Warning: Permanently added '[localhost]:62506' (ED25519) to the list of known hosts.
2025/03/27 02:21:41 ignoring optional flag "sandboxArg"="0"
2025/03/27 02:21:41 ignoring optional flag "type"="qemu"
2025/03/27 02:21:41 parsed 1 programs
[   57.241744][   T40] audit: type=1400 audit(1743042101.751:123): avc:  denied  { getattr } for  pid=6053 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   57.249914][   T40] audit: type=1400 audit(1743042101.751:124): avc:  denied  { read } for  pid=6053 comm="syz-execprog" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   57.256333][   T40] audit: type=1400 audit(1743042101.751:125): avc:  denied  { open } for  pid=6053 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   57.336644][   T40] audit: type=1400 audit(1743042101.851:126): avc:  denied  { unlink } for  pid=6059 comm="syz-executor" name="swap-file" dev="sda1" ino=1931 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   58.162072][ T6059] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
2025/03/27 02:21:42 executed programs: 0
[   58.213393][ T5294] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   58.216513][ T5294] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   58.218840][ T5294] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   58.221816][ T5294] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   58.224483][ T5294] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   58.226889][ T5294] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   58.232794][   T40] audit: type=1400 audit(1743042102.741:127): avc:  denied  { mounton } for  pid=6065 comm="syz-executor.0" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   58.295023][ T6065] chnl_net:caif_netlink_parms(): no params data found
[   58.332212][ T6065] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.334346][ T6065] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.336376][ T6065] bridge_slave_0: entered allmulticast mode
[   58.338568][ T6065] bridge_slave_0: entered promiscuous mode
[   58.341689][ T6065] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.344378][ T6065] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.347046][ T6065] bridge_slave_1: entered allmulticast mode
[   58.349936][ T6065] bridge_slave_1: entered promiscuous mode
[   58.371724][ T6065] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   58.375622][ T6065] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   58.394293][ T6065] team0: Port device team_slave_0 added
[   58.397761][ T6065] team0: Port device team_slave_1 added
[   58.421699][ T6065] batman_adv: batadv0: Adding interface: batadv_slave_0
[   58.425347][ T6065] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.432325][ T6065] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   58.436025][ T6065] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.438032][ T6065] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.445058][ T6065] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.475485][ T6065] hsr_slave_0: entered promiscuous mode
[   58.478068][ T6065] hsr_slave_1: entered promiscuous mode
[   58.537918][   T40] audit: type=1400 audit(1743042103.051:128): avc:  denied  { search } for  pid=6075 comm="dhcpcd-run-hook" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   58.546148][   T40] audit: type=1400 audit(1743042103.051:129): avc:  denied  { read } for  pid=6076 comm="dhcpcd-run-hook" name="resolv.conf" dev="tmpfs" ino=1770 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   58.554564][   T40] audit: type=1400 audit(1743042103.051:130): avc:  denied  { open } for  pid=6076 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1770 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   58.563521][   T40] audit: type=1400 audit(1743042103.051:131): avc:  denied  { getattr } for  pid=6076 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1770 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   58.572910][   T40] audit: type=1400 audit(1743042103.061:132): avc:  denied  { write } for  pid=6075 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1769 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   58.794981][ T6065] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   58.799357][ T6065] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   58.803843][ T6065] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   58.808893][ T6065] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   58.823683][ T6065] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.826378][ T6065] bridge0: port 2(bridge_slave_1) entered forwarding state
[   58.829202][ T6065] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.831704][ T6065] bridge0: port 1(bridge_slave_0) entered forwarding state
[   58.858931][ T6065] 8021q: adding VLAN 0 to HW filter on device bond0
[   58.864829][ T6065] 8021q: adding VLAN 0 to HW filter on device team0
[   58.868672][   T71] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.871256][   T71] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.880010][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.882144][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   58.887579][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.889569][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   58.906597][ T6065] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   58.967150][ T6065] 8021q: adding VLAN 0 to HW filter on device batadv0
[   58.981744][ T6065] veth0_vlan: entered promiscuous mode
[   58.988171][ T6065] veth1_vlan: entered promiscuous mode
[   59.007249][ T6065] veth0_macvtap: entered promiscuous mode
[   59.011549][ T6065] veth1_macvtap: entered promiscuous mode
[   59.022593][ T6065] batman_adv: batadv0: Interface activated: batadv_slave_0
[   59.030271][ T6065] batman_adv: batadv0: Interface activated: batadv_slave_1
[   59.035296][ T6065] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.038688][ T6065] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.042005][ T6065] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   59.046435][ T6065] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   59.080932][   T71] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   59.083780][   T71] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   59.100778][   T71] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   59.103674][   T71] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   59.137897][ T6120] netlink: 244 bytes leftover after parsing attributes in process `syz-executor.0'.
[   59.153231][ T6120] dccp_xmit_packet: Payload too large (65475) for featneg.
[   59.187397][ T6125] dccp_xmit_packet: Payload too large (65475) for featneg.
[   59.192852][    C3] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:414/tfrc_rx_hist_sample_rtt()
[   59.196852][    C3] CPU: 3 UID: 0 PID: 6125 Comm: syz-executor.0 Not tainted 6.14.0-syzkaller-g1e1ba8d23dae #0 PREEMPT(full) 
[   59.196872][    C3] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   59.196878][    C3] Call Trace:
[   59.196881][    C3]  <IRQ>
[   59.196886][    C3]  dump_stack_lvl+0x16c/0x1f0
[   59.196942][    C3]  tfrc_rx_hist_sample_rtt+0x3e1/0x4a0
[   59.196966][    C3]  ccid3_hc_rx_packet_recv+0x448/0xf50
[   59.197007][    C3]  ? __pfx_ccid3_hc_rx_packet_recv+0x10/0x10
[   59.197037][    C3]  dccp_deliver_input_to_ccids+0xe3/0x270
[   59.197062][    C3]  dccp_rcv_established+0x10a/0x160
[   59.197086][    C3]  dccp_v4_do_rcv+0x171/0x1b0
[   59.197099][    C3]  ? __pfx_dccp_v4_do_rcv+0x10/0x10
[   59.197108][    C3]  __sk_receive_skb+0x79f/0x890
[   59.197124][    C3]  dccp_v4_rcv+0x1145/0x1d10
[   59.197135][    C3]  ? __pfx_dccp_v4_rcv+0x10/0x10
[   59.197144][    C3]  ip_protocol_deliver_rcu+0x441/0x4c0
[   59.197158][    C3]  ip_local_deliver_finish+0x316/0x570
[   59.197170][    C3]  ip_local_deliver+0x18e/0x1f0
[   59.197180][    C3]  ? __pfx_ip_local_deliver+0x10/0x10
[   59.197190][    C3]  ip_rcv+0x2c3/0x5d0
[   59.197201][    C3]  ? __pfx_ip_rcv+0x10/0x10
[   59.197210][    C3]  __netif_receive_skb_one_core+0x197/0x1e0
[   59.197223][    C3]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   59.197236][    C3]  ? lock_acquire+0x179/0x350
[   59.197251][    C3]  ? process_backlog+0x3f0/0x15e0
[   59.197263][    C3]  __netif_receive_skb+0x1d/0x160
[   59.197275][    C3]  process_backlog+0x442/0x15e0
[   59.197288][    C3]  __napi_poll.constprop.0+0xb7/0x550
[   59.197302][    C3]  net_rx_action+0xa97/0x1010
[   59.197316][    C3]  ? __pfx_net_rx_action+0x10/0x10
[   59.197330][    C3]  ? rcu_is_watching+0x12/0xc0
[   59.197343][    C3]  ? mark_held_locks+0x49/0x80
[   59.197356][    C3]  handle_softirqs+0x216/0x8e0
[   59.197369][    C3]  ? __pfx_handle_softirqs+0x10/0x10
[   59.197381][    C3]  __irq_exit_rcu+0x109/0x170
[   59.197391][    C3]  irq_exit_rcu+0x9/0x30
[   59.197400][    C3]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   59.197413][    C3]  </IRQ>
[   59.197421][    C3]  <TASK>
[   59.197424][    C3]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   59.197438][    C3] RIP: 0010:preempt_count_add+0x9e/0x150
[   59.197448][    C3] Code: 0f 00 85 c0 75 38 65 48 8b 2d 56 b4 13 12 48 8d bd e0 14 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 <0f> 85 87 00 00 00 48 89 9d e0 14 00 00 5b 5d c3 cc cc cc cc 31 ff
[   59.197457][    C3] RSP: 0018:ffffc900048c7340 EFLAGS: 00000246
[   59.197466][    C3] RAX: dffffc0000000000 RBX: ffffffff8169a8c1 RCX: 1ffffffff35584d4
[   59.197472][    C3] RDX: 1ffff110050a4724 RSI: ffffffff89337769 RDI: ffff888028523920
[   59.197478][    C3] RBP: ffff888028522440 R08: 0000000000000001 R09: 0000000000000000
[   59.197484][    C3] R10: ffffc900048c73c8 R11: 00000000000832dd R12: ffffffff81a6c6a0
[   59.197490][    C3] R13: ffffc900048c73c8 R14: 0000000000000000 R15: ffff888028522440
[   59.197500][    C3]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   59.197516][    C3]  ? unwind_next_frame+0xb1/0x1ff0
[   59.197535][    C3]  ? sk_skb_reason_drop+0x129/0x1a0
[   59.197552][    C3]  unwind_next_frame+0xb1/0x1ff0
[   59.197568][    C3]  ? sk_skb_reason_drop+0x129/0x1a0
[   59.197583][    C3]  ? dccp_sendmsg+0x2f8/0xd10
[   59.197598][    C3]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   59.197629][    C3]  arch_stack_walk+0x94/0x100
[   59.197649][    C3]  ? sk_skb_reason_drop+0x129/0x1a0
[   59.197666][    C3]  stack_trace_save+0x8e/0xc0
[   59.197683][    C3]  ? __pfx_stack_trace_save+0x10/0x10
[   59.197698][    C3]  ? __lock_acquire+0xaa4/0x1ba0
[   59.197711][    C3]  kasan_save_stack+0x33/0x60
[   59.197721][    C3]  ? kasan_save_stack+0x33/0x60
[   59.197728][    C3]  ? kasan_save_track+0x14/0x30
[   59.197736][    C3]  ? kasan_save_free_info+0x3b/0x60
[   59.197749][    C3]  ? __kasan_slab_free+0x51/0x70
[   59.197757][    C3]  ? kfree+0x2b6/0x4d0
[   59.197772][    C3]  ? skb_free_head+0x108/0x1d0
[   59.197783][    C3]  ? skb_release_data+0x56d/0x740
[   59.197796][    C3]  ? sk_skb_reason_drop+0x129/0x1a0
[   59.197815][    C3]  kasan_save_track+0x14/0x30
[   59.197823][    C3]  kasan_save_free_info+0x3b/0x60
[   59.197835][    C3]  __kasan_slab_free+0x51/0x70
[   59.197844][    C3]  kfree+0x2b6/0x4d0
[   59.197857][    C3]  ? skb_free_head+0x108/0x1d0
[   59.197870][    C3]  skb_free_head+0x108/0x1d0
[   59.197882][    C3]  skb_release_data+0x56d/0x740
[   59.197895][    C3]  ? __pfx_sock_wfree+0x10/0x10
[   59.197909][    C3]  sk_skb_reason_drop+0x129/0x1a0
[   59.197918][    C3]  dccp_qpolicy_drop+0x39/0x40
[   59.197930][    C3]  dccp_write_xmit+0x184/0x1d0
[   59.197940][    C3]  dccp_sendmsg+0x9b2/0xd10
[   59.197951][    C3]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[   59.197963][    C3]  ? __pfx_dccp_sendmsg+0x10/0x10
[   59.197980][    C3]  ? __import_iovec+0x1c8/0x660
[   59.197997][    C3]  ? __might_fault+0xe3/0x190
[   59.198011][    C3]  ? __might_fault+0x13b/0x190
[   59.198030][    C3]  ? __pfx_dccp_sendmsg+0x10/0x10
[   59.198044][    C3]  inet_sendmsg+0x119/0x140
[   59.198057][    C3]  ____sys_sendmsg+0x96b/0xc60
[   59.198072][    C3]  ? copy_msghdr_from_user+0x10a/0x160
[   59.198094][    C3]  ? __pfx_____sys_sendmsg+0x10/0x10
[   59.198112][    C3]  ? kfree+0x252/0x4d0
[   59.198135][    C3]  ___sys_sendmsg+0x134/0x1d0
[   59.198154][    C3]  ? __up_read+0x1f8/0x750
[   59.198178][    C3]  ? __pfx____sys_sendmsg+0x10/0x10
[   59.198209][    C3]  ? __pfx___might_resched+0x10/0x10
[   59.198223][    C3]  __sys_sendmmsg+0x200/0x420
[   59.198238][    C3]  ? __pfx___sys_sendmmsg+0x10/0x10
[   59.198264][    C3]  ? xfd_validate_state+0x5d/0x180
[   59.198279][    C3]  ? rcu_is_watching+0x12/0xc0
[   59.198298][    C3]  __x64_sys_sendmmsg+0x9c/0x100
[   59.198322][    C3]  ? lockdep_hardirqs_on+0x7c/0x110
[   59.198344][    C3]  do_syscall_64+0xcd/0x260
[   59.198368][    C3]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.198382][    C3] RIP: 0033:0x7f8e7fe7cd29
[   59.198393][    C3] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   59.198406][    C3] RSP: 002b:00007f8e80c6b0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   59.198422][    C3] RAX: ffffffffffffffda RBX: 00007f8e7ffabf80 RCX: 00007f8e7fe7cd29
[   59.198432][    C3] RDX: 000000000000ffc3 RSI: 0000000020001e80 RDI: 0000000000000006
[   59.198442][    C3] RBP: 00007f8e7fec947a R08: 0000000000000000 R09: 0000000000000000
[   59.198452][    C3] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   59.198461][    C3] R13: 000000000000000b R14: 00007f8e7ffabf80 R15: 00007ffd507f6268
[   59.198478][    C3]  </TASK>
[   59.418739][ T6140] dccp_xmit_packet: Payload too large (65475) for featneg.
[   59.442725][ T6143] dccp_xmit_packet: Payload too large (65475) for featneg.
[   59.467850][ T6146] dccp_xmit_packet: Payload too large (65475) for featneg.
[   59.487390][ T6150] dccp_xmit_packet: Payload too large (65475) for featneg.
[   59.518154][ T6154] dccp_xmit_packet: Payload too large (65475) for featneg.
[   59.551274][ T6157] dccp_xmit_packet: Payload too large (65475) for featneg.
[   59.586356][ T6161] dccp_xmit_packet: Payload too large (65475) for featneg.
[   59.613841][ T6165] dccp_xmit_packet: Payload too large (65475) for featneg.
[   60.008976][    C0] Negotiation of local Allow Short Seqnos failed in state CHANGING at net/dccp/feat.c:1538/dccp_feat_activate_values()
[   60.274931][ T5294] Bluetooth: hci0: command tx timeout
[   60.450711][    C2] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:414/tfrc_rx_hist_sample_rtt()
[   60.455353][    C2] CPU: 2 UID: 0 PID: 6256 Comm: syz-executor.0 Not tainted 6.14.0-syzkaller-g1e1ba8d23dae #0 PREEMPT(full) 
[   60.455367][    C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   60.455373][    C2] Call Trace:
[   60.455377][    C2]  <IRQ>
[   60.455381][    C2]  dump_stack_lvl+0x16c/0x1f0
[   60.455399][    C2]  tfrc_rx_hist_sample_rtt+0x3e1/0x4a0
[   60.455416][    C2]  ccid3_hc_rx_packet_recv+0x448/0xf50
[   60.455431][    C2]  ? __pfx_ccid3_hc_rx_packet_recv+0x10/0x10
[   60.455446][    C2]  dccp_deliver_input_to_ccids+0xe3/0x270
[   60.455462][    C2]  dccp_rcv_established+0x10a/0x160
[   60.455477][    C2]  dccp_v4_do_rcv+0x171/0x1b0
[   60.455486][    C2]  ? __pfx_dccp_v4_do_rcv+0x10/0x10
[   60.455496][    C2]  __sk_receive_skb+0x79f/0x890
[   60.455511][    C2]  dccp_v4_rcv+0x1145/0x1d10
[   60.455523][    C2]  ? __pfx_dccp_v4_rcv+0x10/0x10
[   60.455533][    C2]  ip_protocol_deliver_rcu+0x441/0x4c0
[   60.455546][    C2]  ip_local_deliver_finish+0x316/0x570
[   60.455559][    C2]  ip_local_deliver+0x18e/0x1f0
[   60.455569][    C2]  ? __pfx_ip_local_deliver+0x10/0x10
[   60.455579][    C2]  ip_rcv+0x2c3/0x5d0
[   60.455590][    C2]  ? __pfx_ip_rcv+0x10/0x10
[   60.455599][    C2]  __netif_receive_skb_one_core+0x197/0x1e0
[   60.455612][    C2]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   60.455625][    C2]  ? lock_acquire+0x179/0x350
[   60.455641][    C2]  ? process_backlog+0x3f0/0x15e0
[   60.455652][    C2]  __netif_receive_skb+0x1d/0x160
[   60.455664][    C2]  process_backlog+0x442/0x15e0
[   60.455677][    C2]  __napi_poll.constprop.0+0xb7/0x550
[   60.455689][    C2]  ? rcu_is_watching+0x12/0xc0
[   60.455700][    C2]  net_rx_action+0xa97/0x1010
[   60.455714][    C2]  ? __pfx_net_rx_action+0x10/0x10
[   60.455728][    C2]  ? rcu_is_watching+0x12/0xc0
[   60.455742][    C2]  handle_softirqs+0x216/0x8e0
[   60.455760][    C2]  ? __pfx_handle_softirqs+0x10/0x10
[   60.455773][    C2]  __irq_exit_rcu+0x109/0x170
[   60.455783][    C2]  irq_exit_rcu+0x9/0x30
[   60.455793][    C2]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   60.455805][    C2]  </IRQ>
[   60.455808][    C2]  <TASK>
[   60.455811][    C2]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   60.455822][    C2] RIP: 0010:is_bpf_text_address+0x9/0x1a0
[   60.455837][    C2] Code: ff 4c 89 ef e8 98 ce 52 00 e9 37 fe ff ff 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 55 48 89 fd 53 <e8> 02 33 ef ff e8 9d bf d4 ff 45 31 c9 45 31 c0 b9 02 00 00 00 48
[   60.455846][    C2] RSP: 0018:ffffc900035f7200 EFLAGS: 00000246
[   60.455854][    C2] RAX: 0000000000000000 RBX: 00007f8e7fe7cd29 RCX: 0000000000000000
[   60.455860][    C2] RDX: 0000000000000001 RSI: ffffffff8bf37060 RDI: 00007f8e7fe7cd29
[   60.455866][    C2] RBP: 00007f8e7fe7cd29 R08: 0000000000000007 R09: ffffffffff600000
[   60.455871][    C2] R10: 00007f8e7fe7c000 R11: 0000000000000001 R12: ffffffff81a6c6a0
[   60.455877][    C2] R13: ffffc900035f7318 R14: 0000000000000000 R15: ffff888026ce0000
[   60.455884][    C2]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   60.455895][    C2]  ? 0xffffffffff600000
[   60.455905][    C2]  kernel_text_address+0x8d/0x100
[   60.455915][    C2]  __kernel_text_address+0xd/0x40
[   60.455924][    C2]  unwind_get_return_address+0x59/0xa0
[   60.455936][    C2]  arch_stack_walk+0xa6/0x100
[   60.455951][    C2]  stack_trace_save+0x8e/0xc0
[   60.455961][    C2]  ? __pfx_stack_trace_save+0x10/0x10
[   60.455972][    C2]  ? __lock_acquire+0xaa4/0x1ba0
[   60.455984][    C2]  kasan_save_stack+0x33/0x60
[   60.455993][    C2]  ? kasan_save_stack+0x33/0x60
[   60.456001][    C2]  ? kasan_save_track+0x14/0x30
[   60.456009][    C2]  ? __kasan_slab_alloc+0x89/0x90
[   60.456017][    C2]  ? kmem_cache_alloc_node_noprof+0x1d5/0x3b0
[   60.456027][    C2]  ? __alloc_skb+0x2b2/0x380
[   60.456039][    C2]  ? alloc_skb_with_frags+0xe0/0x860
[   60.456048][    C2]  ? sock_alloc_send_pskb+0x7fb/0x990
[   60.456059][    C2]  ? dccp_sendmsg+0x2f8/0xd10
[   60.456069][    C2]  ? inet_sendmsg+0x119/0x140
[   60.456077][    C2]  ? ____sys_sendmsg+0x96b/0xc60
[   60.456086][    C2]  ? ___sys_sendmsg+0x134/0x1d0
[   60.456099][    C2]  ? __sys_sendmmsg+0x200/0x420
[   60.456112][    C2]  ? __x64_sys_sendmmsg+0x9c/0x100
[   60.456125][    C2]  ? do_syscall_64+0xcd/0x260
[   60.456137][    C2]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.456155][    C2]  kasan_save_track+0x14/0x30
[   60.456163][    C2]  __kasan_slab_alloc+0x89/0x90
[   60.456173][    C2]  kmem_cache_alloc_node_noprof+0x1d5/0x3b0
[   60.456182][    C2]  ? do_syscall_64+0xcd/0x260
[   60.456194][    C2]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.456203][    C2]  ? __alloc_skb+0x2b2/0x380
[   60.456216][    C2]  __alloc_skb+0x2b2/0x380
[   60.456229][    C2]  ? __pfx___alloc_skb+0x10/0x10
[   60.456245][    C2]  alloc_skb_with_frags+0xe0/0x860
[   60.456256][    C2]  sock_alloc_send_pskb+0x7fb/0x990
[   60.456271][    C2]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[   60.456284][    C2]  ? find_held_lock+0x2b/0x80
[   60.456294][    C2]  ? dccp_sendmsg+0x2da/0xd10
[   60.456304][    C2]  ? rcu_is_watching+0x12/0xc0
[   60.456312][    C2]  ? __local_bh_enable_ip+0xa4/0x120
[   60.456324][    C2]  dccp_sendmsg+0x2f8/0xd10
[   60.456335][    C2]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[   60.456347][    C2]  ? __pfx_dccp_sendmsg+0x10/0x10
[   60.456357][    C2]  ? __import_iovec+0x1c8/0x660
[   60.456368][    C2]  ? __might_fault+0xe3/0x190
[   60.456379][    C2]  ? __might_fault+0x13b/0x190
[   60.456389][    C2]  ? __pfx_dccp_sendmsg+0x10/0x10
[   60.456399][    C2]  inet_sendmsg+0x119/0x140
[   60.456408][    C2]  ____sys_sendmsg+0x96b/0xc60
[   60.456418][    C2]  ? copy_msghdr_from_user+0x10a/0x160
[   60.456432][    C2]  ? __pfx_____sys_sendmsg+0x10/0x10
[   60.456443][    C2]  ? kfree+0x252/0x4d0
[   60.456458][    C2]  ___sys_sendmsg+0x134/0x1d0
[   60.456471][    C2]  ? __up_read+0x1f8/0x750
[   60.456485][    C2]  ? __pfx____sys_sendmsg+0x10/0x10
[   60.456506][    C2]  ? __pfx___might_resched+0x10/0x10
[   60.456519][    C2]  __sys_sendmmsg+0x200/0x420
[   60.456534][    C2]  ? __pfx___sys_sendmmsg+0x10/0x10
[   60.456554][    C2]  ? xfd_validate_state+0x5d/0x180
[   60.456563][    C2]  ? rcu_is_watching+0x12/0xc0
[   60.456574][    C2]  __x64_sys_sendmmsg+0x9c/0x100
[   60.456587][    C2]  ? lockdep_hardirqs_on+0x7c/0x110
[   60.456600][    C2]  do_syscall_64+0xcd/0x260
[   60.456613][    C2]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.456623][    C2] RIP: 0033:0x7f8e7fe7cd29
[   60.456630][    C2] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   60.456639][    C2] RSP: 002b:00007f8e80c6b0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   60.456647][    C2] RAX: ffffffffffffffda RBX: 00007f8e7ffabf80 RCX: 00007f8e7fe7cd29
[   60.456653][    C2] RDX: 000000000000ffc3 RSI: 0000000020001e80 RDI: 0000000000000006
[   60.456658][    C2] RBP: 00007f8e7fec947a R08: 0000000000000000 R09: 0000000000000000
[   60.456664][    C2] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   60.456669][    C2] R13: 000000000000000b R14: 00007f8e7ffabf80 R15: 00007ffd507f6268
[   60.456678][    C2]  </TASK>
[   60.859280][    C3] Negotiation of local Allow Short Seqnos failed in state CHANGING at net/dccp/feat.c:1538/dccp_feat_activate_values()
[   61.262560][    C3] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:414/tfrc_rx_hist_sample_rtt()
[   61.267637][    C3] CPU: 3 UID: 0 PID: 6304 Comm: syz-executor.0 Not tainted 6.14.0-syzkaller-g1e1ba8d23dae #0 PREEMPT(full) 
[   61.267662][    C3] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   61.267671][    C3] Call Trace:
[   61.267677][    C3]  <IRQ>
[   61.267684][    C3]  dump_stack_lvl+0x16c/0x1f0
[   61.267713][    C3]  tfrc_rx_hist_sample_rtt+0x3e1/0x4a0
[   61.267740][    C3]  ccid3_hc_rx_packet_recv+0x448/0xf50
[   61.267771][    C3]  ? __pfx_ccid3_hc_rx_packet_recv+0x10/0x10
[   61.267797][    C3]  dccp_deliver_input_to_ccids+0xe3/0x270
[   61.267822][    C3]  dccp_rcv_established+0x10a/0x160
[   61.267849][    C3]  dccp_v4_do_rcv+0x171/0x1b0
[   61.267866][    C3]  ? __pfx_dccp_v4_do_rcv+0x10/0x10
[   61.267882][    C3]  __sk_receive_skb+0x79f/0x890
[   61.267909][    C3]  dccp_v4_rcv+0x1145/0x1d10
[   61.267931][    C3]  ? __pfx_dccp_v4_rcv+0x10/0x10
[   61.267949][    C3]  ip_protocol_deliver_rcu+0x441/0x4c0
[   61.267971][    C3]  ip_local_deliver_finish+0x316/0x570
[   61.267993][    C3]  ip_local_deliver+0x18e/0x1f0
[   61.268011][    C3]  ? __pfx_ip_local_deliver+0x10/0x10
[   61.268028][    C3]  ip_rcv+0x2c3/0x5d0
[   61.268045][    C3]  ? __pfx_ip_rcv+0x10/0x10
[   61.268063][    C3]  __netif_receive_skb_one_core+0x197/0x1e0
[   61.268085][    C3]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   61.268107][    C3]  ? lock_acquire+0x179/0x350
[   61.268134][    C3]  ? process_backlog+0x3f0/0x15e0
[   61.268152][    C3]  __netif_receive_skb+0x1d/0x160
[   61.268174][    C3]  process_backlog+0x442/0x15e0
[   61.268197][    C3]  __napi_poll.constprop.0+0xb7/0x550
[   61.268219][    C3]  ? rcu_is_watching+0x12/0xc0
[   61.268237][    C3]  net_rx_action+0xa97/0x1010
[   61.268264][    C3]  ? __pfx_net_rx_action+0x10/0x10
[   61.268288][    C3]  ? rcu_is_watching+0x12/0xc0
[   61.268316][    C3]  handle_softirqs+0x216/0x8e0
[   61.268338][    C3]  ? __pfx_handle_softirqs+0x10/0x10
[   61.268360][    C3]  __irq_exit_rcu+0x109/0x170
[   61.268378][    C3]  irq_exit_rcu+0x9/0x30
[   61.268394][    C3]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   61.268416][    C3]  </IRQ>
[   61.268422][    C3]  <TASK>
[   61.268428][    C3]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   61.268444][    C3] RIP: 0010:write_comp_data+0x42/0x90
[   61.268468][    C3] Code: a9 00 01 ff 00 74 1d f6 c4 01 74 67 a9 00 00 0f 00 75 60 a9 00 00 f0 00 75 59 8b 82 3c 16 00 00 85 c0 74 4f 8b 82 18 16 00 00 <83> f8 03 75 44 48 8b 82 20 16 00 00 8b 92 1c 16 00 00 48 8b 38 48
[   61.268482][    C3] RSP: 0018:ffffc90003a978b0 EFLAGS: 00000246
[   61.268496][    C3] RAX: 0000000000000000 RBX: 1ffff92000752f18 RCX: ffffffff847df6b0
[   61.268508][    C3] RDX: ffff8880253f4880 RSI: 0000000000000007 RDI: 0000000000000005
[   61.268518][    C3] RBP: ffff88802578e900 R08: 0000000000000005 R09: 0000000000000007
[   61.268527][    C3] R10: 0000000000000093 R11: 0000000000000000 R12: ffff888031d540c0
[   61.268536][    C3] R13: ffffc90003a978e0 R14: 0000000000000093 R15: ffffc90003a97920
[   61.268550][    C3]  ? sock_has_perm+0x150/0x2f0
[   61.268575][    C3]  sock_has_perm+0x150/0x2f0
[   61.268594][    C3]  ? __pfx_sock_has_perm+0x10/0x10
[   61.268618][    C3]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[   61.268639][    C3]  ? __import_iovec+0x1c8/0x660
[   61.268658][    C3]  ? __might_fault+0xe3/0x190
[   61.268675][    C3]  ? __might_fault+0x13b/0x190
[   61.268695][    C3]  security_socket_sendmsg+0x9b/0x240
[   61.268719][    C3]  ____sys_sendmsg+0x2f2/0xc60
[   61.268737][    C3]  ? copy_msghdr_from_user+0x10a/0x160
[   61.268767][    C3]  ? __pfx_____sys_sendmsg+0x10/0x10
[   61.268788][    C3]  ? kfree+0x252/0x4d0
[   61.268815][    C3]  ___sys_sendmsg+0x134/0x1d0
[   61.268835][    C3]  ? __up_read+0x1f8/0x750
[   61.268860][    C3]  ? __pfx____sys_sendmsg+0x10/0x10
[   61.268899][    C3]  ? __pfx___might_resched+0x10/0x10
[   61.268923][    C3]  __sys_sendmmsg+0x200/0x420
[   61.268948][    C3]  ? __pfx___sys_sendmmsg+0x10/0x10
[   61.269001][    C3]  ? __pfx_mem_cgroup_handle_over_high+0x10/0x10
[   61.269021][    C3]  ? __sys_setsockopt+0x1cd/0x230
[   61.269045][    C3]  __x64_sys_sendmmsg+0x9c/0x100
[   61.269070][    C3]  ? lockdep_hardirqs_on+0x7c/0x110
[   61.269092][    C3]  do_syscall_64+0xcd/0x260
[   61.269115][    C3]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.269132][    C3] RIP: 0033:0x7f8e7fe7cd29
[   61.269146][    C3] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   61.269159][    C3] RSP: 002b:00007f8e80c6b0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   61.269174][    C3] RAX: ffffffffffffffda RBX: 00007f8e7ffabf80 RCX: 00007f8e7fe7cd29
[   61.269185][    C3] RDX: 000000000000ffc3 RSI: 0000000020001e80 RDI: 0000000000000006
[   61.269196][    C3] RBP: 00007f8e7fec947a R08: 0000000000000000 R09: 0000000000000000
[   61.269206][    C3] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   61.269216][    C3] R13: 000000000000000b R14: 00007f8e7ffabf80 R15: 00007ffd507f6268
[   61.269236][    C3]  </TASK>
[   61.628086][    C0] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:414/tfrc_rx_hist_sample_rtt()
[   61.632351][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.14.0-syzkaller-g1e1ba8d23dae #0 PREEMPT(full) 
[   61.632364][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   61.632370][    C0] Call Trace:
[   61.632374][    C0]  <IRQ>
[   61.632378][    C0]  dump_stack_lvl+0x16c/0x1f0
[   61.632397][    C0]  tfrc_rx_hist_sample_rtt+0x3e1/0x4a0
[   61.632415][    C0]  ccid3_hc_rx_packet_recv+0x448/0xf50
[   61.632430][    C0]  ? __pfx_ccid3_hc_rx_packet_recv+0x10/0x10
[   61.632445][    C0]  dccp_deliver_input_to_ccids+0xe3/0x270
[   61.632460][    C0]  dccp_rcv_established+0x10a/0x160
[   61.632475][    C0]  dccp_v4_do_rcv+0x171/0x1b0
[   61.632485][    C0]  ? __pfx_dccp_v4_do_rcv+0x10/0x10
[   61.632494][    C0]  __sk_receive_skb+0x79f/0x890
[   61.632509][    C0]  dccp_v4_rcv+0x1145/0x1d10
[   61.632521][    C0]  ? __pfx_dccp_v4_rcv+0x10/0x10
[   61.632530][    C0]  ip_protocol_deliver_rcu+0x441/0x4c0
[   61.632544][    C0]  ip_local_deliver_finish+0x316/0x570
[   61.632555][    C0]  ip_local_deliver+0x18e/0x1f0
[   61.632565][    C0]  ? __pfx_ip_local_deliver+0x10/0x10
[   61.632576][    C0]  ip_rcv+0x2c3/0x5d0
[   61.632587][    C0]  ? __pfx_ip_rcv+0x10/0x10
[   61.632596][    C0]  __netif_receive_skb_one_core+0x197/0x1e0
[   61.632609][    C0]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   61.632622][    C0]  ? lock_acquire+0x179/0x350
[   61.632637][    C0]  ? process_backlog+0x3f0/0x15e0
[   61.632649][    C0]  __netif_receive_skb+0x1d/0x160
[   61.632661][    C0]  process_backlog+0x442/0x15e0
[   61.632674][    C0]  __napi_poll.constprop.0+0xb7/0x550
[   61.632687][    C0]  ? rcu_is_watching+0x12/0xc0
[   61.632697][    C0]  net_rx_action+0xa97/0x1010
[   61.632711][    C0]  ? __pfx_net_rx_action+0x10/0x10
[   61.632725][    C0]  ? rcu_is_watching+0x12/0xc0
[   61.632739][    C0]  handle_softirqs+0x216/0x8e0
[   61.632752][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[   61.632764][    C0]  __irq_exit_rcu+0x109/0x170
[   61.632774][    C0]  irq_exit_rcu+0x9/0x30
[   61.632784][    C0]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   61.632796][    C0]  </IRQ>
[   61.632799][    C0]  <TASK>
[   61.632802][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   61.632813][    C0] RIP: 0010:default_idle+0xf/0x20
[   61.632829][    C0] Code: 4c 01 c7 4c 29 c2 e9 6e ff ff ff 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d 13 89 28 00 fb f4 <fa> c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90
[   61.632838][    C0] RSP: 0018:ffffffff8e007e18 EFLAGS: 00000202
[   61.632847][    C0] RAX: 00000000000b7f89 RBX: 0000000000000000 RCX: ffffffff8b5e12f9
[   61.632853][    C0] RDX: 0000000000000000 RSI: ffffffff8dbb0537 RDI: ffffffff8bf370e0
[   61.632858][    C0] RBP: fffffbfff1c12ee8 R08: 0000000000000001 R09: ffffed100d4865bd
[   61.632864][    C0] R10: ffff88806a432deb R11: 0000000000000000 R12: 0000000000000000
[   61.632869][    C0] R13: ffffffff8e097740 R14: ffffffff90825410 R15: 0000000000000000
[   61.632877][    C0]  ? ct_kernel_exit+0x139/0x190
[   61.632893][    C0]  default_idle_call+0x6d/0xb0
[   61.632906][    C0]  do_idle+0x391/0x510
[   61.632917][    C0]  ? __pfx_do_idle+0x10/0x10
[   61.632927][    C0]  ? trace_irq_enable.constprop.0+0x2f/0x120
[   61.632942][    C0]  cpu_startup_entry+0x4f/0x60
[   61.632952][    C0]  rest_init+0x16b/0x2b0
[   61.632961][    C0]  ? acpi_subsystem_init+0x133/0x180
[   61.633028][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[   61.633042][    C0]  start_kernel+0x3e9/0x4d0
[   61.633058][    C0]  x86_64_start_reservations+0x18/0x30
[   61.633072][    C0]  x86_64_start_kernel+0xb0/0xc0
[   61.633091][    C0]  common_startup_64+0x13e/0x148
[   61.633116][    C0]  </TASK>
[   62.355885][ T5294] Bluetooth: hci0: command tx timeout
2025/03/27 02:21:47 executed programs: 134
[   64.175014][ T6527] net_ratelimit: 150 callbacks suppressed
[   64.175025][ T6527] dccp_xmit_packet: Payload too large (65475) for featneg.
[   64.198369][ T6529] dccp_xmit_packet: Payload too large (65475) for featneg.
[   64.219670][ T6531] dccp_xmit_packet: Payload too large (65475) for featneg.
[   64.245309][ T6533] dccp_xmit_packet: Payload too large (65475) for featneg.
[   64.269679][ T6535] dccp_xmit_packet: Payload too large (65475) for featneg.
[   64.291390][ T6537] dccp_xmit_packet: Payload too large (65475) for featneg.
[   64.295202][    C2] ccid3_first_li: No RTT estimate available, using fallback RTT
[   64.297390][    C2] ccid3_first_li: X_recv==0
[   64.298666][    C2] BUG: stored value of X_recv is zero at net/dccp/ccids/ccid3.c:691/ccid3_first_li()
[   64.301318][    C2] CPU: 2 UID: 0 PID: 6537 Comm: syz-executor.0 Not tainted 6.14.0-syzkaller-g1e1ba8d23dae #0 PREEMPT(full) 
[   64.301330][    C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.301336][    C2] Call Trace:
[   64.301340][    C2]  <IRQ>
[   64.301344][    C2]  dump_stack_lvl+0x16c/0x1f0
[   64.301361][    C2]  ccid3_first_li+0x2fc/0x500
[   64.301378][    C2]  tfrc_lh_interval_add+0x614/0x8d0
[   64.301392][    C2]  ? __pfx_ccid3_first_li+0x10/0x10
[   64.301406][    C2]  ? __pfx_ccid3_first_li+0x10/0x10
[   64.301419][    C2]  tfrc_rx_handle_loss+0xe74/0x2200
[   64.301437][    C2]  ccid3_hc_rx_packet_recv+0x372/0xf50
[   64.301452][    C2]  ? __pfx_ccid3_hc_rx_packet_recv+0x10/0x10
[   64.301467][    C2]  dccp_deliver_input_to_ccids+0xe3/0x270
[   64.301482][    C2]  dccp_rcv_established+0x10a/0x160
[   64.301497][    C2]  dccp_v4_do_rcv+0x171/0x1b0
[   64.301506][    C2]  ? __pfx_dccp_v4_do_rcv+0x10/0x10
[   64.301515][    C2]  __sk_receive_skb+0x79f/0x890
[   64.301531][    C2]  dccp_v4_rcv+0x1145/0x1d10
[   64.301542][    C2]  ? __pfx_dccp_v4_rcv+0x10/0x10
[   64.301552][    C2]  ip_protocol_deliver_rcu+0x441/0x4c0
[   64.301565][    C2]  ip_local_deliver_finish+0x316/0x570
[   64.301577][    C2]  ip_local_deliver+0x18e/0x1f0
[   64.301588][    C2]  ? __pfx_ip_local_deliver+0x10/0x10
[   64.301598][    C2]  ip_rcv+0x2c3/0x5d0
[   64.301609][    C2]  ? __pfx_ip_rcv+0x10/0x10
[   64.301618][    C2]  __netif_receive_skb_one_core+0x197/0x1e0
[   64.301631][    C2]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   64.301644][    C2]  ? lock_acquire+0x179/0x350
[   64.301659][    C2]  ? process_backlog+0x3f0/0x15e0
[   64.301671][    C2]  __netif_receive_skb+0x1d/0x160
[   64.301682][    C2]  process_backlog+0x442/0x15e0
[   64.301696][    C2]  __napi_poll.constprop.0+0xb7/0x550
[   64.301710][    C2]  net_rx_action+0xa97/0x1010
[   64.301728][    C2]  ? __pfx_net_rx_action+0x10/0x10
[   64.301741][    C2]  ? rcu_is_watching+0x12/0xc0
[   64.301757][    C2]  ? mark_held_locks+0x49/0x80
[   64.301769][    C2]  handle_softirqs+0x216/0x8e0
[   64.301782][    C2]  ? __pfx_handle_softirqs+0x10/0x10
[   64.301794][    C2]  __irq_exit_rcu+0x109/0x170
[   64.301804][    C2]  irq_exit_rcu+0x9/0x30
[   64.301814][    C2]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   64.301827][    C2]  </IRQ>
[   64.301830][    C2]  <TASK>
[   64.301833][    C2]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   64.301848][    C2] RIP: 0010:read_tsc+0xc/0x20
[   64.301862][    C2] Code: 1e fa e9 f7 2e 5c 00 0f 1f 80 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa e8 d7 2e 5c 00 0f 01 f9 <66> 90 48 c1 e2 20 48 09 d0 c3 cc cc cc cc 66 0f 1f 44 00 00 90 90
[   64.301871][    C2] RSP: 0018:ffffc9000600f7d8 EFLAGS: 00000293
[   64.301880][    C2] RAX: 0000000026549aee RBX: 0000000000000000 RCX: 0000000000000002
[   64.301885][    C2] RDX: 0000000000000028 RSI: ffffffff815ee359 RDI: ffffffff8e1c5240
[   64.301891][    C2] RBP: 0000000000002d56 R08: 0000000000000001 R09: 0000000000000000
[   64.301897][    C2] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000
[   64.301902][    C2] R13: 1ffffffff3558c0a R14: ffffffff9aac6050 R15: ffff88803a1c5d38
[   64.301911][    C2]  ? read_tsc+0x9/0x20
[   64.301924][    C2]  ? read_tsc+0x9/0x20
[   64.301936][    C2]  ktime_get_with_offset+0x159/0x3b0
[   64.301950][    C2]  ccid3_hc_tx_send_packet+0x63/0x8a0
[   64.301964][    C2]  ? __pfx_ccid3_hc_tx_send_packet+0x10/0x10
[   64.301983][    C2]  dccp_write_xmit+0xaa/0x1d0
[   64.301993][    C2]  dccp_sendmsg+0x9b2/0xd10
[   64.302004][    C2]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[   64.302016][    C2]  ? __pfx_dccp_sendmsg+0x10/0x10
[   64.302027][    C2]  ? __import_iovec+0x1c8/0x660
[   64.302038][    C2]  ? __might_fault+0xe3/0x190
[   64.302048][    C2]  ? __might_fault+0x13b/0x190
[   64.302058][    C2]  ? __pfx_dccp_sendmsg+0x10/0x10
[   64.302069][    C2]  inet_sendmsg+0x119/0x140
[   64.302079][    C2]  ____sys_sendmsg+0x96b/0xc60
[   64.302090][    C2]  ? copy_msghdr_from_user+0x10a/0x160
[   64.302104][    C2]  ? __pfx_____sys_sendmsg+0x10/0x10
[   64.302115][    C2]  ? kfree+0x252/0x4d0
[   64.302130][    C2]  ___sys_sendmsg+0x134/0x1d0
[   64.302143][    C2]  ? __up_read+0x1f8/0x750
[   64.302158][    C2]  ? __pfx____sys_sendmsg+0x10/0x10
[   64.302179][    C2]  ? __pfx___might_resched+0x10/0x10
[   64.302192][    C2]  __sys_sendmmsg+0x200/0x420
[   64.302206][    C2]  ? __pfx___sys_sendmmsg+0x10/0x10
[   64.302226][    C2]  ? __pfx_mem_cgroup_handle_over_high+0x10/0x10
[   64.302238][    C2]  ? __sys_setsockopt+0x1cd/0x230
[   64.302253][    C2]  __x64_sys_sendmmsg+0x9c/0x100
[   64.302266][    C2]  ? lockdep_hardirqs_on+0x7c/0x110
[   64.302279][    C2]  do_syscall_64+0xcd/0x260
[   64.302293][    C2]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.302302][    C2] RIP: 0033:0x7f8e7fe7cd29
[   64.302310][    C2] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   64.302318][    C2] RSP: 002b:00007f8e80c6b0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   64.302327][    C2] RAX: ffffffffffffffda RBX: 00007f8e7ffabf80 RCX: 00007f8e7fe7cd29
[   64.302333][    C2] RDX: 000000000000ffc3 RSI: 0000000020001e80 RDI: 0000000000000006
[   64.302338][    C2] RBP: 00007f8e7fec947a R08: 0000000000000000 R09: 0000000000000000
[   64.302343][    C2] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   64.302349][    C2] R13: 000000000000000b R14: 00007f8e7ffabf80 R15: 00007ffd507f6268
[   64.302358][    C2]  </TASK>
[   64.444079][ T5294] Bluetooth: hci0: command tx timeout
[   64.454276][   T40] kauditd_printk_skb: 13 callbacks suppressed
[   64.454286][   T40] audit: type=1400 audit(1743042108.961:146): avc:  denied  { rename } for  pid=5335 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   64.462962][   T40] audit: type=1400 audit(1743042108.971:147): avc:  denied  { unlink } for  pid=5335 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   64.466340][ T6539] dccp_xmit_packet: Payload too large (65475) for featneg.
[   64.469145][   T40] audit: type=1400 audit(1743042108.971:148): avc:  denied  { create } for  pid=5335 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   64.492063][ T6541] dccp_xmit_packet: Payload too large (65475) for featneg.
[   64.615668][    C1] BUG: stored value of X_recv is zero at net/dccp/ccids/ccid3.c:691/ccid3_first_li()
[   64.618413][    C1] CPU: 1 UID: 0 PID: 6553 Comm: syz-executor.0 Not tainted 6.14.0-syzkaller-g1e1ba8d23dae #0 PREEMPT(full) 
[   64.618427][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.618433][    C1] Call Trace:
[   64.618436][    C1]  <IRQ>
[   64.618441][    C1]  dump_stack_lvl+0x16c/0x1f0
[   64.618458][    C1]  ccid3_first_li+0x2fc/0x500
[   64.618474][    C1]  tfrc_lh_interval_add+0x614/0x8d0
[   64.618489][    C1]  ? __pfx_ccid3_first_li+0x10/0x10
[   64.618505][    C1]  ? __pfx_ccid3_first_li+0x10/0x10
[   64.618518][    C1]  tfrc_rx_handle_loss+0xe74/0x2200
[   64.618536][    C1]  ccid3_hc_rx_packet_recv+0x372/0xf50
[   64.618551][    C1]  ? __pfx_ccid3_hc_rx_packet_recv+0x10/0x10
[   64.618566][    C1]  dccp_deliver_input_to_ccids+0xe3/0x270
[   64.618581][    C1]  dccp_rcv_established+0x10a/0x160
[   64.618596][    C1]  dccp_v4_do_rcv+0x171/0x1b0
[   64.618605][    C1]  ? __pfx_dccp_v4_do_rcv+0x10/0x10
[   64.618614][    C1]  __sk_receive_skb+0x79f/0x890
[   64.618630][    C1]  dccp_v4_rcv+0x1145/0x1d10
[   64.618641][    C1]  ? __pfx_dccp_v4_rcv+0x10/0x10
[   64.618651][    C1]  ip_protocol_deliver_rcu+0x441/0x4c0
[   64.618664][    C1]  ip_local_deliver_finish+0x316/0x570
[   64.618676][    C1]  ip_local_deliver+0x18e/0x1f0
[   64.618686][    C1]  ? __pfx_ip_local_deliver+0x10/0x10
[   64.618697][    C1]  ip_rcv+0x2c3/0x5d0
[   64.618707][    C1]  ? __pfx_ip_rcv+0x10/0x10
[   64.618716][    C1]  __netif_receive_skb_one_core+0x197/0x1e0
[   64.618729][    C1]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   64.618746][    C1]  ? lock_acquire+0x179/0x350
[   64.618761][    C1]  ? process_backlog+0x3f0/0x15e0
[   64.618773][    C1]  __netif_receive_skb+0x1d/0x160
[   64.618785][    C1]  process_backlog+0x442/0x15e0
[   64.618798][    C1]  __napi_poll.constprop.0+0xb7/0x550
[   64.618812][    C1]  net_rx_action+0xa97/0x1010
[   64.618826][    C1]  ? __pfx_net_rx_action+0x10/0x10
[   64.618839][    C1]  ? kvm_sched_clock_read+0x11/0x20
[   64.618851][    C1]  ? sched_clock+0x38/0x60
[   64.618865][    C1]  ? sched_clock_cpu+0x6c/0x530
[   64.618881][    C1]  ? mark_held_locks+0x49/0x80
[   64.618894][    C1]  handle_softirqs+0x216/0x8e0
[   64.618906][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[   64.618917][    C1]  ? __dev_queue_xmit+0x896/0x43e0
[   64.618929][    C1]  do_softirq+0xb2/0xf0
[   64.618939][    C1]  </IRQ>
[   64.618942][    C1]  <TASK>
[   64.618945][    C1]  __local_bh_enable_ip+0x100/0x120
[   64.618955][    C1]  ? __dev_queue_xmit+0x896/0x43e0
[   64.618966][    C1]  __dev_queue_xmit+0x8ab/0x43e0
[   64.618978][    C1]  ? lockdep_hardirqs_on+0x7c/0x110
[   64.618990][    C1]  ? ipt_do_table+0xd48/0x1ac0
[   64.619004][    C1]  ? __local_bh_enable_ip+0xa4/0x120
[   64.619015][    C1]  ? ipt_do_table+0xd78/0x1ac0
[   64.619028][    C1]  ? __pfx___dev_queue_xmit+0x10/0x10
[   64.619043][    C1]  ? __lock_acquire+0xaa4/0x1ba0
[   64.619061][    C1]  ip_finish_output2+0xc3b/0x21a0
[   64.619074][    C1]  ? ip_skb_dst_mtu+0x3f3/0xe90
[   64.619087][    C1]  ? __pfx_ip_finish_output2+0x10/0x10
[   64.619100][    C1]  ? ip_skb_dst_mtu+0x496/0xe90
[   64.619111][    C1]  ? __pfx_ip_skb_dst_mtu+0x10/0x10
[   64.619125][    C1]  __ip_finish_output+0x49e/0x950
[   64.619139][    C1]  ip_finish_output+0x35/0x380
[   64.619153][    C1]  ip_output+0x13b/0x2a0
[   64.619164][    C1]  ? __pfx_ip_output+0x10/0x10
[   64.619177][    C1]  __ip_queue_xmit+0x1d7d/0x26c0
[   64.619191][    C1]  ? dccp_v4_send_check+0x282/0x520
[   64.619201][    C1]  dccp_transmit_skb+0xd59/0x1660
[   64.619212][    C1]  dccp_send_ack.part.0+0x169/0x320
[   64.619221][    C1]  dccp_send_ack+0x58/0x70
[   64.619230][    C1]  ccid3_hc_rx_packet_recv+0x861/0xf50
[   64.619245][    C1]  ? __pfx_ccid3_hc_rx_packet_recv+0x10/0x10
[   64.619259][    C1]  dccp_deliver_input_to_ccids+0xe3/0x270
[   64.619274][    C1]  dccp_rcv_state_process+0x626/0x1570
[   64.619289][    C1]  dccp_v4_do_rcv+0x117/0x1b0
[   64.619299][    C1]  ? __pfx_dccp_v4_do_rcv+0x10/0x10
[   64.619307][    C1]  __release_sock+0x35f/0x400
[   64.619323][    C1]  release_sock+0x5a/0x220
[   64.619336][    C1]  dccp_sendmsg+0x415/0xd10
[   64.619347][    C1]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[   64.619359][    C1]  ? __pfx_dccp_sendmsg+0x10/0x10
[   64.619369][    C1]  ? __import_iovec+0x1c8/0x660
[   64.619380][    C1]  ? __might_fault+0xe3/0x190
[   64.619391][    C1]  ? __might_fault+0x13b/0x190
[   64.619401][    C1]  ? __pfx_dccp_sendmsg+0x10/0x10
[   64.619412][    C1]  inet_sendmsg+0x119/0x140
[   64.619421][    C1]  ____sys_sendmsg+0x96b/0xc60
[   64.619432][    C1]  ? copy_msghdr_from_user+0x10a/0x160
[   64.619446][    C1]  ? __pfx_____sys_sendmsg+0x10/0x10
[   64.619457][    C1]  ? kfree+0x252/0x4d0
[   64.619472][    C1]  ___sys_sendmsg+0x134/0x1d0
[   64.619485][    C1]  ? __up_read+0x1f8/0x750
[   64.619499][    C1]  ? __pfx____sys_sendmsg+0x10/0x10
[   64.619519][    C1]  ? __pfx___might_resched+0x10/0x10
[   64.619532][    C1]  __sys_sendmmsg+0x200/0x420
[   64.619547][    C1]  ? __pfx___sys_sendmmsg+0x10/0x10
[   64.619567][    C1]  ? __pfx_mem_cgroup_handle_over_high+0x10/0x10
[   64.619578][    C1]  ? __sys_setsockopt+0x1cd/0x230
[   64.619592][    C1]  __x64_sys_sendmmsg+0x9c/0x100
[   64.619606][    C1]  ? lockdep_hardirqs_on+0x7c/0x110
[   64.619617][    C1]  do_syscall_64+0xcd/0x260
[   64.619631][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.619641][    C1] RIP: 0033:0x7f8e7fe7cd29
[   64.619649][    C1] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   64.619659][    C1] RSP: 002b:00007f8e80c6b0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   64.619668][    C1] RAX: ffffffffffffffda RBX: 00007f8e7ffabf80 RCX: 00007f8e7fe7cd29
[   64.619674][    C1] RDX: 000000000000ffc3 RSI: 0000000020001e80 RDI: 0000000000000006
[   64.619680][    C1] RBP: 00007f8e7fec947a R08: 0000000000000000 R09: 0000000000000000
[   64.619685][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   64.619691][    C1] R13: 000000000000000b R14: 00007f8e7ffabf80 R15: 00007ffd507f6268
[   64.619700][    C1]  </TASK>
[   66.100751][    C1] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:414/tfrc_rx_hist_sample_rtt()
[   66.105732][    C1] CPU: 1 UID: 0 PID: 6665 Comm: syz-executor.0 Not tainted 6.14.0-syzkaller-g1e1ba8d23dae #0 PREEMPT(full) 
[   66.105746][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   66.105751][    C1] Call Trace:
[   66.105755][    C1]  <IRQ>
[   66.105761][    C1]  dump_stack_lvl+0x16c/0x1f0
[   66.105779][    C1]  tfrc_rx_hist_sample_rtt+0x3e1/0x4a0
[   66.105795][    C1]  ccid3_hc_rx_packet_recv+0x448/0xf50
[   66.105811][    C1]  ? __pfx_ccid3_hc_rx_packet_recv+0x10/0x10
[   66.105826][    C1]  dccp_deliver_input_to_ccids+0xe3/0x270
[   66.105841][    C1]  dccp_rcv_established+0x10a/0x160
[   66.105856][    C1]  dccp_v4_do_rcv+0x171/0x1b0
[   66.105866][    C1]  ? __pfx_dccp_v4_do_rcv+0x10/0x10
[   66.105875][    C1]  __sk_receive_skb+0x79f/0x890
[   66.105891][    C1]  dccp_v4_rcv+0x1145/0x1d10
[   66.105902][    C1]  ? __pfx_dccp_v4_rcv+0x10/0x10
[   66.105911][    C1]  ip_protocol_deliver_rcu+0x441/0x4c0
[   66.105924][    C1]  ip_local_deliver_finish+0x316/0x570
[   66.105936][    C1]  ip_local_deliver+0x18e/0x1f0
[   66.105946][    C1]  ? __pfx_ip_local_deliver+0x10/0x10
[   66.105957][    C1]  ip_rcv+0x2c3/0x5d0
[   66.105967][    C1]  ? __pfx_ip_rcv+0x10/0x10
[   66.105977][    C1]  __netif_receive_skb_one_core+0x197/0x1e0
[   66.105990][    C1]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   66.106003][    C1]  ? lock_acquire+0x179/0x350
[   66.106023][    C1]  ? process_backlog+0x3f0/0x15e0
[   66.106034][    C1]  __netif_receive_skb+0x1d/0x160
[   66.106046][    C1]  process_backlog+0x442/0x15e0
[   66.106059][    C1]  __napi_poll.constprop.0+0xb7/0x550
[   66.106071][    C1]  ? rcu_is_watching+0x12/0xc0
[   66.106082][    C1]  net_rx_action+0xa97/0x1010
[   66.106096][    C1]  ? __pfx_net_rx_action+0x10/0x10
[   66.106110][    C1]  ? rcu_is_watching+0x12/0xc0
[   66.106124][    C1]  handle_softirqs+0x216/0x8e0
[   66.106136][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[   66.106148][    C1]  __irq_exit_rcu+0x109/0x170
[   66.106159][    C1]  irq_exit_rcu+0x9/0x30
[   66.106168][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   66.106181][    C1]  </IRQ>
[   66.106184][    C1]  <TASK>
[   66.106187][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   66.106198][    C1] RIP: 0010:unwind_next_frame+0xdbe/0x1ff0
[   66.106210][    C1] Code: 74 08 3c 03 0f 8e 2e 0e 00 00 41 39 5d 00 0f 85 8f 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b 14 24 48 c1 ea 03 80 3c 02 00 <0f> 85 fa 0d 00 00 49 8d 7d 08 49 8b 5d 38 48 b8 00 00 00 00 00 fc
[   66.106219][    C1] RSP: 0018:ffffc90006da6c58 EFLAGS: 00000246
[   66.106227][    C1] RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffc90006da8000
[   66.106233][    C1] RDX: 1ffff92000db4da0 RSI: ffffc90006da6ee0 RDI: ffffc90006da6d08
[   66.106239][    C1] RBP: ffffea00010c3c00 R08: 0000000000000001 R09: 0000000000000000
[   66.106245][    C1] R10: ffffc90006da6cc8 R11: 0000000000012818 R12: ffffc90006da6d18
[   66.106251][    C1] R13: ffffc90006da6cc8 R14: ffffc90006da6f08 R15: ffffc90006da6cfc
[   66.106261][    C1]  ? unwind_next_frame+0x15b5/0x1ff0
[   66.106271][    C1]  ? save_stack+0x160/0x1f0
[   66.106287][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   66.106299][    C1]  arch_stack_walk+0x94/0x100
[   66.106312][    C1]  ? __set_page_owner+0x8a/0x560
[   66.106327][    C1]  stack_trace_save+0x8e/0xc0
[   66.106337][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[   66.106348][    C1]  ? __lock_acquire+0x5ca/0x1ba0
[   66.106361][    C1]  save_stack+0x160/0x1f0
[   66.106374][    C1]  ? __pfx_save_stack+0x10/0x10
[   66.106390][    C1]  ? __lock_acquire+0x5ca/0x1ba0
[   66.106404][    C1]  __set_page_owner+0x8a/0x560
[   66.106419][    C1]  ? __pfx___set_page_owner+0x10/0x10
[   66.106433][    C1]  ? bad_range+0x23d/0x490
[   66.106446][    C1]  ? lockdep_hardirqs_on+0x7c/0x110
[   66.106458][    C1]  ? get_page_from_freelist+0x10a4/0x34c0
[   66.106469][    C1]  post_alloc_hook+0x181/0x1b0
[   66.106483][    C1]  get_page_from_freelist+0x10c4/0x34c0
[   66.106496][    C1]  ? __pfx_get_page_from_freelist+0x10/0x10
[   66.106505][    C1]  ? should_fail_alloc_page+0xee/0x130
[   66.106516][    C1]  ? prepare_alloc_pages.constprop.0+0x172/0x570
[   66.106530][    C1]  ? __pfx_get_page_from_freelist+0x10/0x10
[   66.106540][    C1]  __alloc_frozen_pages_noprof+0x223/0x24d0
[   66.106550][    C1]  ? find_held_lock+0x2b/0x80
[   66.106560][    C1]  ? is_bpf_text_address+0x8a/0x1a0
[   66.106574][    C1]  ? bpf_ksym_find+0x127/0x1c0
[   66.106583][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   66.106593][    C1]  ? is_bpf_text_address+0x94/0x1a0
[   66.106606][    C1]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   66.106616][    C1]  ? __kernel_text_address+0xd/0x40
[   66.106626][    C1]  ? unwind_get_return_address+0x59/0xa0
[   66.106637][    C1]  ? arch_stack_walk+0xa6/0x100
[   66.106651][    C1]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   66.106666][    C1]  ? policy_nodemask+0xea/0x4e0
[   66.106677][    C1]  alloc_pages_mpol+0x1fb/0x540
[   66.106687][    C1]  ? __pfx_alloc_pages_mpol+0x10/0x10
[   66.106698][    C1]  ? get_freelist+0x1a8/0x1e0
[   66.106709][    C1]  ? find_held_lock+0x2b/0x80
[   66.106719][    C1]  new_slab+0x23c/0x330
[   66.106732][    C1]  ___slab_alloc+0xd9c/0x1940
[   66.106745][    C1]  ? __alloc_skb+0x166/0x380
[   66.106760][    C1]  ? new_slab+0x311/0x330
[   66.106776][    C1]  ? __alloc_skb+0x166/0x380
[   66.106788][    C1]  ? __slab_alloc.constprop.0+0x56/0xb0
[   66.106801][    C1]  __slab_alloc.constprop.0+0x56/0xb0
[   66.106816][    C1]  __kmalloc_node_track_caller_noprof+0x2ee/0x510
[   66.106827][    C1]  ? __alloc_skb+0x166/0x380
[   66.106840][    C1]  kmalloc_reserve+0xef/0x2c0
[   66.106851][    C1]  __alloc_skb+0x166/0x380
[   66.106864][    C1]  ? __pfx___alloc_skb+0x10/0x10
[   66.106880][    C1]  alloc_skb_with_frags+0xe0/0x860
[   66.106891][    C1]  sock_alloc_send_pskb+0x7fb/0x990
[   66.106906][    C1]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[   66.106920][    C1]  ? find_held_lock+0x2b/0x80
[   66.106929][    C1]  ? dccp_sendmsg+0x2da/0xd10
[   66.106939][    C1]  ? rcu_is_watching+0x12/0xc0
[   66.106948][    C1]  ? __local_bh_enable_ip+0xa4/0x120
[   66.106960][    C1]  dccp_sendmsg+0x2f8/0xd10
[   66.106971][    C1]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[   66.106982][    C1]  ? __pfx_dccp_sendmsg+0x10/0x10
[   66.106993][    C1]  ? __import_iovec+0x1c8/0x660
[   66.107009][    C1]  ? __might_fault+0xe3/0x190
[   66.107019][    C1]  ? __might_fault+0x13b/0x190
[   66.107033][    C1]  ? __pfx_dccp_sendmsg+0x10/0x10
[   66.107049][    C1]  inet_sendmsg+0x119/0x140
[   66.107061][    C1]  ____sys_sendmsg+0x96b/0xc60
[   66.107075][    C1]  ? copy_msghdr_from_user+0x10a/0x160
[   66.107096][    C1]  ? __pfx_____sys_sendmsg+0x10/0x10
[   66.107107][    C1]  ? kfree+0x252/0x4d0
[   66.107122][    C1]  ___sys_sendmsg+0x134/0x1d0
[   66.107134][    C1]  ? __up_read+0x1f8/0x750
[   66.107149][    C1]  ? __pfx____sys_sendmsg+0x10/0x10
[   66.107170][    C1]  ? __pfx___might_resched+0x10/0x10
[   66.107182][    C1]  __sys_sendmmsg+0x200/0x420
[   66.107197][    C1]  ? __pfx___sys_sendmmsg+0x10/0x10
[   66.107217][    C1]  ? __pfx_mem_cgroup_handle_over_high+0x10/0x10
[   66.107228][    C1]  ? __sys_setsockopt+0x1cd/0x230
[   66.107242][    C1]  __x64_sys_sendmmsg+0x9c/0x100
[   66.107255][    C1]  ? lockdep_hardirqs_on+0x7c/0x110
[   66.107267][    C1]  do_syscall_64+0xcd/0x260
[   66.107281][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.107290][    C1] RIP: 0033:0x7f8e7fe7cd29
[   66.107297][    C1] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   66.107306][    C1] RSP: 002b:00007f8e80c6b0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   66.107314][    C1] RAX: ffffffffffffffda RBX: 00007f8e7ffabf80 RCX: 00007f8e7fe7cd29
[   66.107320][    C1] RDX: 000000000000ffc3 RSI: 0000000020001e80 RDI: 0000000000000006
[   66.107326][    C1] RBP: 00007f8e7fec947a R08: 0000000000000000 R09: 0000000000000000
[   66.107331][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   66.107337][    C1] R13: 000000000000000b R14: 00007f8e7ffabf80 R15: 00007ffd507f6268
[   66.107346][    C1]  </TASK>
[   66.524107][ T5294] Bluetooth: hci0: command tx timeout
[   66.614561][    C2] Negotiation of local Allow Short Seqnos failed in state CHANGING at net/dccp/feat.c:1538/dccp_feat_activate_values()
[   66.838134][    C0] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:414/tfrc_rx_hist_sample_rtt()
[   66.842989][    C0] CPU: 0 UID: 0 PID: 6711 Comm: syz-executor.0 Not tainted 6.14.0-syzkaller-g1e1ba8d23dae #0 PREEMPT(full) 
[   66.843014][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   66.843025][    C0] Call Trace:
[   66.843033][    C0]  <IRQ>
[   66.843040][    C0]  dump_stack_lvl+0x16c/0x1f0
[   66.843067][    C0]  tfrc_rx_hist_sample_rtt+0x3e1/0x4a0
[   66.843093][    C0]  ccid3_hc_rx_packet_recv+0x448/0xf50
[   66.843121][    C0]  ? __pfx_ccid3_hc_rx_packet_recv+0x10/0x10
[   66.843149][    C0]  dccp_deliver_input_to_ccids+0xe3/0x270
[   66.843176][    C0]  dccp_rcv_established+0x10a/0x160
[   66.843204][    C0]  dccp_v4_do_rcv+0x171/0x1b0
[   66.843222][    C0]  ? __pfx_dccp_v4_do_rcv+0x10/0x10
[   66.843239][    C0]  __sk_receive_skb+0x79f/0x890
[   66.843268][    C0]  dccp_v4_rcv+0x1145/0x1d10
[   66.843291][    C0]  ? __pfx_dccp_v4_rcv+0x10/0x10
[   66.843310][    C0]  ip_protocol_deliver_rcu+0x441/0x4c0
[   66.843334][    C0]  ip_local_deliver_finish+0x316/0x570
[   66.843357][    C0]  ip_local_deliver+0x18e/0x1f0
[   66.843376][    C0]  ? __pfx_ip_local_deliver+0x10/0x10
[   66.843395][    C0]  ip_rcv+0x2c3/0x5d0
[   66.843415][    C0]  ? __pfx_ip_rcv+0x10/0x10
[   66.843433][    C0]  __netif_receive_skb_one_core+0x197/0x1e0
[   66.843456][    C0]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[   66.843480][    C0]  ? lock_acquire+0x179/0x350
[   66.843507][    C0]  ? process_backlog+0x3f0/0x15e0
[   66.843529][    C0]  __netif_receive_skb+0x1d/0x160
[   66.843551][    C0]  process_backlog+0x442/0x15e0
[   66.843576][    C0]  __napi_poll.constprop.0+0xb7/0x550
[   66.843596][    C0]  ? rcu_is_watching+0x12/0xc0
[   66.843612][    C0]  net_rx_action+0xa97/0x1010
[   66.843636][    C0]  ? __pfx_net_rx_action+0x10/0x10
[   66.843664][    C0]  ? rcu_is_watching+0x12/0xc0
[   66.843691][    C0]  handle_softirqs+0x216/0x8e0
[   66.843707][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[   66.843719][    C0]  __irq_exit_rcu+0x109/0x170
[   66.843730][    C0]  irq_exit_rcu+0x9/0x30
[   66.843744][    C0]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   66.843757][    C0]  </IRQ>
[   66.843760][    C0]  <TASK>
[   66.843764][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   66.843775][    C0] RIP: 0010:fs_reclaim_acquire+0xe3/0x150
[   66.843789][    C0] Code: 31 c9 41 b8 01 00 00 00 31 c9 31 d2 e8 f6 3a 87 ff 48 89 de 58 48 c7 c7 20 77 57 8e 5b 5d e9 34 34 87 ff 5b 5d c3 cc cc cc cc <ff> 74 24 10 31 d2 45 31 c9 41 b8 01 00 00 00 31 c9 31 f6 48 c7 c7
[   66.843800][    C0] RSP: 0018:ffffc900038675c8 EFLAGS: 00000202
[   66.843813][    C0] RAX: 0000000000000000 RBX: 0000000000000080 RCX: ffffffff89326cd2
[   66.843824][    C0] RDX: 0000000000000000 RSI: 0000000000000cc0 RDI: ffff888023ed002c
[   66.843834][    C0] RBP: ffff888023ed0000 R08: 0000000000000005 R09: 0000000000000004
[   66.843845][    C0] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888101ed88c0
[   66.843856][    C0] R13: 0000000000000cc0 R14: 00000000ffffffff R15: ffff888101ed88c0
[   66.843872][    C0]  ? __alloc_skb+0x102/0x380
[   66.843897][    C0]  ? ____sys_sendmsg+0x96b/0xc60
[   66.843914][    C0]  kmem_cache_alloc_node_noprof+0x57/0x3b0
[   66.843930][    C0]  ? do_syscall_64+0xcd/0x260
[   66.843962][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.843981][    C0]  ? __alloc_skb+0x2b2/0x380
[   66.844005][    C0]  __alloc_skb+0x2b2/0x380
[   66.844028][    C0]  ? __pfx___alloc_skb+0x10/0x10
[   66.844057][    C0]  alloc_skb_with_frags+0xe0/0x860
[   66.844079][    C0]  sock_alloc_send_pskb+0x7fb/0x990
[   66.844107][    C0]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[   66.844132][    C0]  ? find_held_lock+0x2b/0x80
[   66.844150][    C0]  ? dccp_sendmsg+0x2da/0xd10
[   66.844169][    C0]  ? rcu_is_watching+0x12/0xc0
[   66.844186][    C0]  ? __local_bh_enable_ip+0xa4/0x120
[   66.844208][    C0]  dccp_sendmsg+0x2f8/0xd10
[   66.844228][    C0]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[   66.844248][    C0]  ? __pfx_dccp_sendmsg+0x10/0x10
[   66.844268][    C0]  ? __import_iovec+0x1c8/0x660
[   66.844287][    C0]  ? __might_fault+0xe3/0x190
[   66.844305][    C0]  ? __might_fault+0x13b/0x190
[   66.844324][    C0]  ? __pfx_dccp_sendmsg+0x10/0x10
[   66.844344][    C0]  inet_sendmsg+0x119/0x140
[   66.844362][    C0]  ____sys_sendmsg+0x96b/0xc60
[   66.844382][    C0]  ? copy_msghdr_from_user+0x10a/0x160
[   66.844407][    C0]  ? __pfx_____sys_sendmsg+0x10/0x10
[   66.844428][    C0]  ? kfree+0x252/0x4d0
[   66.844457][    C0]  ___sys_sendmsg+0x134/0x1d0
[   66.844480][    C0]  ? __up_read+0x1f8/0x750
[   66.844506][    C0]  ? __pfx____sys_sendmsg+0x10/0x10
[   66.844547][    C0]  ? __pfx___might_resched+0x10/0x10
[   66.844571][    C0]  __sys_sendmmsg+0x200/0x420
[   66.844596][    C0]  ? __pfx___sys_sendmmsg+0x10/0x10
[   66.844635][    C0]  ? __pfx_mem_cgroup_handle_over_high+0x10/0x10
[   66.844656][    C0]  ? __sys_setsockopt+0x1cd/0x230
[   66.844682][    C0]  __x64_sys_sendmmsg+0x9c/0x100
[   66.844708][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[   66.844730][    C0]  do_syscall_64+0xcd/0x260
[   66.844761][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.844778][    C0] RIP: 0033:0x7f8e7fe7cd29
[   66.844792][    C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   66.844807][    C0] RSP: 002b:00007f8e80c6b0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   66.844825][    C0] RAX: ffffffffffffffda RBX: 00007f8e7ffabf80 RCX: 00007f8e7fe7cd29
[   66.844836][    C0] RDX: 000000000000ffc3 RSI: 0000000020001e80 RDI: 0000000000000006
[   66.844847][    C0] RBP: 00007f8e7fec947a R08: 0000000000000000 R09: 0000000000000000
[   66.844857][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   66.844866][    C0] R13: 000000000000000b R14: 00007f8e7ffabf80 R15: 00007ffd507f6268
[   66.844883][    C0]  </TASK>
[   67.495131][    C3] Negotiation of local Allow Short Seqnos failed in state CHANGING at net/dccp/feat.c:1538/dccp_feat_activate_values()
[   67.706563][    C1] Negotiation of local Allow Short Seqnos failed in state CHANGING at net/dccp/feat.c:1538/dccp_feat_activate_values()
2025/03/27 02:21:52 executed programs: 317
[   68.999798][    C3] Negotiation of local Allow Short Seqnos failed in state CHANGING at net/dccp/feat.c:1538/dccp_feat_activate_values()
[   69.188174][ T6889] net_ratelimit: 158 callbacks suppressed
[   69.188190][ T6889] dccp_xmit_packet: Payload too large (65475) for featneg.