[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 16.616991] audit: type=1400 audit(1516268985.477:6): avc: denied { map } for pid=3655 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.45' (ECDSA) to the list of known hosts. executing program executing program syzkaller login: [ 22.905959] audit: type=1400 audit(1516268991.766:7): avc: denied { map } for pid=3669 comm="syzkaller628702" path="/root/syzkaller628702787" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 22.931961] audit: type=1400 audit(1516268991.766:8): avc: denied { name_bind } for pid=3670 comm="syzkaller628702" src=20000 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:port_t:s0 tclass=dccp_socket permissive=1 executing program executing program [ 22.945228] dccp_close: ABORT with 24 bytes unread [ 22.960632] audit: type=1400 audit(1516268991.766:9): avc: denied { node_bind } for pid=3670 comm="syzkaller628702" src=20000 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:node_t:s0 tclass=dccp_socket permissive=1 [ 22.970691] dccp_close: ABORT with 24 bytes unread executing program executing program [ 22.988234] audit: type=1400 audit(1516268991.766:10): avc: denied { name_connect } for pid=3670 comm="syzkaller628702" dest=20000 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:port_t:s0 tclass=dccp_socket permissive=1 [ 22.993439] dccp_close: ABORT with 24 bytes unread [ 23.016522] dccp_close: ABORT with 24 bytes unread [ 23.042133] dccp_close: ABORT with 24 bytes unread executing program [ 23.066948] dccp_close: ABORT with 24 bytes unread executing program [ 23.091752] dccp_close: ABORT with 24 bytes unread executing program [ 23.116466] dccp_close: ABORT with 24 bytes unread executing program [ 23.140791] dccp_close: ABORT with 24 bytes unread executing program executing program [ 23.165493] dccp_close: ABORT with 24 bytes unread executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 25.354095] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:425/tfrc_rx_hist_sample_rtt() [ 25.367348] CPU: 1 PID: 4165 Comm: syzkaller628702 Not tainted 4.15.0-rc7-mm1+ #56 [ 25.375037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 25.384393] Call Trace: [ 25.386954] [ 25.389084] dump_stack+0x194/0x257 [ 25.392687] ? arch_local_irq_restore+0x53/0x53 [ 25.397331] ? tfrc_rx_handle_loss+0xb38/0x24d0 [ 25.401978] ? trace_hardirqs_on_caller+0x19e/0x5c0 [ 25.406976] tfrc_rx_hist_sample_rtt+0x407/0x4d0 [ 25.411713] ccid3_hc_rx_packet_recv+0x696/0xeb3 [ 25.416449] ? ccid3_hc_tx_packet_recv+0xd20/0xd20 [ 25.421359] dccp_deliver_input_to_ccids+0xd9/0x250 [ 25.426361] dccp_rcv_established+0x88/0xb0 [ 25.430658] dccp_v4_do_rcv+0x135/0x160 [ 25.434609] __sk_receive_skb+0x33e/0xc10 [ 25.438742] ? sk_free+0x40/0x40 [ 25.442084] ? inet_lhash2_lookup+0x4b0/0x4b0 [ 25.446551] ? skb_send_sock+0x50/0x50 [ 25.450425] ? mark_held_locks+0xaf/0x100 [ 25.454550] ? __update_load_avg_se.isra.27+0x56a/0x7c0 [ 25.459898] ? dccp_invalid_packet+0x55/0x7d0 [ 25.464366] ? trace_hardirqs_on_caller+0x19e/0x5c0 [ 25.469359] dccp_v4_rcv+0xf5f/0x1c80 [ 25.473146] ? dccp_v4_err+0x1550/0x1550 [ 25.477189] ? lock_release+0xa40/0xa40 [ 25.481141] ? __lock_is_held+0xb6/0x140 [ 25.485187] ip_local_deliver_finish+0x2f1/0xc50 [ 25.489923] ? iptable_mangle_hook+0xaf/0x4a0 [ 25.494401] ? ip_rcv_finish+0x1e30/0x1e30 [ 25.498617] ? nf_hook_slow+0xd3/0x1a0 [ 25.502487] ip_local_deliver+0x1ce/0x6e0 [ 25.506609] ? ip_call_ra_chain+0x6d0/0x6d0 [ 25.510910] ? trace_hardirqs_on_caller+0x19e/0x5c0 [ 25.515899] ? ipt_do_table+0xd68/0x13b0 [ 25.519942] ? check_noncircular+0x20/0x20 [ 25.524160] ? ip_rcv_finish+0x1e30/0x1e30 [ 25.528378] ip_rcv_finish+0x953/0x1e30 [ 25.532330] ? inet_del_offload+0x40/0x40 [ 25.536454] ? ip_rcv+0xf22/0x1840 [ 25.539970] ? lock_downgrade+0x980/0x980 [ 25.544097] ? nf_nat_ipv4_in+0x1cd/0x270 [ 25.548224] ? iptable_nat_ipv4_fn+0x40/0x40 [ 25.552613] ? nf_hook_slow+0xd3/0x1a0 [ 25.556474] ip_rcv+0xc5a/0x1840 [ 25.559820] ? ip_local_deliver+0x6e0/0x6e0 [ 25.564118] ? check_noncircular+0x20/0x20 [ 25.568327] ? check_noncircular+0x20/0x20 [ 25.572542] ? inet_del_offload+0x40/0x40 [ 25.576667] ? ip_local_deliver+0x6e0/0x6e0 [ 25.580967] __netif_receive_skb_core+0x1a41/0x3460 [ 25.585967] ? nf_ingress+0x9f0/0x9f0 [ 25.589745] ? lock_downgrade+0x980/0x980 [ 25.593869] ? lock_downgrade+0x980/0x980 [ 25.598005] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 25.603186] ? check_noncircular+0x20/0x20 [ 25.607412] ? _raw_spin_unlock_irqrestore+0xa6/0xba [ 25.612491] ? try_to_wake_up+0xf9/0x1600 [ 25.616613] ? __lock_acquire+0x664/0x3e00 [ 25.620825] ? print_irqtrace_events+0x270/0x270 [ 25.625559] ? swake_up+0x25f/0x430 [ 25.629159] ? check_noncircular+0x20/0x20 [ 25.633367] ? lock_downgrade+0x980/0x980 [ 25.637500] ? lock_release+0xa40/0xa40 [ 25.641454] ? mark_held_locks+0xaf/0x100 [ 25.645577] ? _raw_spin_unlock_irqrestore+0x31/0xba [ 25.650660] ? find_held_lock+0x35/0x1d0 [ 25.654698] ? lock_acquire+0x1d5/0x580 [ 25.658648] ? process_backlog+0x45f/0x740 [ 25.662858] ? lock_acquire+0x1d5/0x580 [ 25.666822] ? process_backlog+0x1ab/0x740 [ 25.671042] ? lock_release+0xa40/0xa40 [ 25.674990] ? mark_held_locks+0xaf/0x100 [ 25.679123] __netif_receive_skb+0x2c/0x1b0 [ 25.683419] ? __netif_receive_skb+0x2c/0x1b0 [ 25.687889] process_backlog+0x203/0x740 [ 25.691921] ? mark_held_locks+0xaf/0x100 [ 25.696042] ? check_noncircular+0x20/0x20 [ 25.700257] net_rx_action+0x792/0x1910 [ 25.704216] ? napi_complete_done+0x6c0/0x6c0 [ 25.708695] ? rcu_read_lock_sched_held+0x108/0x120 [ 25.713712] ? note_gp_changes+0x650/0x650 [ 25.717929] ? timerqueue_add+0x1e9/0x280 [ 25.722058] ? enqueue_hrtimer+0x171/0x4a0 [ 25.726275] ? __remove_hrtimer+0x190/0x190 [ 25.730574] ? check_noncircular+0x20/0x20 [ 25.734789] ? print_irqtrace_events+0x270/0x270 [ 25.739522] ? clockevents_program_event+0x163/0x2e0 [ 25.744597] ? lock_downgrade+0x980/0x980 [ 25.748729] ? __lock_is_held+0xb6/0x140 [ 25.752780] ? check_noncircular+0x20/0x20 [ 25.756989] ? print_irqtrace_events+0x270/0x270 [ 25.761721] ? lock_downgrade+0x980/0x980 [ 25.765859] ? __irqentry_text_end+0x1f8d34/0x1f8d34 [ 25.770954] ? do_timer+0x50/0x50 [ 25.774390] ? __lock_is_held+0xb6/0x140 [ 25.778436] __do_softirq+0x2d7/0xb85 [ 25.782217] ? task_prio+0x40/0x40 [ 25.785737] ? __irqentry_text_end+0x1f8d34/0x1f8d34 [ 25.790815] ? irq_exit+0xbb/0x200 [ 25.794329] ? smp_apic_timer_interrupt+0x16b/0x700 [ 25.799320] ? smp_reschedule_interrupt+0xe6/0x670 [ 25.804229] ? smp_call_function_single_interrupt+0x640/0x640 [ 25.810091] ? _raw_spin_lock+0x32/0x40 [ 25.814044] ? _raw_spin_unlock+0x22/0x30 [ 25.818166] ? handle_edge_irq+0x2b4/0x7c0 [ 25.822375] ? task_prio+0x40/0x40 [ 25.825897] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 25.830719] do_softirq_own_stack+0x2a/0x40 [ 25.835013] [ 25.837237] do_softirq.part.19+0x14d/0x190 [ 25.841533] ? ip_finish_output2+0x8db/0x14f0 [ 25.846009] __local_bh_enable_ip+0x1ee/0x230 [ 25.850484] ip_finish_output2+0x90e/0x14f0 [ 25.854786] ? ip_copy_metadata+0xac0/0xac0 [ 25.859091] ? ipt_do_table+0xdd3/0x13b0 [ 25.863126] ? trace_hardirqs_on+0xd/0x10 [ 25.867257] ? ipv4_mtu+0x347/0x4c0 [ 25.870861] ? __lock_is_held+0xb6/0x140 [ 25.874910] ip_finish_output+0x864/0xd10 [ 25.879033] ? ip_finish_output+0x864/0xd10 [ 25.883337] ? ip_fragment.constprop.47+0x200/0x200 [ 25.888325] ? iptable_mangle_hook+0xaf/0x4a0 [ 25.892802] ? nf_hook_slow+0xd3/0x1a0 [ 25.896668] ip_output+0x1d2/0x860 [ 25.900187] ? ip_mc_output+0x1350/0x1350 [ 25.904325] ? ip_fragment.constprop.47+0x200/0x200 [ 25.909324] ip_local_out+0x95/0x160 [ 25.913019] ip_queue_xmit+0x8c0/0x18e0 [ 25.916976] ? ip_build_and_send_pkt+0xc30/0xc30 [ 25.921702] ? skb_send_sock+0x50/0x50 [ 25.925569] ? reqsk_fastopen_remove+0x591/0x610 [ 25.930300] ? dccp_insert_option_padding+0xad/0xd0 [ 25.935295] ? dccp_insert_options+0x20f/0xcf0 [ 25.939854] ? dccp_v4_send_check+0x187/0x3c0 [ 25.944326] dccp_transmit_skb+0x9ac/0x10f0 [ 25.948632] dccp_xmit_packet+0x215/0x740 [ 25.952755] ? dccp_send_ack+0x350/0x350 [ 25.956793] ? ccid3_hc_tx_send_packet+0x2e4/0x840 [ 25.961705] dccp_write_xmit+0x17d/0x1d0 [ 25.965753] dccp_sendmsg+0x95f/0xdc0 [ 25.969549] ? compat_dccp_getsockopt+0x70/0x70 [ 25.974198] ? rw_copy_check_uvector+0x1be/0x280 [ 25.978938] ? sock_has_perm+0x2a4/0x420 [ 25.982980] ? selinux_secmark_relabel_packet+0xc0/0xc0 [ 25.988320] ? dup_iter+0x1f2/0x260 [ 25.991946] ? kasan_check_write+0x14/0x20 [ 25.996162] inet_sendmsg+0x11f/0x5e0 [ 25.999937] ? copy_msghdr_from_user+0x3a6/0x590 [ 26.004668] ? inet_create+0xf50/0xf50 [ 26.008542] ? selinux_socket_sendmsg+0x36/0x40 [ 26.013195] ? security_socket_sendmsg+0x89/0xb0 [ 26.017931] ? inet_create+0xf50/0xf50 [ 26.021796] sock_sendmsg+0xca/0x110 [ 26.025489] ___sys_sendmsg+0x767/0x8b0 [ 26.029449] ? copy_msghdr_from_user+0x590/0x590 [ 26.034195] ? __do_page_fault+0x5f7/0xc90 [ 26.038408] ? lock_downgrade+0x980/0x980 [ 26.042543] ? __fget_light+0x297/0x380 [ 26.046492] ? fget_raw+0x20/0x20 [ 26.049928] ? __handle_mm_fault+0x3ce0/0x3ce0 [ 26.054482] ? vmacache_find+0x5f/0x280 [ 26.058436] ? up_read+0x1a/0x40 [ 26.061780] ? __do_page_fault+0x3d6/0xc90 [ 26.066000] ? __fdget+0x18/0x20 [ 26.069352] __sys_sendmsg+0xe5/0x210 [ 26.073130] ? __sys_sendmsg+0xe5/0x210 [ 26.077077] ? SyS_shutdown+0x290/0x290 [ 26.081032] ? __do_page_fault+0xc90/0xc90 [ 26.085246] ? SyS_futex+0x269/0x390 [ 26.088931] ? fput+0xd2/0x140 [ 26.092116] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 26.097112] SyS_sendmsg+0x2d/0x50 [ 26.100638] entry_SYSCALL_64_fastpath+0x29/0xa0 executing program executing program [ 26.105369] RIP: 0033:0x446469 [ 26.108534] RSP: 002b:00007fad1fa34da8 EFLAGS: 00000293 ORIG_RAX: 000000000000002e [ 26.116221] RAX: ffffffffffffffda RBX: 00000000006dbc3c RCX: 0000000000446469 [ 26.123463] RDX: 0000000000000080 RSI: 00000000206c8000 RDI: 0000000000000005 [ 26.130703] RBP: 00000000006dbc38 R08: 0000000000000000 R09: 0000000000000000 [ 26.137948] R10: 0000000000000000 R11: 0000000000000293 R12: f8e4cbe49e572d45 [ 26.145196] R13: 54c1b85d98aba1df R14: a6eaa24dbeb18c29 R15: 000000000000000c executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 26.425821] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:425/tfrc_rx_hist_sample_rtt() [ 26.439052] CPU: 1 PID: 4222 Comm: syzkaller628702 Not tainted 4.15.0-rc7-mm1+ #56 [ 26.446740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 26.456078] Call Trace: [ 26.458646] [ 26.460776] dump_stack+0x194/0x257 [ 26.464383] ? arch_local_irq_restore+0x53/0x53 [ 26.469030] ? tfrc_rx_handle_loss+0xb38/0x24d0 [ 26.473683] ? __lock_is_held+0xb6/0x140 [ 26.477725] tfrc_rx_hist_sample_rtt+0x407/0x4d0 [ 26.482460] ccid3_hc_rx_packet_recv+0x696/0xeb3 [ 26.487192] ? dccp_parse_options+0x3d8/0x1030 [ 26.491753] ? ccid3_hc_tx_packet_recv+0xd20/0xd20 [ 26.496662] dccp_deliver_input_to_ccids+0xd9/0x250 [ 26.501653] dccp_rcv_established+0x88/0xb0 [ 26.505949] dccp_v4_do_rcv+0x135/0x160 [ 26.509905] __sk_receive_skb+0x33e/0xc10 [ 26.514038] ? sk_free+0x40/0x40 [ 26.517384] ? inet_lhash2_lookup+0x4b0/0x4b0 [ 26.521855] ? skb_send_sock+0x50/0x50 [ 26.525718] ? mark_held_locks+0xaf/0x100 [ 26.529837] ? __update_load_avg_se.isra.27+0x56a/0x7c0 [ 26.535179] ? dccp_invalid_packet+0x55/0x7d0 [ 26.539652] ? trace_hardirqs_on_caller+0x19e/0x5c0 [ 26.544649] dccp_v4_rcv+0xf5f/0x1c80 [ 26.548444] ? dccp_v4_err+0x1550/0x1550 [ 26.552481] ? lock_release+0xa40/0xa40 [ 26.556430] ? __lock_is_held+0xb6/0x140 [ 26.560474] ip_local_deliver_finish+0x2f1/0xc50 [ 26.565201] ? iptable_mangle_hook+0xaf/0x4a0 [ 26.569671] ? ip_rcv_finish+0x1e30/0x1e30 [ 26.573880] ? nf_hook_slow+0xd3/0x1a0 [ 26.577743] ip_local_deliver+0x1ce/0x6e0 [ 26.581863] ? ip_call_ra_chain+0x6d0/0x6d0 [ 26.586159] ? trace_hardirqs_on_caller+0x19e/0x5c0 [ 26.591163] ? ipt_do_table+0xd68/0x13b0 [ 26.595204] ? check_noncircular+0x20/0x20 [ 26.599416] ? ip_rcv_finish+0x1e30/0x1e30 [ 26.603641] ip_rcv_finish+0x953/0x1e30 [ 26.607594] ? inet_del_offload+0x40/0x40 [ 26.611720] ? ip_rcv+0xf22/0x1840 [ 26.615236] ? lock_downgrade+0x980/0x980 [ 26.619361] ? nf_nat_ipv4_in+0x1cd/0x270 [ 26.623481] ? iptable_nat_ipv4_fn+0x40/0x40 [ 26.627870] ? nf_hook_slow+0xd3/0x1a0 [ 26.631737] ip_rcv+0xc5a/0x1840 [ 26.635085] ? ip_local_deliver+0x6e0/0x6e0 [ 26.639393] ? check_noncircular+0x20/0x20 [ 26.643600] ? check_noncircular+0x20/0x20 [ 26.647817] ? inet_del_offload+0x40/0x40 [ 26.651942] ? ip_local_deliver+0x6e0/0x6e0 [ 26.656249] __netif_receive_skb_core+0x1a41/0x3460 [ 26.661267] ? nf_ingress+0x9f0/0x9f0 [ 26.665047] ? lock_downgrade+0x980/0x980 [ 26.669168] ? lock_downgrade+0x980/0x980 [ 26.673300] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 26.678464] ? check_noncircular+0x20/0x20 [ 26.682690] ? _raw_spin_unlock_irqrestore+0xa6/0xba [ 26.687784] ? try_to_wake_up+0xf9/0x1600 [ 26.691908] ? __lock_acquire+0x664/0x3e00 [ 26.696121] ? print_irqtrace_events+0x270/0x270 [ 26.700863] ? swake_up+0x25f/0x430 [ 26.704473] ? check_noncircular+0x20/0x20 [ 26.708696] ? lock_downgrade+0x980/0x980 [ 26.712847] ? lock_release+0xa40/0xa40 [ 26.716796] ? trace_hardirqs_on_caller+0x19e/0x5c0 [ 26.721792] ? mark_held_locks+0xaf/0x100 [ 26.725914] ? _raw_spin_unlock_irqrestore+0x31/0xba [ 26.730995] ? find_held_lock+0x35/0x1d0 [ 26.735046] ? lock_acquire+0x1d5/0x580 [ 26.738995] ? process_backlog+0x45f/0x740 [ 26.743206] ? lock_acquire+0x1d5/0x580 [ 26.747165] ? process_backlog+0x1ab/0x740 [ 26.751387] ? lock_release+0xa40/0xa40 [ 26.755334] ? mark_held_locks+0xaf/0x100 [ 26.759465] __netif_receive_skb+0x2c/0x1b0 [ 26.763770] ? __netif_receive_skb+0x2c/0x1b0 [ 26.768245] process_backlog+0x203/0x740 [ 26.772287] ? mark_held_locks+0xaf/0x100 [ 26.776407] ? check_noncircular+0x20/0x20 [ 26.780639] net_rx_action+0x792/0x1910 [ 26.784606] ? napi_complete_done+0x6c0/0x6c0 [ 26.789084] ? rcu_read_lock_sched_held+0x108/0x120 [ 26.794084] ? note_gp_changes+0x650/0x650 [ 26.798295] ? timerqueue_add+0x1e9/0x280 [ 26.802421] ? enqueue_hrtimer+0x171/0x4a0 [ 26.806629] ? __remove_hrtimer+0x190/0x190 [ 26.810931] ? check_noncircular+0x20/0x20 [ 26.815150] ? rebalance_domains+0xcc0/0xcc0 [ 26.819538] ? __lock_is_held+0xb6/0x140 [ 26.823584] ? check_noncircular+0x20/0x20 [ 26.827790] ? print_irqtrace_events+0x270/0x270 [ 26.832520] ? lock_downgrade+0x980/0x980 [ 26.836645] ? __irqentry_text_end+0x1f8d34/0x1f8d34 [ 26.841722] ? do_timer+0x50/0x50 [ 26.845164] ? __lock_is_held+0xb6/0x140 [ 26.849213] __do_softirq+0x2d7/0xb85 [ 26.852986] ? task_prio+0x40/0x40 [ 26.856515] ? __irqentry_text_end+0x1f8d34/0x1f8d34 [ 26.861592] ? irq_exit+0xbb/0x200 [ 26.865106] ? smp_apic_timer_interrupt+0x16b/0x700 [ 26.870094] ? smp_reschedule_interrupt+0xe6/0x670 [ 26.875002] ? smp_call_function_single_interrupt+0x640/0x640 [ 26.880870] ? _raw_spin_lock+0x32/0x40 [ 26.884819] ? _raw_spin_unlock+0x22/0x30 [ 26.888940] ? handle_edge_irq+0x2b4/0x7c0 [ 26.893156] ? task_prio+0x40/0x40 [ 26.896676] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 26.901497] do_softirq_own_stack+0x2a/0x40 [ 26.905795] [ 26.908018] do_softirq.part.19+0x14d/0x190 [ 26.912320] ? ip_finish_output2+0x8db/0x14f0 [ 26.916789] __local_bh_enable_ip+0x1ee/0x230 [ 26.921256] ip_finish_output2+0x90e/0x14f0 [ 26.925557] ? ip_copy_metadata+0xac0/0xac0 [ 26.929857] ? ipt_do_table+0xdd3/0x13b0 [ 26.933892] ? trace_hardirqs_on+0xd/0x10 [ 26.938033] ? ipv4_mtu+0x347/0x4c0 [ 26.941646] ? __lock_is_held+0xb6/0x140 [ 26.945710] ip_finish_output+0x864/0xd10 [ 26.949828] ? ip_finish_output+0x864/0xd10 [ 26.954125] ? ip_fragment.constprop.47+0x200/0x200 [ 26.959113] ? iptable_mangle_hook+0xaf/0x4a0 [ 26.963588] ? nf_hook_slow+0xd3/0x1a0 [ 26.967452] ip_output+0x1d2/0x860 [ 26.970975] ? ip_mc_output+0x1350/0x1350 [ 26.975105] ? ip_fragment.constprop.47+0x200/0x200 [ 26.980104] ip_local_out+0x95/0x160 [ 26.983795] ip_queue_xmit+0x8c0/0x18e0 [ 26.987755] ? ip_build_and_send_pkt+0xc30/0xc30 [ 26.992498] ? skb_send_sock+0x50/0x50 [ 26.996358] ? reqsk_fastopen_remove+0x591/0x610 [ 27.001089] ? dccp_insert_option_padding+0xad/0xd0 [ 27.006082] ? dccp_insert_options+0x20f/0xcf0 [ 27.010641] ? dccp_v4_send_check+0x187/0x3c0 [ 27.015114] dccp_transmit_skb+0x9ac/0x10f0 [ 27.019422] dccp_xmit_packet+0x215/0x740 [ 27.023553] ? dccp_send_ack+0x350/0x350 [ 27.027588] ? ccid3_hc_tx_send_packet+0x2e4/0x840 [ 27.032502] dccp_write_xmit+0x17d/0x1d0 [ 27.036539] dccp_sendmsg+0x95f/0xdc0 [ 27.040334] ? compat_dccp_getsockopt+0x70/0x70 [ 27.044987] ? rw_copy_check_uvector+0x1be/0x280 [ 27.049728] ? sock_has_perm+0x2a4/0x420 [ 27.053768] ? selinux_secmark_relabel_packet+0xc0/0xc0 [ 27.059105] ? dup_iter+0x1f2/0x260 [ 27.062708] ? kasan_check_write+0x14/0x20 [ 27.066929] inet_sendmsg+0x11f/0x5e0 [ 27.070703] ? copy_msghdr_from_user+0x3a6/0x590 [ 27.075439] ? inet_create+0xf50/0xf50 [ 27.079304] ? selinux_socket_sendmsg+0x36/0x40 [ 27.083943] ? security_socket_sendmsg+0x89/0xb0 [ 27.088672] ? inet_create+0xf50/0xf50 [ 27.092535] sock_sendmsg+0xca/0x110 [ 27.096222] ___sys_sendmsg+0x767/0x8b0 [ 27.100175] ? copy_msghdr_from_user+0x590/0x590 [ 27.104912] ? __do_page_fault+0x5f7/0xc90 [ 27.109124] ? lock_downgrade+0x980/0x980 [ 27.113251] ? __fget_light+0x297/0x380 [ 27.117199] ? fget_raw+0x20/0x20 [ 27.120626] ? __handle_mm_fault+0x3ce0/0x3ce0 [ 27.125185] ? vmacache_find+0x5f/0x280 [ 27.129141] ? up_read+0x1a/0x40 [ 27.132490] ? __do_page_fault+0x3d6/0xc90 [ 27.136706] ? __fdget+0x18/0x20 [ 27.140055] __sys_sendmsg+0xe5/0x210 [ 27.143825] ? __sys_sendmsg+0xe5/0x210 [ 27.147773] ? SyS_shutdown+0x290/0x290 [ 27.151735] ? __do_page_fault+0xc90/0xc90 [ 27.155947] ? SyS_futex+0x269/0x390 [ 27.159633] ? fput+0xd2/0x140 [ 27.162809] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 27.167810] SyS_sendmsg+0x2d/0x50 [ 27.171333] entry_SYSCALL_64_fastpath+0x29/0xa0 [ 27.176060] RIP: 0033:0x446469 executing program executing program [ 27.179220] RSP: 002b:00007fad1fa34da8 EFLAGS: 00000293 ORIG_RAX: 000000000000002e [ 27.186904] RAX: ffffffffffffffda RBX: 00000000006dbc3c RCX: 0000000000446469 [ 27.194147] RDX: 0000000000000080 RSI: 00000000206c8000 RDI: 0000000000000005 [ 27.201389] RBP: 00000000006dbc38 R08: 0000000000000000 R09: 0000000000000000 [ 27.208639] R10: 0000000000000000 R11: 0000000000000293 R12: f8e4cbe49e572d45 [ 27.215880] R13: 54c1b85d98aba1df R14: a6eaa24dbeb18c29 R15: 000000000000000c executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 27.949156] net_ratelimit: 164 callbacks suppressed [ 27.949159] dccp_close: ABORT with 24 bytes unread [ 27.978793] dccp_close: ABORT with 24 bytes unread executing program [ 28.004209] dccp_close: ABORT with 24 bytes unread executing program [ 28.029191] dccp_close: ABORT with 24 bytes unread executing program [ 28.053572] dccp_close: ABORT with 24 bytes unread executing program [ 28.077997] dccp_close: ABORT with 24 bytes unread executing program [ 28.102593] dccp_close: ABORT with 24 bytes unread executing program [ 28.126810] dccp_close: ABORT with 24 bytes unread executing program [ 28.152092] dccp_close: ABORT with 24 bytes unread executing program executing program [ 28.177280] dccp_close: ABORT with 24 bytes unread executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 31.776852] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:425/tfrc_rx_hist_sample_rtt() [ 31.790082] CPU: 1 PID: 5153 Comm: syzkaller628702 Not tainted 4.15.0-rc7-mm1+ #56 [ 31.797774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 31.807115] Call Trace: [ 31.809672] [ 31.811800] dump_stack+0x194/0x257 [ 31.815417] ? arch_local_irq_restore+0x53/0x53 [ 31.820065] ? tfrc_rx_handle_loss+0xb38/0x24d0 [ 31.824710] ? __lock_is_held+0xb6/0x140 [ 31.828752] tfrc_rx_hist_sample_rtt+0x407/0x4d0 [ 31.833485] ccid3_hc_rx_packet_recv+0x696/0xeb3 [ 31.838210] ? dccp_parse_options+0x3d8/0x1030 [ 31.842779] ? ccid3_hc_tx_packet_recv+0xd20/0xd20 [ 31.847697] dccp_deliver_input_to_ccids+0xd9/0x250 [ 31.852699] dccp_rcv_established+0x88/0xb0 [ 31.857010] dccp_v4_do_rcv+0x135/0x160 [ 31.860966] __sk_receive_skb+0x33e/0xc10 [ 31.865093] ? sk_free+0x40/0x40 [ 31.868435] ? inet_lhash2_lookup+0x4b0/0x4b0 [ 31.872899] ? skb_send_sock+0x50/0x50 [ 31.876762] ? mark_held_locks+0xaf/0x100 [ 31.880890] ? dccp_invalid_packet+0x55/0x7d0 [ 31.885356] ? trace_hardirqs_on_caller+0x19e/0x5c0 [ 31.890351] dccp_v4_rcv+0xf5f/0x1c80 [ 31.894135] ? dccp_v4_err+0x1550/0x1550 [ 31.898172] ? lock_release+0xa40/0xa40 [ 31.902134] ? __lock_is_held+0xb6/0x140 [ 31.906183] ip_local_deliver_finish+0x2f1/0xc50 [ 31.910911] ? iptable_mangle_hook+0xaf/0x4a0 [ 31.915390] ? ip_rcv_finish+0x1e30/0x1e30 [ 31.919608] ? nf_hook_slow+0xd3/0x1a0 [ 31.923481] ip_local_deliver+0x1ce/0x6e0 [ 31.927614] ? ip_call_ra_chain+0x6d0/0x6d0 [ 31.931915] ? trace_hardirqs_on_caller+0x19e/0x5c0 [ 31.936903] ? ipt_do_table+0xd68/0x13b0 [ 31.940938] ? check_noncircular+0x20/0x20 [ 31.945151] ? ip_rcv_finish+0x1e30/0x1e30 [ 31.949372] ip_rcv_finish+0x953/0x1e30 [ 31.953329] ? inet_del_offload+0x40/0x40 [ 31.957464] ? ip_rcv+0xf22/0x1840 [ 31.960977] ? lock_downgrade+0x980/0x980 [ 31.965101] ? nf_nat_ipv4_in+0x1cd/0x270 [ 31.969223] ? iptable_nat_ipv4_fn+0x40/0x40 [ 31.973619] ? nf_hook_slow+0xd3/0x1a0 [ 31.977487] ip_rcv+0xc5a/0x1840 [ 31.980841] ? ip_local_deliver+0x6e0/0x6e0 [ 31.985138] ? print_irqtrace_events+0x270/0x270 [ 31.989869] ? check_noncircular+0x20/0x20 [ 31.994085] ? inet_del_offload+0x40/0x40 [ 31.998211] ? ip_local_deliver+0x6e0/0x6e0 [ 32.002516] __netif_receive_skb_core+0x1a41/0x3460 [ 32.007524] ? nf_ingress+0x9f0/0x9f0 [ 32.011304] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 32.016482] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 32.021642] ? rcu_read_lock_sched_held+0x108/0x120 [ 32.026637] ? update_cfs_rq_load_avg.part.68+0x23d/0x2d0 [ 32.032156] ? attach_entity_load_avg+0x7a0/0x7a0 [ 32.036983] ? __lock_acquire+0x664/0x3e00 [ 32.041203] ? fastpath_timer_check+0x7f5/0xac0 [ 32.045851] ? update_cfs_rq_load_avg.part.68+0x2d0/0x2d0 [ 32.051363] ? check_noncircular+0x20/0x20 [ 32.055571] ? check_noncircular+0x20/0x20 [ 32.059781] ? print_irqtrace_events+0x270/0x270 [ 32.064515] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 32.069688] ? find_held_lock+0x35/0x1d0 [ 32.073732] ? lock_acquire+0x1d5/0x580 [ 32.077686] ? process_backlog+0x45f/0x740 [ 32.081892] ? lock_acquire+0x1d5/0x580 [ 32.085839] ? process_backlog+0x1ab/0x740 [ 32.090055] ? lock_release+0xa40/0xa40 [ 32.094002] ? mark_held_locks+0xaf/0x100 [ 32.098141] __netif_receive_skb+0x2c/0x1b0 [ 32.102435] ? __netif_receive_skb+0x2c/0x1b0 [ 32.106912] process_backlog+0x203/0x740 [ 32.110953] ? mark_held_locks+0xaf/0x100 [ 32.115072] ? check_noncircular+0x20/0x20 [ 32.119300] net_rx_action+0x792/0x1910 [ 32.123255] ? lock_release+0xa40/0xa40 [ 32.127207] ? napi_complete_done+0x6c0/0x6c0 [ 32.131683] ? rcu_read_lock_sched_held+0x108/0x120 [ 32.136677] ? debug_object_activate+0x307/0x730 [ 32.141415] ? note_gp_changes+0x650/0x650 [ 32.145625] ? timerqueue_add+0x1e9/0x280 [ 32.149751] ? enqueue_hrtimer+0x171/0x4a0 [ 32.153959] ? __remove_hrtimer+0x190/0x190 [ 32.158263] ? check_noncircular+0x20/0x20 [ 32.162471] ? print_irqtrace_events+0x270/0x270 [ 32.167206] ? clockevents_program_event+0x163/0x2e0 [ 32.172293] ? lock_downgrade+0x980/0x980 [ 32.176424] ? __lock_is_held+0xb6/0x140 [ 32.180471] ? check_noncircular+0x20/0x20 [ 32.184680] ? print_irqtrace_events+0x270/0x270 [ 32.189414] ? lock_downgrade+0x980/0x980 [ 32.193544] ? __irqentry_text_end+0x1f8d34/0x1f8d34 [ 32.198622] ? do_timer+0x50/0x50 [ 32.202063] ? __lock_is_held+0xb6/0x140 [ 32.206115] __do_softirq+0x2d7/0xb85 [ 32.209885] ? task_prio+0x40/0x40 [ 32.213404] ? __irqentry_text_end+0x1f8d34/0x1f8d34 [ 32.218498] ? irq_exit+0xbb/0x200 [ 32.222014] ? smp_apic_timer_interrupt+0x16b/0x700 [ 32.227008] ? smp_reschedule_interrupt+0xe6/0x670 [ 32.231915] ? smp_call_function_single_interrupt+0x640/0x640 [ 32.237771] ? _raw_spin_lock+0x32/0x40 [ 32.241721] ? _raw_spin_unlock+0x22/0x30 [ 32.245841] ? handle_edge_irq+0x2b4/0x7c0 [ 32.250049] ? task_prio+0x40/0x40 [ 32.253569] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 32.258390] do_softirq_own_stack+0x2a/0x40 [ 32.262682] [ 32.264903] do_softirq.part.19+0x14d/0x190 [ 32.269202] ? ip_finish_output2+0x8db/0x14f0 [ 32.273671] __local_bh_enable_ip+0x1ee/0x230 [ 32.278148] ip_finish_output2+0x90e/0x14f0 [ 32.282452] ? ip_copy_metadata+0xac0/0xac0 [ 32.286850] ? ipt_do_table+0xdd3/0x13b0 [ 32.290891] ? trace_hardirqs_on+0xd/0x10 [ 32.295035] ? ipv4_mtu+0x347/0x4c0 [ 32.298643] ? __lock_is_held+0xb6/0x140 [ 32.302687] ip_finish_output+0x864/0xd10 [ 32.306808] ? ip_finish_output+0x864/0xd10 [ 32.311106] ? ip_fragment.constprop.47+0x200/0x200 [ 32.316375] ? iptable_mangle_hook+0xaf/0x4a0 [ 32.320853] ? nf_hook_slow+0xd3/0x1a0 [ 32.324717] ip_output+0x1d2/0x860 [ 32.328232] ? ip_mc_output+0x1350/0x1350 [ 32.332358] ? ip_fragment.constprop.47+0x200/0x200 [ 32.337359] ip_local_out+0x95/0x160 [ 32.341048] ip_queue_xmit+0x8c0/0x18e0 [ 32.345000] ? ip_build_and_send_pkt+0xc30/0xc30 [ 32.349742] ? skb_send_sock+0x50/0x50 [ 32.353599] ? reqsk_fastopen_remove+0x591/0x610 [ 32.358327] ? dccp_insert_option_padding+0xad/0xd0 [ 32.363317] ? dccp_insert_options+0x20f/0xcf0 [ 32.367875] ? dccp_v4_send_check+0x187/0x3c0 [ 32.372347] dccp_transmit_skb+0x9ac/0x10f0 [ 32.376824] dccp_xmit_packet+0x215/0x740 [ 32.380947] ? dccp_send_ack+0x350/0x350 [ 32.384982] ? ccid3_hc_tx_send_packet+0x2e4/0x840 [ 32.389891] dccp_write_xmit+0x17d/0x1d0 [ 32.393934] dccp_sendmsg+0x95f/0xdc0 [ 32.397719] ? compat_dccp_getsockopt+0x70/0x70 [ 32.402363] ? rw_copy_check_uvector+0x1be/0x280 [ 32.407103] ? sock_has_perm+0x2a4/0x420 [ 32.411142] ? selinux_secmark_relabel_packet+0xc0/0xc0 [ 32.416916] ? dup_iter+0x1f2/0x260 [ 32.420524] ? kasan_check_write+0x14/0x20 [ 32.424752] inet_sendmsg+0x11f/0x5e0 [ 32.428527] ? copy_msghdr_from_user+0x3a6/0x590 [ 32.433255] ? inet_create+0xf50/0xf50 [ 32.437121] ? selinux_socket_sendmsg+0x36/0x40 [ 32.441762] ? security_socket_sendmsg+0x89/0xb0 [ 32.446501] ? inet_create+0xf50/0xf50 [ 32.450377] sock_sendmsg+0xca/0x110 [ 32.454077] ___sys_sendmsg+0x767/0x8b0 [ 32.458037] ? copy_msghdr_from_user+0x590/0x590 [ 32.462773] ? __do_page_fault+0x5f7/0xc90 [ 32.466994] ? lock_downgrade+0x980/0x980 [ 32.471128] ? __fget_light+0x297/0x380 [ 32.475076] ? fget_raw+0x20/0x20 [ 32.478501] ? __handle_mm_fault+0x3ce0/0x3ce0 [ 32.483053] ? vmacache_find+0x5f/0x280 [ 32.487007] ? up_read+0x1a/0x40 [ 32.490353] ? __do_page_fault+0x3d6/0xc90 [ 32.494569] ? __fdget+0x18/0x20 [ 32.497920] __sys_sendmsg+0xe5/0x210 [ 32.501698] ? __sys_sendmsg+0xe5/0x210 [ 32.505661] ? SyS_shutdown+0x290/0x290 [ 32.509620] ? __do_page_fault+0xc90/0xc90 [ 32.513837] ? SyS_futex+0x269/0x390 [ 32.517527] ? fput+0xd2/0x140 [ 32.520704] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 32.525700] SyS_sendmsg+0x2d/0x50 [ 32.529217] entry_SYSCALL_64_fastpath+0x29/0xa0 [ 32.533945] RIP: 0033:0x446469 [ 32.537105] RSP: 002b:00007fad1fa34da8 EFLAGS: 00000293 ORIG_RAX: 000000000000002e [ 32.544783] RAX: ffffffffffffffda RBX: 00000000006dbc3c RCX: 0000000000446469 [ 32.552030] RDX: 0000000000000080 RSI: 00000000206c8000 RDI: 0000000000000005 [ 32.559272] RBP: 00000000006dbc38 R08: 0000000000000000 R09: 0000000000000000 [ 32.566514] R10: 0000000000000000 R11: 0000000000000293 R12: f8e4cbe49e572d45 executing program executing program [ 32.573756] R13: 54c1b85d98aba1df R14: a6eaa24dbeb18c29 R15: 000000000000000c executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 32.963929] net_ratelimit: 206 callbacks suppressed [ 32.963932] dccp_close: ABORT with 24 bytes unread [ 32.993055] dccp_close: ABORT with 24 bytes unread executing program [ 33.017930] dccp_close: ABORT with 24 bytes unread executing program [ 33.042334] dccp_close: ABORT with 24 bytes unread executing program [ 33.066651] dccp_close: ABORT with 24 bytes unread executing program [ 33.091550] dccp_close: ABORT with 24 bytes unread executing program [ 33.117038] dccp_close: ABORT with 24 bytes unread executing program [ 33.142640] dccp_close: ABORT with 24 bytes unread executing program [ 33.167361] dccp_close: ABORT with 24 bytes unread executing program executing program [ 33.190055] dccp_close: ABORT with 24 bytes unread executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program