Warning: Permanently added '[localhost]:40278' (ED25519) to the list of known hosts.
2024/01/26 01:36:38 ignoring optional flag "sandboxArg"="0"
2024/01/26 01:36:38 parsed 1 programs
[ 84.788840][ T38] kauditd_printk_skb: 73 callbacks suppressed
[ 84.788856][ T38] audit: type=1400 audit(1706232998.466:208): avc: denied { getattr } for pid=5388 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 84.838592][ T38] audit: type=1400 audit(1706232998.506:209): avc: denied { mounton } for pid=5399 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 84.850053][ T38] audit: type=1400 audit(1706232998.516:210): avc: denied { mount } for pid=5399 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[ 84.863487][ T38] audit: type=1400 audit(1706232998.536:211): avc: denied { read write } for pid=5399 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 84.878466][ T38] audit: type=1400 audit(1706232998.536:212): avc: denied { open } for pid=5399 comm="syz-executor" path="/swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 84.932138][ T38] audit: type=1400 audit(1706232998.606:213): avc: denied { unlink } for pid=5399 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 85.572320][ T38] audit: type=1400 audit(1706232999.246:214): avc: denied { relabelto } for pid=5404 comm="mkswap" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 86.637199][ T5399] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
2024/01/26 01:36:40 executed programs: 0
[ 86.704255][ T5186] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 86.709710][ T5186] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 86.714458][ T5186] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 86.721291][ T5186] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 86.726520][ T5186] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 86.732642][ T5186] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 86.744682][ T38] audit: type=1400 audit(1706233000.416:215): avc: denied { mounton } for pid=5409 comm="syz-executor.0" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[ 86.943036][ T5409] chnl_net:caif_netlink_parms(): no params data found
[ 87.080881][ T5409] bridge0: port 1(bridge_slave_0) entered blocking state
[ 87.084075][ T5409] bridge0: port 1(bridge_slave_0) entered disabled state
[ 87.086867][ T5409] bridge_slave_0: entered allmulticast mode
[ 87.090589][ T5409] bridge_slave_0: entered promiscuous mode
[ 87.096204][ T5409] bridge0: port 2(bridge_slave_1) entered blocking state
[ 87.099852][ T5409] bridge0: port 2(bridge_slave_1) entered disabled state
[ 87.103037][ T5409] bridge_slave_1: entered allmulticast mode
[ 87.106794][ T5409] bridge_slave_1: entered promiscuous mode
[ 87.175202][ T1278] cfg80211: failed to load regulatory.db
[ 87.193094][ T5409] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 87.201836][ T5409] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 87.265319][ T5409] team0: Port device team_slave_0 added
[ 87.271558][ T5409] team0: Port device team_slave_1 added
[ 87.330959][ T5409] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 87.333998][ T5409] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 87.344775][ T5409] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 87.345817][ T38] audit: type=1400 audit(1706233001.026:216): avc: denied { search } for pid=4647 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 87.350689][ T5409] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 87.362970][ T5409] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 87.373561][ T5409] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 87.457501][ T5409] hsr_slave_0: entered promiscuous mode
[ 87.460256][ T5409] hsr_slave_1: entered promiscuous mode
[ 88.145243][ T5409] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 88.153748][ T5409] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 88.166180][ T5409] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 88.173422][ T5409] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 88.255886][ T5409] 8021q: adding VLAN 0 to HW filter on device bond0
[ 88.280949][ T5409] 8021q: adding VLAN 0 to HW filter on device team0
[ 88.290602][ T1278] bridge0: port 1(bridge_slave_0) entered blocking state
[ 88.294009][ T1278] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 88.312803][ T10] bridge0: port 2(bridge_slave_1) entered blocking state
[ 88.316446][ T10] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 88.407565][ T38] audit: type=1400 audit(1706233002.076:217): avc: denied { sys_module } for pid=5409 comm="syz-executor.0" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[ 88.504920][ T5409] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 88.554179][ T5409] veth0_vlan: entered promiscuous mode
[ 88.562491][ T5409] veth1_vlan: entered promiscuous mode
[ 88.592362][ T5409] veth0_macvtap: entered promiscuous mode
[ 88.599879][ T5409] veth1_macvtap: entered promiscuous mode
[ 88.615166][ T5409] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 88.630036][ T5409] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 88.639603][ T5409] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 88.643338][ T5409] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 88.647904][ T5409] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 88.652918][ T5409] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 88.720070][ T825] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 88.723869][ T825] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 88.744094][ T89] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 88.747980][ T89] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 88.769588][ T63] Bluetooth: hci0: command 0x0409 tx timeout
[ 88.813159][ T5460] netlink: 244 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 88.835280][ T5460] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 88.910231][ T5465] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 88.979001][ C1] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:414/tfrc_rx_hist_sample_rtt()
[ 88.985804][ C1] CPU: 1 PID: 5469 Comm: syz-executor.0 Not tainted 6.8.0-rc1-syzkaller-gecb1b8288dc7 #0
[ 88.992017][ C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[ 88.996416][ C1] Call Trace:
[ 88.997941][ C1]
[ 88.999247][ C1] dump_stack_lvl+0x125/0x1b0
[ 89.001333][ C1] tfrc_rx_hist_sample_rtt+0x3dd/0x4a0
[ 89.003764][ C1] ccid3_hc_rx_packet_recv+0x443/0xf50
[ 89.006208][ C1] ? ccid3_hc_tx_packet_recv+0xc70/0xc70
[ 89.009042][ C1] dccp_deliver_input_to_ccids+0xe3/0x260
[ 89.012091][ C1] dccp_rcv_established+0x106/0x160
[ 89.014332][ C1] dccp_v4_do_rcv+0x169/0x1b0
[ 89.016228][ C1] __sk_receive_skb+0x2af/0x840
[ 89.018199][ C1] dccp_v4_rcv+0x1281/0x1980
[ 89.020095][ C1] ip_protocol_deliver_rcu+0x9f/0x480
[ 89.022339][ C1] ip_local_deliver_finish+0x2e4/0x510
[ 89.025220][ C1] ip_local_deliver+0x18e/0x1f0
[ 89.027638][ C1] ip_rcv_finish+0x1b8/0x2e0
[ 89.029792][ C1] ? ip_local_deliver+0x1f0/0x1f0
[ 89.031793][ C1] ip_rcv+0xaf/0xd0
[ 89.033490][ C1] __netif_receive_skb_one_core+0x115/0x180
[ 89.036117][ C1] ? __netif_receive_skb_list_core+0x8a0/0x8a0
[ 89.038783][ C1] ? do_raw_spin_lock+0x12e/0x2b0
[ 89.041111][ C1] ? spin_bug+0x1d0/0x1d0
[ 89.043230][ C1] __netif_receive_skb+0x1f/0x1b0
[ 89.045862][ C1] process_backlog+0x101/0x6b0
[ 89.048500][ C1] __napi_poll.constprop.0+0xb4/0x540
[ 89.050952][ C1] net_rx_action+0x956/0xe90
[ 89.052739][ C1] ? __napi_poll.constprop.0+0x540/0x540
[ 89.054976][ C1] __do_softirq+0x21a/0x8de
[ 89.056711][ C1] ? __lock_text_end+0x3/0x3
[ 89.058563][ C1] irq_exit_rcu+0xb7/0x120
[ 89.060637][ C1] sysvec_apic_timer_interrupt+0x95/0xb0
[ 89.063078][ C1]
[ 89.064365][ C1]
[ 89.065601][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 89.068966][ C1] RIP: 0010:unwind_next_frame+0x121c/0x2390
[ 89.072285][ C1] Code: 79 11 00 00 4c 8b 6b 10 4c 39 ed 73 36 e8 5c b5 4c 00 4c 8d 75 08 4d 39 f4 73 28 e8 4e b5 4c 00 4d 39 f5 72 1e e8 44 b5 4c 00 <4c> 8b 7c 24 18 48 89 ee 4c 89 ff e8 44 b0 4c 00 49 39 ef 0f 83 50
[ 89.080438][ C1] RSP: 0018:ffffc900039d7168 EFLAGS: 00000293
[ 89.082944][ C1] RAX: 0000000000000000 RBX: ffffc900039d71e8 RCX: ffffffff813a568b
[ 89.086097][ C1] RDX: ffff88802121a400 RSI: ffffffff813a572c RDI: ffffc900039d71f8
[ 89.089234][ C1] RBP: ffffc900039d79d0 R08: 0000000000000004 R09: 0000000000000001
[ 89.092913][ C1] R10: 0000000000000001 R11: 0000000000000800 R12: ffffc900039d0000
[ 89.096573][ C1] R13: ffffc900039d8000 R14: ffffc900039d79d8 R15: 0000000000000001
[ 89.099819][ C1] ? unwind_next_frame+0x117b/0x2390
[ 89.101944][ C1] ? unwind_next_frame+0x121c/0x2390
[ 89.103936][ C1] ? unwind_next_frame+0x121c/0x2390
[ 89.105868][ C1] ? inet_sendmsg+0x9d/0xe0
[ 89.107817][ C1] ? write_profile+0x450/0x450
[ 89.109765][ C1] arch_stack_walk+0xfa/0x170
[ 89.112017][ C1] ? __sock_sendmsg+0xd5/0x180
[ 89.114584][ C1] stack_trace_save+0x96/0xd0
[ 89.117354][ C1] ? filter_irq_stacks+0x90/0x90
[ 89.119793][ C1] ? _raw_read_unlock_irqrestore+0x4e/0x70
[ 89.122553][ C1] ? lockdep_hardirqs_on+0x7d/0x110
[ 89.125022][ C1] kasan_save_stack+0x33/0x50
[ 89.127265][ C1] ? kasan_save_stack+0x33/0x50
[ 89.129575][ C1] ? kasan_save_track+0x14/0x30
[ 89.131861][ C1] ? __kasan_kmalloc+0xa2/0xb0
[ 89.134152][ C1] ? __kmalloc_node_track_caller+0x219/0x460
[ 89.137036][ C1] ? kmalloc_reserve+0xef/0x260
[ 89.139305][ C1] ? __alloc_skb+0x12b/0x330
[ 89.141779][ C1] ? alloc_skb_with_frags+0xe4/0x710
[ 89.144160][ C1] ? sock_alloc_send_pskb+0x7e4/0x970
[ 89.146334][ C1] ? dccp_sendmsg+0x2f4/0xcc0
[ 89.148743][ C1] ? inet_sendmsg+0x9d/0xe0
[ 89.150785][ C1] kasan_save_track+0x14/0x30
[ 89.152937][ C1] __kasan_kmalloc+0xa2/0xb0
[ 89.154830][ C1] __kmalloc_node_track_caller+0x219/0x460
[ 89.157476][ C1] ? __alloc_skb+0x12b/0x330
[ 89.159767][ C1] kmalloc_reserve+0xef/0x260
[ 89.162068][ C1] __alloc_skb+0x12b/0x330
[ 89.164351][ C1] ? __napi_build_skb+0x50/0x50
[ 89.166966][ C1] ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 89.169728][ C1] alloc_skb_with_frags+0xe4/0x710
[ 89.171797][ C1] ? release_sock+0x21/0x1f0
[ 89.173384][ C1] sock_alloc_send_pskb+0x7e4/0x970
[ 89.175082][ C1] ? find_held_lock+0x59/0x110
[ 89.176879][ C1] ? sock_wmalloc+0x120/0x120
[ 89.178404][ C1] ? reacquire_held_locks+0x4c0/0x4c0
[ 89.180876][ C1] ? spin_bug+0x1d0/0x1d0
[ 89.183043][ C1] ? __local_bh_enable_ip+0xa4/0x120
[ 89.185750][ C1] dccp_sendmsg+0x2f4/0xcc0
[ 89.187927][ C1] ? tomoyo_socket_bind_permission+0x340/0x340
[ 89.190472][ C1] ? trace_event_raw_event_dccp_probe+0xeb0/0xeb0
[ 89.193155][ C1] inet_sendmsg+0x9d/0xe0
[ 89.194947][ C1] ? inet_send_prepare+0x530/0x530
[ 89.197020][ C1] __sock_sendmsg+0xd5/0x180
[ 89.198932][ C1] ____sys_sendmsg+0x2ac/0x940
[ 89.200963][ C1] ? copy_msghdr_from_user+0x10b/0x160
[ 89.203212][ C1] ? kernel_sendmsg+0x50/0x50
[ 89.205415][ C1] ? __lock_acquire+0x1502/0x3b30
[ 89.207867][ C1] ___sys_sendmsg+0x135/0x1d0
[ 89.210180][ C1] ? do_recvmmsg+0x740/0x740
[ 89.212349][ C1] ? down_write_nested+0x50/0x50
[ 89.214648][ C1] ? preempt_count_sub+0x160/0x160
[ 89.216760][ C1] ? __might_fault+0xe6/0x1a0
[ 89.218864][ C1] __sys_sendmmsg+0x1a1/0x450
[ 89.221086][ C1] ? __ia32_sys_sendmsg+0xb0/0xb0
[ 89.223175][ C1] ? reacquire_held_locks+0x4c0/0x4c0
[ 89.225455][ C1] ? kernel_fpu_begin_mask+0x270/0x270
[ 89.227852][ C1] ? folio_memcg_unlock+0x240/0x240
[ 89.230223][ C1] __x64_sys_sendmmsg+0x9c/0x100
[ 89.233337][ C1] ? lockdep_hardirqs_on+0x7d/0x110
[ 89.236007][ C1] do_syscall_64+0xd3/0x250
[ 89.237888][ C1] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 89.240773][ C1] RIP: 0033:0x7fa69f87cd29
[ 89.243086][ C1] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 89.252075][ C1] RSP: 002b:00007fa6a05cc0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 89.255686][ C1] RAX: ffffffffffffffda RBX: 00007fa69f9abf80 RCX: 00007fa69f87cd29
[ 89.259031][ C1] RDX: 000000000000ffc3 RSI: 0000000020001e80 RDI: 0000000000000006
[ 89.262559][ C1] RBP: 00007fa69f8c947a R08: 0000000000000000 R09: 0000000000000000
[ 89.265820][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 89.269233][ C1] R13: 000000000000000b R14: 00007fa69f9abf80 R15: 00007ffdb43ae078
[ 89.272664][ C1]
[ 89.343169][ T5481] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 89.411675][ T5485] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 89.520720][ T5491] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 89.581367][ T5496] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 89.634638][ T5500] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 89.697150][ T5503] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 89.763774][ T5508] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 89.818862][ T5511] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 90.849204][ T63] Bluetooth: hci0: command 0x041b tx timeout
[ 91.342260][ C2] Negotiation of local Allow Short Seqnos failed in state CHANGING at net/dccp/feat.c:1534/dccp_feat_activate_values()
2024/01/26 01:36:45 executed programs: 46
[ 92.676608][ C3] Negotiation of local Allow Short Seqnos failed in state CHANGING at net/dccp/feat.c:1534/dccp_feat_activate_values()
[ 92.929295][ T63] Bluetooth: hci0: command 0x040f tx timeout
[ 93.846511][ T5737] net_ratelimit: 69 callbacks suppressed
[ 93.846521][ T5737] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 93.943125][ T5741] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 94.001071][ T5743] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 94.046914][ T5745] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 94.100404][ T5747] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 94.147927][ T5749] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 94.250787][ T5753] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 94.304661][ T5755] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 94.353674][ T5757] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 94.459230][ T5761] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 95.008444][ T63] Bluetooth: hci0: command 0x0419 tx timeout
[ 95.319009][ C3] Negotiation of local Allow Short Seqnos failed in state CHANGING at net/dccp/feat.c:1534/dccp_feat_activate_values()
[ 95.989309][ C1] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:414/tfrc_rx_hist_sample_rtt()
[ 95.995791][ C1] CPU: 1 PID: 5827 Comm: syz-executor.0 Not tainted 6.8.0-rc1-syzkaller-gecb1b8288dc7 #0
[ 96.000204][ C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[ 96.005459][ C1] Call Trace:
[ 96.007086][ C1]
[ 96.008438][ C1] dump_stack_lvl+0x125/0x1b0
[ 96.010612][ C1] tfrc_rx_hist_sample_rtt+0x3dd/0x4a0
[ 96.013102][ C1] ccid3_hc_rx_packet_recv+0x443/0xf50
[ 96.015247][ C1] ? ccid3_hc_tx_packet_recv+0xc70/0xc70
[ 96.017264][ C1] dccp_deliver_input_to_ccids+0xe3/0x260
[ 96.019566][ C1] dccp_rcv_established+0x106/0x160
[ 96.021945][ C1] dccp_v4_do_rcv+0x169/0x1b0
[ 96.023848][ C1] __sk_receive_skb+0x2af/0x840
[ 96.025647][ C1] dccp_v4_rcv+0x1281/0x1980
[ 96.027481][ C1] ip_protocol_deliver_rcu+0x9f/0x480
[ 96.029600][ C1] ip_local_deliver_finish+0x2e4/0x510
[ 96.031631][ C1] ip_local_deliver+0x18e/0x1f0
[ 96.033494][ C1] ip_rcv_finish+0x1b8/0x2e0
[ 96.035337][ C1] ? ip_local_deliver+0x1f0/0x1f0
[ 96.037602][ C1] ip_rcv+0xaf/0xd0
[ 96.039409][ C1] __netif_receive_skb_one_core+0x115/0x180
[ 96.042016][ C1] ? __netif_receive_skb_list_core+0x8a0/0x8a0
[ 96.044890][ C1] ? do_raw_spin_lock+0x12e/0x2b0
[ 96.047353][ C1] ? spin_bug+0x1d0/0x1d0
[ 96.049506][ C1] __netif_receive_skb+0x1f/0x1b0
[ 96.052006][ C1] process_backlog+0x101/0x6b0
[ 96.054216][ C1] __napi_poll.constprop.0+0xb4/0x540
[ 96.056753][ C1] net_rx_action+0x956/0xe90
[ 96.058920][ C1] ? __napi_poll.constprop.0+0x540/0x540
[ 96.061583][ C1] __do_softirq+0x21a/0x8de
[ 96.063673][ C1] ? __lock_text_end+0x3/0x3
[ 96.065805][ C1] irq_exit_rcu+0xb7/0x120
[ 96.067767][ C1] sysvec_apic_timer_interrupt+0x95/0xb0
[ 96.070003][ C1]
[ 96.071404][ C1]
[ 96.072777][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 96.075699][ C1] RIP: 0010:write_comp_data+0x0/0x80
[ 96.078219][ C1] Code: 65 8b 15 cb bb 7c 7e 81 e2 00 01 ff 00 75 10 65 48 8b 04 25 40 c2 03 00 48 8b 80 f0 15 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 <49> 89 d2 49 89 f8 49 89 f1 65 48 8b 14 25 40 c2 03 00 65 8b 05 8f
[ 96.087889][ C1] RSP: 0018:ffffc90003aaf160 EFLAGS: 00000246
[ 96.090890][ C1] RAX: 0000000000000000 RBX: ffffc90003aaf1e8 RCX: ffffffff813a568b
[ 96.094424][ C1] RDX: 0000000000000001 RSI: 0000000000000001 RDI: 0000000000000004
[ 96.097739][ C1] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000004
[ 96.101644][ C1] R10: 0000000000000000 R11: 0000000000000800 R12: 0000000000000001
[ 96.105578][ C1] R13: ffffc90003aaff28 R14: 0000000000000000 R15: 0000000000000001
[ 96.109418][ C1] ? unwind_next_frame+0x117b/0x2390
[ 96.111873][ C1] unwind_next_frame+0x117b/0x2390
[ 96.114240][ C1] ? __x64_sys_sendmmsg+0x9c/0x100
[ 96.116259][ C1] ? write_profile+0x450/0x450
[ 96.117864][ C1] arch_stack_walk+0xfa/0x170
[ 96.119789][ C1] ? do_syscall_64+0xd3/0x250
[ 96.121976][ C1] stack_trace_save+0x96/0xd0
[ 96.124633][ C1] ? filter_irq_stacks+0x90/0x90
[ 96.126963][ C1] ? _raw_read_unlock_irqrestore+0x4e/0x70
[ 96.129531][ C1] ? lockdep_hardirqs_on+0x7d/0x110
[ 96.131934][ C1] kasan_save_stack+0x33/0x50
[ 96.133932][ C1] ? kasan_save_stack+0x33/0x50
[ 96.135910][ C1] ? kasan_save_track+0x14/0x30
[ 96.137785][ C1] ? __kasan_kmalloc+0xa2/0xb0
[ 96.139678][ C1] ? __kmalloc_node_track_caller+0x219/0x460
[ 96.141999][ C1] ? kmalloc_reserve+0xef/0x260
[ 96.144010][ C1] ? __alloc_skb+0x12b/0x330
[ 96.145901][ C1] ? alloc_skb_with_frags+0xe4/0x710
[ 96.148162][ C1] ? sock_alloc_send_pskb+0x7e4/0x970
[ 96.150719][ C1] ? dccp_sendmsg+0x2f4/0xcc0
[ 96.152717][ C1] ? inet_sendmsg+0x9d/0xe0
[ 96.154593][ C1] ? __sock_sendmsg+0xd5/0x180
[ 96.156512][ C1] ? ____sys_sendmsg+0x2ac/0x940
[ 96.158507][ C1] ? ___sys_sendmsg+0x135/0x1d0
[ 96.160468][ C1] ? __sys_sendmmsg+0x1a1/0x450
[ 96.162426][ C1] ? __x64_sys_sendmmsg+0x9c/0x100
[ 96.164613][ C1] kasan_save_track+0x14/0x30
[ 96.166702][ C1] __kasan_kmalloc+0xa2/0xb0
[ 96.168777][ C1] __kmalloc_node_track_caller+0x219/0x460
[ 96.171134][ C1] ? __alloc_skb+0x12b/0x330
[ 96.173017][ C1] kmalloc_reserve+0xef/0x260
[ 96.174919][ C1] __alloc_skb+0x12b/0x330
[ 96.176721][ C1] ? __napi_build_skb+0x50/0x50
[ 96.178700][ C1] ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 96.181364][ C1] alloc_skb_with_frags+0xe4/0x710
[ 96.183762][ C1] ? release_sock+0x21/0x1f0
[ 96.185649][ C1] sock_alloc_send_pskb+0x7e4/0x970
[ 96.187700][ C1] ? find_held_lock+0x59/0x110
[ 96.189624][ C1] ? sock_wmalloc+0x120/0x120
[ 96.191409][ C1] ? reacquire_held_locks+0x4c0/0x4c0
[ 96.193329][ C1] ? spin_bug+0x1d0/0x1d0
[ 96.195039][ C1] ? __local_bh_enable_ip+0xa4/0x120
[ 96.196920][ C1] dccp_sendmsg+0x2f4/0xcc0
[ 96.198615][ C1] ? tomoyo_socket_bind_permission+0x340/0x340
[ 96.201193][ C1] ? trace_event_raw_event_dccp_probe+0xeb0/0xeb0
[ 96.203799][ C1] inet_sendmsg+0x9d/0xe0
[ 96.205556][ C1] ? inet_send_prepare+0x530/0x530
[ 96.207435][ C1] __sock_sendmsg+0xd5/0x180
[ 96.209091][ C1] ____sys_sendmsg+0x2ac/0x940
[ 96.210893][ C1] ? copy_msghdr_from_user+0x10b/0x160
[ 96.213279][ C1] ? kernel_sendmsg+0x50/0x50
[ 96.215466][ C1] ? __lock_acquire+0x1502/0x3b30
[ 96.217688][ C1] ___sys_sendmsg+0x135/0x1d0
[ 96.219646][ C1] ? do_recvmmsg+0x740/0x740
[ 96.221402][ C1] ? find_held_lock+0x2d/0x110
[ 96.223149][ C1] ? preempt_count_sub+0x160/0x160
[ 96.224975][ C1] ? __might_fault+0xe6/0x1a0
[ 96.226684][ C1] __sys_sendmmsg+0x1a1/0x450
[ 96.228535][ C1] ? __ia32_sys_sendmsg+0xb0/0xb0
[ 96.230388][ C1] ? reacquire_held_locks+0x4c0/0x4c0
[ 96.232814][ C1] ? kernel_fpu_begin_mask+0x270/0x270
[ 96.235473][ C1] ? folio_memcg_unlock+0x240/0x240
[ 96.237787][ C1] __x64_sys_sendmmsg+0x9c/0x100
[ 96.239818][ C1] ? lockdep_hardirqs_on+0x7d/0x110
[ 96.241987][ C1] do_syscall_64+0xd3/0x250
[ 96.243946][ C1] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 96.246371][ C1] RIP: 0033:0x7fa69f87cd29
[ 96.248209][ C1] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 96.255325][ C1] RSP: 002b:00007fa6a05cc0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 96.258304][ C1] RAX: ffffffffffffffda RBX: 00007fa69f9abf80 RCX: 00007fa69f87cd29
[ 96.261615][ C1] RDX: 000000000000ffc3 RSI: 0000000020001e80 RDI: 0000000000000006
[ 96.264789][ C1] RBP: 00007fa69f8c947a R08: 0000000000000000 R09: 0000000000000000
[ 96.267966][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 96.270997][ C1] R13: 000000000000000b R14: 00007fa69f9abf80 R15: 00007ffdb43ae078
[ 96.274229][ C1]
2024/01/26 01:36:50 executed programs: 145
[ 97.468132][ C2] Negotiation of local Allow Short Seqnos failed in state CHANGING at net/dccp/feat.c:1534/dccp_feat_activate_values()
[ 98.244499][ C2] BUG: stored value of X_recv is zero at net/dccp/ccids/ccid3.c:691/ccid3_first_li()
[ 98.248683][ C2] CPU: 2 PID: 5912 Comm: syz-executor.0 Not tainted 6.8.0-rc1-syzkaller-gecb1b8288dc7 #0
[ 98.253008][ C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[ 98.257816][ C2] Call Trace:
[ 98.259521][ C2]
[ 98.260935][ C2] dump_stack_lvl+0x125/0x1b0
[ 98.263161][ C2] ccid3_first_li+0x2f8/0x500
[ 98.265362][ C2] tfrc_lh_interval_add+0x610/0x8e0
[ 98.267836][ C2] ? ccid3_hc_tx_parse_options+0x2f0/0x2f0
[ 98.270511][ C2] ? ccid3_hc_tx_parse_options+0x2f0/0x2f0
[ 98.273087][ C2] tfrc_rx_handle_loss+0xe04/0x20a0
[ 98.275205][ C2] ccid3_hc_rx_packet_recv+0x372/0xf50
[ 98.277538][ C2] ? ccid3_hc_tx_packet_recv+0xc70/0xc70
[ 98.280574][ C2] dccp_deliver_input_to_ccids+0xe3/0x260
[ 98.283444][ C2] dccp_rcv_established+0x106/0x160
[ 98.285833][ C2] dccp_v4_do_rcv+0x169/0x1b0
[ 98.288043][ C2] __sk_receive_skb+0x2af/0x840
[ 98.290262][ C2] dccp_v4_rcv+0x1281/0x1980
[ 98.292395][ C2] ip_protocol_deliver_rcu+0x9f/0x480
[ 98.294830][ C2] ip_local_deliver_finish+0x2e4/0x510
[ 98.297130][ C2] ip_local_deliver+0x18e/0x1f0
[ 98.299127][ C2] ip_rcv_finish+0x1b8/0x2e0
[ 98.301405][ C2] ? ip_local_deliver+0x1f0/0x1f0
[ 98.303602][ C2] ip_rcv+0xaf/0xd0
[ 98.305263][ C2] __netif_receive_skb_one_core+0x115/0x180
[ 98.307766][ C2] ? __netif_receive_skb_list_core+0x8a0/0x8a0
[ 98.310472][ C2] ? mark_held_locks+0x9f/0xe0
[ 98.312616][ C2] __netif_receive_skb+0x1f/0x1b0
[ 98.314859][ C2] process_backlog+0x101/0x6b0
[ 98.316926][ C2] __napi_poll.constprop.0+0xb4/0x540
[ 98.319100][ C2] net_rx_action+0x956/0xe90
[ 98.320778][ C2] ? __napi_poll.constprop.0+0x540/0x540
[ 98.323082][ C2] ? asym_cpu_capacity_scan+0x650/0x650
[ 98.325549][ C2] ? mark_held_locks+0x9f/0xe0
[ 98.327852][ C2] __do_softirq+0x21a/0x8de
[ 98.329974][ C2] ? __lock_text_end+0x3/0x3
[ 98.332119][ C2] ? __dev_queue_xmit+0x85c/0x3ed0
[ 98.334568][ C2] do_softirq+0xaa/0xe0
[ 98.336591][ C2]
[ 98.337986][ C2]
[ 98.339339][ C2] __local_bh_enable_ip+0xfc/0x120
[ 98.341719][ C2] ? __dev_queue_xmit+0x85c/0x3ed0
[ 98.343868][ C2] __dev_queue_xmit+0x871/0x3ed0
[ 98.345967][ C2] ? lockdep_hardirqs_on_prepare+0x420/0x420
[ 98.348742][ C2] ? selinux_ip_postroute+0x6fb/0xda0
[ 98.351259][ C2] ? print_usage_bug.part.0+0x550/0x550
[ 98.353884][ C2] ? selinux_ip_postroute_compat+0x4a0/0x4a0
[ 98.356681][ C2] ? netdev_core_pick_tx+0x370/0x370
[ 98.359090][ C2] ? find_held_lock+0x2d/0x110
[ 98.361313][ C2] ? __ip_finish_output+0x38b/0x650
[ 98.363909][ C2] ? reacquire_held_locks+0x4c0/0x4c0
[ 98.366495][ C2] ? mark_held_locks+0x9f/0xe0
[ 98.368783][ C2] ip_finish_output2+0x1698/0x2540
[ 98.371431][ C2] ? ip_fragment.constprop.0+0x230/0x230
[ 98.374163][ C2] ? ip_skb_dst_mtu+0x3fc/0xc60
[ 98.376541][ C2] ? ip_frag_next+0xa40/0xa40
[ 98.378756][ C2] __ip_finish_output+0x38b/0x650
[ 98.380837][ C2] ip_finish_output+0x31/0x310
[ 98.382771][ C2] ip_output+0x13b/0x2a0
[ 98.384309][ C2] __ip_queue_xmit+0x7cb/0x1a50
[ 98.386172][ C2] dccp_transmit_skb+0xd21/0x1610
[ 98.388200][ C2] dccp_send_sync+0x1c2/0x270
[ 98.390145][ C2] __dccp_rcv_established.constprop.0+0x189/0x410
[ 98.392634][ C2] dccp_rcv_established+0x111/0x160
[ 98.394656][ C2] dccp_v4_do_rcv+0x169/0x1b0
[ 98.396416][ C2] __release_sock+0x132/0x3b0
[ 98.398429][ C2] ? kfree_skb_reason+0x13a/0x210
[ 98.400576][ C2] release_sock+0x5a/0x1f0
[ 98.402377][ C2] dccp_sendmsg+0x40f/0xcc0
[ 98.404448][ C2] ? trace_event_raw_event_dccp_probe+0xeb0/0xeb0
[ 98.407277][ C2] inet_sendmsg+0x9d/0xe0
[ 98.409300][ C2] ? inet_send_prepare+0x530/0x530
[ 98.411620][ C2] __sock_sendmsg+0xd5/0x180
[ 98.413655][ C2] ____sys_sendmsg+0x2ac/0x940
[ 98.415629][ C2] ? copy_msghdr_from_user+0x10b/0x160
[ 98.418113][ C2] ? kernel_sendmsg+0x50/0x50
[ 98.420312][ C2] ? __lock_acquire+0x1502/0x3b30
[ 98.422671][ C2] ___sys_sendmsg+0x135/0x1d0
[ 98.424872][ C2] ? do_recvmmsg+0x740/0x740
[ 98.426966][ C2] ? down_write_nested+0x50/0x50
[ 98.428990][ C2] ? preempt_count_sub+0x160/0x160
[ 98.431141][ C2] ? __might_fault+0xe6/0x1a0
[ 98.433359][ C2] __sys_sendmmsg+0x1a1/0x450
[ 98.435631][ C2] ? __ia32_sys_sendmsg+0xb0/0xb0
[ 98.437907][ C2] ? reacquire_held_locks+0x4c0/0x4c0
[ 98.440262][ C2] ? folio_memcg_unlock+0x240/0x240
[ 98.442616][ C2] __x64_sys_sendmmsg+0x9c/0x100
[ 98.444923][ C2] ? lockdep_hardirqs_on+0x7d/0x110
[ 98.447349][ C2] do_syscall_64+0xd3/0x250
[ 98.449675][ C2] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 98.452684][ C2] RIP: 0033:0x7fa69f87cd29
[ 98.454654][ C2] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 98.462229][ C2] RSP: 002b:00007fa6a05cc0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 98.465437][ C2] RAX: ffffffffffffffda RBX: 00007fa69f9abf80 RCX: 00007fa69f87cd29
[ 98.468699][ C2] RDX: 000000000000ffc3 RSI: 0000000020001e80 RDI: 0000000000000006
[ 98.472332][ C2] RBP: 00007fa69f8c947a R08: 0000000000000000 R09: 0000000000000000
[ 98.475785][ C2] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 98.479339][ C2] R13: 000000000000000b R14: 00007fa69f9abf80 R15: 00007ffdb43ae078
[ 98.482709][ C2]
[ 98.873572][ T5929] net_ratelimit: 70 callbacks suppressed
[ 98.873589][ T5929] dccp_xmit_packet: Payload too large (65475) for featneg.
[ 98.920711][ T5932] dccp_xmit_packet: Payload too large (65475) for featneg.