[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.44' (ECDSA) to the list of known hosts. syzkaller login: [ 29.483517] IPVS: ftp: loaded support on port[0] = 21 [ 29.547965] chnl_net:caif_netlink_parms(): no params data found [ 29.654496] bridge0: port 1(bridge_slave_0) entered blocking state [ 29.661170] bridge0: port 1(bridge_slave_0) entered disabled state [ 29.668727] device bridge_slave_0 entered promiscuous mode [ 29.675394] bridge0: port 2(bridge_slave_1) entered blocking state [ 29.681988] bridge0: port 2(bridge_slave_1) entered disabled state [ 29.689760] device bridge_slave_1 entered promiscuous mode [ 29.705285] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 29.713755] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 29.730535] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 29.737624] team0: Port device team_slave_0 added [ 29.742854] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 29.750236] team0: Port device team_slave_1 added [ 29.763733] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 29.769998] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 29.795494] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 29.807578] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 29.813805] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 29.839514] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 29.853082] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 29.860379] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 29.878550] device hsr_slave_0 entered promiscuous mode [ 29.884101] device hsr_slave_1 entered promiscuous mode [ 29.890536] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 29.897701] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 29.953879] bridge0: port 2(bridge_slave_1) entered blocking state [ 29.960284] bridge0: port 2(bridge_slave_1) entered forwarding state [ 29.967121] bridge0: port 1(bridge_slave_0) entered blocking state [ 29.973464] bridge0: port 1(bridge_slave_0) entered forwarding state [ 29.999586] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 30.006762] 8021q: adding VLAN 0 to HW filter on device bond0 [ 30.014101] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 30.022554] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 30.031316] bridge0: port 1(bridge_slave_0) entered disabled state [ 30.048493] bridge0: port 2(bridge_slave_1) entered disabled state [ 30.057666] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 30.063718] 8021q: adding VLAN 0 to HW filter on device team0 [ 30.072356] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 30.079996] bridge0: port 1(bridge_slave_0) entered blocking state [ 30.086371] bridge0: port 1(bridge_slave_0) entered forwarding state [ 30.095074] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 30.102804] bridge0: port 2(bridge_slave_1) entered blocking state [ 30.109176] bridge0: port 2(bridge_slave_1) entered forwarding state [ 30.127456] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 30.135026] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 30.143298] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 30.150947] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 30.159007] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 30.167987] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 30.173970] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 30.185748] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 30.192736] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 30.199689] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 30.210538] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 30.258507] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready [ 30.268351] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 30.296991] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready [ 30.303983] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready [ 30.311399] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready [ 30.320105] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 30.327692] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 30.334426] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 30.343399] device veth0_vlan entered promiscuous mode [ 30.351619] device veth1_vlan entered promiscuous mode [ 30.358228] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready [ 30.366507] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready [ 30.377094] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready [ 30.385782] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 30.392804] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 30.400202] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 30.409711] device veth0_macvtap entered promiscuous mode [ 30.416499] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready [ 30.423995] device veth1_macvtap entered promiscuous mode [ 30.432384] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready [ 30.441951] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready [ 30.451407] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 30.459063] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 30.467258] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 30.476931] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 30.486227] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready executing program [ 30.536139] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready executing program [ 30.631512] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 30.642289] CPU: 1 PID: 8209 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 30.650152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 30.659483] Call Trace: [ 30.662049] dump_stack+0x1b2/0x281 [ 30.665653] ccid3_update_send_interval.cold+0x87/0x93 [ 30.670908] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 30.675640] ? ccid3_update_send_interval+0x100/0x100 [ 30.680803] dccp_xmit_packet+0x24b/0x6d0 [ 30.684931] dccp_write_xmit+0x140/0x1a0 [ 30.688972] dccp_sendmsg+0x708/0x880 [ 30.692756] ? dccp_ioctl+0x150/0x150 [ 30.696531] ? copy_msghdr_from_user+0x218/0x3b0 [ 30.701261] ? kernel_recvmsg+0x210/0x210 [ 30.705384] inet_sendmsg+0x11a/0x4e0 [ 30.709159] ? security_socket_sendmsg+0x83/0xb0 [ 30.713888] ? inet_recvmsg+0x4d0/0x4d0 [ 30.717837] sock_sendmsg+0xb5/0x100 [ 30.721527] ___sys_sendmsg+0x326/0x800 [ 30.725494] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 30.730227] ? trace_hardirqs_on+0x10/0x10 [ 30.734438] ? trace_hardirqs_on+0x10/0x10 [ 30.738646] ? __lock_acquire+0x5fc/0x3f20 [ 30.742855] ? lock_acquire+0x170/0x3f0 [ 30.746807] ? __inet_stream_connect+0x936/0xb90 [ 30.751537] ? __might_fault+0x104/0x1b0 [ 30.755577] ? lock_acquire+0x170/0x3f0 [ 30.759528] ? __fdget+0x167/0x1f0 [ 30.763042] ? sockfd_lookup_light+0xb2/0x160 [ 30.767511] __sys_sendmmsg+0x129/0x330 [ 30.771462] ? SyS_sendmsg+0x40/0x40 [ 30.775157] ? inet_stream_connect+0x76/0xa0 [ 30.779544] ? up_read+0x17/0x30 [ 30.782885] SyS_sendmmsg+0x2f/0x50 [ 30.786486] ? __sys_sendmmsg+0x330/0x330 [ 30.790611] do_syscall_64+0x1d5/0x640 [ 30.794476] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 30.799639] RIP: 0033:0x7f11a65e1d19 [ 30.803330] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 30.811016] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f11a65e1d19 [ 30.818260] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 30.825503] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 30.832753] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 30.840001] R13: 00000000000f4240 R14: 0000000000007778 R15: 00007ffd07233894 [ 30.850578] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 30.861400] CPU: 1 PID: 8209 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 30.869278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 30.878613] Call Trace: [ 30.881179] dump_stack+0x1b2/0x281 [ 30.884871] ccid3_update_send_interval.cold+0x87/0x93 [ 30.890133] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 30.894867] ? ccid3_update_send_interval+0x100/0x100 [ 30.900032] dccp_xmit_packet+0x24b/0x6d0 [ 30.904155] dccp_write_xmit+0x140/0x1a0 [ 30.908195] dccp_sendmsg+0x708/0x880 [ 30.911976] ? dccp_ioctl+0x150/0x150 [ 30.916460] ? copy_msghdr_from_user+0x218/0x3b0 [ 30.921196] ? kernel_recvmsg+0x210/0x210 [ 30.925323] inet_sendmsg+0x11a/0x4e0 [ 30.929101] ? security_socket_sendmsg+0x83/0xb0 [ 30.933830] ? inet_recvmsg+0x4d0/0x4d0 [ 30.937784] sock_sendmsg+0xb5/0x100 [ 30.941476] ___sys_sendmsg+0x326/0x800 [ 30.945431] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 30.950164] ? trace_hardirqs_on+0x10/0x10 [ 30.954377] ? trace_hardirqs_on+0x10/0x10 [ 30.958590] ? __lock_acquire+0x5fc/0x3f20 [ 30.962802] ? lock_acquire+0x170/0x3f0 [ 30.966751] ? __inet_stream_connect+0x936/0xb90 [ 30.971481] ? __might_fault+0x104/0x1b0 [ 30.975520] ? lock_acquire+0x170/0x3f0 [ 30.979473] ? __fdget+0x167/0x1f0 [ 30.982988] ? sockfd_lookup_light+0xb2/0x160 [ 30.987460] __sys_sendmmsg+0x129/0x330 [ 30.991413] ? SyS_sendmsg+0x40/0x40 [ 30.995107] ? inet_stream_connect+0x76/0xa0 [ 30.999504] ? up_read+0x17/0x30 [ 31.002854] SyS_sendmmsg+0x2f/0x50 [ 31.006454] ? __sys_sendmmsg+0x330/0x330 [ 31.010582] do_syscall_64+0x1d5/0x640 [ 31.014446] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 31.019607] RIP: 0033:0x7f11a65e1d19 [ 31.023293] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 executing program [ 31.030974] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f11a65e1d19 [ 31.038217] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 31.045461] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 31.052705] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 31.059952] R13: 00000000000f4240 R14: 0000000000007778 R15: 00007ffd07233894 executing program [ 31.147381] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 31.157920] CPU: 1 PID: 8211 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 31.165789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 31.175117] Call Trace: [ 31.177680] dump_stack+0x1b2/0x281 [ 31.181295] ccid3_update_send_interval.cold+0x87/0x93 [ 31.186559] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 31.191288] ? ccid3_update_send_interval+0x100/0x100 [ 31.196450] dccp_xmit_packet+0x24b/0x6d0 [ 31.200572] dccp_write_xmit+0x140/0x1a0 [ 31.204607] dccp_sendmsg+0x708/0x880 [ 31.208383] ? dccp_ioctl+0x150/0x150 [ 31.212159] ? copy_msghdr_from_user+0x218/0x3b0 [ 31.216887] ? kernel_recvmsg+0x210/0x210 [ 31.221012] inet_sendmsg+0x11a/0x4e0 [ 31.224797] ? security_socket_sendmsg+0x83/0xb0 [ 31.229533] ? inet_recvmsg+0x4d0/0x4d0 [ 31.233489] sock_sendmsg+0xb5/0x100 [ 31.237182] ___sys_sendmsg+0x326/0x800 [ 31.241132] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 31.245865] ? trace_hardirqs_on+0x10/0x10 [ 31.250071] ? trace_hardirqs_on+0x10/0x10 [ 31.254311] ? __lock_acquire+0x5fc/0x3f20 [ 31.258532] ? lock_acquire+0x170/0x3f0 [ 31.262494] ? __inet_stream_connect+0x936/0xb90 [ 31.267225] ? __might_fault+0x104/0x1b0 [ 31.271283] ? lock_acquire+0x170/0x3f0 [ 31.275239] ? __fdget+0x167/0x1f0 [ 31.278755] ? sockfd_lookup_light+0xb2/0x160 [ 31.283257] __sys_sendmmsg+0x129/0x330 [ 31.287215] ? SyS_sendmsg+0x40/0x40 [ 31.290913] ? inet_stream_connect+0x76/0xa0 [ 31.295311] ? up_read+0x17/0x30 [ 31.298669] SyS_sendmmsg+0x2f/0x50 [ 31.302279] ? __sys_sendmmsg+0x330/0x330 [ 31.306407] do_syscall_64+0x1d5/0x640 [ 31.310279] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 31.315451] RIP: 0033:0x7f11a65e1d19 [ 31.319143] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 31.326839] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f11a65e1d19 [ 31.334203] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 31.341458] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 31.348706] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 31.355952] R13: 00000000000f4240 R14: 000000000000797e R15: 00007ffd07233894 [ 31.365813] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 31.376359] CPU: 1 PID: 8211 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 31.384222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 31.393574] Call Trace: [ 31.396171] dump_stack+0x1b2/0x281 [ 31.399780] ccid3_update_send_interval.cold+0x87/0x93 [ 31.405040] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 31.409775] ? ccid3_update_send_interval+0x100/0x100 [ 31.414944] dccp_xmit_packet+0x24b/0x6d0 [ 31.419068] dccp_write_xmit+0x140/0x1a0 [ 31.423104] dccp_sendmsg+0x708/0x880 [ 31.426889] ? dccp_ioctl+0x150/0x150 [ 31.430673] ? copy_msghdr_from_user+0x218/0x3b0 [ 31.435404] ? kernel_recvmsg+0x210/0x210 [ 31.439532] inet_sendmsg+0x11a/0x4e0 [ 31.443410] ? security_socket_sendmsg+0x83/0xb0 [ 31.448144] ? inet_recvmsg+0x4d0/0x4d0 [ 31.452183] sock_sendmsg+0xb5/0x100 [ 31.455908] ___sys_sendmsg+0x326/0x800 [ 31.459863] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 31.464603] ? trace_hardirqs_on+0x10/0x10 [ 31.468812] ? trace_hardirqs_on+0x10/0x10 [ 31.473024] ? __lock_acquire+0x5fc/0x3f20 [ 31.477237] ? lock_acquire+0x170/0x3f0 [ 31.481191] ? __inet_stream_connect+0x936/0xb90 [ 31.485924] ? __might_fault+0x104/0x1b0 [ 31.489962] ? lock_acquire+0x170/0x3f0 [ 31.493916] ? __fdget+0x167/0x1f0 [ 31.497435] ? sockfd_lookup_light+0xb2/0x160 [ 31.501907] __sys_sendmmsg+0x129/0x330 [ 31.505856] ? SyS_sendmsg+0x40/0x40 [ 31.509558] ? inet_stream_connect+0x76/0xa0 [ 31.513952] ? up_read+0x17/0x30 [ 31.517301] SyS_sendmmsg+0x2f/0x50 [ 31.520904] ? __sys_sendmmsg+0x330/0x330 [ 31.525032] do_syscall_64+0x1d5/0x640 [ 31.528928] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 31.534092] RIP: 0033:0x7f11a65e1d19 [ 31.537777] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 executing program [ 31.545460] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f11a65e1d19 [ 31.552705] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 31.559953] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 31.567203] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 31.574446] R13: 00000000000f4240 R14: 000000000000797e R15: 00007ffd07233894 executing program [ 31.665130] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 31.676129] CPU: 1 PID: 8213 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 31.683996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 31.693328] Call Trace: [ 31.695902] dump_stack+0x1b2/0x281 [ 31.699512] ccid3_update_send_interval.cold+0x87/0x93 [ 31.704765] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 31.709493] ? ccid3_update_send_interval+0x100/0x100 [ 31.714656] dccp_xmit_packet+0x24b/0x6d0 [ 31.718778] dccp_write_xmit+0x140/0x1a0 [ 31.722814] dccp_sendmsg+0x708/0x880 [ 31.726589] ? dccp_ioctl+0x150/0x150 [ 31.730364] ? copy_msghdr_from_user+0x218/0x3b0 [ 31.735096] ? kernel_recvmsg+0x210/0x210 [ 31.739222] inet_sendmsg+0x11a/0x4e0 [ 31.742995] ? security_socket_sendmsg+0x83/0xb0 [ 31.747734] ? inet_recvmsg+0x4d0/0x4d0 [ 31.751682] sock_sendmsg+0xb5/0x100 [ 31.755370] ___sys_sendmsg+0x326/0x800 [ 31.759317] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 31.764048] ? trace_hardirqs_on+0x10/0x10 [ 31.768258] ? trace_hardirqs_on+0x10/0x10 [ 31.772467] ? __lock_acquire+0x5fc/0x3f20 [ 31.776678] ? lock_acquire+0x170/0x3f0 [ 31.780633] ? __inet_stream_connect+0x936/0xb90 [ 31.785370] ? __might_fault+0x104/0x1b0 [ 31.789405] ? lock_acquire+0x170/0x3f0 [ 31.793355] ? __fdget+0x167/0x1f0 [ 31.796873] ? sockfd_lookup_light+0xb2/0x160 [ 31.801351] __sys_sendmmsg+0x129/0x330 [ 31.805301] ? SyS_sendmsg+0x40/0x40 [ 31.808993] ? inet_stream_connect+0x76/0xa0 [ 31.813381] ? up_read+0x17/0x30 [ 31.816723] SyS_sendmmsg+0x2f/0x50 [ 31.820325] ? __sys_sendmmsg+0x330/0x330 [ 31.824449] do_syscall_64+0x1d5/0x640 [ 31.828315] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 31.833478] RIP: 0033:0x7f11a65e1d19 [ 31.837165] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 31.844853] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f11a65e1d19 [ 31.852098] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 31.859342] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 31.866586] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 31.873829] R13: 00000000000f4240 R14: 0000000000007b81 R15: 00007ffd07233894 [ 31.882140] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 31.893901] CPU: 1 PID: 8213 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 31.901776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 31.911106] Call Trace: [ 31.913671] dump_stack+0x1b2/0x281 [ 31.917275] ccid3_update_send_interval.cold+0x87/0x93 [ 31.922534] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 31.927265] ? ccid3_update_send_interval+0x100/0x100 [ 31.932428] dccp_xmit_packet+0x24b/0x6d0 [ 31.936550] dccp_write_xmit+0x140/0x1a0 [ 31.940590] dccp_sendmsg+0x708/0x880 [ 31.944366] ? dccp_ioctl+0x150/0x150 [ 31.948140] ? copy_msghdr_from_user+0x218/0x3b0 [ 31.952870] ? kernel_recvmsg+0x210/0x210 [ 31.956994] inet_sendmsg+0x11a/0x4e0 [ 31.960771] ? security_socket_sendmsg+0x83/0xb0 [ 31.965505] ? inet_recvmsg+0x4d0/0x4d0 [ 31.969454] sock_sendmsg+0xb5/0x100 [ 31.973140] ___sys_sendmsg+0x326/0x800 [ 31.977088] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 31.981830] ? trace_hardirqs_on+0x10/0x10 [ 31.986040] ? trace_hardirqs_on+0x10/0x10 [ 31.990248] ? __lock_acquire+0x5fc/0x3f20 [ 31.994458] ? lock_acquire+0x170/0x3f0 [ 31.998408] ? __inet_stream_connect+0x936/0xb90 [ 32.003137] ? __might_fault+0x104/0x1b0 [ 32.007174] ? lock_acquire+0x170/0x3f0 [ 32.011126] ? __fdget+0x167/0x1f0 [ 32.014639] ? sockfd_lookup_light+0xb2/0x160 [ 32.019111] __sys_sendmmsg+0x129/0x330 [ 32.023112] ? SyS_sendmsg+0x40/0x40 [ 32.026805] ? inet_stream_connect+0x76/0xa0 [ 32.031193] ? up_read+0x17/0x30 [ 32.034533] SyS_sendmmsg+0x2f/0x50 [ 32.038135] ? __sys_sendmmsg+0x330/0x330 [ 32.042258] do_syscall_64+0x1d5/0x640 [ 32.046124] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 32.051286] RIP: 0033:0x7f11a65e1d19 [ 32.054979] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 executing program [ 32.062666] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f11a65e1d19 [ 32.069911] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 32.077159] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 32.084408] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 32.091657] R13: 00000000000f4240 R14: 0000000000007b81 R15: 00007ffd07233894 executing program executing program [ 32.218380] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 32.228923] CPU: 1 PID: 8218 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 32.236796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 32.246130] Call Trace: [ 32.248699] dump_stack+0x1b2/0x281 [ 32.252305] ccid3_update_send_interval.cold+0x87/0x93 [ 32.257560] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 32.262291] ? ccid3_update_send_interval+0x100/0x100 [ 32.267457] dccp_xmit_packet+0x24b/0x6d0 [ 32.271584] dccp_write_xmit+0x140/0x1a0 [ 32.275626] dccp_sendmsg+0x708/0x880 [ 32.279405] ? dccp_ioctl+0x150/0x150 [ 32.283202] ? copy_msghdr_from_user+0x218/0x3b0 [ 32.287938] ? kernel_recvmsg+0x210/0x210 [ 32.292079] inet_sendmsg+0x11a/0x4e0 [ 32.295860] ? security_socket_sendmsg+0x83/0xb0 [ 32.300590] ? inet_recvmsg+0x4d0/0x4d0 [ 32.304540] sock_sendmsg+0xb5/0x100 [ 32.308228] ___sys_sendmsg+0x326/0x800 [ 32.312178] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 32.316910] ? trace_hardirqs_on+0x10/0x10 [ 32.321119] ? trace_hardirqs_on+0x10/0x10 [ 32.325327] ? __lock_acquire+0x5fc/0x3f20 [ 32.329537] ? lock_acquire+0x170/0x3f0 [ 32.333489] ? __inet_stream_connect+0x936/0xb90 [ 32.338220] ? __might_fault+0x104/0x1b0 [ 32.342260] ? lock_acquire+0x170/0x3f0 [ 32.346211] ? __fdget+0x167/0x1f0 [ 32.349725] ? sockfd_lookup_light+0xb2/0x160 [ 32.354201] __sys_sendmmsg+0x129/0x330 [ 32.358151] ? SyS_sendmsg+0x40/0x40 [ 32.361842] ? inet_stream_connect+0x76/0xa0 [ 32.366234] ? up_read+0x17/0x30 [ 32.369579] SyS_sendmmsg+0x2f/0x50 [ 32.373192] ? __sys_sendmmsg+0x330/0x330 [ 32.377314] do_syscall_64+0x1d5/0x640 [ 32.381194] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 32.386365] RIP: 0033:0x7f11a65e1d19 [ 32.390058] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 32.397739] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f11a65e1d19 [ 32.404990] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 32.412334] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 32.419585] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 32.426834] R13: 00000000000f4240 R14: 0000000000007db2 R15: 00007ffd07233894 [ 32.436450] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 32.447192] CPU: 1 PID: 8218 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 32.455067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 32.464400] Call Trace: [ 32.466970] dump_stack+0x1b2/0x281 [ 32.470576] ccid3_update_send_interval.cold+0x87/0x93 [ 32.475830] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 32.480567] ? ccid3_update_send_interval+0x100/0x100 [ 32.485733] dccp_xmit_packet+0x24b/0x6d0 [ 32.489858] dccp_write_xmit+0x140/0x1a0 [ 32.493900] dccp_sendmsg+0x708/0x880 [ 32.497677] ? dccp_ioctl+0x150/0x150 [ 32.501457] ? copy_msghdr_from_user+0x218/0x3b0 [ 32.506188] ? kernel_recvmsg+0x210/0x210 [ 32.510311] inet_sendmsg+0x11a/0x4e0 [ 32.514089] ? security_socket_sendmsg+0x83/0xb0 [ 32.518819] ? inet_recvmsg+0x4d0/0x4d0 [ 32.522772] sock_sendmsg+0xb5/0x100 [ 32.526462] ___sys_sendmsg+0x326/0x800 [ 32.530409] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 32.535229] ? trace_hardirqs_on+0x10/0x10 [ 32.539439] ? trace_hardirqs_on+0x10/0x10 [ 32.543647] ? __lock_acquire+0x5fc/0x3f20 [ 32.547856] ? lock_acquire+0x170/0x3f0 [ 32.551809] ? __inet_stream_connect+0x936/0xb90 [ 32.556540] ? __might_fault+0x104/0x1b0 [ 32.560577] ? lock_acquire+0x170/0x3f0 [ 32.564526] ? __fdget+0x167/0x1f0 [ 32.568049] ? sockfd_lookup_light+0xb2/0x160 [ 32.572522] __sys_sendmmsg+0x129/0x330 [ 32.576474] ? SyS_sendmsg+0x40/0x40 [ 32.580169] ? inet_stream_connect+0x76/0xa0 [ 32.584563] ? up_read+0x17/0x30 [ 32.587904] SyS_sendmmsg+0x2f/0x50 [ 32.591504] ? __sys_sendmmsg+0x330/0x330 [ 32.595632] do_syscall_64+0x1d5/0x640 [ 32.599500] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 32.604669] RIP: 0033:0x7f11a65e1d19 [ 32.608362] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 executing program executing program [ 32.616043] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f11a65e1d19 [ 32.623285] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 32.630527] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 32.637774] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 32.645018] R13: 00000000000f4240 R14: 0000000000007db2 R15: 00007ffd07233894 [ 32.732314] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 32.742862] CPU: 0 PID: 8220 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 32.750716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 32.760047] Call Trace: [ 32.762614] dump_stack+0x1b2/0x281 [ 32.766224] ccid3_update_send_interval.cold+0x87/0x93 [ 32.771484] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 32.776218] ? ccid3_update_send_interval+0x100/0x100 [ 32.781381] dccp_xmit_packet+0x24b/0x6d0 [ 32.785509] dccp_write_xmit+0x140/0x1a0 [ 32.789548] dccp_sendmsg+0x708/0x880 [ 32.793336] ? dccp_ioctl+0x150/0x150 [ 32.797121] ? copy_msghdr_from_user+0x218/0x3b0 [ 32.801948] ? kernel_recvmsg+0x210/0x210 [ 32.806072] inet_sendmsg+0x11a/0x4e0 [ 32.809853] ? security_socket_sendmsg+0x83/0xb0 [ 32.814590] ? inet_recvmsg+0x4d0/0x4d0 [ 32.818541] sock_sendmsg+0xb5/0x100 [ 32.822229] ___sys_sendmsg+0x326/0x800 [ 32.826178] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 32.830911] ? trace_hardirqs_on+0x10/0x10 [ 32.835122] ? trace_hardirqs_on+0x10/0x10 [ 32.839335] ? __lock_acquire+0x5fc/0x3f20 [ 32.843545] ? lock_acquire+0x170/0x3f0 [ 32.847498] ? __inet_stream_connect+0x936/0xb90 [ 32.852228] ? __might_fault+0x104/0x1b0 [ 32.856265] ? lock_acquire+0x170/0x3f0 [ 32.860214] ? __fdget+0x167/0x1f0 [ 32.863729] ? sockfd_lookup_light+0xb2/0x160 [ 32.868201] __sys_sendmmsg+0x129/0x330 [ 32.872151] ? SyS_sendmsg+0x40/0x40 [ 32.875848] ? inet_stream_connect+0x76/0xa0 [ 32.880238] ? up_read+0x17/0x30 [ 32.883585] SyS_sendmmsg+0x2f/0x50 [ 32.887192] ? __sys_sendmmsg+0x330/0x330 [ 32.891316] do_syscall_64+0x1d5/0x640 [ 32.895181] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 32.900464] RIP: 0033:0x7f11a65e1d19 [ 32.904148] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 32.911828] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f11a65e1d19 [ 32.919089] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 32.926335] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 32.933587] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 32.940840] R13: 00000000000f4240 R14: 0000000000007faf R15: 00007ffd07233894 [ 32.949917] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 32.960605] CPU: 0 PID: 8220 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 32.968481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 32.977810] Call Trace: [ 32.980385] dump_stack+0x1b2/0x281 [ 32.983996] ccid3_update_send_interval.cold+0x87/0x93 [ 32.989254] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 32.993984] ? ccid3_update_send_interval+0x100/0x100 [ 32.999151] dccp_xmit_packet+0x24b/0x6d0 [ 33.003280] dccp_write_xmit+0x140/0x1a0 [ 33.007325] dccp_sendmsg+0x708/0x880 [ 33.011105] ? dccp_ioctl+0x150/0x150 [ 33.014887] ? copy_msghdr_from_user+0x218/0x3b0 [ 33.019624] ? kernel_recvmsg+0x210/0x210 [ 33.023750] inet_sendmsg+0x11a/0x4e0 [ 33.027526] ? security_socket_sendmsg+0x83/0xb0 [ 33.032531] ? inet_recvmsg+0x4d0/0x4d0 [ 33.036482] sock_sendmsg+0xb5/0x100 [ 33.040181] ___sys_sendmsg+0x326/0x800 [ 33.044141] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 33.048961] ? trace_hardirqs_on+0x10/0x10 [ 33.053526] ? trace_hardirqs_on+0x10/0x10 [ 33.057743] ? __lock_acquire+0x5fc/0x3f20 [ 33.061953] ? lock_acquire+0x170/0x3f0 [ 33.065905] ? __inet_stream_connect+0x936/0xb90 [ 33.070783] ? __might_fault+0x104/0x1b0 [ 33.074828] ? lock_acquire+0x170/0x3f0 [ 33.078790] ? __fdget+0x167/0x1f0 [ 33.082303] ? sockfd_lookup_light+0xb2/0x160 [ 33.086775] __sys_sendmmsg+0x129/0x330 [ 33.090725] ? SyS_sendmsg+0x40/0x40 [ 33.094423] ? inet_stream_connect+0x76/0xa0 [ 33.098851] ? up_read+0x17/0x30 [ 33.102193] SyS_sendmmsg+0x2f/0x50 [ 33.105793] ? __sys_sendmmsg+0x330/0x330 [ 33.109916] do_syscall_64+0x1d5/0x640 [ 33.113783] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 33.118947] RIP: 0033:0x7f11a65e1d19 [ 33.122635] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 executing program executing program [ 33.130326] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f11a65e1d19 [ 33.137579] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 33.144827] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 33.152077] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 33.159343] R13: 00000000000f4240 R14: 0000000000007faf R15: 00007ffd07233894 [ 33.244452] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 33.254989] CPU: 0 PID: 8222 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 33.262845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 33.272179] Call Trace: [ 33.274747] dump_stack+0x1b2/0x281 [ 33.278353] ccid3_update_send_interval.cold+0x87/0x93 [ 33.283616] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 33.288360] ? ccid3_update_send_interval+0x100/0x100 [ 33.293528] dccp_xmit_packet+0x24b/0x6d0 [ 33.297670] dccp_write_xmit+0x140/0x1a0 [ 33.301711] dccp_sendmsg+0x708/0x880 [ 33.306531] ? dccp_ioctl+0x150/0x150 [ 33.310311] ? copy_msghdr_from_user+0x218/0x3b0 [ 33.315043] ? kernel_recvmsg+0x210/0x210 [ 33.319165] inet_sendmsg+0x11a/0x4e0 [ 33.322944] ? security_socket_sendmsg+0x83/0xb0 [ 33.327678] ? inet_recvmsg+0x4d0/0x4d0 [ 33.331627] sock_sendmsg+0xb5/0x100 [ 33.335316] ___sys_sendmsg+0x326/0x800 [ 33.339265] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 33.343995] ? trace_hardirqs_on+0x10/0x10 [ 33.348202] ? trace_hardirqs_on+0x10/0x10 [ 33.352413] ? __lock_acquire+0x5fc/0x3f20 [ 33.356622] ? lock_acquire+0x170/0x3f0 [ 33.360576] ? __inet_stream_connect+0x936/0xb90 [ 33.365309] ? __might_fault+0x104/0x1b0 [ 33.369346] ? lock_acquire+0x170/0x3f0 [ 33.373321] ? __fdget+0x167/0x1f0 [ 33.376835] ? sockfd_lookup_light+0xb2/0x160 [ 33.381313] __sys_sendmmsg+0x129/0x330 [ 33.385263] ? SyS_sendmsg+0x40/0x40 [ 33.388956] ? inet_stream_connect+0x76/0xa0 [ 33.393345] ? up_read+0x17/0x30 [ 33.396849] SyS_sendmmsg+0x2f/0x50 [ 33.400547] ? __sys_sendmmsg+0x330/0x330 [ 33.404680] do_syscall_64+0x1d5/0x640 [ 33.408564] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 33.413736] RIP: 0033:0x7f11a65e1d19 [ 33.417423] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 33.425124] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f11a65e1d19 [ 33.432373] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 33.439623] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 33.446870] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 33.454116] R13: 00000000000f4240 R14: 00000000000081b1 R15: 00007ffd07233894 [ 33.462669] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 33.473199] CPU: 0 PID: 8222 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 33.481067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 33.490401] Call Trace: [ 33.492980] dump_stack+0x1b2/0x281 [ 33.496598] ccid3_update_send_interval.cold+0x87/0x93 [ 33.501854] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 33.506586] ? ccid3_update_send_interval+0x100/0x100 [ 33.511762] dccp_xmit_packet+0x24b/0x6d0 [ 33.515891] dccp_write_xmit+0x140/0x1a0 [ 33.519931] dccp_sendmsg+0x708/0x880 [ 33.523710] ? dccp_ioctl+0x150/0x150 [ 33.527488] ? copy_msghdr_from_user+0x218/0x3b0 [ 33.532322] ? kernel_recvmsg+0x210/0x210 [ 33.536447] inet_sendmsg+0x11a/0x4e0 [ 33.540221] ? security_socket_sendmsg+0x83/0xb0 [ 33.544955] ? inet_recvmsg+0x4d0/0x4d0 [ 33.548903] sock_sendmsg+0xb5/0x100 [ 33.552590] ___sys_sendmsg+0x326/0x800 [ 33.556540] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 33.561272] ? trace_hardirqs_on+0x10/0x10 [ 33.565595] ? trace_hardirqs_on+0x10/0x10 [ 33.569802] ? __lock_acquire+0x5fc/0x3f20 [ 33.574012] ? lock_acquire+0x170/0x3f0 [ 33.577966] ? __inet_stream_connect+0x936/0xb90 [ 33.582697] ? __might_fault+0x104/0x1b0 [ 33.586742] ? lock_acquire+0x170/0x3f0 [ 33.590692] ? __fdget+0x167/0x1f0 [ 33.594209] ? sockfd_lookup_light+0xb2/0x160 [ 33.598678] __sys_sendmmsg+0x129/0x330 [ 33.602627] ? SyS_sendmsg+0x40/0x40 [ 33.606322] ? inet_stream_connect+0x76/0xa0 [ 33.610714] ? up_read+0x17/0x30 [ 33.614068] SyS_sendmmsg+0x2f/0x50 [ 33.617673] ? __sys_sendmmsg+0x330/0x330 [ 33.621798] do_syscall_64+0x1d5/0x640 [ 33.625663] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 33.630828] RIP: 0033:0x7f11a65e1d19 [ 33.634514] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 executing program [ 33.642199] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f11a65e1d19 [ 33.649445] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 33.656687] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 33.663933] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 33.671175] R13: 00000000000f4240 R14: 00000000000081b1 R15: 00007ffd07233894 executing program [ 33.757077] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 33.767617] CPU: 1 PID: 8224 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 33.775484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 33.784812] Call Trace: [ 33.787380] dump_stack+0x1b2/0x281 [ 33.790986] ccid3_update_send_interval.cold+0x87/0x93 [ 33.796242] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 33.800970] ? ccid3_update_send_interval+0x100/0x100 [ 33.806137] dccp_xmit_packet+0x24b/0x6d0 [ 33.810263] dccp_write_xmit+0x140/0x1a0 [ 33.814359] dccp_sendmsg+0x708/0x880 [ 33.818138] ? dccp_ioctl+0x150/0x150 [ 33.821921] ? copy_msghdr_from_user+0x218/0x3b0 [ 33.826649] ? kernel_recvmsg+0x210/0x210 [ 33.830777] inet_sendmsg+0x11a/0x4e0 [ 33.834567] ? security_socket_sendmsg+0x83/0xb0 [ 33.839304] ? inet_recvmsg+0x4d0/0x4d0 [ 33.843254] sock_sendmsg+0xb5/0x100 [ 33.846943] ___sys_sendmsg+0x326/0x800 [ 33.850893] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 33.855623] ? trace_hardirqs_on+0x10/0x10 [ 33.859836] ? trace_hardirqs_on+0x10/0x10 [ 33.864042] ? __lock_acquire+0x5fc/0x3f20 [ 33.868252] ? lock_acquire+0x170/0x3f0 [ 33.872203] ? __inet_stream_connect+0x936/0xb90 [ 33.876931] ? __might_fault+0x104/0x1b0 [ 33.880965] ? lock_acquire+0x170/0x3f0 [ 33.884916] ? __fdget+0x167/0x1f0 [ 33.888434] ? sockfd_lookup_light+0xb2/0x160 [ 33.892914] __sys_sendmmsg+0x129/0x330 [ 33.896865] ? SyS_sendmsg+0x40/0x40 [ 33.900559] ? inet_stream_connect+0x76/0xa0 [ 33.904947] ? up_read+0x17/0x30 [ 33.908287] SyS_sendmmsg+0x2f/0x50 [ 33.911887] ? __sys_sendmmsg+0x330/0x330 [ 33.916012] do_syscall_64+0x1d5/0x640 [ 33.919876] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 33.925041] RIP: 0033:0x7f11a65e1d19 [ 33.928726] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 33.936409] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f11a65e1d19 [ 33.943654] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 33.950895] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 33.958139] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 33.965384] R13: 00000000000f4240 R14: 00000000000083b0 R15: 00007ffd07233894 [ 33.975506] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 33.987138] CPU: 0 PID: 8224 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 33.995002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 34.004329] Call Trace: [ 34.006896] dump_stack+0x1b2/0x281 [ 34.010505] ccid3_update_send_interval.cold+0x87/0x93 [ 34.015759] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 34.020492] ? ccid3_update_send_interval+0x100/0x100 [ 34.025657] dccp_xmit_packet+0x24b/0x6d0 [ 34.029780] dccp_write_xmit+0x140/0x1a0 [ 34.033821] dccp_sendmsg+0x708/0x880 [ 34.037599] ? dccp_ioctl+0x150/0x150 [ 34.041376] ? copy_msghdr_from_user+0x218/0x3b0 [ 34.046107] ? kernel_recvmsg+0x210/0x210 [ 34.050229] inet_sendmsg+0x11a/0x4e0 [ 34.054004] ? security_socket_sendmsg+0x83/0xb0 [ 34.058735] ? inet_recvmsg+0x4d0/0x4d0 [ 34.062682] sock_sendmsg+0xb5/0x100 [ 34.066368] ___sys_sendmsg+0x326/0x800 [ 34.070325] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 34.075055] ? trace_hardirqs_on+0x10/0x10 [ 34.079265] ? trace_hardirqs_on+0x10/0x10 [ 34.083473] ? __lock_acquire+0x5fc/0x3f20 [ 34.087683] ? lock_acquire+0x170/0x3f0 [ 34.091651] ? __inet_stream_connect+0x936/0xb90 [ 34.096381] ? __might_fault+0x104/0x1b0 [ 34.100416] ? lock_acquire+0x170/0x3f0 [ 34.104366] ? __fdget+0x167/0x1f0 [ 34.107883] ? sockfd_lookup_light+0xb2/0x160 [ 34.112359] __sys_sendmmsg+0x129/0x330 [ 34.116318] ? SyS_sendmsg+0x40/0x40 [ 34.120010] ? inet_stream_connect+0x76/0xa0 [ 34.124397] ? up_read+0x17/0x30 [ 34.127737] SyS_sendmmsg+0x2f/0x50 [ 34.131338] ? __sys_sendmmsg+0x330/0x330 [ 34.135462] do_syscall_64+0x1d5/0x640 [ 34.139328] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 34.144492] RIP: 0033:0x7f11a65e1d19 [ 34.148182] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 executing program [ 34.155868] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f11a65e1d19 [ 34.163111] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 34.170355] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 34.177600] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 34.184842] R13: 00000000000f4240 R14: 00000000000083b0 R15: 00007ffd07233894 executing program [ 34.271399] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 34.281935] CPU: 1 PID: 8226 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 34.289797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 34.299152] Call Trace: [ 34.301720] dump_stack+0x1b2/0x281 [ 34.305326] ccid3_update_send_interval.cold+0x87/0x93 [ 34.310578] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 34.315307] ? ccid3_update_send_interval+0x100/0x100 [ 34.320474] dccp_xmit_packet+0x24b/0x6d0 [ 34.324596] dccp_write_xmit+0x140/0x1a0 [ 34.328634] dccp_sendmsg+0x708/0x880 [ 34.332411] ? dccp_ioctl+0x150/0x150 [ 34.336188] ? copy_msghdr_from_user+0x218/0x3b0 [ 34.340919] ? kernel_recvmsg+0x210/0x210 [ 34.345053] inet_sendmsg+0x11a/0x4e0 [ 34.348833] ? security_socket_sendmsg+0x83/0xb0 [ 34.353562] ? inet_recvmsg+0x4d0/0x4d0 [ 34.357510] sock_sendmsg+0xb5/0x100 [ 34.361199] ___sys_sendmsg+0x326/0x800 [ 34.365148] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 34.369898] ? trace_hardirqs_on+0x10/0x10 [ 34.374111] ? trace_hardirqs_on+0x10/0x10 [ 34.378322] ? __lock_acquire+0x5fc/0x3f20 [ 34.382535] ? lock_acquire+0x170/0x3f0 [ 34.386486] ? __inet_stream_connect+0x936/0xb90 [ 34.391223] ? __might_fault+0x104/0x1b0 [ 34.395259] ? lock_acquire+0x170/0x3f0 [ 34.399218] ? __fdget+0x167/0x1f0 [ 34.402736] ? sockfd_lookup_light+0xb2/0x160 [ 34.407207] __sys_sendmmsg+0x129/0x330 [ 34.411159] ? SyS_sendmsg+0x40/0x40 [ 34.414851] ? inet_stream_connect+0x76/0xa0 [ 34.419239] ? up_read+0x17/0x30 [ 34.422581] SyS_sendmmsg+0x2f/0x50 [ 34.426187] ? __sys_sendmmsg+0x330/0x330 [ 34.430308] do_syscall_64+0x1d5/0x640 [ 34.434175] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 34.439339] RIP: 0033:0x7f11a65e1d19 [ 34.443029] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 34.450717] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f11a65e1d19 [ 34.457962] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 34.465209] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 34.476621] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 34.484301] R13: 00000000000f4240 R14: 00000000000085b4 R15: 00007ffd07233894 [ 34.495303] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 34.505872] CPU: 0 PID: 8226 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 34.513729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 34.523173] Call Trace: [ 34.525740] dump_stack+0x1b2/0x281 [ 34.529345] ccid3_update_send_interval.cold+0x87/0x93 [ 34.534598] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 34.539329] ? ccid3_update_send_interval+0x100/0x100 [ 34.544496] dccp_xmit_packet+0x24b/0x6d0 [ 34.548623] dccp_write_xmit+0x140/0x1a0 [ 34.552662] dccp_sendmsg+0x708/0x880 [ 34.556438] ? dccp_ioctl+0x150/0x150 [ 34.560217] ? copy_msghdr_from_user+0x218/0x3b0 [ 34.564948] ? kernel_recvmsg+0x210/0x210 [ 34.569079] inet_sendmsg+0x11a/0x4e0 [ 34.572866] ? security_socket_sendmsg+0x83/0xb0 [ 34.577595] ? inet_recvmsg+0x4d0/0x4d0 [ 34.581543] sock_sendmsg+0xb5/0x100 [ 34.585233] ___sys_sendmsg+0x326/0x800 [ 34.589188] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 34.593918] ? trace_hardirqs_on+0x10/0x10 [ 34.598127] ? trace_hardirqs_on+0x10/0x10 [ 34.602335] ? __lock_acquire+0x5fc/0x3f20 [ 34.606544] ? lock_acquire+0x170/0x3f0 [ 34.610494] ? __inet_stream_connect+0x936/0xb90 [ 34.615221] ? __might_fault+0x104/0x1b0 [ 34.619262] ? lock_acquire+0x170/0x3f0 [ 34.623325] ? __fdget+0x167/0x1f0 [ 34.626839] ? sockfd_lookup_light+0xb2/0x160 [ 34.631310] __sys_sendmmsg+0x129/0x330 [ 34.635259] ? SyS_sendmsg+0x40/0x40 [ 34.638952] ? inet_stream_connect+0x76/0xa0 [ 34.643345] ? up_read+0x17/0x30 [ 34.646685] SyS_sendmmsg+0x2f/0x50 [ 34.650284] ? __sys_sendmmsg+0x330/0x330 [ 34.654408] do_syscall_64+0x1d5/0x640 [ 34.658272] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 34.663434] RIP: 0033:0x7f11a65e1d19 executing program [ 34.667120] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 34.674801] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f11a65e1d19 [ 34.682045] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 34.689290] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 34.696533] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 34.703778] R13: 00000000000f4240 R14: 00000000000085b4 R15: 00007ffd07233894 executing program [ 34.789913] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 34.800491] CPU: 0 PID: 8228 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 34.808347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 34.817673] Call Trace: [ 34.820240] dump_stack+0x1b2/0x281 [ 34.823846] ccid3_update_send_interval.cold+0x87/0x93 [ 34.829102] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 34.833833] ? ccid3_update_send_interval+0x100/0x100 [ 34.839003] dccp_xmit_packet+0x24b/0x6d0 [ 34.843135] dccp_write_xmit+0x140/0x1a0 [ 34.847171] dccp_sendmsg+0x708/0x880 [ 34.850948] ? dccp_ioctl+0x150/0x150 [ 34.854726] ? copy_msghdr_from_user+0x218/0x3b0 [ 34.859455] ? kernel_recvmsg+0x210/0x210 [ 34.863581] inet_sendmsg+0x11a/0x4e0 [ 34.867357] ? security_socket_sendmsg+0x83/0xb0 [ 34.872094] ? inet_recvmsg+0x4d0/0x4d0 [ 34.876052] sock_sendmsg+0xb5/0x100 [ 34.879741] ___sys_sendmsg+0x326/0x800 [ 34.883691] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 34.888595] ? trace_hardirqs_on+0x10/0x10 [ 34.892803] ? trace_hardirqs_on+0x10/0x10 [ 34.897011] ? __lock_acquire+0x5fc/0x3f20 [ 34.901223] ? lock_acquire+0x170/0x3f0 [ 34.905173] ? __inet_stream_connect+0x936/0xb90 [ 34.909903] ? __might_fault+0x104/0x1b0 [ 34.913941] ? lock_acquire+0x170/0x3f0 [ 34.917896] ? __fdget+0x167/0x1f0 [ 34.921411] ? sockfd_lookup_light+0xb2/0x160 [ 34.925882] __sys_sendmmsg+0x129/0x330 [ 34.929829] ? SyS_sendmsg+0x40/0x40 [ 34.933542] ? inet_stream_connect+0x76/0xa0 [ 34.937930] ? up_read+0x17/0x30 [ 34.941277] SyS_sendmmsg+0x2f/0x50 [ 34.944988] ? __sys_sendmmsg+0x330/0x330 [ 34.949110] do_syscall_64+0x1d5/0x640 [ 34.952974] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 34.958141] RIP: 0033:0x7f11a65e1d19 [ 34.961828] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 34.969509] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f11a65e1d19 [ 34.976751] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 34.984002] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 34.991244] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 34.998489] R13: 00000000000f4240 R14: 00000000000087b9 R15: 00007ffd07233894 [ 35.006854] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 35.017420] CPU: 0 PID: 8228 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 35.025282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 35.034610] Call Trace: [ 35.037176] dump_stack+0x1b2/0x281 [ 35.040784] ccid3_update_send_interval.cold+0x87/0x93 [ 35.046041] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 35.050770] ? ccid3_update_send_interval+0x100/0x100 [ 35.055935] dccp_xmit_packet+0x24b/0x6d0 [ 35.060057] dccp_write_xmit+0x140/0x1a0 [ 35.064092] dccp_sendmsg+0x708/0x880 [ 35.067869] ? dccp_ioctl+0x150/0x150 [ 35.071645] ? copy_msghdr_from_user+0x218/0x3b0 [ 35.076381] ? kernel_recvmsg+0x210/0x210 [ 35.080506] inet_sendmsg+0x11a/0x4e0 [ 35.084289] ? security_socket_sendmsg+0x83/0xb0 [ 35.089025] ? inet_recvmsg+0x4d0/0x4d0 [ 35.092973] sock_sendmsg+0xb5/0x100 [ 35.096668] ___sys_sendmsg+0x326/0x800 [ 35.100630] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 35.105368] ? trace_hardirqs_on+0x10/0x10 [ 35.109581] ? trace_hardirqs_on+0x10/0x10 [ 35.113790] ? __lock_acquire+0x5fc/0x3f20 [ 35.118004] ? lock_acquire+0x170/0x3f0 [ 35.121956] ? __inet_stream_connect+0x936/0xb90 [ 35.126688] ? __might_fault+0x104/0x1b0 [ 35.130730] ? lock_acquire+0x170/0x3f0 [ 35.134679] ? __fdget+0x167/0x1f0 [ 35.138197] ? sockfd_lookup_light+0xb2/0x160 [ 35.142666] __sys_sendmmsg+0x129/0x330 [ 35.146615] ? SyS_sendmsg+0x40/0x40 [ 35.150308] ? inet_stream_connect+0x76/0xa0 [ 35.154696] ? up_read+0x17/0x30 [ 35.158037] SyS_sendmmsg+0x2f/0x50 [ 35.161646] ? __sys_sendmmsg+0x330/0x330 [ 35.165775] do_syscall_64+0x1d5/0x640 [ 35.169641] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 35.174806] RIP: 0033:0x7f11a65e1d19 [ 35.178494] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 executing program executing program [ 35.186174] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f11a65e1d19 [ 35.193421] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 35.200665] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 35.207909] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 35.215153] R13: 00000000000f4240 R14: 00000000000087b9 R15: 00007ffd07233894 [ 35.301296] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 35.311853] CPU: 1 PID: 8230 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 35.319721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 35.329052] Call Trace: [ 35.331621] dump_stack+0x1b2/0x281 [ 35.335225] ccid3_update_send_interval.cold+0x87/0x93 [ 35.340483] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 35.345214] ? ccid3_update_send_interval+0x100/0x100 [ 35.350605] dccp_xmit_packet+0x24b/0x6d0 [ 35.354732] dccp_write_xmit+0x140/0x1a0 [ 35.358773] dccp_sendmsg+0x708/0x880 [ 35.362551] ? dccp_ioctl+0x150/0x150 [ 35.366328] ? copy_msghdr_from_user+0x218/0x3b0 [ 35.371057] ? kernel_recvmsg+0x210/0x210 [ 35.375180] inet_sendmsg+0x11a/0x4e0 [ 35.378964] ? security_socket_sendmsg+0x83/0xb0 [ 35.383697] ? inet_recvmsg+0x4d0/0x4d0 [ 35.387662] sock_sendmsg+0xb5/0x100 [ 35.391359] ___sys_sendmsg+0x326/0x800 [ 35.395313] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 35.400044] ? trace_hardirqs_on+0x10/0x10 [ 35.404254] ? trace_hardirqs_on+0x10/0x10 [ 35.408462] ? __lock_acquire+0x5fc/0x3f20 [ 35.412679] ? lock_acquire+0x170/0x3f0 [ 35.416636] ? __inet_stream_connect+0x936/0xb90 [ 35.421378] ? __might_fault+0x104/0x1b0 [ 35.425418] ? lock_acquire+0x170/0x3f0 [ 35.429376] ? __fdget+0x167/0x1f0 [ 35.432891] ? sockfd_lookup_light+0xb2/0x160 [ 35.437363] __sys_sendmmsg+0x129/0x330 [ 35.441314] ? SyS_sendmsg+0x40/0x40 [ 35.445008] ? inet_stream_connect+0x76/0xa0 [ 35.449398] ? up_read+0x17/0x30 [ 35.452746] SyS_sendmmsg+0x2f/0x50 [ 35.456346] ? __sys_sendmmsg+0x330/0x330 [ 35.460472] do_syscall_64+0x1d5/0x640 [ 35.464338] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 35.469500] RIP: 0033:0x7f11a65e1d19 [ 35.473184] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 35.480869] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f11a65e1d19 [ 35.488118] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 35.495366] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 35.502607] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 35.509854] R13: 00000000000f4240 R14: 00000000000089ba R15: 00007ffd07233894 [ 35.522860] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 35.533610] CPU: 1 PID: 8230 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 35.543969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 35.553304] Call Trace: [ 35.555869] dump_stack+0x1b2/0x281 [ 35.559485] ccid3_update_send_interval.cold+0x87/0x93 [ 35.564738] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 35.569470] ? ccid3_update_send_interval+0x100/0x100 [ 35.574642] dccp_xmit_packet+0x24b/0x6d0 [ 35.578772] dccp_write_xmit+0x140/0x1a0 [ 35.582809] dccp_sendmsg+0x708/0x880 [ 35.586594] ? dccp_ioctl+0x150/0x150 [ 35.590379] ? copy_msghdr_from_user+0x218/0x3b0 [ 35.595110] ? kernel_recvmsg+0x210/0x210 [ 35.599233] inet_sendmsg+0x11a/0x4e0 [ 35.603008] ? security_socket_sendmsg+0x83/0xb0 [ 35.607737] ? inet_recvmsg+0x4d0/0x4d0 [ 35.611684] sock_sendmsg+0xb5/0x100 [ 35.615371] ___sys_sendmsg+0x326/0x800 [ 35.619320] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 35.624052] ? trace_hardirqs_on+0x10/0x10 [ 35.628261] ? trace_hardirqs_on+0x10/0x10 [ 35.632473] ? __lock_acquire+0x5fc/0x3f20 [ 35.636682] ? lock_acquire+0x170/0x3f0 [ 35.640633] ? __inet_stream_connect+0x936/0xb90 [ 35.645365] ? __might_fault+0x104/0x1b0 [ 35.649406] ? lock_acquire+0x170/0x3f0 [ 35.653357] ? __fdget+0x167/0x1f0 [ 35.656956] ? sockfd_lookup_light+0xb2/0x160 [ 35.661428] __sys_sendmmsg+0x129/0x330 [ 35.665379] ? SyS_sendmsg+0x40/0x40 [ 35.669435] ? inet_stream_connect+0x76/0xa0 [ 35.673827] ? up_read+0x17/0x30 [ 35.677167] SyS_sendmmsg+0x2f/0x50 [ 35.680769] ? __sys_sendmmsg+0x330/0x330 [ 35.684892] do_syscall_64+0x1d5/0x640 [ 35.688756] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 35.693920] RIP: 0033:0x7f11a65e1d19 executing program [ 35.697604] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 35.705286] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f11a65e1d19 [ 35.712533] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 35.719778] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 35.727020] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 35.734264] R13: 00000000000f4240 R14: 00000000000089ba R15: 00007ffd07233894 executing program [ 35.821407] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 35.831953] CPU: 0 PID: 8234 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 35.839817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 35.849145] Call Trace: [ 35.851717] dump_stack+0x1b2/0x281 [ 35.855326] ccid3_update_send_interval.cold+0x87/0x93 [ 35.860692] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 35.865426] ? ccid3_update_send_interval+0x100/0x100 [ 35.870590] dccp_xmit_packet+0x24b/0x6d0 [ 35.874712] dccp_write_xmit+0x140/0x1a0 [ 35.878748] dccp_sendmsg+0x708/0x880 [ 35.882530] ? dccp_ioctl+0x150/0x150 [ 35.886330] ? copy_msghdr_from_user+0x218/0x3b0 [ 35.891059] ? kernel_recvmsg+0x210/0x210 [ 35.895268] inet_sendmsg+0x11a/0x4e0 [ 35.899044] ? security_socket_sendmsg+0x83/0xb0 [ 35.903775] ? inet_recvmsg+0x4d0/0x4d0 [ 35.907724] sock_sendmsg+0xb5/0x100 [ 35.911412] ___sys_sendmsg+0x326/0x800 [ 35.915362] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 35.920100] ? trace_hardirqs_on+0x10/0x10 [ 35.924310] ? trace_hardirqs_on+0x10/0x10 [ 35.928518] ? __lock_acquire+0x5fc/0x3f20 [ 35.932731] ? lock_acquire+0x170/0x3f0 [ 35.936687] ? __inet_stream_connect+0x936/0xb90 [ 35.941423] ? __might_fault+0x104/0x1b0 [ 35.945467] ? lock_acquire+0x170/0x3f0 [ 35.949416] ? __fdget+0x167/0x1f0 [ 35.952943] ? sockfd_lookup_light+0xb2/0x160 [ 35.957412] __sys_sendmmsg+0x129/0x330 [ 35.961371] ? SyS_sendmsg+0x40/0x40 [ 35.965092] ? inet_stream_connect+0x76/0xa0 [ 35.969479] ? up_read+0x17/0x30 [ 35.972826] SyS_sendmmsg+0x2f/0x50 [ 35.976427] ? __sys_sendmmsg+0x330/0x330 [ 35.980549] do_syscall_64+0x1d5/0x640 [ 35.984422] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 35.989586] RIP: 0033:0x7f11a65e1d19 [ 35.993270] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 36.000955] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f11a65e1d19 [ 36.008198] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 36.015441] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 36.022688] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 36.029931] R13: 00000000000f4240 R14: 0000000000008bc2 R15: 00007ffd07233894 [ 36.039448] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 36.050480] CPU: 0 PID: 8234 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 36.058358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 36.067685] Call Trace: [ 36.070251] dump_stack+0x1b2/0x281 [ 36.073858] ccid3_update_send_interval.cold+0x87/0x93 [ 36.079111] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 36.083842] ? ccid3_update_send_interval+0x100/0x100 [ 36.089011] dccp_xmit_packet+0x24b/0x6d0 [ 36.093135] dccp_write_xmit+0x140/0x1a0 [ 36.097173] dccp_sendmsg+0x708/0x880 [ 36.101046] ? dccp_ioctl+0x150/0x150 [ 36.104829] ? copy_msghdr_from_user+0x218/0x3b0 [ 36.109560] ? kernel_recvmsg+0x210/0x210 [ 36.113686] inet_sendmsg+0x11a/0x4e0 [ 36.117463] ? security_socket_sendmsg+0x83/0xb0 [ 36.122197] ? inet_recvmsg+0x4d0/0x4d0 [ 36.126145] sock_sendmsg+0xb5/0x100 [ 36.129832] ___sys_sendmsg+0x326/0x800 [ 36.133784] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 36.138515] ? trace_hardirqs_on+0x10/0x10 [ 36.142729] ? trace_hardirqs_on+0x10/0x10 [ 36.146946] ? __lock_acquire+0x5fc/0x3f20 [ 36.151157] ? lock_acquire+0x170/0x3f0 [ 36.155106] ? __inet_stream_connect+0x936/0xb90 [ 36.159850] ? __might_fault+0x104/0x1b0 [ 36.163891] ? lock_acquire+0x170/0x3f0 [ 36.167841] ? __fdget+0x167/0x1f0 [ 36.171355] ? sockfd_lookup_light+0xb2/0x160 [ 36.175832] __sys_sendmmsg+0x129/0x330 [ 36.179793] ? SyS_sendmsg+0x40/0x40 [ 36.183485] ? inet_stream_connect+0x76/0xa0 [ 36.187875] ? up_read+0x17/0x30 [ 36.191217] SyS_sendmmsg+0x2f/0x50 [ 36.194824] ? __sys_sendmmsg+0x330/0x330 [ 36.198948] do_syscall_64+0x1d5/0x640 [ 36.202836] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 36.208001] RIP: 0033:0x7f11a65e1d19 [ 36.211691] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 executing program executing program [ 36.219375] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f11a65e1d19 [ 36.226620] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 36.233865] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 36.241119] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 36.248376] R13: 00000000000f4240 R14: 0000000000008bc2 R15: 00007ffd07233894 [ 36.334609] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 36.345164] CPU: 0 PID: 8236 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 36.353029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 36.362359] Call Trace: [ 36.364924] dump_stack+0x1b2/0x281 [ 36.368533] ccid3_update_send_interval.cold+0x87/0x93 [ 36.373788] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 36.378519] ? ccid3_update_send_interval+0x100/0x100 [ 36.383696] dccp_xmit_packet+0x24b/0x6d0 [ 36.387821] dccp_write_xmit+0x140/0x1a0 [ 36.391859] dccp_sendmsg+0x708/0x880 [ 36.395643] ? dccp_ioctl+0x150/0x150 [ 36.399435] ? copy_msghdr_from_user+0x218/0x3b0 [ 36.404261] ? kernel_recvmsg+0x210/0x210 [ 36.408385] inet_sendmsg+0x11a/0x4e0 [ 36.412186] ? security_socket_sendmsg+0x83/0xb0 [ 36.416915] ? inet_recvmsg+0x4d0/0x4d0 [ 36.420874] sock_sendmsg+0xb5/0x100 [ 36.424571] ___sys_sendmsg+0x326/0x800 [ 36.428526] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 36.433259] ? trace_hardirqs_on+0x10/0x10 [ 36.437467] ? trace_hardirqs_on+0x10/0x10 [ 36.441689] ? __lock_acquire+0x5fc/0x3f20 [ 36.445911] ? lock_acquire+0x170/0x3f0 [ 36.449862] ? __inet_stream_connect+0x936/0xb90 [ 36.454597] ? __might_fault+0x104/0x1b0 [ 36.458638] ? lock_acquire+0x170/0x3f0 [ 36.462591] ? __fdget+0x167/0x1f0 [ 36.466108] ? sockfd_lookup_light+0xb2/0x160 [ 36.470581] __sys_sendmmsg+0x129/0x330 [ 36.474538] ? SyS_sendmsg+0x40/0x40 [ 36.478239] ? inet_stream_connect+0x76/0xa0 [ 36.482631] ? up_read+0x17/0x30 [ 36.485973] SyS_sendmmsg+0x2f/0x50 [ 36.489576] ? __sys_sendmmsg+0x330/0x330 [ 36.493697] do_syscall_64+0x1d5/0x640 [ 36.497562] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 36.502735] RIP: 0033:0x7f11a65e1d19 [ 36.506542] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 36.514223] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f11a65e1d19 [ 36.521471] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 36.528820] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 36.536065] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 36.543307] R13: 00000000000f4240 R14: 0000000000008dc3 R15: 00007ffd07233894 [ 36.560411] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 36.570931] CPU: 0 PID: 8236 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 36.578793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 36.588190] Call Trace: [ 36.590764] dump_stack+0x1b2/0x281 [ 36.594527] ccid3_update_send_interval.cold+0x87/0x93 [ 36.599785] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 36.604516] ? ccid3_update_send_interval+0x100/0x100 [ 36.609684] dccp_xmit_packet+0x24b/0x6d0 [ 36.613812] dccp_write_xmit+0x140/0x1a0 [ 36.617851] dccp_sendmsg+0x708/0x880 [ 36.621630] ? dccp_ioctl+0x150/0x150 [ 36.625409] ? copy_msghdr_from_user+0x218/0x3b0 [ 36.630139] ? kernel_recvmsg+0x210/0x210 [ 36.634264] inet_sendmsg+0x11a/0x4e0 [ 36.638040] ? security_socket_sendmsg+0x83/0xb0 [ 36.642775] ? inet_recvmsg+0x4d0/0x4d0 [ 36.646724] sock_sendmsg+0xb5/0x100 [ 36.650412] ___sys_sendmsg+0x326/0x800 [ 36.654362] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 36.659094] ? trace_hardirqs_on+0x10/0x10 [ 36.663306] ? trace_hardirqs_on+0x10/0x10 [ 36.667514] ? __lock_acquire+0x5fc/0x3f20 [ 36.671724] ? lock_acquire+0x170/0x3f0 [ 36.675681] ? __inet_stream_connect+0x936/0xb90 [ 36.680419] ? __might_fault+0x104/0x1b0 [ 36.684458] ? lock_acquire+0x170/0x3f0 [ 36.688408] ? __fdget+0x167/0x1f0 [ 36.691942] ? sockfd_lookup_light+0xb2/0x160 [ 36.696413] __sys_sendmmsg+0x129/0x330 [ 36.700364] ? SyS_sendmsg+0x40/0x40 [ 36.704056] ? inet_stream_connect+0x76/0xa0 [ 36.708447] ? up_read+0x17/0x30 [ 36.711789] SyS_sendmmsg+0x2f/0x50 [ 36.715390] ? __sys_sendmmsg+0x330/0x330 [ 36.719598] do_syscall_64+0x1d5/0x640 [ 36.723469] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 36.728632] RIP: 0033:0x7f11a65e1d19 executing program [ 36.732321] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 36.740003] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f11a65e1d19 [ 36.747254] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 36.754499] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 36.761743] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 36.768991] R13: 00000000000f4240 R14: 0000000000008dc3 R15: 00007ffd07233894 executing program [ 36.855669] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 36.866270] CPU: 0 PID: 8238 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 36.874126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 36.883453] Call Trace: [ 36.886017] dump_stack+0x1b2/0x281 [ 36.889623] ccid3_update_send_interval.cold+0x87/0x93 [ 36.894880] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 36.899615] ? ccid3_update_send_interval+0x100/0x100 [ 36.904779] dccp_xmit_packet+0x24b/0x6d0 [ 36.908904] dccp_write_xmit+0x140/0x1a0 [ 36.912949] dccp_sendmsg+0x708/0x880 [ 36.916858] ? dccp_ioctl+0x150/0x150 [ 36.920641] ? copy_msghdr_from_user+0x218/0x3b0 [ 36.925373] ? kernel_recvmsg+0x210/0x210 [ 36.929496] inet_sendmsg+0x11a/0x4e0 [ 36.933275] ? security_socket_sendmsg+0x83/0xb0 [ 36.938010] ? inet_recvmsg+0x4d0/0x4d0 [ 36.941973] sock_sendmsg+0xb5/0x100 [ 36.945751] ___sys_sendmsg+0x326/0x800 [ 36.949698] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 36.954431] ? trace_hardirqs_on+0x10/0x10 [ 36.958643] ? trace_hardirqs_on+0x10/0x10 [ 36.962854] ? __lock_acquire+0x5fc/0x3f20 [ 36.967068] ? lock_acquire+0x170/0x3f0 [ 36.971027] ? __inet_stream_connect+0x936/0xb90 [ 36.975767] ? __might_fault+0x104/0x1b0 [ 36.979803] ? lock_acquire+0x170/0x3f0 [ 36.983761] ? __fdget+0x167/0x1f0 [ 36.987281] ? sockfd_lookup_light+0xb2/0x160 [ 36.991751] __sys_sendmmsg+0x129/0x330 [ 36.995709] ? SyS_sendmsg+0x40/0x40 [ 36.999407] ? inet_stream_connect+0x76/0xa0 [ 37.003800] ? up_read+0x17/0x30 [ 37.007144] SyS_sendmmsg+0x2f/0x50 [ 37.010757] ? __sys_sendmmsg+0x330/0x330 [ 37.014886] do_syscall_64+0x1d5/0x640 [ 37.018753] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 37.023918] RIP: 0033:0x7f11a65e1d19 [ 37.027605] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 37.035287] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f11a65e1d19 [ 37.042531] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 37.049776] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 37.057021] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 37.064272] R13: 00000000000f4240 R14: 0000000000008fcf R15: 00007ffd07233894 [ 37.081342] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 37.091946] CPU: 1 PID: 8238 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 37.099809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 37.109137] Call Trace: [ 37.111704] dump_stack+0x1b2/0x281 [ 37.115309] ccid3_update_send_interval.cold+0x87/0x93 [ 37.120563] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 37.125291] ? ccid3_update_send_interval+0x100/0x100 [ 37.130460] dccp_xmit_packet+0x24b/0x6d0 [ 37.134582] dccp_write_xmit+0x140/0x1a0 [ 37.138617] dccp_sendmsg+0x708/0x880 [ 37.142401] ? dccp_ioctl+0x150/0x150 [ 37.146177] ? copy_msghdr_from_user+0x218/0x3b0 [ 37.150905] ? kernel_recvmsg+0x210/0x210 [ 37.155031] inet_sendmsg+0x11a/0x4e0 [ 37.158805] ? security_socket_sendmsg+0x83/0xb0 [ 37.163535] ? inet_recvmsg+0x4d0/0x4d0 [ 37.167482] sock_sendmsg+0xb5/0x100 [ 37.171169] ___sys_sendmsg+0x326/0x800 [ 37.175118] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 37.179850] ? trace_hardirqs_on+0x10/0x10 [ 37.184058] ? trace_hardirqs_on+0x10/0x10 [ 37.188265] ? __lock_acquire+0x5fc/0x3f20 [ 37.192475] ? lock_acquire+0x170/0x3f0 [ 37.196424] ? __inet_stream_connect+0x936/0xb90 [ 37.201157] ? __might_fault+0x104/0x1b0 [ 37.205200] ? lock_acquire+0x170/0x3f0 [ 37.209151] ? __fdget+0x167/0x1f0 [ 37.212671] ? sockfd_lookup_light+0xb2/0x160 [ 37.217163] __sys_sendmmsg+0x129/0x330 [ 37.221115] ? SyS_sendmsg+0x40/0x40 [ 37.224808] ? inet_stream_connect+0x76/0xa0 [ 37.229198] ? up_read+0x17/0x30 [ 37.232538] SyS_sendmmsg+0x2f/0x50 [ 37.236139] ? __sys_sendmmsg+0x330/0x330 [ 37.240266] do_syscall_64+0x1d5/0x640 [ 37.244141] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 37.249306] RIP: 0033:0x7f11a65e1d19 executing program [ 37.252992] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 37.260673] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f11a65e1d19 [ 37.267918] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 37.275183] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 37.282446] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 37.289702] R13: 00000000000f4240 R14: 0000000000008fcf R15: 00007ffd07233894 executing program [ 37.374917] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 37.385460] CPU: 0 PID: 8240 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 37.393327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 37.402666] Call Trace: [ 37.405236] dump_stack+0x1b2/0x281 [ 37.408851] ccid3_update_send_interval.cold+0x87/0x93 [ 37.414116] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 37.418852] ? ccid3_update_send_interval+0x100/0x100 [ 37.424019] dccp_xmit_packet+0x24b/0x6d0 [ 37.428148] dccp_write_xmit+0x140/0x1a0 [ 37.432191] dccp_sendmsg+0x708/0x880 [ 37.436021] ? dccp_ioctl+0x150/0x150 [ 37.439799] ? copy_msghdr_from_user+0x218/0x3b0 [ 37.444532] ? kernel_recvmsg+0x210/0x210 [ 37.448678] inet_sendmsg+0x11a/0x4e0 [ 37.452455] ? security_socket_sendmsg+0x83/0xb0 [ 37.457188] ? inet_recvmsg+0x4d0/0x4d0 [ 37.461146] sock_sendmsg+0xb5/0x100 [ 37.464858] ___sys_sendmsg+0x326/0x800 [ 37.468808] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 37.473541] ? trace_hardirqs_on+0x10/0x10 [ 37.477753] ? trace_hardirqs_on+0x10/0x10 [ 37.481966] ? __lock_acquire+0x5fc/0x3f20 [ 37.486177] ? lock_acquire+0x170/0x3f0 [ 37.490130] ? __inet_stream_connect+0x936/0xb90 [ 37.494861] ? __might_fault+0x104/0x1b0 [ 37.498901] ? lock_acquire+0x170/0x3f0 [ 37.502851] ? __fdget+0x167/0x1f0 [ 37.506366] ? sockfd_lookup_light+0xb2/0x160 [ 37.510835] __sys_sendmmsg+0x129/0x330 [ 37.514786] ? SyS_sendmsg+0x40/0x40 [ 37.518479] ? inet_stream_connect+0x76/0xa0 [ 37.522869] ? up_read+0x17/0x30 [ 37.526221] SyS_sendmmsg+0x2f/0x50 [ 37.529833] ? __sys_sendmmsg+0x330/0x330 [ 37.533966] do_syscall_64+0x1d5/0x640 [ 37.537839] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 37.543006] RIP: 0033:0x7f11a65e1d19 [ 37.546692] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 37.554375] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f11a65e1d19 [ 37.561747] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 37.568994] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 37.576239] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 37.583485] R13: 00000000000f4240 R14: 00000000000091d4 R15: 00007ffd07233894 [ 37.601337] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 37.611906] CPU: 1 PID: 8240 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 37.619770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 37.629099] Call Trace: [ 37.631671] dump_stack+0x1b2/0x281 [ 37.635278] ccid3_update_send_interval.cold+0x87/0x93 [ 37.640651] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 37.645382] ? ccid3_update_send_interval+0x100/0x100 [ 37.650545] dccp_xmit_packet+0x24b/0x6d0 [ 37.654670] dccp_write_xmit+0x140/0x1a0 [ 37.658707] dccp_sendmsg+0x708/0x880 [ 37.662485] ? dccp_ioctl+0x150/0x150 [ 37.666263] ? copy_msghdr_from_user+0x218/0x3b0 [ 37.670992] ? kernel_recvmsg+0x210/0x210 [ 37.675118] inet_sendmsg+0x11a/0x4e0 [ 37.678892] ? security_socket_sendmsg+0x83/0xb0 [ 37.683629] ? inet_recvmsg+0x4d0/0x4d0 [ 37.687577] sock_sendmsg+0xb5/0x100 [ 37.691266] ___sys_sendmsg+0x326/0x800 [ 37.695216] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 37.699947] ? trace_hardirqs_on+0x10/0x10 [ 37.704156] ? trace_hardirqs_on+0x10/0x10 [ 37.708364] ? __lock_acquire+0x5fc/0x3f20 [ 37.712577] ? lock_acquire+0x170/0x3f0 [ 37.716528] ? __inet_stream_connect+0x936/0xb90 [ 37.721257] ? __might_fault+0x104/0x1b0 [ 37.725294] ? lock_acquire+0x170/0x3f0 [ 37.729244] ? __fdget+0x167/0x1f0 [ 37.732763] ? sockfd_lookup_light+0xb2/0x160 [ 37.737248] __sys_sendmmsg+0x129/0x330 [ 37.741199] ? SyS_sendmsg+0x40/0x40 [ 37.744893] ? inet_stream_connect+0x76/0xa0 [ 37.749287] ? up_read+0x17/0x30 [ 37.752628] SyS_sendmmsg+0x2f/0x50 [ 37.756229] ? __sys_sendmmsg+0x330/0x330 [ 37.760352] do_syscall_64+0x1d5/0x640 [ 37.764226] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 37.769392] RIP: 0033:0x7f11a65e1d19 executing program [ 37.773081] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 37.780767] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f11a65e1d19 [ 37.788074] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 37.795332] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 37.802575] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 37.809916] R13: 00000000000f4240 R14: 00000000000091d4 R15: 00007ffd07233894 executing program [ 37.894617] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 37.905210] CPU: 0 PID: 8242 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 37.913066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 37.922398] Call Trace: [ 37.924963] dump_stack+0x1b2/0x281 [ 37.928568] ccid3_update_send_interval.cold+0x87/0x93 [ 37.933823] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 37.938569] ? ccid3_update_send_interval+0x100/0x100 [ 37.943748] dccp_xmit_packet+0x24b/0x6d0 [ 37.947873] dccp_write_xmit+0x140/0x1a0 [ 37.951909] dccp_sendmsg+0x708/0x880 [ 37.955689] ? dccp_ioctl+0x150/0x150 [ 37.959466] ? copy_msghdr_from_user+0x218/0x3b0 [ 37.964198] ? kernel_recvmsg+0x210/0x210 [ 37.968323] inet_sendmsg+0x11a/0x4e0 [ 37.972096] ? security_socket_sendmsg+0x83/0xb0 [ 37.976825] ? inet_recvmsg+0x4d0/0x4d0 [ 37.980774] sock_sendmsg+0xb5/0x100 [ 37.984462] ___sys_sendmsg+0x326/0x800 [ 37.988410] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 37.993141] ? trace_hardirqs_on+0x10/0x10 [ 37.997351] ? trace_hardirqs_on+0x10/0x10 [ 38.001559] ? __lock_acquire+0x5fc/0x3f20 [ 38.005772] ? lock_acquire+0x170/0x3f0 [ 38.009723] ? __inet_stream_connect+0x936/0xb90 [ 38.014456] ? __might_fault+0x104/0x1b0 [ 38.018492] ? lock_acquire+0x170/0x3f0 [ 38.022442] ? __fdget+0x167/0x1f0 [ 38.025957] ? sockfd_lookup_light+0xb2/0x160 [ 38.030427] __sys_sendmmsg+0x129/0x330 [ 38.034376] ? SyS_sendmsg+0x40/0x40 [ 38.038071] ? inet_stream_connect+0x76/0xa0 [ 38.042460] ? up_read+0x17/0x30 [ 38.045803] SyS_sendmmsg+0x2f/0x50 [ 38.049403] ? __sys_sendmmsg+0x330/0x330 [ 38.053526] do_syscall_64+0x1d5/0x640 [ 38.057396] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 38.062560] RIP: 0033:0x7f11a65e1d19 [ 38.066245] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 38.073927] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f11a65e1d19 [ 38.081172] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 38.088415] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 38.095665] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 38.102909] R13: 00000000000f4240 R14: 00000000000093de R15: 00007ffd07233894 [ 38.120157] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 38.130764] CPU: 1 PID: 8242 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 38.138621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 38.147947] Call Trace: [ 38.150512] dump_stack+0x1b2/0x281 [ 38.154114] ccid3_update_send_interval.cold+0x87/0x93 [ 38.159370] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 38.164100] ? ccid3_update_send_interval+0x100/0x100 [ 38.169264] dccp_xmit_packet+0x24b/0x6d0 [ 38.173388] dccp_write_xmit+0x140/0x1a0 [ 38.177424] dccp_sendmsg+0x708/0x880 [ 38.181202] ? dccp_ioctl+0x150/0x150 [ 38.184975] ? copy_msghdr_from_user+0x218/0x3b0 [ 38.189705] ? kernel_recvmsg+0x210/0x210 [ 38.193834] inet_sendmsg+0x11a/0x4e0 [ 38.197614] ? security_socket_sendmsg+0x83/0xb0 [ 38.202345] ? inet_recvmsg+0x4d0/0x4d0 [ 38.206297] sock_sendmsg+0xb5/0x100 [ 38.209986] ___sys_sendmsg+0x326/0x800 [ 38.213959] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 38.218693] ? trace_hardirqs_on+0x10/0x10 [ 38.222902] ? trace_hardirqs_on+0x10/0x10 [ 38.227116] ? __lock_acquire+0x5fc/0x3f20 [ 38.231332] ? lock_acquire+0x170/0x3f0 [ 38.235289] ? __inet_stream_connect+0x936/0xb90 [ 38.240022] ? __might_fault+0x104/0x1b0 [ 38.244060] ? lock_acquire+0x170/0x3f0 [ 38.248008] ? __fdget+0x167/0x1f0 [ 38.251522] ? sockfd_lookup_light+0xb2/0x160 [ 38.255999] __sys_sendmmsg+0x129/0x330 [ 38.259952] ? SyS_sendmsg+0x40/0x40 [ 38.263648] ? inet_stream_connect+0x76/0xa0 [ 38.268037] ? up_read+0x17/0x30 [ 38.271378] SyS_sendmmsg+0x2f/0x50 [ 38.274981] ? __sys_sendmmsg+0x330/0x330 [ 38.279108] do_syscall_64+0x1d5/0x640 [ 38.282976] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 38.288140] RIP: 0033:0x7f11a65e1d19 executing program [ 38.291831] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 38.299523] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f11a65e1d19 [ 38.306770] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 38.314017] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 38.321260] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 38.328505] R13: 00000000000f4240 R14: 00000000000093de R15: 00007ffd07233894 executing program [ 38.413720] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 38.424268] CPU: 0 PID: 8244 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 38.432137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 38.441479] Call Trace: [ 38.444052] dump_stack+0x1b2/0x281 [ 38.447656] ccid3_update_send_interval.cold+0x87/0x93 [ 38.452908] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 38.457643] ? ccid3_update_send_interval+0x100/0x100 [ 38.462810] dccp_xmit_packet+0x24b/0x6d0 [ 38.466938] dccp_write_xmit+0x140/0x1a0 [ 38.470975] dccp_sendmsg+0x708/0x880 [ 38.474751] ? dccp_ioctl+0x150/0x150 [ 38.478537] ? copy_msghdr_from_user+0x218/0x3b0 [ 38.483270] ? kernel_recvmsg+0x210/0x210 [ 38.487394] inet_sendmsg+0x11a/0x4e0 [ 38.491169] ? security_socket_sendmsg+0x83/0xb0 [ 38.495899] ? inet_recvmsg+0x4d0/0x4d0 [ 38.499855] sock_sendmsg+0xb5/0x100 [ 38.503552] ___sys_sendmsg+0x326/0x800 [ 38.507501] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 38.512233] ? trace_hardirqs_on+0x10/0x10 [ 38.516443] ? trace_hardirqs_on+0x10/0x10 [ 38.520653] ? __lock_acquire+0x5fc/0x3f20 [ 38.524865] ? lock_acquire+0x170/0x3f0 [ 38.528817] ? __inet_stream_connect+0x936/0xb90 [ 38.533546] ? __might_fault+0x104/0x1b0 [ 38.537584] ? lock_acquire+0x170/0x3f0 [ 38.541536] ? __fdget+0x167/0x1f0 [ 38.545053] ? sockfd_lookup_light+0xb2/0x160 [ 38.549523] __sys_sendmmsg+0x129/0x330 [ 38.553473] ? SyS_sendmsg+0x40/0x40 [ 38.557166] ? inet_stream_connect+0x76/0xa0 [ 38.561555] ? up_read+0x17/0x30 [ 38.564897] SyS_sendmmsg+0x2f/0x50 [ 38.568497] ? __sys_sendmmsg+0x330/0x330 [ 38.572621] do_syscall_64+0x1d5/0x640 [ 38.576489] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 38.581670] RIP: 0033:0x7f11a65e1d19 [ 38.585357] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 38.593045] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f11a65e1d19 [ 38.600296] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 38.607545] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 38.614794] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 38.622041] R13: 00000000000f4240 R14: 00000000000095e4 R15: 00007ffd07233894 [ 38.638935] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 38.649445] CPU: 0 PID: 8244 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 38.657320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 38.666656] Call Trace: [ 38.669222] dump_stack+0x1b2/0x281 [ 38.672827] ccid3_update_send_interval.cold+0x87/0x93 [ 38.678079] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 38.682812] ? ccid3_update_send_interval+0x100/0x100 [ 38.687983] dccp_xmit_packet+0x24b/0x6d0 [ 38.692108] dccp_write_xmit+0x140/0x1a0 [ 38.696155] dccp_sendmsg+0x708/0x880 [ 38.699943] ? dccp_ioctl+0x150/0x150 [ 38.703727] ? copy_msghdr_from_user+0x218/0x3b0 [ 38.708463] ? kernel_recvmsg+0x210/0x210 [ 38.712589] inet_sendmsg+0x11a/0x4e0 [ 38.716365] ? security_socket_sendmsg+0x83/0xb0 [ 38.721094] ? inet_recvmsg+0x4d0/0x4d0 [ 38.725043] sock_sendmsg+0xb5/0x100 [ 38.728730] ___sys_sendmsg+0x326/0x800 [ 38.732678] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 38.737411] ? trace_hardirqs_on+0x10/0x10 [ 38.741622] ? trace_hardirqs_on+0x10/0x10 [ 38.745831] ? __lock_acquire+0x5fc/0x3f20 [ 38.750043] ? lock_acquire+0x170/0x3f0 [ 38.753993] ? __inet_stream_connect+0x936/0xb90 [ 38.758728] ? __might_fault+0x104/0x1b0 [ 38.762765] ? lock_acquire+0x170/0x3f0 [ 38.766716] ? __fdget+0x167/0x1f0 [ 38.770229] ? sockfd_lookup_light+0xb2/0x160 [ 38.774701] __sys_sendmmsg+0x129/0x330 [ 38.778649] ? SyS_sendmsg+0x40/0x40 [ 38.782348] ? inet_stream_connect+0x76/0xa0 [ 38.786739] ? up_read+0x17/0x30 [ 38.790090] SyS_sendmmsg+0x2f/0x50 [ 38.793691] ? __sys_sendmmsg+0x330/0x330 [ 38.797812] do_syscall_64+0x1d5/0x640 [ 38.801676] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 38.806929] RIP: 0033:0x7f11a65e1d19 [ 38.810613] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 38.818300] RAX: ffffffffffffffda RBX: 0000000000000011 RCX: 00007f11a65e1d19 [ 38.825548] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 38.832797] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 38.840047] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 38.847301] R13: 00000000000f4240 R14: 00000000000095e4 R15: 00007ffd07233894 [ 38.859961] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 38.870541] CPU: 1 PID: 8244 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 38.878398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 38.887726] Call Trace: [ 38.890291] dump_stack+0x1b2/0x281 [ 38.893895] ccid3_update_send_interval.cold+0x87/0x93 [ 38.899153] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 38.903885] ? ccid3_update_send_interval+0x100/0x100 [ 38.909049] dccp_xmit_packet+0x24b/0x6d0 [ 38.913175] dccp_write_xmit+0x140/0x1a0 [ 38.917218] dccp_sendmsg+0x708/0x880 [ 38.921005] ? dccp_ioctl+0x150/0x150 [ 38.924778] ? copy_msghdr_from_user+0x218/0x3b0 [ 38.929509] ? kernel_recvmsg+0x210/0x210 [ 38.933631] inet_sendmsg+0x11a/0x4e0 [ 38.937406] ? security_socket_sendmsg+0x83/0xb0 [ 38.942134] ? inet_recvmsg+0x4d0/0x4d0 [ 38.946084] sock_sendmsg+0xb5/0x100 [ 38.949886] ___sys_sendmsg+0x326/0x800 [ 38.953837] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 38.958571] ? trace_hardirqs_on+0x10/0x10 [ 38.962779] ? trace_hardirqs_on+0x10/0x10 [ 38.966986] ? __lock_acquire+0x5fc/0x3f20 [ 38.971195] ? lock_acquire+0x170/0x3f0 [ 38.975144] ? __inet_stream_connect+0x936/0xb90 [ 38.979876] ? __might_fault+0x104/0x1b0 [ 38.983911] ? lock_acquire+0x170/0x3f0 [ 38.987865] ? __fdget+0x167/0x1f0 [ 38.991389] ? sockfd_lookup_light+0xb2/0x160 [ 38.995860] __sys_sendmmsg+0x129/0x330 [ 38.999810] ? SyS_sendmsg+0x40/0x40 [ 39.003509] ? inet_stream_connect+0x76/0xa0 [ 39.007899] ? up_read+0x17/0x30 [ 39.011249] SyS_sendmmsg+0x2f/0x50 [ 39.014848] ? __sys_sendmmsg+0x330/0x330 [ 39.018974] do_syscall_64+0x1d5/0x640 [ 39.022842] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 39.028008] RIP: 0033:0x7f11a65e1d19 [ 39.031694] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 39.039375] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f11a65e1d19 [ 39.046629] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 39.053875] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d executing program executing program [ 39.061119] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 39.068367] R13: 00000000000f4240 R14: 00000000000095e4 R15: 00007ffd07233894 [ 39.153655] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 39.164338] CPU: 0 PID: 8246 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 39.172206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 39.181618] Call Trace: [ 39.184180] dump_stack+0x1b2/0x281 [ 39.187791] ccid3_update_send_interval.cold+0x87/0x93 [ 39.193048] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 39.197780] ? ccid3_update_send_interval+0x100/0x100 [ 39.202946] dccp_xmit_packet+0x24b/0x6d0 [ 39.207069] dccp_write_xmit+0x140/0x1a0 [ 39.211104] dccp_sendmsg+0x708/0x880 [ 39.214880] ? dccp_ioctl+0x150/0x150 [ 39.218657] ? copy_msghdr_from_user+0x218/0x3b0 [ 39.223393] ? kernel_recvmsg+0x210/0x210 [ 39.227519] inet_sendmsg+0x11a/0x4e0 [ 39.231299] ? security_socket_sendmsg+0x83/0xb0 [ 39.236046] ? inet_recvmsg+0x4d0/0x4d0 [ 39.240016] sock_sendmsg+0xb5/0x100 [ 39.243708] ___sys_sendmsg+0x326/0x800 [ 39.247658] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 39.252400] ? trace_hardirqs_on+0x10/0x10 [ 39.256610] ? trace_hardirqs_on+0x10/0x10 [ 39.260819] ? __lock_acquire+0x5fc/0x3f20 [ 39.265032] ? lock_acquire+0x170/0x3f0 [ 39.268983] ? __inet_stream_connect+0x936/0xb90 [ 39.273712] ? __might_fault+0x104/0x1b0 [ 39.277749] ? lock_acquire+0x170/0x3f0 [ 39.281700] ? __fdget+0x167/0x1f0 [ 39.285215] ? sockfd_lookup_light+0xb2/0x160 [ 39.289690] __sys_sendmmsg+0x129/0x330 [ 39.293637] ? SyS_sendmsg+0x40/0x40 [ 39.297329] ? retint_kernel+0x2d/0x2d [ 39.301190] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 39.306177] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 39.310910] SyS_sendmmsg+0x2f/0x50 [ 39.314509] ? __sys_sendmmsg+0x330/0x330 [ 39.318629] do_syscall_64+0x1d5/0x640 [ 39.322495] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 39.327662] RIP: 0033:0x7f11a65e1d19 [ 39.331355] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 39.339037] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f11a65e1d19 [ 39.346279] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 39.353527] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 39.360856] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 39.368098] R13: 00000000000f4240 R14: 00000000000098c8 R15: 00007ffd07233894 [ 39.379868] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 39.390444] CPU: 1 PID: 8246 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 39.398298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 39.407627] Call Trace: [ 39.410196] dump_stack+0x1b2/0x281 [ 39.413800] ccid3_update_send_interval.cold+0x87/0x93 [ 39.419050] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 39.423792] ? ccid3_update_send_interval+0x100/0x100 [ 39.428956] dccp_xmit_packet+0x24b/0x6d0 [ 39.433080] dccp_write_xmit+0x140/0x1a0 [ 39.437116] dccp_sendmsg+0x708/0x880 [ 39.440895] ? dccp_ioctl+0x150/0x150 [ 39.444674] ? copy_msghdr_from_user+0x218/0x3b0 [ 39.449403] ? kernel_recvmsg+0x210/0x210 [ 39.453528] inet_sendmsg+0x11a/0x4e0 [ 39.457301] ? security_socket_sendmsg+0x83/0xb0 [ 39.462028] ? inet_recvmsg+0x4d0/0x4d0 [ 39.465975] sock_sendmsg+0xb5/0x100 [ 39.469663] ___sys_sendmsg+0x326/0x800 [ 39.473614] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 39.478344] ? trace_hardirqs_on+0x10/0x10 [ 39.482551] ? trace_hardirqs_on+0x10/0x10 [ 39.486777] ? __lock_acquire+0x5fc/0x3f20 [ 39.490987] ? lock_acquire+0x170/0x3f0 [ 39.494936] ? __inet_stream_connect+0x936/0xb90 [ 39.499665] ? __might_fault+0x104/0x1b0 [ 39.503701] ? lock_acquire+0x170/0x3f0 [ 39.507653] ? __fdget+0x167/0x1f0 [ 39.511172] ? sockfd_lookup_light+0xb2/0x160 [ 39.515639] __sys_sendmmsg+0x129/0x330 [ 39.519587] ? SyS_sendmsg+0x40/0x40 [ 39.523281] ? retint_kernel+0x2d/0x2d [ 39.527150] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 39.532145] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 39.536883] SyS_sendmmsg+0x2f/0x50 [ 39.540570] ? __sys_sendmmsg+0x330/0x330 [ 39.544689] do_syscall_64+0x1d5/0x640 [ 39.548552] entry_SYSCALL_64_after_hwframe+0x46/0xbb executing program [ 39.553716] RIP: 0033:0x7f11a65e1d19 [ 39.557405] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 39.565083] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f11a65e1d19 [ 39.572414] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 39.579658] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 39.586899] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 39.594141] R13: 00000000000f4240 R14: 00000000000098c8 R15: 00007ffd07233894 executing program [ 39.678672] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 39.689274] CPU: 0 PID: 8248 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 39.697130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 39.706457] Call Trace: [ 39.709020] dump_stack+0x1b2/0x281 [ 39.712623] ccid3_update_send_interval.cold+0x87/0x93 [ 39.717874] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 39.722613] ? ccid3_update_send_interval+0x100/0x100 [ 39.727777] dccp_xmit_packet+0x24b/0x6d0 [ 39.731898] dccp_write_xmit+0x140/0x1a0 [ 39.735933] dccp_sendmsg+0x708/0x880 [ 39.739715] ? dccp_ioctl+0x150/0x150 [ 39.743500] ? copy_msghdr_from_user+0x218/0x3b0 [ 39.748227] ? kernel_recvmsg+0x210/0x210 [ 39.752351] inet_sendmsg+0x11a/0x4e0 [ 39.756133] ? security_socket_sendmsg+0x83/0xb0 [ 39.760862] ? inet_recvmsg+0x4d0/0x4d0 [ 39.764807] sock_sendmsg+0xb5/0x100 [ 39.768501] ___sys_sendmsg+0x326/0x800 [ 39.772452] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 39.777180] ? trace_hardirqs_on+0x10/0x10 [ 39.781391] ? trace_hardirqs_on+0x10/0x10 [ 39.785599] ? __lock_acquire+0x5fc/0x3f20 [ 39.789809] ? lock_acquire+0x170/0x3f0 [ 39.793758] ? __inet_stream_connect+0x936/0xb90 [ 39.798487] ? __might_fault+0x104/0x1b0 [ 39.802525] ? lock_acquire+0x170/0x3f0 [ 39.806476] ? __fdget+0x167/0x1f0 [ 39.809990] ? sockfd_lookup_light+0xb2/0x160 [ 39.814460] __sys_sendmmsg+0x129/0x330 [ 39.818412] ? SyS_sendmsg+0x40/0x40 [ 39.822105] ? inet_stream_connect+0x76/0xa0 [ 39.826491] ? up_read+0x17/0x30 [ 39.829830] SyS_sendmmsg+0x2f/0x50 [ 39.833428] ? __sys_sendmmsg+0x330/0x330 [ 39.837548] do_syscall_64+0x1d5/0x640 [ 39.841410] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 39.846580] RIP: 0033:0x7f11a65e1d19 [ 39.850269] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 39.857950] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f11a65e1d19 [ 39.865192] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 39.872433] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 39.879679] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 39.886929] R13: 00000000000f4240 R14: 0000000000009ad7 R15: 00007ffd07233894 [ 39.899669] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 39.910233] CPU: 1 PID: 8248 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 39.918089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 39.927415] Call Trace: [ 39.929976] dump_stack+0x1b2/0x281 [ 39.933580] ccid3_update_send_interval.cold+0x87/0x93 [ 39.938832] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 39.943601] ? ccid3_update_send_interval+0x100/0x100 [ 39.948765] dccp_xmit_packet+0x24b/0x6d0 [ 39.952889] dccp_write_xmit+0x140/0x1a0 [ 39.956926] dccp_sendmsg+0x708/0x880 [ 39.960708] ? dccp_ioctl+0x150/0x150 [ 39.964482] ? copy_msghdr_from_user+0x218/0x3b0 [ 39.969213] ? kernel_recvmsg+0x210/0x210 [ 39.973335] inet_sendmsg+0x11a/0x4e0 [ 39.977108] ? security_socket_sendmsg+0x83/0xb0 [ 39.981837] ? inet_recvmsg+0x4d0/0x4d0 [ 39.985783] sock_sendmsg+0xb5/0x100 [ 39.989471] ___sys_sendmsg+0x326/0x800 [ 39.993419] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 39.998148] ? trace_hardirqs_on+0x10/0x10 [ 40.002356] ? trace_hardirqs_on+0x10/0x10 [ 40.006563] ? __lock_acquire+0x5fc/0x3f20 [ 40.010771] ? lock_acquire+0x170/0x3f0 [ 40.014720] ? __inet_stream_connect+0x936/0xb90 [ 40.019449] ? __might_fault+0x104/0x1b0 [ 40.023483] ? lock_acquire+0x170/0x3f0 [ 40.027430] ? __fdget+0x167/0x1f0 [ 40.030945] ? sockfd_lookup_light+0xb2/0x160 [ 40.035413] __sys_sendmmsg+0x129/0x330 [ 40.039360] ? SyS_sendmsg+0x40/0x40 [ 40.043053] ? inet_stream_connect+0x76/0xa0 [ 40.047439] ? up_read+0x17/0x30 [ 40.050782] SyS_sendmmsg+0x2f/0x50 [ 40.054383] ? __sys_sendmmsg+0x330/0x330 [ 40.058505] do_syscall_64+0x1d5/0x640 [ 40.062376] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 40.067545] RIP: 0033:0x7f11a65e1d19 [ 40.071235] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 executing program [ 40.078922] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f11a65e1d19 [ 40.086180] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 40.093426] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 40.100673] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 40.107931] R13: 00000000000f4240 R14: 0000000000009ad7 R15: 00007ffd07233894 executing program [ 40.193696] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 40.204239] CPU: 1 PID: 8250 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 40.212100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 40.221426] Call Trace: [ 40.223991] dump_stack+0x1b2/0x281 [ 40.227595] ccid3_update_send_interval.cold+0x87/0x93 [ 40.232844] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 40.237572] ? ccid3_update_send_interval+0x100/0x100 [ 40.242737] dccp_xmit_packet+0x24b/0x6d0 [ 40.246859] dccp_write_xmit+0x140/0x1a0 [ 40.250896] dccp_sendmsg+0x708/0x880 [ 40.254673] ? dccp_ioctl+0x150/0x150 [ 40.258446] ? copy_msghdr_from_user+0x218/0x3b0 [ 40.263175] ? kernel_recvmsg+0x210/0x210 [ 40.267298] inet_sendmsg+0x11a/0x4e0 [ 40.271075] ? security_socket_sendmsg+0x83/0xb0 [ 40.275803] ? inet_recvmsg+0x4d0/0x4d0 [ 40.279749] sock_sendmsg+0xb5/0x100 [ 40.283449] ___sys_sendmsg+0x326/0x800 [ 40.287403] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 40.292133] ? trace_hardirqs_on+0x10/0x10 [ 40.296345] ? trace_hardirqs_on+0x10/0x10 [ 40.300553] ? __lock_acquire+0x5fc/0x3f20 [ 40.304775] ? lock_acquire+0x170/0x3f0 [ 40.308726] ? __inet_stream_connect+0x936/0xb90 [ 40.313459] ? __might_fault+0x104/0x1b0 [ 40.317496] ? lock_acquire+0x170/0x3f0 [ 40.321444] ? __fdget+0x167/0x1f0 [ 40.324960] ? sockfd_lookup_light+0xb2/0x160 [ 40.329433] __sys_sendmmsg+0x129/0x330 [ 40.333390] ? SyS_sendmsg+0x40/0x40 [ 40.337092] ? inet_stream_connect+0x76/0xa0 [ 40.341480] ? up_read+0x17/0x30 [ 40.344825] SyS_sendmmsg+0x2f/0x50 [ 40.348428] ? __sys_sendmmsg+0x330/0x330 [ 40.352550] do_syscall_64+0x1d5/0x640 [ 40.356417] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 40.361579] RIP: 0033:0x7f11a65e1d19 [ 40.365267] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 40.372949] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00007f11a65e1d19 [ 40.380192] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 40.387441] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 40.394684] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 40.402439] R13: 00000000000f4240 R14: 0000000000009cd8 R15: 00007ffd07233894 [ 40.410635] BUG: "hc->tx_t_ipi == 0" holds (exception!) at net/dccp/ccids/ccid3.c:101/ccid3_update_send_interval() [ 40.421346] CPU: 1 PID: 8250 Comm: syz-executor244 Not tainted 4.14.295-syzkaller #0 [ 40.429215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 40.438547] Call Trace: [ 40.441111] dump_stack+0x1b2/0x281 [ 40.444719] ccid3_update_send_interval.cold+0x87/0x93 [ 40.449975] ccid3_hc_tx_packet_sent+0x10f/0x140 [ 40.454706] ? ccid3_update_send_interval+0x100/0x100 [ 40.459870] dccp_xmit_packet+0x24b/0x6d0 [ 40.464000] dccp_write_xmit+0x140/0x1a0 [ 40.468040] dccp_sendmsg+0x708/0x880 [ 40.471817] ? dccp_ioctl+0x150/0x150 [ 40.475591] ? copy_msghdr_from_user+0x218/0x3b0 [ 40.480329] ? kernel_recvmsg+0x210/0x210 [ 40.484457] inet_sendmsg+0x11a/0x4e0 [ 40.488327] ? security_socket_sendmsg+0x83/0xb0 [ 40.493060] ? inet_recvmsg+0x4d0/0x4d0 [ 40.497011] sock_sendmsg+0xb5/0x100 [ 40.500699] ___sys_sendmsg+0x326/0x800 [ 40.504648] ? copy_msghdr_from_user+0x3b0/0x3b0 [ 40.509381] ? trace_hardirqs_on+0x10/0x10 [ 40.513593] ? trace_hardirqs_on+0x10/0x10 [ 40.517802] ? __lock_acquire+0x5fc/0x3f20 [ 40.522011] ? lock_acquire+0x170/0x3f0 [ 40.525959] ? __inet_stream_connect+0x936/0xb90 [ 40.530690] ? __might_fault+0x104/0x1b0 [ 40.534726] ? lock_acquire+0x170/0x3f0 [ 40.538684] ? __fdget+0x167/0x1f0 [ 40.542197] ? sockfd_lookup_light+0xb2/0x160 [ 40.546676] __sys_sendmmsg+0x129/0x330 [ 40.550626] ? SyS_sendmsg+0x40/0x40 [ 40.554315] ? inet_stream_connect+0x76/0xa0 [ 40.558706] ? up_read+0x17/0x30 [ 40.562049] SyS_sendmmsg+0x2f/0x50 [ 40.565649] ? __sys_sendmmsg+0x330/0x330 [ 40.569770] do_syscall_64+0x1d5/0x640 [ 40.573632] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 40.578795] RIP: 0033:0x7f11a65e1d19 [ 40.582481] RSP: 002b:00007ffd07233888 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 executing program executing program [ 40.590168] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 00007f11a65e1d19 [ 40.597420] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004 [ 40.604663] RBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d [ 40.611911] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd072338a0 [ 40.619163] R13: 00000000000f4240 R14: 0000000000009cd8 R15: 00007ffd07233894