Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.105' (ECDSA) to the list of known hosts. executing program executing program syzkaller login: [ 35.381922] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 35.392758] CPU: 0 PID: 8070 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 35.400631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 35.410218] Call Trace: [ 35.412796] dump_stack+0x1fc/0x2ef [ 35.416418] ccid3_update_send_interval.cold+0x87/0x93 [ 35.421692] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 35.426437] ? ccid3_update_send_interval+0x120/0x120 [ 35.431611] dccp_xmit_packet+0x27e/0x760 [ 35.435746] dccp_write_xmit+0x16d/0x1d0 [ 35.439794] dccp_sendmsg+0x8de/0xc90 [ 35.443635] ? aa_sk_perm+0x534/0x930 [ 35.447420] ? dccp_ioctl+0x160/0x160 [ 35.451202] ? aa_af_perm+0x230/0x230 [ 35.454987] ? kernel_recvmsg+0x220/0x220 [ 35.459125] inet_sendmsg+0x132/0x5a0 [ 35.462915] ? security_socket_sendmsg+0x83/0xb0 [ 35.467655] ? inet_recvmsg+0x5c0/0x5c0 [ 35.471618] sock_sendmsg+0xc3/0x120 [ 35.475315] ___sys_sendmsg+0x3b3/0x8e0 [ 35.479287] ? copy_msghdr_from_user+0x440/0x440 [ 35.484033] ? __fget+0x32f/0x510 [ 35.487475] ? lock_downgrade+0x720/0x720 [ 35.491607] ? check_preemption_disabled+0x41/0x280 [ 35.496612] ? check_preemption_disabled+0x41/0x280 [ 35.501626] ? __fget+0x356/0x510 [ 35.505078] ? do_dup2+0x450/0x450 [ 35.508605] ? lock_downgrade+0x720/0x720 [ 35.512736] ? lock_acquire+0x170/0x3c0 [ 35.516693] ? __fdget+0x1d0/0x230 [ 35.520220] __sys_sendmmsg+0x195/0x470 [ 35.524187] ? __ia32_sys_sendmsg+0x220/0x220 [ 35.528673] ? __ia32_sys_getpeername+0xb0/0xb0 [ 35.533359] ? __sys_connect+0x140/0x2c0 [ 35.537410] ? __ia32_sys_accept+0xb0/0xb0 [ 35.541658] ? __se_sys_futex+0x28f/0x3b0 [ 35.545789] ? __se_sys_futex+0x298/0x3b0 [ 35.549921] ? do_futex+0x1880/0x1880 [ 35.553728] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 35.559089] __x64_sys_sendmmsg+0x99/0x100 [ 35.563311] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 35.567873] do_syscall_64+0xf9/0x620 [ 35.571665] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 35.576838] RIP: 0033:0x7f5d4a2bdb69 [ 35.580535] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 35.599421] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 35.607116] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 35.614372] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 35.621625] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 executing program [ 35.628899] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 35.636152] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 35.668310] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 35.678939] CPU: 0 PID: 8072 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 35.686807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 35.696144] Call Trace: [ 35.698722] dump_stack+0x1fc/0x2ef [ 35.702336] ccid3_update_send_interval.cold+0x87/0x93 [ 35.707606] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 35.712345] ? ccid3_update_send_interval+0x120/0x120 [ 35.717518] dccp_xmit_packet+0x27e/0x760 [ 35.721651] dccp_write_xmit+0x16d/0x1d0 [ 35.725701] dccp_sendmsg+0x8de/0xc90 [ 35.729497] ? aa_sk_perm+0x534/0x930 [ 35.733280] ? dccp_ioctl+0x160/0x160 [ 35.737060] ? aa_af_perm+0x230/0x230 [ 35.740853] ? kernel_recvmsg+0x220/0x220 [ 35.744984] inet_sendmsg+0x132/0x5a0 [ 35.748772] ? security_socket_sendmsg+0x83/0xb0 [ 35.753511] ? inet_recvmsg+0x5c0/0x5c0 [ 35.757484] sock_sendmsg+0xc3/0x120 [ 35.761191] ___sys_sendmsg+0x3b3/0x8e0 [ 35.765161] ? copy_msghdr_from_user+0x440/0x440 [ 35.769912] ? __fget+0x32f/0x510 [ 35.773352] ? lock_downgrade+0x720/0x720 [ 35.777500] ? check_preemption_disabled+0x41/0x280 [ 35.782504] ? check_preemption_disabled+0x41/0x280 [ 35.787507] ? __fget+0x356/0x510 [ 35.790941] ? do_dup2+0x450/0x450 [ 35.794472] ? lock_downgrade+0x720/0x720 [ 35.798618] ? lock_acquire+0x170/0x3c0 [ 35.802593] ? __fdget+0x1d0/0x230 [ 35.806122] __sys_sendmmsg+0x195/0x470 [ 35.810083] ? __ia32_sys_sendmsg+0x220/0x220 [ 35.814562] ? __ia32_sys_getpeername+0xb0/0xb0 [ 35.819239] ? __sys_connect+0x140/0x2c0 [ 35.823285] ? __ia32_sys_accept+0xb0/0xb0 [ 35.827514] ? __se_sys_futex+0x28f/0x3b0 [ 35.831650] ? __se_sys_futex+0x298/0x3b0 [ 35.835785] ? do_futex+0x1880/0x1880 [ 35.839576] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 35.844954] __x64_sys_sendmmsg+0x99/0x100 [ 35.849175] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 35.853752] do_syscall_64+0xf9/0x620 [ 35.857541] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 35.862711] RIP: 0033:0x7f5d4a2bdb69 executing program [ 35.866405] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 35.885290] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 35.892981] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 35.900236] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 35.907494] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 35.914749] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 35.922020] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000037 [ 35.960473] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 35.971036] CPU: 0 PID: 8074 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 35.978909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 35.988334] Call Trace: [ 35.990911] dump_stack+0x1fc/0x2ef [ 35.994544] ccid3_update_send_interval.cold+0x87/0x93 [ 35.999807] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 36.004559] ? ccid3_update_send_interval+0x120/0x120 [ 36.009736] dccp_xmit_packet+0x27e/0x760 [ 36.013886] dccp_write_xmit+0x16d/0x1d0 [ 36.017933] dccp_sendmsg+0x8de/0xc90 [ 36.021747] ? aa_sk_perm+0x534/0x930 [ 36.025544] ? dccp_ioctl+0x160/0x160 [ 36.029331] ? aa_af_perm+0x230/0x230 [ 36.033133] ? kernel_recvmsg+0x220/0x220 [ 36.037280] inet_sendmsg+0x132/0x5a0 [ 36.041076] ? security_socket_sendmsg+0x83/0xb0 [ 36.045829] ? inet_recvmsg+0x5c0/0x5c0 [ 36.049804] sock_sendmsg+0xc3/0x120 [ 36.053511] ___sys_sendmsg+0x3b3/0x8e0 [ 36.057478] ? copy_msghdr_from_user+0x440/0x440 [ 36.062454] ? __fget+0x32f/0x510 [ 36.065896] ? lock_downgrade+0x720/0x720 [ 36.070076] ? check_preemption_disabled+0x41/0x280 [ 36.075142] ? check_preemption_disabled+0x41/0x280 [ 36.080143] ? __fget+0x356/0x510 [ 36.083640] ? do_dup2+0x450/0x450 [ 36.087174] ? lock_downgrade+0x720/0x720 [ 36.091311] ? lock_acquire+0x170/0x3c0 [ 36.095275] ? __fdget+0x1d0/0x230 [ 36.098802] __sys_sendmmsg+0x195/0x470 [ 36.102763] ? __ia32_sys_sendmsg+0x220/0x220 [ 36.107242] ? __ia32_sys_getpeername+0xb0/0xb0 [ 36.111999] ? __sys_connect+0x140/0x2c0 [ 36.116049] ? __ia32_sys_accept+0xb0/0xb0 [ 36.120276] ? __se_sys_futex+0x28f/0x3b0 [ 36.124410] ? __se_sys_futex+0x298/0x3b0 [ 36.128548] ? do_futex+0x1880/0x1880 [ 36.132336] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 36.137685] __x64_sys_sendmmsg+0x99/0x100 [ 36.141907] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 36.146503] do_syscall_64+0xf9/0x620 [ 36.150293] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 36.155471] RIP: 0033:0x7f5d4a2bdb69 [ 36.159171] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 36.178054] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 36.185794] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 36.193047] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 36.200299] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 36.207549] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 36.214800] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 36.223749] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 36.234861] CPU: 1 PID: 8074 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 36.242749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 36.252091] Call Trace: [ 36.254666] dump_stack+0x1fc/0x2ef [ 36.258283] ccid3_update_send_interval.cold+0x87/0x93 [ 36.263550] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 36.268288] ? ccid3_update_send_interval+0x120/0x120 [ 36.273462] dccp_xmit_packet+0x27e/0x760 [ 36.277594] dccp_write_xmit+0x16d/0x1d0 [ 36.281640] dccp_sendmsg+0x8de/0xc90 [ 36.285430] ? aa_sk_perm+0x534/0x930 [ 36.289215] ? dccp_ioctl+0x160/0x160 [ 36.293001] ? aa_af_perm+0x230/0x230 [ 36.296792] ? kernel_recvmsg+0x220/0x220 [ 36.300933] inet_sendmsg+0x132/0x5a0 [ 36.304721] ? security_socket_sendmsg+0x83/0xb0 [ 36.309466] ? inet_recvmsg+0x5c0/0x5c0 [ 36.313432] sock_sendmsg+0xc3/0x120 [ 36.317127] ___sys_sendmsg+0x3b3/0x8e0 [ 36.321084] ? copy_msghdr_from_user+0x440/0x440 [ 36.325874] ? __fget+0x32f/0x510 [ 36.329314] ? lock_downgrade+0x720/0x720 [ 36.333452] ? check_preemption_disabled+0x41/0x280 [ 36.338511] ? check_preemption_disabled+0x41/0x280 [ 36.343513] ? __fget+0x356/0x510 [ 36.346949] ? do_dup2+0x450/0x450 [ 36.350523] ? lock_downgrade+0x720/0x720 [ 36.354651] ? lock_acquire+0x170/0x3c0 [ 36.358609] ? __fdget+0x1d0/0x230 [ 36.362135] __sys_sendmmsg+0x195/0x470 [ 36.366093] ? __ia32_sys_sendmsg+0x220/0x220 [ 36.370595] ? __ia32_sys_getpeername+0xb0/0xb0 [ 36.375252] ? __sys_connect+0x140/0x2c0 [ 36.379294] ? __ia32_sys_accept+0xb0/0xb0 [ 36.383513] ? __se_sys_futex+0x28f/0x3b0 [ 36.387646] ? __se_sys_futex+0x298/0x3b0 [ 36.391775] ? do_futex+0x1880/0x1880 [ 36.395563] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 36.400997] __x64_sys_sendmmsg+0x99/0x100 [ 36.405217] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 36.409800] do_syscall_64+0xf9/0x620 [ 36.413583] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 36.418752] RIP: 0033:0x7f5d4a2bdb69 [ 36.422451] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 36.441335] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 36.449024] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 executing program [ 36.456293] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 36.463548] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 36.470803] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 36.478058] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000037 [ 36.510238] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 36.520913] CPU: 1 PID: 8076 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 36.528778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 36.538116] Call Trace: [ 36.540692] dump_stack+0x1fc/0x2ef [ 36.544303] ccid3_update_send_interval.cold+0x87/0x93 [ 36.549563] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 36.554299] ? ccid3_update_send_interval+0x120/0x120 [ 36.559470] dccp_xmit_packet+0x27e/0x760 [ 36.563603] dccp_write_xmit+0x16d/0x1d0 [ 36.567647] dccp_sendmsg+0x8de/0xc90 [ 36.571434] ? aa_sk_perm+0x534/0x930 [ 36.575234] ? dccp_ioctl+0x160/0x160 [ 36.579015] ? aa_af_perm+0x230/0x230 [ 36.582798] ? kernel_recvmsg+0x220/0x220 [ 36.586930] inet_sendmsg+0x132/0x5a0 [ 36.590718] ? security_socket_sendmsg+0x83/0xb0 [ 36.595461] ? inet_recvmsg+0x5c0/0x5c0 [ 36.599420] sock_sendmsg+0xc3/0x120 [ 36.603115] ___sys_sendmsg+0x3b3/0x8e0 [ 36.607072] ? copy_msghdr_from_user+0x440/0x440 [ 36.611810] ? __fget+0x32f/0x510 [ 36.615248] ? lock_downgrade+0x720/0x720 [ 36.619378] ? check_preemption_disabled+0x41/0x280 [ 36.624378] ? check_preemption_disabled+0x41/0x280 [ 36.629385] ? __fget+0x356/0x510 [ 36.632839] ? do_dup2+0x450/0x450 [ 36.636363] ? lock_downgrade+0x720/0x720 [ 36.640498] ? lock_acquire+0x170/0x3c0 [ 36.644458] ? __fdget+0x1d0/0x230 [ 36.647980] __sys_sendmmsg+0x195/0x470 [ 36.651943] ? __ia32_sys_sendmsg+0x220/0x220 [ 36.656422] ? __ia32_sys_getpeername+0xb0/0xb0 [ 36.661078] ? __sys_connect+0x140/0x2c0 [ 36.665135] ? __ia32_sys_accept+0xb0/0xb0 [ 36.669357] ? __se_sys_futex+0x28f/0x3b0 [ 36.673485] ? __se_sys_futex+0x298/0x3b0 [ 36.677619] ? do_futex+0x1880/0x1880 [ 36.681403] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 36.686767] __x64_sys_sendmmsg+0x99/0x100 [ 36.690994] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 36.695561] do_syscall_64+0xf9/0x620 [ 36.699344] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 36.704512] RIP: 0033:0x7f5d4a2bdb69 [ 36.708206] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 36.727087] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 36.734775] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 36.742028] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 36.749280] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 36.756540] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 36.763790] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 36.772975] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 36.783935] CPU: 1 PID: 8076 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 36.791829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 36.801188] Call Trace: [ 36.803782] dump_stack+0x1fc/0x2ef [ 36.807444] ccid3_update_send_interval.cold+0x87/0x93 [ 36.812709] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 36.817457] ? ccid3_update_send_interval+0x120/0x120 [ 36.822641] dccp_xmit_packet+0x27e/0x760 [ 36.826774] dccp_write_xmit+0x16d/0x1d0 [ 36.830819] dccp_sendmsg+0x8de/0xc90 [ 36.834609] ? aa_sk_perm+0x534/0x930 [ 36.838400] ? dccp_ioctl+0x160/0x160 [ 36.842191] ? aa_af_perm+0x230/0x230 [ 36.845981] ? kernel_recvmsg+0x220/0x220 [ 36.850123] inet_sendmsg+0x132/0x5a0 [ 36.853914] ? security_socket_sendmsg+0x83/0xb0 [ 36.858652] ? inet_recvmsg+0x5c0/0x5c0 [ 36.862615] sock_sendmsg+0xc3/0x120 [ 36.866311] ___sys_sendmsg+0x3b3/0x8e0 [ 36.870280] ? copy_msghdr_from_user+0x440/0x440 [ 36.875029] ? __fget+0x32f/0x510 [ 36.878477] ? lock_downgrade+0x720/0x720 [ 36.882617] ? check_preemption_disabled+0x41/0x280 [ 36.887739] ? check_preemption_disabled+0x41/0x280 [ 36.892750] ? __fget+0x356/0x510 [ 36.896228] ? do_dup2+0x450/0x450 [ 36.899755] ? lock_downgrade+0x720/0x720 [ 36.903890] ? lock_acquire+0x170/0x3c0 [ 36.907852] ? __fdget+0x1d0/0x230 [ 36.911379] __sys_sendmmsg+0x195/0x470 [ 36.915349] ? __ia32_sys_sendmsg+0x220/0x220 [ 36.919828] ? __ia32_sys_getpeername+0xb0/0xb0 [ 36.924481] ? __sys_connect+0x140/0x2c0 [ 36.928570] ? __ia32_sys_accept+0xb0/0xb0 [ 36.932798] ? __se_sys_futex+0x28f/0x3b0 [ 36.936939] ? __se_sys_futex+0x298/0x3b0 [ 36.941073] ? do_futex+0x1880/0x1880 [ 36.944867] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 36.950229] __x64_sys_sendmmsg+0x99/0x100 [ 36.954449] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 36.959040] do_syscall_64+0xf9/0x620 [ 36.962836] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 36.968006] RIP: 0033:0x7f5d4a2bdb69 [ 36.971701] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 36.990587] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 36.998279] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 37.005545] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 executing program [ 37.012797] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 37.020059] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 37.027310] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000037 [ 37.059284] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 37.069915] CPU: 1 PID: 8080 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 37.077789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 37.087128] Call Trace: [ 37.089756] dump_stack+0x1fc/0x2ef [ 37.093372] ccid3_update_send_interval.cold+0x87/0x93 [ 37.098634] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 37.103373] ? ccid3_update_send_interval+0x120/0x120 [ 37.108549] dccp_xmit_packet+0x27e/0x760 [ 37.112683] dccp_write_xmit+0x16d/0x1d0 [ 37.116738] dccp_sendmsg+0x8de/0xc90 [ 37.120528] ? aa_sk_perm+0x534/0x930 [ 37.124315] ? dccp_ioctl+0x160/0x160 [ 37.128107] ? aa_af_perm+0x230/0x230 [ 37.131937] ? kernel_recvmsg+0x220/0x220 [ 37.136073] inet_sendmsg+0x132/0x5a0 [ 37.139909] ? security_socket_sendmsg+0x83/0xb0 [ 37.144652] ? inet_recvmsg+0x5c0/0x5c0 [ 37.148611] sock_sendmsg+0xc3/0x120 [ 37.152334] ___sys_sendmsg+0x3b3/0x8e0 [ 37.156293] ? copy_msghdr_from_user+0x440/0x440 [ 37.161038] ? __fget+0x32f/0x510 [ 37.164476] ? lock_downgrade+0x720/0x720 [ 37.168608] ? check_preemption_disabled+0x41/0x280 [ 37.173617] ? check_preemption_disabled+0x41/0x280 [ 37.178627] ? __fget+0x356/0x510 [ 37.182065] ? do_dup2+0x450/0x450 [ 37.185590] ? lock_downgrade+0x720/0x720 [ 37.189729] ? lock_acquire+0x170/0x3c0 [ 37.193685] ? __fdget+0x1d0/0x230 [ 37.197215] __sys_sendmmsg+0x195/0x470 [ 37.201173] ? __ia32_sys_sendmsg+0x220/0x220 [ 37.205650] ? __ia32_sys_getpeername+0xb0/0xb0 [ 37.210307] ? __sys_connect+0x140/0x2c0 [ 37.214354] ? __ia32_sys_accept+0xb0/0xb0 [ 37.218573] ? __se_sys_futex+0x28f/0x3b0 [ 37.222701] ? __se_sys_futex+0x298/0x3b0 [ 37.226831] ? do_futex+0x1880/0x1880 [ 37.230616] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 37.235971] __x64_sys_sendmmsg+0x99/0x100 [ 37.240204] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 37.244772] do_syscall_64+0xf9/0x620 [ 37.248572] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 37.253759] RIP: 0033:0x7f5d4a2bdb69 [ 37.257456] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 37.276362] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 37.284066] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 37.291326] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 37.298578] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 37.305830] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 37.313098] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 37.322489] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 37.333083] CPU: 1 PID: 8080 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 37.340968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 37.350324] Call Trace: [ 37.352915] dump_stack+0x1fc/0x2ef [ 37.356566] ccid3_update_send_interval.cold+0x87/0x93 [ 37.361837] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 37.366595] ? ccid3_update_send_interval+0x120/0x120 [ 37.371782] dccp_xmit_packet+0x27e/0x760 [ 37.375916] dccp_write_xmit+0x16d/0x1d0 [ 37.379967] dccp_sendmsg+0x8de/0xc90 [ 37.383759] ? aa_sk_perm+0x534/0x930 [ 37.387545] ? dccp_ioctl+0x160/0x160 [ 37.391340] ? aa_af_perm+0x230/0x230 [ 37.395144] ? kernel_recvmsg+0x220/0x220 [ 37.399285] inet_sendmsg+0x132/0x5a0 [ 37.403077] ? security_socket_sendmsg+0x83/0xb0 [ 37.407824] ? inet_recvmsg+0x5c0/0x5c0 [ 37.411787] sock_sendmsg+0xc3/0x120 [ 37.415485] ___sys_sendmsg+0x3b3/0x8e0 [ 37.419445] ? copy_msghdr_from_user+0x440/0x440 [ 37.424194] ? __fget+0x32f/0x510 [ 37.427644] ? lock_downgrade+0x720/0x720 [ 37.431791] ? check_preemption_disabled+0x41/0x280 [ 37.436792] ? check_preemption_disabled+0x41/0x280 [ 37.441790] ? __fget+0x356/0x510 [ 37.445227] ? do_dup2+0x450/0x450 [ 37.448749] ? lock_downgrade+0x720/0x720 [ 37.452892] ? lock_acquire+0x170/0x3c0 [ 37.456850] ? __fdget+0x1d0/0x230 [ 37.460376] __sys_sendmmsg+0x195/0x470 [ 37.464338] ? __ia32_sys_sendmsg+0x220/0x220 [ 37.468812] ? __ia32_sys_getpeername+0xb0/0xb0 [ 37.473467] ? __sys_connect+0x140/0x2c0 [ 37.477509] ? __ia32_sys_accept+0xb0/0xb0 [ 37.481733] ? __se_sys_futex+0x28f/0x3b0 [ 37.485860] ? __se_sys_futex+0x298/0x3b0 [ 37.489999] ? do_futex+0x1880/0x1880 [ 37.493791] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 37.499140] __x64_sys_sendmmsg+0x99/0x100 [ 37.503364] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 37.507927] do_syscall_64+0xf9/0x620 [ 37.511717] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 37.516887] RIP: 0033:0x7f5d4a2bdb69 [ 37.520588] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 37.539477] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 37.547169] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 37.554422] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 executing program [ 37.561672] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 37.568924] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 37.576176] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000037 [ 37.607667] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 37.618238] CPU: 1 PID: 8082 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 37.626117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 37.635463] Call Trace: [ 37.638043] dump_stack+0x1fc/0x2ef [ 37.641657] ccid3_update_send_interval.cold+0x87/0x93 [ 37.646919] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 37.651658] ? ccid3_update_send_interval+0x120/0x120 [ 37.656832] dccp_xmit_packet+0x27e/0x760 [ 37.660963] dccp_write_xmit+0x16d/0x1d0 [ 37.665008] dccp_sendmsg+0x8de/0xc90 [ 37.668793] ? aa_sk_perm+0x534/0x930 [ 37.672576] ? dccp_ioctl+0x160/0x160 [ 37.676363] ? aa_af_perm+0x230/0x230 [ 37.680153] ? kernel_recvmsg+0x220/0x220 [ 37.684298] inet_sendmsg+0x132/0x5a0 [ 37.688082] ? security_socket_sendmsg+0x83/0xb0 [ 37.692822] ? inet_recvmsg+0x5c0/0x5c0 [ 37.696785] sock_sendmsg+0xc3/0x120 [ 37.700482] ___sys_sendmsg+0x3b3/0x8e0 [ 37.704441] ? copy_msghdr_from_user+0x440/0x440 [ 37.709183] ? __fget+0x32f/0x510 [ 37.712639] ? lock_downgrade+0x720/0x720 [ 37.716768] ? check_preemption_disabled+0x41/0x280 [ 37.721772] ? check_preemption_disabled+0x41/0x280 [ 37.726772] ? __fget+0x356/0x510 [ 37.730207] ? do_dup2+0x450/0x450 [ 37.733736] ? lock_downgrade+0x720/0x720 [ 37.737864] ? lock_acquire+0x170/0x3c0 [ 37.741823] ? __fdget+0x1d0/0x230 [ 37.745349] __sys_sendmmsg+0x195/0x470 [ 37.749311] ? __ia32_sys_sendmsg+0x220/0x220 [ 37.753790] ? __ia32_sys_getpeername+0xb0/0xb0 [ 37.758444] ? __sys_connect+0x140/0x2c0 [ 37.762488] ? __ia32_sys_accept+0xb0/0xb0 [ 37.766713] ? __se_sys_futex+0x28f/0x3b0 [ 37.770849] ? __se_sys_futex+0x298/0x3b0 [ 37.774988] ? do_futex+0x1880/0x1880 [ 37.778773] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 37.784118] __x64_sys_sendmmsg+0x99/0x100 [ 37.788351] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 37.792922] do_syscall_64+0xf9/0x620 [ 37.796711] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 37.801883] RIP: 0033:0x7f5d4a2bdb69 [ 37.805578] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 37.824464] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 37.832156] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 37.839409] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 37.846661] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 37.853917] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 37.861176] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 37.870741] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 37.881394] CPU: 1 PID: 8082 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 37.889280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 37.898617] Call Trace: [ 37.901195] dump_stack+0x1fc/0x2ef [ 37.904825] ccid3_update_send_interval.cold+0x87/0x93 [ 37.910093] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 37.914834] ? ccid3_update_send_interval+0x120/0x120 [ 37.920011] dccp_xmit_packet+0x27e/0x760 [ 37.924144] dccp_write_xmit+0x16d/0x1d0 [ 37.928192] dccp_sendmsg+0x8de/0xc90 [ 37.931978] ? aa_sk_perm+0x534/0x930 [ 37.935761] ? dccp_ioctl+0x160/0x160 [ 37.939552] ? aa_af_perm+0x230/0x230 [ 37.943337] ? kernel_recvmsg+0x220/0x220 [ 37.947473] inet_sendmsg+0x132/0x5a0 [ 37.951263] ? security_socket_sendmsg+0x83/0xb0 [ 37.955999] ? inet_recvmsg+0x5c0/0x5c0 [ 37.959956] sock_sendmsg+0xc3/0x120 [ 37.963654] ___sys_sendmsg+0x3b3/0x8e0 [ 37.967613] ? copy_msghdr_from_user+0x440/0x440 [ 37.972361] ? __fget+0x32f/0x510 [ 37.975803] ? lock_downgrade+0x720/0x720 [ 37.979935] ? check_preemption_disabled+0x41/0x280 [ 37.984950] ? check_preemption_disabled+0x41/0x280 [ 37.989951] ? __fget+0x356/0x510 [ 37.993389] ? do_dup2+0x450/0x450 [ 37.996911] ? lock_downgrade+0x720/0x720 [ 38.001063] ? lock_acquire+0x170/0x3c0 [ 38.005026] ? __fdget+0x1d0/0x230 [ 38.008552] __sys_sendmmsg+0x195/0x470 [ 38.012511] ? __ia32_sys_sendmsg+0x220/0x220 [ 38.016988] ? __ia32_sys_getpeername+0xb0/0xb0 [ 38.021660] ? __sys_connect+0x140/0x2c0 [ 38.025714] ? __ia32_sys_accept+0xb0/0xb0 [ 38.029931] ? __se_sys_futex+0x28f/0x3b0 [ 38.034059] ? __se_sys_futex+0x298/0x3b0 [ 38.038203] ? do_futex+0x1880/0x1880 [ 38.041989] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 38.047335] __x64_sys_sendmmsg+0x99/0x100 [ 38.051573] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 38.056139] do_syscall_64+0xf9/0x620 [ 38.059929] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 38.065100] RIP: 0033:0x7f5d4a2bdb69 [ 38.068797] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 38.087723] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 38.095416] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 38.102686] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 executing program [ 38.109973] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 38.117227] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 38.124479] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000037 [ 38.164393] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 38.175360] CPU: 0 PID: 8084 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 38.183236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 38.192580] Call Trace: [ 38.195156] dump_stack+0x1fc/0x2ef [ 38.198768] ccid3_update_send_interval.cold+0x87/0x93 [ 38.204029] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 38.208783] ? ccid3_update_send_interval+0x120/0x120 [ 38.213960] dccp_xmit_packet+0x27e/0x760 [ 38.218107] dccp_write_xmit+0x16d/0x1d0 [ 38.222155] dccp_sendmsg+0x8de/0xc90 [ 38.225941] ? aa_sk_perm+0x534/0x930 [ 38.229738] ? dccp_ioctl+0x160/0x160 [ 38.233519] ? aa_af_perm+0x230/0x230 [ 38.237322] ? kernel_recvmsg+0x220/0x220 [ 38.241455] inet_sendmsg+0x132/0x5a0 [ 38.245243] ? security_socket_sendmsg+0x83/0xb0 [ 38.249981] ? inet_recvmsg+0x5c0/0x5c0 [ 38.253943] sock_sendmsg+0xc3/0x120 [ 38.257659] ___sys_sendmsg+0x3b3/0x8e0 [ 38.261619] ? copy_msghdr_from_user+0x440/0x440 [ 38.266368] ? __fget+0x32f/0x510 [ 38.269807] ? lock_downgrade+0x720/0x720 [ 38.273940] ? check_preemption_disabled+0x41/0x280 [ 38.278940] ? check_preemption_disabled+0x41/0x280 [ 38.283968] ? __fget+0x356/0x510 [ 38.287406] ? do_dup2+0x450/0x450 [ 38.290931] ? lock_downgrade+0x720/0x720 [ 38.295060] ? lock_acquire+0x170/0x3c0 [ 38.299032] ? __fdget+0x1d0/0x230 [ 38.302561] __sys_sendmmsg+0x195/0x470 [ 38.306522] ? __ia32_sys_sendmsg+0x220/0x220 [ 38.311002] ? __ia32_sys_getpeername+0xb0/0xb0 [ 38.315657] ? __sys_connect+0x140/0x2c0 [ 38.319702] ? __ia32_sys_accept+0xb0/0xb0 [ 38.323926] ? __se_sys_futex+0x28f/0x3b0 [ 38.328058] ? __se_sys_futex+0x298/0x3b0 [ 38.332193] ? do_futex+0x1880/0x1880 [ 38.335982] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 38.341333] __x64_sys_sendmmsg+0x99/0x100 [ 38.345558] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 38.350136] do_syscall_64+0xf9/0x620 [ 38.353923] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 38.359095] RIP: 0033:0x7f5d4a2bdb69 [ 38.362790] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 38.381679] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 38.389375] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 38.396630] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 38.403883] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 executing program [ 38.411134] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 38.418383] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 38.451028] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 38.461670] CPU: 0 PID: 8086 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 38.469561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 38.478918] Call Trace: [ 38.481498] dump_stack+0x1fc/0x2ef [ 38.485114] ccid3_update_send_interval.cold+0x87/0x93 [ 38.490380] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 38.495123] ? ccid3_update_send_interval+0x120/0x120 [ 38.500298] dccp_xmit_packet+0x27e/0x760 [ 38.504435] dccp_write_xmit+0x16d/0x1d0 [ 38.508484] dccp_sendmsg+0x8de/0xc90 [ 38.512274] ? aa_sk_perm+0x534/0x930 [ 38.516071] ? dccp_ioctl+0x160/0x160 [ 38.519867] ? aa_af_perm+0x230/0x230 [ 38.523659] ? kernel_recvmsg+0x220/0x220 [ 38.527795] inet_sendmsg+0x132/0x5a0 [ 38.531583] ? security_socket_sendmsg+0x83/0xb0 [ 38.536322] ? inet_recvmsg+0x5c0/0x5c0 [ 38.540284] sock_sendmsg+0xc3/0x120 [ 38.543984] ___sys_sendmsg+0x3b3/0x8e0 [ 38.547941] ? copy_msghdr_from_user+0x440/0x440 [ 38.552681] ? __fget+0x32f/0x510 [ 38.556118] ? lock_downgrade+0x720/0x720 [ 38.560248] ? check_preemption_disabled+0x41/0x280 [ 38.565250] ? check_preemption_disabled+0x41/0x280 [ 38.570258] ? __fget+0x356/0x510 [ 38.573695] ? do_dup2+0x450/0x450 [ 38.577222] ? lock_downgrade+0x720/0x720 [ 38.581355] ? lock_acquire+0x170/0x3c0 [ 38.585313] ? __fdget+0x1d0/0x230 [ 38.588837] __sys_sendmmsg+0x195/0x470 [ 38.592794] ? __ia32_sys_sendmsg+0x220/0x220 [ 38.597272] ? __ia32_sys_getpeername+0xb0/0xb0 [ 38.601938] ? __sys_connect+0x140/0x2c0 [ 38.605995] ? __ia32_sys_accept+0xb0/0xb0 [ 38.610221] ? __se_sys_futex+0x28f/0x3b0 [ 38.614350] ? __se_sys_futex+0x298/0x3b0 [ 38.618483] ? do_futex+0x1880/0x1880 [ 38.622269] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 38.627622] __x64_sys_sendmmsg+0x99/0x100 [ 38.631844] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 38.636412] do_syscall_64+0xf9/0x620 [ 38.640200] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 38.645371] RIP: 0033:0x7f5d4a2bdb69 executing program [ 38.649064] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 38.667950] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 38.675640] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 38.682894] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 38.690146] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 38.697418] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 38.704669] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 38.738829] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 38.749424] CPU: 1 PID: 8088 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 38.757333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 38.766668] Call Trace: [ 38.769245] dump_stack+0x1fc/0x2ef [ 38.772857] ccid3_update_send_interval.cold+0x87/0x93 [ 38.778119] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 38.782867] ? ccid3_update_send_interval+0x120/0x120 [ 38.788036] dccp_xmit_packet+0x27e/0x760 [ 38.792171] dccp_write_xmit+0x16d/0x1d0 [ 38.796217] dccp_sendmsg+0x8de/0xc90 [ 38.800002] ? aa_sk_perm+0x534/0x930 [ 38.803783] ? dccp_ioctl+0x160/0x160 [ 38.807564] ? aa_af_perm+0x230/0x230 [ 38.811380] ? kernel_recvmsg+0x220/0x220 [ 38.815510] inet_sendmsg+0x132/0x5a0 [ 38.819307] ? security_socket_sendmsg+0x83/0xb0 [ 38.824068] ? inet_recvmsg+0x5c0/0x5c0 [ 38.828036] sock_sendmsg+0xc3/0x120 [ 38.831730] ___sys_sendmsg+0x3b3/0x8e0 [ 38.835704] ? copy_msghdr_from_user+0x440/0x440 [ 38.840446] ? __fget+0x32f/0x510 [ 38.843889] ? lock_downgrade+0x720/0x720 [ 38.848026] ? check_preemption_disabled+0x41/0x280 [ 38.853026] ? check_preemption_disabled+0x41/0x280 [ 38.858026] ? __fget+0x356/0x510 [ 38.861463] ? do_dup2+0x450/0x450 [ 38.864986] ? lock_downgrade+0x720/0x720 [ 38.869131] ? lock_acquire+0x170/0x3c0 [ 38.873086] ? __fdget+0x1d0/0x230 [ 38.876610] __sys_sendmmsg+0x195/0x470 [ 38.880570] ? __ia32_sys_sendmsg+0x220/0x220 [ 38.885065] ? __ia32_sys_getpeername+0xb0/0xb0 [ 38.889729] ? __sys_connect+0x140/0x2c0 [ 38.893771] ? __ia32_sys_accept+0xb0/0xb0 [ 38.897992] ? __se_sys_futex+0x28f/0x3b0 [ 38.902150] ? __se_sys_futex+0x298/0x3b0 [ 38.906369] ? do_futex+0x1880/0x1880 [ 38.910155] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 38.915501] __x64_sys_sendmmsg+0x99/0x100 [ 38.919721] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 38.924287] do_syscall_64+0xf9/0x620 [ 38.928077] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 38.933253] RIP: 0033:0x7f5d4a2bdb69 [ 38.936947] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 38.955831] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 38.963523] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 38.970773] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 38.978026] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 38.985279] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 38.992529] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 39.001993] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 39.012921] CPU: 1 PID: 8088 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 39.020808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 39.030145] Call Trace: [ 39.032719] dump_stack+0x1fc/0x2ef [ 39.036331] ccid3_update_send_interval.cold+0x87/0x93 [ 39.041595] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 39.046340] ? ccid3_update_send_interval+0x120/0x120 [ 39.051512] dccp_xmit_packet+0x27e/0x760 [ 39.055644] dccp_write_xmit+0x16d/0x1d0 [ 39.059689] dccp_sendmsg+0x8de/0xc90 [ 39.063474] ? aa_sk_perm+0x534/0x930 [ 39.067257] ? dccp_ioctl+0x160/0x160 [ 39.071040] ? aa_af_perm+0x230/0x230 [ 39.074822] ? kernel_recvmsg+0x220/0x220 [ 39.078953] inet_sendmsg+0x132/0x5a0 [ 39.082736] ? security_socket_sendmsg+0x83/0xb0 [ 39.087472] ? inet_recvmsg+0x5c0/0x5c0 [ 39.091429] sock_sendmsg+0xc3/0x120 [ 39.095124] ___sys_sendmsg+0x3b3/0x8e0 [ 39.099079] ? copy_msghdr_from_user+0x440/0x440 [ 39.103817] ? __fget+0x32f/0x510 [ 39.107256] ? lock_downgrade+0x720/0x720 [ 39.111387] ? check_preemption_disabled+0x41/0x280 [ 39.116392] ? check_preemption_disabled+0x41/0x280 [ 39.121407] ? __fget+0x356/0x510 [ 39.124865] ? do_dup2+0x450/0x450 [ 39.128407] ? lock_downgrade+0x720/0x720 [ 39.132540] ? lock_acquire+0x170/0x3c0 [ 39.136498] ? __fdget+0x1d0/0x230 [ 39.140022] __sys_sendmmsg+0x195/0x470 [ 39.143982] ? __ia32_sys_sendmsg+0x220/0x220 [ 39.148459] ? __ia32_sys_getpeername+0xb0/0xb0 [ 39.153114] ? __sys_connect+0x140/0x2c0 [ 39.157158] ? __ia32_sys_accept+0xb0/0xb0 [ 39.161388] ? __se_sys_futex+0x28f/0x3b0 [ 39.165519] ? __se_sys_futex+0x298/0x3b0 [ 39.169649] ? do_futex+0x1880/0x1880 [ 39.173434] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 39.178782] __x64_sys_sendmmsg+0x99/0x100 [ 39.183002] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 39.187567] do_syscall_64+0xf9/0x620 [ 39.191355] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 39.196528] RIP: 0033:0x7f5d4a2bdb69 [ 39.200226] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 39.219113] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 39.226803] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 39.234179] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 executing program [ 39.241431] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 39.248797] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 39.256050] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000037 [ 39.295280] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 39.306187] CPU: 0 PID: 8090 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 39.314056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 39.323392] Call Trace: [ 39.325969] dump_stack+0x1fc/0x2ef [ 39.329592] ccid3_update_send_interval.cold+0x87/0x93 [ 39.334854] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 39.339599] ? ccid3_update_send_interval+0x120/0x120 [ 39.344785] dccp_xmit_packet+0x27e/0x760 [ 39.348922] dccp_write_xmit+0x16d/0x1d0 [ 39.352970] dccp_sendmsg+0x8de/0xc90 [ 39.356766] ? aa_sk_perm+0x534/0x930 [ 39.360559] ? dccp_ioctl+0x160/0x160 [ 39.364339] ? aa_af_perm+0x230/0x230 [ 39.368124] ? kernel_recvmsg+0x220/0x220 [ 39.372255] inet_sendmsg+0x132/0x5a0 [ 39.376039] ? security_socket_sendmsg+0x83/0xb0 [ 39.380789] ? inet_recvmsg+0x5c0/0x5c0 [ 39.384743] sock_sendmsg+0xc3/0x120 [ 39.388445] ___sys_sendmsg+0x3b3/0x8e0 [ 39.392414] ? copy_msghdr_from_user+0x440/0x440 [ 39.397282] ? __fget+0x32f/0x510 [ 39.400721] ? lock_downgrade+0x720/0x720 [ 39.404854] ? check_preemption_disabled+0x41/0x280 [ 39.409862] ? check_preemption_disabled+0x41/0x280 [ 39.414868] ? __fget+0x356/0x510 [ 39.418304] ? do_dup2+0x450/0x450 [ 39.421837] ? lock_downgrade+0x720/0x720 [ 39.425972] ? lock_acquire+0x170/0x3c0 [ 39.429931] ? __fdget+0x1d0/0x230 [ 39.433456] __sys_sendmmsg+0x195/0x470 [ 39.437416] ? __ia32_sys_sendmsg+0x220/0x220 [ 39.441900] ? __ia32_sys_getpeername+0xb0/0xb0 [ 39.446568] ? __sys_connect+0x140/0x2c0 [ 39.450619] ? __ia32_sys_accept+0xb0/0xb0 [ 39.454850] ? __se_sys_futex+0x28f/0x3b0 [ 39.458985] ? __se_sys_futex+0x298/0x3b0 [ 39.463121] ? do_futex+0x1880/0x1880 [ 39.466908] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 39.472258] __x64_sys_sendmmsg+0x99/0x100 [ 39.476495] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 39.481061] do_syscall_64+0xf9/0x620 [ 39.484862] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 39.490042] RIP: 0033:0x7f5d4a2bdb69 [ 39.493741] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 39.512627] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 39.520320] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 39.527571] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 39.534830] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 executing program [ 39.542088] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 39.549340] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 39.581584] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 39.592209] CPU: 1 PID: 8092 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 39.600071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 39.609404] Call Trace: [ 39.611979] dump_stack+0x1fc/0x2ef [ 39.615594] ccid3_update_send_interval.cold+0x87/0x93 [ 39.620853] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 39.625587] ? ccid3_update_send_interval+0x120/0x120 [ 39.630757] dccp_xmit_packet+0x27e/0x760 [ 39.634886] dccp_write_xmit+0x16d/0x1d0 [ 39.638932] dccp_sendmsg+0x8de/0xc90 [ 39.642716] ? aa_sk_perm+0x534/0x930 [ 39.646521] ? dccp_ioctl+0x160/0x160 [ 39.650303] ? aa_af_perm+0x230/0x230 [ 39.654085] ? kernel_recvmsg+0x220/0x220 [ 39.658216] inet_sendmsg+0x132/0x5a0 [ 39.661998] ? security_socket_sendmsg+0x83/0xb0 [ 39.666737] ? inet_recvmsg+0x5c0/0x5c0 [ 39.670694] sock_sendmsg+0xc3/0x120 [ 39.674388] ___sys_sendmsg+0x3b3/0x8e0 [ 39.678346] ? copy_msghdr_from_user+0x440/0x440 [ 39.683086] ? __fget+0x32f/0x510 [ 39.686524] ? lock_downgrade+0x720/0x720 [ 39.690655] ? check_preemption_disabled+0x41/0x280 [ 39.695653] ? check_preemption_disabled+0x41/0x280 [ 39.700653] ? __fget+0x356/0x510 [ 39.704088] ? do_dup2+0x450/0x450 [ 39.707620] ? lock_downgrade+0x720/0x720 [ 39.711751] ? lock_acquire+0x170/0x3c0 [ 39.715709] ? __fdget+0x1d0/0x230 [ 39.719233] __sys_sendmmsg+0x195/0x470 [ 39.723189] ? __ia32_sys_sendmsg+0x220/0x220 [ 39.727663] ? __ia32_sys_getpeername+0xb0/0xb0 [ 39.732319] ? __sys_connect+0x140/0x2c0 [ 39.736361] ? __ia32_sys_accept+0xb0/0xb0 [ 39.740582] ? __se_sys_futex+0x28f/0x3b0 [ 39.744731] ? __se_sys_futex+0x298/0x3b0 [ 39.748861] ? do_futex+0x1880/0x1880 [ 39.752646] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 39.757993] __x64_sys_sendmmsg+0x99/0x100 [ 39.762213] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 39.766777] do_syscall_64+0xf9/0x620 [ 39.770562] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 39.775733] RIP: 0033:0x7f5d4a2bdb69 [ 39.779429] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 39.798313] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 39.806004] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 39.813256] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 39.820510] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 39.827761] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 39.835010] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 39.844478] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 39.855148] CPU: 1 PID: 8092 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 39.863035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 39.872372] Call Trace: [ 39.874945] dump_stack+0x1fc/0x2ef [ 39.878557] ccid3_update_send_interval.cold+0x87/0x93 [ 39.883818] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 39.888558] ? ccid3_update_send_interval+0x120/0x120 [ 39.893732] dccp_xmit_packet+0x27e/0x760 [ 39.897863] dccp_write_xmit+0x16d/0x1d0 [ 39.901905] dccp_sendmsg+0x8de/0xc90 [ 39.905689] ? aa_sk_perm+0x534/0x930 [ 39.909471] ? dccp_ioctl+0x160/0x160 [ 39.913251] ? aa_af_perm+0x230/0x230 [ 39.917142] ? kernel_recvmsg+0x220/0x220 [ 39.921283] inet_sendmsg+0x132/0x5a0 [ 39.925066] ? security_socket_sendmsg+0x83/0xb0 [ 39.929809] ? inet_recvmsg+0x5c0/0x5c0 [ 39.933766] sock_sendmsg+0xc3/0x120 [ 39.937461] ___sys_sendmsg+0x3b3/0x8e0 [ 39.941418] ? copy_msghdr_from_user+0x440/0x440 [ 39.946156] ? __fget+0x32f/0x510 [ 39.949594] ? lock_downgrade+0x720/0x720 [ 39.953726] ? check_preemption_disabled+0x41/0x280 [ 39.958726] ? check_preemption_disabled+0x41/0x280 [ 39.963725] ? __fget+0x356/0x510 [ 39.967161] ? do_dup2+0x450/0x450 [ 39.970682] ? lock_downgrade+0x720/0x720 [ 39.974806] ? lock_acquire+0x170/0x3c0 [ 39.978760] ? __fdget+0x1d0/0x230 [ 39.982281] __sys_sendmmsg+0x195/0x470 [ 39.986241] ? __ia32_sys_sendmsg+0x220/0x220 [ 39.990719] ? __ia32_sys_getpeername+0xb0/0xb0 [ 39.995375] ? __sys_connect+0x140/0x2c0 [ 39.999416] ? __ia32_sys_accept+0xb0/0xb0 [ 40.003635] ? __se_sys_futex+0x28f/0x3b0 [ 40.007767] ? __se_sys_futex+0x298/0x3b0 [ 40.011896] ? do_futex+0x1880/0x1880 [ 40.015682] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 40.021030] __x64_sys_sendmmsg+0x99/0x100 [ 40.025252] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 40.029817] do_syscall_64+0xf9/0x620 [ 40.033600] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 40.038772] RIP: 0033:0x7f5d4a2bdb69 [ 40.042475] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 40.061394] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 40.069086] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 40.076426] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 40.083685] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 40.090943] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c executing program [ 40.098196] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000037 [ 40.142710] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 40.153649] CPU: 0 PID: 8096 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 40.161518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.170874] Call Trace: [ 40.173458] dump_stack+0x1fc/0x2ef [ 40.177072] ccid3_update_send_interval.cold+0x87/0x93 [ 40.182339] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 40.187077] ? ccid3_update_send_interval+0x120/0x120 [ 40.192257] dccp_xmit_packet+0x27e/0x760 [ 40.196397] dccp_write_xmit+0x16d/0x1d0 [ 40.200444] dccp_sendmsg+0x8de/0xc90 [ 40.204228] ? aa_sk_perm+0x534/0x930 [ 40.208012] ? dccp_ioctl+0x160/0x160 [ 40.211794] ? aa_af_perm+0x230/0x230 [ 40.215589] ? kernel_recvmsg+0x220/0x220 [ 40.219720] inet_sendmsg+0x132/0x5a0 [ 40.223515] ? security_socket_sendmsg+0x83/0xb0 [ 40.228698] ? inet_recvmsg+0x5c0/0x5c0 [ 40.232657] sock_sendmsg+0xc3/0x120 [ 40.236354] ___sys_sendmsg+0x3b3/0x8e0 [ 40.240312] ? copy_msghdr_from_user+0x440/0x440 [ 40.245051] ? __fget+0x32f/0x510 [ 40.248489] ? lock_downgrade+0x720/0x720 [ 40.252622] ? check_preemption_disabled+0x41/0x280 [ 40.257625] ? check_preemption_disabled+0x41/0x280 [ 40.262647] ? __fget+0x356/0x510 [ 40.266087] ? do_dup2+0x450/0x450 [ 40.269615] ? lock_downgrade+0x720/0x720 [ 40.273742] ? lock_acquire+0x170/0x3c0 [ 40.277699] ? __fdget+0x1d0/0x230 [ 40.281222] __sys_sendmmsg+0x195/0x470 [ 40.285181] ? __ia32_sys_sendmsg+0x220/0x220 [ 40.289656] ? __ia32_sys_getpeername+0xb0/0xb0 [ 40.294310] ? __sys_connect+0x140/0x2c0 [ 40.298350] ? __ia32_sys_accept+0xb0/0xb0 [ 40.302576] ? __se_sys_futex+0x28f/0x3b0 [ 40.306707] ? __se_sys_futex+0x298/0x3b0 [ 40.310836] ? do_futex+0x1880/0x1880 [ 40.314621] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 40.319970] __x64_sys_sendmmsg+0x99/0x100 [ 40.324197] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 40.328759] do_syscall_64+0xf9/0x620 [ 40.332547] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 40.337721] RIP: 0033:0x7f5d4a2bdb69 [ 40.341414] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 40.360298] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 40.367992] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 40.375258] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 40.382511] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 executing program executing program [ 40.389766] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 40.397015] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 40.451777] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 40.462749] CPU: 0 PID: 8100 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 40.470618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.479977] Call Trace: [ 40.482573] dump_stack+0x1fc/0x2ef [ 40.486188] ccid3_update_send_interval.cold+0x87/0x93 [ 40.491452] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 40.496195] ? ccid3_update_send_interval+0x120/0x120 [ 40.501373] dccp_xmit_packet+0x27e/0x760 [ 40.505505] dccp_write_xmit+0x16d/0x1d0 [ 40.509560] dccp_sendmsg+0x8de/0xc90 [ 40.513348] ? aa_sk_perm+0x534/0x930 [ 40.517130] ? dccp_ioctl+0x160/0x160 [ 40.520913] ? aa_af_perm+0x230/0x230 [ 40.524702] ? kernel_recvmsg+0x220/0x220 [ 40.528836] inet_sendmsg+0x132/0x5a0 [ 40.532622] ? security_socket_sendmsg+0x83/0xb0 [ 40.537359] ? inet_recvmsg+0x5c0/0x5c0 [ 40.541325] sock_sendmsg+0xc3/0x120 [ 40.545022] ___sys_sendmsg+0x3b3/0x8e0 [ 40.548997] ? copy_msghdr_from_user+0x440/0x440 [ 40.553735] ? __fget+0x32f/0x510 [ 40.557175] ? lock_downgrade+0x720/0x720 [ 40.561304] ? check_preemption_disabled+0x41/0x280 [ 40.566308] ? check_preemption_disabled+0x41/0x280 [ 40.571310] ? __fget+0x356/0x510 [ 40.574747] ? do_dup2+0x450/0x450 [ 40.578272] ? lock_downgrade+0x720/0x720 [ 40.582402] ? lock_acquire+0x170/0x3c0 [ 40.586361] ? __fdget+0x1d0/0x230 [ 40.589885] __sys_sendmmsg+0x195/0x470 [ 40.593843] ? __ia32_sys_sendmsg+0x220/0x220 [ 40.598319] ? __ia32_sys_getpeername+0xb0/0xb0 [ 40.602980] ? __sys_connect+0x140/0x2c0 [ 40.607026] ? __ia32_sys_accept+0xb0/0xb0 [ 40.611249] ? __se_sys_futex+0x28f/0x3b0 [ 40.615375] ? __se_sys_futex+0x298/0x3b0 [ 40.619506] ? do_futex+0x1880/0x1880 [ 40.623291] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 40.628642] __x64_sys_sendmmsg+0x99/0x100 [ 40.632861] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 40.637423] do_syscall_64+0xf9/0x620 [ 40.641215] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 40.646392] RIP: 0033:0x7f5d4a2bdb69 [ 40.650091] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 40.668977] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 40.676668] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 40.683940] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 40.691191] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 executing program [ 40.698445] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 40.705694] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 40.738036] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 40.748646] CPU: 1 PID: 8102 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 40.756518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 40.765918] Call Trace: [ 40.768495] dump_stack+0x1fc/0x2ef [ 40.772110] ccid3_update_send_interval.cold+0x87/0x93 [ 40.777372] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 40.782111] ? ccid3_update_send_interval+0x120/0x120 [ 40.787282] dccp_xmit_packet+0x27e/0x760 [ 40.791410] dccp_write_xmit+0x16d/0x1d0 [ 40.795455] dccp_sendmsg+0x8de/0xc90 [ 40.799238] ? aa_sk_perm+0x534/0x930 [ 40.803022] ? dccp_ioctl+0x160/0x160 [ 40.806803] ? aa_af_perm+0x230/0x230 [ 40.810586] ? kernel_recvmsg+0x220/0x220 [ 40.814718] inet_sendmsg+0x132/0x5a0 [ 40.818503] ? security_socket_sendmsg+0x83/0xb0 [ 40.823242] ? inet_recvmsg+0x5c0/0x5c0 [ 40.827200] sock_sendmsg+0xc3/0x120 [ 40.830897] ___sys_sendmsg+0x3b3/0x8e0 [ 40.834855] ? copy_msghdr_from_user+0x440/0x440 [ 40.839594] ? __fget+0x32f/0x510 [ 40.843048] ? lock_downgrade+0x720/0x720 [ 40.847183] ? check_preemption_disabled+0x41/0x280 [ 40.852188] ? check_preemption_disabled+0x41/0x280 [ 40.857232] ? __fget+0x356/0x510 [ 40.860667] ? do_dup2+0x450/0x450 [ 40.864190] ? lock_downgrade+0x720/0x720 [ 40.868318] ? lock_acquire+0x170/0x3c0 [ 40.872276] ? __fdget+0x1d0/0x230 [ 40.875798] __sys_sendmmsg+0x195/0x470 [ 40.879756] ? __ia32_sys_sendmsg+0x220/0x220 [ 40.884228] ? __ia32_sys_getpeername+0xb0/0xb0 [ 40.888889] ? __sys_connect+0x140/0x2c0 [ 40.892932] ? __ia32_sys_accept+0xb0/0xb0 [ 40.897166] ? __se_sys_futex+0x28f/0x3b0 [ 40.901295] ? __se_sys_futex+0x298/0x3b0 [ 40.905427] ? do_futex+0x1880/0x1880 [ 40.909230] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 40.914576] __x64_sys_sendmmsg+0x99/0x100 [ 40.918802] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 40.923365] do_syscall_64+0xf9/0x620 [ 40.927148] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 40.932317] RIP: 0033:0x7f5d4a2bdb69 [ 40.936008] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 40.954902] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 40.962594] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 40.969842] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 40.977109] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 40.984362] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 40.991613] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 41.001272] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 41.012069] CPU: 1 PID: 8102 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 41.019953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.029289] Call Trace: [ 41.031863] dump_stack+0x1fc/0x2ef [ 41.035475] ccid3_update_send_interval.cold+0x87/0x93 [ 41.040754] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 41.045508] ? ccid3_update_send_interval+0x120/0x120 [ 41.050693] dccp_xmit_packet+0x27e/0x760 [ 41.054826] dccp_write_xmit+0x16d/0x1d0 [ 41.058981] dccp_sendmsg+0x8de/0xc90 [ 41.062837] ? aa_sk_perm+0x534/0x930 [ 41.066620] ? dccp_ioctl+0x160/0x160 [ 41.070452] ? aa_af_perm+0x230/0x230 [ 41.074235] ? kernel_recvmsg+0x220/0x220 [ 41.078369] inet_sendmsg+0x132/0x5a0 [ 41.082152] ? security_socket_sendmsg+0x83/0xb0 [ 41.086890] ? inet_recvmsg+0x5c0/0x5c0 [ 41.090881] sock_sendmsg+0xc3/0x120 [ 41.094576] ___sys_sendmsg+0x3b3/0x8e0 [ 41.098534] ? copy_msghdr_from_user+0x440/0x440 [ 41.103272] ? __fget+0x32f/0x510 [ 41.106736] ? lock_downgrade+0x720/0x720 [ 41.110867] ? check_preemption_disabled+0x41/0x280 [ 41.115866] ? check_preemption_disabled+0x41/0x280 [ 41.120869] ? __fget+0x356/0x510 [ 41.124323] ? do_dup2+0x450/0x450 [ 41.127846] ? lock_downgrade+0x720/0x720 [ 41.131982] ? lock_acquire+0x170/0x3c0 [ 41.135940] ? __fdget+0x1d0/0x230 [ 41.139465] __sys_sendmmsg+0x195/0x470 [ 41.143439] ? __ia32_sys_sendmsg+0x220/0x220 [ 41.147918] ? __ia32_sys_getpeername+0xb0/0xb0 [ 41.152574] ? __sys_connect+0x140/0x2c0 [ 41.156617] ? __ia32_sys_accept+0xb0/0xb0 [ 41.160834] ? __se_sys_futex+0x28f/0x3b0 [ 41.164966] ? __se_sys_futex+0x298/0x3b0 [ 41.169095] ? do_futex+0x1880/0x1880 [ 41.172884] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 41.178232] __x64_sys_sendmmsg+0x99/0x100 [ 41.182449] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 41.187015] do_syscall_64+0xf9/0x620 [ 41.190800] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 41.195972] RIP: 0033:0x7f5d4a2bdb69 [ 41.199672] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 41.218570] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 41.226263] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 41.233517] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 41.240770] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 41.248027] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c executing program [ 41.255286] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000037 [ 41.294515] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 41.305534] CPU: 0 PID: 8104 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 41.313403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.322744] Call Trace: [ 41.325375] dump_stack+0x1fc/0x2ef [ 41.328993] ccid3_update_send_interval.cold+0x87/0x93 [ 41.334255] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 41.339046] ? ccid3_update_send_interval+0x120/0x120 [ 41.344229] dccp_xmit_packet+0x27e/0x760 [ 41.348367] dccp_write_xmit+0x16d/0x1d0 [ 41.352415] dccp_sendmsg+0x8de/0xc90 [ 41.356204] ? aa_sk_perm+0x534/0x930 [ 41.359987] ? dccp_ioctl+0x160/0x160 [ 41.363779] ? aa_af_perm+0x230/0x230 [ 41.367576] ? kernel_recvmsg+0x220/0x220 [ 41.371770] inet_sendmsg+0x132/0x5a0 [ 41.375560] ? security_socket_sendmsg+0x83/0xb0 [ 41.380302] ? inet_recvmsg+0x5c0/0x5c0 [ 41.384263] sock_sendmsg+0xc3/0x120 [ 41.387973] ___sys_sendmsg+0x3b3/0x8e0 [ 41.391942] ? copy_msghdr_from_user+0x440/0x440 [ 41.396684] ? __fget+0x32f/0x510 [ 41.400124] ? lock_downgrade+0x720/0x720 [ 41.404255] ? check_preemption_disabled+0x41/0x280 [ 41.409262] ? check_preemption_disabled+0x41/0x280 [ 41.414268] ? __fget+0x356/0x510 [ 41.417705] ? do_dup2+0x450/0x450 [ 41.421253] ? lock_downgrade+0x720/0x720 [ 41.425382] ? lock_acquire+0x170/0x3c0 [ 41.429344] ? __fdget+0x1d0/0x230 [ 41.432871] __sys_sendmmsg+0x195/0x470 [ 41.436833] ? __ia32_sys_sendmsg+0x220/0x220 [ 41.441318] ? __ia32_sys_getpeername+0xb0/0xb0 [ 41.445977] ? __sys_connect+0x140/0x2c0 [ 41.450023] ? __ia32_sys_accept+0xb0/0xb0 [ 41.454247] ? __se_sys_futex+0x28f/0x3b0 [ 41.458383] ? __se_sys_futex+0x298/0x3b0 [ 41.462517] ? do_futex+0x1880/0x1880 [ 41.466304] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 41.471652] __x64_sys_sendmmsg+0x99/0x100 [ 41.475884] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 41.480464] do_syscall_64+0xf9/0x620 [ 41.484252] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 41.489422] RIP: 0033:0x7f5d4a2bdb69 executing program [ 41.493119] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 41.512008] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 41.519700] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 41.526952] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 41.534205] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 41.541455] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 41.548709] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 41.580573] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 41.591321] CPU: 1 PID: 8106 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 41.599194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.608540] Call Trace: [ 41.611113] dump_stack+0x1fc/0x2ef [ 41.614726] ccid3_update_send_interval.cold+0x87/0x93 [ 41.619992] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 41.624729] ? ccid3_update_send_interval+0x120/0x120 [ 41.629903] dccp_xmit_packet+0x27e/0x760 [ 41.634037] dccp_write_xmit+0x16d/0x1d0 [ 41.638084] dccp_sendmsg+0x8de/0xc90 [ 41.641872] ? aa_sk_perm+0x534/0x930 [ 41.645654] ? dccp_ioctl+0x160/0x160 [ 41.649437] ? aa_af_perm+0x230/0x230 [ 41.653222] ? kernel_recvmsg+0x220/0x220 [ 41.657358] inet_sendmsg+0x132/0x5a0 [ 41.661145] ? security_socket_sendmsg+0x83/0xb0 [ 41.665885] ? inet_recvmsg+0x5c0/0x5c0 [ 41.669858] sock_sendmsg+0xc3/0x120 [ 41.673556] ___sys_sendmsg+0x3b3/0x8e0 [ 41.677513] ? copy_msghdr_from_user+0x440/0x440 [ 41.682256] ? __fget+0x32f/0x510 [ 41.685695] ? lock_downgrade+0x720/0x720 [ 41.689829] ? check_preemption_disabled+0x41/0x280 [ 41.694831] ? check_preemption_disabled+0x41/0x280 [ 41.699834] ? __fget+0x356/0x510 [ 41.703269] ? do_dup2+0x450/0x450 [ 41.706796] ? lock_downgrade+0x720/0x720 [ 41.710925] ? lock_acquire+0x170/0x3c0 [ 41.714884] ? __fdget+0x1d0/0x230 [ 41.718414] __sys_sendmmsg+0x195/0x470 [ 41.722373] ? __ia32_sys_sendmsg+0x220/0x220 [ 41.726854] ? __ia32_sys_getpeername+0xb0/0xb0 [ 41.731513] ? __sys_connect+0x140/0x2c0 [ 41.735554] ? __ia32_sys_accept+0xb0/0xb0 [ 41.739773] ? __se_sys_futex+0x28f/0x3b0 [ 41.743901] ? __se_sys_futex+0x298/0x3b0 [ 41.748029] ? do_futex+0x1880/0x1880 [ 41.751829] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 41.757176] __x64_sys_sendmmsg+0x99/0x100 [ 41.761396] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 41.765964] do_syscall_64+0xf9/0x620 [ 41.769751] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 41.774923] RIP: 0033:0x7f5d4a2bdb69 [ 41.778618] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 41.797502] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 41.805193] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 41.812445] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 41.819696] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 executing program [ 41.826949] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 41.834198] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 41.873159] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 41.883857] CPU: 0 PID: 8108 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 41.891723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 41.901076] Call Trace: [ 41.903653] dump_stack+0x1fc/0x2ef [ 41.907266] ccid3_update_send_interval.cold+0x87/0x93 [ 41.912530] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 41.917270] ? ccid3_update_send_interval+0x120/0x120 [ 41.922453] dccp_xmit_packet+0x27e/0x760 [ 41.926594] dccp_write_xmit+0x16d/0x1d0 [ 41.930644] dccp_sendmsg+0x8de/0xc90 [ 41.934436] ? aa_sk_perm+0x534/0x930 [ 41.938229] ? dccp_ioctl+0x160/0x160 [ 41.942013] ? aa_af_perm+0x230/0x230 [ 41.945795] ? kernel_recvmsg+0x220/0x220 [ 41.949931] inet_sendmsg+0x132/0x5a0 [ 41.953733] ? security_socket_sendmsg+0x83/0xb0 [ 41.958481] ? inet_recvmsg+0x5c0/0x5c0 [ 41.962448] sock_sendmsg+0xc3/0x120 [ 41.966149] ___sys_sendmsg+0x3b3/0x8e0 [ 41.970116] ? copy_msghdr_from_user+0x440/0x440 [ 41.974857] ? __fget+0x32f/0x510 [ 41.978329] ? lock_downgrade+0x720/0x720 [ 41.982471] ? check_preemption_disabled+0x41/0x280 [ 41.987472] ? check_preemption_disabled+0x41/0x280 [ 41.992501] ? __fget+0x356/0x510 [ 41.995944] ? do_dup2+0x450/0x450 [ 41.999469] ? lock_downgrade+0x720/0x720 [ 42.003600] ? lock_acquire+0x170/0x3c0 [ 42.007562] ? __fdget+0x1d0/0x230 [ 42.011110] __sys_sendmmsg+0x195/0x470 [ 42.015078] ? __ia32_sys_sendmsg+0x220/0x220 [ 42.019563] ? __ia32_sys_getpeername+0xb0/0xb0 [ 42.024216] ? __sys_connect+0x140/0x2c0 [ 42.028278] ? __ia32_sys_accept+0xb0/0xb0 [ 42.032501] ? __se_sys_futex+0x28f/0x3b0 [ 42.036635] ? __se_sys_futex+0x298/0x3b0 [ 42.040792] ? do_futex+0x1880/0x1880 [ 42.044595] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 42.049956] __x64_sys_sendmmsg+0x99/0x100 [ 42.054177] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 42.058744] do_syscall_64+0xf9/0x620 [ 42.062531] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 42.067704] RIP: 0033:0x7f5d4a2bdb69 [ 42.071399] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 42.090287] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 42.098002] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 42.105264] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 42.112517] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 executing program executing program [ 42.119767] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 42.127024] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 42.176956] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 42.188006] CPU: 0 PID: 8112 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 42.195879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.205215] Call Trace: [ 42.207813] dump_stack+0x1fc/0x2ef [ 42.211426] ccid3_update_send_interval.cold+0x87/0x93 [ 42.216691] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 42.221432] ? ccid3_update_send_interval+0x120/0x120 [ 42.226604] dccp_xmit_packet+0x27e/0x760 [ 42.230736] dccp_write_xmit+0x16d/0x1d0 [ 42.234781] dccp_sendmsg+0x8de/0xc90 [ 42.238566] ? aa_sk_perm+0x534/0x930 [ 42.242347] ? dccp_ioctl+0x160/0x160 [ 42.246130] ? aa_af_perm+0x230/0x230 [ 42.249915] ? kernel_recvmsg+0x220/0x220 [ 42.254051] inet_sendmsg+0x132/0x5a0 [ 42.257838] ? security_socket_sendmsg+0x83/0xb0 [ 42.262582] ? inet_recvmsg+0x5c0/0x5c0 [ 42.266540] sock_sendmsg+0xc3/0x120 [ 42.270241] ___sys_sendmsg+0x3b3/0x8e0 [ 42.274199] ? copy_msghdr_from_user+0x440/0x440 [ 42.278936] ? __fget+0x32f/0x510 [ 42.282375] ? lock_downgrade+0x720/0x720 [ 42.286535] ? check_preemption_disabled+0x41/0x280 [ 42.291544] ? check_preemption_disabled+0x41/0x280 [ 42.296548] ? __fget+0x356/0x510 [ 42.299988] ? do_dup2+0x450/0x450 [ 42.303512] ? lock_downgrade+0x720/0x720 [ 42.307642] ? lock_acquire+0x170/0x3c0 [ 42.311610] ? __fdget+0x1d0/0x230 [ 42.315137] __sys_sendmmsg+0x195/0x470 [ 42.319097] ? __ia32_sys_sendmsg+0x220/0x220 [ 42.323572] ? __ia32_sys_getpeername+0xb0/0xb0 [ 42.328235] ? __sys_connect+0x140/0x2c0 [ 42.332275] ? __ia32_sys_accept+0xb0/0xb0 [ 42.336497] ? __se_sys_futex+0x28f/0x3b0 [ 42.340649] ? __se_sys_futex+0x298/0x3b0 [ 42.344784] ? do_futex+0x1880/0x1880 [ 42.348572] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 42.353921] __x64_sys_sendmmsg+0x99/0x100 [ 42.358140] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 42.362704] do_syscall_64+0xf9/0x620 [ 42.366504] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 42.371683] RIP: 0033:0x7f5d4a2bdb69 [ 42.375378] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 42.394263] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 42.401976] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 42.409229] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 42.416480] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 42.423734] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 42.431005] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 42.439983] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 42.451015] CPU: 1 PID: 8112 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 42.458908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.468248] Call Trace: [ 42.470832] dump_stack+0x1fc/0x2ef [ 42.474446] ccid3_update_send_interval.cold+0x87/0x93 [ 42.479716] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 42.484456] ? ccid3_update_send_interval+0x120/0x120 [ 42.489631] dccp_xmit_packet+0x27e/0x760 [ 42.493766] dccp_write_xmit+0x16d/0x1d0 [ 42.497815] dccp_sendmsg+0x8de/0xc90 [ 42.501601] ? aa_sk_perm+0x534/0x930 [ 42.505385] ? dccp_ioctl+0x160/0x160 [ 42.509166] ? aa_af_perm+0x230/0x230 [ 42.512953] ? kernel_recvmsg+0x220/0x220 [ 42.517096] inet_sendmsg+0x132/0x5a0 [ 42.520883] ? security_socket_sendmsg+0x83/0xb0 [ 42.525625] ? inet_recvmsg+0x5c0/0x5c0 [ 42.529581] sock_sendmsg+0xc3/0x120 [ 42.533277] ___sys_sendmsg+0x3b3/0x8e0 [ 42.537235] ? copy_msghdr_from_user+0x440/0x440 [ 42.541975] ? __fget+0x32f/0x510 [ 42.545413] ? lock_downgrade+0x720/0x720 [ 42.549542] ? check_preemption_disabled+0x41/0x280 [ 42.554540] ? check_preemption_disabled+0x41/0x280 [ 42.559543] ? __fget+0x356/0x510 [ 42.562983] ? do_dup2+0x450/0x450 [ 42.566509] ? lock_downgrade+0x720/0x720 [ 42.570651] ? lock_acquire+0x170/0x3c0 [ 42.574606] ? __fdget+0x1d0/0x230 [ 42.578131] __sys_sendmmsg+0x195/0x470 [ 42.582090] ? __ia32_sys_sendmsg+0x220/0x220 [ 42.586564] ? __ia32_sys_getpeername+0xb0/0xb0 [ 42.591219] ? __sys_connect+0x140/0x2c0 [ 42.595259] ? __ia32_sys_accept+0xb0/0xb0 [ 42.599480] ? __se_sys_futex+0x28f/0x3b0 [ 42.603609] ? __se_sys_futex+0x298/0x3b0 [ 42.607743] ? do_futex+0x1880/0x1880 [ 42.611544] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 42.616894] __x64_sys_sendmmsg+0x99/0x100 [ 42.621113] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 42.625676] do_syscall_64+0xf9/0x620 [ 42.629464] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 42.634636] RIP: 0033:0x7f5d4a2bdb69 [ 42.638333] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 42.657218] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 42.664917] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 42.672167] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 executing program [ 42.679422] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 42.686674] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 42.693924] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000037 [ 42.726030] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 42.736653] CPU: 1 PID: 8114 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 42.744520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 42.753859] Call Trace: [ 42.756434] dump_stack+0x1fc/0x2ef [ 42.760044] ccid3_update_send_interval.cold+0x87/0x93 [ 42.765304] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 42.770039] ? ccid3_update_send_interval+0x120/0x120 [ 42.775211] dccp_xmit_packet+0x27e/0x760 [ 42.779342] dccp_write_xmit+0x16d/0x1d0 [ 42.783386] dccp_sendmsg+0x8de/0xc90 [ 42.787177] ? aa_sk_perm+0x534/0x930 [ 42.791005] ? dccp_ioctl+0x160/0x160 [ 42.794793] ? aa_af_perm+0x230/0x230 [ 42.798582] ? kernel_recvmsg+0x220/0x220 [ 42.802728] inet_sendmsg+0x132/0x5a0 [ 42.806517] ? security_socket_sendmsg+0x83/0xb0 [ 42.811258] ? inet_recvmsg+0x5c0/0x5c0 [ 42.815214] sock_sendmsg+0xc3/0x120 [ 42.818908] ___sys_sendmsg+0x3b3/0x8e0 [ 42.822864] ? copy_msghdr_from_user+0x440/0x440 [ 42.827613] ? __fget+0x32f/0x510 [ 42.831053] ? lock_downgrade+0x720/0x720 [ 42.835185] ? check_preemption_disabled+0x41/0x280 [ 42.840183] ? check_preemption_disabled+0x41/0x280 [ 42.845182] ? __fget+0x356/0x510 [ 42.848624] ? do_dup2+0x450/0x450 [ 42.852157] ? lock_downgrade+0x720/0x720 [ 42.856313] ? lock_acquire+0x170/0x3c0 [ 42.860275] ? __fdget+0x1d0/0x230 [ 42.863806] __sys_sendmmsg+0x195/0x470 [ 42.867767] ? __ia32_sys_sendmsg+0x220/0x220 [ 42.872251] ? __ia32_sys_getpeername+0xb0/0xb0 [ 42.876911] ? io_schedule_timeout+0x140/0x140 [ 42.881477] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 42.886216] ? __se_sys_futex+0x28f/0x3b0 [ 42.890346] ? __se_sys_futex+0x298/0x3b0 [ 42.894478] ? do_futex+0x1880/0x1880 [ 42.898262] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 42.903613] __x64_sys_sendmmsg+0x99/0x100 [ 42.907834] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 42.912395] do_syscall_64+0xf9/0x620 [ 42.916195] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 42.921366] RIP: 0033:0x7f5d4a2bdb69 [ 42.925062] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 42.943971] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 42.951661] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 42.958915] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 42.966168] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 42.973418] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 42.980669] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 42.990477] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 43.001183] CPU: 1 PID: 8114 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 43.009073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 43.018417] Call Trace: [ 43.021005] dump_stack+0x1fc/0x2ef [ 43.024640] ccid3_update_send_interval.cold+0x87/0x93 [ 43.029911] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 43.034651] ? ccid3_update_send_interval+0x120/0x120 [ 43.039947] dccp_xmit_packet+0x27e/0x760 [ 43.044106] dccp_write_xmit+0x16d/0x1d0 [ 43.048150] dccp_sendmsg+0x8de/0xc90 [ 43.051938] ? aa_sk_perm+0x534/0x930 [ 43.055764] ? dccp_ioctl+0x160/0x160 [ 43.059724] ? aa_af_perm+0x230/0x230 [ 43.063505] ? kernel_recvmsg+0x220/0x220 [ 43.067637] inet_sendmsg+0x132/0x5a0 [ 43.071423] ? security_socket_sendmsg+0x83/0xb0 [ 43.076173] ? inet_recvmsg+0x5c0/0x5c0 [ 43.080133] sock_sendmsg+0xc3/0x120 [ 43.083832] ___sys_sendmsg+0x3b3/0x8e0 [ 43.087795] ? copy_msghdr_from_user+0x440/0x440 [ 43.092541] ? __fget+0x32f/0x510 [ 43.095981] ? lock_downgrade+0x720/0x720 [ 43.100111] ? check_preemption_disabled+0x41/0x280 [ 43.105113] ? check_preemption_disabled+0x41/0x280 [ 43.110112] ? __fget+0x356/0x510 [ 43.113550] ? do_dup2+0x450/0x450 [ 43.117072] ? lock_downgrade+0x720/0x720 [ 43.121202] ? lock_acquire+0x170/0x3c0 [ 43.125158] ? __fdget+0x1d0/0x230 [ 43.128686] __sys_sendmmsg+0x195/0x470 [ 43.132643] ? __ia32_sys_sendmsg+0x220/0x220 [ 43.137118] ? __ia32_sys_getpeername+0xb0/0xb0 [ 43.141781] ? io_schedule_timeout+0x140/0x140 [ 43.146347] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 43.151090] ? __se_sys_futex+0x28f/0x3b0 [ 43.155220] ? __se_sys_futex+0x298/0x3b0 [ 43.159353] ? do_futex+0x1880/0x1880 [ 43.163139] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 43.168490] __x64_sys_sendmmsg+0x99/0x100 [ 43.172711] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 43.177277] do_syscall_64+0xf9/0x620 [ 43.181063] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 43.186237] RIP: 0033:0x7f5d4a2bdb69 [ 43.189934] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 43.208817] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 43.216512] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 executing program [ 43.223766] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 43.231016] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 43.238267] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 43.245525] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000037 [ 43.288505] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 43.299566] CPU: 0 PID: 8118 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 43.307435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 43.316770] Call Trace: [ 43.319349] dump_stack+0x1fc/0x2ef [ 43.322962] ccid3_update_send_interval.cold+0x87/0x93 [ 43.328225] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 43.332975] ? ccid3_update_send_interval+0x120/0x120 [ 43.338146] dccp_xmit_packet+0x27e/0x760 [ 43.342282] dccp_write_xmit+0x16d/0x1d0 [ 43.346328] dccp_sendmsg+0x8de/0xc90 [ 43.350111] ? aa_sk_perm+0x534/0x930 [ 43.353892] ? dccp_ioctl+0x160/0x160 [ 43.357684] ? aa_af_perm+0x230/0x230 [ 43.361466] ? kernel_recvmsg+0x220/0x220 [ 43.365601] inet_sendmsg+0x132/0x5a0 [ 43.369391] ? security_socket_sendmsg+0x83/0xb0 [ 43.374132] ? inet_recvmsg+0x5c0/0x5c0 [ 43.378087] sock_sendmsg+0xc3/0x120 [ 43.381810] ___sys_sendmsg+0x3b3/0x8e0 [ 43.385767] ? copy_msghdr_from_user+0x440/0x440 [ 43.390504] ? __fget+0x32f/0x510 [ 43.393941] ? lock_downgrade+0x720/0x720 [ 43.398072] ? check_preemption_disabled+0x41/0x280 [ 43.403097] ? check_preemption_disabled+0x41/0x280 [ 43.408110] ? __fget+0x356/0x510 [ 43.411548] ? do_dup2+0x450/0x450 [ 43.415074] ? lock_downgrade+0x720/0x720 [ 43.419204] ? lock_acquire+0x170/0x3c0 [ 43.423161] ? __fdget+0x1d0/0x230 [ 43.426686] __sys_sendmmsg+0x195/0x470 [ 43.430645] ? __ia32_sys_sendmsg+0x220/0x220 [ 43.435120] ? __ia32_sys_getpeername+0xb0/0xb0 [ 43.439773] ? __sys_connect+0x140/0x2c0 [ 43.443815] ? __ia32_sys_accept+0xb0/0xb0 [ 43.448058] ? __se_sys_futex+0x28f/0x3b0 [ 43.452189] ? __se_sys_futex+0x298/0x3b0 [ 43.456321] ? do_futex+0x1880/0x1880 [ 43.460129] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 43.465479] __x64_sys_sendmmsg+0x99/0x100 [ 43.469700] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 43.474274] do_syscall_64+0xf9/0x620 [ 43.478061] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 43.483230] RIP: 0033:0x7f5d4a2bdb69 [ 43.486924] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 43.505811] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 43.513503] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 43.520767] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 43.528018] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 43.535272] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 43.542529] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 43.551626] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 43.562233] CPU: 1 PID: 8118 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 43.570111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 43.579495] Call Trace: [ 43.582083] dump_stack+0x1fc/0x2ef [ 43.585701] ccid3_update_send_interval.cold+0x87/0x93 [ 43.590968] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 43.595730] ? ccid3_update_send_interval+0x120/0x120 [ 43.600904] dccp_xmit_packet+0x27e/0x760 [ 43.605049] dccp_write_xmit+0x16d/0x1d0 [ 43.609103] dccp_sendmsg+0x8de/0xc90 [ 43.612891] ? aa_sk_perm+0x534/0x930 [ 43.616682] ? dccp_ioctl+0x160/0x160 [ 43.620471] ? aa_af_perm+0x230/0x230 [ 43.624254] ? kernel_recvmsg+0x220/0x220 [ 43.628386] inet_sendmsg+0x132/0x5a0 [ 43.632184] ? security_socket_sendmsg+0x83/0xb0 [ 43.636923] ? inet_recvmsg+0x5c0/0x5c0 [ 43.640877] sock_sendmsg+0xc3/0x120 [ 43.644578] ___sys_sendmsg+0x3b3/0x8e0 [ 43.648537] ? copy_msghdr_from_user+0x440/0x440 [ 43.653277] ? __fget+0x32f/0x510 [ 43.656734] ? lock_downgrade+0x720/0x720 [ 43.660870] ? check_preemption_disabled+0x41/0x280 [ 43.665874] ? check_preemption_disabled+0x41/0x280 [ 43.670879] ? __fget+0x356/0x510 [ 43.674319] ? do_dup2+0x450/0x450 [ 43.677862] ? lock_downgrade+0x720/0x720 [ 43.681993] ? lock_acquire+0x170/0x3c0 [ 43.685957] ? __fdget+0x1d0/0x230 [ 43.689480] __sys_sendmmsg+0x195/0x470 [ 43.693440] ? __ia32_sys_sendmsg+0x220/0x220 [ 43.697934] ? __ia32_sys_getpeername+0xb0/0xb0 [ 43.702606] ? __sys_connect+0x140/0x2c0 [ 43.706648] ? __ia32_sys_accept+0xb0/0xb0 [ 43.710874] ? __se_sys_futex+0x28f/0x3b0 [ 43.715001] ? __se_sys_futex+0x298/0x3b0 [ 43.719144] ? do_futex+0x1880/0x1880 [ 43.722936] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 43.728286] __x64_sys_sendmmsg+0x99/0x100 [ 43.732507] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 43.737069] do_syscall_64+0xf9/0x620 [ 43.740855] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 43.746024] RIP: 0033:0x7f5d4a2bdb69 [ 43.749724] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 43.768611] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 43.776300] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 43.783561] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 executing program [ 43.790821] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 43.798074] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 43.805326] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000037 [ 43.837862] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 43.848436] CPU: 1 PID: 8120 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 43.856302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 43.865637] Call Trace: [ 43.868217] dump_stack+0x1fc/0x2ef [ 43.871830] ccid3_update_send_interval.cold+0x87/0x93 [ 43.877092] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 43.881834] ? ccid3_update_send_interval+0x120/0x120 [ 43.887014] dccp_xmit_packet+0x27e/0x760 [ 43.891156] dccp_write_xmit+0x16d/0x1d0 [ 43.895205] dccp_sendmsg+0x8de/0xc90 [ 43.898990] ? aa_sk_perm+0x534/0x930 [ 43.902777] ? dccp_ioctl+0x160/0x160 [ 43.906567] ? aa_af_perm+0x230/0x230 [ 43.910359] ? kernel_recvmsg+0x220/0x220 [ 43.914491] inet_sendmsg+0x132/0x5a0 [ 43.918296] ? security_socket_sendmsg+0x83/0xb0 [ 43.923032] ? inet_recvmsg+0x5c0/0x5c0 [ 43.926991] sock_sendmsg+0xc3/0x120 [ 43.930695] ___sys_sendmsg+0x3b3/0x8e0 [ 43.934656] ? copy_msghdr_from_user+0x440/0x440 [ 43.939401] ? __fget+0x32f/0x510 [ 43.942855] ? lock_downgrade+0x720/0x720 [ 43.947005] ? check_preemption_disabled+0x41/0x280 [ 43.952009] ? check_preemption_disabled+0x41/0x280 [ 43.957014] ? __fget+0x356/0x510 [ 43.960461] ? do_dup2+0x450/0x450 [ 43.964005] ? lock_downgrade+0x720/0x720 [ 43.968136] ? lock_acquire+0x170/0x3c0 [ 43.972103] ? __fdget+0x1d0/0x230 [ 43.975640] __sys_sendmmsg+0x195/0x470 [ 43.979609] ? __ia32_sys_sendmsg+0x220/0x220 [ 43.984087] ? __ia32_sys_getpeername+0xb0/0xb0 [ 43.988757] ? __sys_connect+0x140/0x2c0 [ 43.992806] ? __ia32_sys_accept+0xb0/0xb0 [ 43.997027] ? __se_sys_futex+0x28f/0x3b0 [ 44.001156] ? __se_sys_futex+0x298/0x3b0 [ 44.005288] ? do_futex+0x1880/0x1880 [ 44.009073] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 44.014423] __x64_sys_sendmmsg+0x99/0x100 [ 44.018644] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 44.023209] do_syscall_64+0xf9/0x620 [ 44.027020] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 44.032226] RIP: 0033:0x7f5d4a2bdb69 [ 44.035937] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 44.054837] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 44.062530] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 44.069789] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 44.077053] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 44.084318] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 44.091589] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 44.100946] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 44.111704] CPU: 1 PID: 8120 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 44.119590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 44.128931] Call Trace: [ 44.131510] dump_stack+0x1fc/0x2ef [ 44.135124] ccid3_update_send_interval.cold+0x87/0x93 [ 44.140388] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 44.145130] ? ccid3_update_send_interval+0x120/0x120 [ 44.150303] dccp_xmit_packet+0x27e/0x760 [ 44.154436] dccp_write_xmit+0x16d/0x1d0 [ 44.158479] dccp_sendmsg+0x8de/0xc90 [ 44.162264] ? aa_sk_perm+0x534/0x930 [ 44.166045] ? dccp_ioctl+0x160/0x160 [ 44.169828] ? aa_af_perm+0x230/0x230 [ 44.173613] ? kernel_recvmsg+0x220/0x220 [ 44.177744] inet_sendmsg+0x132/0x5a0 [ 44.181530] ? security_socket_sendmsg+0x83/0xb0 [ 44.186281] ? inet_recvmsg+0x5c0/0x5c0 [ 44.190240] sock_sendmsg+0xc3/0x120 [ 44.193935] ___sys_sendmsg+0x3b3/0x8e0 [ 44.197904] ? copy_msghdr_from_user+0x440/0x440 [ 44.202643] ? __fget+0x32f/0x510 [ 44.206084] ? lock_downgrade+0x720/0x720 [ 44.210215] ? check_preemption_disabled+0x41/0x280 [ 44.215218] ? check_preemption_disabled+0x41/0x280 [ 44.220238] ? __fget+0x356/0x510 [ 44.223677] ? do_dup2+0x450/0x450 [ 44.227200] ? lock_downgrade+0x720/0x720 [ 44.231328] ? lock_acquire+0x170/0x3c0 [ 44.235309] ? __fdget+0x1d0/0x230 [ 44.238834] __sys_sendmmsg+0x195/0x470 [ 44.242792] ? __ia32_sys_sendmsg+0x220/0x220 [ 44.247267] ? __ia32_sys_getpeername+0xb0/0xb0 [ 44.251925] ? __sys_connect+0x140/0x2c0 [ 44.255966] ? __ia32_sys_accept+0xb0/0xb0 [ 44.260186] ? __se_sys_futex+0x28f/0x3b0 [ 44.264339] ? __se_sys_futex+0x298/0x3b0 [ 44.268469] ? do_futex+0x1880/0x1880 [ 44.272252] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 44.277605] __x64_sys_sendmmsg+0x99/0x100 [ 44.281825] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 44.286394] do_syscall_64+0xf9/0x620 [ 44.290184] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 44.295367] RIP: 0033:0x7f5d4a2bdb69 [ 44.299061] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 44.318032] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 44.325722] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 44.332990] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 executing program [ 44.340244] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 44.347539] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 44.354791] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000037 [ 44.393558] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 44.404468] CPU: 0 PID: 8122 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 44.412338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 44.421676] Call Trace: [ 44.424252] dump_stack+0x1fc/0x2ef [ 44.427865] ccid3_update_send_interval.cold+0x87/0x93 [ 44.433131] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 44.437871] ? ccid3_update_send_interval+0x120/0x120 [ 44.443044] dccp_xmit_packet+0x27e/0x760 [ 44.447178] dccp_write_xmit+0x16d/0x1d0 [ 44.451230] dccp_sendmsg+0x8de/0xc90 [ 44.455023] ? aa_sk_perm+0x534/0x930 [ 44.458805] ? dccp_ioctl+0x160/0x160 [ 44.462589] ? aa_af_perm+0x230/0x230 [ 44.466376] ? kernel_recvmsg+0x220/0x220 [ 44.470512] inet_sendmsg+0x132/0x5a0 [ 44.474314] ? security_socket_sendmsg+0x83/0xb0 [ 44.479054] ? inet_recvmsg+0x5c0/0x5c0 [ 44.483130] sock_sendmsg+0xc3/0x120 [ 44.486916] ___sys_sendmsg+0x3b3/0x8e0 [ 44.490874] ? copy_msghdr_from_user+0x440/0x440 [ 44.495615] ? __fget+0x32f/0x510 [ 44.499057] ? lock_downgrade+0x720/0x720 [ 44.503186] ? check_preemption_disabled+0x41/0x280 [ 44.508187] ? check_preemption_disabled+0x41/0x280 [ 44.513189] ? __fget+0x356/0x510 [ 44.516625] ? do_dup2+0x450/0x450 [ 44.520150] ? lock_downgrade+0x720/0x720 [ 44.524286] ? lock_acquire+0x170/0x3c0 [ 44.528254] ? __fdget+0x1d0/0x230 [ 44.531781] __sys_sendmmsg+0x195/0x470 [ 44.535738] ? __ia32_sys_sendmsg+0x220/0x220 [ 44.540216] ? __ia32_sys_getpeername+0xb0/0xb0 [ 44.544870] ? __sys_connect+0x140/0x2c0 [ 44.548917] ? __ia32_sys_accept+0xb0/0xb0 [ 44.553144] ? __se_sys_futex+0x28f/0x3b0 [ 44.557271] ? __se_sys_futex+0x298/0x3b0 [ 44.561411] ? do_futex+0x1880/0x1880 [ 44.565207] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 44.570557] __x64_sys_sendmmsg+0x99/0x100 [ 44.574795] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 44.579361] do_syscall_64+0xf9/0x620 [ 44.583151] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 44.588322] RIP: 0033:0x7f5d4a2bdb69 [ 44.592018] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 44.610901] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 44.618591] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 44.625842] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 44.633094] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 executing program [ 44.640347] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 44.647613] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 44.680037] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 44.690656] CPU: 1 PID: 8124 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 44.698527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 44.707874] Call Trace: [ 44.710449] dump_stack+0x1fc/0x2ef [ 44.714060] ccid3_update_send_interval.cold+0x87/0x93 [ 44.719322] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 44.724061] ? ccid3_update_send_interval+0x120/0x120 [ 44.729238] dccp_xmit_packet+0x27e/0x760 [ 44.733369] dccp_write_xmit+0x16d/0x1d0 [ 44.737431] dccp_sendmsg+0x8de/0xc90 [ 44.741217] ? aa_sk_perm+0x534/0x930 [ 44.745013] ? dccp_ioctl+0x160/0x160 [ 44.748828] ? aa_af_perm+0x230/0x230 [ 44.752615] ? kernel_recvmsg+0x220/0x220 [ 44.756769] inet_sendmsg+0x132/0x5a0 [ 44.760589] ? security_socket_sendmsg+0x83/0xb0 [ 44.765329] ? inet_recvmsg+0x5c0/0x5c0 [ 44.769288] sock_sendmsg+0xc3/0x120 [ 44.772987] ___sys_sendmsg+0x3b3/0x8e0 [ 44.776953] ? copy_msghdr_from_user+0x440/0x440 [ 44.781690] ? __fget+0x32f/0x510 [ 44.785126] ? lock_downgrade+0x720/0x720 [ 44.789255] ? check_preemption_disabled+0x41/0x280 [ 44.794254] ? check_preemption_disabled+0x41/0x280 [ 44.799251] ? __fget+0x356/0x510 [ 44.802687] ? do_dup2+0x450/0x450 [ 44.806212] ? lock_downgrade+0x720/0x720 [ 44.810343] ? lock_acquire+0x170/0x3c0 [ 44.814301] ? __fdget+0x1d0/0x230 [ 44.817826] __sys_sendmmsg+0x195/0x470 [ 44.821782] ? __ia32_sys_sendmsg+0x220/0x220 [ 44.826271] ? __ia32_sys_getpeername+0xb0/0xb0 [ 44.830992] ? __sys_connect+0x140/0x2c0 [ 44.835032] ? __ia32_sys_accept+0xb0/0xb0 [ 44.839254] ? __se_sys_futex+0x28f/0x3b0 [ 44.843383] ? __se_sys_futex+0x298/0x3b0 [ 44.847519] ? do_futex+0x1880/0x1880 [ 44.851306] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 44.856659] __x64_sys_sendmmsg+0x99/0x100 [ 44.860879] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 44.865553] do_syscall_64+0xf9/0x620 [ 44.869339] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 44.874513] RIP: 0033:0x7f5d4a2bdb69 [ 44.878207] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 44.897088] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 44.904777] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 44.912033] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 44.919284] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 [ 44.926537] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 44.933787] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000039 [ 44.943818] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 44.954508] CPU: 1 PID: 8124 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 44.962393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 44.971731] Call Trace: [ 44.974307] dump_stack+0x1fc/0x2ef [ 44.977920] ccid3_update_send_interval.cold+0x87/0x93 [ 44.983180] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 44.987920] ? ccid3_update_send_interval+0x120/0x120 [ 44.993090] dccp_xmit_packet+0x27e/0x760 [ 44.997221] dccp_write_xmit+0x16d/0x1d0 [ 45.001263] dccp_sendmsg+0x8de/0xc90 [ 45.005050] ? aa_sk_perm+0x534/0x930 [ 45.008834] ? dccp_ioctl+0x160/0x160 [ 45.012692] ? aa_af_perm+0x230/0x230 [ 45.016474] ? kernel_recvmsg+0x220/0x220 [ 45.020609] inet_sendmsg+0x132/0x5a0 [ 45.024393] ? security_socket_sendmsg+0x83/0xb0 [ 45.029128] ? inet_recvmsg+0x5c0/0x5c0 [ 45.033084] sock_sendmsg+0xc3/0x120 [ 45.036778] ___sys_sendmsg+0x3b3/0x8e0 [ 45.040734] ? copy_msghdr_from_user+0x440/0x440 [ 45.045476] ? __fget+0x32f/0x510 [ 45.048913] ? lock_downgrade+0x720/0x720 [ 45.053043] ? check_preemption_disabled+0x41/0x280 [ 45.058043] ? check_preemption_disabled+0x41/0x280 [ 45.063047] ? __fget+0x356/0x510 [ 45.066486] ? do_dup2+0x450/0x450 [ 45.070028] ? lock_downgrade+0x720/0x720 [ 45.074174] ? lock_acquire+0x170/0x3c0 [ 45.078262] ? __fdget+0x1d0/0x230 [ 45.081792] __sys_sendmmsg+0x195/0x470 [ 45.085755] ? __ia32_sys_sendmsg+0x220/0x220 [ 45.090236] ? __ia32_sys_getpeername+0xb0/0xb0 [ 45.094892] ? __sys_connect+0x140/0x2c0 [ 45.098934] ? __ia32_sys_accept+0xb0/0xb0 [ 45.103155] ? __se_sys_futex+0x28f/0x3b0 [ 45.107282] ? __se_sys_futex+0x298/0x3b0 [ 45.111413] ? do_futex+0x1880/0x1880 [ 45.115195] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 45.120540] __x64_sys_sendmmsg+0x99/0x100 [ 45.124758] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 45.129323] do_syscall_64+0xf9/0x620 [ 45.133107] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 45.138281] RIP: 0033:0x7f5d4a2bdb69 [ 45.141978] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 45.160867] RSP: 002b:00007f5d4a26f2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 45.168558] RAX: ffffffffffffffda RBX: 00007f5d4a345408 RCX: 00007f5d4a2bdb69 [ 45.175812] RDX: 0000000000000001 RSI: 0000000020000fc0 RDI: 0000000000000004 [ 45.183076] RBP: 00007f5d4a345400 R08: 0000000000000000 R09: 0000000000000000 executing program [ 45.190339] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5d4a34540c [ 45.197590] R13: 00007f5d4a313074 R14: e7594119f9b8c840 R15: 0000000000000037 [ 45.235589] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 45.246522] CPU: 0 PID: 8126 Comm: syz-executor851 Not tainted 4.19.211-syzkaller #0 [ 45.254409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 45.263767] Call Trace: [ 45.266342] dump_stack+0x1fc/0x2ef [ 45.269954] ccid3_update_send_interval.cold+0x87/0x93 [ 45.275214] ccid3_hc_tx_packet_sent+0x12e/0x160 [ 45.279951] ? ccid3_update_send_interval+0x120/0x120 [ 45.285153] dccp_xmit_packet+0x27e/0x760 [ 45.289292] dccp_write_xmit+0x16d/0x1d0 [ 45.293338] dccp_sendmsg+0x8de/0xc90 [ 45.297126] ? aa_sk_perm+0x534/0x930 [ 45.300908] ? dccp_ioctl+0x160/0x160 [ 45.304700] ? aa_af_perm+0x230/0x230 [ 45.308507] ? kernel_recvmsg+0x220/0x220 [ 45.312725] inet_sendmsg+0x132/0x5a0 [ 45.316510] ? security_socket_sendmsg+0x83/0xb0 [ 45.321245] ? inet_recvmsg+0x5c0/0x5c0 [ 45.325199] sock_sendmsg+0xc3/0x120 [ 45.328895] ___sys_sendmsg+0x3b3/0x8e0 [ 45.332855] ? copy_msghdr_from_user+0x440/0x440 [ 45.337611] ? __fget+0x32f/0x510 [ 45.341050] ? lock_downgrade+0x720/0x720 [ 45.345177] ? check_preemption_disabled+0x41/0x280 [ 45.350178] ? check_preemption_disabled+0x41/0x280 [ 45.355176] ? __fget+0x356/0x510 [ 45.358611] ? do_dup2+0x450/0x450 [ 45.362137] ? lock_downgrade+0x720/0x720 [ 45.366264] ? lock_acquire+0x170/0x3c0 [ 45.370221] ? __fdget+0x1d0/0x230 [ 45.373745] __sys_sendmmsg+0x195/0x470 [ 45.377717] ? __ia32_sys_sendmsg+0x220/0x220 [ 45.382198] ? __ia32_sys_getpeername+0xb0/0xb0 [ 45.386862] ? __sys_connect+0x140/0x2c0 [ 45.390904] ? __ia32_sys_accept+0xb0/0xb0