[   51.878973][   T26] audit: type=1800 audit(1573141200.704:26): pid=7891 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2490 res=0
[   51.900131][   T26] audit: type=1800 audit(1573141200.704:27): pid=7891 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2469 res=0
[   51.973250][   T26] audit: type=1800 audit(1573141200.814:28): pid=7891 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2450 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   52.861829][   T26] audit: type=1800 audit(1573141201.704:29): pid=7891 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2465 res=0

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.10.23' (ECDSA) to the list of known hosts.
2019/11/07 15:40:11 fuzzer started
2019/11/07 15:40:13 dialing manager at 10.128.0.105:38105
2019/11/07 15:40:13 syscalls: 2553
2019/11/07 15:40:13 code coverage: enabled
2019/11/07 15:40:13 comparison tracing: enabled
2019/11/07 15:40:13 extra coverage: extra coverage is not supported by the kernel
2019/11/07 15:40:13 setuid sandbox: enabled
2019/11/07 15:40:13 namespace sandbox: enabled
2019/11/07 15:40:13 Android sandbox: /sys/fs/selinux/policy does not exist
2019/11/07 15:40:13 fault injection: enabled
2019/11/07 15:40:13 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2019/11/07 15:40:13 net packet injection: enabled
2019/11/07 15:40:13 net device setup: enabled
2019/11/07 15:40:13 concurrency sanitizer: enabled
2019/11/07 15:40:13 devlink PCI setup: PCI device 0000:00:10.0 is not available
syzkaller login: [   66.487934][ T8060] KCSAN: could not find function: 'poll_schedule_timeout'
2019/11/07 15:40:15 adding functions to KCSAN blacklist: 'ext4_free_inode' 'run_timer_softirq' 'find_next_bit' 'pipe_poll' 'common_perm_cond' 'tomoyo_supervisor' 'generic_permission' 'ktime_get_real_seconds' 'generic_fillattr' 'poll_schedule_timeout' '__hrtimer_run_queues' 'tcp_add_backlog' 'taskstats_exit' 
15:40:22 executing program 0:
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0x10000, 0x0, 0x3ff}, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23}, 0x1c)
listen(r0, 0x5eb857)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000000340)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000000180), 0x40001d0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000040)=ANY=[], 0x65c15bf2)
socket(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c)
sendmmsg(r2, &(0x7f0000000c00), 0x4000000000001e6, 0x0)

15:40:23 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[   74.287531][ T8063] IPVS: ftp: loaded support on port[0] = 21
[   74.391833][ T8063] chnl_net:caif_netlink_parms(): no params data found
[   74.449590][ T8063] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.456828][ T8063] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.465326][ T8063] device bridge_slave_0 entered promiscuous mode
[   74.474276][ T8063] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.482491][ T8063] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.490915][ T8063] device bridge_slave_1 entered promiscuous mode
[   74.511291][ T8066] IPVS: ftp: loaded support on port[0] = 21
[   74.511615][ T8063] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   74.529847][ T8063] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   74.554326][ T8063] team0: Port device team_slave_0 added
[   74.570299][ T8063] team0: Port device team_slave_1 added
15:40:23 executing program 2:
r0 = socket$inet(0xa, 0x801, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r3 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r3, &(0x7f0000000180), 0x214, 0x0, 0x0, 0x31b)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f0000000080)={0x0, 0x0, 0x42}, 0x8)

[   74.672138][ T8063] device hsr_slave_0 entered promiscuous mode
[   74.729463][ T8063] device hsr_slave_1 entered promiscuous mode
[   74.900282][ T8068] IPVS: ftp: loaded support on port[0] = 21
[   74.930474][ T8063] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.937556][ T8063] bridge0: port 2(bridge_slave_1) entered forwarding state
[   74.944924][ T8063] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.953003][ T8063] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.074962][ T8066] chnl_net:caif_netlink_parms(): no params data found
15:40:24 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x2d5, &(0x7f00000006c0)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x24, 0x12, @bridge_slave={{0x14, 0x1, 'bridge_slave\x00'}, {0xc, 0x5, [@IFLA_BRPORT_GROUP_FWD_MASK={0x8, 0x1f, 0x7f}]}}}]}, 0x44}}, 0x0)

[   75.254313][ T8066] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.262023][ T8066] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.289457][ T8066] device bridge_slave_0 entered promiscuous mode
[   75.318242][ T8063] 8021q: adding VLAN 0 to HW filter on device bond0
[   75.343249][ T8066] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.368716][ T8066] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.376576][ T8066] device bridge_slave_1 entered promiscuous mode
[   75.416032][ T8063] 8021q: adding VLAN 0 to HW filter on device team0
[   75.466202][ T8094] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   75.479570][ T8094] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.508958][ T8094] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.549648][ T8094] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   75.646821][ T8094] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   75.679798][ T8094] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   75.708823][ T8094] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.715903][ T8094] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.749006][ T8094] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   75.758093][ T8094] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   75.809100][ T8094] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.816206][ T8094] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.849009][ T8094] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   75.878677][ T8094] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   75.888315][ T8094] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   75.919425][ T8094] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   75.957194][ T8066] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   75.994917][ T3007] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   76.009500][ T3007] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
15:40:24 executing program 4:
r0 = syz_open_dev$usbfs(&(0x7f0000000840)='/dev/bus/usb/00#/00#\x00', 0x908, 0x1)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000240)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000100)={0xa3ffff, 0x0, 0x0, 0x0, 0x4}, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$USBDEVFS_REAPURBNDELAY(r0, 0x4004550c, &(0x7f0000000000))

[   76.059301][ T3007] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   76.092431][ T8068] chnl_net:caif_netlink_parms(): no params data found
[   76.105027][ T8066] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   76.150211][ T2405] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   76.178991][ T2405] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   76.198943][ T2405] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   76.238953][ T2405] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   76.271772][ T8063] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   76.296078][ T8097] IPVS: ftp: loaded support on port[0] = 21
[   76.350791][ T8066] team0: Port device team_slave_0 added
[   76.357955][ T2405] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   76.389897][ T2405] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   76.410370][ T8063] 8021q: adding VLAN 0 to HW filter on device batadv0
[   76.421593][ T8066] team0: Port device team_slave_1 added
[   76.481172][ T8068] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.488284][ T8068] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.520634][ T8068] device bridge_slave_0 entered promiscuous mode
[   76.595459][ T8102] IPVS: ftp: loaded support on port[0] = 21
[   76.601685][ T8068] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.618531][ T8068] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.654094][ T8068] device bridge_slave_1 entered promiscuous mode
15:40:25 executing program 5:
setrlimit(0x1, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff})
r0 = memfd_create(&(0x7f00000001c0)='/delo\xff\a\x00\x00\x00\x00', 0x0)
pwritev(r0, &(0x7f0000000480)=[{&(0x7f00000004c0)='+', 0x1}], 0x1, 0x200000000000000)
finit_module(r0, 0x0, 0x0)

[   76.741322][ T8066] device hsr_slave_0 entered promiscuous mode
[   76.790711][ T8066] device hsr_slave_1 entered promiscuous mode
[   76.888553][ T8066] debugfs: Directory 'hsr0' with parent '/' already present!
[   76.915686][ T8068] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   76.928657][ T8068] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   76.953056][ T8068] team0: Port device team_slave_0 added
[   76.972490][ T8068] team0: Port device team_slave_1 added
[   77.007944][ T8114] IPVS: ftp: loaded support on port[0] = 21
[   77.113820][ T8068] device hsr_slave_0 entered promiscuous mode
[   77.190906][ T8068] device hsr_slave_1 entered promiscuous mode
[   77.218437][ T8068] debugfs: Directory 'hsr0' with parent '/' already present!
[   77.374344][ T8097] chnl_net:caif_netlink_parms(): no params data found
[   77.425535][ T8102] chnl_net:caif_netlink_parms(): no params data found
[   77.507287][ T8066] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.672233][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   77.689490][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   77.699664][ T8066] 8021q: adding VLAN 0 to HW filter on device team0
[   77.815138][ T8097] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.908459][ T8097] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.916679][ T8097] device bridge_slave_0 entered promiscuous mode
[   77.988740][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   77.997570][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   78.080028][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.087126][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[   78.159031][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   78.222674][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   78.262290][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.269442][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.322751][ T8102] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.352369][ T8102] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.379192][ T8102] device bridge_slave_0 entered promiscuous mode
15:40:27 executing program 0:
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0x10000, 0x0, 0x3ff}, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23}, 0x1c)
listen(r0, 0x5eb857)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000000340)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000000180), 0x40001d0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000040)=ANY=[], 0x65c15bf2)
socket(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c)
sendmmsg(r2, &(0x7f0000000c00), 0x4000000000001e6, 0x0)

[   78.436034][ T8097] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.464854][ T8097] bridge0: port 2(bridge_slave_1) entered disabled state
[   78.519188][ T8097] device bridge_slave_1 entered promiscuous mode
[   78.611877][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   78.632591][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   78.709805][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   78.749294][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   78.809063][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   78.893547][ T8102] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.911606][ T8102] bridge0: port 2(bridge_slave_1) entered disabled state
[   78.962728][ T8102] device bridge_slave_1 entered promiscuous mode
[   79.048416][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   79.057656][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   79.140601][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   79.189309][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   79.242248][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   79.279155][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   79.339283][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   79.413994][ T8068] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.479898][ T8066] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   79.497610][ T8102] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   79.561184][ T8097] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   79.630603][ T8097] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   79.681512][ T8114] chnl_net:caif_netlink_parms(): no params data found
[   79.722418][ T8102] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   79.786752][ T8068] 8021q: adding VLAN 0 to HW filter on device team0
[   79.841911][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   79.892863][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   79.993015][ T8097] team0: Port device team_slave_0 added
[   80.013053][ T8097] team0: Port device team_slave_1 added
15:40:28 executing program 0:
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0x10000, 0x0, 0x3ff}, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23}, 0x1c)
listen(r0, 0x5eb857)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000000340)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000000180), 0x40001d0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000040)=ANY=[], 0x65c15bf2)
socket(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c)
sendmmsg(r2, &(0x7f0000000c00), 0x4000000000001e6, 0x0)

[   80.047609][ T8094] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   80.079283][ T8094] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   80.116264][ T8094] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.123401][ T8094] bridge0: port 1(bridge_slave_0) entered forwarding state
[   80.163808][ T8094] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   80.219568][ T8094] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   80.231326][ T8094] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.238422][ T8094] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.304343][ T8094] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   80.352898][ T8094] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   80.387141][ T8102] team0: Port device team_slave_0 added
[   80.428131][ T8068] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   80.477891][ T8068] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   80.533715][ T3007] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   80.550543][ T3007] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   80.565664][ T3007] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   80.583341][ T3007] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   80.605506][ T3007] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   80.627392][ T3007] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   80.640997][ T3007] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   80.652634][ T3007] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   80.663592][ T3007] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   80.674368][ T3007] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   80.684594][ T3007] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   80.694920][ T3007] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   80.707105][ T3007] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   80.718902][ T8102] team0: Port device team_slave_1 added
[   80.730914][ T8066] 8021q: adding VLAN 0 to HW filter on device batadv0
[   80.800882][ T8097] device hsr_slave_0 entered promiscuous mode
[   80.832563][ T8097] device hsr_slave_1 entered promiscuous mode
15:40:29 executing program 0:
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0x10000, 0x0, 0x3ff}, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23}, 0x1c)
listen(r0, 0x5eb857)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000000340)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000000180), 0x40001d0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000040)=ANY=[], 0x65c15bf2)
socket(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c)
sendmmsg(r2, &(0x7f0000000c00), 0x4000000000001e6, 0x0)

[   80.888489][ T8097] debugfs: Directory 'hsr0' with parent '/' already present!
[   80.903141][ T8114] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.910468][ T8114] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.922899][ T8114] device bridge_slave_0 entered promiscuous mode
[   80.934386][ T8068] 8021q: adding VLAN 0 to HW filter on device batadv0
[   80.949146][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   80.956589][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   81.051736][ T8114] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.059596][ T8114] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.082992][ T8114] device bridge_slave_1 entered promiscuous mode
[   81.151489][ T8102] device hsr_slave_0 entered promiscuous mode
[   81.238774][ T8102] device hsr_slave_1 entered promiscuous mode
[   81.279027][ T8102] debugfs: Directory 'hsr0' with parent '/' already present!
[   81.313368][ T8114] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   81.432141][ T8114] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   81.543199][ T8238] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   81.626338][ T8114] team0: Port device team_slave_0 added
[   81.729517][ T8114] team0: Port device team_slave_1 added
[   81.904621][ T8102] 8021q: adding VLAN 0 to HW filter on device bond0
[   82.027729][ T8114] device hsr_slave_0 entered promiscuous mode
[   82.088971][ T8114] device hsr_slave_1 entered promiscuous mode
[   82.118478][ T8114] debugfs: Directory 'hsr0' with parent '/' already present!
[   82.158861][ T8097] 8021q: adding VLAN 0 to HW filter on device bond0
[   82.301028][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   82.330492][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
15:40:31 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15:40:31 executing program 2:
r0 = socket$inet(0xa, 0x801, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r3 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r3, &(0x7f0000000180), 0x214, 0x0, 0x0, 0x31b)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f0000000080)={0x0, 0x0, 0x42}, 0x8)

[   82.395535][ T8102] 8021q: adding VLAN 0 to HW filter on device team0
[   82.514932][ T8097] 8021q: adding VLAN 0 to HW filter on device team0
[   82.575137][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   82.593819][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
15:40:31 executing program 0:
r0 = socket$inet(0xa, 0x801, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r3 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r3, &(0x7f0000000180), 0x214, 0x0, 0x0, 0x31b)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f0000000080)={0x0, 0x0, 0x42}, 0x8)

[   82.737605][ T8271] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   82.783401][ T8271] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   82.866983][ T8271] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.874157][ T8271] bridge0: port 1(bridge_slave_0) entered forwarding state
15:40:31 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[   83.017029][ T8271] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   83.106705][ T8271] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   83.192534][ T8271] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.199748][ T8271] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.330015][ T8271] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   83.413557][ T8271] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   83.502499][ T8271] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.509651][ T8271] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.581645][ T8271] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   83.660035][ T8271] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   83.724799][ T8271] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.731976][ T8271] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.864350][ T8271] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   83.932632][ T8271] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   84.010345][ T8271] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   84.076971][ T8271] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   84.176866][ T8102] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   84.254382][ T8102] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   84.328649][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   84.336720][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   84.409974][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   84.482395][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   84.550515][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   84.606595][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   84.636271][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   84.666672][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   84.691729][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
15:40:33 executing program 2:
r0 = socket$inet(0xa, 0x801, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r3 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r3, &(0x7f0000000180), 0x214, 0x0, 0x0, 0x31b)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f0000000080)={0x0, 0x0, 0x42}, 0x8)

15:40:33 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[   84.720463][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   84.752090][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   84.781188][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   84.800695][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   84.884399][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   84.956615][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   85.037887][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   85.099958][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   85.181913][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   85.296419][ T8102] 8021q: adding VLAN 0 to HW filter on device batadv0
[   85.347310][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   85.369343][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   85.378043][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   85.489184][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   85.496960][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   85.649096][ T8097] 8021q: adding VLAN 0 to HW filter on device batadv0
[   85.666804][ T8271] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   85.692344][ T8271] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   85.758145][ T8114] 8021q: adding VLAN 0 to HW filter on device bond0
[   85.854128][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   85.893559][   T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   85.941542][ T8114] 8021q: adding VLAN 0 to HW filter on device team0
[   85.999008][ T8271] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   86.008280][ T8271] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   86.109118][ T8271] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.116289][ T8271] bridge0: port 1(bridge_slave_0) entered forwarding state
[   86.225386][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   86.256265][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   86.331548][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   86.402705][    T5] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.410238][    T5] bridge0: port 2(bridge_slave_1) entered forwarding state
[   86.439187][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   86.479704][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   86.519213][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   86.550327][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   86.584699][ T8114] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   86.645816][ T8114] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   86.674850][ T8099] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   86.685850][ T8099] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   86.706936][ T8099] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   86.716770][ T8099] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   86.726317][ T8099] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   86.735969][ T8099] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   86.745123][ T8099] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   86.762727][ T8099] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   86.771656][ T8099] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   86.780379][ T8099] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   86.792204][ T8114] 8021q: adding VLAN 0 to HW filter on device batadv0
[   86.865181][ T8353] vhci_hcd: default hub control req: ff00 v0000 i0000 l4
[   86.893470][ T8355] netlink: 'syz-executor.3': attribute type 31 has an invalid length.
[   86.909653][ T8353] vhci_hcd: default hub control req: ff00 v0000 i0000 l4
15:40:36 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x2d5, &(0x7f00000006c0)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x24, 0x12, @bridge_slave={{0x14, 0x1, 'bridge_slave\x00'}, {0xc, 0x5, [@IFLA_BRPORT_GROUP_FWD_MASK={0x8, 0x1f, 0x7f}]}}}]}, 0x44}}, 0x0)

15:40:36 executing program 4:
r0 = syz_open_dev$usbfs(&(0x7f0000000840)='/dev/bus/usb/00#/00#\x00', 0x908, 0x1)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000240)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000100)={0xa3ffff, 0x0, 0x0, 0x0, 0x4}, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$USBDEVFS_REAPURBNDELAY(r0, 0x4004550c, &(0x7f0000000000))

[   87.275487][ T8369] vhci_hcd: default hub control req: ff00 v0000 i0000 l4
[   87.280816][ T8370] netlink: 'syz-executor.3': attribute type 31 has an invalid length.
15:40:36 executing program 5:
setrlimit(0x1, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff})
r0 = memfd_create(&(0x7f00000001c0)='/delo\xff\a\x00\x00\x00\x00', 0x0)
pwritev(r0, &(0x7f0000000480)=[{&(0x7f00000004c0)='+', 0x1}], 0x1, 0x200000000000000)
finit_module(r0, 0x0, 0x0)

15:40:36 executing program 0:
r0 = socket$inet(0xa, 0x801, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r3 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r3, &(0x7f0000000180), 0x214, 0x0, 0x0, 0x31b)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f0000000080)={0x0, 0x0, 0x42}, 0x8)

15:40:36 executing program 1:
r0 = socket$inet(0xa, 0x801, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r3 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r3, &(0x7f0000000180), 0x214, 0x0, 0x0, 0x31b)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f0000000080)={0x0, 0x0, 0x42}, 0x8)

15:40:36 executing program 2:
r0 = socket$inet(0xa, 0x801, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r3 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r3, &(0x7f0000000180), 0x214, 0x0, 0x0, 0x31b)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f0000000080)={0x0, 0x0, 0x42}, 0x8)

15:40:36 executing program 1:
r0 = socket$inet(0xa, 0x801, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r3 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r3, &(0x7f0000000180), 0x214, 0x0, 0x0, 0x31b)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f0000000080)={0x0, 0x0, 0x42}, 0x8)

15:40:36 executing program 0:
r0 = socket$inet(0xa, 0x801, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r3 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r3, &(0x7f0000000180), 0x214, 0x0, 0x0, 0x31b)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f0000000080)={0x0, 0x0, 0x42}, 0x8)

15:40:36 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x2d5, &(0x7f00000006c0)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x24, 0x12, @bridge_slave={{0x14, 0x1, 'bridge_slave\x00'}, {0xc, 0x5, [@IFLA_BRPORT_GROUP_FWD_MASK={0x8, 0x1f, 0x7f}]}}}]}, 0x44}}, 0x0)

15:40:36 executing program 5:
setrlimit(0x1, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff})
r0 = memfd_create(&(0x7f00000001c0)='/delo\xff\a\x00\x00\x00\x00', 0x0)
pwritev(r0, &(0x7f0000000480)=[{&(0x7f00000004c0)='+', 0x1}], 0x1, 0x200000000000000)
finit_module(r0, 0x0, 0x0)

15:40:36 executing program 4:
r0 = syz_open_dev$usbfs(&(0x7f0000000840)='/dev/bus/usb/00#/00#\x00', 0x908, 0x1)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000240)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000100)={0xa3ffff, 0x0, 0x0, 0x0, 0x4}, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$USBDEVFS_REAPURBNDELAY(r0, 0x4004550c, &(0x7f0000000000))

[   87.695135][ T8395] netlink: 'syz-executor.3': attribute type 31 has an invalid length.
15:40:36 executing program 2:
setrlimit(0x1, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff})
r0 = memfd_create(&(0x7f00000001c0)='/delo\xff\a\x00\x00\x00\x00', 0x0)
pwritev(r0, &(0x7f0000000480)=[{&(0x7f00000004c0)='+', 0x1}], 0x1, 0x200000000000000)
finit_module(r0, 0x0, 0x0)

15:40:36 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x2d5, &(0x7f00000006c0)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x24, 0x12, @bridge_slave={{0x14, 0x1, 'bridge_slave\x00'}, {0xc, 0x5, [@IFLA_BRPORT_GROUP_FWD_MASK={0x8, 0x1f, 0x7f}]}}}]}, 0x44}}, 0x0)

15:40:36 executing program 0:
setrlimit(0x1, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff})
r0 = memfd_create(&(0x7f00000001c0)='/delo\xff\a\x00\x00\x00\x00', 0x0)
pwritev(r0, &(0x7f0000000480)=[{&(0x7f00000004c0)='+', 0x1}], 0x1, 0x200000000000000)
finit_module(r0, 0x0, 0x0)

15:40:36 executing program 5:
setrlimit(0x1, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff})
r0 = memfd_create(&(0x7f00000001c0)='/delo\xff\a\x00\x00\x00\x00', 0x0)
pwritev(r0, &(0x7f0000000480)=[{&(0x7f00000004c0)='+', 0x1}], 0x1, 0x200000000000000)
finit_module(r0, 0x0, 0x0)

[   87.802071][ T8401] vhci_hcd: default hub control req: ff00 v0000 i0000 l4
15:40:36 executing program 1:
r0 = socket$inet(0xa, 0x801, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r3 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r3, &(0x7f0000000180), 0x214, 0x0, 0x0, 0x31b)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f0000000080)={0x0, 0x0, 0x42}, 0x8)

[   88.039024][ T8409] netlink: 'syz-executor.3': attribute type 31 has an invalid length.
15:40:37 executing program 0:
setrlimit(0x1, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff})
r0 = memfd_create(&(0x7f00000001c0)='/delo\xff\a\x00\x00\x00\x00', 0x0)
pwritev(r0, &(0x7f0000000480)=[{&(0x7f00000004c0)='+', 0x1}], 0x1, 0x200000000000000)
finit_module(r0, 0x0, 0x0)

15:40:37 executing program 2:
setrlimit(0x1, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff})
r0 = memfd_create(&(0x7f00000001c0)='/delo\xff\a\x00\x00\x00\x00', 0x0)
pwritev(r0, &(0x7f0000000480)=[{&(0x7f00000004c0)='+', 0x1}], 0x1, 0x200000000000000)
finit_module(r0, 0x0, 0x0)

15:40:37 executing program 5:
r0 = syz_open_dev$usbfs(&(0x7f0000000840)='/dev/bus/usb/00#/00#\x00', 0x908, 0x1)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000240)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000100)={0xa3ffff, 0x0, 0x0, 0x0, 0x4}, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$USBDEVFS_REAPURBNDELAY(r0, 0x4004550c, &(0x7f0000000000))

15:40:37 executing program 4:
r0 = syz_open_dev$usbfs(&(0x7f0000000840)='/dev/bus/usb/00#/00#\x00', 0x908, 0x1)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000240)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000100)={0xa3ffff, 0x0, 0x0, 0x0, 0x4}, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$USBDEVFS_REAPURBNDELAY(r0, 0x4004550c, &(0x7f0000000000))

15:40:37 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000000840)='/dev/bus/usb/00#/00#\x00', 0x908, 0x1)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000240)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000100)={0xa3ffff, 0x0, 0x0, 0x0, 0x4}, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$USBDEVFS_REAPURBNDELAY(r0, 0x4004550c, &(0x7f0000000000))

15:40:37 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[   88.300897][ T8419] vhci_hcd: default hub control req: ff00 v0000 i0000 l4
[   88.346871][ T8427] vhci_hcd: default hub control req: ff00 v0000 i0000 l4
15:40:37 executing program 2:
setrlimit(0x1, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff})
r0 = memfd_create(&(0x7f00000001c0)='/delo\xff\a\x00\x00\x00\x00', 0x0)
pwritev(r0, &(0x7f0000000480)=[{&(0x7f00000004c0)='+', 0x1}], 0x1, 0x200000000000000)
finit_module(r0, 0x0, 0x0)

15:40:37 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15:40:37 executing program 5:
r0 = syz_open_dev$usbfs(&(0x7f0000000840)='/dev/bus/usb/00#/00#\x00', 0x908, 0x1)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000240)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000100)={0xa3ffff, 0x0, 0x0, 0x0, 0x4}, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$USBDEVFS_REAPURBNDELAY(r0, 0x4004550c, &(0x7f0000000000))

15:40:37 executing program 0:
setrlimit(0x1, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff})
r0 = memfd_create(&(0x7f00000001c0)='/delo\xff\a\x00\x00\x00\x00', 0x0)
pwritev(r0, &(0x7f0000000480)=[{&(0x7f00000004c0)='+', 0x1}], 0x1, 0x200000000000000)
finit_module(r0, 0x0, 0x0)

15:40:37 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000000840)='/dev/bus/usb/00#/00#\x00', 0x908, 0x1)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000240)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000100)={0xa3ffff, 0x0, 0x0, 0x0, 0x4}, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$USBDEVFS_REAPURBNDELAY(r0, 0x4004550c, &(0x7f0000000000))

[   88.673871][ T8444] vhci_hcd: default hub control req: ff00 v0000 i0000 l4
[   88.771619][ T8448] vhci_hcd: default hub control req: ff00 v0000 i0000 l4
15:40:37 executing program 5:
r0 = syz_open_dev$usbfs(&(0x7f0000000840)='/dev/bus/usb/00#/00#\x00', 0x908, 0x1)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000240)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000100)={0xa3ffff, 0x0, 0x0, 0x0, 0x4}, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$USBDEVFS_REAPURBNDELAY(r0, 0x4004550c, &(0x7f0000000000))

15:40:37 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000000840)='/dev/bus/usb/00#/00#\x00', 0x908, 0x1)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000240)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000100)={0xa3ffff, 0x0, 0x0, 0x0, 0x4}, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$USBDEVFS_REAPURBNDELAY(r0, 0x4004550c, &(0x7f0000000000))

15:40:37 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15:40:37 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15:40:37 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[   89.075932][ T8462] vhci_hcd: default hub control req: ff00 v0000 i0000 l4
[   89.122308][ T8464] vhci_hcd: default hub control req: ff00 v0000 i0000 l4
15:40:38 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15:40:38 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15:40:38 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15:40:38 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15:40:38 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15:40:38 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15:40:38 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15:40:38 executing program 3:
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0x10000, 0x0, 0x3ff}, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23}, 0x1c)
listen(r0, 0x5eb857)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000000340)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000000180), 0x40001d0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000040)=ANY=[], 0x65c15bf2)
socket(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c)
sendmmsg(r2, &(0x7f0000000c00), 0x4000000000001e6, 0x0)

15:40:38 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15:40:38 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15:40:38 executing program 4:
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0x10000, 0x0, 0x3ff}, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23}, 0x1c)
listen(r0, 0x5eb857)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000000340)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000000180), 0x40001d0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000040)=ANY=[], 0x65c15bf2)
socket(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c)
sendmmsg(r2, &(0x7f0000000c00), 0x4000000000001e6, 0x0)

15:40:38 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15:40:39 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15:40:39 executing program 0:
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0x10000, 0x0, 0x3ff}, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23}, 0x1c)
listen(r0, 0x5eb857)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000000340)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000000180), 0x40001d0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000040)=ANY=[], 0x65c15bf2)
socket(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c)
sendmmsg(r2, &(0x7f0000000c00), 0x4000000000001e6, 0x0)

15:40:39 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15:40:39 executing program 2:
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0x10000, 0x0, 0x3ff}, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23}, 0x1c)
listen(r0, 0x5eb857)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000000340)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000000180), 0x40001d0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000040)=ANY=[], 0x65c15bf2)
socket(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c)
sendmmsg(r2, &(0x7f0000000c00), 0x4000000000001e6, 0x0)

15:40:39 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000180)="66b9800000c00f326635008000000f30baf80c66b88879da8a66efbafc0c66ed660f3881ba80a866b9160b00000f3266b93806000066b85400000066ba000000000f302a150f3804969aef0f01c20f84c600bad104b80098ef", 0x59}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x40, 0x0, 0xfffffffffffffdd4)
name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000200)={0xa, 0x0, "ebd4"}, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15:40:39 executing program 5:
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0x10000, 0x0, 0x3ff}, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23}, 0x1c)
listen(r0, 0x5eb857)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000000340)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000000180), 0x40001d0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000040)=ANY=[], 0x65c15bf2)
socket(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c)
sendmmsg(r2, &(0x7f0000000c00), 0x4000000000001e6, 0x0)

15:40:40 executing program 3:
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0x10000, 0x0, 0x3ff}, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23}, 0x1c)
listen(r0, 0x5eb857)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000000340)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000000180), 0x40001d0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000040)=ANY=[], 0x65c15bf2)
socket(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c)
sendmmsg(r2, &(0x7f0000000c00), 0x4000000000001e6, 0x0)

15:40:40 executing program 1:
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0x10000, 0x0, 0x3ff}, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23}, 0x1c)
listen(r0, 0x5eb857)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000000340)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000000180), 0x40001d0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000040)=ANY=[], 0x65c15bf2)
socket(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c)
sendmmsg(r2, &(0x7f0000000c00), 0x4000000000001e6, 0x0)

15:40:40 executing program 4:
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0x10000, 0x0, 0x3ff}, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23}, 0x1c)
listen(r0, 0x5eb857)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000000340)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000000180), 0x40001d0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000040)=ANY=[], 0x65c15bf2)
socket(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c)
sendmmsg(r2, &(0x7f0000000c00), 0x4000000000001e6, 0x0)

15:40:40 executing program 0:
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0x10000, 0x0, 0x3ff}, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23}, 0x1c)
listen(r0, 0x5eb857)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000000340)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000000180), 0x40001d0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000040)=ANY=[], 0x65c15bf2)
socket(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c)
sendmmsg(r2, &(0x7f0000000c00), 0x4000000000001e6, 0x0)

15:40:40 executing program 2:
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0x10000, 0x0, 0x3ff}, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23}, 0x1c)
listen(r0, 0x5eb857)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000000340)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000000180), 0x40001d0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000040)=ANY=[], 0x65c15bf2)
socket(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c)
sendmmsg(r2, &(0x7f0000000c00), 0x4000000000001e6, 0x0)

15:40:41 executing program 5:
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000240)={0x0, @in={{0x2, 0x0, @empty}}, 0x10000, 0x0, 0x3ff}, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23}, 0x1c)
listen(r0, 0x5eb857)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000000340)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000000180), 0x40001d0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000040)=ANY=[], 0x65c15bf2)
socket(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c)
sendmmsg(r2, &(0x7f0000000c00), 0x4000000000001e6, 0x0)

[   92.487515][ T8577] ==================================================================
[   92.495708][ T8577] BUG: KCSAN: data-race in ext4_nonda_switch / percpu_counter_add_batch
[   92.504026][ T8577] 
[   92.506881][ T8577] read to 0xffff88821873b158 of 8 bytes by task 8563 on cpu 0:
[   92.514540][ T8577]  ext4_nonda_switch+0x5a/0x140
[   92.519600][ T8577]  ext4_da_write_begin+0xc5/0x7e0
[   92.524626][ T8577]  generic_perform_write+0x136/0x320
[   92.529946][ T8577]  __generic_file_write_iter+0x251/0x380
[   92.535579][ T8577]  ext4_file_write_iter+0x1bd/0xa00
[   92.540771][ T8577]  new_sync_write+0x388/0x4a0
[   92.545444][ T8577]  __vfs_write+0xb1/0xc0
[   92.549688][ T8577]  vfs_write+0x18a/0x390
[   92.553964][ T8577]  ksys_write+0xd5/0x1b0
[   92.558208][ T8577]  __x64_sys_write+0x4c/0x60
[   92.562791][ T8577]  do_syscall_64+0xcc/0x370
[   92.567307][ T8577]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   92.573178][ T8577] 
[   92.575504][ T8577] write to 0xffff88821873b158 of 8 bytes by task 8577 on cpu 1:
[   92.583129][ T8577]  percpu_counter_add_batch+0xca/0x150
[   92.588593][ T8577]  ext4_claim_free_clusters+0x68/0x90
[   92.593981][ T8577]  ext4_da_reserve_space+0x102/0x280
[   92.599268][ T8577]  ext4_da_get_block_prep+0x87f/0xa60
[   92.604808][ T8577]  ext4_block_write_begin+0x33e/0xba0
[   92.610441][ T8577]  ext4_da_write_begin+0x1da/0x7e0
[   92.615547][ T8577]  generic_perform_write+0x136/0x320
[   92.620836][ T8577]  __generic_file_write_iter+0x251/0x380
[   92.626549][ T8577]  ext4_file_write_iter+0x1bd/0xa00
[   92.631740][ T8577]  new_sync_write+0x388/0x4a0
[   92.636418][ T8577]  __vfs_write+0xb1/0xc0
[   92.641693][ T8577]  vfs_write+0x18a/0x390
[   92.647536][ T8577]  ksys_write+0xd5/0x1b0
[   92.651784][ T8577]  __x64_sys_write+0x4c/0x60
[   92.656373][ T8577]  do_syscall_64+0xcc/0x370
[   92.660900][ T8577]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   92.666775][ T8577] 
[   92.669092][ T8577] Reported by Kernel Concurrency Sanitizer on:
[   92.675242][ T8577] CPU: 1 PID: 8577 Comm: syz-executor.5 Not tainted 5.4.0-rc6+ #0
[   92.683128][ T8577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   92.693171][ T8577] ==================================================================
[   92.701229][ T8577] Kernel panic - not syncing: panic_on_warn set ...
[   92.707810][ T8577] CPU: 1 PID: 8577 Comm: syz-executor.5 Not tainted 5.4.0-rc6+ #0
[   92.715599][ T8577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   92.726093][ T8577] Call Trace:
[   92.729403][ T8577]  dump_stack+0xf5/0x159
[   92.733641][ T8577]  panic+0x210/0x640
[   92.737538][ T8577]  ? vprintk_func+0x8d/0x140
[   92.742127][ T8577]  kcsan_report.cold+0xc/0xe
[   92.746724][ T8577]  kcsan_setup_watchpoint+0x3fe/0x410
[   92.752098][ T8577]  __tsan_unaligned_write8+0x143/0x1f0
[   92.757557][ T8577]  percpu_counter_add_batch+0xca/0x150
[   92.763026][ T8577]  ext4_claim_free_clusters+0x68/0x90
[   92.768403][ T8577]  ext4_da_reserve_space+0x102/0x280
[   92.773693][ T8577]  ext4_da_get_block_prep+0x87f/0xa60
[   92.779060][ T8577]  ? _raw_spin_unlock+0x4b/0x60
[   92.783905][ T8577]  ? create_empty_buffers+0x20c/0x3e0
[   92.789278][ T8577]  ext4_block_write_begin+0x33e/0xba0
[   92.794647][ T8577]  ? ext4_bmap+0x220/0x220
[   92.799067][ T8577]  ? __sanitizer_cov_trace_switch+0x49/0x80
[   92.804957][ T8577]  ext4_da_write_begin+0x1da/0x7e0
[   92.810074][ T8577]  generic_perform_write+0x136/0x320
[   92.815367][ T8577]  __generic_file_write_iter+0x251/0x380
[   92.821006][ T8577]  ? constant_test_bit+0x12/0x30
[   92.825946][ T8577]  ext4_file_write_iter+0x1bd/0xa00
[   92.831146][ T8577]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   92.837388][ T8577]  ? debug_smp_processor_id+0x4c/0x172
[   92.842935][ T8577]  ? iov_iter_init+0xe2/0x120
[   92.847609][ T8577]  new_sync_write+0x388/0x4a0
[   92.852300][ T8577]  __vfs_write+0xb1/0xc0
[   92.856642][ T8577]  vfs_write+0x18a/0x390
[   92.860884][ T8577]  ksys_write+0xd5/0x1b0
[   92.865130][ T8577]  __x64_sys_write+0x4c/0x60
[   92.869723][ T8577]  do_syscall_64+0xcc/0x370
[   92.874243][ T8577]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   92.880126][ T8577] RIP: 0033:0x45a219
[   92.884028][ T8577] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   92.904500][ T8577] RSP: 002b:00007f3137a6fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   92.912906][ T8577] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a219
[   92.920957][ T8577] RDX: 0000000065c15bf2 RSI: 0000000020000040 RDI: 0000000000000006
[   92.928923][ T8577] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[   92.936896][ T8577] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3137a706d4
[   92.944861][ T8577] R13: 00000000004cab18 R14: 00000000004e2fb8 R15: 00000000ffffffff
[   94.122694][ T8577] Shutting down cpus with NMI
[   94.128896][ T8577] Kernel Offset: disabled
[   94.133256][ T8577] Rebooting in 86400 seconds..