Warning: Permanently added '10.128.1.154' (ECDSA) to the list of known hosts.
2023/03/31 08:58:27 ignoring optional flag "sandboxArg"="0"
2023/03/31 08:58:27 parsed 1 programs
2023/03/31 08:58:27 executed programs: 0
[ 68.320697][ T48] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 68.328544][ T48] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 68.337836][ T48] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 68.348957][ T48] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 68.356896][ T48] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 68.475931][ T5534] chnl_net:caif_netlink_parms(): no params data found
[ 68.519461][ T5534] bridge0: port 1(bridge_slave_0) entered blocking state
[ 68.526900][ T5534] bridge0: port 1(bridge_slave_0) entered disabled state
[ 68.534096][ T5534] bridge_slave_0: entered allmulticast mode
[ 68.541141][ T5534] bridge_slave_0: entered promiscuous mode
[ 68.548554][ T5534] bridge0: port 2(bridge_slave_1) entered blocking state
[ 68.556223][ T5534] bridge0: port 2(bridge_slave_1) entered disabled state
[ 68.563346][ T5534] bridge_slave_1: entered allmulticast mode
[ 68.570110][ T5534] bridge_slave_1: entered promiscuous mode
[ 68.588285][ T5534] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 68.599425][ T5534] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 68.620203][ T5534] team0: Port device team_slave_0 added
[ 68.627870][ T5534] team0: Port device team_slave_1 added
[ 68.644228][ T5534] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 68.651271][ T5534] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 68.677887][ T5534] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 68.692284][ T5534] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 68.699327][ T5534] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 68.725407][ T5534] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 68.751571][ T5534] hsr_slave_0: entered promiscuous mode
[ 68.758010][ T5534] hsr_slave_1: entered promiscuous mode
[ 69.293428][ T5534] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 69.305299][ T5534] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 69.316682][ T5534] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 69.326683][ T5534] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 69.350405][ T5534] bridge0: port 2(bridge_slave_1) entered blocking state
[ 69.357578][ T5534] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 69.365075][ T5534] bridge0: port 1(bridge_slave_0) entered blocking state
[ 69.372374][ T5534] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 69.427115][ T5534] 8021q: adding VLAN 0 to HW filter on device bond0
[ 69.440880][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 69.450913][ T7] bridge0: port 1(bridge_slave_0) entered disabled state
[ 69.459883][ T7] bridge0: port 2(bridge_slave_1) entered disabled state
[ 69.468778][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 69.485586][ T5534] 8021q: adding VLAN 0 to HW filter on device team0
[ 69.495649][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 69.504336][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 69.514675][ T7] bridge0: port 1(bridge_slave_0) entered blocking state
[ 69.521892][ T7] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 69.538127][ T5085] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 69.546933][ T5085] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 69.558211][ T5085] bridge0: port 2(bridge_slave_1) entered blocking state
[ 69.565364][ T5085] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 69.573779][ T5085] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 69.583640][ T5085] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 69.606483][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 69.617485][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 69.627047][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 69.637128][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 69.647093][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 69.655833][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 69.664212][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 69.674116][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 69.684059][ T5534] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 69.694613][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 69.836839][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 69.844343][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 69.857821][ T5534] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 69.878333][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 69.889723][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 69.909564][ T5085] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 69.918284][ T5085] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 69.929806][ T5534] veth0_vlan: entered promiscuous mode
[ 69.940038][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 69.949934][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 69.961269][ T5534] veth1_vlan: entered promiscuous mode
[ 69.987589][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 69.996678][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 70.004849][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 70.016163][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 70.026631][ T5534] veth0_macvtap: entered promiscuous mode
[ 70.038653][ T5534] veth1_macvtap: entered promiscuous mode
[ 70.057795][ T5534] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 70.065537][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 70.074080][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 70.084153][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 70.093475][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 70.106778][ T5534] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 70.117811][ T5085] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 70.127186][ T5085] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 70.138520][ T5534] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 70.148985][ T5534] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 70.159778][ T5534] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 70.169708][ T5534] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 70.234242][ T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 70.247875][ T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 70.269800][ T5085] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 70.281140][ T3498] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 70.291074][ T3498] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 70.302818][ T5085] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 70.342983][ T5611] netlink: 244 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 70.369071][ T5611] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 70.416719][ T5616] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 70.447741][ T48] Bluetooth: hci0: command 0x0409 tx timeout
[ 70.480254][ T5620] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 70.550251][ T5625] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 70.620222][ T5630] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 70.663470][ T5633] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 70.720014][ T5638] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 70.776338][ T5641] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 70.828921][ T5645] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 70.887685][ T5648] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 72.525650][ T48] Bluetooth: hci0: command 0x041b tx timeout
[ 73.228826][ C1] Negotiation of local Allow Short Seqnos failed in state CHANGING at net/dccp/feat.c:1537/dccp_feat_activate_values()
2023/03/31 08:58:32 executed programs: 58
[ 74.600071][ C1] Negotiation of local Allow Short Seqnos failed in state CHANGING at net/dccp/feat.c:1537/dccp_feat_activate_values()
[ 74.605507][ T48] Bluetooth: hci0: command 0x040f tx timeout
[ 74.718943][ C1] Negotiation of local Allow Short Seqnos failed in state CHANGING at net/dccp/feat.c:1537/dccp_feat_activate_values()
[ 75.423605][ T5991] net_ratelimit: 85 callbacks suppressed
[ 75.423615][ T5991] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 75.493459][ T5996] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 75.534101][ T6000] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 75.589088][ T6003] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 75.648168][ T6007] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 75.695187][ T6010] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 75.742737][ T6014] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 75.797685][ T6018] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 75.857292][ T6024] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 75.903771][ T6027] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 76.516559][ T2213] cfg80211: failed to load regulatory.db
[ 76.675578][ T48] Bluetooth: hci0: command 0x0419 tx timeout
[ 76.814197][ C1] Negotiation of local Allow Short Seqnos failed in state CHANGING at net/dccp/feat.c:1537/dccp_feat_activate_values()
[ 77.634006][ C1] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:417/tfrc_rx_hist_sample_rtt()
[ 77.648631][ C1] CPU: 1 PID: 6167 Comm: syz-executor.0 Not tainted 6.3.0-rc4-syzkaller #0
[ 77.657225][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[ 77.667917][ C1] Call Trace:
[ 77.671210][ C1]
[ 77.674240][ C1] dump_stack_lvl+0x167/0x220
[ 77.679040][ C1] ? nf_tcp_handle_invalid+0x4e0/0x4e0
[ 77.684861][ C1] ? panic+0x540/0x540
[ 77.688945][ C1] ? ccid3_hc_tx_update_x+0x640/0x640
[ 77.694420][ C1] tfrc_rx_hist_sample_rtt+0x2d6/0x3e0
[ 77.699897][ C1] ccid3_hc_rx_packet_recv+0x56f/0xe60
[ 77.705562][ C1] dccp_rcv_established+0x153/0x250
[ 77.710820][ C1] dccp_v4_do_rcv+0xc6/0x190
[ 77.715433][ C1] ? ip_protocol_deliver_rcu+0x62/0xa20
[ 77.721000][ C1] __sk_receive_skb+0x36e/0x880
[ 77.726056][ C1] ip_protocol_deliver_rcu+0x62/0xa20
[ 77.731451][ C1] ip_local_deliver_finish+0x21d/0x460
[ 77.736941][ C1] NF_HOOK+0x255/0x300
[ 77.741022][ C1] ? NF_HOOK+0x300/0x300
[ 77.745447][ C1] ? ip_local_deliver+0x160/0x160
[ 77.750477][ C1] ? ip_rcv_finish_core+0x435/0x1580
[ 77.755775][ C1] ? NF_HOOK+0x300/0x300
[ 77.760030][ C1] NF_HOOK+0x255/0x300
[ 77.764109][ C1] ? ip_rcv_core+0xbc0/0xbc0
[ 77.768710][ C1] ? ip_local_deliver+0x160/0x160
[ 77.773740][ C1] ? ip_rcv_core+0x542/0xbc0
[ 77.778339][ C1] ? ip_rcv_core+0xbc0/0xbc0
[ 77.782965][ C1] ? ip_local_deliver_finish+0x460/0x460
[ 77.788614][ C1] ? ip_local_deliver_finish+0x460/0x460
[ 77.794261][ C1] __netif_receive_skb+0x1b7/0x4f0
[ 77.799385][ C1] ? read_lock_is_recursive+0x20/0x20
[ 77.804802][ C1] ? __netif_receive_skb_list_core+0x7f0/0x7f0
[ 77.810975][ C1] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[ 77.816973][ C1] ? print_irqtrace_events+0x220/0x220
[ 77.822458][ C1] ? _raw_spin_lock_irq+0xdf/0x120
[ 77.827592][ C1] process_backlog+0x2dd/0x640
[ 77.832477][ C1] ? trigger_rx_softirq+0x50/0x50
[ 77.837603][ C1] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[ 77.843595][ C1] ? print_irqtrace_events+0x220/0x220
[ 77.849160][ C1] __napi_poll+0x94/0x380
[ 77.853509][ C1] net_rx_action+0x65c/0xd60
[ 77.858121][ C1] ? net_tx_action+0x650/0x650
[ 77.862900][ C1] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[ 77.868909][ C1] __do_softirq+0x2ab/0x908
[ 77.873514][ C1] ? __irq_exit_rcu+0x159/0x240
[ 77.878612][ C1] ? __lock_text_end+0xc/0xc
[ 77.883222][ C1] ? irqtime_account_irq+0xd4/0x1e0
[ 77.888440][ C1] __irq_exit_rcu+0x159/0x240
[ 77.893148][ C1] ? irq_exit_rcu+0x20/0x20
[ 77.897699][ C1] irq_exit_rcu+0x9/0x20
[ 77.901956][ C1] sysvec_apic_timer_interrupt+0x95/0xb0
[ 77.907772][ C1]
[ 77.910966][ C1]
[ 77.913905][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 77.919995][ C1] RIP: 0010:_raw_spin_unlock_irqrestore+0xd8/0x140
[ 77.926509][ C1] Code: 9c 8f 44 24 20 42 80 3c 23 00 74 08 4c 89 f7 e8 1e ed 1b f8 f6 44 24 21 02 75 4e 41 f7 c7 00 02 00 00 74 01 fb bf 01 00 00 00 63 47 ad f7 65 8b 05 04 d5 5c 76 85 c0 74 3f 48 c7 04 24 0e 36
[ 77.946453][ C1] RSP: 0018:ffffc900055a7080 EFLAGS: 00000206
[ 77.952530][ C1] RAX: 8ec666eb599b0100 RBX: 1ffff92000ab4e14 RCX: ffffffff90832003
[ 77.960713][ C1] RDX: dffffc0000000000 RSI: ffffffff89ea6a40 RDI: 0000000000000001
[ 77.968705][ C1] RBP: ffffc900055a7120 R08: dffffc0000000000 R09: fffffbfff1a7d2a6
[ 77.976695][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[ 77.984684][ C1] R13: 1ffff92000ab4e10 R14: ffffc900055a70a0 R15: 0000000000000246
[ 77.992682][ C1] ? _raw_spin_unlock+0x40/0x40
[ 77.997554][ C1] ? __kasan_slab_alloc+0x23/0x70
[ 78.002780][ C1] debug_check_no_obj_freed+0x5ca/0x650
[ 78.008570][ C1] free_unref_page_prepare+0x2f5/0xe70
[ 78.014065][ C1] free_unref_page+0x37/0x3f0
[ 78.018846][ C1] __unfreeze_partials+0x1b1/0x1f0
[ 78.023974][ C1] put_cpu_partial+0x116/0x180
[ 78.028846][ C1] qlist_free_all+0x22/0x60
[ 78.033367][ C1] kasan_quarantine_reduce+0x14b/0x160
[ 78.039066][ C1] __kasan_slab_alloc+0x23/0x70
[ 78.044019][ C1] slab_post_alloc_hook+0x68/0x3a0
[ 78.049177][ C1] kmem_cache_alloc_node+0x157/0x350
[ 78.054485][ C1] ? __lock_acquire+0x125b/0x1f80
[ 78.059536][ C1] ? __alloc_skb+0x11e/0x3b0
[ 78.064145][ C1] __alloc_skb+0x11e/0x3b0
[ 78.068572][ C1] ? napi_build_skb+0x1c0/0x1c0
[ 78.073446][ C1] ? reacquire_held_locks+0x3a8/0x660
[ 78.078830][ C1] ? release_sock+0x29/0x180
[ 78.083442][ C1] alloc_skb_with_frags+0x82/0x640
[ 78.088576][ C1] ? print_unlock_imbalance_bug+0x2c0/0x2c0
[ 78.094487][ C1] sock_alloc_send_pskb+0x7f3/0x8f0
[ 78.099808][ C1] ? sock_kzfree_s+0x40/0x40
[ 78.104409][ C1] ? __local_bh_enable_ip+0x168/0x1f0
[ 78.109798][ C1] ? dccp_sendmsg+0x299/0x870
[ 78.114487][ C1] ? _local_bh_enable+0xa0/0xa0
[ 78.119357][ C1] dccp_sendmsg+0x2b4/0x870
[ 78.123875][ C1] ? dccp_getsockopt+0xb00/0xb00
[ 78.129074][ C1] ? __import_iovec+0x6b/0x470
[ 78.133889][ C1] ? inet_sendmsg+0x4c/0x270
[ 78.138574][ C1] ? inet_send_prepare+0x210/0x210
[ 78.143700][ C1] ____sys_sendmsg+0x4aa/0x780
[ 78.148481][ C1] ? __sys_sendmsg_sock+0x20/0x20
[ 78.153525][ C1] __sys_sendmmsg+0x336/0x650
[ 78.158215][ C1] ? __ia32_sys_sendmsg+0x90/0x90
[ 78.163272][ C1] ? do_raw_spin_unlock+0x13b/0x8b0
[ 78.168568][ C1] ? wake_up_q+0xa3/0xe0
[ 78.172920][ C1] ? futex_wake+0x44c/0x4e0
[ 78.177453][ C1] ? futex_wake_mark+0x110/0x110
[ 78.182401][ C1] ? __local_bh_enable_ip+0x168/0x1f0
[ 78.187793][ C1] ? inet_stream_connect+0x7f/0x90
[ 78.192923][ C1] ? _local_bh_enable+0xa0/0xa0
[ 78.197787][ C1] ? do_raw_spin_unlock+0x13b/0x8b0
[ 78.203117][ C1] ? xfd_validate_state+0x2f/0xf0
[ 78.208437][ C1] ? print_irqtrace_events+0x220/0x220
[ 78.213999][ C1] ? syscall_enter_from_user_mode+0x32/0x230
[ 78.220006][ C1] __x64_sys_sendmmsg+0x9b/0xb0
[ 78.224958][ C1] do_syscall_64+0x41/0xc0
[ 78.229389][ C1] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 78.235299][ C1] RIP: 0033:0x7fc8dce8c189
[ 78.239726][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 78.259433][ C1] RSP: 002b:00007fc8ddcaa168 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 78.268206][ C1] RAX: ffffffffffffffda RBX: 00007fc8dcfabf80 RCX: 00007fc8dce8c189
[ 78.276190][ C1] RDX: 000000000000ffc3 RSI: 0000000020001e80 RDI: 0000000000000006
2023/03/31 08:58:37 executed programs: 153
[ 78.284169][ C1] RBP: 00007fc8dcee7b01 R08: 0000000000000000 R09: 0000000000000000
[ 78.292510][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 78.300754][ C1] R13: 00007ffc2cfa98ff R14: 00007fc8ddcaa300 R15: 0000000000022000
[ 78.308759][ C1]
[ 78.472240][ C1] BUG: stored value of X_recv is zero at net/dccp/ccids/ccid3.c:691/ccid3_first_li()
[ 78.482018][ C1] CPU: 1 PID: 6208 Comm: syz-executor.0 Not tainted 6.3.0-rc4-syzkaller #0
[ 78.490798][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[ 78.500959][ C1] Call Trace:
[ 78.504256][ C1]
[ 78.507113][ C1] dump_stack_lvl+0x167/0x220
[ 78.511802][ C1] ? nf_tcp_handle_invalid+0x4e0/0x4e0
[ 78.517288][ C1] ? panic+0x540/0x540
[ 78.521477][ C1] ? ktime_get+0xf5/0x1c0
[ 78.525998][ C1] ccid3_first_li+0x27c/0x340
[ 78.530692][ C1] tfrc_lh_interval_add+0x4e7/0x6f0
[ 78.535938][ C1] ? ccid3_hc_tx_update_x+0x640/0x640
[ 78.541329][ C1] tfrc_rx_handle_loss+0x673/0x1720
[ 78.546555][ C1] ? ccid3_hc_tx_update_x+0x640/0x640
[ 78.552028][ C1] ccid3_hc_rx_packet_recv+0x28a/0xe60
[ 78.557481][ C1] dccp_rcv_established+0x153/0x250
[ 78.562666][ C1] dccp_v4_do_rcv+0xc6/0x190
[ 78.567237][ C1] ? ip_protocol_deliver_rcu+0x62/0xa20
[ 78.572776][ C1] __sk_receive_skb+0x36e/0x880
[ 78.577964][ C1] ip_protocol_deliver_rcu+0x62/0xa20
[ 78.583345][ C1] ip_local_deliver_finish+0x21d/0x460
[ 78.588812][ C1] NF_HOOK+0x255/0x300
[ 78.592870][ C1] ? NF_HOOK+0x300/0x300
[ 78.597378][ C1] ? ip_local_deliver+0x160/0x160
[ 78.602554][ C1] ? ip_rcv_finish_core+0x435/0x1580
[ 78.607847][ C1] ? NF_HOOK+0x300/0x300
[ 78.612175][ C1] NF_HOOK+0x255/0x300
[ 78.616342][ C1] ? ip_rcv_core+0xbc0/0xbc0
[ 78.620998][ C1] ? ip_local_deliver+0x160/0x160
[ 78.626009][ C1] ? ip_rcv_core+0x542/0xbc0
[ 78.630580][ C1] ? ip_rcv_core+0xbc0/0xbc0
[ 78.635151][ C1] ? ip_local_deliver_finish+0x460/0x460
[ 78.640850][ C1] ? ip_local_deliver_finish+0x460/0x460
[ 78.646571][ C1] __netif_receive_skb+0x1b7/0x4f0
[ 78.651666][ C1] ? read_lock_is_recursive+0x20/0x20
[ 78.657082][ C1] ? __netif_receive_skb_list_core+0x7f0/0x7f0
[ 78.663219][ C1] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[ 78.669280][ C1] ? print_irqtrace_events+0x220/0x220
[ 78.674825][ C1] ? _raw_spin_lock_irq+0xdf/0x120
[ 78.680050][ C1] process_backlog+0x2dd/0x640
[ 78.684801][ C1] ? trigger_rx_softirq+0x50/0x50
[ 78.689818][ C1] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[ 78.695777][ C1] ? print_irqtrace_events+0x220/0x220
[ 78.701299][ C1] __napi_poll+0x94/0x380
[ 78.705959][ C1] net_rx_action+0x65c/0xd60
[ 78.710540][ C1] ? net_tx_action+0x650/0x650
[ 78.715285][ C1] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[ 78.721264][ C1] __do_softirq+0x2ab/0x908
[ 78.725747][ C1] ? do_softirq+0x166/0x250
[ 78.730231][ C1] ? __lock_text_end+0xc/0xc
[ 78.734802][ C1] do_softirq+0x166/0x250
[ 78.739144][ C1]
[ 78.742073][ C1]
[ 78.745116][ C1] ? __local_bh_enable_ip+0x1f0/0x1f0
[ 78.750465][ C1] ? lockdep_hardirqs_on_prepare+0x7a0/0x7a0
[ 78.756427][ C1] ? rcu_is_watching+0x15/0xb0
[ 78.761178][ C1] __local_bh_enable_ip+0x1b5/0x1f0
[ 78.766464][ C1] ? rcu_lock_release+0x10/0x10
[ 78.771392][ C1] ? _local_bh_enable+0xa0/0xa0
[ 78.776243][ C1] ip_finish_output2+0x998/0xd80
[ 78.781361][ C1] ? ip_fragment+0x1c0/0x1c0
[ 78.785929][ C1] ? ip_skb_dst_mtu+0xba/0x740
[ 78.790688][ C1] ? __ip_finish_output+0x12c/0x390
[ 78.796063][ C1] __ip_queue_xmit+0xf82/0x1be0
[ 78.801005][ C1] dccp_transmit_skb+0xbf9/0x1410
[ 78.806013][ C1] dccp_rcv_established+0x153/0x250
[ 78.811552][ C1] dccp_v4_do_rcv+0xc6/0x190
[ 78.816130][ C1] __release_sock+0x17f/0x410
[ 78.820841][ C1] release_sock+0x55/0x180
[ 78.825681][ C1] dccp_sendmsg+0x36a/0x870
[ 78.830253][ C1] ? dccp_getsockopt+0xb00/0xb00
[ 78.835302][ C1] ? __import_iovec+0x6b/0x470
[ 78.840074][ C1] ? inet_sendmsg+0x4c/0x270
[ 78.844726][ C1] ? inet_send_prepare+0x210/0x210
[ 78.849824][ C1] ____sys_sendmsg+0x4aa/0x780
[ 78.854593][ C1] ? __sys_sendmsg_sock+0x20/0x20
[ 78.859612][ C1] __sys_sendmmsg+0x336/0x650
[ 78.864268][ C1] ? __ia32_sys_sendmsg+0x90/0x90
[ 78.869292][ C1] ? futex_wait_queue+0xfd/0x190
[ 78.874228][ C1] ? futex_wait_setup+0x2b0/0x2b0
[ 78.879293][ C1] ? futex_wake+0x44c/0x4e0
[ 78.883783][ C1] ? _local_bh_enable+0xa0/0xa0
[ 78.888620][ C1] ? do_raw_spin_unlock+0x13b/0x8b0
[ 78.893891][ C1] ? xfd_validate_state+0x2f/0xf0
[ 78.898903][ C1] ? print_irqtrace_events+0x220/0x220
[ 78.904353][ C1] ? syscall_enter_from_user_mode+0x32/0x230
[ 78.910321][ C1] __x64_sys_sendmmsg+0x9b/0xb0
[ 78.915246][ C1] do_syscall_64+0x41/0xc0
[ 78.919639][ C1] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 78.925513][ C1] RIP: 0033:0x7fc8dce8c189
[ 78.930013][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 78.949933][ C1] RSP: 002b:00007fc8ddcaa168 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 78.958438][ C1] RAX: ffffffffffffffda RBX: 00007fc8dcfabf80 RCX: 00007fc8dce8c189
[ 78.966405][ C1] RDX: 000000000000ffc3 RSI: 0000000020001e80 RDI: 0000000000000006
[ 78.974532][ C1] RBP: 00007fc8dcee7b01 R08: 0000000000000000 R09: 0000000000000000
[ 78.982482][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 78.990431][ C1] R13: 00007ffc2cfa98ff R14: 00007fc8ddcaa300 R15: 0000000000022000
[ 78.998413][ C1]
[ 79.891601][ C1] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:417/tfrc_rx_hist_sample_rtt()
[ 79.905976][ C1] CPU: 1 PID: 6282 Comm: syz-executor.0 Not tainted 6.3.0-rc4-syzkaller #0
[ 79.914601][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[ 79.925022][ C1] Call Trace:
[ 79.928291][ C1]
[ 79.931118][ C1] dump_stack_lvl+0x167/0x220
[ 79.935779][ C1] ? nf_tcp_handle_invalid+0x4e0/0x4e0
[ 79.941312][ C1] ? panic+0x540/0x540
[ 79.945370][ C1] ? ccid3_hc_tx_update_x+0x640/0x640
[ 79.950894][ C1] tfrc_rx_hist_sample_rtt+0x2d6/0x3e0
[ 79.956355][ C1] ccid3_hc_rx_packet_recv+0x56f/0xe60
[ 79.961845][ C1] dccp_rcv_established+0x153/0x250
[ 79.967048][ C1] dccp_v4_do_rcv+0xc6/0x190
[ 79.971624][ C1] ? ip_protocol_deliver_rcu+0x62/0xa20
[ 79.977255][ C1] __sk_receive_skb+0x36e/0x880
[ 79.982184][ C1] ip_protocol_deliver_rcu+0x62/0xa20
[ 79.987542][ C1] ip_local_deliver_finish+0x21d/0x460
[ 79.993018][ C1] NF_HOOK+0x255/0x300
[ 79.997174][ C1] ? NF_HOOK+0x300/0x300
[ 80.001411][ C1] ? ip_local_deliver+0x160/0x160
[ 80.006419][ C1] ? ip_rcv_finish_core+0x435/0x1580
[ 80.011840][ C1] ? NF_HOOK+0x300/0x300
[ 80.016258][ C1] NF_HOOK+0x255/0x300
[ 80.020309][ C1] ? ip_rcv_core+0xbc0/0xbc0
[ 80.024882][ C1] ? ip_local_deliver+0x160/0x160
[ 80.029886][ C1] ? ip_rcv_core+0x542/0xbc0
[ 80.034456][ C1] ? ip_rcv_core+0xbc0/0xbc0
[ 80.039131][ C1] ? ip_local_deliver_finish+0x460/0x460
[ 80.044738][ C1] ? ip_local_deliver_finish+0x460/0x460
[ 80.050356][ C1] __netif_receive_skb+0x1b7/0x4f0
[ 80.055451][ C1] ? read_lock_is_recursive+0x20/0x20
[ 80.061248][ C1] ? __netif_receive_skb_list_core+0x7f0/0x7f0
[ 80.067379][ C1] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[ 80.073336][ C1] ? print_irqtrace_events+0x220/0x220
[ 80.078874][ C1] ? _raw_spin_lock_irq+0xdf/0x120
[ 80.084008][ C1] process_backlog+0x2dd/0x640
[ 80.088848][ C1] ? trigger_rx_softirq+0x50/0x50
[ 80.093860][ C1] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[ 80.099819][ C1] ? print_irqtrace_events+0x220/0x220
[ 80.105437][ C1] __napi_poll+0x94/0x380
[ 80.109836][ C1] net_rx_action+0x65c/0xd60
[ 80.114415][ C1] ? net_tx_action+0x650/0x650
[ 80.119160][ C1] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[ 80.125229][ C1] __do_softirq+0x2ab/0x908
[ 80.129712][ C1] ? __irq_exit_rcu+0x159/0x240
[ 80.134542][ C1] ? __lock_text_end+0xc/0xc
[ 80.139197][ C1] ? irqtime_account_irq+0xd4/0x1e0
[ 80.144383][ C1] __irq_exit_rcu+0x159/0x240
[ 80.149319][ C1] ? irq_exit_rcu+0x20/0x20
[ 80.153922][ C1] irq_exit_rcu+0x9/0x20
[ 80.158168][ C1] sysvec_apic_timer_interrupt+0x95/0xb0
[ 80.163900][ C1]
[ 80.166908][ C1]
[ 80.169836][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 80.175802][ C1] RIP: 0010:unwind_next_frame+0x1874/0x2180
[ 80.181672][ C1] Code: 89 e7 e8 2f 09 00 00 84 c0 0f 84 6f 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b 4c 24 20 0f b6 04 01 84 c0 0f 85 69 06 00 00 <48> 8b 6c 24 08 8b 84 24 8c 00 00 00 39 45 00 0f 85 14 01 00 00 48
[ 80.201347][ C1] RSP: 0018:ffffc9000625ef30 EFLAGS: 00000246
[ 80.207393][ C1] RAX: 0000000000000000 RBX: ffffc9000625f050 RCX: 1ffff92000c4be00
[ 80.215356][ C1] RDX: 0000000000000010 RSI: 0000000000000000 RDI: ffffc9000625f060
[ 80.223500][ C1] RBP: 0000000000000000 R08: dffffc0000000000 R09: ffffc9000625f050
[ 80.231459][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: ffffc9000625f000
[ 80.239416][ C1] R13: ffffffff8e2232dc R14: ffffffff899d1661 R15: ffffffff8e2232e0
[ 80.247421][ C1] ? do_syscall_64+0x41/0xc0
[ 80.252043][ C1] ? __x64_sys_sendmmsg+0x9b/0xb0
[ 80.257051][ C1] ? stack_trace_save+0x1c0/0x1c0
[ 80.262059][ C1] arch_stack_walk+0x111/0x140
[ 80.266905][ C1] ? do_syscall_64+0x41/0xc0
[ 80.271477][ C1] stack_trace_save+0x117/0x1c0
[ 80.276771][ C1] ? stack_trace_snprint+0xf0/0xf0
[ 80.281876][ C1] ? __lock_acquire+0x125b/0x1f80
[ 80.286878][ C1] kasan_set_track+0x4f/0x70
[ 80.291444][ C1] ? kasan_set_track+0x4f/0x70
[ 80.296199][ C1] ? __kasan_slab_alloc+0x66/0x70
[ 80.301204][ C1] ? slab_post_alloc_hook+0x68/0x3a0
[ 80.306574][ C1] ? kmem_cache_alloc_node+0x157/0x350
[ 80.312026][ C1] ? __alloc_skb+0x11e/0x3b0
[ 80.316594][ C1] ? alloc_skb_with_frags+0x82/0x640
[ 80.321954][ C1] ? sock_alloc_send_pskb+0x7f3/0x8f0
[ 80.327387][ C1] ? dccp_sendmsg+0x2b4/0x870
[ 80.332041][ C1] ? ____sys_sendmsg+0x4aa/0x780
[ 80.336955][ C1] ? __sys_sendmmsg+0x336/0x650
[ 80.341784][ C1] ? __x64_sys_sendmmsg+0x9b/0xb0
[ 80.346814][ C1] __kasan_slab_alloc+0x66/0x70
[ 80.351646][ C1] slab_post_alloc_hook+0x68/0x3a0
[ 80.356738][ C1] kmem_cache_alloc_node+0x157/0x350
[ 80.362194][ C1] ? __lock_acquire+0x125b/0x1f80
[ 80.367255][ C1] ? __alloc_skb+0x11e/0x3b0
[ 80.371920][ C1] __alloc_skb+0x11e/0x3b0
[ 80.376330][ C1] ? napi_build_skb+0x1c0/0x1c0
[ 80.381423][ C1] ? reacquire_held_locks+0x3a8/0x660
[ 80.386774][ C1] ? release_sock+0x29/0x180
[ 80.391345][ C1] alloc_skb_with_frags+0x82/0x640
[ 80.396437][ C1] ? print_unlock_imbalance_bug+0x2c0/0x2c0
[ 80.402356][ C1] sock_alloc_send_pskb+0x7f3/0x8f0
[ 80.407638][ C1] ? sock_kzfree_s+0x40/0x40
[ 80.412208][ C1] ? __local_bh_enable_ip+0x168/0x1f0
[ 80.417646][ C1] ? dccp_sendmsg+0x299/0x870
[ 80.422474][ C1] ? _local_bh_enable+0xa0/0xa0
[ 80.427334][ C1] dccp_sendmsg+0x2b4/0x870
[ 80.431831][ C1] ? dccp_getsockopt+0xb00/0xb00
[ 80.436847][ C1] ? __import_iovec+0x6b/0x470
[ 80.441610][ C1] ? inet_sendmsg+0x4c/0x270
[ 80.446185][ C1] ? inet_send_prepare+0x210/0x210
[ 80.451280][ C1] ____sys_sendmsg+0x4aa/0x780
[ 80.456186][ C1] ? __sys_sendmsg_sock+0x20/0x20
[ 80.461217][ C1] __sys_sendmmsg+0x336/0x650
[ 80.465979][ C1] ? __ia32_sys_sendmsg+0x90/0x90
[ 80.471015][ C1] ? do_raw_spin_unlock+0x13b/0x8b0
[ 80.476311][ C1] ? wake_up_q+0xa3/0xe0
[ 80.480549][ C1] ? futex_wake+0x44c/0x4e0
[ 80.485125][ C1] ? futex_wake_mark+0x110/0x110
[ 80.490137][ C1] ? __local_bh_enable_ip+0x168/0x1f0
[ 80.495577][ C1] ? inet_stream_connect+0x7f/0x90
[ 80.500681][ C1] ? _local_bh_enable+0xa0/0xa0
[ 80.505507][ C1] ? do_raw_spin_unlock+0x13b/0x8b0
[ 80.510693][ C1] ? xfd_validate_state+0x2f/0xf0
[ 80.515810][ C1] ? print_irqtrace_events+0x220/0x220
[ 80.521341][ C1] ? syscall_enter_from_user_mode+0x32/0x230
[ 80.527389][ C1] __x64_sys_sendmmsg+0x9b/0xb0
[ 80.532220][ C1] do_syscall_64+0x41/0xc0
[ 80.536614][ C1] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 80.542538][ C1] RIP: 0033:0x7fc8dce8c189
[ 80.547021][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 80.566608][ C1] RSP: 002b:00007fc8ddcaa168 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 80.575032][ C1] RAX: ffffffffffffffda RBX: 00007fc8dcfabf80 RCX: 00007fc8dce8c189
[ 80.583174][ C1] RDX: 000000000000ffc3 RSI: 0000000020001e80 RDI: 0000000000000006
[ 80.591215][ C1] RBP: 00007fc8dcee7b01 R08: 0000000000000000 R09: 0000000000000000
[ 80.599530][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 80.607481][ C1] R13: 00007ffc2cfa98ff R14: 00007fc8ddcaa300 R15: 0000000000022000
[ 80.615481][ C1]
[ 80.712276][ T6290] net_ratelimit: 59 callbacks suppressed
[ 80.712286][ T6290] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 80.803977][ T6299] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 80.860774][ T6303] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 80.929452][ T6307] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 81.030843][ T6316] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 81.080348][ T6319] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 81.131937][ T6322] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 81.181126][ T6326] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 81.231116][ T6330] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 82.121406][ T6392] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 82.371713][ C1] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:417/tfrc_rx_hist_sample_rtt()
[ 82.385732][ C1] CPU: 1 PID: 6413 Comm: syz-executor.0 Not tainted 6.3.0-rc4-syzkaller #0
[ 82.394934][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[ 82.405275][ C1] Call Trace:
[ 82.408569][ C1]
[ 82.411945][ C1] dump_stack_lvl+0x167/0x220
[ 82.416635][ C1] ? nf_tcp_handle_invalid+0x4e0/0x4e0
[ 82.422125][ C1] ? panic+0x540/0x540
[ 82.426210][ C1] ? ccid3_hc_tx_update_x+0x640/0x640
[ 82.431689][ C1] tfrc_rx_hist_sample_rtt+0x2d6/0x3e0
[ 82.437254][ C1] ccid3_hc_rx_packet_recv+0x56f/0xe60
[ 82.442733][ C1] dccp_rcv_established+0x153/0x250
[ 82.447949][ C1] dccp_v4_do_rcv+0xc6/0x190
[ 82.452554][ C1] ? ip_protocol_deliver_rcu+0x62/0xa20
[ 82.458196][ C1] __sk_receive_skb+0x36e/0x880
[ 82.463121][ C1] ip_protocol_deliver_rcu+0x62/0xa20
[ 82.468517][ C1] ip_local_deliver_finish+0x21d/0x460
[ 82.474121][ C1] NF_HOOK+0x255/0x300
[ 82.479089][ C1] ? NF_HOOK+0x300/0x300
[ 82.483437][ C1] ? ip_local_deliver+0x160/0x160
[ 82.488475][ C1] ? ip_rcv_finish_core+0x435/0x1580
[ 82.493867][ C1] ? NF_HOOK+0x300/0x300
[ 82.498225][ C1] NF_HOOK+0x255/0x300
[ 82.502314][ C1] ? ip_rcv_core+0xbc0/0xbc0
[ 82.507092][ C1] ? ip_local_deliver+0x160/0x160
[ 82.512910][ C1] ? ip_rcv_core+0x542/0xbc0
[ 82.517540][ C1] ? ip_rcv_core+0xbc0/0xbc0
[ 82.522234][ C1] ? ip_local_deliver_finish+0x460/0x460
[ 82.527888][ C1] ? ip_local_deliver_finish+0x460/0x460
[ 82.533537][ C1] __netif_receive_skb+0x1b7/0x4f0
[ 82.538661][ C1] ? read_lock_is_recursive+0x20/0x20
[ 82.544046][ C1] ? __netif_receive_skb_list_core+0x7f0/0x7f0
[ 82.550286][ C1] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[ 82.556312][ C1] ? print_irqtrace_events+0x220/0x220
[ 82.561958][ C1] ? _raw_spin_lock_irq+0xdf/0x120
[ 82.567097][ C1] process_backlog+0x2dd/0x640
[ 82.571890][ C1] ? trigger_rx_softirq+0x50/0x50
[ 82.576931][ C1] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[ 82.583020][ C1] ? print_irqtrace_events+0x220/0x220
[ 82.588491][ C1] __napi_poll+0x94/0x380
[ 82.592872][ C1] net_rx_action+0x65c/0xd60
[ 82.597491][ C1] ? net_tx_action+0x650/0x650
[ 82.602270][ C1] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[ 82.608444][ C1] __do_softirq+0x2ab/0x908
[ 82.613053][ C1] ? __irq_exit_rcu+0x159/0x240
[ 82.617919][ C1] ? __lock_text_end+0xc/0xc
[ 82.622524][ C1] ? irqtime_account_irq+0xd4/0x1e0
[ 82.627765][ C1] __irq_exit_rcu+0x159/0x240
[ 82.632451][ C1] ? irq_exit_rcu+0x20/0x20
[ 82.636996][ C1] irq_exit_rcu+0x9/0x20
[ 82.641281][ C1] sysvec_apic_timer_interrupt+0x95/0xb0
[ 82.647109][ C1]
[ 82.650140][ C1]
[ 82.653079][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 82.659077][ C1] RIP: 0010:seqcount_lockdep_reader_access+0x184/0x1d0
[ 82.666024][ C1] Code: 24 20 42 80 3c 3b 00 74 08 4c 89 e7 e8 a5 b4 54 00 f6 44 24 21 02 75 47 41 f7 c6 00 02 00 00 74 01 fb 48 c7 04 24 0e 36 e0 45 <4b> c7 04 2f 00 00 00 00 66 43 c7 44 2f 09 00 00 43 c6 44 2f 0b 00
[ 82.685727][ C1] RSP: 0018:ffffc9000a627620 EFLAGS: 00000206
[ 82.691808][ C1] RAX: f26351cc316b1900 RBX: 1ffff920014c4ec8 RCX: ffffffff8160551a
[ 82.699790][ C1] RDX: dffffc0000000000 RSI: ffffffff89ea6a40 RDI: ffffffff8a39a180
[ 82.707775][ C1] RBP: ffffc9000a6276d8 R08: dffffc0000000000 R09: fffffbfff1e07450
[ 82.715855][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: ffffc9000a627640
[ 82.723848][ C1] R13: 1ffff920014c4ec4 R14: 0000000000000246 R15: dffffc0000000000
[ 82.731838][ C1] ? mark_lock+0x9a/0x340
[ 82.736185][ C1] ? ktime_get_real_ts64+0x390/0x390
[ 82.741484][ C1] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[ 82.747477][ C1] ktime_get_with_offset+0x69/0x250
[ 82.752692][ C1] ccid3_hc_tx_send_packet+0x50/0x870
[ 82.758334][ C1] ? _raw_spin_unlock+0x40/0x40
[ 82.763200][ C1] dccp_write_xmit+0xc5/0x180
[ 82.767891][ C1] dccp_sendmsg+0x546/0x870
[ 82.772550][ C1] ? dccp_getsockopt+0xb00/0xb00
[ 82.777513][ C1] ? __import_iovec+0x6b/0x470
[ 82.782321][ C1] ? inet_sendmsg+0x4c/0x270
[ 82.786923][ C1] ? inet_send_prepare+0x210/0x210
[ 82.792049][ C1] ____sys_sendmsg+0x4aa/0x780
[ 82.796834][ C1] ? __sys_sendmsg_sock+0x20/0x20
[ 82.801963][ C1] __sys_sendmmsg+0x336/0x650
[ 82.806652][ C1] ? __ia32_sys_sendmsg+0x90/0x90
[ 82.811791][ C1] ? futex_wait_queue+0xfd/0x190
[ 82.816767][ C1] ? futex_wait_setup+0x2b0/0x2b0
[ 82.822080][ C1] ? futex_wake+0x44c/0x4e0
[ 82.826621][ C1] ? _local_bh_enable+0xa0/0xa0
[ 82.831479][ C1] ? do_raw_spin_unlock+0x13b/0x8b0
[ 82.836718][ C1] ? xfd_validate_state+0x2f/0xf0
[ 82.841808][ C1] ? print_irqtrace_events+0x220/0x220
[ 82.847370][ C1] ? syscall_enter_from_user_mode+0x32/0x230
[ 82.853366][ C1] __x64_sys_sendmmsg+0x9b/0xb0
[ 82.858320][ C1] do_syscall_64+0x41/0xc0
[ 82.862933][ C1] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 82.868926][ C1] RIP: 0033:0x7fc8dce8c189
[ 82.873439][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 82.893139][ C1] RSP: 002b:00007fc8ddcaa168 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 82.901563][ C1] RAX: ffffffffffffffda RBX: 00007fc8dcfabf80 RCX: 00007fc8dce8c189
[ 82.909557][ C1] RDX: 000000000000ffc3 RSI: 0000000020001e80 RDI: 0000000000000006
[ 82.917544][ C1] RBP: 00007fc8dcee7b01 R08: 0000000000000000 R09: 0000000000000000
[ 82.925623][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 82.933608][ C1] R13: 00007ffc2cfa98ff R14: 00007fc8ddcaa300 R15: 0000000000022000
[ 82.941608][ C1]
2023/03/31 08:58:42 executed programs: 205
[ 83.698528][ C0] Negotiation of local Allow Short Seqnos failed in state CHANGING at net/dccp/feat.c:1537/dccp_feat_activate_values()
[ 84.045825][ C1] BUG: stored value of X_recv is zero at net/dccp/ccids/ccid3.c:691/ccid3_first_li()
[ 84.055508][ C1] CPU: 1 PID: 6525 Comm: syz-executor.0 Not tainted 6.3.0-rc4-syzkaller #0
[ 84.064105][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[ 84.074256][ C1] Call Trace:
[ 84.077555][ C1]
[ 84.080411][ C1] dump_stack_lvl+0x167/0x220
[ 84.085110][ C1] ? nf_tcp_handle_invalid+0x4e0/0x4e0
[ 84.090707][ C1] ? panic+0x540/0x540
[ 84.095056][ C1] ? ktime_get+0xf5/0x1c0
[ 84.099392][ C1] ccid3_first_li+0x27c/0x340
[ 84.104085][ C1] tfrc_lh_interval_add+0x4e7/0x6f0
[ 84.109302][ C1] ? ccid3_hc_tx_update_x+0x640/0x640
[ 84.114687][ C1] tfrc_rx_handle_loss+0x673/0x1720
[ 84.119898][ C1] ? ccid3_hc_tx_update_x+0x640/0x640
[ 84.125291][ C1] ccid3_hc_rx_packet_recv+0x28a/0xe60
[ 84.130981][ C1] dccp_rcv_established+0x153/0x250
[ 84.136376][ C1] dccp_v4_do_rcv+0xc6/0x190
[ 84.141093][ C1] ? ip_protocol_deliver_rcu+0x62/0xa20
[ 84.147255][ C1] __sk_receive_skb+0x36e/0x880
[ 84.152124][ C1] ip_protocol_deliver_rcu+0x62/0xa20
[ 84.157535][ C1] ip_local_deliver_finish+0x21d/0x460
[ 84.163024][ C1] NF_HOOK+0x255/0x300
[ 84.167129][ C1] ? NF_HOOK+0x300/0x300
[ 84.171404][ C1] ? ip_local_deliver+0x160/0x160
[ 84.176476][ C1] ? ip_rcv_finish_core+0x435/0x1580
[ 84.181788][ C1] ? NF_HOOK+0x300/0x300
[ 84.186055][ C1] NF_HOOK+0x255/0x300
[ 84.190138][ C1] ? ip_rcv_core+0xbc0/0xbc0
[ 84.194825][ C1] ? ip_local_deliver+0x160/0x160
[ 84.200656][ C1] ? ip_rcv_core+0x542/0xbc0
[ 84.205258][ C1] ? ip_rcv_core+0xbc0/0xbc0
[ 84.209954][ C1] ? ip_local_deliver_finish+0x460/0x460
[ 84.215609][ C1] ? ip_local_deliver_finish+0x460/0x460
[ 84.221279][ C1] __netif_receive_skb+0x1b7/0x4f0
[ 84.226397][ C1] ? read_lock_is_recursive+0x20/0x20
[ 84.231853][ C1] ? __netif_receive_skb_list_core+0x7f0/0x7f0
[ 84.238144][ C1] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[ 84.244172][ C1] ? print_irqtrace_events+0x220/0x220
[ 84.249648][ C1] ? _raw_spin_lock_irq+0xdf/0x120
[ 84.254869][ C1] process_backlog+0x2dd/0x640
[ 84.259651][ C1] ? trigger_rx_softirq+0x50/0x50
[ 84.264690][ C1] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[ 84.270676][ C1] ? print_irqtrace_events+0x220/0x220
[ 84.276146][ C1] __napi_poll+0x94/0x380
[ 84.280934][ C1] net_rx_action+0x65c/0xd60
[ 84.285549][ C1] ? net_tx_action+0x650/0x650
[ 84.290500][ C1] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[ 84.296515][ C1] __do_softirq+0x2ab/0x908
[ 84.301057][ C1] ? do_softirq+0x166/0x250
[ 84.305571][ C1] ? __lock_text_end+0xc/0xc
[ 84.310263][ C1] do_softirq+0x166/0x250
[ 84.314601][ C1]
[ 84.317550][ C1]
[ 84.320485][ C1] ? __local_bh_enable_ip+0x1f0/0x1f0
[ 84.325913][ C1] ? lockdep_hardirqs_on_prepare+0x7a0/0x7a0
[ 84.331906][ C1] ? rcu_is_watching+0x15/0xb0
[ 84.336710][ C1] __local_bh_enable_ip+0x1b5/0x1f0
[ 84.342009][ C1] ? rcu_lock_release+0x10/0x10
[ 84.346864][ C1] ? _local_bh_enable+0xa0/0xa0
[ 84.351770][ C1] ip_finish_output2+0x998/0xd80
[ 84.356816][ C1] ? ip_fragment+0x1c0/0x1c0
[ 84.361459][ C1] ? ip_skb_dst_mtu+0xba/0x740
[ 84.366324][ C1] ? __ip_finish_output+0x12c/0x390
[ 84.371575][ C1] __ip_queue_xmit+0xf82/0x1be0
[ 84.376581][ C1] dccp_transmit_skb+0xbf9/0x1410
[ 84.381636][ C1] dccp_rcv_state_process+0x2ee/0x6b0
[ 84.387032][ C1] dccp_v4_do_rcv+0xd1/0x190
[ 84.391634][ C1] __release_sock+0x17f/0x410
[ 84.396333][ C1] release_sock+0x55/0x180
[ 84.400762][ C1] dccp_sendmsg+0x36a/0x870
[ 84.405321][ C1] ? dccp_getsockopt+0xb00/0xb00
[ 84.410267][ C1] ? __import_iovec+0x6b/0x470
[ 84.415134][ C1] ? inet_sendmsg+0x4c/0x270
[ 84.419740][ C1] ? inet_send_prepare+0x210/0x210
[ 84.425408][ C1] ____sys_sendmsg+0x4aa/0x780
[ 84.430377][ C1] ? __sys_sendmsg_sock+0x20/0x20
[ 84.435596][ C1] __sys_sendmmsg+0x336/0x650
[ 84.440309][ C1] ? __ia32_sys_sendmsg+0x90/0x90
[ 84.445449][ C1] ? futex_wait_queue+0xfd/0x190
[ 84.450448][ C1] ? futex_wait_setup+0x2b0/0x2b0
[ 84.455492][ C1] ? futex_wake+0x44c/0x4e0
[ 84.460019][ C1] ? _local_bh_enable+0xa0/0xa0
[ 84.464884][ C1] ? do_raw_spin_unlock+0x13b/0x8b0
[ 84.470108][ C1] ? xfd_validate_state+0x2f/0xf0
[ 84.475164][ C1] ? print_irqtrace_events+0x220/0x220
[ 84.480639][ C1] ? syscall_enter_from_user_mode+0x32/0x230
[ 84.486636][ C1] __x64_sys_sendmmsg+0x9b/0xb0
[ 84.491688][ C1] do_syscall_64+0x41/0xc0
[ 84.496202][ C1] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 84.502105][ C1] RIP: 0033:0x7fc8dce8c189
[ 84.506527][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 84.526224][ C1] RSP: 002b:00007fc8ddcaa168 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 84.534645][ C1] RAX: ffffffffffffffda RBX: 00007fc8dcfabf80 RCX: 00007fc8dce8c189
[ 84.542714][ C1] RDX: 000000000000ffc3 RSI: 0000000020001e80 RDI: 0000000000000006
[ 84.550705][ C1] RBP: 00007fc8dcee7b01 R08: 0000000000000000 R09: 0000000000000000
[ 84.558692][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 84.566709][ C1] R13: 00007ffc2cfa98ff R14: 00007fc8ddcaa300 R15: 0000000000022000
[ 84.574980][ C1]
[ 84.876703][ C0] Negotiation of local Allow Short Seqnos failed in state CHANGING at net/dccp/feat.c:1537/dccp_feat_activate_values()
[ 85.429434][ C0] Negotiation of local Allow Short Seqnos failed in state CHANGING at net/dccp/feat.c:1537/dccp_feat_activate_values()
[ 85.724842][ T6643] net_ratelimit: 49 callbacks suppressed
[ 85.724853][ T6643] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 85.777920][ T6647] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 85.822131][ T6650] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 85.867832][ T6653] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 85.922749][ T6656] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 85.971520][ T6661] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 86.019915][ T6665] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 86.069334][ T6668] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 86.121185][ T6672] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 86.173773][ T6677] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 86.383473][ C0] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:417/tfrc_rx_hist_sample_rtt()
[ 86.397768][ C0] CPU: 0 PID: 6693 Comm: syz-executor.0 Not tainted 6.3.0-rc4-syzkaller #0
[ 86.407589][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[ 86.418053][ C0] Call Trace:
[ 86.421359][ C0]
[ 86.424300][ C0] dump_stack_lvl+0x167/0x220
[ 86.428992][ C0] ? nf_tcp_handle_invalid+0x4e0/0x4e0
[ 86.434463][ C0] ? panic+0x540/0x540
[ 86.438553][ C0] ? ccid3_hc_tx_update_x+0x640/0x640
[ 86.444028][ C0] tfrc_rx_hist_sample_rtt+0x2d6/0x3e0
[ 86.449506][ C0] ccid3_hc_rx_packet_recv+0x56f/0xe60
[ 86.454986][ C0] dccp_rcv_established+0x153/0x250
[ 86.460366][ C0] dccp_v4_do_rcv+0xc6/0x190
[ 86.464952][ C0] ? ip_protocol_deliver_rcu+0x62/0xa20
[ 86.470671][ C0] __sk_receive_skb+0x36e/0x880
[ 86.475639][ C0] ip_protocol_deliver_rcu+0x62/0xa20
[ 86.481004][ C0] ip_local_deliver_finish+0x21d/0x460
[ 86.487142][ C0] NF_HOOK+0x255/0x300
[ 86.491193][ C0] ? NF_HOOK+0x300/0x300
[ 86.495518][ C0] ? ip_local_deliver+0x160/0x160
[ 86.500612][ C0] ? ip_rcv_finish_core+0x435/0x1580
[ 86.505875][ C0] ? NF_HOOK+0x300/0x300
[ 86.510105][ C0] NF_HOOK+0x255/0x300
[ 86.514165][ C0] ? ip_rcv_core+0xbc0/0xbc0
[ 86.518843][ C0] ? ip_local_deliver+0x160/0x160
[ 86.523847][ C0] ? ip_rcv_core+0x542/0xbc0
[ 86.528431][ C0] ? ip_rcv_core+0xbc0/0xbc0
[ 86.533001][ C0] ? ip_local_deliver_finish+0x460/0x460
[ 86.539757][ C0] ? ip_local_deliver_finish+0x460/0x460
[ 86.545456][ C0] __netif_receive_skb+0x1b7/0x4f0
[ 86.550584][ C0] ? read_lock_is_recursive+0x20/0x20
[ 86.555934][ C0] ? __netif_receive_skb_list_core+0x7f0/0x7f0
[ 86.562067][ C0] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[ 86.568037][ C0] ? print_irqtrace_events+0x220/0x220
[ 86.573470][ C0] ? _raw_spin_lock_irq+0xdf/0x120
[ 86.578592][ C0] process_backlog+0x2dd/0x640
[ 86.583432][ C0] ? trigger_rx_softirq+0x50/0x50
[ 86.588436][ C0] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[ 86.594493][ C0] ? print_irqtrace_events+0x220/0x220
[ 86.600115][ C0] __napi_poll+0x94/0x380
[ 86.604442][ C0] net_rx_action+0x65c/0xd60
[ 86.609280][ C0] ? net_tx_action+0x650/0x650
[ 86.614026][ C0] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[ 86.620077][ C0] __do_softirq+0x2ab/0x908
[ 86.624564][ C0] ? __irq_exit_rcu+0x159/0x240
[ 86.629413][ C0] ? __lock_text_end+0xc/0xc
[ 86.634097][ C0] ? irqtime_account_irq+0xd4/0x1e0
[ 86.639394][ C0] __irq_exit_rcu+0x159/0x240
[ 86.644151][ C0] ? irq_exit_rcu+0x20/0x20
[ 86.648819][ C0] irq_exit_rcu+0x9/0x20
[ 86.653046][ C0] sysvec_apic_timer_interrupt+0x95/0xb0
[ 86.658676][ C0]
[ 86.661592][ C0]
[ 86.664594][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 86.670574][ C0] RIP: 0010:_raw_spin_unlock_irqrestore+0xd8/0x140
[ 86.677267][ C0] Code: 9c 8f 44 24 20 42 80 3c 23 00 74 08 4c 89 f7 e8 1e ed 1b f8 f6 44 24 21 02 75 4e 41 f7 c7 00 02 00 00 74 01 fb bf 01 00 00 00 63 47 ad f7 65 8b 05 04 d5 5c 76 85 c0 74 3f 48 c7 04 24 0e 36
[ 86.697836][ C0] RSP: 0018:ffffc9000ae4f740 EFLAGS: 00000206
[ 86.703896][ C0] RAX: 10683787427d3700 RBX: 1ffff920015c9eec RCX: ffffffff8160551a
[ 86.711948][ C0] RDX: dffffc0000000000 RSI: ffffffff89ea6a40 RDI: 0000000000000001
[ 86.719923][ C0] RBP: ffffc9000ae4f7d0 R08: dffffc0000000000 R09: fffffbfff1e07450
[ 86.727973][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[ 86.736012][ C0] R13: 1ffff920015c9ee8 R14: ffffc9000ae4f760 R15: 0000000000000246
[ 86.744147][ C0] ? mark_lock+0x9a/0x340
[ 86.748730][ C0] ? _raw_spin_unlock+0x40/0x40
[ 86.753598][ C0] ? skb_queue_tail+0x30/0x120
[ 86.758365][ C0] dccp_sendmsg+0x50d/0x870
[ 86.762863][ C0] ? dccp_getsockopt+0xb00/0xb00
[ 86.767869][ C0] ? __import_iovec+0x6b/0x470
[ 86.772801][ C0] ? inet_sendmsg+0x4c/0x270
[ 86.777490][ C0] ? inet_send_prepare+0x210/0x210
[ 86.782671][ C0] ____sys_sendmsg+0x4aa/0x780
[ 86.787424][ C0] ? __sys_sendmsg_sock+0x20/0x20
[ 86.792436][ C0] __sys_sendmmsg+0x336/0x650
[ 86.797095][ C0] ? __ia32_sys_sendmsg+0x90/0x90
[ 86.802121][ C0] ? futex_wait_queue+0xfd/0x190
[ 86.807050][ C0] ? futex_wait_setup+0x2b0/0x2b0
[ 86.812148][ C0] ? futex_wake+0x44c/0x4e0
[ 86.816738][ C0] ? _local_bh_enable+0xa0/0xa0
[ 86.821574][ C0] ? do_raw_spin_unlock+0x13b/0x8b0
[ 86.826775][ C0] ? xfd_validate_state+0x2f/0xf0
[ 86.831800][ C0] ? print_irqtrace_events+0x220/0x220
[ 86.837327][ C0] ? syscall_enter_from_user_mode+0x32/0x230
[ 86.843391][ C0] __x64_sys_sendmmsg+0x9b/0xb0
[ 86.848240][ C0] do_syscall_64+0x41/0xc0
[ 86.852760][ C0] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 86.858652][ C0] RIP: 0033:0x7fc8dce8c189
[ 86.863073][ C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 86.882676][ C0] RSP: 002b:00007fc8ddcaa168 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 86.891077][ C0] RAX: ffffffffffffffda RBX: 00007fc8dcfabf80 RCX: 00007fc8dce8c189
[ 86.899140][ C0] RDX: 000000000000ffc3 RSI: 0000000020001e80 RDI: 0000000000000006
[ 86.907108][ C0] RBP: 00007fc8dcee7b01 R08: 0000000000000000 R09: 0000000000000000
[ 86.915237][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 86.923191][ C0] R13: 00007ffc2cfa98ff R14: 00007fc8ddcaa300 R15: 0000000000022000
[ 86.931241][ C0]