Warning: Permanently added '10.128.0.146' (ED25519) to the list of known hosts.
2024/01/30 17:06:57 ignoring optional flag "sandboxArg"="0"
2024/01/30 17:06:58 parsed 1 programs
2024/01/30 17:06:58 executed programs: 0
[   89.964360][ T4444] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   89.972456][ T4444] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   89.981223][ T4444] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   89.990295][ T4444] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   89.998731][ T4444] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   90.006974][ T4444] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   90.132020][ T5401] chnl_net:caif_netlink_parms(): no params data found
[   90.186622][ T5401] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.194703][ T5401] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.202258][ T5401] bridge_slave_0: entered allmulticast mode
[   90.209698][ T5401] bridge_slave_0: entered promiscuous mode
[   90.219811][ T5401] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.227400][ T5401] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.235745][ T5401] bridge_slave_1: entered allmulticast mode
[   90.242865][ T5401] bridge_slave_1: entered promiscuous mode
[   90.268480][ T5401] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   90.281195][ T5401] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   90.308897][ T5401] team0: Port device team_slave_0 added
[   90.316837][ T5401] team0: Port device team_slave_1 added
[   90.340646][ T5401] batman_adv: batadv0: Adding interface: batadv_slave_0
[   90.348173][ T5401] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.376066][ T5401] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   90.389141][ T5401] batman_adv: batadv0: Adding interface: batadv_slave_1
[   90.396365][ T5401] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.424426][ T5401] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   90.460231][ T5401] hsr_slave_0: entered promiscuous mode
[   90.466668][ T5401] hsr_slave_1: entered promiscuous mode
[   91.113452][ T5401] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   91.126572][ T5401] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   91.138761][ T5401] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   91.154046][ T5401] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   91.275274][ T5401] 8021q: adding VLAN 0 to HW filter on device bond0
[   91.296899][ T5401] 8021q: adding VLAN 0 to HW filter on device team0
[   91.314292][ T5058] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.321955][ T5058] bridge0: port 1(bridge_slave_0) entered forwarding state
[   91.337990][ T5060] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.345447][ T5060] bridge0: port 2(bridge_slave_1) entered forwarding state
[   91.564998][ T5401] 8021q: adding VLAN 0 to HW filter on device batadv0
[   91.627116][ T5401] veth0_vlan: entered promiscuous mode
[   91.643572][ T5401] veth1_vlan: entered promiscuous mode
[   91.685904][ T5401] veth0_macvtap: entered promiscuous mode
[   91.697687][ T5401] veth1_macvtap: entered promiscuous mode
[   91.725048][ T5401] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.743122][ T5401] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.760599][ T5401] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.769950][ T5401] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.778672][ T5401] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.791995][ T5401] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.881474][ T2420] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.904928][ T2420] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.942338][ T2420] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.956924][ T2420] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.028188][ T5463] netlink: 244 bytes leftover after parsing attributes in process `syz-executor.0'.
[   92.040174][   T51] Bluetooth: hci0: command 0x0409 tx timeout
[   92.060822][ T5463] dccp_xmit_packet: Payload too large (65475) for featneg.
[   92.145400][ T5468] dccp_xmit_packet: Payload too large (65475) for featneg.
[   92.319602][ T5475] dccp_xmit_packet: Payload too large (65475) for featneg.
[   92.403362][ T5480] dccp_xmit_packet: Payload too large (65475) for featneg.
[   92.482844][ T5484] dccp_xmit_packet: Payload too large (65475) for featneg.
[   92.638479][ T5493] dccp_xmit_packet: Payload too large (65475) for featneg.
[   92.731268][ T5497] dccp_xmit_packet: Payload too large (65475) for featneg.
[   92.885403][ T5504] dccp_xmit_packet: Payload too large (65475) for featneg.
[   93.037011][ T5514] dccp_xmit_packet: Payload too large (65475) for featneg.
[   93.113447][ T5518] dccp_xmit_packet: Payload too large (65475) for featneg.
[   94.119086][   T51] Bluetooth: hci0: command 0x041b tx timeout
2024/01/30 17:07:03 executed programs: 39
[   96.200247][   T51] Bluetooth: hci0: command 0x040f tx timeout
[   97.133638][ T5745] net_ratelimit: 47 callbacks suppressed
[   97.133651][ T5745] dccp_xmit_packet: Payload too large (65475) for featneg.
[   97.205047][ T5748] dccp_xmit_packet: Payload too large (65475) for featneg.
[   97.279689][ T5753] dccp_xmit_packet: Payload too large (65475) for featneg.
[   97.360314][ T5757] dccp_xmit_packet: Payload too large (65475) for featneg.
[   97.444672][ T5763] dccp_xmit_packet: Payload too large (65475) for featneg.
[   97.546763][ T5767] dccp_xmit_packet: Payload too large (65475) for featneg.
[   97.811374][ T5783] dccp_xmit_packet: Payload too large (65475) for featneg.
[   97.983759][ T5793] dccp_xmit_packet: Payload too large (65475) for featneg.
[   98.071677][ T5797] dccp_xmit_packet: Payload too large (65475) for featneg.
[   98.148063][ T5802] dccp_xmit_packet: Payload too large (65475) for featneg.
[   98.280129][   T51] Bluetooth: hci0: command 0x0419 tx timeout
[   99.065035][    C1] Negotiation of local Allow Short Seqnos failed in state CHANGING at net/dccp/feat.c:1537/dccp_feat_activate_values()
[   99.280244][    C1] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:417/tfrc_rx_hist_sample_rtt()
[   99.294930][    C1] CPU: 1 PID: 5869 Comm: syz-executor.0 Not tainted 6.8.0-rc2-syzkaller-g861c0981648f #0
[   99.305110][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   99.315369][    C1] Call Trace:
[   99.319115][    C1]  <IRQ>
[   99.322095][    C1]  dump_stack_lvl+0x1e7/0x2d0
[   99.327002][    C1]  ? tcp_gro_dev_warn+0x260/0x260
[   99.332343][    C1]  ? panic+0x850/0x850
[   99.336550][    C1]  ? tfrc_rx_handle_loss+0x12c6/0x1870
[   99.342147][    C1]  ? ccid3_hc_rx_set_state+0xc0/0xc0
[   99.347964][    C1]  tfrc_rx_hist_sample_rtt+0x393/0x4b0
[   99.353649][    C1]  ccid3_hc_rx_packet_recv+0x699/0xe60
[   99.359656][    C1]  ? ccid3_hc_tx_exit+0x60/0x60
[   99.364866][    C1]  dccp_rcv_established+0x1b7/0x310
[   99.370275][    C1]  dccp_v4_do_rcv+0xff/0x1f0
[   99.375123][    C1]  ? ip_protocol_deliver_rcu+0x208/0x3f0
[   99.381102][    C1]  __sk_receive_skb+0x41e/0x9d0
[   99.385968][    C1]  ip_protocol_deliver_rcu+0x208/0x3f0
[   99.391601][    C1]  ? ip_local_deliver_finish+0x1bc/0x500
[   99.397405][    C1]  ip_local_deliver_finish+0x2b6/0x500
[   99.403075][    C1]  ? NF_HOOK+0x450/0x450
[   99.407403][    C1]  NF_HOOK+0x3a1/0x450
[   99.411738][    C1]  ? NF_HOOK+0x9a/0x450
[   99.416000][    C1]  ? ip_local_deliver+0x1a0/0x1a0
[   99.421030][    C1]  ? ip_rcv_finish_core+0xc07/0x1b40
[   99.426318][    C1]  ? NF_HOOK+0x450/0x450
[   99.430640][    C1]  ? ip_local_deliver+0x116/0x1a0
[   99.435745][    C1]  ? ip_rcv_core+0xd10/0xd10
[   99.440415][    C1]  NF_HOOK+0x3a1/0x450
[   99.444570][    C1]  ? NF_HOOK+0x9a/0x450
[   99.449159][    C1]  ? ip_local_deliver+0x1a0/0x1a0
[   99.454179][    C1]  ? ip_rcv_core+0x7fb/0xd10
[   99.458778][    C1]  ? ip_rcv_core+0xd10/0xd10
[   99.463506][    C1]  ? ip_local_deliver_finish+0x500/0x500
[   99.469226][    C1]  ? ip_local_deliver_finish+0x500/0x500
[   99.474854][    C1]  __netif_receive_skb+0x1ca/0x530
[   99.480088][    C1]  ? read_lock_is_recursive+0x20/0x20
[   99.485464][    C1]  ? __netif_receive_skb_list_core+0x890/0x890
[   99.491693][    C1]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[   99.498131][    C1]  ? print_irqtrace_events+0x220/0x220
[   99.503619][    C1]  ? _raw_spin_lock_irq+0xdf/0x120
[   99.508905][    C1]  ? process_backlog+0x2cd/0x760
[   99.513944][    C1]  process_backlog+0x385/0x760
[   99.518723][    C1]  ? trigger_rx_softirq+0x60/0x60
[   99.523746][    C1]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[   99.529896][    C1]  ? print_irqtrace_events+0x220/0x220
[   99.535439][    C1]  ? __asan_memset+0x23/0x40
[   99.540122][    C1]  __napi_poll+0xc7/0x480
[   99.544451][    C1]  net_rx_action+0x78b/0x1010
[   99.549260][    C1]  ? net_tx_action+0xa30/0xa30
[   99.554109][    C1]  ? net_tx_action+0x630/0xa30
[   99.558960][    C1]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[   99.565121][    C1]  __do_softirq+0x2b8/0x939
[   99.569635][    C1]  ? __irq_exit_rcu+0xf1/0x1b0
[   99.574398][    C1]  ? __lock_text_end+0xa/0xa
[   99.579156][    C1]  ? irqtime_account_irq+0xd4/0x1e0
[   99.584357][    C1]  __irq_exit_rcu+0xf1/0x1b0
[   99.588939][    C1]  ? irq_exit_rcu+0x20/0x20
[   99.593528][    C1]  irq_exit_rcu+0x9/0x20
[   99.597756][    C1]  sysvec_apic_timer_interrupt+0x97/0xb0
[   99.603396][    C1]  </IRQ>
[   99.606410][    C1]  <TASK>
[   99.609337][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   99.615757][    C1] RIP: 0010:__local_bh_enable_ip+0x170/0x1f0
[   99.621816][    C1] Code: 8b e8 84 ca d0 09 65 66 8b 05 dc 5e ad 7e 66 85 c0 75 59 bf 01 00 00 00 e8 9d aa 0a 00 e8 f8 9d 3f 00 fb 65 8b 05 a8 5e ad 7e <85> c0 75 05 e8 57 27 aa ff 48 c7 44 24 20 0e 36 e0 45 49 c7 04 1c
[   99.641682][    C1] RSP: 0018:ffffc90009a5f6c0 EFLAGS: 00000282
[   99.648008][    C1] RAX: 0000000080000000 RBX: 1ffff9200134bedc RCX: ffffffff925f3303
[   99.656319][    C1] RDX: dffffc0000000000 RSI: ffffffff8b6aa6e0 RDI: ffffffff8bbe9960
[   99.664374][    C1] RBP: ffffc90009a5f770 R08: ffffffff8f02486f R09: 1ffffffff1e0490d
[   99.672866][    C1] R10: dffffc0000000000 R11: fffffbfff1e0490e R12: dffffc0000000000
[   99.680926][    C1] R13: 1ffff9200134bee0 R14: ffffc90009a5f700 R15: 0000000000000201
[   99.688910][    C1]  ? dccp_sendmsg+0x3c5/0xb70
[   99.693674][    C1]  ? _local_bh_enable+0xb0/0xb0
[   99.699156][    C1]  dccp_sendmsg+0x3c5/0xb70
[   99.703692][    C1]  ? dccp_getsockopt+0x1910/0x1910
[   99.708915][    C1]  ? sock_rps_record_flow+0x1a/0x400
[   99.714215][    C1]  ? inet_sendmsg+0x85/0x310
[   99.719071][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[   99.724442][    C1]  ? security_socket_sendmsg+0x81/0xa0
[   99.730176][    C1]  ? inet_send_prepare+0x250/0x250
[   99.735732][    C1]  ____sys_sendmsg+0x592/0x890
[   99.740502][    C1]  ? __sys_sendmsg_sock+0x30/0x30
[   99.745617][    C1]  ? __might_fault+0xa5/0x120
[   99.750420][    C1]  __sys_sendmmsg+0x3b2/0x730
[   99.755576][    C1]  ? __ia32_sys_sendmsg+0x90/0x90
[   99.761333][    C1]  ? try_to_wake_up+0x99d/0x1460
[   99.766404][    C1]  ? __might_sleep+0xe0/0xe0
[   99.771081][    C1]  ? __might_fault+0xa5/0x120
[   99.777321][    C1]  ? inet_stream_connect+0x88/0xa0
[   99.782958][    C1]  ? __lock_acquire+0x1fd0/0x1fd0
[   99.788124][    C1]  ? do_futex+0x392/0x550
[   99.792543][    C1]  ? xfd_validate_state+0x6e/0x150
[   99.797835][    C1]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[   99.803909][    C1]  ? print_irqtrace_events+0x220/0x220
[   99.809975][    C1]  ? do_syscall_64+0x102/0x230
[   99.814841][    C1]  __x64_sys_sendmmsg+0xa0/0xb0
[   99.819962][    C1]  do_syscall_64+0xf5/0x230
[   99.824838][    C1]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[   99.831664][    C1] RIP: 0033:0x7f50bea7c8c9
[   99.836202][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   99.856150][    C1] RSP: 002b:00007f50bf8100c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   99.864733][    C1] RAX: ffffffffffffffda RBX: 00007f50beb9bf80 RCX: 00007f50bea7c8c9
[   99.873130][    C1] RDX: 000000000000ffc3 RSI: 0000000020001e80 RDI: 0000000000000006
[   99.881639][    C1] RBP: 00007f50bead8ae8 R08: 0000000000000000 R09: 0000000000000000
[   99.889708][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   99.898230][    C1] R13: 000000000000000b R14: 00007f50beb9bf80 R15: 00007ffd11fbdac8
[   99.906305][    C1]  </TASK>
2024/01/30 17:07:08 executed programs: 97
[  102.163171][ T6023] net_ratelimit: 40 callbacks suppressed
[  102.163189][ T6023] dccp_xmit_packet: Payload too large (65475) for featneg.
[  102.211841][ T6025] dccp_xmit_packet: Payload too large (65475) for featneg.
[  102.250696][ T6027] dccp_xmit_packet: Payload too large (65475) for featneg.
[  102.293237][ T6029] dccp_xmit_packet: Payload too large (65475) for featneg.
[  102.333769][ T6031] dccp_xmit_packet: Payload too large (65475) for featneg.
[  102.377171][ T6033] dccp_xmit_packet: Payload too large (65475) for featneg.
[  102.415039][ T6035] dccp_xmit_packet: Payload too large (65475) for featneg.
[  102.459976][ T6037] dccp_xmit_packet: Payload too large (65475) for featneg.
[  102.499592][ T6039] dccp_xmit_packet: Payload too large (65475) for featneg.
[  102.538549][ T6041] dccp_xmit_packet: Payload too large (65475) for featneg.
[  103.147912][    C1] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:417/tfrc_rx_hist_sample_rtt()
[  103.162576][    C1] CPU: 1 PID: 6078 Comm: syz-executor.0 Not tainted 6.8.0-rc2-syzkaller-g861c0981648f #0
[  103.172552][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[  103.182611][    C1] Call Trace:
[  103.185894][    C1]  <IRQ>
[  103.188734][    C1]  dump_stack_lvl+0x1e7/0x2d0
[  103.193614][    C1]  ? tcp_gro_dev_warn+0x260/0x260
[  103.198844][    C1]  ? panic+0x850/0x850
[  103.202936][    C1]  ? tfrc_rx_handle_loss+0x12c6/0x1870
[  103.208561][    C1]  ? ccid3_hc_rx_set_state+0xc0/0xc0
[  103.214180][    C1]  tfrc_rx_hist_sample_rtt+0x393/0x4b0
[  103.220022][    C1]  ccid3_hc_rx_packet_recv+0x699/0xe60
[  103.225521][    C1]  ? ccid3_hc_tx_exit+0x60/0x60
[  103.230901][    C1]  dccp_rcv_established+0x1b7/0x310
[  103.236279][    C1]  dccp_v4_do_rcv+0xff/0x1f0
[  103.240962][    C1]  ? ip_protocol_deliver_rcu+0x208/0x3f0
[  103.246850][    C1]  __sk_receive_skb+0x41e/0x9d0
[  103.251968][    C1]  ip_protocol_deliver_rcu+0x208/0x3f0
[  103.257550][    C1]  ? ip_local_deliver_finish+0x1bc/0x500
[  103.263339][    C1]  ip_local_deliver_finish+0x2b6/0x500
[  103.269076][    C1]  ? NF_HOOK+0x450/0x450
[  103.273364][    C1]  NF_HOOK+0x3a1/0x450
[  103.277465][    C1]  ? NF_HOOK+0x9a/0x450
[  103.281724][    C1]  ? ip_local_deliver+0x1a0/0x1a0
[  103.287304][    C1]  ? ip_rcv_finish_core+0xc07/0x1b40
[  103.292873][    C1]  ? NF_HOOK+0x450/0x450
[  103.297381][    C1]  ? ip_local_deliver+0x116/0x1a0
[  103.302625][    C1]  ? ip_rcv_core+0xd10/0xd10
[  103.307518][    C1]  NF_HOOK+0x3a1/0x450
[  103.311708][    C1]  ? NF_HOOK+0x9a/0x450
[  103.315961][    C1]  ? ip_local_deliver+0x1a0/0x1a0
[  103.321005][    C1]  ? ip_rcv_core+0x7fb/0xd10
[  103.326351][    C1]  ? ip_rcv_core+0xd10/0xd10
[  103.331043][    C1]  ? ip_local_deliver_finish+0x500/0x500
[  103.336942][    C1]  ? ip_local_deliver_finish+0x500/0x500
[  103.343375][    C1]  __netif_receive_skb+0x1ca/0x530
[  103.348752][    C1]  ? read_lock_is_recursive+0x20/0x20
[  103.354360][    C1]  ? __netif_receive_skb_list_core+0x890/0x890
[  103.361443][    C1]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  103.369208][    C1]  ? print_irqtrace_events+0x220/0x220
[  103.376490][    C1]  ? _raw_spin_lock_irq+0xdf/0x120
[  103.382624][    C1]  ? process_backlog+0x2cd/0x760
[  103.388362][    C1]  process_backlog+0x385/0x760
[  103.393132][    C1]  ? trigger_rx_softirq+0x60/0x60
[  103.398422][    C1]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  103.404581][    C1]  ? print_irqtrace_events+0x220/0x220
[  103.410131][    C1]  ? __asan_memset+0x23/0x40
[  103.414755][    C1]  __napi_poll+0xc7/0x480
[  103.419108][    C1]  net_rx_action+0x78b/0x1010
[  103.423928][    C1]  ? net_tx_action+0xa30/0xa30
[  103.428704][    C1]  ? net_tx_action+0x630/0xa30
[  103.433524][    C1]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  103.440140][    C1]  __do_softirq+0x2b8/0x939
[  103.444736][    C1]  ? __irq_exit_rcu+0xf1/0x1b0
[  103.449692][    C1]  ? __lock_text_end+0xa/0xa
[  103.454478][    C1]  ? irqtime_account_irq+0xd4/0x1e0
[  103.460225][    C1]  __irq_exit_rcu+0xf1/0x1b0
[  103.464937][    C1]  ? irq_exit_rcu+0x20/0x20
[  103.469555][    C1]  irq_exit_rcu+0x9/0x20
[  103.474224][    C1]  sysvec_apic_timer_interrupt+0x97/0xb0
[  103.480045][    C1]  </IRQ>
[  103.483581][    C1]  <TASK>
[  103.486650][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  103.492904][    C1] RIP: 0010:lock_acquire+0x25a/0x530
[  103.498188][    C1] Code: 2b 00 74 08 4c 89 f7 e8 a4 59 7e 00 f6 44 24 61 02 0f 85 8a 01 00 00 41 f7 c7 00 02 00 00 74 01 fb 48 c7 44 24 40 0e 36 e0 45 <4b> c7 44 25 00 00 00 00 00 43 c7 44 25 09 00 00 00 00 43 c7 44 25
[  103.518770][    C1] RSP: 0018:ffffc90009e4f4e0 EFLAGS: 00000206
[  103.524930][    C1] RAX: 0000000000000001 RBX: 1ffff920013c9ea8 RCX: 0000000000000001
[  103.532904][    C1] RDX: dffffc0000000000 RSI: ffffffff8b6ab860 RDI: ffffffff8bbe9960
[  103.540885][    C1] RBP: ffffc90009e4f638 R08: ffffffff90dfb3e7 R09: 1ffffffff21bf67c
[  103.549408][    C1] R10: dffffc0000000000 R11: fffffbfff21bf67d R12: 1ffff920013c9ea4
[  103.557651][    C1] R13: dffffc0000000000 R14: ffffc90009e4f540 R15: 0000000000000246
[  103.565955][    C1]  ? read_lock_is_recursive+0x20/0x20
[  103.571434][    C1]  ? mark_lock+0x9a/0x350
[  103.576279][    C1]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  103.582298][    C1]  ? print_irqtrace_events+0x220/0x220
[  103.587793][    C1]  dccp_write_space+0x43/0x580
[  103.592936][    C1]  ? dccp_write_space+0x23/0x580
[  103.598230][    C1]  ? dccp_write_space+0x23/0x580
[  103.603187][    C1]  sock_wfree+0x1b9/0x620
[  103.607890][    C1]  ? skb_release_head_state+0xe7/0x240
[  103.613608][    C1]  skb_release_head_state+0xfd/0x240
[  103.618915][    C1]  ? dccp_write_xmit+0x156/0x220
[  103.624026][    C1]  kfree_skb_reason+0x15d/0x390
[  103.628987][    C1]  dccp_write_xmit+0x156/0x220
[  103.633761][    C1]  dccp_sendmsg+0x759/0xb70
[  103.638824][    C1]  ? dccp_getsockopt+0x1910/0x1910
[  103.644342][    C1]  ? sock_rps_record_flow+0x1a/0x400
[  103.649737][    C1]  ? inet_sendmsg+0x85/0x310
[  103.654794][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  103.660177][    C1]  ? security_socket_sendmsg+0x81/0xa0
[  103.665640][    C1]  ? inet_send_prepare+0x250/0x250
[  103.670760][    C1]  ____sys_sendmsg+0x592/0x890
[  103.675683][    C1]  ? __sys_sendmsg_sock+0x30/0x30
[  103.680815][    C1]  ? __might_fault+0xa5/0x120
[  103.685599][    C1]  __sys_sendmmsg+0x3b2/0x730
[  103.690379][    C1]  ? __ia32_sys_sendmsg+0x90/0x90
[  103.695395][    C1]  ? try_to_wake_up+0x939/0x1460
[  103.700333][    C1]  ? __lock_acquire+0x1fd0/0x1fd0
[  103.705633][    C1]  ? wake_up_q+0xdc/0x110
[  103.710052][    C1]  ? futex_wake+0x51e/0x5c0
[  103.714732][    C1]  ? futex_wake_mark+0x220/0x220
[  103.719929][    C1]  ? __might_sleep+0xe0/0xe0
[  103.724624][    C1]  ? __might_fault+0xa5/0x120
[  103.729406][    C1]  ? inet_stream_connect+0x88/0xa0
[  103.734601][    C1]  ? __lock_acquire+0x1fd0/0x1fd0
[  103.739982][    C1]  ? do_futex+0x392/0x550
[  103.744974][    C1]  ? xfd_validate_state+0x6e/0x150
[  103.750204][    C1]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  103.756964][    C1]  ? print_irqtrace_events+0x220/0x220
[  103.762624][    C1]  ? do_syscall_64+0x102/0x230
[  103.767483][    C1]  __x64_sys_sendmmsg+0xa0/0xb0
[  103.772831][    C1]  do_syscall_64+0xf5/0x230
[  103.778148][    C1]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[  103.784315][    C1] RIP: 0033:0x7f50bea7c8c9
[  103.788999][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  103.810105][    C1] RSP: 002b:00007f50bf8100c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  103.818610][    C1] RAX: ffffffffffffffda RBX: 00007f50beb9bf80 RCX: 00007f50bea7c8c9
[  103.827041][    C1] RDX: 000000000000ffc3 RSI: 0000000020001e80 RDI: 0000000000000006
[  103.835760][    C1] RBP: 00007f50bead8ae8 R08: 0000000000000000 R09: 0000000000000000
[  103.844510][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  103.852820][    C1] R13: 000000000000000b R14: 00007f50beb9bf80 R15: 00007ffd11fbdac8
[  103.861244][    C1]  </TASK>
[  104.042768][    C0] Negotiation of local Allow Short Seqnos failed in state CHANGING at net/dccp/feat.c:1537/dccp_feat_activate_values()
[  104.739880][    C0] BUG: stored value of X_recv is zero at net/dccp/ccids/ccid3.c:691/ccid3_first_li()
[  104.749615][    C0] CPU: 0 PID: 6129 Comm: syz-executor.0 Not tainted 6.8.0-rc2-syzkaller-g861c0981648f #0
[  104.759701][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[  104.769784][    C0] Call Trace:
[  104.773343][    C0]  <IRQ>
[  104.776367][    C0]  dump_stack_lvl+0x1e7/0x2d0
[  104.781434][    C0]  ? tcp_gro_dev_warn+0x260/0x260
[  104.786826][    C0]  ? panic+0x850/0x850
[  104.791256][    C0]  ? read_tsc+0x9/0x20
[  104.795418][    C0]  ? ktime_get+0x246/0x270
[  104.800194][    C0]  ccid3_first_li+0x34a/0x410
[  104.804885][    C0]  tfrc_lh_interval_add+0x598/0x7c0
[  104.810402][    C0]  ? ccid3_hc_rx_set_state+0xc0/0xc0
[  104.816331][    C0]  tfrc_rx_handle_loss+0x759/0x1870
[  104.821553][    C0]  ? ccid3_hc_rx_set_state+0xc0/0xc0
[  104.826998][    C0]  ccid3_hc_rx_packet_recv+0x347/0xe60
[  104.833035][    C0]  ? ccid3_hc_tx_exit+0x60/0x60
[  104.838014][    C0]  dccp_rcv_established+0x1b7/0x310
[  104.843233][    C0]  dccp_v4_do_rcv+0xff/0x1f0
[  104.848035][    C0]  ? ip_protocol_deliver_rcu+0x208/0x3f0
[  104.853669][    C0]  __sk_receive_skb+0x41e/0x9d0
[  104.859492][    C0]  ip_protocol_deliver_rcu+0x208/0x3f0
[  104.865329][    C0]  ? ip_local_deliver_finish+0x1bc/0x500
[  104.870996][    C0]  ip_local_deliver_finish+0x2b6/0x500
[  104.876654][    C0]  ? NF_HOOK+0x450/0x450
[  104.881086][    C0]  NF_HOOK+0x3a1/0x450
[  104.885292][    C0]  ? NF_HOOK+0x9a/0x450
[  104.889562][    C0]  ? ip_local_deliver+0x1a0/0x1a0
[  104.894967][    C0]  ? ip_rcv_finish_core+0xc07/0x1b40
[  104.900560][    C0]  ? NF_HOOK+0x450/0x450
[  104.904921][    C0]  ? ip_local_deliver+0x116/0x1a0
[  104.909979][    C0]  ? ip_rcv_core+0xd10/0xd10
[  104.914624][    C0]  NF_HOOK+0x3a1/0x450
[  104.918919][    C0]  ? NF_HOOK+0x9a/0x450
[  104.923375][    C0]  ? ip_local_deliver+0x1a0/0x1a0
[  104.928576][    C0]  ? ip_rcv_core+0x7fb/0xd10
[  104.933257][    C0]  ? ip_rcv_core+0xd10/0xd10
[  104.937937][    C0]  ? ip_local_deliver_finish+0x500/0x500
[  104.944288][    C0]  ? ip_local_deliver_finish+0x500/0x500
[  104.949936][    C0]  __netif_receive_skb+0x1ca/0x530
[  104.955141][    C0]  ? read_lock_is_recursive+0x20/0x20
[  104.960619][    C0]  ? __netif_receive_skb_list_core+0x890/0x890
[  104.967082][    C0]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  104.973241][    C0]  ? print_irqtrace_events+0x220/0x220
[  104.978958][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[  104.984775][    C0]  ? process_backlog+0x2cd/0x760
[  104.990059][    C0]  process_backlog+0x385/0x760
[  104.995037][    C0]  ? trigger_rx_softirq+0x60/0x60
[  105.000162][    C0]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  105.006270][    C0]  ? print_irqtrace_events+0x220/0x220
[  105.012003][    C0]  ? __asan_memset+0x23/0x40
[  105.016645][    C0]  __napi_poll+0xc7/0x480
[  105.021004][    C0]  net_rx_action+0x78b/0x1010
[  105.025690][    C0]  ? net_tx_action+0xa30/0xa30
[  105.030821][    C0]  ? net_tx_action+0x630/0xa30
[  105.035727][    C0]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  105.042003][    C0]  __do_softirq+0x2b8/0x939
[  105.047069][    C0]  ? __irq_exit_rcu+0xf1/0x1b0
[  105.052041][    C0]  ? __lock_text_end+0xa/0xa
[  105.057673][    C0]  ? irqtime_account_irq+0xd4/0x1e0
[  105.063152][    C0]  __irq_exit_rcu+0xf1/0x1b0
[  105.068151][    C0]  ? irq_exit_rcu+0x20/0x20
[  105.073584][    C0]  irq_exit_rcu+0x9/0x20
[  105.077937][    C0]  sysvec_apic_timer_interrupt+0x97/0xb0
[  105.083853][    C0]  </IRQ>
[  105.086868][    C0]  <TASK>
[  105.089793][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  105.096346][    C0] RIP: 0010:__kernel_text_address+0x5/0x40
[  105.102177][    C0] Code: 17 02 8f 80 e1 07 80 c1 03 38 c1 7c c7 48 c7 c7 40 17 02 8f e8 ac eb 8d 00 eb b9 66 2e 0f 1f 84 00 00 00 00 00 66 0f 1f 00 53 <48> 89 fb e8 33 00 00 00 85 c0 0f 95 c0 48 c7 c1 00 d0 50 90 48 39
[  105.123263][    C0] RSP: 0018:ffffc900032971c8 EFLAGS: 00000246
[  105.129338][    C0] RAX: 0000000000000000 RBX: ffffc90003297248 RCX: ffff888026c93b80
[  105.137581][    C0] RDX: ffff888026c93b80 RSI: 0000000000000001 RDI: ffffffff890155d5
[  105.145869][    C0] RBP: 0000000000000001 R08: ffffffff813e0b87 R09: ffffffff813e2660
[  105.154297][    C0] R10: 0000000000000003 R11: ffff888026c93b80 R12: ffff888026c93b80
[  105.162475][    C0] R13: ffffffff817c4fc0 R14: dffffc0000000000 R15: 1ffff92000652e49
[  105.171032][    C0]  ? stack_trace_save+0x1c0/0x1c0
[  105.176202][    C0]  ? unwind_next_frame+0x1970/0x29e0
[  105.181647][    C0]  ? unwind_get_return_address+0x37/0xc0
[  105.187570][    C0]  ? kfree_skb_reason+0x195/0x390
[  105.193013][    C0]  unwind_get_return_address+0x5d/0xc0
[  105.198484][    C0]  ? skb_release_data+0x660/0x850
[  105.203542][    C0]  arch_stack_walk+0x11f/0x1a0
[  105.208631][    C0]  ? kfree_skb_reason+0x195/0x390
[  105.213674][    C0]  stack_trace_save+0x117/0x1c0
[  105.218542][    C0]  ? stack_trace_snprint+0xf0/0xf0
[  105.224552][    C0]  ? mark_lock+0x9a/0x350
[  105.229517][    C0]  ? skb_release_data+0x660/0x850
[  105.234932][    C0]  kasan_save_track+0x3f/0x70
[  105.239872][    C0]  ? kasan_save_track+0x3f/0x70
[  105.245005][    C0]  ? kasan_save_free_info+0x4e/0x60
[  105.250566][    C0]  ? poison_slab_object+0xa6/0xe0
[  105.255807][    C0]  ? __kasan_slab_free+0x34/0x60
[  105.260774][    C0]  ? kfree+0x14a/0x380
[  105.264935][    C0]  ? skb_release_data+0x660/0x850
[  105.270163][    C0]  ? dccp_write_space+0x23/0x580
[  105.275187][    C0]  kasan_save_free_info+0x4e/0x60
[  105.280245][    C0]  poison_slab_object+0xa6/0xe0
[  105.285112][    C0]  __kasan_slab_free+0x34/0x60
[  105.289997][    C0]  ? skb_release_data+0x660/0x850
[  105.295107][    C0]  kfree+0x14a/0x380
[  105.299107][    C0]  skb_release_data+0x660/0x850
[  105.304079][    C0]  ? dccp_write_xmit+0x156/0x220
[  105.309481][    C0]  kfree_skb_reason+0x195/0x390
[  105.314607][    C0]  dccp_write_xmit+0x156/0x220
[  105.319664][    C0]  dccp_sendmsg+0x759/0xb70
[  105.325023][    C0]  ? dccp_getsockopt+0x1910/0x1910
[  105.330523][    C0]  ? sock_rps_record_flow+0x1a/0x400
[  105.335838][    C0]  ? inet_sendmsg+0x85/0x310
[  105.340561][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  105.345933][    C0]  ? security_socket_sendmsg+0x81/0xa0
[  105.351399][    C0]  ? inet_send_prepare+0x250/0x250
[  105.356532][    C0]  ____sys_sendmsg+0x592/0x890
[  105.361421][    C0]  ? __sys_sendmsg_sock+0x30/0x30
[  105.366588][    C0]  ? __might_fault+0xa5/0x120
[  105.371625][    C0]  __sys_sendmmsg+0x3b2/0x730
[  105.376740][    C0]  ? __ia32_sys_sendmsg+0x90/0x90
[  105.381896][    C0]  ? __might_sleep+0xe0/0xe0
[  105.386495][    C0]  ? __might_fault+0xa5/0x120
[  105.391262][    C0]  ? inet_stream_connect+0x88/0xa0
[  105.396663][    C0]  ? __lock_acquire+0x1fd0/0x1fd0
[  105.401948][    C0]  ? do_futex+0x33b/0x550
[  105.406788][    C0]  ? __rseq_handle_notify_resume+0x352/0x1490
[  105.413695][    C0]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  105.419998][    C0]  ? print_irqtrace_events+0x220/0x220
[  105.425767][    C0]  ? do_syscall_64+0x102/0x230
[  105.430544][    C0]  __x64_sys_sendmmsg+0xa0/0xb0
[  105.435572][    C0]  do_syscall_64+0xf5/0x230
[  105.440269][    C0]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[  105.446697][    C0] RIP: 0033:0x7f50bea7c8c9
[  105.451218][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  105.473116][    C0] RSP: 002b:00007f50bf8100c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  105.482214][    C0] RAX: ffffffffffffffda RBX: 00007f50beb9bf80 RCX: 00007f50bea7c8c9
2024/01/30 17:07:13 executed programs: 185
[  105.490889][    C0] RDX: 000000000000ffc3 RSI: 0000000020001e80 RDI: 0000000000000006
[  105.499105][    C0] RBP: 00007f50bead8ae8 R08: 0000000000000000 R09: 0000000000000000
[  105.507117][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  105.515270][    C0] R13: 000000000000000b R14: 00007f50beb9bf80 R15: 00007ffd11fbdac8
[  105.523624][    C0]  </TASK>
[  105.891231][    C1] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:417/tfrc_rx_hist_sample_rtt()
[  105.905672][    C1] CPU: 1 PID: 6149 Comm: syz-executor.0 Not tainted 6.8.0-rc2-syzkaller-g861c0981648f #0
[  105.917138][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[  105.927458][    C1] Call Trace:
[  105.931001][    C1]  <IRQ>
[  105.933877][    C1]  dump_stack_lvl+0x1e7/0x2d0
[  105.939196][    C1]  ? tcp_gro_dev_warn+0x260/0x260
[  105.944338][    C1]  ? panic+0x850/0x850
[  105.948503][    C1]  ? tfrc_rx_handle_loss+0x12c6/0x1870
[  105.954063][    C1]  ? ccid3_hc_rx_set_state+0xc0/0xc0
[  105.959726][    C1]  tfrc_rx_hist_sample_rtt+0x393/0x4b0
[  105.965670][    C1]  ccid3_hc_rx_packet_recv+0x699/0xe60
[  105.971621][    C1]  ? ccid3_hc_tx_exit+0x60/0x60
[  105.977113][    C1]  dccp_rcv_established+0x1b7/0x310
[  105.983025][    C1]  dccp_v4_do_rcv+0xff/0x1f0
[  105.987646][    C1]  ? ip_protocol_deliver_rcu+0x208/0x3f0
[  105.993480][    C1]  __sk_receive_skb+0x41e/0x9d0
[  105.998433][    C1]  ip_protocol_deliver_rcu+0x208/0x3f0
[  106.003899][    C1]  ? ip_local_deliver_finish+0x1bc/0x500
[  106.009535][    C1]  ip_local_deliver_finish+0x2b6/0x500
[  106.014997][    C1]  ? NF_HOOK+0x450/0x450
[  106.019243][    C1]  NF_HOOK+0x3a1/0x450
[  106.023486][    C1]  ? NF_HOOK+0x9a/0x450
[  106.027908][    C1]  ? ip_local_deliver+0x1a0/0x1a0
[  106.032926][    C1]  ? ip_rcv_finish_core+0xc07/0x1b40
[  106.038218][    C1]  ? NF_HOOK+0x450/0x450
[  106.042809][    C1]  ? ip_local_deliver+0x116/0x1a0
[  106.048188][    C1]  ? ip_rcv_core+0xd10/0xd10
[  106.052985][    C1]  NF_HOOK+0x3a1/0x450
[  106.057288][    C1]  ? NF_HOOK+0x9a/0x450
[  106.061440][    C1]  ? ip_local_deliver+0x1a0/0x1a0
[  106.066552][    C1]  ? ip_rcv_core+0x7fb/0xd10
[  106.071233][    C1]  ? ip_rcv_core+0xd10/0xd10
[  106.076171][    C1]  ? ip_local_deliver_finish+0x500/0x500
[  106.081888][    C1]  ? ip_local_deliver_finish+0x500/0x500
[  106.087872][    C1]  __netif_receive_skb+0x1ca/0x530
[  106.092987][    C1]  ? read_lock_is_recursive+0x20/0x20
[  106.098631][    C1]  ? __netif_receive_skb_list_core+0x890/0x890
[  106.104895][    C1]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  106.111077][    C1]  ? print_irqtrace_events+0x220/0x220
[  106.116736][    C1]  ? _raw_spin_lock_irq+0xdf/0x120
[  106.122560][    C1]  ? process_backlog+0x2cd/0x760
[  106.127552][    C1]  process_backlog+0x385/0x760
[  106.132335][    C1]  ? trigger_rx_softirq+0x60/0x60
[  106.137464][    C1]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  106.143821][    C1]  ? print_irqtrace_events+0x220/0x220
[  106.149399][    C1]  ? __asan_memset+0x23/0x40
[  106.154336][    C1]  __napi_poll+0xc7/0x480
[  106.159207][    C1]  net_rx_action+0x78b/0x1010
[  106.163895][    C1]  ? net_tx_action+0xa30/0xa30
[  106.169186][    C1]  ? net_tx_action+0x630/0xa30
[  106.174300][    C1]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  106.182025][    C1]  __do_softirq+0x2b8/0x939
[  106.186619][    C1]  ? do_softirq+0x11b/0x1e0
[  106.191211][    C1]  ? __lock_text_end+0xa/0xa
[  106.196006][    C1]  do_softirq+0x11b/0x1e0
[  106.200327][    C1]  </IRQ>
[  106.203341][    C1]  <TASK>
[  106.206298][    C1]  ? __local_bh_enable_ip+0x1f0/0x1f0
[  106.211839][    C1]  ? lockdep_hardirqs_on_prepare+0x780/0x780
[  106.218342][    C1]  ? rcu_is_watching+0x15/0xb0
[  106.223226][    C1]  __local_bh_enable_ip+0x1b7/0x1f0
[  106.228645][    C1]  ? __dev_queue_xmit+0x2c4/0x3b00
[  106.233970][    C1]  ? _local_bh_enable+0xb0/0xb0
[  106.239022][    C1]  ? do_raw_spin_unlock+0x13b/0x8b0
[  106.244527][    C1]  ? __dev_queue_xmit+0x2c4/0x3b00
[  106.250196][    C1]  __dev_queue_xmit+0x15fd/0x3b00
[  106.255324][    C1]  ? __dev_queue_xmit+0x2c4/0x3b00
[  106.260626][    C1]  ? netdev_core_pick_tx+0x320/0x320
[  106.266180][    C1]  ? mark_lock+0x9a/0x350
[  106.270511][    C1]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  106.276576][    C1]  ? print_irqtrace_events+0x220/0x220
[  106.282471][    C1]  ? ip_finish_output2+0xa14/0x1350
[  106.288101][    C1]  ? ip_finish_output2+0x45f/0x1350
[  106.293299][    C1]  ip_finish_output2+0xd37/0x1350
[  106.298327][    C1]  ? ip_finish_output2+0x45f/0x1350
[  106.303528][    C1]  ? ip_fragment+0x210/0x210
[  106.308350][    C1]  ? ip_skb_dst_mtu+0x6ba/0x9b0
[  106.313605][    C1]  ? __ip_finish_output+0x3e0/0x4b0
[  106.319173][    C1]  __ip_queue_xmit+0x1245/0x1c20
[  106.324196][    C1]  ? csum_tcpudp_nofold+0x1e/0x50
[  106.329399][    C1]  ? __ip_queue_xmit+0x5d/0x1c20
[  106.334685][    C1]  dccp_transmit_skb+0xf35/0x1690
[  106.340054][    C1]  __dccp_rcv_established+0x118/0x400
[  106.346063][    C1]  ? ccid3_hc_rx_insert_options+0x370/0x370
[  106.352668][    C1]  dccp_rcv_established+0x2a4/0x310
[  106.358171][    C1]  dccp_v4_do_rcv+0xff/0x1f0
[  106.362903][    C1]  __release_sock+0x19c/0x4c0
[  106.367902][    C1]  release_sock+0x61/0x1d0
[  106.372423][    C1]  dccp_sendmsg+0x4de/0xb70
[  106.377139][    C1]  ? dccp_getsockopt+0x1910/0x1910
[  106.382417][    C1]  ? sock_rps_record_flow+0x1a/0x400
[  106.387697][    C1]  ? inet_sendmsg+0x85/0x310
[  106.392453][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  106.399642][    C1]  ? security_socket_sendmsg+0x81/0xa0
[  106.405444][    C1]  ? inet_send_prepare+0x250/0x250
[  106.410822][    C1]  ____sys_sendmsg+0x592/0x890
[  106.415684][    C1]  ? __sys_sendmsg_sock+0x30/0x30
[  106.420727][    C1]  __sys_sendmmsg+0x3b2/0x730
[  106.425407][    C1]  ? __ia32_sys_sendmsg+0x90/0x90
[  106.430481][    C1]  ? __might_sleep+0xe0/0xe0
[  106.435090][    C1]  ? __might_fault+0xa5/0x120
[  106.439769][    C1]  ? inet_stream_connect+0x88/0xa0
[  106.445322][    C1]  ? __lock_acquire+0x1fd0/0x1fd0
[  106.450464][    C1]  ? do_futex+0x33b/0x550
[  106.454983][    C1]  ? __rseq_handle_notify_resume+0x352/0x1490
[  106.461406][    C1]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  106.467408][    C1]  ? print_irqtrace_events+0x220/0x220
[  106.473069][    C1]  ? do_syscall_64+0x102/0x230
[  106.478372][    C1]  __x64_sys_sendmmsg+0xa0/0xb0
[  106.483377][    C1]  do_syscall_64+0xf5/0x230
[  106.488004][    C1]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[  106.494175][    C1] RIP: 0033:0x7f50bea7c8c9
[  106.498766][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  106.518981][    C1] RSP: 002b:00007f50bf8100c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  106.527655][    C1] RAX: ffffffffffffffda RBX: 00007f50beb9bf80 RCX: 00007f50bea7c8c9
[  106.535984][    C1] RDX: 000000000000ffc3 RSI: 0000000020001e80 RDI: 0000000000000006
[  106.544121][    C1] RBP: 00007f50bead8ae8 R08: 0000000000000000 R09: 0000000000000000
[  106.552263][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  106.560325][    C1] R13: 000000000000000b R14: 00007f50beb9bf80 R15: 00007ffd11fbdac8
[  106.568490][    C1]  </TASK>
[  106.652110][    C0] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:417/tfrc_rx_hist_sample_rtt()
[  106.666498][    C0] CPU: 0 PID: 6153 Comm: syz-executor.0 Not tainted 6.8.0-rc2-syzkaller-g861c0981648f #0
[  106.676560][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[  106.687154][    C0] Call Trace:
[  106.690449][    C0]  <IRQ>
[  106.693376][    C0]  dump_stack_lvl+0x1e7/0x2d0
[  106.698076][    C0]  ? tcp_gro_dev_warn+0x260/0x260
[  106.703110][    C0]  ? panic+0x850/0x850
[  106.707523][    C0]  ? tfrc_rx_handle_loss+0x12c6/0x1870
[  106.713224][    C0]  ? ccid3_hc_rx_set_state+0xc0/0xc0
[  106.718862][    C0]  tfrc_rx_hist_sample_rtt+0x393/0x4b0
[  106.724507][    C0]  ccid3_hc_rx_packet_recv+0x699/0xe60
[  106.730064][    C0]  ? ccid3_hc_tx_exit+0x60/0x60
[  106.735032][    C0]  dccp_rcv_established+0x1b7/0x310
[  106.740439][    C0]  dccp_v4_do_rcv+0xff/0x1f0
[  106.745258][    C0]  ? ip_protocol_deliver_rcu+0x208/0x3f0
[  106.751523][    C0]  __sk_receive_skb+0x41e/0x9d0
[  106.756651][    C0]  ip_protocol_deliver_rcu+0x208/0x3f0
[  106.762400][    C0]  ? ip_local_deliver_finish+0x1bc/0x500
[  106.768507][    C0]  ip_local_deliver_finish+0x2b6/0x500
[  106.774295][    C0]  ? NF_HOOK+0x450/0x450
[  106.778680][    C0]  NF_HOOK+0x3a1/0x450
[  106.782771][    C0]  ? NF_HOOK+0x9a/0x450
[  106.787539][    C0]  ? ip_local_deliver+0x1a0/0x1a0
[  106.793904][    C0]  ? ip_rcv_finish_core+0xc07/0x1b40
[  106.799633][    C0]  ? NF_HOOK+0x450/0x450
[  106.803973][    C0]  ? ip_local_deliver+0x116/0x1a0
[  106.809260][    C0]  ? ip_rcv_core+0xd10/0xd10
[  106.814213][    C0]  NF_HOOK+0x3a1/0x450
[  106.818381][    C0]  ? NF_HOOK+0x9a/0x450
[  106.823129][    C0]  ? ip_local_deliver+0x1a0/0x1a0
[  106.828413][    C0]  ? ip_rcv_core+0x7fb/0xd10
[  106.833807][    C0]  ? ip_rcv_core+0xd10/0xd10
[  106.838749][    C0]  ? ip_local_deliver_finish+0x500/0x500
[  106.844560][    C0]  ? ip_local_deliver_finish+0x500/0x500
[  106.850457][    C0]  __netif_receive_skb+0x1ca/0x530
[  106.855763][    C0]  ? read_lock_is_recursive+0x20/0x20
[  106.861188][    C0]  ? __netif_receive_skb_list_core+0x890/0x890
[  106.867544][    C0]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  106.873630][    C0]  ? print_irqtrace_events+0x220/0x220
[  106.879271][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[  106.884391][    C0]  ? process_backlog+0x2cd/0x760
[  106.889415][    C0]  process_backlog+0x385/0x760
[  106.894446][    C0]  ? trigger_rx_softirq+0x60/0x60
[  106.899479][    C0]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  106.905770][    C0]  ? print_irqtrace_events+0x220/0x220
[  106.911349][    C0]  ? __asan_memset+0x23/0x40
[  106.916582][    C0]  __napi_poll+0xc7/0x480
[  106.921464][    C0]  net_rx_action+0x78b/0x1010
[  106.926359][    C0]  ? net_tx_action+0xa30/0xa30
[  106.931158][    C0]  ? net_tx_action+0x630/0xa30
[  106.936130][    C0]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  106.942206][    C0]  __do_softirq+0x2b8/0x939
[  106.946866][    C0]  ? __irq_exit_rcu+0xf1/0x1b0
[  106.951771][    C0]  ? __lock_text_end+0xa/0xa
[  106.956702][    C0]  ? irqtime_account_irq+0xd4/0x1e0
[  106.961998][    C0]  __irq_exit_rcu+0xf1/0x1b0
[  106.966823][    C0]  ? irq_exit_rcu+0x20/0x20
[  106.971446][    C0]  irq_exit_rcu+0x9/0x20
[  106.975786][    C0]  sysvec_apic_timer_interrupt+0x97/0xb0
[  106.981743][    C0]  </IRQ>
[  106.984678][    C0]  <TASK>
[  106.987645][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  106.993865][    C0] RIP: 0010:__sanitizer_cov_trace_cmp8+0x7c/0x80
[  107.000234][    C0] Code: c1 e1 05 48 8d 41 28 4c 39 c8 77 1e 49 ff c2 4c 89 12 48 c7 44 11 08 06 00 00 00 48 89 7c 11 10 48 89 74 11 18 4c 89 44 11 20 <c3> 0f 1f 00 f3 0f 1e fa 4c 8b 04 24 65 48 8b 15 e0 bb 74 7e 65 8b
[  107.020810][    C0] RSP: 0018:ffffc900036af120 EFLAGS: 00000293
[  107.027493][    C0] RAX: 0000000000000000 RBX: ffffffff81000000 RCX: ffff888027f3d940
[  107.035937][    C0] RDX: ffffc900036af235 RSI: ffffffff8b600000 RDI: ffffffff890180af
[  107.043936][    C0] RBP: ffffffff890180af R08: ffffffff813e0ee4 R09: ffffc900036af2f0
[  107.052000][    C0] R10: 0000000000000003 R11: ffff888027f3d940 R12: ffffc900036af200
[  107.060150][    C0] R13: ffffc900036af250 R14: ffffffff8b600000 R15: ffffffff890180b0
[  107.068213][    C0]  ? skb_release_data+0x660/0x850
[  107.073276][    C0]  ? skb_release_data+0x65f/0x850
[  107.078389][    C0]  ? 0xffffffff81000000
[  107.082778][    C0]  ? unwind_next_frame+0x1f4/0x29e0
[  107.087994][    C0]  ? skb_release_data+0x65f/0x850
[  107.093022][    C0]  unwind_next_frame+0x1f4/0x29e0
[  107.098050][    C0]  ? skb_release_data+0x660/0x850
[  107.103079][    C0]  ? skb_release_data+0x660/0x850
[  107.108371][    C0]  ? __kernel_text_address+0xd/0x40
[  107.113763][    C0]  ? skb_release_data+0x660/0x850
[  107.119020][    C0]  ? stack_trace_save+0x1c0/0x1c0
[  107.124358][    C0]  arch_stack_walk+0x146/0x1a0
[  107.129298][    C0]  ? skb_release_data+0x660/0x850
[  107.134409][    C0]  stack_trace_save+0x117/0x1c0
[  107.139344][    C0]  ? stack_trace_snprint+0xf0/0xf0
[  107.144483][    C0]  ? mark_lock+0x9a/0x350
[  107.148908][    C0]  ? skb_release_data+0x660/0x850
[  107.153959][    C0]  kasan_save_track+0x3f/0x70
[  107.158758][    C0]  ? kasan_save_track+0x3f/0x70
[  107.163833][    C0]  ? kasan_save_free_info+0x4e/0x60
[  107.169137][    C0]  ? poison_slab_object+0xa6/0xe0
[  107.174747][    C0]  ? __kasan_slab_free+0x34/0x60
[  107.179983][    C0]  ? kfree+0x14a/0x380
[  107.184234][    C0]  ? skb_release_data+0x660/0x850
[  107.192673][    C0]  ? dccp_write_space+0x23/0x580
[  107.197647][    C0]  kasan_save_free_info+0x4e/0x60
[  107.204732][    C0]  poison_slab_object+0xa6/0xe0
[  107.209877][    C0]  __kasan_slab_free+0x34/0x60
[  107.214832][    C0]  ? skb_release_data+0x660/0x850
[  107.220326][    C0]  kfree+0x14a/0x380
[  107.224322][    C0]  skb_release_data+0x660/0x850
[  107.229730][    C0]  ? dccp_write_xmit+0x156/0x220
[  107.235010][    C0]  kfree_skb_reason+0x195/0x390
[  107.240069][    C0]  dccp_write_xmit+0x156/0x220
[  107.244935][    C0]  dccp_sendmsg+0x759/0xb70
[  107.249443][    C0]  ? dccp_getsockopt+0x1910/0x1910
[  107.254562][    C0]  ? sock_rps_record_flow+0x1a/0x400
[  107.260129][    C0]  ? inet_sendmsg+0x85/0x310
[  107.264911][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  107.270383][    C0]  ? security_socket_sendmsg+0x81/0xa0
[  107.276167][    C0]  ? inet_send_prepare+0x250/0x250
[  107.281284][    C0]  ____sys_sendmsg+0x592/0x890
[  107.286584][    C0]  ? __sys_sendmsg_sock+0x30/0x30
[  107.291785][    C0]  ? __might_fault+0xa5/0x120
[  107.296641][    C0]  __sys_sendmmsg+0x3b2/0x730
[  107.301455][    C0]  ? __ia32_sys_sendmsg+0x90/0x90
[  107.307010][    C0]  ? try_to_wake_up+0x99d/0x1460
[  107.312160][    C0]  ? __might_sleep+0xe0/0xe0
[  107.317381][    C0]  ? __might_fault+0xa5/0x120
[  107.323040][    C0]  ? inet_stream_connect+0x88/0xa0
[  107.328250][    C0]  ? __lock_acquire+0x1fd0/0x1fd0
[  107.333379][    C0]  ? do_futex+0x392/0x550
[  107.337756][    C0]  ? xfd_validate_state+0x6e/0x150
[  107.342900][    C0]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  107.349089][    C0]  ? print_irqtrace_events+0x220/0x220
[  107.355086][    C0]  ? do_syscall_64+0x102/0x230
[  107.359966][    C0]  __x64_sys_sendmmsg+0xa0/0xb0
[  107.365114][    C0]  do_syscall_64+0xf5/0x230
[  107.370118][    C0]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[  107.376237][    C0] RIP: 0033:0x7f50bea7c8c9
[  107.380735][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  107.401474][    C0] RSP: 002b:00007f50bf8100c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  107.410174][    C0] RAX: ffffffffffffffda RBX: 00007f50beb9bf80 RCX: 00007f50bea7c8c9
[  107.418623][    C0] RDX: 000000000000ffc3 RSI: 0000000020001e80 RDI: 0000000000000006
[  107.427924][    C0] RBP: 00007f50bead8ae8 R08: 0000000000000000 R09: 0000000000000000
[  107.436431][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  107.444589][    C0] R13: 000000000000000b R14: 00007f50beb9bf80 R15: 00007ffd11fbdac8
[  107.452773][    C0]  </TASK>
[  107.497377][ T6155] net_ratelimit: 54 callbacks suppressed
[  107.497390][ T6155] dccp_xmit_packet: Payload too large (65475) for featneg.
[  107.545350][ T6157] dccp_xmit_packet: Payload too large (65475) for featneg.
[  107.620307][ T6161] dccp_xmit_packet: Payload too large (65475) for featneg.
[  107.668188][ T6163] dccp_xmit_packet: Payload too large (65475) for featneg.
[  107.708293][ T6165] dccp_xmit_packet: Payload too large (65475) for featneg.
[  107.756180][ T6168] dccp_xmit_packet: Payload too large (65475) for featneg.
[  107.800647][ T6170] dccp_xmit_packet: Payload too large (65475) for featneg.
[  107.839334][ T6172] dccp_xmit_packet: Payload too large (65475) for featneg.
[  107.877600][ T6174] dccp_xmit_packet: Payload too large (65475) for featneg.
[  107.916954][ T6176] dccp_xmit_packet: Payload too large (65475) for featneg.
[  108.186906][    C1] Negotiation of local Allow Short Seqnos failed in state CHANGING at net/dccp/feat.c:1537/dccp_feat_activate_values()
[  109.226822][    C1] Negotiation of local Allow Short Seqnos failed in state CHANGING at net/dccp/feat.c:1537/dccp_feat_activate_values()