] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 34.544401] ? ccid3_update_send_interval+0x100/0x100 [ 34.549581] dccp_xmit_packet+0x24b/0x6d0 [ 34.553715] dccp_write_xmit+0x140/0x1a0 [ 34.557781] dccp_sendmsg+0x708/0x880 [ 34.561568] ? dccp_ioctl+0x150/0x150 [ 34.565358] ? copy_msghdr_from_user+0x218/0x3b0 [ 34.570108] ? kernel_recvmsg+0x210/0x210 [ 34.574260] inet_sendmsg+0x11a/0x4e0 [ 34.578080] ? security_socket_sendmsg+0x83/0xb0 [ 34.582819] ? inet_recvmsg+0x4d0/0x4d0 [ 34.586870] sock_sendmsg+0xb5/0x100 [ 34.590574] ___sys_sendmsg+0x6c8/0x800 [ 34.594542] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 34.599289] ? __lock_acquire+0x5fc/0x3f20 [ 34.603538] ? trace_hardirqs_on+0x10/0x10 [ 34.607756] ? task_numa_work+0x790/0xab0 [ 34.611886] ? lock_downgrade+0x740/0x740 [ 34.616018] ? __fdget+0x167/0x1f0 [ 34.619544] ? sockfd_lookup_light+0xb2/0x160 [ 34.624025] __sys_sendmsg+0xa3/0x120 [ 34.627925] ? SyS_shutdown+0x160/0x160 [ 34.631893] SyS_sendmsg+0x27/0x40 [ 34.635420] ? __sys_sendmsg+0x120/0x120 [ 34.639490] do_syscall_64+0x1d5/0x640 [ 34.643369] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 34.648563] RIP: 0033:0x7f65fb48aec9 [ 34.652276] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 34.659970] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00007f65fb48aec9 [ 34.667231] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 34.674510] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 34.681781] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 34.689134] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 34.696651] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 34.707201] CPU: 1 PID: 7965 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 34.715089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 34.724435] Call Trace: [ 34.727027] dump_stack+0x1b2/0x281 [ 34.730651] ccid3_update_send_interval.cold+0x87/0x93 [ 34.735916] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 34.740789] ? ccid3_update_send_interval+0x100/0x100 [ 34.745966] dccp_xmit_packet+0x24b/0x6d0 [ 34.750103] dccp_write_xmit+0x140/0x1a0 [ 34.754175] dccp_sendmsg+0x708/0x880 [ 34.758082] ? dccp_ioctl+0x150/0x150 [ 34.761873] ? copy_msghdr_from_user+0x218/0x3b0 [ 34.766623] ? kernel_recvmsg+0x210/0x210 [ 34.770774] inet_sendmsg+0x11a/0x4e0 [ 34.774575] ? security_socket_sendmsg+0x83/0xb0 [ 34.779332] ? inet_recvmsg+0x4d0/0x4d0 [ 34.783302] sock_sendmsg+0xb5/0x100 [ 34.787003] ___sys_sendmsg+0x6c8/0x800 [ 34.791063] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 34.795809] ? __lock_acquire+0x5fc/0x3f20 [ 34.800036] ? trace_hardirqs_on+0x10/0x10 [ 34.804267] ? task_numa_work+0x790/0xab0 [ 34.808410] ? lock_downgrade+0x740/0x740 [ 34.812551] ? __fdget+0x167/0x1f0 [ 34.816075] ? sockfd_lookup_light+0xb2/0x160 [ 34.820590] __sys_sendmsg+0xa3/0x120 [ 34.824376] ? SyS_shutdown+0x160/0x160 [ 34.828344] SyS_sendmsg+0x27/0x40 [ 34.831881] ? __sys_sendmsg+0x120/0x120 [ 34.835929] do_syscall_64+0x1d5/0x640 [ 34.839807] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 34.844997] RIP: 0033:0x7f65fb48aec9 [ 34.848688] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 34.856395] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00007f65fb48aec9 [ 34.863664] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 34.870933] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 34.878192] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 34.885443] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 34.893238] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 34.903807] CPU: 1 PID: 7965 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 34.912001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 34.921372] Call Trace: [ 34.923951] dump_stack+0x1b2/0x281 [ 34.927595] ccid3_update_send_interval.cold+0x87/0x93 [ 34.932861] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 34.937633] ? ccid3_update_send_interval+0x100/0x100 [ 34.942809] dccp_xmit_packet+0x24b/0x6d0 [ 34.946940] dccp_write_xmit+0x140/0x1a0 [ 34.950994] dccp_sendmsg+0x708/0x880 [ 34.954797] ? dccp_ioctl+0x150/0x150 [ 34.958598] ? copy_msghdr_from_user+0x218/0x3b0 [ 34.963342] ? kernel_recvmsg+0x210/0x210 [ 34.967490] inet_sendmsg+0x11a/0x4e0 [ 34.971288] ? security_socket_sendmsg+0x83/0xb0 [ 34.976040] ? inet_recvmsg+0x4d0/0x4d0 [ 34.979998] sock_sendmsg+0xb5/0x100 [ 34.983791] ___sys_sendmsg+0x6c8/0x800 [ 34.987759] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 34.992507] ? __lock_acquire+0x5fc/0x3f20 [ 34.996755] ? trace_hardirqs_on+0x10/0x10 [ 35.000980] ? task_numa_work+0x790/0xab0 [ 35.005117] ? lock_downgrade+0x740/0x740 [ 35.009252] ? __fdget+0x167/0x1f0 [ 35.012779] ? sockfd_lookup_light+0xb2/0x160 [ 35.017256] __sys_sendmsg+0xa3/0x120 [ 35.021050] ? SyS_shutdown+0x160/0x160 [ 35.025036] SyS_sendmsg+0x27/0x40 [ 35.028562] ? __sys_sendmsg+0x120/0x120 [ 35.032607] do_syscall_64+0x1d5/0x640 [ 35.036498] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 35.041674] RIP: 0033:0x7f65fb48aec9 [ 35.045370] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 35.053063] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00007f65fb48aec9 [ 35.060317] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 35.067677] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 35.074930] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 35.082181] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 35.089758] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 35.100732] CPU: 1 PID: 7965 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 35.108632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 35.117997] Call Trace: [ 35.120571] dump_stack+0x1b2/0x281 [ 35.124190] ccid3_update_send_interval.cold+0x87/0x93 [ 35.129467] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 35.134221] ? ccid3_update_send_interval+0x100/0x100 [ 35.139396] dccp_xmit_packet+0x24b/0x6d0 [ 35.143532] dccp_write_xmit+0x140/0x1a0 [ 35.147581] dccp_sendmsg+0x708/0x880 [ 35.151370] ? dccp_ioctl+0x150/0x150 [ 35.155167] ? copy_msghdr_from_user+0x218/0x3b0 [ 35.159916] ? kernel_recvmsg+0x210/0x210 [ 35.164151] inet_sendmsg+0x11a/0x4e0 [ 35.168028] ? security_socket_sendmsg+0x83/0xb0 [ 35.172773] ? inet_recvmsg+0x4d0/0x4d0 [ 35.176905] sock_sendmsg+0xb5/0x100 [ 35.180610] ___sys_sendmsg+0x6c8/0x800 [ 35.184577] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 35.189331] ? __lock_acquire+0x5fc/0x3f20 [ 35.193585] ? trace_hardirqs_on+0x10/0x10 [ 35.197833] ? task_numa_work+0x790/0xab0 [ 35.201969] ? lock_downgrade+0x740/0x740 [ 35.206104] ? __fdget+0x167/0x1f0 [ 35.209643] ? sockfd_lookup_light+0xb2/0x160 [ 35.214212] __sys_sendmsg+0xa3/0x120 [ 35.218027] ? SyS_shutdown+0x160/0x160 [ 35.222030] SyS_sendmsg+0x27/0x40 [ 35.225558] ? __sys_sendmsg+0x120/0x120 [ 35.229620] do_syscall_64+0x1d5/0x640 [ 35.233518] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 35.238693] RIP: 0033:0x7f65fb48aec9 [ 35.242484] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 35.250175] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00007f65fb48aec9 [ 35.257439] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 35.264695] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 35.271964] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 35.279231] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 35.286823] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 35.297377] CPU: 1 PID: 7965 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 35.305297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 35.314819] Call Trace: [ 35.317396] dump_stack+0x1b2/0x281 [ 35.321151] ccid3_update_send_interval.cold+0x87/0x93 [ 35.326433] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 35.331260] ? ccid3_update_send_interval+0x100/0x100 [ 35.336436] dccp_xmit_packet+0x24b/0x6d0 [ 35.340571] dccp_write_xmit+0x140/0x1a0 [ 35.344621] dccp_sendmsg+0x708/0x880 [ 35.348413] ? dccp_ioctl+0x150/0x150 [ 35.352310] ? copy_msghdr_from_user+0x218/0x3b0 [ 35.357056] ? kernel_recvmsg+0x210/0x210 [ 35.361187] inet_sendmsg+0x11a/0x4e0 [ 35.364972] ? security_socket_sendmsg+0x83/0xb0 [ 35.369733] ? inet_recvmsg+0x4d0/0x4d0 [ 35.373711] sock_sendmsg+0xb5/0x100 [ 35.377414] ___sys_sendmsg+0x6c8/0x800 [ 35.381377] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 35.386122] ? __lock_acquire+0x5fc/0x3f20 [ 35.390354] ? trace_hardirqs_on+0x10/0x10 [ 35.394574] ? task_numa_work+0x790/0xab0 [ 35.398712] ? lock_downgrade+0x740/0x740 [ 35.402857] ? __fdget+0x167/0x1f0 [ 35.406405] ? sockfd_lookup_light+0xb2/0x160 [ 35.410899] __sys_sendmsg+0xa3/0x120 [ 35.414790] ? SyS_shutdown+0x160/0x160 [ 35.418759] SyS_sendmsg+0x27/0x40 [ 35.422281] ? __sys_sendmsg+0x120/0x120 [ 35.426585] do_syscall_64+0x1d5/0x640 [ 35.430460] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 35.435627] RIP: 0033:0x7f65fb48aec9 [ 35.439318] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 35.447012] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00007f65fb48aec9 [ 35.454355] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 35.461605] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 35.468868] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 35.476118] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 35.483826] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 35.494383] CPU: 1 PID: 7965 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 35.502270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 35.511608] Call Trace: [ 35.514178] dump_stack+0x1b2/0x281 [ 35.517790] ccid3_update_send_interval.cold+0x87/0x93 [ 35.523048] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 35.527784] ? ccid3_update_send_interval+0x100/0x100 [ 35.532954] dccp_xmit_packet+0x24b/0x6d0 [ 35.537087] dccp_write_xmit+0x140/0x1a0 [ 35.541128] dccp_sendmsg+0x708/0x880 [ 35.544925] ? dccp_ioctl+0x150/0x150 [ 35.548710] ? copy_msghdr_from_user+0x218/0x3b0 [ 35.553478] ? kernel_recvmsg+0x210/0x210 [ 35.557633] inet_sendmsg+0x11a/0x4e0 [ 35.561413] ? security_socket_sendmsg+0x83/0xb0 [ 35.566161] ? inet_recvmsg+0x4d0/0x4d0 [ 35.570111] sock_sendmsg+0xb5/0x100 [ 35.573806] ___sys_sendmsg+0x6c8/0x800 [ 35.577771] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 35.582506] ? __lock_acquire+0x5fc/0x3f20 [ 35.586735] ? trace_hardirqs_on+0x10/0x10 [ 35.590959] ? task_numa_work+0x790/0xab0 [ 35.595089] ? lock_downgrade+0x740/0x740 [ 35.599228] ? __fdget+0x167/0x1f0 [ 35.602754] ? sockfd_lookup_light+0xb2/0x160 [ 35.607242] __sys_sendmsg+0xa3/0x120 [ 35.611021] ? SyS_shutdown+0x160/0x160 [ 35.614985] SyS_sendmsg+0x27/0x40 [ 35.618502] ? __sys_sendmsg+0x120/0x120 [ 35.622541] do_syscall_64+0x1d5/0x640 [ 35.626439] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 35.631618] RIP: 0033:0x7f65fb48aec9 [ 35.635304] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 35.643342] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f65fb48aec9 [ 35.650591] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 35.657839] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 35.665089] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 35.672349] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 35.684090] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 35.694871] CPU: 1 PID: 7965 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 35.702747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 35.712106] Call Trace: [ 35.714684] dump_stack+0x1b2/0x281 [ 35.718294] ccid3_update_send_interval.cold+0x87/0x93 [ 35.723557] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 35.728296] ? ccid3_update_send_interval+0x100/0x100 [ 35.733508] dccp_xmit_packet+0x24b/0x6d0 [ 35.737649] dccp_write_xmit+0x140/0x1a0 [ 35.741693] dccp_sendmsg+0x708/0x880 [ 35.745488] ? dccp_ioctl+0x150/0x150 [ 35.749290] ? copy_msghdr_from_user+0x218/0x3b0 [ 35.754026] ? kernel_recvmsg+0x210/0x210 [ 35.758166] inet_sendmsg+0x11a/0x4e0 [ 35.761945] ? security_socket_sendmsg+0x83/0xb0 [ 35.766681] ? inet_recvmsg+0x4d0/0x4d0 [ 35.770643] sock_sendmsg+0xb5/0x100 [ 35.774342] ___sys_sendmsg+0x6c8/0x800 [ 35.778311] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 35.783062] ? __lock_acquire+0x5fc/0x3f20 [ 35.787303] ? trace_hardirqs_on+0x10/0x10 [ 35.791543] ? task_numa_work+0x790/0xab0 [ 35.795675] ? lock_downgrade+0x740/0x740 [ 35.799822] ? __fdget+0x167/0x1f0 [ 35.803342] ? sockfd_lookup_light+0xb2/0x160 [ 35.807821] __sys_sendmsg+0xa3/0x120 [ 35.811600] ? SyS_shutdown+0x160/0x160 [ 35.815562] SyS_sendmsg+0x27/0x40 [ 35.819087] ? __sys_sendmsg+0x120/0x120 [ 35.823142] do_syscall_64+0x1d5/0x640 [ 35.827015] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 35.832199] RIP: 0033:0x7f65fb48aec9 [ 35.835893] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 35.843584] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f65fb48aec9 [ 35.850840] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 35.858109] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 35.866744] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 35.874009] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 35.881658] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 35.892306] CPU: 1 PID: 7965 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 35.900188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 35.909529] Call Trace: [ 35.912107] dump_stack+0x1b2/0x281 [ 35.915718] ccid3_update_send_interval.cold+0x87/0x93 [ 35.920975] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 35.925711] ? ccid3_update_send_interval+0x100/0x100 [ 35.930898] dccp_xmit_packet+0x24b/0x6d0 [ 35.935028] dccp_write_xmit+0x140/0x1a0 [ 35.939073] dccp_sendmsg+0x708/0x880 [ 35.942873] ? dccp_ioctl+0x150/0x150 [ 35.946654] ? copy_msghdr_from_user+0x218/0x3b0 [ 35.951387] ? kernel_recvmsg+0x210/0x210 [ 35.955520] inet_sendmsg+0x11a/0x4e0 [ 35.959304] ? security_socket_sendmsg+0x83/0xb0 [ 35.964045] ? inet_recvmsg+0x4d0/0x4d0 [ 35.968003] sock_sendmsg+0xb5/0x100 [ 35.971698] ___sys_sendmsg+0x6c8/0x800 [ 35.975655] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 35.980393] ? __lock_acquire+0x5fc/0x3f20 [ 35.984632] ? trace_hardirqs_on+0x10/0x10 [ 35.988865] ? task_numa_work+0x790/0xab0 [ 35.992997] ? lock_downgrade+0x740/0x740 [ 35.997140] ? __fdget+0x167/0x1f0 [ 36.000682] ? sockfd_lookup_light+0xb2/0x160 [ 36.005155] __sys_sendmsg+0xa3/0x120 [ 36.008937] ? SyS_shutdown+0x160/0x160 [ 36.012904] SyS_sendmsg+0x27/0x40 [ 36.016429] ? __sys_sendmsg+0x120/0x120 [ 36.020487] do_syscall_64+0x1d5/0x640 [ 36.024365] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 36.029540] RIP: 0033:0x7f65fb48aec9 [ 36.033237] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 36.040930] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f65fb48aec9 [ 36.048187] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 36.055468] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 36.062719] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 36.069975] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 36.078318] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 36.088874] CPU: 1 PID: 7965 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 36.096748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 36.106097] Call Trace: [ 36.108669] dump_stack+0x1b2/0x281 [ 36.112290] ccid3_update_send_interval.cold+0x87/0x93 [ 36.117551] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 36.122299] ? ccid3_update_send_interval+0x100/0x100 [ 36.127470] dccp_xmit_packet+0x24b/0x6d0 [ 36.131596] dccp_write_xmit+0x140/0x1a0 [ 36.135647] dccp_sendmsg+0x708/0x880 [ 36.139435] ? dccp_ioctl+0x150/0x150 [ 36.143221] ? copy_msghdr_from_user+0x218/0x3b0 [ 36.147963] ? kernel_recvmsg+0x210/0x210 [ 36.152106] inet_sendmsg+0x11a/0x4e0 [ 36.155901] ? security_socket_sendmsg+0x83/0xb0 [ 36.160633] ? inet_recvmsg+0x4d0/0x4d0 [ 36.164587] sock_sendmsg+0xb5/0x100 [ 36.168297] ___sys_sendmsg+0x6c8/0x800 [ 36.172253] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 36.176989] ? __lock_acquire+0x5fc/0x3f20 [ 36.181207] ? trace_hardirqs_on+0x10/0x10 [ 36.185418] ? task_numa_work+0x790/0xab0 [ 36.189544] ? lock_downgrade+0x740/0x740 [ 36.193674] ? __fdget+0x167/0x1f0 [ 36.197196] ? sockfd_lookup_light+0xb2/0x160 [ 36.201667] __sys_sendmsg+0xa3/0x120 [ 36.205443] ? SyS_shutdown+0x160/0x160 [ 36.209418] SyS_sendmsg+0x27/0x40 [ 36.212946] ? __sys_sendmsg+0x120/0x120 [ 36.216984] do_syscall_64+0x1d5/0x640 [ 36.220855] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 36.226020] RIP: 0033:0x7f65fb48aec9 [ 36.229706] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 36.237390] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f65fb48aec9 [ 36.244654] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 36.252393] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 36.259670] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 36.266922] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 36.274553] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 36.285111] CPU: 1 PID: 7965 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 36.292988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 36.302342] Call Trace: [ 36.304925] dump_stack+0x1b2/0x281 [ 36.308544] ccid3_update_send_interval.cold+0x87/0x93 [ 36.313810] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 36.318554] ? ccid3_update_send_interval+0x100/0x100 [ 36.323737] dccp_xmit_packet+0x24b/0x6d0 [ 36.327895] dccp_write_xmit+0x140/0x1a0 [ 36.331949] dccp_sendmsg+0x708/0x880 [ 36.335736] ? dccp_ioctl+0x150/0x150 [ 36.339520] ? copy_msghdr_from_user+0x218/0x3b0 [ 36.344275] ? kernel_recvmsg+0x210/0x210 [ 36.348407] inet_sendmsg+0x11a/0x4e0 [ 36.352192] ? security_socket_sendmsg+0x83/0xb0 [ 36.356927] ? inet_recvmsg+0x4d0/0x4d0 [ 36.360882] sock_sendmsg+0xb5/0x100 [ 36.364578] ___sys_sendmsg+0x6c8/0x800 [ 36.368555] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 36.373295] ? __lock_acquire+0x5fc/0x3f20 [ 36.377523] ? trace_hardirqs_on+0x10/0x10 [ 36.381746] ? task_numa_work+0x790/0xab0 [ 36.385876] ? lock_downgrade+0x740/0x740 [ 36.390003] ? __fdget+0x167/0x1f0 [ 36.393525] ? sockfd_lookup_light+0xb2/0x160 [ 36.398006] __sys_sendmsg+0xa3/0x120 [ 36.401804] ? SyS_shutdown+0x160/0x160 [ 36.405770] SyS_sendmsg+0x27/0x40 [ 36.409294] ? __sys_sendmsg+0x120/0x120 [ 36.413349] do_syscall_64+0x1d5/0x640 [ 36.417243] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 36.422425] RIP: 0033:0x7f65fb48aec9 [ 36.426128] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e executing program [ 36.433831] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f65fb48aec9 [ 36.441086] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 36.448344] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 36.455600] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 36.462852] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 36.478916] dccp_xmit_packet: Payload too large (65475) for featneg. [ 36.493181] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 36.503726] CPU: 1 PID: 7968 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 36.511611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 36.520949] Call Trace: [ 36.523537] dump_stack+0x1b2/0x281 [ 36.527151] ccid3_update_send_interval.cold+0x87/0x93 [ 36.532415] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 36.537150] ? ccid3_update_send_interval+0x100/0x100 [ 36.542319] dccp_xmit_packet+0x24b/0x6d0 [ 36.546450] dccp_write_xmit+0x140/0x1a0 [ 36.550493] dccp_sendmsg+0x708/0x880 [ 36.554281] ? dccp_ioctl+0x150/0x150 [ 36.558066] ? copy_msghdr_from_user+0x218/0x3b0 [ 36.562817] ? kernel_recvmsg+0x210/0x210 [ 36.566953] inet_sendmsg+0x11a/0x4e0 [ 36.570731] ? security_socket_sendmsg+0x83/0xb0 [ 36.575466] ? inet_recvmsg+0x4d0/0x4d0 [ 36.579433] sock_sendmsg+0xb5/0x100 [ 36.583138] ___sys_sendmsg+0x6c8/0x800 [ 36.587095] ? dccp_sendmsg+0x4fd/0x880 [ 36.591049] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 36.595803] ? dccp_sendmsg+0x50c/0x880 [ 36.599757] ? dccp_ioctl+0x150/0x150 [ 36.603545] ? inet_sendmsg+0x122/0x4e0 [ 36.607501] ? security_socket_sendmsg+0x83/0xb0 [ 36.612242] ? inet_recvmsg+0x4d0/0x4d0 [ 36.616198] ? sock_sendmsg+0xc4/0x100 [ 36.620066] ? SyS_sendto+0x1e7/0x2c0 [ 36.623850] ? SyS_getpeername+0x220/0x220 [ 36.628095] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 36.633098] ? __fdget+0x167/0x1f0 [ 36.636618] ? sockfd_lookup_light+0xb2/0x160 [ 36.641101] __sys_sendmsg+0xa3/0x120 [ 36.644880] ? SyS_shutdown+0x160/0x160 [ 36.648870] ? up_read+0x17/0x30 [ 36.652228] ? __do_page_fault+0x159/0xad0 [ 36.656444] SyS_sendmsg+0x27/0x40 [ 36.659965] ? __sys_sendmsg+0x120/0x120 [ 36.664008] do_syscall_64+0x1d5/0x640 [ 36.667908] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 36.673092] RIP: 0033:0x7f65fb48aec9 [ 36.676790] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 36.684485] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f65fb48aec9 [ 36.691744] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 36.698999] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 36.706248] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 36.713499] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 36.721288] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 36.732059] CPU: 1 PID: 7968 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 36.739942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 36.749296] Call Trace: [ 36.751874] dump_stack+0x1b2/0x281 [ 36.755492] ccid3_update_send_interval.cold+0x87/0x93 [ 36.760756] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 36.765498] ? ccid3_update_send_interval+0x100/0x100 [ 36.770672] dccp_xmit_packet+0x24b/0x6d0 [ 36.774808] dccp_write_xmit+0x140/0x1a0 [ 36.778855] dccp_sendmsg+0x708/0x880 [ 36.782642] ? dccp_ioctl+0x150/0x150 [ 36.786428] ? copy_msghdr_from_user+0x218/0x3b0 [ 36.791164] ? kernel_recvmsg+0x210/0x210 [ 36.795306] inet_sendmsg+0x11a/0x4e0 [ 36.799090] ? security_socket_sendmsg+0x83/0xb0 [ 36.803829] ? inet_recvmsg+0x4d0/0x4d0 [ 36.807786] sock_sendmsg+0xb5/0x100 [ 36.811497] ___sys_sendmsg+0x6c8/0x800 [ 36.815454] ? dccp_sendmsg+0x4fd/0x880 [ 36.819413] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 36.824148] ? dccp_sendmsg+0x50c/0x880 [ 36.828114] ? dccp_ioctl+0x150/0x150 [ 36.831905] ? inet_sendmsg+0x122/0x4e0 [ 36.835862] ? security_socket_sendmsg+0x83/0xb0 [ 36.840604] ? inet_recvmsg+0x4d0/0x4d0 [ 36.844563] ? sock_sendmsg+0xc4/0x100 [ 36.848432] ? SyS_sendto+0x1e7/0x2c0 [ 36.852213] ? SyS_getpeername+0x220/0x220 [ 36.856444] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 36.861449] ? __fdget+0x167/0x1f0 [ 36.864975] ? sockfd_lookup_light+0xb2/0x160 [ 36.869454] __sys_sendmsg+0xa3/0x120 [ 36.873239] ? SyS_shutdown+0x160/0x160 [ 36.877210] ? up_read+0x17/0x30 [ 36.880560] ? __do_page_fault+0x159/0xad0 [ 36.884780] SyS_sendmsg+0x27/0x40 [ 36.888322] ? __sys_sendmsg+0x120/0x120 [ 36.892372] do_syscall_64+0x1d5/0x640 [ 36.896252] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 36.901425] RIP: 0033:0x7f65fb48aec9 [ 36.905117] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 36.912814] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f65fb48aec9 [ 36.920073] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 36.927325] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 36.934577] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 36.941832] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 36.950119] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 36.960663] CPU: 1 PID: 7968 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 36.968545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 36.977896] Call Trace: [ 36.980484] dump_stack+0x1b2/0x281 [ 36.984101] ccid3_update_send_interval.cold+0x87/0x93 [ 36.989365] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 36.994104] ? ccid3_update_send_interval+0x100/0x100 [ 36.999276] dccp_xmit_packet+0x24b/0x6d0 [ 37.003400] dccp_write_xmit+0x140/0x1a0 [ 37.007445] dccp_sendmsg+0x708/0x880 [ 37.011229] ? dccp_ioctl+0x150/0x150 [ 37.015012] ? copy_msghdr_from_user+0x218/0x3b0 [ 37.019748] ? kernel_recvmsg+0x210/0x210 [ 37.023898] inet_sendmsg+0x11a/0x4e0 [ 37.027682] ? security_socket_sendmsg+0x83/0xb0 [ 37.032415] ? inet_recvmsg+0x4d0/0x4d0 [ 37.036370] sock_sendmsg+0xb5/0x100 [ 37.040065] ___sys_sendmsg+0x6c8/0x800 [ 37.044023] ? dccp_sendmsg+0x4fd/0x880 [ 37.047994] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 37.052741] ? dccp_sendmsg+0x50c/0x880 [ 37.056712] ? dccp_ioctl+0x150/0x150 [ 37.060496] ? inet_sendmsg+0x122/0x4e0 [ 37.064450] ? security_socket_sendmsg+0x83/0xb0 [ 37.069194] ? inet_recvmsg+0x4d0/0x4d0 [ 37.073153] ? sock_sendmsg+0xc4/0x100 [ 37.077022] ? SyS_sendto+0x1e7/0x2c0 [ 37.080802] ? SyS_getpeername+0x220/0x220 [ 37.085018] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 37.090016] ? __fdget+0x167/0x1f0 [ 37.093626] ? sockfd_lookup_light+0xb2/0x160 [ 37.098103] __sys_sendmsg+0xa3/0x120 [ 37.101886] ? SyS_shutdown+0x160/0x160 [ 37.105853] ? up_read+0x17/0x30 [ 37.109197] ? __do_page_fault+0x159/0xad0 [ 37.113415] SyS_sendmsg+0x27/0x40 [ 37.116936] ? __sys_sendmsg+0x120/0x120 [ 37.120975] do_syscall_64+0x1d5/0x640 [ 37.124846] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 37.130014] RIP: 0033:0x7f65fb48aec9 [ 37.133726] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 37.141434] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f65fb48aec9 [ 37.148687] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 37.155951] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 37.163219] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 37.170474] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 37.178225] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 37.188785] CPU: 1 PID: 7968 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 37.196664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 37.206006] Call Trace: [ 37.208579] dump_stack+0x1b2/0x281 [ 37.212201] ccid3_update_send_interval.cold+0x87/0x93 [ 37.217466] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 37.222215] ? ccid3_update_send_interval+0x100/0x100 [ 37.227386] dccp_xmit_packet+0x24b/0x6d0 [ 37.231527] dccp_write_xmit+0x140/0x1a0 [ 37.235604] dccp_sendmsg+0x708/0x880 [ 37.239403] ? dccp_ioctl+0x150/0x150 [ 37.243190] ? copy_msghdr_from_user+0x218/0x3b0 [ 37.247947] ? kernel_recvmsg+0x210/0x210 [ 37.252102] inet_sendmsg+0x11a/0x4e0 [ 37.255887] ? security_socket_sendmsg+0x83/0xb0 [ 37.260634] ? inet_recvmsg+0x4d0/0x4d0 [ 37.264590] sock_sendmsg+0xb5/0x100 [ 37.268299] ___sys_sendmsg+0x6c8/0x800 [ 37.272255] ? dccp_sendmsg+0x4fd/0x880 [ 37.276211] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 37.280969] ? dccp_sendmsg+0x50c/0x880 [ 37.284928] ? dccp_ioctl+0x150/0x150 [ 37.288722] ? inet_sendmsg+0x122/0x4e0 [ 37.292678] ? security_socket_sendmsg+0x83/0xb0 [ 37.297417] ? inet_recvmsg+0x4d0/0x4d0 [ 37.301383] ? sock_sendmsg+0xc4/0x100 [ 37.305257] ? SyS_sendto+0x1e7/0x2c0 [ 37.309043] ? SyS_getpeername+0x220/0x220 [ 37.313280] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 37.318288] ? __fdget+0x167/0x1f0 [ 37.321807] ? sockfd_lookup_light+0xb2/0x160 [ 37.326281] __sys_sendmsg+0xa3/0x120 [ 37.330060] ? SyS_shutdown+0x160/0x160 [ 37.334036] ? up_read+0x17/0x30 [ 37.337385] ? __do_page_fault+0x159/0xad0 [ 37.341599] SyS_sendmsg+0x27/0x40 [ 37.345130] ? __sys_sendmsg+0x120/0x120 [ 37.349170] do_syscall_64+0x1d5/0x640 [ 37.353056] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 37.358227] RIP: 0033:0x7f65fb48aec9 [ 37.361917] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 37.369603] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f65fb48aec9 [ 37.376847] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 37.384108] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 37.391377] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 37.398630] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 37.406369] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 37.416916] CPU: 1 PID: 7968 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 37.424788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 37.434138] Call Trace: [ 37.436721] dump_stack+0x1b2/0x281 [ 37.440341] ccid3_update_send_interval.cold+0x87/0x93 [ 37.445604] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 37.450343] ? ccid3_update_send_interval+0x100/0x100 [ 37.455518] dccp_xmit_packet+0x24b/0x6d0 [ 37.459654] dccp_write_xmit+0x140/0x1a0 [ 37.463723] dccp_sendmsg+0x708/0x880 [ 37.467520] ? dccp_ioctl+0x150/0x150 [ 37.471308] ? copy_msghdr_from_user+0x218/0x3b0 [ 37.476066] ? kernel_recvmsg+0x210/0x210 [ 37.480205] inet_sendmsg+0x11a/0x4e0 [ 37.483996] ? security_socket_sendmsg+0x83/0xb0 [ 37.488750] ? inet_recvmsg+0x4d0/0x4d0 [ 37.492710] sock_sendmsg+0xb5/0x100 [ 37.496406] ___sys_sendmsg+0x6c8/0x800 [ 37.500360] ? dccp_sendmsg+0x4fd/0x880 [ 37.504324] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 37.509069] ? dccp_sendmsg+0x50c/0x880 [ 37.513036] ? dccp_ioctl+0x150/0x150 [ 37.516824] ? inet_sendmsg+0x122/0x4e0 [ 37.520792] ? security_socket_sendmsg+0x83/0xb0 [ 37.525538] ? inet_recvmsg+0x4d0/0x4d0 [ 37.529496] ? sock_sendmsg+0xc4/0x100 [ 37.533367] ? SyS_sendto+0x1e7/0x2c0 [ 37.537160] ? SyS_getpeername+0x220/0x220 [ 37.541384] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 37.546393] ? __fdget+0x167/0x1f0 [ 37.549916] ? sockfd_lookup_light+0xb2/0x160 [ 37.554396] __sys_sendmsg+0xa3/0x120 [ 37.558178] ? SyS_shutdown+0x160/0x160 [ 37.562135] ? up_read+0x17/0x30 [ 37.565481] ? __do_page_fault+0x159/0xad0 [ 37.569710] SyS_sendmsg+0x27/0x40 [ 37.573229] ? __sys_sendmsg+0x120/0x120 [ 37.577270] do_syscall_64+0x1d5/0x640 [ 37.581141] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 37.586310] RIP: 0033:0x7f65fb48aec9 [ 37.590003] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e executing program [ 37.597697] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f65fb48aec9 [ 37.604950] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 37.612201] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 37.619452] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 37.626702] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 37.642399] dccp_xmit_packet: Payload too large (65475) for featneg. [ 37.658198] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 37.668737] CPU: 1 PID: 7969 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 37.676622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 37.685969] Call Trace: [ 37.688541] dump_stack+0x1b2/0x281 [ 37.692156] ccid3_update_send_interval.cold+0x87/0x93 [ 37.697419] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 37.702156] ? ccid3_update_send_interval+0x100/0x100 [ 37.707336] dccp_xmit_packet+0x24b/0x6d0 [ 37.711464] dccp_write_xmit+0x140/0x1a0 [ 37.715520] dccp_sendmsg+0x708/0x880 [ 37.719304] ? dccp_ioctl+0x150/0x150 [ 37.723090] ? copy_msghdr_from_user+0x218/0x3b0 [ 37.727833] ? kernel_recvmsg+0x210/0x210 [ 37.731965] inet_sendmsg+0x11a/0x4e0 [ 37.735748] ? security_socket_sendmsg+0x83/0xb0 [ 37.740486] ? inet_recvmsg+0x4d0/0x4d0 [ 37.744453] sock_sendmsg+0xb5/0x100 [ 37.748153] ___sys_sendmsg+0x6c8/0x800 [ 37.752115] ? dccp_sendmsg+0x4fd/0x880 [ 37.756071] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 37.760807] ? dccp_sendmsg+0x50c/0x880 [ 37.764777] ? dccp_ioctl+0x150/0x150 [ 37.768567] ? inet_sendmsg+0x122/0x4e0 [ 37.772526] ? security_socket_sendmsg+0x83/0xb0 [ 37.777261] ? inet_recvmsg+0x4d0/0x4d0 [ 37.781217] ? sock_sendmsg+0xc4/0x100 [ 37.785087] ? SyS_sendto+0x1e7/0x2c0 [ 37.788873] ? SyS_getpeername+0x220/0x220 [ 37.793100] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 37.798100] ? __fdget+0x167/0x1f0 [ 37.801625] ? sockfd_lookup_light+0xb2/0x160 [ 37.806104] __sys_sendmsg+0xa3/0x120 [ 37.809889] ? SyS_shutdown+0x160/0x160 [ 37.813850] ? up_read+0x17/0x30 [ 37.817214] ? __do_page_fault+0x159/0xad0 [ 37.821431] SyS_sendmsg+0x27/0x40 [ 37.824952] ? __sys_sendmsg+0x120/0x120 [ 37.829005] do_syscall_64+0x1d5/0x640 [ 37.832893] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 37.838067] RIP: 0033:0x7f65fb48aec9 [ 37.841764] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 37.849460] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00007f65fb48aec9 [ 37.856723] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 37.863974] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 37.871232] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 37.878479] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 37.886741] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 37.897295] CPU: 1 PID: 7969 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 37.905173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 37.914517] Call Trace: [ 37.917090] dump_stack+0x1b2/0x281 [ 37.920717] ccid3_update_send_interval.cold+0x87/0x93 [ 37.925981] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 37.930714] ? ccid3_update_send_interval+0x100/0x100 [ 37.935887] dccp_xmit_packet+0x24b/0x6d0 [ 37.940017] dccp_write_xmit+0x140/0x1a0 [ 37.944061] dccp_sendmsg+0x708/0x880 [ 37.947854] ? dccp_ioctl+0x150/0x150 [ 37.951639] ? copy_msghdr_from_user+0x218/0x3b0 [ 37.956373] ? kernel_recvmsg+0x210/0x210 [ 37.960506] inet_sendmsg+0x11a/0x4e0 [ 37.964289] ? security_socket_sendmsg+0x83/0xb0 [ 37.969036] ? inet_recvmsg+0x4d0/0x4d0 [ 37.972999] sock_sendmsg+0xb5/0x100 [ 37.976698] ___sys_sendmsg+0x6c8/0x800 [ 37.980664] ? dccp_sendmsg+0x4fd/0x880 [ 37.984622] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 37.989359] ? dccp_sendmsg+0x50c/0x880 [ 37.993334] ? dccp_ioctl+0x150/0x150 [ 37.997137] ? inet_sendmsg+0x122/0x4e0 [ 38.001092] ? security_socket_sendmsg+0x83/0xb0 [ 38.005834] ? inet_recvmsg+0x4d0/0x4d0 [ 38.009791] ? sock_sendmsg+0xc4/0x100 [ 38.013674] ? SyS_sendto+0x1e7/0x2c0 [ 38.017456] ? SyS_getpeername+0x220/0x220 [ 38.021681] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 38.026697] ? __fdget+0x167/0x1f0 [ 38.030219] ? sockfd_lookup_light+0xb2/0x160 [ 38.034708] __sys_sendmsg+0xa3/0x120 [ 38.038523] ? SyS_shutdown+0x160/0x160 [ 38.042502] ? up_read+0x17/0x30 [ 38.045865] ? __do_page_fault+0x159/0xad0 [ 38.050095] SyS_sendmsg+0x27/0x40 [ 38.053635] ? __sys_sendmsg+0x120/0x120 [ 38.057682] do_syscall_64+0x1d5/0x640 [ 38.061559] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 38.066729] RIP: 0033:0x7f65fb48aec9 [ 38.070421] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 38.078116] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00007f65fb48aec9 [ 38.085367] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 38.092617] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 38.099866] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 38.107124] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 38.115443] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 38.126149] CPU: 1 PID: 7969 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 38.134025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 38.143399] Call Trace: [ 38.145969] dump_stack+0x1b2/0x281 [ 38.149590] ccid3_update_send_interval.cold+0x87/0x93 [ 38.154849] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 38.159770] ? ccid3_update_send_interval+0x100/0x100 [ 38.164945] dccp_xmit_packet+0x24b/0x6d0 [ 38.169074] dccp_write_xmit+0x140/0x1a0 [ 38.173128] dccp_sendmsg+0x708/0x880 [ 38.176909] ? dccp_ioctl+0x150/0x150 [ 38.180690] ? copy_msghdr_from_user+0x218/0x3b0 [ 38.185426] ? kernel_recvmsg+0x210/0x210 [ 38.189554] inet_sendmsg+0x11a/0x4e0 [ 38.193333] ? security_socket_sendmsg+0x83/0xb0 [ 38.198082] ? inet_recvmsg+0x4d0/0x4d0 [ 38.202044] sock_sendmsg+0xb5/0x100 [ 38.205738] ___sys_sendmsg+0x6c8/0x800 [ 38.209698] ? dccp_sendmsg+0x4fd/0x880 [ 38.213781] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 38.218525] ? dccp_sendmsg+0x50c/0x880 [ 38.222485] ? dccp_ioctl+0x150/0x150 [ 38.226276] ? inet_sendmsg+0x122/0x4e0 [ 38.230233] ? security_socket_sendmsg+0x83/0xb0 [ 38.234975] ? inet_recvmsg+0x4d0/0x4d0 [ 38.238940] ? sock_sendmsg+0xc4/0x100 [ 38.242919] ? SyS_sendto+0x1e7/0x2c0 [ 38.246706] ? SyS_getpeername+0x220/0x220 [ 38.250926] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 38.255933] ? __fdget+0x167/0x1f0 [ 38.259461] ? sockfd_lookup_light+0xb2/0x160 [ 38.263938] __sys_sendmsg+0xa3/0x120 [ 38.267748] ? SyS_shutdown+0x160/0x160 [ 38.271713] ? up_read+0x17/0x30 [ 38.275075] ? __do_page_fault+0x159/0xad0 [ 38.279315] SyS_sendmsg+0x27/0x40 [ 38.282843] ? __sys_sendmsg+0x120/0x120 [ 38.286904] do_syscall_64+0x1d5/0x640 [ 38.290785] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 38.296099] RIP: 0033:0x7f65fb48aec9 [ 38.299813] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 38.307517] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00007f65fb48aec9 [ 38.314767] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 38.322025] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 38.329296] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 38.336553] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 38.344309] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 38.354897] CPU: 1 PID: 7969 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 38.362770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 38.372116] Call Trace: [ 38.374703] dump_stack+0x1b2/0x281 [ 38.378317] ccid3_update_send_interval.cold+0x87/0x93 [ 38.383580] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 38.388321] ? ccid3_update_send_interval+0x100/0x100 [ 38.393511] dccp_xmit_packet+0x24b/0x6d0 [ 38.397644] dccp_write_xmit+0x140/0x1a0 [ 38.401687] dccp_sendmsg+0x708/0x880 [ 38.405488] ? dccp_ioctl+0x150/0x150 [ 38.409283] ? copy_msghdr_from_user+0x218/0x3b0 [ 38.414029] ? kernel_recvmsg+0x210/0x210 [ 38.418165] inet_sendmsg+0x11a/0x4e0 [ 38.421950] ? security_socket_sendmsg+0x83/0xb0 [ 38.426692] ? inet_recvmsg+0x4d0/0x4d0 [ 38.430667] sock_sendmsg+0xb5/0x100 [ 38.434368] ___sys_sendmsg+0x6c8/0x800 [ 38.438325] ? dccp_sendmsg+0x4fd/0x880 [ 38.442288] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 38.447024] ? dccp_sendmsg+0x50c/0x880 [ 38.450981] ? dccp_ioctl+0x150/0x150 [ 38.454767] ? inet_sendmsg+0x122/0x4e0 [ 38.458732] ? security_socket_sendmsg+0x83/0xb0 [ 38.463499] ? inet_recvmsg+0x4d0/0x4d0 [ 38.467474] ? sock_sendmsg+0xc4/0x100 [ 38.471349] ? SyS_sendto+0x1e7/0x2c0 [ 38.475146] ? SyS_getpeername+0x220/0x220 [ 38.479367] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 38.484365] ? __fdget+0x167/0x1f0 [ 38.487891] ? sockfd_lookup_light+0xb2/0x160 [ 38.492369] __sys_sendmsg+0xa3/0x120 [ 38.496154] ? SyS_shutdown+0x160/0x160 [ 38.500131] ? up_read+0x17/0x30 [ 38.503502] ? __do_page_fault+0x159/0xad0 [ 38.507723] SyS_sendmsg+0x27/0x40 [ 38.511247] ? __sys_sendmsg+0x120/0x120 [ 38.515291] do_syscall_64+0x1d5/0x640 [ 38.519174] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 38.524350] RIP: 0033:0x7f65fb48aec9 [ 38.528043] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 38.535741] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00007f65fb48aec9 [ 38.542994] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 38.550246] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 38.557512] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 38.564765] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 38.572511] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 38.583051] CPU: 1 PID: 7969 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 38.590927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 38.600273] Call Trace: [ 38.602843] dump_stack+0x1b2/0x281 [ 38.606454] ccid3_update_send_interval.cold+0x87/0x93 [ 38.611714] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 38.616451] ? ccid3_update_send_interval+0x100/0x100 [ 38.621624] dccp_xmit_packet+0x24b/0x6d0 [ 38.625758] dccp_write_xmit+0x140/0x1a0 [ 38.629806] dccp_sendmsg+0x708/0x880 [ 38.633596] ? dccp_ioctl+0x150/0x150 [ 38.637396] ? copy_msghdr_from_user+0x218/0x3b0 [ 38.642135] ? kernel_recvmsg+0x210/0x210 [ 38.646269] inet_sendmsg+0x11a/0x4e0 [ 38.650054] ? security_socket_sendmsg+0x83/0xb0 [ 38.654797] ? inet_recvmsg+0x4d0/0x4d0 [ 38.658754] sock_sendmsg+0xb5/0x100 [ 38.662457] ___sys_sendmsg+0x6c8/0x800 [ 38.666433] ? dccp_sendmsg+0x4fd/0x880 [ 38.670390] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 38.675125] ? dccp_sendmsg+0x50c/0x880 [ 38.679086] ? dccp_ioctl+0x150/0x150 [ 38.682872] ? inet_sendmsg+0x122/0x4e0 [ 38.686829] ? security_socket_sendmsg+0x83/0xb0 [ 38.691578] ? inet_recvmsg+0x4d0/0x4d0 [ 38.695534] ? sock_sendmsg+0xc4/0x100 [ 38.699403] ? SyS_sendto+0x1e7/0x2c0 [ 38.703186] ? SyS_getpeername+0x220/0x220 [ 38.707427] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 38.712428] ? __fdget+0x167/0x1f0 [ 38.715960] ? sockfd_lookup_light+0xb2/0x160 [ 38.720434] __sys_sendmsg+0xa3/0x120 [ 38.724228] ? SyS_shutdown+0x160/0x160 [ 38.728195] ? up_read+0x17/0x30 [ 38.731550] ? __do_page_fault+0x159/0xad0 [ 38.735775] SyS_sendmsg+0x27/0x40 [ 38.739308] ? __sys_sendmsg+0x120/0x120 [ 38.743366] do_syscall_64+0x1d5/0x640 [ 38.747244] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 38.752418] RIP: 0033:0x7f65fb48aec9 [ 38.756121] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 38.763811] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00007f65fb48aec9 [ 38.771064] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 38.778314] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 38.785566] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 38.792821] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 38.800671] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 38.811207] CPU: 1 PID: 7969 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 38.819081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 38.828434] Call Trace: [ 38.831012] dump_stack+0x1b2/0x281 [ 38.834639] ccid3_update_send_interval.cold+0x87/0x93 [ 38.839926] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 38.844665] ? ccid3_update_send_interval+0x100/0x100 [ 38.849839] dccp_xmit_packet+0x24b/0x6d0 [ 38.853970] dccp_write_xmit+0x140/0x1a0 [ 38.858021] dccp_sendmsg+0x708/0x880 [ 38.861808] ? dccp_ioctl+0x150/0x150 [ 38.865590] ? copy_msghdr_from_user+0x218/0x3b0 [ 38.870323] ? kernel_recvmsg+0x210/0x210 [ 38.874459] inet_sendmsg+0x11a/0x4e0 [ 38.878238] ? security_socket_sendmsg+0x83/0xb0 [ 38.882971] ? inet_recvmsg+0x4d0/0x4d0 [ 38.886927] sock_sendmsg+0xb5/0x100 [ 38.890633] ___sys_sendmsg+0x6c8/0x800 [ 38.894604] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 38.899358] ? __lock_acquire+0x5fc/0x3f20 [ 38.903585] ? trace_hardirqs_on+0x10/0x10 [ 38.907807] ? task_numa_work+0x790/0xab0 [ 38.911937] ? lock_downgrade+0x740/0x740 [ 38.916065] ? __fdget+0x167/0x1f0 [ 38.919585] ? sockfd_lookup_light+0xb2/0x160 [ 38.924064] __sys_sendmsg+0xa3/0x120 [ 38.927850] ? SyS_shutdown+0x160/0x160 [ 38.931815] SyS_sendmsg+0x27/0x40 [ 38.935332] ? __sys_sendmsg+0x120/0x120 [ 38.939370] do_syscall_64+0x1d5/0x640 [ 38.943239] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 38.948496] RIP: 0033:0x7f65fb48aec9 [ 38.952190] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 38.959877] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f65fb48aec9 [ 38.967126] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 38.974378] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 38.981633] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 38.988915] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 38.996541] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 39.007260] CPU: 1 PID: 7969 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 39.015139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 39.024507] Call Trace: [ 39.027087] dump_stack+0x1b2/0x281 [ 39.030700] ccid3_update_send_interval.cold+0x87/0x93 [ 39.035974] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 39.040711] ? ccid3_update_send_interval+0x100/0x100 [ 39.045881] dccp_xmit_packet+0x24b/0x6d0 [ 39.050017] dccp_write_xmit+0x140/0x1a0 [ 39.054066] dccp_sendmsg+0x708/0x880 [ 39.057854] ? dccp_ioctl+0x150/0x150 [ 39.061640] ? copy_msghdr_from_user+0x218/0x3b0 [ 39.066382] ? kernel_recvmsg+0x210/0x210 [ 39.070516] inet_sendmsg+0x11a/0x4e0 [ 39.074298] ? security_socket_sendmsg+0x83/0xb0 [ 39.079037] ? inet_recvmsg+0x4d0/0x4d0 [ 39.083001] sock_sendmsg+0xb5/0x100 [ 39.086698] ___sys_sendmsg+0x6c8/0x800 [ 39.090654] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 39.095402] ? __lock_acquire+0x5fc/0x3f20 [ 39.099644] ? trace_hardirqs_on+0x10/0x10 [ 39.103883] ? task_numa_work+0x790/0xab0 [ 39.108020] ? lock_downgrade+0x740/0x740 [ 39.112164] ? __fdget+0x167/0x1f0 [ 39.115684] ? sockfd_lookup_light+0xb2/0x160 [ 39.120169] __sys_sendmsg+0xa3/0x120 [ 39.123969] ? SyS_shutdown+0x160/0x160 [ 39.127934] SyS_sendmsg+0x27/0x40 [ 39.131465] ? __sys_sendmsg+0x120/0x120 [ 39.135564] do_syscall_64+0x1d5/0x640 [ 39.139449] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 39.144622] RIP: 0033:0x7f65fb48aec9 [ 39.148578] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 39.156282] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f65fb48aec9 [ 39.163543] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 39.170792] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 39.178054] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 39.185301] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 39.192904] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 39.203469] CPU: 1 PID: 7969 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 39.211367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 39.220717] Call Trace: [ 39.223290] dump_stack+0x1b2/0x281 [ 39.226911] ccid3_update_send_interval.cold+0x87/0x93 [ 39.232168] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 39.236901] ? ccid3_update_send_interval+0x100/0x100 [ 39.242070] dccp_xmit_packet+0x24b/0x6d0 [ 39.246201] dccp_write_xmit+0x140/0x1a0 [ 39.250246] dccp_sendmsg+0x708/0x880 [ 39.254037] ? dccp_ioctl+0x150/0x150 [ 39.257824] ? copy_msghdr_from_user+0x218/0x3b0 [ 39.262558] ? kernel_recvmsg+0x210/0x210 [ 39.266691] inet_sendmsg+0x11a/0x4e0 [ 39.270503] ? security_socket_sendmsg+0x83/0xb0 [ 39.275273] ? inet_recvmsg+0x4d0/0x4d0 [ 39.279246] sock_sendmsg+0xb5/0x100 [ 39.282952] ___sys_sendmsg+0x6c8/0x800 [ 39.286941] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 39.291686] ? __lock_acquire+0x5fc/0x3f20 [ 39.295911] ? trace_hardirqs_on+0x10/0x10 [ 39.300131] ? task_numa_work+0x790/0xab0 [ 39.304284] ? lock_downgrade+0x740/0x740 [ 39.308426] ? __fdget+0x167/0x1f0 [ 39.311953] ? sockfd_lookup_light+0xb2/0x160 [ 39.316435] __sys_sendmsg+0xa3/0x120 [ 39.320228] ? SyS_shutdown+0x160/0x160 [ 39.324197] SyS_sendmsg+0x27/0x40 [ 39.327732] ? __sys_sendmsg+0x120/0x120 [ 39.331776] do_syscall_64+0x1d5/0x640 [ 39.335653] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 39.340829] RIP: 0033:0x7f65fb48aec9 [ 39.344522] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 39.352216] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f65fb48aec9 [ 39.359477] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 39.366747] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 39.374010] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 39.381264] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 39.389033] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 39.399587] CPU: 1 PID: 7969 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 39.407466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 39.416813] Call Trace: [ 39.419414] dump_stack+0x1b2/0x281 [ 39.423030] ccid3_update_send_interval.cold+0x87/0x93 [ 39.428313] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 39.433050] ? ccid3_update_send_interval+0x100/0x100 [ 39.438223] dccp_xmit_packet+0x24b/0x6d0 [ 39.442354] dccp_write_xmit+0x140/0x1a0 [ 39.446401] dccp_sendmsg+0x708/0x880 [ 39.450195] ? dccp_ioctl+0x150/0x150 [ 39.453985] ? copy_msghdr_from_user+0x218/0x3b0 [ 39.458726] ? kernel_recvmsg+0x210/0x210 [ 39.462858] inet_sendmsg+0x11a/0x4e0 [ 39.466653] ? security_socket_sendmsg+0x83/0xb0 [ 39.471391] ? inet_recvmsg+0x4d0/0x4d0 [ 39.475358] sock_sendmsg+0xb5/0x100 [ 39.479066] ___sys_sendmsg+0x6c8/0x800 [ 39.483025] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 39.487769] ? __lock_acquire+0x5fc/0x3f20 [ 39.492000] ? trace_hardirqs_on+0x10/0x10 [ 39.496219] ? task_numa_work+0x790/0xab0 [ 39.500363] ? lock_downgrade+0x740/0x740 [ 39.504495] ? __fdget+0x167/0x1f0 [ 39.508020] ? sockfd_lookup_light+0xb2/0x160 [ 39.512510] __sys_sendmsg+0xa3/0x120 [ 39.516290] ? SyS_shutdown+0x160/0x160 [ 39.520252] SyS_sendmsg+0x27/0x40 [ 39.523772] ? __sys_sendmsg+0x120/0x120 [ 39.527818] do_syscall_64+0x1d5/0x640 [ 39.531692] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 39.536864] RIP: 0033:0x7f65fb48aec9 [ 39.540559] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 39.548259] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f65fb48aec9 [ 39.555508] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 39.562758] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 39.570010] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 39.577264] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 39.584843] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 39.595545] CPU: 1 PID: 7969 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 39.603420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 39.612784] Call Trace: [ 39.615360] dump_stack+0x1b2/0x281 [ 39.618979] ccid3_update_send_interval.cold+0x87/0x93 [ 39.624241] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 39.628992] ? ccid3_update_send_interval+0x100/0x100 [ 39.634166] dccp_xmit_packet+0x24b/0x6d0 [ 39.638296] dccp_write_xmit+0x140/0x1a0 [ 39.642343] dccp_sendmsg+0x708/0x880 [ 39.646127] ? dccp_ioctl+0x150/0x150 [ 39.649909] ? copy_msghdr_from_user+0x218/0x3b0 [ 39.654647] ? kernel_recvmsg+0x210/0x210 [ 39.658790] inet_sendmsg+0x11a/0x4e0 [ 39.662584] ? security_socket_sendmsg+0x83/0xb0 [ 39.667319] ? inet_recvmsg+0x4d0/0x4d0 [ 39.671298] sock_sendmsg+0xb5/0x100 [ 39.675022] ___sys_sendmsg+0x6c8/0x800 [ 39.678976] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 39.683716] ? __lock_acquire+0x5fc/0x3f20 [ 39.687962] ? trace_hardirqs_on+0x10/0x10 [ 39.692181] ? task_numa_work+0x790/0xab0 [ 39.696314] ? lock_downgrade+0x740/0x740 [ 39.700446] ? __fdget+0x167/0x1f0 [ 39.703971] ? sockfd_lookup_light+0xb2/0x160 [ 39.708453] __sys_sendmsg+0xa3/0x120 [ 39.712246] ? SyS_shutdown+0x160/0x160 [ 39.716223] SyS_sendmsg+0x27/0x40 [ 39.719743] ? __sys_sendmsg+0x120/0x120 [ 39.723796] do_syscall_64+0x1d5/0x640 [ 39.727680] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 39.732853] RIP: 0033:0x7f65fb48aec9 [ 39.736543] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 39.744230] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f65fb48aec9 executing program [ 39.751484] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 39.758755] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 39.766010] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 39.773282] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 39.788498] dccp_xmit_packet: Payload too large (65475) for featneg. [ 39.804185] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 39.815206] CPU: 1 PID: 7970 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 39.823075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 39.832416] Call Trace: [ 39.834985] dump_stack+0x1b2/0x281 [ 39.838600] ccid3_update_send_interval.cold+0x87/0x93 [ 39.843860] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 39.848608] ? ccid3_update_send_interval+0x100/0x100 [ 39.853792] dccp_xmit_packet+0x24b/0x6d0 [ 39.857924] dccp_write_xmit+0x140/0x1a0 [ 39.861966] dccp_sendmsg+0x708/0x880 [ 39.865748] ? dccp_ioctl+0x150/0x150 [ 39.869528] ? copy_msghdr_from_user+0x218/0x3b0 [ 39.874264] ? kernel_recvmsg+0x210/0x210 [ 39.878417] inet_sendmsg+0x11a/0x4e0 [ 39.882203] ? security_socket_sendmsg+0x83/0xb0 [ 39.886938] ? inet_recvmsg+0x4d0/0x4d0 [ 39.890890] sock_sendmsg+0xb5/0x100 [ 39.894596] ___sys_sendmsg+0x6c8/0x800 [ 39.898555] ? dccp_sendmsg+0x4fd/0x880 [ 39.902513] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 39.907261] ? dccp_sendmsg+0x50c/0x880 [ 39.911221] ? dccp_ioctl+0x150/0x150 [ 39.915018] ? inet_sendmsg+0x122/0x4e0 [ 39.918980] ? security_socket_sendmsg+0x83/0xb0 [ 39.923727] ? inet_recvmsg+0x4d0/0x4d0 [ 39.927683] ? sock_sendmsg+0xc4/0x100 [ 39.931555] ? SyS_sendto+0x1e7/0x2c0 [ 39.935339] ? SyS_getpeername+0x220/0x220 [ 39.939562] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 39.944557] ? __fdget+0x167/0x1f0 [ 39.948437] ? sockfd_lookup_light+0xb2/0x160 [ 39.952937] __sys_sendmsg+0xa3/0x120 [ 39.956727] ? SyS_shutdown+0x160/0x160 [ 39.960691] ? up_read+0x17/0x30 [ 39.964040] ? __do_page_fault+0x159/0xad0 [ 39.968262] SyS_sendmsg+0x27/0x40 [ 39.971785] ? __sys_sendmsg+0x120/0x120 [ 39.975838] do_syscall_64+0x1d5/0x640 [ 39.979710] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 39.984885] RIP: 0033:0x7f65fb48aec9 [ 39.988578] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 39.996266] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00007f65fb48aec9 [ 40.003518] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 40.010773] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 40.018024] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 40.025280] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 40.032994] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 40.043671] CPU: 1 PID: 7970 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 40.051554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 40.060898] Call Trace: [ 40.063541] dump_stack+0x1b2/0x281 [ 40.067156] ccid3_update_send_interval.cold+0x87/0x93 [ 40.072419] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 40.077159] ? ccid3_update_send_interval+0x100/0x100 [ 40.082333] dccp_xmit_packet+0x24b/0x6d0 [ 40.086468] dccp_write_xmit+0x140/0x1a0 [ 40.090514] dccp_sendmsg+0x708/0x880 [ 40.094299] ? dccp_ioctl+0x150/0x150 [ 40.098083] ? copy_msghdr_from_user+0x218/0x3b0 [ 40.102850] ? kernel_recvmsg+0x210/0x210 [ 40.106988] inet_sendmsg+0x11a/0x4e0 [ 40.110777] ? security_socket_sendmsg+0x83/0xb0 [ 40.115512] ? inet_recvmsg+0x4d0/0x4d0 [ 40.119467] sock_sendmsg+0xb5/0x100 [ 40.123161] ___sys_sendmsg+0x6c8/0x800 [ 40.127119] ? dccp_sendmsg+0x4fd/0x880 [ 40.131076] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 40.135827] ? dccp_sendmsg+0x50c/0x880 [ 40.139790] ? dccp_ioctl+0x150/0x150 [ 40.143597] ? inet_sendmsg+0x122/0x4e0 [ 40.147642] ? security_socket_sendmsg+0x83/0xb0 [ 40.152420] ? inet_recvmsg+0x4d0/0x4d0 [ 40.156383] ? sock_sendmsg+0xc4/0x100 [ 40.160266] ? SyS_sendto+0x1e7/0x2c0 [ 40.164053] ? SyS_getpeername+0x220/0x220 [ 40.168277] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 40.173279] ? __fdget+0x167/0x1f0 [ 40.176803] ? sockfd_lookup_light+0xb2/0x160 [ 40.181285] __sys_sendmsg+0xa3/0x120 [ 40.185078] ? SyS_shutdown+0x160/0x160 [ 40.189057] ? up_read+0x17/0x30 [ 40.192411] ? __do_page_fault+0x159/0xad0 [ 40.196644] SyS_sendmsg+0x27/0x40 [ 40.200175] ? __sys_sendmsg+0x120/0x120 [ 40.204225] do_syscall_64+0x1d5/0x640 [ 40.208108] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 40.213279] RIP: 0033:0x7f65fb48aec9 [ 40.216985] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 40.224698] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00007f65fb48aec9 [ 40.231959] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 40.239211] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 40.246576] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 40.253831] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 40.262240] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 40.272836] CPU: 1 PID: 7970 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 40.280720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 40.290069] Call Trace: [ 40.292663] dump_stack+0x1b2/0x281 [ 40.296277] ccid3_update_send_interval.cold+0x87/0x93 [ 40.301537] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 40.306284] ? ccid3_update_send_interval+0x100/0x100 [ 40.311463] dccp_xmit_packet+0x24b/0x6d0 [ 40.315597] dccp_write_xmit+0x140/0x1a0 [ 40.319643] dccp_sendmsg+0x708/0x880 [ 40.323441] ? dccp_ioctl+0x150/0x150 [ 40.327336] ? copy_msghdr_from_user+0x218/0x3b0 [ 40.332071] ? kernel_recvmsg+0x210/0x210 [ 40.336200] inet_sendmsg+0x11a/0x4e0 [ 40.340035] ? security_socket_sendmsg+0x83/0xb0 [ 40.344779] ? inet_recvmsg+0x4d0/0x4d0 [ 40.349000] sock_sendmsg+0xb5/0x100 [ 40.352703] ___sys_sendmsg+0x6c8/0x800 [ 40.356661] ? dccp_sendmsg+0x4fd/0x880 [ 40.360618] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 40.365369] ? dccp_sendmsg+0x50c/0x880 [ 40.369330] ? dccp_ioctl+0x150/0x150 [ 40.373134] ? inet_sendmsg+0x122/0x4e0 [ 40.377089] ? security_socket_sendmsg+0x83/0xb0 [ 40.381830] ? inet_recvmsg+0x4d0/0x4d0 [ 40.385788] ? sock_sendmsg+0xc4/0x100 [ 40.389656] ? SyS_sendto+0x1e7/0x2c0 [ 40.393434] ? SyS_getpeername+0x220/0x220 [ 40.397665] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 40.402669] ? __fdget+0x167/0x1f0 [ 40.406193] ? sockfd_lookup_light+0xb2/0x160 [ 40.410783] __sys_sendmsg+0xa3/0x120 [ 40.414579] ? SyS_shutdown+0x160/0x160 [ 40.418542] ? up_read+0x17/0x30 [ 40.421888] ? __do_page_fault+0x159/0xad0 [ 40.426129] SyS_sendmsg+0x27/0x40 [ 40.429664] ? __sys_sendmsg+0x120/0x120 [ 40.433707] do_syscall_64+0x1d5/0x640 [ 40.437584] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 40.442755] RIP: 0033:0x7f65fb48aec9 [ 40.446450] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 40.454501] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f65fb48aec9 [ 40.461757] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 40.469006] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 40.476258] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 40.483512] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 40.491207] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 40.501761] CPU: 1 PID: 7970 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 40.509638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 40.518984] Call Trace: [ 40.521556] dump_stack+0x1b2/0x281 [ 40.525180] ccid3_update_send_interval.cold+0x87/0x93 [ 40.530441] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 40.535179] ? ccid3_update_send_interval+0x100/0x100 [ 40.540352] dccp_xmit_packet+0x24b/0x6d0 [ 40.544485] dccp_write_xmit+0x140/0x1a0 [ 40.548531] dccp_sendmsg+0x708/0x880 [ 40.552317] ? dccp_ioctl+0x150/0x150 [ 40.556102] ? copy_msghdr_from_user+0x218/0x3b0 [ 40.560848] ? kernel_recvmsg+0x210/0x210 [ 40.564981] inet_sendmsg+0x11a/0x4e0 [ 40.568762] ? security_socket_sendmsg+0x83/0xb0 [ 40.573517] ? inet_recvmsg+0x4d0/0x4d0 [ 40.577477] sock_sendmsg+0xb5/0x100 [ 40.581173] ___sys_sendmsg+0x6c8/0x800 [ 40.585131] ? dccp_sendmsg+0x4fd/0x880 [ 40.589085] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 40.593822] ? dccp_sendmsg+0x50c/0x880 [ 40.597783] ? dccp_ioctl+0x150/0x150 [ 40.601571] ? inet_sendmsg+0x122/0x4e0 [ 40.605534] ? security_socket_sendmsg+0x83/0xb0 [ 40.610279] ? inet_recvmsg+0x4d0/0x4d0 [ 40.614239] ? sock_sendmsg+0xc4/0x100 [ 40.618107] ? SyS_sendto+0x1e7/0x2c0 [ 40.621892] ? SyS_getpeername+0x220/0x220 [ 40.626111] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 40.631110] ? __fdget+0x167/0x1f0 [ 40.634651] ? sockfd_lookup_light+0xb2/0x160 [ 40.639144] __sys_sendmsg+0xa3/0x120 [ 40.642925] ? SyS_shutdown+0x160/0x160 [ 40.646884] ? up_read+0x17/0x30 [ 40.650233] ? __do_page_fault+0x159/0xad0 [ 40.654467] SyS_sendmsg+0x27/0x40 [ 40.657986] ? __sys_sendmsg+0x120/0x120 [ 40.662029] do_syscall_64+0x1d5/0x640 [ 40.665926] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 40.671095] RIP: 0033:0x7f65fb48aec9 [ 40.674785] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 40.682481] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f65fb48aec9 [ 40.689728] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 40.696986] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 40.704241] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 40.711498] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 40.719267] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 40.729803] CPU: 1 PID: 7970 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 40.737676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 40.747025] Call Trace: [ 40.749608] dump_stack+0x1b2/0x281 [ 40.753224] ccid3_update_send_interval.cold+0x87/0x93 [ 40.758500] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 40.763259] ? ccid3_update_send_interval+0x100/0x100 [ 40.768431] dccp_xmit_packet+0x24b/0x6d0 [ 40.772568] dccp_write_xmit+0x140/0x1a0 [ 40.776622] dccp_sendmsg+0x708/0x880 [ 40.780421] ? dccp_ioctl+0x150/0x150 [ 40.784204] ? copy_msghdr_from_user+0x218/0x3b0 [ 40.788941] ? kernel_recvmsg+0x210/0x210 [ 40.793080] inet_sendmsg+0x11a/0x4e0 [ 40.796873] ? security_socket_sendmsg+0x83/0xb0 [ 40.801609] ? inet_recvmsg+0x4d0/0x4d0 [ 40.805561] sock_sendmsg+0xb5/0x100 [ 40.809284] ___sys_sendmsg+0x6c8/0x800 [ 40.813250] ? dccp_sendmsg+0x4fd/0x880 [ 40.817203] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 40.822058] ? dccp_sendmsg+0x50c/0x880 [ 40.826970] ? dccp_ioctl+0x150/0x150 [ 40.830760] ? inet_sendmsg+0x122/0x4e0 [ 40.834717] ? security_socket_sendmsg+0x83/0xb0 [ 40.839454] ? inet_recvmsg+0x4d0/0x4d0 [ 40.843409] ? sock_sendmsg+0xc4/0x100 [ 40.847278] ? SyS_sendto+0x1e7/0x2c0 [ 40.851058] ? SyS_getpeername+0x220/0x220 [ 40.855277] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 40.860277] ? __fdget+0x167/0x1f0 [ 40.863796] ? sockfd_lookup_light+0xb2/0x160 [ 40.868276] __sys_sendmsg+0xa3/0x120 [ 40.872057] ? SyS_shutdown+0x160/0x160 [ 40.876021] ? up_read+0x17/0x30 [ 40.879374] ? __do_page_fault+0x159/0xad0 [ 40.883592] SyS_sendmsg+0x27/0x40 [ 40.887123] ? __sys_sendmsg+0x120/0x120 [ 40.891163] do_syscall_64+0x1d5/0x640 [ 40.895039] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 40.900325] RIP: 0033:0x7f65fb48aec9 [ 40.904023] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 40.911723] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f65fb48aec9 [ 40.918984] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 40.926247] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 40.933499] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 40.940751] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 40.948614] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 40.959166] CPU: 1 PID: 7970 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 40.967066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 40.976419] Call Trace: [ 40.978996] dump_stack+0x1b2/0x281 [ 40.982649] ccid3_update_send_interval.cold+0x87/0x93 [ 40.987944] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 40.992689] ? ccid3_update_send_interval+0x100/0x100 [ 40.997887] dccp_xmit_packet+0x24b/0x6d0 [ 41.002033] dccp_write_xmit+0x140/0x1a0 [ 41.006080] dccp_sendmsg+0x708/0x880 [ 41.009865] ? dccp_ioctl+0x150/0x150 [ 41.013652] ? copy_msghdr_from_user+0x218/0x3b0 [ 41.018391] ? kernel_recvmsg+0x210/0x210 [ 41.022522] inet_sendmsg+0x11a/0x4e0 [ 41.026303] ? security_socket_sendmsg+0x83/0xb0 [ 41.031042] ? inet_recvmsg+0x4d0/0x4d0 [ 41.035016] sock_sendmsg+0xb5/0x100 [ 41.038718] ___sys_sendmsg+0x6c8/0x800 [ 41.042678] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 41.047420] ? __lock_acquire+0x5fc/0x3f20 [ 41.051649] ? trace_hardirqs_on+0x10/0x10 [ 41.055866] ? task_numa_work+0x790/0xab0 [ 41.060002] ? lock_downgrade+0x740/0x740 [ 41.064142] ? __fdget+0x167/0x1f0 [ 41.067666] ? sockfd_lookup_light+0xb2/0x160 [ 41.072194] __sys_sendmsg+0xa3/0x120 [ 41.075990] ? SyS_shutdown+0x160/0x160 [ 41.079968] SyS_sendmsg+0x27/0x40 [ 41.083498] ? __sys_sendmsg+0x120/0x120 [ 41.087558] do_syscall_64+0x1d5/0x640 [ 41.091440] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 41.096626] RIP: 0033:0x7f65fb48aec9 [ 41.100328] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 41.108022] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f65fb48aec9 [ 41.115277] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 41.122531] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 41.129784] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 41.137039] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 41.144604] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 41.155661] CPU: 1 PID: 7970 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 41.163542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 41.172888] Call Trace: [ 41.175461] dump_stack+0x1b2/0x281 [ 41.179090] ccid3_update_send_interval.cold+0x87/0x93 [ 41.184353] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 41.189094] ? ccid3_update_send_interval+0x100/0x100 [ 41.194269] dccp_xmit_packet+0x24b/0x6d0 [ 41.198402] dccp_write_xmit+0x140/0x1a0 [ 41.202445] dccp_sendmsg+0x708/0x880 [ 41.206248] ? dccp_ioctl+0x150/0x150 [ 41.210029] ? copy_msghdr_from_user+0x218/0x3b0 [ 41.214766] ? kernel_recvmsg+0x210/0x210 [ 41.218908] inet_sendmsg+0x11a/0x4e0 [ 41.222689] ? security_socket_sendmsg+0x83/0xb0 [ 41.227427] ? inet_recvmsg+0x4d0/0x4d0 [ 41.231398] sock_sendmsg+0xb5/0x100 [ 41.235104] ___sys_sendmsg+0x6c8/0x800 [ 41.239073] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 41.243835] ? __lock_acquire+0x5fc/0x3f20 [ 41.248065] ? trace_hardirqs_on+0x10/0x10 [ 41.252283] ? task_numa_work+0x790/0xab0 [ 41.256413] ? lock_downgrade+0x740/0x740 [ 41.260542] ? __fdget+0x167/0x1f0 [ 41.264065] ? sockfd_lookup_light+0xb2/0x160 [ 41.268545] __sys_sendmsg+0xa3/0x120 [ 41.272324] ? SyS_shutdown+0x160/0x160 [ 41.276304] SyS_sendmsg+0x27/0x40 [ 41.279825] ? __sys_sendmsg+0x120/0x120 [ 41.283868] do_syscall_64+0x1d5/0x640 [ 41.287755] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 41.292931] RIP: 0033:0x7f65fb48aec9 [ 41.296623] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 41.304326] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f65fb48aec9 executing program [ 41.311584] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 41.318838] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 41.326105] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 41.333355] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 41.349114] dccp_xmit_packet: Payload too large (65475) for featneg. [ 41.363266] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 41.374364] CPU: 1 PID: 7971 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 41.382241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 41.391589] Call Trace: [ 41.394169] dump_stack+0x1b2/0x281 [ 41.397784] ccid3_update_send_interval.cold+0x87/0x93 [ 41.403074] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 41.407840] ? ccid3_update_send_interval+0x100/0x100 [ 41.413013] dccp_xmit_packet+0x24b/0x6d0 [ 41.417143] dccp_write_xmit+0x140/0x1a0 [ 41.421184] dccp_sendmsg+0x708/0x880 [ 41.424968] ? dccp_ioctl+0x150/0x150 [ 41.428750] ? copy_msghdr_from_user+0x218/0x3b0 [ 41.433501] ? kernel_recvmsg+0x210/0x210 [ 41.437635] inet_sendmsg+0x11a/0x4e0 [ 41.441426] ? security_socket_sendmsg+0x83/0xb0 [ 41.446160] ? inet_recvmsg+0x4d0/0x4d0 [ 41.450115] sock_sendmsg+0xb5/0x100 [ 41.453813] ___sys_sendmsg+0x6c8/0x800 [ 41.457772] ? dccp_sendmsg+0x4fd/0x880 [ 41.461735] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 41.466487] ? dccp_sendmsg+0x50c/0x880 [ 41.470441] ? dccp_ioctl+0x150/0x150 [ 41.474228] ? inet_sendmsg+0x122/0x4e0 [ 41.478195] ? security_socket_sendmsg+0x83/0xb0 [ 41.482934] ? inet_recvmsg+0x4d0/0x4d0 [ 41.486889] ? sock_sendmsg+0xc4/0x100 [ 41.490766] ? SyS_sendto+0x1e7/0x2c0 [ 41.494550] ? SyS_getpeername+0x220/0x220 [ 41.498771] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 41.503783] ? __fdget+0x167/0x1f0 [ 41.507303] ? sockfd_lookup_light+0xb2/0x160 [ 41.511791] __sys_sendmsg+0xa3/0x120 [ 41.515572] ? SyS_shutdown+0x160/0x160 [ 41.519531] ? up_read+0x17/0x30 [ 41.522881] ? __do_page_fault+0x159/0xad0 [ 41.527099] SyS_sendmsg+0x27/0x40 [ 41.530620] ? __sys_sendmsg+0x120/0x120 [ 41.534687] do_syscall_64+0x1d5/0x640 [ 41.538598] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 41.543785] RIP: 0033:0x7f65fb48aec9 [ 41.547506] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 41.555234] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00007f65fb48aec9 [ 41.562482] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 41.569732] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 41.576993] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 41.584246] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 41.591957] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 41.602679] CPU: 1 PID: 7971 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 41.610556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 41.619897] Call Trace: [ 41.622469] dump_stack+0x1b2/0x281 [ 41.626104] ccid3_update_send_interval.cold+0x87/0x93 [ 41.631367] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 41.636109] ? ccid3_update_send_interval+0x100/0x100 [ 41.641288] dccp_xmit_packet+0x24b/0x6d0 [ 41.645436] dccp_write_xmit+0x140/0x1a0 [ 41.649486] dccp_sendmsg+0x708/0x880 [ 41.653271] ? dccp_ioctl+0x150/0x150 [ 41.657061] ? copy_msghdr_from_user+0x218/0x3b0 [ 41.661807] ? kernel_recvmsg+0x210/0x210 [ 41.665936] inet_sendmsg+0x11a/0x4e0 [ 41.669722] ? security_socket_sendmsg+0x83/0xb0 [ 41.674484] ? inet_recvmsg+0x4d0/0x4d0 [ 41.678461] sock_sendmsg+0xb5/0x100 [ 41.682160] ___sys_sendmsg+0x6c8/0x800 [ 41.686114] ? dccp_sendmsg+0x4fd/0x880 [ 41.690073] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 41.694821] ? dccp_sendmsg+0x50c/0x880 [ 41.698783] ? dccp_ioctl+0x150/0x150 [ 41.702576] ? inet_sendmsg+0x122/0x4e0 [ 41.706536] ? security_socket_sendmsg+0x83/0xb0 [ 41.711276] ? inet_recvmsg+0x4d0/0x4d0 [ 41.715232] ? sock_sendmsg+0xc4/0x100 [ 41.719102] ? SyS_sendto+0x1e7/0x2c0 [ 41.722886] ? SyS_getpeername+0x220/0x220 [ 41.727108] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 41.732116] ? __fdget+0x167/0x1f0 [ 41.735641] ? sockfd_lookup_light+0xb2/0x160 [ 41.740123] __sys_sendmsg+0xa3/0x120 [ 41.743907] ? SyS_shutdown+0x160/0x160 [ 41.747877] ? up_read+0x17/0x30 [ 41.751242] ? __do_page_fault+0x159/0xad0 [ 41.755477] SyS_sendmsg+0x27/0x40 [ 41.759015] ? __sys_sendmsg+0x120/0x120 [ 41.763058] do_syscall_64+0x1d5/0x640 [ 41.766933] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 41.772105] RIP: 0033:0x7f65fb48aec9 [ 41.775800] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 41.783506] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00007f65fb48aec9 [ 41.790758] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 41.798007] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 41.805256] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 41.812512] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 41.820298] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 41.830830] CPU: 1 PID: 7971 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 41.838826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 41.848170] Call Trace: [ 41.850752] dump_stack+0x1b2/0x281 [ 41.854369] ccid3_update_send_interval.cold+0x87/0x93 [ 41.859635] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 41.864386] ? ccid3_update_send_interval+0x100/0x100 [ 41.869556] dccp_xmit_packet+0x24b/0x6d0 [ 41.873687] dccp_write_xmit+0x140/0x1a0 [ 41.877733] dccp_sendmsg+0x708/0x880 [ 41.881527] ? dccp_ioctl+0x150/0x150 [ 41.885307] ? copy_msghdr_from_user+0x218/0x3b0 [ 41.890051] ? kernel_recvmsg+0x210/0x210 [ 41.894183] inet_sendmsg+0x11a/0x4e0 [ 41.897968] ? security_socket_sendmsg+0x83/0xb0 [ 41.902709] ? inet_recvmsg+0x4d0/0x4d0 [ 41.906662] sock_sendmsg+0xb5/0x100 [ 41.910353] ___sys_sendmsg+0x6c8/0x800 [ 41.914328] ? dccp_sendmsg+0x4fd/0x880 [ 41.918308] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 41.923050] ? dccp_sendmsg+0x50c/0x880 [ 41.927010] ? dccp_ioctl+0x150/0x150 [ 41.930807] ? inet_sendmsg+0x122/0x4e0 [ 41.934769] ? security_socket_sendmsg+0x83/0xb0 [ 41.939594] ? inet_recvmsg+0x4d0/0x4d0 [ 41.943555] ? sock_sendmsg+0xc4/0x100 [ 41.947432] ? SyS_sendto+0x1e7/0x2c0 [ 41.951229] ? SyS_getpeername+0x220/0x220 [ 41.955449] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 41.960447] ? __fdget+0x167/0x1f0 [ 41.963974] ? sockfd_lookup_light+0xb2/0x160 [ 41.968456] __sys_sendmsg+0xa3/0x120 [ 41.972257] ? SyS_shutdown+0x160/0x160 [ 41.976230] ? up_read+0x17/0x30 [ 41.979573] ? __do_page_fault+0x159/0xad0 [ 41.983791] SyS_sendmsg+0x27/0x40 [ 41.987316] ? __sys_sendmsg+0x120/0x120 [ 41.991363] do_syscall_64+0x1d5/0x640 [ 41.995235] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 42.000402] RIP: 0033:0x7f65fb48aec9 [ 42.004093] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 42.011904] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00007f65fb48aec9 [ 42.019157] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 42.026432] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 42.033698] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 42.040950] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 42.048783] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 42.059353] CPU: 1 PID: 7971 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 42.067231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 42.076580] Call Trace: [ 42.079161] dump_stack+0x1b2/0x281 [ 42.082780] ccid3_update_send_interval.cold+0x87/0x93 [ 42.088045] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 42.092785] ? ccid3_update_send_interval+0x100/0x100 [ 42.097956] dccp_xmit_packet+0x24b/0x6d0 [ 42.102091] dccp_write_xmit+0x140/0x1a0 [ 42.106140] dccp_sendmsg+0x708/0x880 [ 42.109927] ? dccp_ioctl+0x150/0x150 [ 42.113721] ? copy_msghdr_from_user+0x218/0x3b0 [ 42.118481] ? kernel_recvmsg+0x210/0x210 [ 42.122612] inet_sendmsg+0x11a/0x4e0 [ 42.126391] ? security_socket_sendmsg+0x83/0xb0 [ 42.131135] ? inet_recvmsg+0x4d0/0x4d0 [ 42.135088] sock_sendmsg+0xb5/0x100 [ 42.138802] ___sys_sendmsg+0x6c8/0x800 [ 42.142758] ? dccp_sendmsg+0x4fd/0x880 [ 42.146730] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 42.151584] ? dccp_sendmsg+0x50c/0x880 [ 42.155562] ? dccp_ioctl+0x150/0x150 [ 42.159355] ? inet_sendmsg+0x122/0x4e0 [ 42.163402] ? security_socket_sendmsg+0x83/0xb0 [ 42.168157] ? inet_recvmsg+0x4d0/0x4d0 [ 42.172115] ? sock_sendmsg+0xc4/0x100 [ 42.175998] ? SyS_sendto+0x1e7/0x2c0 [ 42.179794] ? SyS_getpeername+0x220/0x220 [ 42.184022] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 42.189035] ? __fdget+0x167/0x1f0 [ 42.192580] ? sockfd_lookup_light+0xb2/0x160 [ 42.197057] __sys_sendmsg+0xa3/0x120 [ 42.200841] ? SyS_shutdown+0x160/0x160 [ 42.204803] ? up_read+0x17/0x30 [ 42.208155] ? __do_page_fault+0x159/0xad0 [ 42.212377] SyS_sendmsg+0x27/0x40 [ 42.215902] ? __sys_sendmsg+0x120/0x120 [ 42.219970] do_syscall_64+0x1d5/0x640 [ 42.223861] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 42.229048] RIP: 0033:0x7f65fb48aec9 [ 42.232759] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 42.240463] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00007f65fb48aec9 [ 42.247822] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 42.255112] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 42.262384] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 42.269646] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 42.277445] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 42.287993] CPU: 1 PID: 7971 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 42.295872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 42.305231] Call Trace: [ 42.307809] dump_stack+0x1b2/0x281 [ 42.311425] ccid3_update_send_interval.cold+0x87/0x93 [ 42.316696] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 42.321442] ? ccid3_update_send_interval+0x100/0x100 [ 42.326633] dccp_xmit_packet+0x24b/0x6d0 [ 42.330786] dccp_write_xmit+0x140/0x1a0 [ 42.334847] dccp_sendmsg+0x708/0x880 [ 42.338646] ? dccp_ioctl+0x150/0x150 [ 42.342432] ? copy_msghdr_from_user+0x218/0x3b0 [ 42.347183] ? kernel_recvmsg+0x210/0x210 [ 42.351316] inet_sendmsg+0x11a/0x4e0 [ 42.355099] ? security_socket_sendmsg+0x83/0xb0 [ 42.359838] ? inet_recvmsg+0x4d0/0x4d0 [ 42.363797] sock_sendmsg+0xb5/0x100 [ 42.367510] ___sys_sendmsg+0x6c8/0x800 [ 42.371470] ? dccp_sendmsg+0x4fd/0x880 [ 42.375442] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 42.380181] ? dccp_sendmsg+0x50c/0x880 [ 42.384142] ? dccp_ioctl+0x150/0x150 [ 42.387933] ? inet_sendmsg+0x122/0x4e0 [ 42.391901] ? security_socket_sendmsg+0x83/0xb0 [ 42.396652] ? inet_recvmsg+0x4d0/0x4d0 [ 42.400622] ? sock_sendmsg+0xc4/0x100 [ 42.404497] ? SyS_sendto+0x1e7/0x2c0 [ 42.408287] ? SyS_getpeername+0x220/0x220 [ 42.412509] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 42.417532] ? __fdget+0x167/0x1f0 [ 42.421051] ? sockfd_lookup_light+0xb2/0x160 [ 42.425531] __sys_sendmsg+0xa3/0x120 [ 42.429317] ? SyS_shutdown+0x160/0x160 [ 42.433293] ? up_read+0x17/0x30 [ 42.436662] ? __do_page_fault+0x159/0xad0 [ 42.440880] SyS_sendmsg+0x27/0x40 [ 42.444401] ? __sys_sendmsg+0x120/0x120 [ 42.448448] do_syscall_64+0x1d5/0x640 [ 42.452322] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 42.457495] RIP: 0033:0x7f65fb48aec9 [ 42.461185] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 42.468877] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00007f65fb48aec9 [ 42.476129] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 42.483380] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 42.490642] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 42.497890] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 42.505692] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 42.516318] CPU: 1 PID: 7971 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 42.524204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 42.533557] Call Trace: [ 42.536144] dump_stack+0x1b2/0x281 [ 42.539771] ccid3_update_send_interval.cold+0x87/0x93 [ 42.545040] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 42.549787] ? ccid3_update_send_interval+0x100/0x100 [ 42.554967] dccp_xmit_packet+0x24b/0x6d0 [ 42.559105] dccp_write_xmit+0x140/0x1a0 [ 42.563169] dccp_sendmsg+0x708/0x880 [ 42.566956] ? dccp_ioctl+0x150/0x150 [ 42.570741] ? copy_msghdr_from_user+0x218/0x3b0 [ 42.575495] ? kernel_recvmsg+0x210/0x210 [ 42.579628] inet_sendmsg+0x11a/0x4e0 [ 42.583438] ? security_socket_sendmsg+0x83/0xb0 [ 42.588208] ? inet_recvmsg+0x4d0/0x4d0 [ 42.592166] sock_sendmsg+0xb5/0x100 [ 42.595879] ___sys_sendmsg+0x6c8/0x800 [ 42.599839] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 42.604592] ? __lock_acquire+0x5fc/0x3f20 [ 42.608835] ? trace_hardirqs_on+0x10/0x10 [ 42.613050] ? task_numa_work+0x790/0xab0 [ 42.617182] ? lock_downgrade+0x740/0x740 [ 42.621313] ? __fdget+0x167/0x1f0 [ 42.624849] ? sockfd_lookup_light+0xb2/0x160 [ 42.629327] __sys_sendmsg+0xa3/0x120 [ 42.633108] ? SyS_shutdown+0x160/0x160 [ 42.637075] SyS_sendmsg+0x27/0x40 [ 42.640595] ? __sys_sendmsg+0x120/0x120 [ 42.644676] do_syscall_64+0x1d5/0x640 [ 42.648744] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 42.653926] RIP: 0033:0x7f65fb48aec9 [ 42.657618] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 42.665303] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00007f65fb48aec9 [ 42.672554] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 42.679803] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 42.687052] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 42.694302] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 42.701872] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 42.712401] CPU: 1 PID: 7971 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 42.720279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 42.729631] Call Trace: [ 42.732221] dump_stack+0x1b2/0x281 [ 42.735839] ccid3_update_send_interval.cold+0x87/0x93 [ 42.741102] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 42.745840] ? ccid3_update_send_interval+0x100/0x100 [ 42.751008] dccp_xmit_packet+0x24b/0x6d0 [ 42.755135] dccp_write_xmit+0x140/0x1a0 [ 42.759198] dccp_sendmsg+0x708/0x880 [ 42.762981] ? dccp_ioctl+0x150/0x150 [ 42.766766] ? copy_msghdr_from_user+0x218/0x3b0 [ 42.771508] ? kernel_recvmsg+0x210/0x210 [ 42.775646] inet_sendmsg+0x11a/0x4e0 [ 42.779432] ? security_socket_sendmsg+0x83/0xb0 [ 42.784168] ? inet_recvmsg+0x4d0/0x4d0 [ 42.788127] sock_sendmsg+0xb5/0x100 [ 42.791822] ___sys_sendmsg+0x6c8/0x800 [ 42.795777] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 42.800517] ? __lock_acquire+0x5fc/0x3f20 [ 42.804743] ? trace_hardirqs_on+0x10/0x10 [ 42.808964] ? task_numa_work+0x790/0xab0 [ 42.813100] ? lock_downgrade+0x740/0x740 [ 42.817230] ? __fdget+0x167/0x1f0 [ 42.820753] ? sockfd_lookup_light+0xb2/0x160 [ 42.825227] __sys_sendmsg+0xa3/0x120 [ 42.829095] ? SyS_shutdown+0x160/0x160 [ 42.833055] SyS_sendmsg+0x27/0x40 [ 42.836573] ? __sys_sendmsg+0x120/0x120 [ 42.840621] do_syscall_64+0x1d5/0x640 [ 42.844500] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 42.849668] RIP: 0033:0x7f65fb48aec9 [ 42.853355] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 42.861040] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f65fb48aec9 [ 42.868292] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 42.875544] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 42.882794] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 42.890039] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 42.897799] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 42.908351] CPU: 1 PID: 7971 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0 [ 42.916340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 [ 42.925691] Call Trace: [ 42.928260] dump_stack+0x1b2/0x281 [ 42.931876] ccid3_update_send_interval.cold+0x87/0x93 [ 42.937145] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 42.941883] ? ccid3_update_send_interval+0x100/0x100 [ 42.947058] dccp_xmit_packet+0x24b/0x6d0 [ 42.951188] dccp_write_xmit+0x140/0x1a0 [ 42.955228] dccp_sendmsg+0x708/0x880 [ 42.959010] ? dccp_ioctl+0x150/0x150 [ 42.962792] ? copy_msghdr_from_user+0x218/0x3b0 [ 42.967528] ? kernel_recvmsg+0x210/0x210 [ 42.971663] inet_sendmsg+0x11a/0x4e0 [ 42.975447] ? security_socket_sendmsg+0x83/0xb0 [ 42.980269] ? inet_recvmsg+0x4d0/0x4d0 [ 42.984225] sock_sendmsg+0xb5/0x100 [ 42.987922] ___sys_sendmsg+0x6c8/0x800 [ 42.991880] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 42.996614] ? __lock_acquire+0x5fc/0x3f20 [ 43.000832] ? trace_hardirqs_on+0x10/0x10 [ 43.005044] ? task_numa_work+0x790/0xab0 [ 43.009169] ? lock_downgrade+0x740/0x740 [ 43.013295] ? __fdget+0x167/0x1f0 [ 43.016814] ? sockfd_lookup_light+0xb2/0x160 [ 43.021287] __sys_sendmsg+0xa3/0x120 [ 43.025077] ? SyS_shutdown+0x160/0x160 [ 43.029039] SyS_sendmsg+0x27/0x40 [ 43.032559] ? __sys_sendmsg+0x120/0x120 [ 43.036599] do_syscall_64+0x1d5/0x640 [ 43.040479] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 43.045686] RIP: 0033:0x7f65fb48aec9 [ 43.049899] RSP: 002b:00007ffd9a3f8c38 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 43.058031] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f65fb48aec9 [ 43.065292] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000004 [ 43.072545] RBP: 0000000000000000 R08: 00007ffd9a3f8dd8 R09: 00007ffd9a3f8dd8 [ 43.079801] R10: 00007ffd9a3f8dd8 R11: 0000000000000246 R12: 00007ffd9a3f8c4c [ 43.087050] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 43.095104] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 43.105826] CPU: 1 PID: 7971 Comm: syz-executor427 Not tainted 4.14.305-syzkaller #0