cy "syz0"
[ 1019.205482][T25633]  loop4: p1 < > p2 p4 < >
11:56:11 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000030200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1019.209956][T25633] loop4: partition table partially beyond EOD, truncated
11:56:11 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup3(r0, r0, 0x80000)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000a00)={0x8, 0x7})
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x4001, 0x3, 0x2b8, 0x180, 0x0, 0x148, 0x0, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x88}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'lo\x00', {0x0, 0x0, 0x1ff, 0x0, 0x0, 0xed, 0x7}}}, @common=@inet=@multiport={{0x50}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)
dup(r0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000e80)=@filter={'filter\x00', 0xe, 0x4, 0x3e0, 0xffffffff, 0x290, 0xd0, 0xd0, 0xffffffff, 0xffffffff, 0x348, 0x348, 0x348, 0xffffffff, 0x4, &(0x7f0000000e40), {[{{@uncond, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@unspec=@mark={{0x30}, {0x1ff, 0x7f, 0x1}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x4, 0x0, 0x2}, {0x4, 0x2, 0x2}, 0x1, 0x20e}}}, {{@ip={@initdev={0xac, 0x1e, 0x1, 0x0}, @empty, 0xff000000, 0xff, 'ip6gre0\x00', 'veth1_to_team\x00', {}, {}, 0x5e, 0x1, 0x59}, 0x0, 0x98, 0x1c0, 0x0, {}, [@common=@icmp={{0x28}, {0xb, "c383", 0x1}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x4, 'system_u:object_r:chfn_exec_t:s0\x00'}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x1f}, @remote, 0xff, 0xff, 'wg0\x00', 'batadv_slave_1\x00', {0xff}, {0xff}, 0x6c, 0x0, 0x1}, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x1000000, 'syz0\x00', {0x5}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x440)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xc, 0x8, &(0x7f00000012c0)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, 0x1, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2, 0x4}, 0x8, 0x10, &(0x7f0000000000)={0xffffffff, 0x7, 0x0, 0xfffffffe}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10)
syz_clone(0x80000, &(0x7f0000001480)="0b7a946f71accb0def540463a6dd648a481f989e6bd1d33e5dc3ca050e9fde29542b14f72b46b17b0888ab04a0415841ce9ca487ee8760b0d3b1c12bb15f210af14a59fbaf1aa1b18e825bd6be9bdb0bb1d55ae9a156bdb9758b7d306cf496cd048ac22983215d5c7d0d506f969b9c0f4e6a9d5aeba93888f16afcd92c0c3175d5d596328aad679a2025bc146b7ceccfa537a6acfb6f3cb0087aded9cfc5f961b9c38ebc6db8ace401f1097e6a25da3d3182d4efb7d1f79fecc8acb1bace87b161087a27a26b196e761e7df18bc8521a6b9b7b0f0c73cbe872b1a078da500da9601cb12b8fedb54fb7a1c02775530e969f927fc3415d55f10feb", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:11 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:11 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup3(r0, r0, 0x80000)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000a00)={0x8, 0x7})
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x4001, 0x3, 0x2b8, 0x180, 0x0, 0x148, 0x0, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x88}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'lo\x00', {0x0, 0x0, 0x1ff, 0x0, 0x0, 0xed, 0x7}}}, @common=@inet=@multiport={{0x50}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)
dup(r0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000e80)=@filter={'filter\x00', 0xe, 0x4, 0x3e0, 0xffffffff, 0x290, 0xd0, 0xd0, 0xffffffff, 0xffffffff, 0x348, 0x348, 0x348, 0xffffffff, 0x4, &(0x7f0000000e40), {[{{@uncond, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@unspec=@mark={{0x30}, {0x1ff, 0x7f, 0x1}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x4, 0x0, 0x2}, {0x4, 0x2, 0x2}, 0x1, 0x20e}}}, {{@ip={@initdev={0xac, 0x1e, 0x1, 0x0}, @empty, 0xff000000, 0xff, 'ip6gre0\x00', 'veth1_to_team\x00', {}, {}, 0x5e, 0x1, 0x59}, 0x0, 0x98, 0x1c0, 0x0, {}, [@common=@icmp={{0x28}, {0xb, "c383", 0x1}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x4, 'system_u:object_r:chfn_exec_t:s0\x00'}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x1f}, @remote, 0xff, 0xff, 'wg0\x00', 'batadv_slave_1\x00', {0xff}, {0xff}, 0x6c, 0x0, 0x1}, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x1000000, 'syz0\x00', {0x5}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x440)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xc, 0x8, &(0x7f00000012c0)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, 0x1, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2, 0x4}, 0x8, 0x10, &(0x7f0000000000)={0xffffffff, 0x7, 0x0, 0xfffffffe}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x90)
syz_clone(0x80000, &(0x7f0000001480)="0b7a946f71accb0def540463a6dd648a481f989e6bd1d33e5dc3ca050e9fde29542b14f72b46b17b0888ab04a0415841ce9ca487ee8760b0d3b1c12bb15f210af14a59fbaf1aa1b18e825bd6be9bdb0bb1d55ae9a156bdb9758b7d306cf496cd048ac22983215d5c7d0d506f969b9c0f4e6a9d5aeba93888f16afcd92c0c3175d5d596328aad679a2025bc146b7ceccfa537a6acfb6f3cb0087aded9cfc5f961b9c38ebc6db8ace401f1097e6a25da3d3182d4efb7d1f79fecc8acb1bace87b161087a27a26b196e761e7df18bc8521a6b9b7b0f0c73cbe872b1a078da500da9601cb12b8fedb54fb7a1c02775530e969f927fc3415d55f10feb", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

[ 1019.241646][T25633] loop4: p1 start 8388864 is beyond EOD, truncated
[ 1019.248225][T25633] loop4: p2 size 31064064 extends beyond EOD, truncated
[ 1019.264498][T25675] No such timeout policy "syz0"
11:56:11 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)
r2 = socket(0x10, 0x2, 0x0)
write(r2, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
sendto$inet6(r2, &(0x7f0000000080)="d08db2356065bd47dfa06d63e9c0bb104bf4a64fa4819b60c1b798e416beeeaa99edd1ca84e8a1052b489a37918b876394c1e757442dfcf9ab425c573227f3e2e7c8fe3c7ca321a288e5aa957c6530dc1b1c4624da256560e981b5ad948570f10e60abacc8e384bcaf35941d249948", 0x6f, 0x0, &(0x7f0000000100)={0xa, 0x4e24, 0x15, @mcast1, 0x4}, 0x1c)

11:56:11 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:11 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000040200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1019.335987][T25642] workqueue: Failed to create a rescuer kthread for wq "nfc18_nci_tx_wq": -EINTR
[ 1019.336145][T25634] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[ 1019.356973][T25906] No such timeout policy "syz0"
11:56:12 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
dup3(r1, r0, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0x17)

11:56:12 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup3(r0, r0, 0x80000)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000a00)={0x8, 0x7})
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x4001, 0x3, 0x2b8, 0x180, 0x0, 0x148, 0x0, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x88}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'lo\x00', {0x0, 0x0, 0x1ff, 0x0, 0x0, 0xed, 0x7}}}, @common=@inet=@multiport={{0x50}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)
dup(r0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000e80)=@filter={'filter\x00', 0xe, 0x4, 0x3e0, 0xffffffff, 0x290, 0xd0, 0xd0, 0xffffffff, 0xffffffff, 0x348, 0x348, 0x348, 0xffffffff, 0x4, &(0x7f0000000e40), {[{{@uncond, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@unspec=@mark={{0x30}, {0x1ff, 0x7f, 0x1}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x4, 0x0, 0x2}, {0x4, 0x2, 0x2}, 0x1, 0x20e}}}, {{@ip={@initdev={0xac, 0x1e, 0x1, 0x0}, @empty, 0xff000000, 0xff, 'ip6gre0\x00', 'veth1_to_team\x00', {}, {}, 0x5e, 0x1, 0x59}, 0x0, 0x98, 0x1c0, 0x0, {}, [@common=@icmp={{0x28}, {0xb, "c383", 0x1}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x4, 'system_u:object_r:chfn_exec_t:s0\x00'}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x1f}, @remote, 0xff, 0xff, 'wg0\x00', 'batadv_slave_1\x00', {0xff}, {0xff}, 0x6c, 0x0, 0x1}, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x1000000, 'syz0\x00', {0x5}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x440)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xc, 0x8, &(0x7f00000012c0)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, 0x1, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2, 0x4}, 0x8, 0x10, &(0x7f0000000000)={0xffffffff, 0x7, 0x0, 0xfffffffe}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x90)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:12 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0x0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:12 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)
r2 = socket(0x10, 0x2, 0x0)
write(r2, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
sendto$inet6(r2, &(0x7f0000000080)="d08db2356065bd47dfa06d63e9c0bb104bf4a64fa4819b60c1b798e416beeeaa99edd1ca84e8a1052b489a37918b876394c1e757442dfcf9ab425c573227f3e2e7c8fe3c7ca321a288e5aa957c6530dc1b1c4624da256560e981b5ad948570f10e60abacc8e384bcaf35941d249948", 0x6f, 0x0, &(0x7f0000000100)={0xa, 0x4e24, 0x15, @mcast1, 0x4}, 0x1c)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) (async)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1) (async)
socket(0x10, 0x2, 0x0) (async)
write(r2, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
sendto$inet6(r2, &(0x7f0000000080)="d08db2356065bd47dfa06d63e9c0bb104bf4a64fa4819b60c1b798e416beeeaa99edd1ca84e8a1052b489a37918b876394c1e757442dfcf9ab425c573227f3e2e7c8fe3c7ca321a288e5aa957c6530dc1b1c4624da256560e981b5ad948570f10e60abacc8e384bcaf35941d249948", 0x6f, 0x0, &(0x7f0000000100)={0xa, 0x4e24, 0x15, @mcast1, 0x4}, 0x1c) (async)

11:56:12 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
r5 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f00000000c0)=<r6=>0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r7)
sendmsg$NFC_CMD_DEV_UP(r7, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r6], 0x1c}}, 0x0)
r9 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r9, 0x0, &(0x7f00000000c0)=<r10=>0x0)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r11)
sendmsg$NFC_CMD_DEV_UP(r11, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r12, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r10], 0x1c}}, 0x0)
sendmsg$NFC_CMD_ENABLE_SE(r3, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x44, r4, 0x4, 0x70bd26, 0x25dfdbff, {}, [@NFC_ATTR_SE_INDEX={0x8}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r10}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}, @NFC_ATTR_SE_INDEX={0x8, 0x15, 0xc0}]}, 0x44}, 0x1, 0x0, 0x0, 0x8810}, 0x20000094)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000040)=<r13=>0x0)
r14 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r14, 0x0, &(0x7f00000000c0)=<r15=>0x0)
r16 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r17 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r16)
sendmsg$NFC_CMD_DEV_UP(r16, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r17, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r15], 0x1c}}, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000100)=<r18=>0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000200)=<r19=>0x0)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x4c, r8, 0x2, 0x70bd27, 0x25dfdbfb, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r13}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r15}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r18}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r19}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000845}, 0x1)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="01000000800fe9df07000100ad6d65d6c2101fa3c1cc4eeee77a07f9b281b2190b80d2b0f942727c87af1074fad03b2e89bd3586e86738121e58a2e8c6ce2d94290a1224a01ead0e67ec7237cd584bb9eb452f6522cfbdcf8b6859b48529d42bb3dc42a30ddb9492f90a8604e28b9aa948c4cae7caa88cab2eb6903e6f08adcb4febf7b1a23e7f82a62a34660a2edab757f836", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
sendmsg$NL802154_CMD_NEW_SEC_KEY(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000001c0)={0x4c, 0x0, 0x405, 0x0, 0x0, {}, [@NL802154_ATTR_SEC_KEY={0x2c, 0x2e, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "f56b0bb50c4137d28be22635e2b4e25b"}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5}, @NL802154_KEY_ATTR_ID={0xc, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}]}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x4c}}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000005c0)={'wpan4\x00', <r20=>0x0})
sendmsg$NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x38, 0x0, 0x4, 0x70bd28, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r20}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000)

11:56:12 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="0100000000000000000f0200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:12 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0x0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

[ 1020.059469][T26040] No such timeout policy "syz0"
11:56:12 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup3(r0, r0, 0x80000)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000a00)={0x8, 0x7})
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x4001, 0x3, 0x2b8, 0x180, 0x0, 0x148, 0x0, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x88}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'lo\x00', {0x0, 0x0, 0x1ff, 0x0, 0x0, 0xed, 0x7}}}, @common=@inet=@multiport={{0x50}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)
dup(r0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000e80)=@filter={'filter\x00', 0xe, 0x4, 0x3e0, 0xffffffff, 0x290, 0xd0, 0xd0, 0xffffffff, 0xffffffff, 0x348, 0x348, 0x348, 0xffffffff, 0x4, &(0x7f0000000e40), {[{{@uncond, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@unspec=@mark={{0x30}, {0x1ff, 0x7f, 0x1}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x4, 0x0, 0x2}, {0x4, 0x2, 0x2}, 0x1, 0x20e}}}, {{@ip={@initdev={0xac, 0x1e, 0x1, 0x0}, @empty, 0xff000000, 0xff, 'ip6gre0\x00', 'veth1_to_team\x00', {}, {}, 0x5e, 0x1, 0x59}, 0x0, 0x98, 0x1c0, 0x0, {}, [@common=@icmp={{0x28}, {0xb, "c383", 0x1}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x4, 'system_u:object_r:chfn_exec_t:s0\x00'}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x1f}, @remote, 0xff, 0xff, 'wg0\x00', 'batadv_slave_1\x00', {0xff}, {0xff}, 0x6c, 0x0, 0x1}, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x1000000, 'syz0\x00', {0x5}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x440)
syz_clone(0x80000, &(0x7f0000001480)="0b7a946f71accb0def540463a6dd648a481f989e6bd1d33e5dc3ca050e9fde29542b14f72b46b17b0888ab04a0415841ce9ca487ee8760b0d3b1c12bb15f210af14a59fbaf1aa1b18e825bd6be9bdb0bb1d55ae9a156bdb9758b7d306cf496cd048ac22983215d5c7d0d506f969b9c0f4e6a9d5aeba93888f16afcd92c0c3175d5d596328aad679a2025bc146b7ceccfa537a6acfb6f3cb0087aded9cfc5f961b9c38ebc6db8ace401f1097e6a25da3d3182d4efb7d1f79fecc8acb1bace87b161087a27a26b196e761e7df18bc8521a6b9b7b0f0c73cbe872b1a078da500da9601cb12b8fedb54fb7a1c02775530e969f927fc3415d55f10feb", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:12 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0x0)
syz_clone(0x80000, &(0x7f0000001480)="0b7a946f71accb0def540463a6dd648a481f989e6bd1d33e5dc3ca050e9fde29542b14f72b46b17b0888ab04a0415841ce9ca487ee8760b0d3b1c12bb15f210af14a59fbaf1aa1b18e825bd6be9bdb0bb1d55ae9a156bdb9758b7d306cf496cd048ac22983215d5c7d0d506f969b9c0f4e6a9d5aeba93888f16afcd92c0c3175d5d596328aad679a2025bc146b7ceccfa537a6acfb6f3cb0087aded9cfc5f961b9c38ebc6db8ace401f1097e6a25da3d3182d4efb7d1f79fecc8acb1bace87b161087a27a26b196e761e7df18bc8521a6b9b7b0f0c73cbe872b1a078da500da9601cb12b8fedb54fb7a1c02775530e969f927fc3415d55f10feb", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:12 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)
r2 = socket(0x10, 0x2, 0x0)
write(r2, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
sendto$inet6(r2, &(0x7f0000000080)="d08db2356065bd47dfa06d63e9c0bb104bf4a64fa4819b60c1b798e416beeeaa99edd1ca84e8a1052b489a37918b876394c1e757442dfcf9ab425c573227f3e2e7c8fe3c7ca321a288e5aa957c6530dc1b1c4624da256560e981b5ad948570f10e60abacc8e384bcaf35941d249948", 0x6f, 0x0, &(0x7f0000000100)={0xa, 0x4e24, 0x15, @mcast1, 0x4}, 0x1c)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) (async)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1) (async)
socket(0x10, 0x2, 0x0) (async)
write(r2, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
sendto$inet6(r2, &(0x7f0000000080)="d08db2356065bd47dfa06d63e9c0bb104bf4a64fa4819b60c1b798e416beeeaa99edd1ca84e8a1052b489a37918b876394c1e757442dfcf9ab425c573227f3e2e7c8fe3c7ca321a288e5aa957c6530dc1b1c4624da256560e981b5ad948570f10e60abacc8e384bcaf35941d249948", 0x6f, 0x0, &(0x7f0000000100)={0xa, 0x4e24, 0x15, @mcast1, 0x4}, 0x1c) (async)

[ 1020.119885][T26059] No such timeout policy "syz0"
11:56:12 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup3(r0, r0, 0x80000)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000a00)={0x8, 0x7})
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x4001, 0x3, 0x2b8, 0x180, 0x0, 0x148, 0x0, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x88}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'lo\x00', {0x0, 0x0, 0x1ff, 0x0, 0x0, 0xed, 0x7}}}, @common=@inet=@multiport={{0x50}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)
dup(r0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:12 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x0, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

[ 1020.209836][T26171] No such timeout policy "syz0"
11:56:12 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
dup3(r1, r0, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0x17)

11:56:12 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup3(r0, r0, 0x80000)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000a00)={0x8, 0x7})
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x4001, 0x3, 0x2b8, 0x180, 0x0, 0x148, 0x0, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x88}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'lo\x00', {0x0, 0x0, 0x1ff, 0x0, 0x0, 0xed, 0x7}}}, @common=@inet=@multiport={{0x50}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)
dup(r0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:12 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x0, &(0x7f0000001480)="0b7a946f71accb0def540463a6dd648a481f989e6bd1d33e5dc3ca050e9fde29542b14f72b46b17b0888ab04a0415841ce9ca487ee8760b0d3b1c12bb15f210af14a59fbaf1aa1b18e825bd6be9bdb0bb1d55ae9a156bdb9758b7d306cf496cd048ac22983215d5c7d0d506f969b9c0f4e6a9d5aeba93888f16afcd92c0c3175d5d596328aad679a2025bc146b7ceccfa537a6acfb6f3cb0087aded9cfc5f961b9c38ebc6db8ace401f1097e6a25da3d3182d4efb7d1f79fecc8acb1bace87b161087a27a26b196e761e7df18bc8521a6b9b7b0f0c73cbe872b1a078da500da9601cb12b8fedb54fb7a1c02775530e969f927fc3415d55f10feb", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:12 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
io_uring_setup(0x7efa, &(0x7f00000000c0)={0x0, 0x6668, 0x2, 0x3, 0x0, 0x0, r0})
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)
pipe(&(0x7f0000000080))

11:56:12 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000202000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:12 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async, rerun: 32)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (rerun: 32)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3) (async)
r5 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f00000000c0)=<r6=>0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r7)
sendmsg$NFC_CMD_DEV_UP(r7, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r6], 0x1c}}, 0x0) (async, rerun: 64)
r9 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (rerun: 64)
ioctl$IOCTL_GET_NCIDEV_IDX(r9, 0x0, &(0x7f00000000c0)=<r10=>0x0) (async)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r11)
sendmsg$NFC_CMD_DEV_UP(r11, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r12, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r10], 0x1c}}, 0x0) (async)
sendmsg$NFC_CMD_ENABLE_SE(r3, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x44, r4, 0x4, 0x70bd26, 0x25dfdbff, {}, [@NFC_ATTR_SE_INDEX={0x8}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r10}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}, @NFC_ATTR_SE_INDEX={0x8, 0x15, 0xc0}]}, 0x44}, 0x1, 0x0, 0x0, 0x8810}, 0x20000094) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000040)=<r13=>0x0) (async)
r14 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r14, 0x0, &(0x7f00000000c0)=<r15=>0x0) (async)
r16 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r17 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r16)
sendmsg$NFC_CMD_DEV_UP(r16, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r17, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r15], 0x1c}}, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000100)=<r18=>0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000200)=<r19=>0x0)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x4c, r8, 0x2, 0x70bd27, 0x25dfdbfb, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r13}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r15}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r18}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r19}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000845}, 0x1) (async, rerun: 64)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="01000000800fe9df07000100ad6d65d6c2101fa3c1cc4eeee77a07f9b281b2190b80d2b0f942727c87af1074fad03b2e89bd3586e86738121e58a2e8c6ce2d94290a1224a01ead0e67ec7237cd584bb9eb452f6522cfbdcf8b6859b48529d42bb3dc42a30ddb9492f90a8604e28b9aa948c4cae7caa88cab2eb6903e6f08adcb4febf7b1a23e7f82a62a34660a2edab757f836", @ANYRES32=r2], 0x1c}}, 0x0) (async, rerun: 64)
close_range(r0, 0xffffffffffffffff, 0x0)
sendmsg$NL802154_CMD_NEW_SEC_KEY(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000001c0)={0x4c, 0x0, 0x405, 0x0, 0x0, {}, [@NL802154_ATTR_SEC_KEY={0x2c, 0x2e, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "f56b0bb50c4137d28be22635e2b4e25b"}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5}, @NL802154_KEY_ATTR_ID={0xc, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}]}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x4c}}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000005c0)={'wpan4\x00', <r20=>0x0})
sendmsg$NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x38, 0x0, 0x4, 0x70bd28, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r20}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000)

[ 1020.279285][T26041] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
11:56:12 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x0, &(0x7f0000001480)="0b7a946f71accb0def540463a6dd648a481f989e6bd1d33e5dc3ca050e9fde29542b14f72b46b17b0888ab04a0415841ce9ca487ee8760b0d3b1c12bb15f210af14a59fbaf1aa1b18e825bd6be9bdb0bb1d55ae9a156bdb9758b7d306cf496cd048ac22983215d5c7d0d506f969b9c0f4e6a9d5aeba93888f16afcd92c0c3175d5d596328aad679a2025bc146b7ceccfa537a6acfb6f3cb0087aded9cfc5f961b9c38ebc6db8ace401f1097e6a25da3d3182d4efb7d1f79fecc8acb1bace87b161087a27a26b196e761e7df18bc8521a6b9b7b0f0c73cbe872b1a078da500da9601cb12b8fedb54fb7a1c02775530e969f927fc3415d55f10feb", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

[ 1020.354554][T26385] No such timeout policy "syz0"
11:56:12 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup3(r0, r0, 0x80000)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000a00)={0x8, 0x7})
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x4001, 0x3, 0x2b8, 0x180, 0x0, 0x148, 0x0, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x88}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'lo\x00', {0x0, 0x0, 0x1ff, 0x0, 0x0, 0xed, 0x7}}}, @common=@inet=@multiport={{0x50}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)
dup(r0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:12 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000203000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:12 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup3(r0, r0, 0x80000)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000a00)={0x8, 0x7})
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x4001, 0x3, 0x2b8, 0x180, 0x0, 0x148, 0x0, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x88}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'lo\x00', {0x0, 0x0, 0x1ff, 0x0, 0x0, 0xed, 0x7}}}, @common=@inet=@multiport={{0x50}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:12 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
io_uring_setup(0x7efa, &(0x7f00000000c0)={0x0, 0x6668, 0x2, 0x3, 0x0, 0x0, r0})
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)
pipe(&(0x7f0000000080))
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
io_uring_setup(0x7efa, &(0x7f00000000c0)={0x0, 0x6668, 0x2, 0x3, 0x0, 0x0, r0}) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) (async)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1) (async)
pipe(&(0x7f0000000080)) (async)

[ 1020.446295][T26558] No such timeout policy "syz0"
11:56:12 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:13 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
dup3(r1, r0, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0x17)

11:56:13 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup3(r0, r0, 0x80000)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000a00)={0x8, 0x7})
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:13 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3) (async)
r5 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f00000000c0)=<r6=>0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r7)
sendmsg$NFC_CMD_DEV_UP(r7, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r6], 0x1c}}, 0x0) (async)
r9 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r9, 0x0, &(0x7f00000000c0)=<r10=>0x0)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r11)
sendmsg$NFC_CMD_DEV_UP(r11, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r12, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r10], 0x1c}}, 0x0) (async)
sendmsg$NFC_CMD_ENABLE_SE(r3, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x44, r4, 0x4, 0x70bd26, 0x25dfdbff, {}, [@NFC_ATTR_SE_INDEX={0x8}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r10}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}, @NFC_ATTR_SE_INDEX={0x8, 0x15, 0xc0}]}, 0x44}, 0x1, 0x0, 0x0, 0x8810}, 0x20000094)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000040)=<r13=>0x0) (async)
r14 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r14, 0x0, &(0x7f00000000c0)=<r15=>0x0) (async)
r16 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r17 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r16)
sendmsg$NFC_CMD_DEV_UP(r16, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r17, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r15], 0x1c}}, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000100)=<r18=>0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000200)=<r19=>0x0)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x4c, r8, 0x2, 0x70bd27, 0x25dfdbfb, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r13}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r15}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r18}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r19}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000845}, 0x1)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="01000000800fe9df07000100ad6d65d6c2101fa3c1cc4eeee77a07f9b281b2190b80d2b0f942727c87af1074fad03b2e89bd3586e86738121e58a2e8c6ce2d94290a1224a01ead0e67ec7237cd584bb9eb452f6522cfbdcf8b6859b48529d42bb3dc42a30ddb9492f90a8604e28b9aa948c4cae7caa88cab2eb6903e6f08adcb4febf7b1a23e7f82a62a34660a2edab757f836", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
sendmsg$NL802154_CMD_NEW_SEC_KEY(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000001c0)={0x4c, 0x0, 0x405, 0x0, 0x0, {}, [@NL802154_ATTR_SEC_KEY={0x2c, 0x2e, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "f56b0bb50c4137d28be22635e2b4e25b"}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5}, @NL802154_KEY_ATTR_ID={0xc, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}]}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x4c}}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000005c0)={'wpan4\x00', <r20=>0x0})
sendmsg$NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x38, 0x0, 0x4, 0x70bd28, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r20}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000)

11:56:13 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000204000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:13 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:13 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
io_uring_setup(0x7efa, &(0x7f00000000c0)={0x0, 0x6668, 0x2, 0x3, 0x0, 0x0, r0}) (async)
io_uring_setup(0x7efa, &(0x7f00000000c0)={0x0, 0x6668, 0x2, 0x3, 0x0, 0x0, r0})
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)
pipe(&(0x7f0000000080)) (async)
pipe(&(0x7f0000000080))

11:56:13 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup3(r0, r0, 0x80000)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000a00)={0x8, 0x7})
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:13 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, 0x0, &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:13 executing program 4:
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000008", @ANYRES32=<r0=>0xffffffffffffffff, @ANYBLOB='\x00\x00\x00\x00f\x00'])
ioctl$FIBMAP(r0, 0x1, &(0x7f00000000c0)=0x8)
r1 = io_uring_setup(0x4f01, &(0x7f0000000180))
close_range(r1, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r2=>r0, {0x2}}, './file0\x00'})
linkat(r2, &(0x7f0000000140)='./file0\x00', r0, &(0x7f0000000200)='./file0\x00', 0x1000)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r3, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)

11:56:13 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="01000000000000000000020f000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:13 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup3(r0, r0, 0x80000)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000a00)={0x8, 0x7})
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:13 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, 0x0, &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

[ 1020.831559][T26774] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
11:56:13 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, 0x0)

11:56:13 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="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", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
socket$qrtr(0x2a, 0x2, 0x0)

11:56:13 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
dup3(r0, r0, 0x80000)
syz_clone(0x80000, &(0x7f0000001480)="0b7a946f71accb0def540463a6dd648a481f989e6bd1d33e5dc3ca050e9fde29542b14f72b46b17b0888ab04a0415841ce9ca487ee8760b0d3b1c12bb15f210af14a59fbaf1aa1b18e825bd6be9bdb0bb1d55ae9a156bdb9758b7d306cf496cd048ac22983215d5c7d0d506f969b9c0f4e6a9d5aeba93888f16afcd92c0c3175d5d596328aad679a2025bc146b7ceccfa537a6acfb6f3cb0087aded9cfc5f961b9c38ebc6db8ace401f1097e6a25da3d3182d4efb7d1f79fecc8acb1bace87b161087a27a26b196e761e7df18bc8521a6b9b7b0f0c73cbe872b1a078da500da9601cb12b8fedb54fb7a1c02775530e969f927fc3415d55f10feb", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:13 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, 0x0, &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:13 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200030008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:13 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
dup3(r0, r0, 0x80000)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:13 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="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", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
socket$qrtr(0x2a, 0x2, 0x0)

11:56:13 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), 0x0, &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:14 executing program 4:
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000008", @ANYRES32=<r0=>0xffffffffffffffff, @ANYBLOB='\x00\x00\x00\x00f\x00'])
ioctl$FIBMAP(r0, 0x1, &(0x7f00000000c0)=0x8)
r1 = io_uring_setup(0x4f01, &(0x7f0000000180))
close_range(r1, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r2=>r0, {0x2}}, './file0\x00'})
linkat(r2, &(0x7f0000000140)='./file0\x00', r0, &(0x7f0000000200)='./file0\x00', 0x1000)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r3, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000008", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00f\x00']) (async)
ioctl$FIBMAP(r0, 0x1, &(0x7f00000000c0)=0x8) (async)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
close_range(r1, 0xffffffffffffffff, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) (async)
linkat(r2, &(0x7f0000000140)='./file0\x00', r0, &(0x7f0000000200)='./file0\x00', 0x1000) (async)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) (async)
readv(r3, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1) (async)

11:56:14 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="0100000000000000000002000f0008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:14 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
socket$inet_udplite(0x2, 0x2, 0x88)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:14 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), 0x0, &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:14 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="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", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)
socket$qrtr(0x2a, 0x2, 0x0)

11:56:14 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, 0x0)

11:56:14 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:14 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), 0x0, &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:14 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200020008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:14 executing program 4:
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000008", @ANYRES32=<r0=>0xffffffffffffffff, @ANYBLOB='\x00\x00\x00\x00f\x00'])
ioctl$FIBMAP(r0, 0x1, &(0x7f00000000c0)=0x8)
r1 = io_uring_setup(0x4f01, &(0x7f0000000180))
close_range(r1, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r2=>r0, {0x2}}, './file0\x00'})
linkat(r2, &(0x7f0000000140)='./file0\x00', r0, &(0x7f0000000200)='./file0\x00', 0x1000)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r3, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000008", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00f\x00']) (async)
ioctl$FIBMAP(r0, 0x1, &(0x7f00000000c0)=0x8) (async)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
close_range(r1, 0xffffffffffffffff, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) (async)
linkat(r2, &(0x7f0000000140)='./file0\x00', r0, &(0x7f0000000200)='./file0\x00', 0x1000) (async)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) (async)
readv(r3, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1) (async)

11:56:14 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
syz_clone(0x80000, &(0x7f0000001480)="0b7a946f71accb0def540463a6dd648a481f989e6bd1d33e5dc3ca050e9fde29542b14f72b46b17b0888ab04a0415841ce9ca487ee8760b0d3b1c12bb15f210af14a59fbaf1aa1b18e825bd6be9bdb0bb1d55ae9a156bdb9758b7d306cf496cd048ac22983215d5c7d0d506f969b9c0f4e6a9d5aeba93888f16afcd92c0c3175d5d596328aad679a2025bc146b7ceccfa537a6acfb6f3cb0087aded9cfc5f961b9c38ebc6db8ace401f1097e6a25da3d3182d4efb7d1f79fecc8acb1bace87b161087a27a26b196e761e7df18bc8521a6b9b7b0f0c73cbe872b1a078da500da9601cb12b8fedb54fb7a1c02775530e969f927fc3415d55f10feb", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:14 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0))
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r3, 0x0)
write$nci(r3, &(0x7f0000000000)=@NCI_OP_CORE_RESET_NTF={0x0, 0x0, 0x3, 0x0, 0x3, {0x33, 0xff, 0x0, 0x4, 0x81, 0x9}}, 0xc)
r4 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000200), 0x20200, 0x0)
write$P9_RWALK(r4, &(0x7f0000000340)={0x57, 0x6f, 0x2, {0x6, [{0x1, 0x0, 0x4}, {0x0, 0x4}, {0x8, 0x0, 0x3}, {0x0, 0x3, 0x6}, {0x40, 0x1, 0x8}, {0x4, 0x0, 0x3}]}}, 0x57)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2)
r6 = socket(0x10, 0x2, 0x0)
write(r6, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYRES32=r6, @ANYRES16=r5, @ANYBLOB="010000000000ff277b14000000020000209eff5a17", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r7)
r8 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000100), r2)
sendmsg$IEEE802154_SCAN_REQ(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x2c, r8, 0x2, 0x70bd29, 0x25dfdbfd, {}, [@IEEE802154_ATTR_SCAN_TYPE={0x5}, @IEEE802154_ATTR_SCAN_TYPE={0x5, 0x13, 0x40}, @IEEE802154_ATTR_SCAN_TYPE={0x5, 0x13, 0x6}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20058081}, 0x90)
close_range(r0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0)

11:56:14 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:14 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:14 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200030008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:14 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup3(r0, r0, 0x80000)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000a00)={0x8, 0x7})
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x4001, 0x3, 0x2b8, 0x180, 0x0, 0x148, 0x0, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x88}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'lo\x00', {0x0, 0x0, 0x1ff, 0x0, 0x0, 0xed, 0x7}}}, @common=@inet=@multiport={{0x50}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)
dup(r0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000e80)=@filter={'filter\x00', 0xe, 0x4, 0x3e0, 0xffffffff, 0x290, 0xd0, 0xd0, 0xffffffff, 0xffffffff, 0x348, 0x348, 0x348, 0xffffffff, 0x4, &(0x7f0000000e40), {[{{@uncond, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@unspec=@mark={{0x30}, {0x1ff, 0x7f, 0x1}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x4, 0x0, 0x2}, {0x4, 0x2, 0x2}, 0x1, 0x20e}}}, {{@ip={@initdev={0xac, 0x1e, 0x1, 0x0}, @empty, 0xff000000, 0xff, 'ip6gre0\x00', 'veth1_to_team\x00', {}, {}, 0x5e, 0x1, 0x59}, 0x0, 0x98, 0x1c0, 0x0, {}, [@common=@icmp={{0x28}, {0xb, "c383", 0x1}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x4, 'system_u:object_r:chfn_exec_t:s0\x00'}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x1f}, @remote, 0xff, 0xff, 'wg0\x00', 'batadv_slave_1\x00', {0xff}, {0xff}, 0x6c, 0x0, 0x1}, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x1000000, 'syz0\x00', {0x5}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x440)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xc, 0x8, &(0x7f00000012c0)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, 0x1, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2, 0x4}, 0x8, 0x10, &(0x7f0000000000)={0xffffffff, 0x7, 0x0, 0xfffffffe}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10)
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:14 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x80000, &(0x7f0000001480)="0b7a946f71accb0def540463a6dd648a481f989e6bd1d33e5dc3ca050e9fde29542b14f72b46b17b0888ab04a0415841ce9ca487ee8760b0d3b1c12bb15f210af14a59fbaf1aa1b18e825bd6be9bdb0bb1d55ae9a156bdb9758b7d306cf496cd048ac22983215d5c7d0d506f969b9c0f4e6a9d5aeba93888f16afcd92c0c3175d5d596328aad679a2025bc146b7ceccfa537a6acfb6f3cb0087aded9cfc5f961b9c38ebc6db8ace401f1097e6a25da3d3182d4efb7d1f79fecc8acb1bace87b161087a27a26b196e761e7df18bc8521a6b9b7b0f0c73cbe872b1a078da500da9601cb12b8fedb54fb7a1c02775530e969f927fc3415d55f10feb", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:14 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, 0x0)

11:56:14 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r1, 0xc0145401, &(0x7f0000000080)={0xffffffffffffffff, 0x2, 0x20b4, 0x2, 0xfffffff8})
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)

11:56:14 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
dup(0xffffffffffffffff)
set_mempolicy(0x3, &(0x7f00000003c0)=0x8000000000000001, 0xe0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:14 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200040008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:14 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:14 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0))
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r3, 0x0)
write$nci(r3, &(0x7f0000000000)=@NCI_OP_CORE_RESET_NTF={0x0, 0x0, 0x3, 0x0, 0x3, {0x33, 0xff, 0x0, 0x4, 0x81, 0x9}}, 0xc)
r4 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000200), 0x20200, 0x0)
write$P9_RWALK(r4, &(0x7f0000000340)={0x57, 0x6f, 0x2, {0x6, [{0x1, 0x0, 0x4}, {0x0, 0x4}, {0x8, 0x0, 0x3}, {0x0, 0x3, 0x6}, {0x40, 0x1, 0x8}, {0x4, 0x0, 0x3}]}}, 0x57)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2)
r6 = socket(0x10, 0x2, 0x0)
write(r6, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYRES32=r6, @ANYRES16=r5, @ANYBLOB="010000000000ff277b14000000020000209eff5a17", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r7)
r8 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000100), r2)
sendmsg$IEEE802154_SCAN_REQ(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x2c, r8, 0x2, 0x70bd29, 0x25dfdbfd, {}, [@IEEE802154_ATTR_SCAN_TYPE={0x5}, @IEEE802154_ATTR_SCAN_TYPE={0x5, 0x13, 0x40}, @IEEE802154_ATTR_SCAN_TYPE={0x5, 0x13, 0x6}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20058081}, 0x90)
close_range(r0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0) (async)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r3, 0x0) (async)
write$nci(r3, &(0x7f0000000000)=@NCI_OP_CORE_RESET_NTF={0x0, 0x0, 0x3, 0x0, 0x3, {0x33, 0xff, 0x0, 0x4, 0x81, 0x9}}, 0xc) (async)
openat$bsg(0xffffffffffffff9c, &(0x7f0000000200), 0x20200, 0x0) (async)
write$P9_RWALK(r4, &(0x7f0000000340)={0x57, 0x6f, 0x2, {0x6, [{0x1, 0x0, 0x4}, {0x0, 0x4}, {0x8, 0x0, 0x3}, {0x0, 0x3, 0x6}, {0x40, 0x1, 0x8}, {0x4, 0x0, 0x3}]}}, 0x57) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2) (async)
socket(0x10, 0x2, 0x0) (async)
write(r6, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYRES32=r6, @ANYRES16=r5, @ANYBLOB="010000000000ff277b14000000020000209eff5a17", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x0) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r7) (async)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000100), r2) (async)
sendmsg$IEEE802154_SCAN_REQ(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x2c, r8, 0x2, 0x70bd29, 0x25dfdbfd, {}, [@IEEE802154_ATTR_SCAN_TYPE={0x5}, @IEEE802154_ATTR_SCAN_TYPE={0x5, 0x13, 0x40}, @IEEE802154_ATTR_SCAN_TYPE={0x5, 0x13, 0x6}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20058081}, 0x90) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0) (async)

11:56:14 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup3(r0, r0, 0x80000)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000a00)={0x8, 0x7})
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x4001, 0x3, 0x2b8, 0x180, 0x0, 0x148, 0x0, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x88}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'lo\x00', {0x0, 0x0, 0x1ff, 0x0, 0x0, 0xed, 0x7}}}, @common=@inet=@multiport={{0x50}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)
r2 = dup(r0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000e80)=@filter={'filter\x00', 0xe, 0x4, 0x3e0, 0xffffffff, 0x290, 0xd0, 0xd0, 0xffffffff, 0xffffffff, 0x348, 0x348, 0x348, 0xffffffff, 0x4, &(0x7f0000000e40), {[{{@uncond, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@unspec=@mark={{0x30}, {0x1ff, 0x7f, 0x1}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x4, 0x0, 0x2}, {0x4, 0x2, 0x2}, 0x1, 0x20e}}}, {{@ip={@initdev={0xac, 0x1e, 0x1, 0x0}, @empty, 0xff000000, 0xff, 'ip6gre0\x00', 'veth1_to_team\x00', {}, {}, 0x5e, 0x1, 0x59}, 0x0, 0x98, 0x1c0, 0x0, {}, [@common=@icmp={{0x28}, {0xb, "c383", 0x1}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x4, 'system_u:object_r:chfn_exec_t:s0\x00'}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x1f}, @remote, 0xff, 0xff, 'wg0\x00', 'batadv_slave_1\x00', {0xff}, {0xff}, 0x6c, 0x0, 0x1}, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x1000000, 'syz0\x00', {0x5}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x440)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xc, 0x8, &(0x7f00000012c0)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, 0x1, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2, 0x4}, 0x8, 0x10, &(0x7f0000000000)={0xffffffff, 0x7, 0x0, 0xfffffffe}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r3}, 0x10)
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)
set_mempolicy(0x3, &(0x7f00000003c0)=0x8000000000000001, 0xe0)
syz_clone(0x80000, &(0x7f0000001480)="0b7a946f71accb0def540463a6dd648a481f989e6bd1d33e5dc3ca050e9fde29542b14f72b46b17b0888ab04a0415841ce9ca487ee8760b0d3b1c12bb15f210af14a59fbaf1aa1b18e825bd6be9bdb0bb1d55ae9a156bdb9758b7d306cf496cd048ac22983215d5c7d0d506f969b9c0f4e6a9d5aeba93888f16afcd92c0c3175d5d596328aad679a2025bc146b7ceccfa537a6acfb6f3cb0087aded9cfc5f961b9c38ebc6db8ace401f1097e6a25da3d3182d4efb7d1f79fecc8acb1bace87b161087a27a26b196e761e7df18bc8521a6b9b7b0f0c73cbe872b1a078da500da9601cb12b8fedb54fb7a1c02775530e969f927fc3415d55f10feb", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")
mlock(&(0x7f0000000000/0x11000)=nil, 0x11000)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000440)={0xffffffffffffffff, 0xe0, &(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0, 0x0, 0x0, 0x0, 0x8, 0x1, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0], 0x0, 0x8, &(0x7f0000000240)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000280), &(0x7f00000002c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000300)}}, 0x10)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000640)={0xffffffffffffffff, 0xfffffeb6, &(0x7f0000000740)={&(0x7f0000000840)=""/210, 0xde, <r5=>0x0, &(0x7f0000002140)=""/4089, 0x1000}}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000bc0)={'ip6gre0\x00', &(0x7f0000000b40)={'syztnl2\x00', r4, 0xdb9ffef01af65fdc, 0x89, 0xfd, 0xff, 0x10, @mcast2, @remote, 0x80, 0x40, 0x1000, 0x69}})
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1a, 0x0, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x20000005, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, &(0x7f0000000100)={0x3, 0x1}, 0x8, 0x10, &(0x7f0000000600)={0x105, 0x3, 0x6, 0x4cd}, 0x10, r5, 0xffffffffffffffff, 0x0, &(0x7f0000000980)}, 0x90)
mknodat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x8000, 0x0)

11:56:14 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:15 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="0100000000000000000002000f0008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:15 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:15 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup3(r0, r0, 0x80000)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000a00)={0x8, 0x7})
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x4001, 0x3, 0x2b8, 0x180, 0x0, 0x148, 0x0, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x88}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'lo\x00', {0x0, 0x0, 0x1ff, 0x0, 0x0, 0xed, 0x7}}}, @common=@inet=@multiport={{0x50}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)
r2 = dup(r0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000e80)=@filter={'filter\x00', 0xe, 0x4, 0x3e0, 0xffffffff, 0x290, 0xd0, 0xd0, 0xffffffff, 0xffffffff, 0x348, 0x348, 0x348, 0xffffffff, 0x4, &(0x7f0000000e40), {[{{@uncond, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@unspec=@mark={{0x30}, {0x1ff, 0x7f, 0x1}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x4, 0x0, 0x2}, {0x4, 0x2, 0x2}, 0x1, 0x20e}}}, {{@ip={@initdev={0xac, 0x1e, 0x1, 0x0}, @empty, 0xff000000, 0xff, 'ip6gre0\x00', 'veth1_to_team\x00', {}, {}, 0x5e, 0x1, 0x59}, 0x0, 0x98, 0x1c0, 0x0, {}, [@common=@icmp={{0x28}, {0xb, "c383", 0x1}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x4, 'system_u:object_r:chfn_exec_t:s0\x00'}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x1f}, @remote, 0xff, 0xff, 'wg0\x00', 'batadv_slave_1\x00', {0xff}, {0xff}, 0x6c, 0x0, 0x1}, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x1000000, 'syz0\x00', {0x5}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x440)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xc, 0x8, &(0x7f00000012c0)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, 0x1, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2, 0x4}, 0x8, 0x10, &(0x7f0000000000)={0xffffffff, 0x7, 0x0, 0xfffffffe}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r3}, 0x10)
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)
set_mempolicy(0x3, &(0x7f00000003c0)=0x8000000000000001, 0xe0)
syz_clone(0x80000, &(0x7f0000001480)="0b7a946f71accb0def540463a6dd648a481f989e6bd1d33e5dc3ca050e9fde29542b14f72b46b17b0888ab04a0415841ce9ca487ee8760b0d3b1c12bb15f210af14a59fbaf1aa1b18e825bd6be9bdb0bb1d55ae9a156bdb9758b7d306cf496cd048ac22983215d5c7d0d506f969b9c0f4e6a9d5aeba93888f16afcd92c0c3175d5d596328aad679a2025bc146b7ceccfa537a6acfb6f3cb0087aded9cfc5f961b9c38ebc6db8ace401f1097e6a25da3d3182d4efb7d1f79fecc8acb1bace87b161087a27a26b196e761e7df18bc8521a6b9b7b0f0c73cbe872b1a078da500da9601cb12b8fedb54fb7a1c02775530e969f927fc3415d55f10feb", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")
mlock(&(0x7f0000000000/0x11000)=nil, 0x11000)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000440)={0xffffffffffffffff, 0xe0, &(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0, 0x0, 0x0, 0x0, 0x8, 0x1, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0], 0x0, 0x8, &(0x7f0000000240)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000280), &(0x7f00000002c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000300)}}, 0x10)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000640)={0xffffffffffffffff, 0xfffffeb6, &(0x7f0000000740)={&(0x7f0000000840)=""/210, 0xde, <r5=>0x0, &(0x7f0000002140)=""/4089, 0x1000}}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000bc0)={'ip6gre0\x00', &(0x7f0000000b40)={'syztnl2\x00', r4, 0xdb9ffef01af65fdc, 0x89, 0xfd, 0xff, 0x10, @mcast2, @remote, 0x80, 0x40, 0x1000, 0x69}})
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1a, 0x0, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x20000005, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, &(0x7f0000000100)={0x3, 0x1}, 0x8, 0x10, &(0x7f0000000600)={0x105, 0x3, 0x6, 0x4cd}, 0x10, r5, 0xffffffffffffffff, 0x0, &(0x7f0000000980)}, 0x90)
mknodat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x8000, 0x0)
dup3(0xffffffffffffffff, r6, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000e00)={0xffffffffffffffff, 0xe0, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, &(0x7f00000012c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x8, 0x5, &(0x7f0000000700)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000940)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000c00)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x40, 0x10, &(0x7f0000000c40), &(0x7f0000000c80), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000cc0)}}, 0x10)
pipe2$watch_queue(&(0x7f00000009c0), 0x80)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)

11:56:15 executing program 5:
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:15 executing program 5:
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:15 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
close_range(r0, 0xffffffffffffffff, 0x0) (async)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r1, 0xc0145401, &(0x7f0000000080)={0xffffffffffffffff, 0x2, 0x20b4, 0x2, 0xfffffff8}) (async)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)

11:56:15 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000308000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:15 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup3(r0, r0, 0x80000)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000a00)={0x8, 0x7})
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x4001, 0x3, 0x2b8, 0x180, 0x0, 0x148, 0x0, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x88}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'lo\x00', {0x0, 0x0, 0x1ff, 0x0, 0x0, 0xed, 0x7}}}, @common=@inet=@multiport={{0x50}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)
r2 = dup(r0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000e80)=@filter={'filter\x00', 0xe, 0x4, 0x3e0, 0xffffffff, 0x290, 0xd0, 0xd0, 0xffffffff, 0xffffffff, 0x348, 0x348, 0x348, 0xffffffff, 0x4, &(0x7f0000000e40), {[{{@uncond, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@unspec=@mark={{0x30}, {0x1ff, 0x7f, 0x1}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x4, 0x0, 0x2}, {0x4, 0x2, 0x2}, 0x1, 0x20e}}}, {{@ip={@initdev={0xac, 0x1e, 0x1, 0x0}, @empty, 0xff000000, 0xff, 'ip6gre0\x00', 'veth1_to_team\x00', {}, {}, 0x5e, 0x1, 0x59}, 0x0, 0x98, 0x1c0, 0x0, {}, [@common=@icmp={{0x28}, {0xb, "c383", 0x1}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x4, 'system_u:object_r:chfn_exec_t:s0\x00'}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x1f}, @remote, 0xff, 0xff, 'wg0\x00', 'batadv_slave_1\x00', {0xff}, {0xff}, 0x6c, 0x0, 0x1}, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x1000000, 'syz0\x00', {0x5}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x440)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xc, 0x8, &(0x7f00000012c0)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, 0x1, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2, 0x4}, 0x8, 0x10, &(0x7f0000000000)={0xffffffff, 0x7, 0x0, 0xfffffffe}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r3}, 0x10)
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)
set_mempolicy(0x3, &(0x7f00000003c0)=0x8000000000000001, 0xe0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")
mlock(&(0x7f0000000000/0x11000)=nil, 0x11000)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000440)={0xffffffffffffffff, 0xe0, &(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0, 0x0, 0x0, 0x0, 0x8, 0x1, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0], 0x0, 0x8, &(0x7f0000000240)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000280), &(0x7f00000002c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000300)}}, 0x10)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000640)={0xffffffffffffffff, 0xfffffeb6, &(0x7f0000000740)={&(0x7f0000000840)=""/210, 0xde, <r5=>0x0, &(0x7f0000002140)=""/4089, 0x1000}}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000bc0)={'ip6gre0\x00', &(0x7f0000000b40)={'syztnl2\x00', r4, 0xdb9ffef01af65fdc, 0x89, 0xfd, 0xff, 0x10, @mcast2, @remote, 0x80, 0x40, 0x1000, 0x69}})
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1a, 0x0, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x20000005, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, &(0x7f0000000100)={0x3, 0x1}, 0x8, 0x10, &(0x7f0000000600)={0x105, 0x3, 0x6, 0x4cd}, 0x10, r5, 0xffffffffffffffff, 0x0, &(0x7f0000000980)}, 0x90)
mknodat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x8000, 0x0)
dup3(0xffffffffffffffff, r6, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000e00)={0xffffffffffffffff, 0xe0, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, &(0x7f00000012c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x8, 0x5, &(0x7f0000000700)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000940)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000c00)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x40, 0x10, &(0x7f0000000c40), &(0x7f0000000c80), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000cc0)}}, 0x10)
pipe2$watch_queue(&(0x7f00000009c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x80)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x1, 0x7, &(0x7f0000001640)=ANY=[@ANYBLOB="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"], &(0x7f0000000b00)='syzkaller\x00', 0xd2, 0x75, &(0x7f0000000480)=""/117, 0x40f00, 0x18a43b1c1cd4597f, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, &(0x7f00000006c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f00000005c0)={0x4, 0xb, 0x99, 0xfff}, 0x10, 0x0, r2, 0x0, &(0x7f0000000780)=[0xffffffffffffffff, 0xffffffffffffffff, r7, 0x1, 0xffffffffffffffff], 0x0, 0x10, 0xffffffff}, 0x90)

11:56:15 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r3, 0x0) (async)
write$nci(r3, &(0x7f0000000000)=@NCI_OP_CORE_RESET_NTF={0x0, 0x0, 0x3, 0x0, 0x3, {0x33, 0xff, 0x0, 0x4, 0x81, 0x9}}, 0xc)
r4 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000200), 0x20200, 0x0)
write$P9_RWALK(r4, &(0x7f0000000340)={0x57, 0x6f, 0x2, {0x6, [{0x1, 0x0, 0x4}, {0x0, 0x4}, {0x8, 0x0, 0x3}, {0x0, 0x3, 0x6}, {0x40, 0x1, 0x8}, {0x4, 0x0, 0x3}]}}, 0x57) (async, rerun: 64)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2) (async, rerun: 64)
r6 = socket(0x10, 0x2, 0x0)
write(r6, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYRES32=r6, @ANYRES16=r5, @ANYBLOB="010000000000ff277b14000000020000209eff5a17", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x0) (async)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r7)
r8 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000100), r2)
sendmsg$IEEE802154_SCAN_REQ(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x2c, r8, 0x2, 0x70bd29, 0x25dfdbfd, {}, [@IEEE802154_ATTR_SCAN_TYPE={0x5}, @IEEE802154_ATTR_SCAN_TYPE={0x5, 0x13, 0x40}, @IEEE802154_ATTR_SCAN_TYPE={0x5, 0x13, 0x6}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20058081}, 0x90) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0)

11:56:15 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:15 executing program 5:
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:15 executing program 5:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:15 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup3(r0, r0, 0x80000)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000a00)={0x8, 0x7})
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x4001, 0x3, 0x2b8, 0x180, 0x0, 0x148, 0x0, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x88}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'lo\x00', {0x0, 0x0, 0x1ff, 0x0, 0x0, 0xed, 0x7}}}, @common=@inet=@multiport={{0x50}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)
r2 = dup(r0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000e80)=@filter={'filter\x00', 0xe, 0x4, 0x3e0, 0xffffffff, 0x290, 0xd0, 0xd0, 0xffffffff, 0xffffffff, 0x348, 0x348, 0x348, 0xffffffff, 0x4, &(0x7f0000000e40), {[{{@uncond, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@unspec=@mark={{0x30}, {0x1ff, 0x7f, 0x1}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x4, 0x0, 0x2}, {0x4, 0x2, 0x2}, 0x1, 0x20e}}}, {{@ip={@initdev={0xac, 0x1e, 0x1, 0x0}, @empty, 0xff000000, 0xff, 'ip6gre0\x00', 'veth1_to_team\x00', {}, {}, 0x5e, 0x1, 0x59}, 0x0, 0x98, 0x1c0, 0x0, {}, [@common=@icmp={{0x28}, {0xb, "c383", 0x1}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x4, 'system_u:object_r:chfn_exec_t:s0\x00'}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x1f}, @remote, 0xff, 0xff, 'wg0\x00', 'batadv_slave_1\x00', {0xff}, {0xff}, 0x6c, 0x0, 0x1}, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x1000000, 'syz0\x00', {0x5}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x440)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xc, 0x8, &(0x7f00000012c0)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, 0x1, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2, 0x4}, 0x8, 0x10, &(0x7f0000000000)={0xffffffff, 0x7, 0x0, 0xfffffffe}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r3}, 0x10)
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)
set_mempolicy(0x3, &(0x7f00000003c0)=0x8000000000000001, 0xe0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")
mlock(&(0x7f0000000000/0x11000)=nil, 0x11000)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000440)={0xffffffffffffffff, 0xe0, &(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0, 0x0, 0x0, 0x0, 0x8, 0x1, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0], 0x0, 0x8, &(0x7f0000000240)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000280), &(0x7f00000002c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000300)}}, 0x10)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000640)={0xffffffffffffffff, 0xfffffeb6, &(0x7f0000000740)={&(0x7f0000000840)=""/210, 0xde, <r5=>0x0, &(0x7f0000002140)=""/4089, 0x1000}}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000bc0)={'ip6gre0\x00', &(0x7f0000000b40)={'syztnl2\x00', r4, 0xdb9ffef01af65fdc, 0x89, 0xfd, 0xff, 0x10, @mcast2, @remote, 0x80, 0x40, 0x1000, 0x69}})
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1a, 0x0, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x20000005, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, &(0x7f0000000100)={0x3, 0x1}, 0x8, 0x10, &(0x7f0000000600)={0x105, 0x3, 0x6, 0x4cd}, 0x10, r5, 0xffffffffffffffff, 0x0, &(0x7f0000000980)}, 0x90)
mknodat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x8000, 0x0)
dup3(0xffffffffffffffff, r6, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000e00)={0xffffffffffffffff, 0xe0, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, &(0x7f00000012c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x8, 0x5, &(0x7f0000000700)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000940)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000c00)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x40, 0x10, &(0x7f0000000c40), &(0x7f0000000c80), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000cc0)}}, 0x10)
pipe2$watch_queue(&(0x7f00000009c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x80)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x1, 0x7, &(0x7f0000001640)=ANY=[@ANYBLOB="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"], &(0x7f0000000b00)='syzkaller\x00', 0xd2, 0x75, &(0x7f0000000480)=""/117, 0x40f00, 0x18a43b1c1cd4597f, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, &(0x7f00000006c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f00000005c0)={0x4, 0xb, 0x99, 0xfff}, 0x10, 0x0, r2, 0x0, &(0x7f0000000780)=[0xffffffffffffffff, 0xffffffffffffffff, r7, 0x1, 0xffffffffffffffff], 0x0, 0x10, 0xffffffff}, 0x90)
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000000100)={0x88, 0x7ff, 0xcf, 0xb, 0xfff})

11:56:15 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
close_range(r0, 0xffffffffffffffff, 0x0) (async)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r1, 0xc0145401, &(0x7f0000000080)={0xffffffffffffffff, 0x2, 0x20b4, 0x2, 0xfffffff8})
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)

11:56:15 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000f08000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:15 executing program 5:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:15 executing program 5:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:15 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)={0x40, r1, 0x601, 0x0, 0x0, {}, [@TIPC_NLA_LINK={0x2c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7f}, @TIPC_NLA_PROP_PRIO={0x8, 0x5}]}]}]}, 0x40}}, 0x0)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000002c0)={&(0x7f0000000400)={0x1b4, r1, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x4}, @TIPC_NLA_LINK={0x38, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffff8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8d2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfff}]}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7f}]}, @TIPC_NLA_NET={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x10001}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3f}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x1}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x3}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x101}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x40}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7f}]}, @TIPC_NLA_BEARER={0xc4, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'macsec0\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x40, @private0={0xfc, 0x0, '\x00', 0x1}, 0x5}}}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'syz_tun\x00'}}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}]}, @TIPC_NLA_BEARER_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8b07}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xde8f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xd148}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}]}]}, @TIPC_NLA_LINK={0x40, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}]}]}, 0x1b4}, 0x1, 0x0, 0x0, 0x40080}, 0x20008000)
fsync(0xffffffffffffffff)
r2 = io_uring_setup(0x117, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x2})
close_range(r2, 0xffffffffffffffff, 0x0)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r3, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r4, 0x0)
openat$cgroup_ro(r4, &(0x7f00000000c0)='blkio.bfq.io_merged_recursive\x00', 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_STATUS(r4, 0x84, 0xe, &(0x7f0000000200)={0x0, 0x8, 0x3, 0x8000, 0x3, 0x0, 0x357a, 0x7ff, {0x0, @in6={{0xa, 0x4e21, 0x8, @mcast2, 0x3}}, 0x7, 0xffff80f8, 0x7ff, 0x3ff, 0x8}}, &(0x7f0000000100)=0xb0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0xa, 0x0, 0x0)
r5 = socket(0x10, 0x2, 0x0)
write(r5, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
ioctl$sock_inet_udp_SIOCINQ(r5, 0x541b, &(0x7f0000000080))

11:56:15 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup3(r0, r0, 0x80000)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000a00)={0x8, 0x7})
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x4001, 0x3, 0x2b8, 0x180, 0x0, 0x148, 0x0, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x88}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'lo\x00', {0x0, 0x0, 0x1ff, 0x0, 0x0, 0xed, 0x7}}}, @common=@inet=@multiport={{0x50}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)
r2 = dup(r0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000e80)=@filter={'filter\x00', 0xe, 0x4, 0x3e0, 0xffffffff, 0x290, 0xd0, 0xd0, 0xffffffff, 0xffffffff, 0x348, 0x348, 0x348, 0xffffffff, 0x4, &(0x7f0000000e40), {[{{@uncond, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@unspec=@mark={{0x30}, {0x1ff, 0x7f, 0x1}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x4, 0x0, 0x2}, {0x4, 0x2, 0x2}, 0x1, 0x20e}}}, {{@ip={@initdev={0xac, 0x1e, 0x1, 0x0}, @empty, 0xff000000, 0xff, 'ip6gre0\x00', 'veth1_to_team\x00', {}, {}, 0x5e, 0x1, 0x59}, 0x0, 0x98, 0x1c0, 0x0, {}, [@common=@icmp={{0x28}, {0xb, "c383", 0x1}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x4, 'system_u:object_r:chfn_exec_t:s0\x00'}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x1f}, @remote, 0xff, 0xff, 'wg0\x00', 'batadv_slave_1\x00', {0xff}, {0xff}, 0x6c, 0x0, 0x1}, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x1000000, 'syz0\x00', {0x5}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x440)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xc, 0x8, &(0x7f00000012c0)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, 0x1, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2, 0x4}, 0x8, 0x10, &(0x7f0000000000)={0xffffffff, 0x7, 0x0, 0xfffffffe}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r3}, 0x10)
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)
set_mempolicy(0x3, &(0x7f00000003c0)=0x8000000000000001, 0xe0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")
mlock(&(0x7f0000000000/0x11000)=nil, 0x11000)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000440)={0xffffffffffffffff, 0xe0, &(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0, 0x0, 0x0, 0x0, 0x8, 0x1, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0], 0x0, 0x8, &(0x7f0000000240)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000280), &(0x7f00000002c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000300)}}, 0x10)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000640)={0xffffffffffffffff, 0xfffffeb6, &(0x7f0000000740)={&(0x7f0000000840)=""/210, 0xde, <r5=>0x0, &(0x7f0000002140)=""/4089, 0x1000}}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000bc0)={'ip6gre0\x00', &(0x7f0000000b40)={'syztnl2\x00', r4, 0xdb9ffef01af65fdc, 0x89, 0xfd, 0xff, 0x10, @mcast2, @remote, 0x80, 0x40, 0x1000, 0x69}})
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1a, 0x0, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x20000005, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, &(0x7f0000000100)={0x3, 0x1}, 0x8, 0x10, &(0x7f0000000600)={0x105, 0x3, 0x6, 0x4cd}, 0x10, r5, 0xffffffffffffffff, 0x0, &(0x7f0000000980)}, 0x90)
mknodat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x8000, 0x0)
dup3(0xffffffffffffffff, r6, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000e00)={0xffffffffffffffff, 0xe0, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, &(0x7f00000012c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x8, 0x5, &(0x7f0000000700)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000940)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000c00)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x40, 0x10, &(0x7f0000000c40), &(0x7f0000000c80), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000cc0)}}, 0x10)
pipe2$watch_queue(&(0x7f00000009c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x80)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x1, 0x7, &(0x7f0000001640)=ANY=[@ANYBLOB="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"], &(0x7f0000000b00)='syzkaller\x00', 0xd2, 0x75, &(0x7f0000000480)=""/117, 0x40f00, 0x18a43b1c1cd4597f, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, &(0x7f00000006c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f00000005c0)={0x4, 0xb, 0x99, 0xfff}, 0x10, 0x0, r2, 0x0, &(0x7f0000000780)=[0xffffffffffffffff, 0xffffffffffffffff, r7, 0x1, 0xffffffffffffffff], 0x0, 0x10, 0xffffffff}, 0x90)
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000000100)={0x88, 0x7ff, 0xcf, 0xb, 0xfff})
r8 = shmget$private(0x0, 0x1000, 0x54001800, &(0x7f0000004000/0x1000)=nil)
shmat(r8, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffcfff)

11:56:15 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000208000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:16 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0xe, &(0x7f0000000740)={0x3, 0x0, &(0x7f0000000680)=[{&(0x7f0000000200)=""/115, 0x73}, {&(0x7f0000000100)=""/27, 0x1b}, {&(0x7f0000000280)=""/219, 0xdb}, {&(0x7f0000000440)=""/194, 0xc2}, {&(0x7f0000000380)=""/16, 0x10}, {&(0x7f00000003c0)=""/7, 0x7}, {&(0x7f0000000540)=""/55, 0x37}, {&(0x7f0000000580)=""/252, 0xfc}], &(0x7f0000000700)=[0x8], 0x8}, 0x20)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1}, './file0\x00'})
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, &(0x7f0000000780), &(0x7f00000007c0)='./file0\x00', 0x8, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRESHEX=r0, @ANYBLOB="010000eaff000000010200000018000100695f", @ANYRES32=r3], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:16 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:16 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:16 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup3(r0, r0, 0x80000)
ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000a00)={0x8, 0x7})
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x4001, 0x3, 0x2b8, 0x180, 0x0, 0x148, 0x0, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x88}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'lo\x00', {0x0, 0x0, 0x1ff, 0x0, 0x0, 0xed, 0x7}}}, @common=@inet=@multiport={{0x50}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)
r2 = dup(r0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000e80)=@filter={'filter\x00', 0xe, 0x4, 0x3e0, 0xffffffff, 0x290, 0xd0, 0xd0, 0xffffffff, 0xffffffff, 0x348, 0x348, 0x348, 0xffffffff, 0x4, &(0x7f0000000e40), {[{{@uncond, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@unspec=@mark={{0x30}, {0x1ff, 0x7f, 0x1}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x4, 0x0, 0x2}, {0x4, 0x2, 0x2}, 0x1, 0x20e}}}, {{@ip={@initdev={0xac, 0x1e, 0x1, 0x0}, @empty, 0xff000000, 0xff, 'ip6gre0\x00', 'veth1_to_team\x00', {}, {}, 0x5e, 0x1, 0x59}, 0x0, 0x98, 0x1c0, 0x0, {}, [@common=@icmp={{0x28}, {0xb, "c383", 0x1}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x4, 'system_u:object_r:chfn_exec_t:s0\x00'}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x1f}, @remote, 0xff, 0xff, 'wg0\x00', 'batadv_slave_1\x00', {0xff}, {0xff}, 0x6c, 0x0, 0x1}, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x1000000, 'syz0\x00', {0x5}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x440)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xc, 0x8, &(0x7f00000012c0)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, 0x1, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2, 0x4}, 0x8, 0x10, &(0x7f0000000000)={0xffffffff, 0x7, 0x0, 0xfffffffe}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r3}, 0x10)
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)
set_mempolicy(0x3, &(0x7f00000003c0)=0x8000000000000001, 0xe0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")
mlock(&(0x7f0000000000/0x11000)=nil, 0x11000)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000440)={0xffffffffffffffff, 0xe0, &(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0, 0x0, 0x0, 0x0, 0x8, 0x1, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0], 0x0, 0x8, &(0x7f0000000240)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000280), &(0x7f00000002c0), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000300)}}, 0x10)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000640)={0xffffffffffffffff, 0xfffffeb6, &(0x7f0000000740)={&(0x7f0000000840)=""/210, 0xde, <r5=>0x0, &(0x7f0000002140)=""/4089, 0x1000}}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000bc0)={'ip6gre0\x00', &(0x7f0000000b40)={'syztnl2\x00', r4, 0xdb9ffef01af65fdc, 0x89, 0xfd, 0xff, 0x10, @mcast2, @remote, 0x80, 0x40, 0x1000, 0x69}})
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1a, 0x0, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x20000005, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, &(0x7f0000000100)={0x3, 0x1}, 0x8, 0x10, &(0x7f0000000600)={0x105, 0x3, 0x6, 0x4cd}, 0x10, r5, 0xffffffffffffffff, 0x0, &(0x7f0000000980)}, 0x90)
mknodat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x8000, 0x0)
dup3(0xffffffffffffffff, r6, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000e00)={0xffffffffffffffff, 0xe0, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, &(0x7f00000012c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x8, 0x5, &(0x7f0000000700)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000940)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000c00)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x40, 0x10, &(0x7f0000000c40), &(0x7f0000000c80), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000cc0)}}, 0x10)
pipe2$watch_queue(&(0x7f00000009c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x80)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x1, 0x7, &(0x7f0000001640)=ANY=[@ANYBLOB="1800203633115ede3dbda8400100000018636a090000008920637b5100000a0000000000000000000000185100000000000000000000009c5a3311bff72c3ea7ae55d4ff6bc6e5f7f40984c379a6fd448b6446ba764bbc57d0fb34ce73e331339d11f2ff5e7d1f85cc695384278db268a41d6b670e3ca719fe29cc7bb7ced90a9c655b518e76c85fc7c6b5b707d38695788e9abdc6d673b10f000000000000008000000000000000000000000000000000007d9dd0be06505d2e0de45d9560d9f03b736a0aefed0d0d35e338af57950aa494c5d9866ef8070ff458bbe84918b0cffa5776f413331592a266ce62a6bfcd192092fe680c2226e55064ed54286f712d5461a9704e8c3f3a5da9f4642d5a19871dfb343f1e30b4412ebdefd07f9ebd8b360c9c35c10866b33a74da383d2b1178b44e3a5a43d95257b7e27df11304994b20be66454cc13fb0a0ac4330674d71a789a697ec4abe3effed1ec8c9dc924adbdb53b2ed89df9a85d2c7d0d9a427969f72a54c52239a9e35771f74b4dfb5c8905557b94226f944a7d11793721fa6dbb3326a90d31d4fb80d32a46b16dea9e25e346a031e0acbc39065d0feb27090c697f8a71495650cba8a5763572dfd50a479dddc2848c5911a7c2fcaced300aa7bbe56cc45362a5589fffe727eee9c79113a8ced2e5ae1915fc875956ef12b413e6809a8a2c97d6e4be3c90604bc5713f90f6a587b9b54c32133a430f79cab1aeb6aa59e5ac8102bb66394b1fc7d3551b93abe6592b951b35e2832f649a833f80dd364e4bb660c23d51eb7f84fc118ad652fd492850a002d8b235423c22a41f7e192e4212c02810fb85f57ccec8028a1a55bd73a719b73829473af47017b1f74f48fb30dab969c653fa7070000f95a03a426c4d296bac3901d8c5b30362c46bbb8946e5b447e4bee503e302c63120a6a18ba1bccb27a3db7cc957a08bea02ac170e1b7b263bdfcdea639a588e6343e6a825b0df9ccccf3c57acf7566c62a5dbe8f803f804ac183c21965bbfce6628e84beffceac3e9c58118567b3bf706564bc32d5cf292d90c10d86e5ef58ef1de71386f07a903db37aca79a4636ff78648e7ea0cd7a50c6e28c8805dbce2aad9f62f790016ad266685de0700704abe5fbe0bbbd8469470b2ed6c8228f6c6f6d9c3d2513f95a6de34003ab50223f784be14c3c3745ec96325eba2bdef534f8cd505df84b27c2997427d386b48f79f4b9725d5035cf6d9a539dad123059f1a8dacf74862ba8d2fd290f6257cd46a4e8526d4c9a67379530d1095829dac3111ef78e3c363a2c1786fedb8e75c39a9f93c7d7ce69e630e718d3c279b522d4a322a"], &(0x7f0000000b00)='syzkaller\x00', 0xd2, 0x75, &(0x7f0000000480)=""/117, 0x40f00, 0x18a43b1c1cd4597f, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, &(0x7f00000006c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f00000005c0)={0x4, 0xb, 0x99, 0xfff}, 0x10, 0x0, r2, 0x0, &(0x7f0000000780)=[0xffffffffffffffff, 0xffffffffffffffff, r7, 0x1, 0xffffffffffffffff], 0x0, 0x10, 0xffffffff}, 0x90)
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000000100)={0x88, 0x7ff, 0xcf, 0xb, 0xfff})
r8 = shmget$private(0x0, 0x1000, 0x54001800, &(0x7f0000004000/0x1000)=nil)
shmat(r8, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffcfff)

11:56:16 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000308000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:16 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0xe, &(0x7f0000000740)={0x3, 0x0, &(0x7f0000000680)=[{&(0x7f0000000200)=""/115, 0x73}, {&(0x7f0000000100)=""/27, 0x1b}, {&(0x7f0000000280)=""/219, 0xdb}, {&(0x7f0000000440)=""/194, 0xc2}, {&(0x7f0000000380)=""/16, 0x10}, {&(0x7f00000003c0)=""/7, 0x7}, {&(0x7f0000000540)=""/55, 0x37}, {&(0x7f0000000580)=""/252, 0xfc}], &(0x7f0000000700)=[0x8], 0x8}, 0x20) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1}, './file0\x00'})
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, &(0x7f0000000780), &(0x7f00000007c0)='./file0\x00', 0x8, 0x0) (async, rerun: 64)
io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) (async, rerun: 64)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRESHEX=r0, @ANYBLOB="010000eaff000000010200000018000100695f", @ANYRES32=r3], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:16 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)={0x40, r1, 0x601, 0x0, 0x0, {}, [@TIPC_NLA_LINK={0x2c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7f}, @TIPC_NLA_PROP_PRIO={0x8, 0x5}]}]}]}, 0x40}}, 0x0)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000002c0)={&(0x7f0000000400)={0x1b4, r1, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x4}, @TIPC_NLA_LINK={0x38, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffff8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8d2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfff}]}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7f}]}, @TIPC_NLA_NET={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x10001}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3f}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x1}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x3}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x101}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x40}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7f}]}, @TIPC_NLA_BEARER={0xc4, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'macsec0\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x40, @private0={0xfc, 0x0, '\x00', 0x1}, 0x5}}}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'syz_tun\x00'}}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}]}, @TIPC_NLA_BEARER_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8b07}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xde8f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xd148}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}]}]}, @TIPC_NLA_LINK={0x40, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}]}]}, 0x1b4}, 0x1, 0x0, 0x0, 0x40080}, 0x20008000)
fsync(0xffffffffffffffff) (async)
r2 = io_uring_setup(0x117, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x2})
close_range(r2, 0xffffffffffffffff, 0x0) (async)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r3, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1) (async)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r4, 0x0) (async, rerun: 32)
openat$cgroup_ro(r4, &(0x7f00000000c0)='blkio.bfq.io_merged_recursive\x00', 0x0, 0x0) (async, rerun: 32)
getsockopt$inet_sctp6_SCTP_STATUS(r4, 0x84, 0xe, &(0x7f0000000200)={0x0, 0x8, 0x3, 0x8000, 0x3, 0x0, 0x357a, 0x7ff, {0x0, @in6={{0xa, 0x4e21, 0x8, @mcast2, 0x3}}, 0x7, 0xffff80f8, 0x7ff, 0x3ff, 0x8}}, &(0x7f0000000100)=0xb0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0xa, 0x0, 0x0)
r5 = socket(0x10, 0x2, 0x0)
write(r5, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
ioctl$sock_inet_udp_SIOCINQ(r5, 0x541b, &(0x7f0000000080))

11:56:16 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480)="0b7a946f71accb0def540463a6dd648a481f989e6bd1d33e5dc3ca050e9fde29542b14f72b46b17b0888ab04a0415841ce9ca487ee8760b0d3b1c12bb15f210af14a59fbaf1aa1b18e825bd6be9bdb0bb1d55ae9a156bdb9758b7d306cf496cd048ac22983215d5c7d0d506f969b9c0f4e6a9d5aeba93888f16afcd92c0c3175d5d596328aad679a2025bc146b7ceccfa537a6acfb6f3cb0087aded9cfc5f961b9c38ebc6db8ace401f1097e6a25da3d3182d4efb7d1f79fecc8acb1bace87b161087a27a26b196e761e7df18bc8521a6b9b7b0f0c73cbe872b1a078da500da9601cb12b8fedb54fb7a1c02775530e969f927fc3415d55f10feb", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:16 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:16 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000408000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:16 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0xe, &(0x7f0000000740)={0x3, 0x0, &(0x7f0000000680)=[{&(0x7f0000000200)=""/115, 0x73}, {&(0x7f0000000100)=""/27, 0x1b}, {&(0x7f0000000280)=""/219, 0xdb}, {&(0x7f0000000440)=""/194, 0xc2}, {&(0x7f0000000380)=""/16, 0x10}, {&(0x7f00000003c0)=""/7, 0x7}, {&(0x7f0000000540)=""/55, 0x37}, {&(0x7f0000000580)=""/252, 0xfc}], &(0x7f0000000700)=[0x8], 0x8}, 0x20) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1}, './file0\x00'})
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, &(0x7f0000000780), &(0x7f00000007c0)='./file0\x00', 0x8, 0x0) (async)
io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r3=>0x0) (async)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4) (async)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRESHEX=r0, @ANYBLOB="010000eaff000000010200000018000100695f", @ANYRES32=r3], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:16 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)={0x40, r1, 0x601, 0x0, 0x0, {}, [@TIPC_NLA_LINK={0x2c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7f}, @TIPC_NLA_PROP_PRIO={0x8, 0x5}]}]}]}, 0x40}}, 0x0)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000002c0)={&(0x7f0000000400)={0x1b4, r1, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x4}, @TIPC_NLA_LINK={0x38, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffff8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8d2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfff}]}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7f}]}, @TIPC_NLA_NET={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x10001}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3f}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x1}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x3}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x101}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x40}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7f}]}, @TIPC_NLA_BEARER={0xc4, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'macsec0\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x40, @private0={0xfc, 0x0, '\x00', 0x1}, 0x5}}}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'syz_tun\x00'}}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}]}, @TIPC_NLA_BEARER_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8b07}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xde8f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xd148}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}]}]}, @TIPC_NLA_LINK={0x40, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}]}]}, 0x1b4}, 0x1, 0x0, 0x0, 0x40080}, 0x20008000)
fsync(0xffffffffffffffff)
r2 = io_uring_setup(0x117, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x2})
close_range(r2, 0xffffffffffffffff, 0x0)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r3, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r4, 0x0)
openat$cgroup_ro(r4, &(0x7f00000000c0)='blkio.bfq.io_merged_recursive\x00', 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_STATUS(r4, 0x84, 0xe, &(0x7f0000000200)={0x0, 0x8, 0x3, 0x8000, 0x3, 0x0, 0x357a, 0x7ff, {0x0, @in6={{0xa, 0x4e21, 0x8, @mcast2, 0x3}}, 0x7, 0xffff80f8, 0x7ff, 0x3ff, 0x8}}, &(0x7f0000000100)=0xb0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0xa, 0x0, 0x0)
r5 = socket(0x10, 0x2, 0x0)
write(r5, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
ioctl$sock_inet_udp_SIOCINQ(r5, 0x541b, &(0x7f0000000080))
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)={0x40, r1, 0x601, 0x0, 0x0, {}, [@TIPC_NLA_LINK={0x2c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7f}, @TIPC_NLA_PROP_PRIO={0x8, 0x5}]}]}]}, 0x40}}, 0x0) (async)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000002c0)={&(0x7f0000000400)={0x1b4, r1, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x4}, @TIPC_NLA_LINK={0x38, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffff8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8d2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfff}]}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7f}]}, @TIPC_NLA_NET={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x10001}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3f}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x1}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x3}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x101}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x40}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7f}]}, @TIPC_NLA_BEARER={0xc4, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'macsec0\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x40, @private0={0xfc, 0x0, '\x00', 0x1}, 0x5}}}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'syz_tun\x00'}}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}]}, @TIPC_NLA_BEARER_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8b07}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xde8f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xd148}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}]}]}, @TIPC_NLA_LINK={0x40, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}]}]}, 0x1b4}, 0x1, 0x0, 0x0, 0x40080}, 0x20008000) (async)
fsync(0xffffffffffffffff) (async)
io_uring_setup(0x117, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x2}) (async)
close_range(r2, 0xffffffffffffffff, 0x0) (async)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) (async)
readv(r3, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0) (async)
write$binfmt_script(r4, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r4, 0x0) (async)
openat$cgroup_ro(r4, &(0x7f00000000c0)='blkio.bfq.io_merged_recursive\x00', 0x0, 0x0) (async)
getsockopt$inet_sctp6_SCTP_STATUS(r4, 0x84, 0xe, &(0x7f0000000200)={0x0, 0x8, 0x3, 0x8000, 0x3, 0x0, 0x357a, 0x7ff, {0x0, @in6={{0xa, 0x4e21, 0x8, @mcast2, 0x3}}, 0x7, 0xffff80f8, 0x7ff, 0x3ff, 0x8}}, &(0x7f0000000100)=0xb0) (async)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0xa, 0x0, 0x0) (async)
socket(0x10, 0x2, 0x0) (async)
write(r5, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
ioctl$sock_inet_udp_SIOCINQ(r5, 0x541b, &(0x7f0000000080)) (async)

11:56:16 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:16 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:16 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:16 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000f08000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:16 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r4, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f0000000000))
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r4, 0x7, &(0x7f0000000040)=r4, 0x1)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:16 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:16 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x4000, 0x2})
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r1, &(0x7f00000004c0)=[{&(0x7f0000000080)=""/187, 0xbb}, {&(0x7f0000000200)=""/113, 0x71}, {&(0x7f0000000280)=""/97, 0x61}, {&(0x7f0000000300)=""/102, 0x66}, {&(0x7f0000000400)=""/158, 0x9e}], 0x5)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000540)={{0x3, 0x2, 0x4, 0x0, 0x9}})
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000380)={0x3, &(0x7f0000000140)=[{0x1, 0x40, 0x81, 0x4}, {0x4, 0x1, 0x0, 0x3}, {0x1, 0xd3, 0x3, 0x967b}]}, 0x10)

11:56:16 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480)="0b7a946f71accb0def540463a6dd648a481f989e6bd1d33e5dc3ca050e9fde29542b14f72b46b17b0888ab04a0415841ce9ca487ee8760b0d3b1c12bb15f210af14a59fbaf1aa1b18e825bd6be9bdb0bb1d55ae9a156bdb9758b7d306cf496cd048ac22983215d5c7d0d506f969b9c0f4e6a9d5aeba93888f16afcd92c0c3175d5d596328aad679a2025bc146b7ceccfa537a6acfb6f3cb0087aded9cfc5f961b9c38ebc6db8ace401f1097e6a25da3d3182d4efb7d1f79fecc8acb1bace87b161087a27a26b196e761e7df18bc8521a6b9b7b0f0c73cbe872b1a078da500da9601cb12b8fedb54fb7a1c02775530e969f927fc3415d55f10feb", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:16 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008040000", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:16 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:16 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:16 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r4, 0x0) (async, rerun: 32)
ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f0000000000)) (async, rerun: 32)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r4, 0x7, &(0x7f0000000040)=r4, 0x1) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:16 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008060000", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:16 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x4000, 0x2})
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r1, &(0x7f00000004c0)=[{&(0x7f0000000080)=""/187, 0xbb}, {&(0x7f0000000200)=""/113, 0x71}, {&(0x7f0000000280)=""/97, 0x61}, {&(0x7f0000000300)=""/102, 0x66}, {&(0x7f0000000400)=""/158, 0x9e}], 0x5) (async)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1) (async)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000540)={{0x3, 0x2, 0x4, 0x0, 0x9}}) (async)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000380)={0x3, &(0x7f0000000140)=[{0x1, 0x40, 0x81, 0x4}, {0x4, 0x1, 0x0, 0x3}, {0x1, 0xd3, 0x3, 0x967b}]}, 0x10)

[ 1024.101361][T28475] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
11:56:16 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:16 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r4, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f0000000000))
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r4, 0x7, &(0x7f0000000040)=r4, 0x1) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:16 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480)="0b7a946f71accb0def540463a6dd648a481f989e6bd1d33e5dc3ca050e9fde29542b14f72b46b17b0888ab04a0415841ce9ca487ee8760b0d3b1c12bb15f210af14a59fbaf1aa1b18e825bd6be9bdb0bb1d55ae9a156bdb9758b7d306cf496cd048ac22983215d5c7d0d506f969b9c0f4e6a9d5aeba93888f16afcd92c0c3175d5d596328aad679a2025bc146b7ceccfa537a6acfb6f3cb0087aded9cfc5f961b9c38ebc6db8ace401f1097e6a25da3d3182d4efb7d1f79fecc8acb1bace87b161087a27a26b196e761e7df18bc8521a6b9b7b0f0c73cbe872b1a078da500da9601cb12b8fedb54fb7a1c02775530e969f927fc3415d55f10feb", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

[ 1024.221443][T28700] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
11:56:16 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008020100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:16 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (fail_nth: 1)

11:56:16 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x4000, 0x2})
close_range(r0, 0xffffffffffffffff, 0x0) (async)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r1, &(0x7f00000004c0)=[{&(0x7f0000000080)=""/187, 0xbb}, {&(0x7f0000000200)=""/113, 0x71}, {&(0x7f0000000280)=""/97, 0x61}, {&(0x7f0000000300)=""/102, 0x66}, {&(0x7f0000000400)=""/158, 0x9e}], 0x5) (async)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000540)={{0x3, 0x2, 0x4, 0x0, 0x9}}) (async)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000380)={0x3, &(0x7f0000000140)=[{0x1, 0x40, 0x81, 0x4}, {0x4, 0x1, 0x0, 0x3}, {0x1, 0xd3, 0x3, 0x967b}]}, 0x10)

11:56:16 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x0, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:16 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
write$nci(r1, &(0x7f0000000240)=@NCI_OP_CORE_INIT_RSP_V2={0x0, 0x1, 0x2, 0x1, 0x6, {0x1, 0x8000, 0x4, 0x3, 0x20, 0x8, 0x25, 0x6, 0x4a, "b54f253365a306347120546002d61ba246d28d7ee0902f9a4db704e220124a1213a9977ea7d986a60c2ed096afbf737aabb4bea96022adce6d2b41f522c8c928d062a2014559a6ad2148"}}, 0x5b)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f00000010c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000001c0)={0x4c, r6, 0x405, 0x0, 0x0, {}, [@NL802154_ATTR_SEC_KEY={0x2c, 0x2e, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "f56b0bb50c4137d28be22635e2b4e25b"}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5}, @NL802154_KEY_ATTR_ID={0xc, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}]}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x4c}}, 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r7)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000340), r5)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r9, 0x8933, &(0x7f0000000040)={'wpan0\x00', <r10=>0x0})
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000006c0), r11)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r9, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)={0x2c, r12, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_ENABLED={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r10}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5}]}, 0x2c}}, 0x0)
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r7, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x2c, r8, 0x2, 0x70bd26, 0x25dfdbfb, {}, [@NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x28, 0x1}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r10}, @NL802154_ATTR_SEC_FRAME_COUNTER={0x8, 0x2a, 0x9}]}, 0x2c}}, 0x10)
sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(r3, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x28, r6, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}]}, 0x28}, 0x1, 0x0, 0x0, 0x4004}, 0x20040041)

11:56:16 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:16 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x0, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

[ 1024.387060][T28903] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1024.391217][T28902] FAULT_INJECTION: forcing a failure.
[ 1024.391217][T28902] name failslab, interval 1, probability 0, space 0, times 0
[ 1024.409030][T28902] CPU: 0 PID: 28902 Comm: syz-executor.2 Not tainted 6.7.0-rc6-syzkaller #0
[ 1024.417750][T28902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1024.427801][T28902] Call Trace:
[ 1024.431071][T28902]  <TASK>
11:56:16 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x0, &(0x7f0000001480)="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", 0xfa, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

[ 1024.434006][T28902]  dump_stack_lvl+0xda/0x130
[ 1024.438670][T28902]  dump_stack+0x15/0x20
[ 1024.442925][T28902]  should_fail_ex+0x21f/0x230
[ 1024.447775][T28902]  ? dup_task_struct+0x60/0x480
[ 1024.452679][T28902]  __should_failslab+0x92/0xa0
[ 1024.457525][T28902]  should_failslab+0x9/0x20
[ 1024.462179][T28902]  kmem_cache_alloc_node+0x52/0x280
[ 1024.467392][T28902]  dup_task_struct+0x60/0x480
[ 1024.472212][T28902]  copy_process+0x3a6/0x20a0
[ 1024.476823][T28902]  kernel_clone+0x169/0x560
[ 1024.481335][T28902]  __x64_sys_clone+0xe8/0x120
[ 1024.486091][T28902]  do_syscall_64+0x44/0x110
[ 1024.490613][T28902]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1024.496595][T28902] RIP: 0033:0x7f1d2ec63ba9
[ 1024.501008][T28902] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1024.520632][T28902] RSP: 002b:00007f1d2dfe6078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1024.529186][T28902] RAX: ffffffffffffffda RBX: 00007f1d2ed82f80 RCX: 00007f1d2ec63ba9
11:56:17 executing program 4:
r0 = socket(0x10, 0x2, 0x0)
write(r0, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="340000002d0000022dbd7000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="f4ff090007000e0000000a0006000700096d000008000b00a82e88373f618a6fa7aef87e3a14003ccf83d022bc0e9db2e78a7393c6ec47eecfc0153342a7a838bf7a9dcf85118fa5ec0880663f1aeedd95edb74843925266d11056ce10747fac97e47de8d202af39008f4166479d1f7c7f028b0fbc46f99266011e569f295503c25c262c12ed4ca7a6c8383d5ac071df2ecd6ff7f24b3005496c73404378ad8e4a2ee03ac5b8742710f9e228006b2e16eb7c530e202c77a891cad004d88da087ed80b0c875959406c4d5046eaeae17cadc8664fa3983b6a706bdb01e96a3d0c8942c9679ea821ecaf2ab91d9fc1d797bd99415e84847d33170545a0b2e4b6db18b29"], 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x40)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000080)=@assoc_value, &(0x7f0000000380)=0x8)
r1 = io_uring_setup(0x4f01, &(0x7f0000000180))
close_range(r1, 0xffffffffffffffff, 0x0)
r2 = socket(0x10, 0x2, 0x0)
write(r2, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
sendmsg$nl_route(r2, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)=@getrule={0x14, 0x22, 0x200, 0x7fffffff, 0x25dfdbfe, {}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x4080)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r3, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)
r4 = socket(0x10, 0x2, 0x0)
write(r4, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
bind$packet(r4, &(0x7f00000000c0)={0x11, 0xd, 0x0, 0x1, 0x40}, 0x14)

11:56:17 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:17 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008030100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:17 executing program 1:
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
write$nci(r1, &(0x7f0000000240)=@NCI_OP_CORE_INIT_RSP_V2={0x0, 0x1, 0x2, 0x1, 0x6, {0x1, 0x8000, 0x4, 0x3, 0x20, 0x8, 0x25, 0x6, 0x4a, "b54f253365a306347120546002d61ba246d28d7ee0902f9a4db704e220124a1213a9977ea7d986a60c2ed096afbf737aabb4bea96022adce6d2b41f522c8c928d062a2014559a6ad2148"}}, 0x5b)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f00000010c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000001c0)={0x4c, r6, 0x405, 0x0, 0x0, {}, [@NL802154_ATTR_SEC_KEY={0x2c, 0x2e, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "f56b0bb50c4137d28be22635e2b4e25b"}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5}, @NL802154_KEY_ATTR_ID={0xc, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}]}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x4c}}, 0x0) (async)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000001c0)={0x4c, r6, 0x405, 0x0, 0x0, {}, [@NL802154_ATTR_SEC_KEY={0x2c, 0x2e, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "f56b0bb50c4137d28be22635e2b4e25b"}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5}, @NL802154_KEY_ATTR_ID={0xc, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}]}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x4c}}, 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r7) (async)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r7)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000340), r5)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r9, 0x8933, &(0x7f0000000040)={'wpan0\x00', <r10=>0x0})
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000006c0), r11) (async)
r12 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000006c0), r11)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r9, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)={0x2c, r12, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_ENABLED={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r10}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5}]}, 0x2c}}, 0x0)
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r7, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x2c, r8, 0x2, 0x70bd26, 0x25dfdbfb, {}, [@NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x28, 0x1}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r10}, @NL802154_ATTR_SEC_FRAME_COUNTER={0x8, 0x2a, 0x9}]}, 0x2c}}, 0x10)
sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(r3, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x28, r6, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}]}, 0x28}, 0x1, 0x0, 0x0, 0x4004}, 0x20040041)

11:56:17 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

[ 1024.537162][T28902] RDX: 0000000020000680 RSI: 0000000000000000 RDI: 0000000000080000
[ 1024.545183][T28902] RBP: 00007f1d2dfe6120 R08: 0000000000000000 R09: 0000000000000000
[ 1024.553155][T28902] R10: 0000000020000a40 R11: 0000000000000206 R12: 0000000000000001
[ 1024.561151][T28902] R13: 000000000000000b R14: 00007f1d2ed82f80 R15: 00007ffe807e09e8
[ 1024.569128][T28902]  </TASK>
[ 1024.617264][T29032] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
11:56:17 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (fail_nth: 2)

11:56:17 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:17 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008040100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:17 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
write$nci(r1, &(0x7f0000000240)=@NCI_OP_CORE_INIT_RSP_V2={0x0, 0x1, 0x2, 0x1, 0x6, {0x1, 0x8000, 0x4, 0x3, 0x20, 0x8, 0x25, 0x6, 0x4a, "b54f253365a306347120546002d61ba246d28d7ee0902f9a4db704e220124a1213a9977ea7d986a60c2ed096afbf737aabb4bea96022adce6d2b41f522c8c928d062a2014559a6ad2148"}}, 0x5b) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f00000010c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000001c0)={0x4c, r6, 0x405, 0x0, 0x0, {}, [@NL802154_ATTR_SEC_KEY={0x2c, 0x2e, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "f56b0bb50c4137d28be22635e2b4e25b"}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5}, @NL802154_KEY_ATTR_ID={0xc, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}]}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x4c}}, 0x0) (async)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r7) (async)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000340), r5)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r9, 0x8933, &(0x7f0000000040)={'wpan0\x00', <r10=>0x0})
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000006c0), r11)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r9, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)={0x2c, r12, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_ENABLED={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r10}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5}]}, 0x2c}}, 0x0)
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r7, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x2c, r8, 0x2, 0x70bd26, 0x25dfdbfb, {}, [@NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x28, 0x1}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r10}, @NL802154_ATTR_SEC_FRAME_COUNTER={0x8, 0x2a, 0x9}]}, 0x2c}}, 0x10) (async)
sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(r3, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x28, r6, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}]}, 0x28}, 0x1, 0x0, 0x0, 0x4004}, 0x20040041)

11:56:17 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:17 executing program 4:
r0 = socket(0x10, 0x2, 0x0)
write(r0, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="340000002d0000022dbd7000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="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"], 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x40) (async)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000080)=@assoc_value, &(0x7f0000000380)=0x8)
r1 = io_uring_setup(0x4f01, &(0x7f0000000180))
close_range(r1, 0xffffffffffffffff, 0x0) (async)
r2 = socket(0x10, 0x2, 0x0)
write(r2, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
sendmsg$nl_route(r2, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)=@getrule={0x14, 0x22, 0x200, 0x7fffffff, 0x25dfdbfe, {}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x4080) (async)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r3, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1) (async)
r4 = socket(0x10, 0x2, 0x0)
write(r4, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
bind$packet(r4, &(0x7f00000000c0)={0x11, 0xd, 0x0, 0x1, 0x40}, 0x14)

11:56:17 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="0100000000000000000002000000080f0100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1024.717040][T29123] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1024.743254][T29168] FAULT_INJECTION: forcing a failure.
[ 1024.743254][T29168] name failslab, interval 1, probability 0, space 0, times 0
[ 1024.755878][T29168] CPU: 1 PID: 29168 Comm: syz-executor.2 Not tainted 6.7.0-rc6-syzkaller #0
11:56:17 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, &(0x7f0000000680), &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:17 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, &(0x7f0000000a40), &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:17 executing program 4:
r0 = socket(0x10, 0x2, 0x0)
write(r0, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="340000002d0000022dbd7000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="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"], 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x40)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000080)=@assoc_value, &(0x7f0000000380)=0x8)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r1 = io_uring_setup(0x4f01, &(0x7f0000000180))
close_range(r1, 0xffffffffffffffff, 0x0)
r2 = socket(0x10, 0x2, 0x0)
write(r2, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
sendmsg$nl_route(r2, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)=@getrule={0x14, 0x22, 0x200, 0x7fffffff, 0x25dfdbfe, {}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x4080) (async)
sendmsg$nl_route(r2, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)=@getrule={0x14, 0x22, 0x200, 0x7fffffff, 0x25dfdbfe, {}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x4080)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r3, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1) (async)
readv(r3, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)
socket(0x10, 0x2, 0x0) (async)
r4 = socket(0x10, 0x2, 0x0)
write(r4, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
bind$packet(r4, &(0x7f00000000c0)={0x11, 0xd, 0x0, 0x1, 0x40}, 0x14)

[ 1024.764640][T29168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1024.774689][T29168] Call Trace:
[ 1024.778049][T29168]  <TASK>
[ 1024.781025][T29168]  dump_stack_lvl+0xda/0x130
[ 1024.785626][T29168]  dump_stack+0x15/0x20
[ 1024.789910][T29168]  should_fail_ex+0x21f/0x230
[ 1024.794676][T29168]  ? __get_vm_area_node+0x10e/0x230
[ 1024.799887][T29168]  __should_failslab+0x92/0xa0
[ 1024.804665][T29168]  should_failslab+0x9/0x20
[ 1024.809238][T29168]  __kmem_cache_alloc_node+0x4e/0x210
[ 1024.814672][T29168]  ? __get_vm_area_node+0x10e/0x230
[ 1024.819885][T29168]  kmalloc_node_trace+0x27/0xa0
[ 1024.824741][T29168]  __get_vm_area_node+0x10e/0x230
[ 1024.829774][T29168]  __vmalloc_node_range+0x2fb/0xea0
[ 1024.835098][T29168]  ? copy_process+0x3a6/0x20a0
[ 1024.839911][T29168]  ? __rcu_read_unlock+0x4d/0x70
[ 1024.844946][T29168]  ? slab_post_alloc_hook+0x1f2/0x2f0
[ 1024.850360][T29168]  ? dup_task_struct+0x60/0x480
[ 1024.854586][T29372] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
11:56:17 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:17 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000140)='attr/fscreate\x00')
io_uring_enter(r2, 0x1b93, 0xe422, 0xb, &(0x7f0000000080)={[0x7ff]}, 0x8)
r3 = syz_open_dev$vcsa(&(0x7f00000000c0), 0x8000, 0x22000)
r4 = accept4$tipc(r3, &(0x7f0000000200)=@id, &(0x7f0000000240)=0x10, 0x180800)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000014, 0x30, r4, 0x143e1000)
io_uring_enter(r3, 0x3a5d, 0x60aa, 0x13, &(0x7f0000000100)={[0xfdee]}, 0x8)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)

[ 1024.855198][T29168]  ? kmem_cache_alloc_node+0x16e/0x280
[ 1024.869834][T29168]  dup_task_struct+0x2a3/0x480
[ 1024.874598][T29168]  ? copy_process+0x3a6/0x20a0
[ 1024.879370][T29168]  copy_process+0x3a6/0x20a0
[ 1024.883968][T29168]  kernel_clone+0x169/0x560
[ 1024.888497][T29168]  __x64_sys_clone+0xe8/0x120
[ 1024.893171][T29168]  do_syscall_64+0x44/0x110
[ 1024.897770][T29168]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1024.903673][T29168] RIP: 0033:0x7f1d2ec63ba9
[ 1024.908159][T29168] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1024.927833][T29168] RSP: 002b:00007f1d2dfe6078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1024.936248][T29168] RAX: ffffffffffffffda RBX: 00007f1d2ed82f80 RCX: 00007f1d2ec63ba9
[ 1024.944262][T29168] RDX: 0000000020000680 RSI: 0000000000000000 RDI: 0000000000080000
[ 1024.952256][T29168] RBP: 00007f1d2dfe6120 R08: 0000000000000000 R09: 0000000000000000
[ 1024.960227][T29168] R10: 0000000020000a40 R11: 0000000000000206 R12: 0000000000000001
[ 1024.968240][T29168] R13: 000000000000000b R14: 00007f1d2ed82f80 R15: 00007ffe807e09e8
[ 1024.976231][T29168]  </TASK>
[ 1024.979353][T29168] syz-executor.2: vmalloc error: size 16384, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz2,mems_allowed=0
[ 1024.983889][T29173] workqueue: Failed to create a rescuer kthread for wq "nfc3_nci_cmd_wq": -EINTR
[ 1024.995029][T29168] CPU: 1 PID: 29168 Comm: syz-executor.2 Not tainted 6.7.0-rc6-syzkaller #0
[ 1025.012780][T29168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1025.022815][T29168] Call Trace:
[ 1025.026239][T29168]  <TASK>
[ 1025.029153][T29168]  dump_stack_lvl+0xda/0x130
[ 1025.033770][T29168]  dump_stack+0x15/0x20
[ 1025.037981][T29168]  warn_alloc+0x140/0x1b0
[ 1025.042389][T29168]  ? kmalloc_node_trace+0x27/0xa0
[ 1025.047502][T29168]  __vmalloc_node_range+0x31f/0xea0
[ 1025.052745][T29168]  ? __rcu_read_unlock+0x4d/0x70
[ 1025.057667][T29168]  ? slab_post_alloc_hook+0x1f2/0x2f0
[ 1025.063022][T29168]  ? dup_task_struct+0x60/0x480
[ 1025.067852][T29168]  ? kmem_cache_alloc_node+0x16e/0x280
[ 1025.073297][T29168]  dup_task_struct+0x2a3/0x480
[ 1025.078122][T29168]  ? copy_process+0x3a6/0x20a0
[ 1025.082939][T29168]  copy_process+0x3a6/0x20a0
[ 1025.087558][T29168]  kernel_clone+0x169/0x560
[ 1025.092040][T29168]  __x64_sys_clone+0xe8/0x120
[ 1025.096698][T29168]  do_syscall_64+0x44/0x110
[ 1025.101242][T29168]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1025.107127][T29168] RIP: 0033:0x7f1d2ec63ba9
[ 1025.111601][T29168] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1025.131185][T29168] RSP: 002b:00007f1d2dfe6078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1025.139608][T29168] RAX: ffffffffffffffda RBX: 00007f1d2ed82f80 RCX: 00007f1d2ec63ba9
[ 1025.147679][T29168] RDX: 0000000020000680 RSI: 0000000000000000 RDI: 0000000000080000
[ 1025.155638][T29168] RBP: 00007f1d2dfe6120 R08: 0000000000000000 R09: 0000000000000000
[ 1025.163697][T29168] R10: 0000000020000a40 R11: 0000000000000206 R12: 0000000000000001
[ 1025.171717][T29168] R13: 000000000000000b R14: 00007f1d2ed82f80 R15: 00007ffe807e09e8
[ 1025.179677][T29168]  </TASK>
[ 1025.182810][T29168] Mem-Info:
[ 1025.186004][T29168] active_anon:8909 inactive_anon:173118 isolated_anon:0
[ 1025.186004][T29168]  active_file:4698 inactive_file:12279 isolated_file:0
[ 1025.186004][T29168]  unevictable:0 dirty:22 writeback:0
[ 1025.186004][T29168]  slab_reclaimable:5275 slab_unreclaimable:30568
[ 1025.186004][T29168]  mapped:19916 shmem:9077 pagetables:3658
[ 1025.186004][T29168]  sec_pagetables:0 bounce:0
[ 1025.186004][T29168]  kernel_misc_reclaimable:0
[ 1025.186004][T29168]  free:1708351 free_pcp:1713 free_cma:0
[ 1025.231243][T29168] Node 0 active_anon:35636kB inactive_anon:692472kB active_file:18792kB inactive_file:49116kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:79664kB dirty:88kB writeback:0kB shmem:36308kB writeback_tmp:0kB kernel_stack:6752kB pagetables:14632kB sec_pagetables:0kB all_unreclaimable? no
[ 1025.259473][T29168] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1025.286389][T29168] lowmem_reserve[]: 0 2896 7874 7874
[ 1025.291698][T29168] Node 0 DMA32 free:2965464kB boost:0kB min:4172kB low:7136kB high:10100kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2968948kB mlocked:0kB bounce:0kB free_pcp:3484kB local_pcp:3388kB free_cma:0kB
[ 1025.320349][T29168] lowmem_reserve[]: 0 0 4978 4978
[ 1025.325428][T29168] Node 0 Normal free:3856676kB boost:0kB min:7172kB low:12268kB high:17364kB reserved_highatomic:0KB active_anon:35636kB inactive_anon:692472kB active_file:18792kB inactive_file:49116kB unevictable:0kB writepending:88kB present:5242880kB managed:5098224kB mlocked:0kB bounce:0kB free_pcp:3400kB local_pcp:1784kB free_cma:0kB
[ 1025.355919][T29168] lowmem_reserve[]: 0 0 0 0
[ 1025.360488][T29168] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1025.373147][T29168] Node 0 DMA32: 2*4kB (M) 0*8kB 1*16kB (M) 2*32kB (M) 2*64kB (M) 2*128kB (M) 2*256kB (M) 2*512kB (M) 2*1024kB (M) 2*2048kB (M) 722*4096kB (M) = 2965464kB
[ 1025.388981][T29168] Node 0 Normal: 115*4kB (ME) 153*8kB (UM) 687*16kB (UME) 589*32kB (ME) 262*64kB (ME) 147*128kB (UME) 63*256kB (UME) 32*512kB (UME) 25*1024kB (UM) 18*2048kB (UME) 902*4096kB (UME) = 3856676kB
[ 1025.408042][T29168] Node 0 hugepages_total=7 hugepages_free=7 hugepages_surp=3 hugepages_size=2048kB
11:56:17 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, &(0x7f0000001580)="175a5f7b994bfa349f6ae4578e90fbef330bae5509472314342895c1db02d8b5904e638853119bb702b97164f18226d482d8883bb0e2db0d5e5b918f9ff3084fe6acb22a37e09fcbe8733886bf0f7fd26194d853e44f6e3f75c97059cc17340dadad4e466557162b3b336c5becdc8de5ffa707299869026df54398d8cfe24a1f92b559a2d8689a977b55392cc1548a7da7d2468f4e67f6134722988c47eefb52e6fc2a57b9ad9e060fd693b53e0e62f312e8f0")

11:56:17 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0))
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2)
r4 = socket(0x10, 0x2, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x103)
mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x10054c5, 0x0)
mount$bind(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x20a9c61, 0x0)
faccessat(0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2)
write(r4, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES8=r1, @ANYRESOCT=r3, @ANYRES8=r1], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
mount$tmpfs(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000240), 0x40000, &(0x7f0000000280)={[{@nr_blocks={'nr_blocks', 0x3d, [0x34, 0x33, 0x6d, 0x65, 0x35, 0x78, 0x36]}}], [{@uid_gt={'uid>', 0xee01}}, {@obj_user={'obj_user', 0x3d, '-]%'}}]})

11:56:17 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000200", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:17 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (fail_nth: 3)

[ 1025.417351][T29168] 26290 total pagecache pages
[ 1025.422071][T29168] 236 pages in swap cache
[ 1025.426416][T29168] Free swap  = 105596kB
[ 1025.430571][T29168] Total swap = 124996kB
[ 1025.434825][T29168] 2097051 pages RAM
[ 1025.438618][T29168] 0 pages HighMem/MovableOnly
[ 1025.443277][T29168] 76418 pages reserved
[ 1025.490739][T29503] FAULT_INJECTION: forcing a failure.
[ 1025.490739][T29503] name failslab, interval 1, probability 0, space 0, times 0
[ 1025.503462][T29503] CPU: 1 PID: 29503 Comm: syz-executor.2 Not tainted 6.7.0-rc6-syzkaller #0
[ 1025.512151][T29503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1025.522288][T29503] Call Trace:
[ 1025.525565][T29503]  <TASK>
[ 1025.528529][T29503]  dump_stack_lvl+0xda/0x130
[ 1025.533131][T29503]  dump_stack+0x15/0x20
[ 1025.537305][T29503]  should_fail_ex+0x21f/0x230
[ 1025.541996][T29503]  ? alloc_vmap_area+0x14e/0x1250
[ 1025.547025][T29503]  __should_failslab+0x92/0xa0
[ 1025.551782][T29503]  should_failslab+0x9/0x20
[ 1025.556307][T29503]  kmem_cache_alloc_node+0x52/0x280
[ 1025.561548][T29503]  alloc_vmap_area+0x14e/0x1250
[ 1025.566393][T29503]  ? slab_post_alloc_hook+0x82/0x2f0
[ 1025.571660][T29503]  ? __get_vm_area_node+0x10e/0x230
[ 1025.576917][T29503]  ? __kmem_cache_alloc_node+0x17f/0x210
[ 1025.582621][T29503]  __get_vm_area_node+0x154/0x230
11:56:18 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:18 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:18 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000006", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:18 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0))
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2) (async, rerun: 64)
r4 = socket(0x10, 0x2, 0x0) (rerun: 64)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x103) (async)
mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x10054c5, 0x0) (async, rerun: 64)
mount$bind(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x20a9c61, 0x0) (async, rerun: 64)
faccessat(0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2) (async)
write(r4, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES8=r1, @ANYRESOCT=r3, @ANYRES8=r1], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
mount$tmpfs(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000240), 0x40000, &(0x7f0000000280)={[{@nr_blocks={'nr_blocks', 0x3d, [0x34, 0x33, 0x6d, 0x65, 0x35, 0x78, 0x36]}}], [{@uid_gt={'uid>', 0xee01}}, {@obj_user={'obj_user', 0x3d, '-]%'}}]})

[ 1025.587629][T29503]  __vmalloc_node_range+0x2fb/0xea0
[ 1025.592819][T29503]  ? copy_process+0x3a6/0x20a0
[ 1025.597572][T29503]  ? __rcu_read_unlock+0x4d/0x70
[ 1025.602506][T29503]  ? memcg_account_kmem+0x121/0x140
[ 1025.607723][T29503]  ? __rcu_read_unlock+0x4d/0x70
[ 1025.612677][T29503]  ? slab_post_alloc_hook+0x1f2/0x2f0
[ 1025.618059][T29503]  ? dup_task_struct+0x60/0x480
[ 1025.622911][T29503]  ? kmem_cache_alloc_node+0x16e/0x280
[ 1025.628399][T29503]  dup_task_struct+0x2a3/0x480
[ 1025.633230][T29503]  ? copy_process+0x3a6/0x20a0
11:56:18 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

[ 1025.637989][T29503]  copy_process+0x3a6/0x20a0
[ 1025.642588][T29503]  kernel_clone+0x169/0x560
[ 1025.647089][T29503]  __x64_sys_clone+0xe8/0x120
[ 1025.651767][T29503]  do_syscall_64+0x44/0x110
[ 1025.656362][T29503]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1025.662326][T29503] RIP: 0033:0x7f1d2ec63ba9
[ 1025.666740][T29503] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
11:56:18 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 1)

11:56:18 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000102", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1025.686382][T29503] RSP: 002b:00007f1d2dfe6078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1025.694864][T29503] RAX: ffffffffffffffda RBX: 00007f1d2ed82f80 RCX: 00007f1d2ec63ba9
[ 1025.702866][T29503] RDX: 0000000020000680 RSI: 0000000000000000 RDI: 0000000000080000
[ 1025.710883][T29503] RBP: 00007f1d2dfe6120 R08: 0000000000000000 R09: 0000000000000000
[ 1025.718859][T29503] R10: 0000000020000a40 R11: 0000000000000206 R12: 0000000000000001
[ 1025.726830][T29503] R13: 000000000000000b R14: 00007f1d2ed82f80 R15: 00007ffe807e09e8
[ 1025.734834][T29503]  </TASK>
[ 1025.771226][T29529] FAULT_INJECTION: forcing a failure.
[ 1025.771226][T29529] name failslab, interval 1, probability 0, space 0, times 0
[ 1025.783962][T29529] CPU: 1 PID: 29529 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1025.792636][T29529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1025.802688][T29529] Call Trace:
[ 1025.805961][T29529]  <TASK>
[ 1025.808931][T29529]  dump_stack_lvl+0xda/0x130
[ 1025.813621][T29529]  dump_stack+0x15/0x20
11:56:18 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000140)='attr/fscreate\x00')
io_uring_enter(r2, 0x1b93, 0xe422, 0xb, &(0x7f0000000080)={[0x7ff]}, 0x8)
r3 = syz_open_dev$vcsa(&(0x7f00000000c0), 0x8000, 0x22000)
r4 = accept4$tipc(r3, &(0x7f0000000200)=@id, &(0x7f0000000240)=0x10, 0x180800)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000014, 0x30, r4, 0x143e1000)
io_uring_enter(r3, 0x3a5d, 0x60aa, 0x13, &(0x7f0000000100)={[0xfdee]}, 0x8)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) (async)
syz_open_procfs(0x0, &(0x7f0000000140)='attr/fscreate\x00') (async)
io_uring_enter(r2, 0x1b93, 0xe422, 0xb, &(0x7f0000000080)={[0x7ff]}, 0x8) (async)
syz_open_dev$vcsa(&(0x7f00000000c0), 0x8000, 0x22000) (async)
accept4$tipc(r3, &(0x7f0000000200)=@id, &(0x7f0000000240)=0x10, 0x180800) (async)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000014, 0x30, r4, 0x143e1000) (async)
io_uring_enter(r3, 0x3a5d, 0x60aa, 0x13, &(0x7f0000000100)={[0xfdee]}, 0x8) (async)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1) (async)

11:56:18 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (fail_nth: 4)

[ 1025.817893][T29529]  should_fail_ex+0x21f/0x230
[ 1025.822579][T29529]  ? dup_task_struct+0x60/0x480
[ 1025.827527][T29529]  __should_failslab+0x92/0xa0
[ 1025.832293][T29529]  should_failslab+0x9/0x20
[ 1025.837029][T29529]  kmem_cache_alloc_node+0x52/0x280
[ 1025.842236][T29529]  dup_task_struct+0x60/0x480
[ 1025.846911][T29529]  copy_process+0x3a6/0x20a0
[ 1025.851500][T29529]  kernel_clone+0x169/0x560
[ 1025.856010][T29529]  __x64_sys_clone+0xe8/0x120
[ 1025.860796][T29529]  do_syscall_64+0x44/0x110
[ 1025.865312][T29529]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
11:56:18 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
syz_open_pts(r0, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000080))

[ 1025.871210][T29529] RIP: 0033:0x7f424acd3ba9
[ 1025.875686][T29529] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1025.895374][T29529] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1025.903786][T29529] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1025.911781][T29529] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1025.919820][T29529] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1025.927783][T29529] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[ 1025.935750][T29529] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1025.943762][T29529]  </TASK>
[ 1025.955239][T29544] FAULT_INJECTION: forcing a failure.
[ 1025.955239][T29544] name failslab, interval 1, probability 0, space 0, times 0
[ 1025.967888][T29544] CPU: 1 PID: 29544 Comm: syz-executor.2 Not tainted 6.7.0-rc6-syzkaller #0
[ 1025.976665][T29544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1025.986717][T29544] Call Trace:
[ 1025.989989][T29544]  <TASK>
[ 1025.992916][T29544]  dump_stack_lvl+0xda/0x130
[ 1025.997524][T29544]  dump_stack+0x15/0x20
[ 1026.001722][T29544]  should_fail_ex+0x21f/0x230
[ 1026.006508][T29544]  ? alloc_vmap_area+0x4be/0x1250
[ 1026.011545][T29544]  __should_failslab+0x92/0xa0
[ 1026.016383][T29544]  should_failslab+0x9/0x20
11:56:18 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 2)

[ 1026.020944][T29544]  kmem_cache_alloc_node+0x52/0x280
[ 1026.026150][T29544]  ? memcg_list_lru_alloc+0xd5/0x750
[ 1026.031549][T29544]  ? alloc_vmap_area+0x14e/0x1250
[ 1026.036584][T29544]  alloc_vmap_area+0x4be/0x1250
[ 1026.041492][T29544]  ? __get_vm_area_node+0x10e/0x230
[ 1026.046712][T29544]  __get_vm_area_node+0x154/0x230
[ 1026.051777][T29544]  __vmalloc_node_range+0x2fb/0xea0
[ 1026.057047][T29544]  ? copy_process+0x3a6/0x20a0
[ 1026.061834][T29544]  ? __rcu_read_unlock+0x4d/0x70
[ 1026.063354][T29608] FAULT_INJECTION: forcing a failure.
[ 1026.063354][T29608] name failslab, interval 1, probability 0, space 0, times 0
[ 1026.066849][T29544]  ? memcg_account_kmem+0x121/0x140
[ 1026.084702][T29544]  ? __rcu_read_unlock+0x4d/0x70
[ 1026.089692][T29544]  ? slab_post_alloc_hook+0x1f2/0x2f0
[ 1026.095055][T29544]  ? dup_task_struct+0x60/0x480
[ 1026.099894][T29544]  ? kmem_cache_alloc_node+0x16e/0x280
[ 1026.105356][T29544]  dup_task_struct+0x2a3/0x480
[ 1026.110124][T29544]  ? copy_process+0x3a6/0x20a0
[ 1026.114925][T29544]  copy_process+0x3a6/0x20a0
[ 1026.119564][T29544]  kernel_clone+0x169/0x560
[ 1026.124105][T29544]  __x64_sys_clone+0xe8/0x120
[ 1026.128837][T29544]  do_syscall_64+0x44/0x110
[ 1026.133338][T29544]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1026.139221][T29544] RIP: 0033:0x7f1d2ec63ba9
[ 1026.143709][T29544] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1026.163327][T29544] RSP: 002b:00007f1d2dfe6078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1026.171727][T29544] RAX: ffffffffffffffda RBX: 00007f1d2ed82f80 RCX: 00007f1d2ec63ba9
[ 1026.179734][T29544] RDX: 0000000020000680 RSI: 0000000000000000 RDI: 0000000000080000
[ 1026.187693][T29544] RBP: 00007f1d2dfe6120 R08: 0000000000000000 R09: 0000000000000000
[ 1026.195651][T29544] R10: 0000000020000a40 R11: 0000000000000206 R12: 0000000000000001
[ 1026.203738][T29544] R13: 000000000000000b R14: 00007f1d2ed82f80 R15: 00007ffe807e09e8
[ 1026.211698][T29544]  </TASK>
[ 1026.214703][T29608] CPU: 0 PID: 29608 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1026.223387][T29608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1026.233479][T29608] Call Trace:
[ 1026.236750][T29608]  <TASK>
[ 1026.239798][T29608]  dump_stack_lvl+0xda/0x130
[ 1026.244448][T29608]  dump_stack+0x15/0x20
[ 1026.248633][T29608]  should_fail_ex+0x21f/0x230
[ 1026.253345][T29608]  ? prepare_creds+0x36/0x480
[ 1026.258021][T29608]  __should_failslab+0x92/0xa0
[ 1026.262864][T29608]  should_failslab+0x9/0x20
[ 1026.267425][T29608]  kmem_cache_alloc+0x4e/0x250
[ 1026.272197][T29608]  prepare_creds+0x36/0x480
[ 1026.276838][T29608]  copy_creds+0x90/0x3e0
[ 1026.281091][T29608]  ? dup_task_struct+0x451/0x480
[ 1026.286033][T29608]  copy_process+0x617/0x20a0
[ 1026.290623][T29608]  kernel_clone+0x169/0x560
[ 1026.295121][T29608]  __x64_sys_clone+0xe8/0x120
[ 1026.299840][T29608]  do_syscall_64+0x44/0x110
[ 1026.304349][T29608]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1026.310286][T29608] RIP: 0033:0x7f424acd3ba9
[ 1026.314701][T29608] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1026.334312][T29608] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1026.342724][T29608] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1026.350746][T29608] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1026.358310][T29753] FAULT_INJECTION: forcing a failure.
[ 1026.358310][T29753] name failslab, interval 1, probability 0, space 0, times 0
11:56:18 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
close_range(r0, 0xffffffffffffffff, 0x0) (async)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) (async)
r2 = syz_open_procfs(0x0, &(0x7f0000000140)='attr/fscreate\x00')
io_uring_enter(r2, 0x1b93, 0xe422, 0xb, &(0x7f0000000080)={[0x7ff]}, 0x8) (async)
r3 = syz_open_dev$vcsa(&(0x7f00000000c0), 0x8000, 0x22000)
r4 = accept4$tipc(r3, &(0x7f0000000200)=@id, &(0x7f0000000240)=0x10, 0x180800)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000014, 0x30, r4, 0x143e1000)
io_uring_enter(r3, 0x3a5d, 0x60aa, 0x13, &(0x7f0000000100)={[0xfdee]}, 0x8) (async)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)

11:56:18 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (fail_nth: 5)

[ 1026.358702][T29608] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1026.379223][T29608] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[ 1026.387254][T29608] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1026.395283][T29608]  </TASK>
[ 1026.398287][T29753] CPU: 1 PID: 29753 Comm: syz-executor.2 Not tainted 6.7.0-rc6-syzkaller #0
[ 1026.406987][T29753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1026.417279][T29753] Call Trace:
[ 1026.420559][T29753]  <TASK>
11:56:18 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
syz_open_pts(r0, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000080))

11:56:18 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 3)

[ 1026.423570][T29753]  dump_stack_lvl+0xda/0x130
[ 1026.428195][T29753]  dump_stack+0x15/0x20
[ 1026.432388][T29753]  should_fail_ex+0x21f/0x230
[ 1026.437073][T29753]  ? __vmalloc_node_range+0x448/0xea0
[ 1026.442480][T29753]  __should_failslab+0x92/0xa0
[ 1026.447256][T29753]  should_failslab+0x9/0x20
[ 1026.451840][T29753]  __kmem_cache_alloc_node+0x4e/0x210
[ 1026.457225][T29753]  ? __vmalloc_node_range+0x448/0xea0
[ 1026.462661][T29753]  __kmalloc_node+0x98/0x1a0
[ 1026.466078][T29807] FAULT_INJECTION: forcing a failure.
[ 1026.466078][T29807] name failslab, interval 1, probability 0, space 0, times 0
[ 1026.467315][T29753]  __vmalloc_node_range+0x448/0xea0
[ 1026.485126][T29753]  ? memcg_account_kmem+0x121/0x140
[ 1026.490320][T29753]  ? dup_task_struct+0x60/0x480
[ 1026.495160][T29753]  ? kmem_cache_alloc_node+0x16e/0x280
[ 1026.500730][T29753]  dup_task_struct+0x2a3/0x480
[ 1026.505493][T29753]  ? copy_process+0x3a6/0x20a0
[ 1026.510240][T29753]  copy_process+0x3a6/0x20a0
[ 1026.514863][T29753]  kernel_clone+0x169/0x560
[ 1026.519355][T29753]  __x64_sys_clone+0xe8/0x120
[ 1026.524022][T29753]  do_syscall_64+0x44/0x110
[ 1026.528520][T29753]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1026.534435][T29753] RIP: 0033:0x7f1d2ec63ba9
[ 1026.538842][T29753] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1026.558436][T29753] RSP: 002b:00007f1d2dfe6078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1026.566865][T29753] RAX: ffffffffffffffda RBX: 00007f1d2ed82f80 RCX: 00007f1d2ec63ba9
[ 1026.574824][T29753] RDX: 0000000020000680 RSI: 0000000000000000 RDI: 0000000000080000
[ 1026.582839][T29753] RBP: 00007f1d2dfe6120 R08: 0000000000000000 R09: 0000000000000000
[ 1026.590799][T29753] R10: 0000000020000a40 R11: 0000000000000206 R12: 0000000000000001
[ 1026.598763][T29753] R13: 000000000000000b R14: 00007f1d2ed82f80 R15: 00007ffe807e09e8
[ 1026.606751][T29753]  </TASK>
[ 1026.609760][T29807] CPU: 0 PID: 29807 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1026.618484][T29807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1026.628551][T29807] Call Trace:
[ 1026.631816][T29807]  <TASK>
[ 1026.634748][T29807]  dump_stack_lvl+0xda/0x130
[ 1026.639356][T29807]  dump_stack+0x15/0x20
[ 1026.643511][T29807]  should_fail_ex+0x21f/0x230
[ 1026.648188][T29807]  ? security_prepare_creds+0x4c/0x100
[ 1026.653653][T29807]  __should_failslab+0x92/0xa0
[ 1026.658473][T29807]  should_failslab+0x9/0x20
[ 1026.662979][T29807]  __kmem_cache_alloc_node+0x4e/0x210
[ 1026.668357][T29807]  ? security_prepare_creds+0x4c/0x100
[ 1026.673840][T29807]  __kmalloc+0x95/0x1a0
[ 1026.678068][T29807]  ? prepare_creds+0x36/0x480
[ 1026.682900][T29807]  security_prepare_creds+0x4c/0x100
[ 1026.688195][T29807]  prepare_creds+0x345/0x480
[ 1026.692796][T29807]  copy_creds+0x90/0x3e0
[ 1026.697051][T29807]  ? dup_task_struct+0x451/0x480
[ 1026.701988][T29807]  copy_process+0x617/0x20a0
[ 1026.706666][T29807]  kernel_clone+0x169/0x560
[ 1026.711175][T29807]  __x64_sys_clone+0xe8/0x120
[ 1026.715860][T29807]  do_syscall_64+0x44/0x110
[ 1026.720376][T29807]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1026.726283][T29807] RIP: 0033:0x7f424acd3ba9
[ 1026.730761][T29807] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1026.750446][T29807] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1026.758859][T29807] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1026.766837][T29807] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
11:56:19 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0))
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2)
r4 = socket(0x10, 0x2, 0x0) (async)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x103) (async)
mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x10054c5, 0x0)
mount$bind(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x20a9c61, 0x0) (async, rerun: 64)
faccessat(0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2) (rerun: 64)
write(r4, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES8=r1, @ANYRESOCT=r3, @ANYRES8=r1], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async, rerun: 64)
mount$tmpfs(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000240), 0x40000, &(0x7f0000000280)={[{@nr_blocks={'nr_blocks', 0x3d, [0x34, 0x33, 0x6d, 0x65, 0x35, 0x78, 0x36]}}], [{@uid_gt={'uid>', 0xee01}}, {@obj_user={'obj_user', 0x3d, '-]%'}}]}) (rerun: 64)

11:56:19 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000103", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:19 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (fail_nth: 6)

11:56:19 executing program 4:
r0 = io_uring_setup(0x6526, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x0, 0x800228})
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)

11:56:19 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (fail_nth: 7)

[ 1026.767721][T29879] FAULT_INJECTION: forcing a failure.
[ 1026.767721][T29879] name failslab, interval 1, probability 0, space 0, times 0
[ 1026.774793][T29807] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1026.774808][T29807] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[ 1026.774820][T29807] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1026.811286][T29807]  </TASK>
[ 1026.814296][T29879] CPU: 1 PID: 29879 Comm: syz-executor.2 Not tainted 6.7.0-rc6-syzkaller #0
11:56:19 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 4)

[ 1026.823045][T29879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1026.833098][T29879] Call Trace:
[ 1026.836370][T29879]  <TASK>
[ 1026.839305][T29879]  dump_stack_lvl+0xda/0x130
[ 1026.843917][T29879]  dump_stack+0x15/0x20
[ 1026.848137][T29879]  should_fail_ex+0x21f/0x230
[ 1026.852839][T29879]  ? security_prepare_creds+0x4c/0x100
[ 1026.858298][T29879]  __should_failslab+0x92/0xa0
[ 1026.863074][T29879]  should_failslab+0x9/0x20
[ 1026.863552][T29985] FAULT_INJECTION: forcing a failure.
[ 1026.863552][T29985] name failslab, interval 1, probability 0, space 0, times 0
[ 1026.867573][T29879]  __kmem_cache_alloc_node+0x4e/0x210
[ 1026.885599][T29879]  ? security_prepare_creds+0x4c/0x100
[ 1026.891050][T29879]  __kmalloc+0x95/0x1a0
[ 1026.895195][T29879]  ? prepare_creds+0x36/0x480
[ 1026.899942][T29879]  security_prepare_creds+0x4c/0x100
[ 1026.905219][T29879]  prepare_creds+0x345/0x480
[ 1026.909797][T29879]  copy_creds+0x90/0x3e0
[ 1026.914110][T29879]  ? dup_task_struct+0x451/0x480
[ 1026.919035][T29879]  copy_process+0x617/0x20a0
[ 1026.923612][T29879]  kernel_clone+0x169/0x560
[ 1026.928101][T29879]  __x64_sys_clone+0xe8/0x120
[ 1026.932767][T29879]  do_syscall_64+0x44/0x110
[ 1026.937343][T29879]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1026.943229][T29879] RIP: 0033:0x7f1d2ec63ba9
[ 1026.947654][T29879] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1026.967269][T29879] RSP: 002b:00007f1d2dfe6078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1026.975668][T29879] RAX: ffffffffffffffda RBX: 00007f1d2ed82f80 RCX: 00007f1d2ec63ba9
[ 1026.983627][T29879] RDX: 0000000020000680 RSI: 0000000000000000 RDI: 0000000000080000
[ 1026.991588][T29879] RBP: 00007f1d2dfe6120 R08: 0000000000000000 R09: 0000000000000000
[ 1026.999543][T29879] R10: 0000000020000a40 R11: 0000000000000206 R12: 0000000000000001
[ 1027.007579][T29879] R13: 000000000000000b R14: 00007f1d2ed82f80 R15: 00007ffe807e09e8
[ 1027.015540][T29879]  </TASK>
[ 1027.018564][T29985] CPU: 0 PID: 29985 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1027.027249][T29985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1027.037410][T29985] Call Trace:
[ 1027.040691][T29985]  <TASK>
[ 1027.043682][T29985]  dump_stack_lvl+0xda/0x130
[ 1027.048285][T29985]  dump_stack+0x15/0x20
[ 1027.052551][T29985]  should_fail_ex+0x21f/0x230
[ 1027.057242][T29985]  ? dup_fd+0x4c/0x600
[ 1027.061436][T29985]  __should_failslab+0x92/0xa0
[ 1027.066256][T29985]  should_failslab+0x9/0x20
[ 1027.070779][T29985]  kmem_cache_alloc+0x4e/0x250
11:56:19 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="83d0a4d679704240d31d36389e000e3e0000a0f38a058308ad1b119daa7b44e5731b0ff538cdc7c92a0e9f85775a8d4e21f7b1d158cdef60bf959f3b84c385bf7f30a0c79c7d6fb16800"/94, @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r5)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r8, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r8, 0x0)
write$nci(r8, &(0x7f0000000300)=@NCI_OP_RF_DEACTIVATE_RSP={0x1, 0x0, 0x2, 0x6, 0x81}, 0x4)
sendmsg$NL802154_CMD_SET_SHORT_ADDR(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB="14040000", @ANYRES16=0x0, @ANYBLOB="04"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r7)
r9 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000200), r7)
sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r6, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x30, r9, 0xb6c91f939c8321d, 0x0, 0x0, {0x10}, [@NLBL_UNLABEL_A_IPV6MASK={0x14, 0xf, @remote}, @NLBL_UNLABEL_A_ACPTFLG={0x8}]}, 0x30}}, 0x0)
sendmsg$NLBL_UNLABEL_C_ACCEPT(r5, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x74, r9, 0x8, 0x70bd2a, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_SECCTX={0x26, 0x7, 'system_u:object_r:crack_exec_t:s0\x00'}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'netpci0\x00'}]}, 0x74}}, 0x40444)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:19 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (fail_nth: 8)

[ 1027.075649][T29985]  dup_fd+0x4c/0x600
[ 1027.079561][T29985]  ? avc_has_perm+0xd4/0x150
[ 1027.084301][T29985]  copy_files+0xc0/0x130
[ 1027.088547][T29985]  copy_process+0xf66/0x20a0
[ 1027.093141][T29985]  kernel_clone+0x169/0x560
[ 1027.097656][T29985]  __x64_sys_clone+0xe8/0x120
[ 1027.099443][T29993] FAULT_INJECTION: forcing a failure.
[ 1027.099443][T29993] name failslab, interval 1, probability 0, space 0, times 0
[ 1027.102328][T29985]  do_syscall_64+0x44/0x110
[ 1027.102361][T29985]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1027.125418][T29985] RIP: 0033:0x7f424acd3ba9
[ 1027.129817][T29985] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1027.149432][T29985] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1027.157868][T29985] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1027.165892][T29985] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1027.173855][T29985] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1027.181812][T29985] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[ 1027.189847][T29985] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1027.197836][T29985]  </TASK>
[ 1027.200875][T29993] CPU: 1 PID: 29993 Comm: syz-executor.2 Not tainted 6.7.0-rc6-syzkaller #0
[ 1027.209603][T29993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1027.219774][T29993] Call Trace:
[ 1027.223049][T29993]  <TASK>
11:56:19 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 5)

11:56:19 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 6)

[ 1027.225978][T29993]  dump_stack_lvl+0xda/0x130
[ 1027.230586][T29993]  dump_stack+0x15/0x20
[ 1027.234766][T29993]  should_fail_ex+0x21f/0x230
[ 1027.239485][T29993]  ? security_prepare_creds+0x4c/0x100
[ 1027.245010][T29993]  __should_failslab+0x92/0xa0
[ 1027.249783][T29993]  should_failslab+0x9/0x20
[ 1027.254290][T29993]  __kmem_cache_alloc_node+0x4e/0x210
[ 1027.259720][T29993]  ? security_prepare_creds+0x4c/0x100
[ 1027.265212][T29993]  __kmalloc+0x95/0x1a0
[ 1027.269393][T29993]  ? prepare_creds+0x36/0x480
[ 1027.272993][T29999] FAULT_INJECTION: forcing a failure.
[ 1027.272993][T29999] name failslab, interval 1, probability 0, space 0, times 0
[ 1027.274082][T29993]  security_prepare_creds+0x4c/0x100
[ 1027.291952][T29993]  prepare_creds+0x345/0x480
[ 1027.296593][T29993]  copy_creds+0x90/0x3e0
[ 1027.300823][T29993]  ? dup_task_struct+0x451/0x480
[ 1027.305748][T29993]  copy_process+0x617/0x20a0
[ 1027.310329][T29993]  kernel_clone+0x169/0x560
[ 1027.314822][T29993]  __x64_sys_clone+0xe8/0x120
[ 1027.319541][T29993]  do_syscall_64+0x44/0x110
[ 1027.324037][T29993]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1027.329924][T29993] RIP: 0033:0x7f1d2ec63ba9
[ 1027.334332][T29993] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1027.353994][T29993] RSP: 002b:00007f1d2dfe6078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1027.362419][T29993] RAX: ffffffffffffffda RBX: 00007f1d2ed82f80 RCX: 00007f1d2ec63ba9
[ 1027.370378][T29993] RDX: 0000000020000680 RSI: 0000000000000000 RDI: 0000000000080000
[ 1027.378337][T29993] RBP: 00007f1d2dfe6120 R08: 0000000000000000 R09: 0000000000000000
[ 1027.386292][T29993] R10: 0000000020000a40 R11: 0000000000000206 R12: 0000000000000001
[ 1027.394374][T29993] R13: 000000000000000b R14: 00007f1d2ed82f80 R15: 00007ffe807e09e8
[ 1027.402334][T29993]  </TASK>
[ 1027.405377][T29999] CPU: 0 PID: 29999 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1027.414078][T29999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1027.424132][T29999] Call Trace:
11:56:19 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
syz_open_pts(r0, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000080))

[ 1027.427408][T29999]  <TASK>
[ 1027.430353][T29999]  dump_stack_lvl+0xda/0x130
[ 1027.435027][T29999]  dump_stack+0x15/0x20
[ 1027.439263][T29999]  should_fail_ex+0x21f/0x230
[ 1027.443953][T29999]  ? prepare_creds+0x36/0x480
[ 1027.448653][T29999]  __should_failslab+0x92/0xa0
[ 1027.453493][T29999]  should_failslab+0x9/0x20
[ 1027.457995][T29999]  kmem_cache_alloc+0x4e/0x250
[ 1027.462782][T29999]  prepare_creds+0x36/0x480
[ 1027.467285][T29999]  copy_creds+0x90/0x3e0
[ 1027.471526][T29999]  ? dup_task_struct+0x451/0x480
11:56:19 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="83d0a4d679704240d31d36389e000e3e0000a0f38a058308ad1b119daa7b44e5731b0ff538cdc7c92a0e9f85775a8d4e21f7b1d158cdef60bf959f3b84c385bf7f30a0c79c7d6fb16800"/94, @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r5)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r8, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r8, 0x0) (async)
write$nci(r8, &(0x7f0000000300)=@NCI_OP_RF_DEACTIVATE_RSP={0x1, 0x0, 0x2, 0x6, 0x81}, 0x4) (async, rerun: 64)
sendmsg$NL802154_CMD_SET_SHORT_ADDR(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB="14040000", @ANYRES16=0x0, @ANYBLOB="04"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0) (async, rerun: 64)
syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r7) (async)
r9 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000200), r7)
sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r6, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x30, r9, 0xb6c91f939c8321d, 0x0, 0x0, {0x10}, [@NLBL_UNLABEL_A_IPV6MASK={0x14, 0xf, @remote}, @NLBL_UNLABEL_A_ACPTFLG={0x8}]}, 0x30}}, 0x0)
sendmsg$NLBL_UNLABEL_C_ACCEPT(r5, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x74, r9, 0x8, 0x70bd2a, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_SECCTX={0x26, 0x7, 'system_u:object_r:crack_exec_t:s0\x00'}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'netpci0\x00'}]}, 0x74}}, 0x40444)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1027.476525][T29999]  copy_process+0x617/0x20a0
[ 1027.481130][T29999]  kernel_clone+0x169/0x560
[ 1027.485637][T29999]  __x64_sys_clone+0xe8/0x120
[ 1027.490311][T29999]  do_syscall_64+0x44/0x110
[ 1027.494833][T29999]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1027.500761][T29999] RIP: 0033:0x7f424acd3ba9
[ 1027.505330][T29999] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
11:56:20 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (fail_nth: 9)

[ 1027.524940][T29999] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1027.533438][T29999] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1027.541536][T29999] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1027.549584][T29999] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1027.555767][T30013] FAULT_INJECTION: forcing a failure.
[ 1027.555767][T30013] name failslab, interval 1, probability 0, space 0, times 0
[ 1027.557547][T29999] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
11:56:20 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000104", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:20 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 7)

[ 1027.557562][T29999] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1027.557580][T29999]  </TASK>
[ 1027.589094][T30013] CPU: 1 PID: 30013 Comm: syz-executor.2 Not tainted 6.7.0-rc6-syzkaller #0
[ 1027.597784][T30013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1027.607840][T30013] Call Trace:
[ 1027.611122][T30013]  <TASK>
[ 1027.614051][T30013]  dump_stack_lvl+0xda/0x130
[ 1027.618655][T30013]  dump_stack+0x15/0x20
[ 1027.622877][T30013]  should_fail_ex+0x21f/0x230
[ 1027.627569][T30013]  ? dup_fd+0x4c/0x600
[ 1027.631716][T30013]  __should_failslab+0x92/0xa0
[ 1027.636509][T30013]  should_failslab+0x9/0x20
[ 1027.638164][T30021] FAULT_INJECTION: forcing a failure.
[ 1027.638164][T30021] name failslab, interval 1, probability 0, space 0, times 0
[ 1027.641006][T30013]  kmem_cache_alloc+0x4e/0x250
[ 1027.641036][T30013]  dup_fd+0x4c/0x600
[ 1027.662266][T30013]  ? avc_has_perm+0xd4/0x150
[ 1027.666876][T30013]  copy_files+0xc0/0x130
[ 1027.671104][T30013]  copy_process+0xf66/0x20a0
[ 1027.675731][T30013]  kernel_clone+0x169/0x560
[ 1027.680267][T30013]  __x64_sys_clone+0xe8/0x120
[ 1027.684960][T30013]  do_syscall_64+0x44/0x110
[ 1027.689479][T30013]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1027.695362][T30013] RIP: 0033:0x7f1d2ec63ba9
[ 1027.699761][T30013] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1027.719379][T30013] RSP: 002b:00007f1d2dfe6078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1027.727780][T30013] RAX: ffffffffffffffda RBX: 00007f1d2ed82f80 RCX: 00007f1d2ec63ba9
[ 1027.735742][T30013] RDX: 0000000020000680 RSI: 0000000000000000 RDI: 0000000000080000
[ 1027.743823][T30013] RBP: 00007f1d2dfe6120 R08: 0000000000000000 R09: 0000000000000000
[ 1027.751799][T30013] R10: 0000000020000a40 R11: 0000000000000206 R12: 0000000000000001
[ 1027.759769][T30013] R13: 000000000000000b R14: 00007f1d2ed82f80 R15: 00007ffe807e09e8
[ 1027.767753][T30013]  </TASK>
[ 1027.770760][T30021] CPU: 0 PID: 30021 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1027.779438][T30021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1027.789485][T30021] Call Trace:
[ 1027.792767][T30021]  <TASK>
[ 1027.795684][T30021]  dump_stack_lvl+0xda/0x130
[ 1027.800351][T30021]  dump_stack+0x15/0x20
[ 1027.804578][T30021]  should_fail_ex+0x21f/0x230
[ 1027.809262][T30021]  ? prepare_creds+0x36/0x480
[ 1027.813979][T30021]  __should_failslab+0x92/0xa0
[ 1027.818748][T30021]  should_failslab+0x9/0x20
[ 1027.823344][T30021]  kmem_cache_alloc+0x4e/0x250
11:56:20 executing program 4:
r0 = io_uring_setup(0x6526, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x0, 0x800228})
close_range(r0, 0xffffffffffffffff, 0x0) (async)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)

11:56:20 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (fail_nth: 10)

11:56:20 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="01000000000000000000020000000800010f", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1027.828220][T30021]  prepare_creds+0x36/0x480
[ 1027.832730][T30021]  copy_creds+0x90/0x3e0
[ 1027.836969][T30021]  ? dup_task_struct+0x451/0x480
[ 1027.841915][T30021]  copy_process+0x617/0x20a0
[ 1027.846515][T30021]  kernel_clone+0x169/0x560
[ 1027.851027][T30021]  __x64_sys_clone+0xe8/0x120
[ 1027.855761][T30021]  do_syscall_64+0x44/0x110
[ 1027.860333][T30021]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1027.866281][T30021] RIP: 0033:0x7f424acd3ba9
[ 1027.870740][T30021] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1027.879172][T30129] FAULT_INJECTION: forcing a failure.
[ 1027.879172][T30129] name failslab, interval 1, probability 0, space 0, times 0
[ 1027.890326][T30021] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1027.890348][T30021] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1027.919303][T30021] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1027.927266][T30021] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1027.935223][T30021] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[ 1027.943237][T30021] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1027.951249][T30021]  </TASK>
[ 1027.954351][T30129] CPU: 1 PID: 30129 Comm: syz-executor.2 Not tainted 6.7.0-rc6-syzkaller #0
[ 1027.963029][T30129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1027.973081][T30129] Call Trace:
[ 1027.976434][T30129]  <TASK>
[ 1027.979385][T30129]  dump_stack_lvl+0xda/0x130
[ 1027.984042][T30129]  dump_stack+0x15/0x20
[ 1027.988285][T30129]  should_fail_ex+0x21f/0x230
[ 1027.993021][T30129]  ? kvmalloc_node+0x72/0x160
[ 1027.997747][T30129]  __should_failslab+0x92/0xa0
[ 1028.002636][T30129]  should_failslab+0x9/0x20
[ 1028.007208][T30129]  __kmem_cache_alloc_node+0x4e/0x210
[ 1028.012592][T30129]  ? kvmalloc_node+0x72/0x160
[ 1028.017270][T30129]  __kmalloc_node+0x98/0x1a0
[ 1028.021481][T30238] FAULT_INJECTION: forcing a failure.
[ 1028.021481][T30238] name failslab, interval 1, probability 0, space 0, times 0
[ 1028.021856][T30129]  kvmalloc_node+0x72/0x160
[ 1028.039082][T30129]  alloc_fdtable+0xa8/0x190
[ 1028.043582][T30129]  dup_fd+0x4b9/0x600
[ 1028.047590][T30129]  copy_files+0xc0/0x130
[ 1028.051870][T30129]  copy_process+0xf66/0x20a0
[ 1028.056460][T30129]  kernel_clone+0x169/0x560
[ 1028.060950][T30129]  __x64_sys_clone+0xe8/0x120
[ 1028.065617][T30129]  do_syscall_64+0x44/0x110
[ 1028.070166][T30129]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1028.076112][T30129] RIP: 0033:0x7f1d2ec63ba9
[ 1028.080555][T30129] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1028.100188][T30129] RSP: 002b:00007f1d2dfe6078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1028.108589][T30129] RAX: ffffffffffffffda RBX: 00007f1d2ed82f80 RCX: 00007f1d2ec63ba9
[ 1028.116575][T30129] RDX: 0000000020000680 RSI: 0000000000000000 RDI: 0000000000080000
11:56:20 executing program 4:
r0 = io_uring_setup(0x6526, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x0, 0x800228})
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)
io_uring_setup(0x6526, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x0, 0x800228}) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) (async)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1) (async)

11:56:20 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 8)

11:56:20 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="83d0a4d679704240d31d36389e000e3e0000a0f38a058308ad1b119daa7b44e5731b0ff538cdc7c92a0e9f85775a8d4e21f7b1d158cdef60bf959f3b84c385bf7f30a0c79c7d6fb16800"/94, @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r5)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r8, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r8, 0x0)
write$nci(r8, &(0x7f0000000300)=@NCI_OP_RF_DEACTIVATE_RSP={0x1, 0x0, 0x2, 0x6, 0x81}, 0x4)
sendmsg$NL802154_CMD_SET_SHORT_ADDR(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB="14040000", @ANYRES16=0x0, @ANYBLOB="04"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r7)
r9 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000200), r7)
sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r6, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x30, r9, 0xb6c91f939c8321d, 0x0, 0x0, {0x10}, [@NLBL_UNLABEL_A_IPV6MASK={0x14, 0xf, @remote}, @NLBL_UNLABEL_A_ACPTFLG={0x8}]}, 0x30}}, 0x0)
sendmsg$NLBL_UNLABEL_C_ACCEPT(r5, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x74, r9, 0x8, 0x70bd2a, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_SECCTX={0x26, 0x7, 'system_u:object_r:crack_exec_t:s0\x00'}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'netpci0\x00'}]}, 0x74}}, 0x40444)
close_range(r0, 0xffffffffffffffff, 0x0)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="83d0a4d679704240d31d36389e000e3e0000a0f38a058308ad1b119daa7b44e5731b0ff538cdc7c92a0e9f85775a8d4e21f7b1d158cdef60bf959f3b84c385bf7f30a0c79c7d6fb16800"/94, @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r5) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0) (async)
write$binfmt_script(r8, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r8, 0x0) (async)
write$nci(r8, &(0x7f0000000300)=@NCI_OP_RF_DEACTIVATE_RSP={0x1, 0x0, 0x2, 0x6, 0x81}, 0x4) (async)
sendmsg$NL802154_CMD_SET_SHORT_ADDR(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB="14040000", @ANYRES16=0x0, @ANYBLOB="04"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r7) (async)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000200), r7) (async)
sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r6, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x30, r9, 0xb6c91f939c8321d, 0x0, 0x0, {0x10}, [@NLBL_UNLABEL_A_IPV6MASK={0x14, 0xf, @remote}, @NLBL_UNLABEL_A_ACPTFLG={0x8}]}, 0x30}}, 0x0) (async)
sendmsg$NLBL_UNLABEL_C_ACCEPT(r5, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x74, r9, 0x8, 0x70bd2a, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_SECCTX={0x26, 0x7, 'system_u:object_r:crack_exec_t:s0\x00'}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'netpci0\x00'}]}, 0x74}}, 0x40444) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)

[ 1028.124534][T30129] RBP: 00007f1d2dfe6120 R08: 0000000000000000 R09: 0000000000000000
[ 1028.132499][T30129] R10: 0000000020000a40 R11: 0000000000000206 R12: 0000000000000002
[ 1028.140533][T30129] R13: 000000000000000b R14: 00007f1d2ed82f80 R15: 00007ffe807e09e8
[ 1028.148496][T30129]  </TASK>
[ 1028.151529][T30238] CPU: 0 PID: 30238 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1028.160248][T30238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1028.170418][T30238] Call Trace:
[ 1028.173741][T30238]  <TASK>
[ 1028.176741][T30238]  dump_stack_lvl+0xda/0x130
11:56:20 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (fail_nth: 11)

[ 1028.181448][T30238]  dump_stack+0x15/0x20
[ 1028.185615][T30238]  should_fail_ex+0x21f/0x230
[ 1028.190313][T30238]  ? security_prepare_creds+0x4c/0x100
[ 1028.195871][T30238]  __should_failslab+0x92/0xa0
[ 1028.200665][T30238]  should_failslab+0x9/0x20
[ 1028.205227][T30238]  __kmem_cache_alloc_node+0x4e/0x210
[ 1028.210640][T30238]  ? security_prepare_creds+0x4c/0x100
[ 1028.211204][T30245] FAULT_INJECTION: forcing a failure.
[ 1028.211204][T30245] name failslab, interval 1, probability 0, space 0, times 0
[ 1028.216100][T30238]  __kmalloc+0x95/0x1a0
[ 1028.216156][T30238]  ? prepare_creds+0x36/0x480
[ 1028.237505][T30238]  security_prepare_creds+0x4c/0x100
[ 1028.242881][T30238]  prepare_creds+0x345/0x480
[ 1028.247522][T30238]  copy_creds+0x90/0x3e0
[ 1028.251754][T30238]  ? dup_task_struct+0x451/0x480
[ 1028.256714][T30238]  copy_process+0x617/0x20a0
[ 1028.261294][T30238]  kernel_clone+0x169/0x560
[ 1028.265916][T30238]  __x64_sys_clone+0xe8/0x120
[ 1028.270603][T30238]  do_syscall_64+0x44/0x110
[ 1028.275099][T30238]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1028.281011][T30238] RIP: 0033:0x7f424acd3ba9
[ 1028.285519][T30238] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1028.305113][T30238] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1028.313717][T30238] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1028.321757][T30238] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1028.329715][T30238] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1028.337674][T30238] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[ 1028.345692][T30238] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1028.353694][T30238]  </TASK>
[ 1028.356704][T30245] CPU: 1 PID: 30245 Comm: syz-executor.2 Not tainted 6.7.0-rc6-syzkaller #0
[ 1028.365456][T30245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1028.375570][T30245] Call Trace:
[ 1028.378854][T30245]  <TASK>
[ 1028.381789][T30245]  dump_stack_lvl+0xda/0x130
[ 1028.386390][T30245]  dump_stack+0x15/0x20
[ 1028.390595][T30245]  should_fail_ex+0x21f/0x230
[ 1028.395374][T30245]  ? kvmalloc_node+0x72/0x160
[ 1028.400061][T30245]  __should_failslab+0x92/0xa0
[ 1028.404869][T30245]  should_failslab+0x9/0x20
[ 1028.409412][T30245]  __kmem_cache_alloc_node+0x4e/0x210
[ 1028.414806][T30245]  ? kvmalloc_node+0x72/0x160
[ 1028.419558][T30245]  __kmalloc_node+0x98/0x1a0
[ 1028.424154][T30245]  kvmalloc_node+0x72/0x160
[ 1028.428663][T30245]  alloc_fdtable+0xfe/0x190
[ 1028.433173][T30245]  dup_fd+0x4b9/0x600
[ 1028.437197][T30245]  copy_files+0xc0/0x130
[ 1028.441479][T30245]  copy_process+0xf66/0x20a0
[ 1028.446092][T30245]  kernel_clone+0x169/0x560
[ 1028.450590][T30245]  __x64_sys_clone+0xe8/0x120
[ 1028.455344][T30245]  do_syscall_64+0x44/0x110
[ 1028.459891][T30245]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1028.465778][T30245] RIP: 0033:0x7f1d2ec63ba9
[ 1028.470207][T30245] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1028.489869][T30245] RSP: 002b:00007f1d2dfe6078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1028.498283][T30245] RAX: ffffffffffffffda RBX: 00007f1d2ed82f80 RCX: 00007f1d2ec63ba9
[ 1028.506255][T30245] RDX: 0000000020000680 RSI: 0000000000000000 RDI: 0000000000080000
[ 1028.514334][T30245] RBP: 00007f1d2dfe6120 R08: 0000000000000000 R09: 0000000000000000
[ 1028.522310][T30245] R10: 0000000020000a40 R11: 0000000000000206 R12: 0000000000000002
11:56:20 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = dup3(0xffffffffffffffff, r0, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080))

11:56:20 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 9)

11:56:20 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = socket(0x10, 0x2, 0x0)
write(r1, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
sendmsg$TIPC_NL_PUBL_GET(r1, &(0x7f0000000280)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000240)={&(0x7f0000000c80)={0x208, 0x0, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x194, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x303}, @TIPC_NLA_NODE_KEY={0x4b, 0x4, {'gcm(aes)\x00', 0x23, "71b11e960b2febea5112f1d0c0f50bd1028a6f33234e85e91336877dc50572d71242b0"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0xa1, 0x3, "83971165bda0921303b48fedaf397ee167cf54e291ccfc13e1e8f637611870ebfcd7200f790d680a434041dadd65f11f2a346a7e2349159f1924ce5bbe3e62152cdc361e5d508bdfbc843a0289f2144ff852c44d6106975d97b1395292e7b4c552f8894235915e2f539d34f070c22d7cbe54b819854a7e4ebacfdad434112407f9243342c01b39c1de404d4f746df36de0bf7a25a450c42bee71d0eb6c"}, @TIPC_NLA_NODE_KEY={0x42, 0x4, {'gcm(aes)\x00', 0x1a, "6886dcc17016604ce7509a5771eba73ecc7e2a43a6467c706b19"}}, @TIPC_NLA_NODE_ID={0x4d, 0x3, "9cb9ea3e875261351255c7f1113698ae8dbc7d169ff5bf414a104a323398eaddce009b21ea4b3c67ac4cfd565670cf800f364c3ae984991934763fe88a123b04eb1979a96de8b9a46c"}]}, @TIPC_NLA_MEDIA={0x38, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffff7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc4}]}]}, @TIPC_NLA_SOCK={0x28, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}]}]}]}, 0x208}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/seq/clients\x00', 0x0, 0x0)
r4 = socket(0x10, 0x2, 0x0)
write(r4, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
fsetxattr$trusted_overlay_nlink(r4, &(0x7f0000000100), &(0x7f0000000140)={'L-', 0x81}, 0x16, 0x3)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f00000000c0)={{0x1, 0x1, 0x63, 0x1, 0x81f}})
readv(r2, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)
r5 = socket(0x10, 0x2, 0x0)
write(r5, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
ioctl$BTRFS_IOC_GET_DEV_STATS(r3, 0xc4089434, &(0x7f0000000400)={<r6=>0x0, 0x8000000000000000, 0x0, [0x2, 0x140000, 0x0, 0x8000000000000001, 0x9], [0x3ff, 0x2, 0x7, 0xdada, 0x3ff, 0x1, 0x97, 0x8, 0x1, 0xbd9, 0x7fff, 0x2, 0x100000000, 0x2, 0x7, 0x9, 0x10001, 0x6, 0x1, 0x8884000000000, 0x4e5270db, 0x6, 0x127, 0x8, 0x0, 0x80, 0x208, 0x0, 0x7, 0x2, 0x6e, 0x0, 0x401, 0xff000000, 0x875, 0x1ff, 0x6000000000, 0xffffffffffffffe0, 0xa9, 0x4, 0x7, 0x0, 0x10001, 0x8, 0x7fff, 0x9, 0x4c1, 0x85, 0x0, 0x80000000, 0x5, 0xffffffff, 0x1, 0x4, 0x1, 0x401, 0x8, 0x3, 0x4, 0x9, 0x2, 0x5, 0x8, 0x2, 0x3, 0x2, 0x0, 0x26, 0x4, 0x400, 0x7f, 0x7, 0x401, 0x8, 0x100000000, 0x100000001, 0x9, 0x9, 0xd04, 0x8, 0x8000000000000000, 0x2, 0x0, 0xfffffffffffffffa, 0x0, 0x6, 0x100, 0x214, 0x6, 0x6, 0x9, 0x3ff, 0x0, 0x8, 0x8, 0xfe8b, 0x5, 0x7, 0xfffffffffffffff7, 0x0, 0x0, 0xffff, 0x80000001, 0x7fffffff, 0xa58f, 0x9, 0x46b, 0xa83, 0x0, 0x7f, 0xb22, 0x1, 0x8, 0x3, 0x100000000, 0x7fff, 0x80000001, 0x4, 0x4, 0x400, 0x9]})
ioctl$BTRFS_IOC_GET_DEV_STATS(r5, 0xc4089434, &(0x7f0000000840)={r6, 0x8000000000000000, 0x1, [0x80000001, 0x6, 0x0, 0x8, 0x80000001], [0x6, 0x1f, 0x7fff, 0x2, 0x5, 0xfffffffffffffffc, 0x700000000, 0x100000000, 0x6, 0x65b7, 0x3c814875, 0x8, 0x8001, 0x501c8f71, 0x7f, 0x6, 0x8, 0x1000, 0x4, 0x7fffffffffffffff, 0x4, 0x4, 0x5, 0x6, 0x2, 0x6, 0x100000001, 0x4, 0x200, 0x7, 0x200, 0xcf, 0x878, 0x8, 0x6, 0x0, 0x2, 0x8, 0x7, 0xed, 0x3f, 0x70, 0x4, 0x5, 0x3, 0x7fffffff, 0x100000001, 0x3, 0x9, 0x6, 0x3, 0x80000000, 0x6, 0x7, 0x6, 0x5, 0x2, 0x3, 0x9, 0x0, 0x4c394f20, 0xac8d, 0x9, 0x7, 0xd3, 0x80000001, 0x8, 0x5, 0x6, 0x3, 0xa34, 0x888, 0x4, 0x8000, 0x5, 0x81, 0x40, 0xa1, 0x7, 0x2, 0x4, 0x7fffffffffffffff, 0xfffffffffffffff7, 0x0, 0xfffffffffffffff9, 0x8, 0x2, 0x5, 0x9, 0x4, 0xe28, 0x2, 0x3c, 0x2, 0x4, 0x8, 0xff, 0xff, 0x4, 0x8000000000000000, 0x1, 0x200, 0xd7d, 0x4, 0x9, 0x7ff, 0x4, 0x30381d9d, 0x6, 0x18, 0x3, 0x3, 0x5, 0xfffffffffffffff7, 0x1, 0x50a, 0x6, 0x5, 0x4, 0xfff, 0xda45]})

[ 1028.530334][T30245] R13: 000000000000000b R14: 00007f1d2ed82f80 R15: 00007ffe807e09e8
[ 1028.538307][T30245]  </TASK>
[ 1028.543795][T30358] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=30358 comm=syz-executor.4
[ 1028.552402][T30379] FAULT_INJECTION: forcing a failure.
[ 1028.552402][T30379] name failslab, interval 1, probability 0, space 0, times 0
[ 1028.569212][T30379] CPU: 1 PID: 30379 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1028.577909][T30379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1028.587953][T30379] Call Trace:
[ 1028.591272][T30379]  <TASK>
[ 1028.593595][T30243] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR
[ 1028.594187][T30379]  dump_stack_lvl+0xda/0x130
[ 1028.594220][T30379]  dump_stack+0x15/0x20
[ 1028.611938][T30379]  should_fail_ex+0x21f/0x230
[ 1028.616760][T30379]  ? dup_fd+0x4c/0x600
[ 1028.620896][T30379]  __should_failslab+0x92/0xa0
[ 1028.625681][T30379]  should_failslab+0x9/0x20
11:56:21 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:21 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000040)={0x0, 0x48, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:21 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (fail_nth: 12)

11:56:21 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = socket(0x10, 0x2, 0x0)
write(r1, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
sendmsg$TIPC_NL_PUBL_GET(r1, &(0x7f0000000280)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000240)={&(0x7f0000000c80)={0x208, 0x0, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x194, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x303}, @TIPC_NLA_NODE_KEY={0x4b, 0x4, {'gcm(aes)\x00', 0x23, "71b11e960b2febea5112f1d0c0f50bd1028a6f33234e85e91336877dc50572d71242b0"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0xa1, 0x3, "83971165bda0921303b48fedaf397ee167cf54e291ccfc13e1e8f637611870ebfcd7200f790d680a434041dadd65f11f2a346a7e2349159f1924ce5bbe3e62152cdc361e5d508bdfbc843a0289f2144ff852c44d6106975d97b1395292e7b4c552f8894235915e2f539d34f070c22d7cbe54b819854a7e4ebacfdad434112407f9243342c01b39c1de404d4f746df36de0bf7a25a450c42bee71d0eb6c"}, @TIPC_NLA_NODE_KEY={0x42, 0x4, {'gcm(aes)\x00', 0x1a, "6886dcc17016604ce7509a5771eba73ecc7e2a43a6467c706b19"}}, @TIPC_NLA_NODE_ID={0x4d, 0x3, "9cb9ea3e875261351255c7f1113698ae8dbc7d169ff5bf414a104a323398eaddce009b21ea4b3c67ac4cfd565670cf800f364c3ae984991934763fe88a123b04eb1979a96de8b9a46c"}]}, @TIPC_NLA_MEDIA={0x38, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffff7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc4}]}]}, @TIPC_NLA_SOCK={0x28, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}]}]}]}, 0x208}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000) (async)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) (async)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/seq/clients\x00', 0x0, 0x0) (async)
r4 = socket(0x10, 0x2, 0x0)
write(r4, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
fsetxattr$trusted_overlay_nlink(r4, &(0x7f0000000100), &(0x7f0000000140)={'L-', 0x81}, 0x16, 0x3) (async)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f00000000c0)={{0x1, 0x1, 0x63, 0x1, 0x81f}})
readv(r2, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)
r5 = socket(0x10, 0x2, 0x0)
write(r5, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
ioctl$BTRFS_IOC_GET_DEV_STATS(r3, 0xc4089434, &(0x7f0000000400)={<r6=>0x0, 0x8000000000000000, 0x0, [0x2, 0x140000, 0x0, 0x8000000000000001, 0x9], [0x3ff, 0x2, 0x7, 0xdada, 0x3ff, 0x1, 0x97, 0x8, 0x1, 0xbd9, 0x7fff, 0x2, 0x100000000, 0x2, 0x7, 0x9, 0x10001, 0x6, 0x1, 0x8884000000000, 0x4e5270db, 0x6, 0x127, 0x8, 0x0, 0x80, 0x208, 0x0, 0x7, 0x2, 0x6e, 0x0, 0x401, 0xff000000, 0x875, 0x1ff, 0x6000000000, 0xffffffffffffffe0, 0xa9, 0x4, 0x7, 0x0, 0x10001, 0x8, 0x7fff, 0x9, 0x4c1, 0x85, 0x0, 0x80000000, 0x5, 0xffffffff, 0x1, 0x4, 0x1, 0x401, 0x8, 0x3, 0x4, 0x9, 0x2, 0x5, 0x8, 0x2, 0x3, 0x2, 0x0, 0x26, 0x4, 0x400, 0x7f, 0x7, 0x401, 0x8, 0x100000000, 0x100000001, 0x9, 0x9, 0xd04, 0x8, 0x8000000000000000, 0x2, 0x0, 0xfffffffffffffffa, 0x0, 0x6, 0x100, 0x214, 0x6, 0x6, 0x9, 0x3ff, 0x0, 0x8, 0x8, 0xfe8b, 0x5, 0x7, 0xfffffffffffffff7, 0x0, 0x0, 0xffff, 0x80000001, 0x7fffffff, 0xa58f, 0x9, 0x46b, 0xa83, 0x0, 0x7f, 0xb22, 0x1, 0x8, 0x3, 0x100000000, 0x7fff, 0x80000001, 0x4, 0x4, 0x400, 0x9]})
ioctl$BTRFS_IOC_GET_DEV_STATS(r5, 0xc4089434, &(0x7f0000000840)={r6, 0x8000000000000000, 0x1, [0x80000001, 0x6, 0x0, 0x8, 0x80000001], [0x6, 0x1f, 0x7fff, 0x2, 0x5, 0xfffffffffffffffc, 0x700000000, 0x100000000, 0x6, 0x65b7, 0x3c814875, 0x8, 0x8001, 0x501c8f71, 0x7f, 0x6, 0x8, 0x1000, 0x4, 0x7fffffffffffffff, 0x4, 0x4, 0x5, 0x6, 0x2, 0x6, 0x100000001, 0x4, 0x200, 0x7, 0x200, 0xcf, 0x878, 0x8, 0x6, 0x0, 0x2, 0x8, 0x7, 0xed, 0x3f, 0x70, 0x4, 0x5, 0x3, 0x7fffffff, 0x100000001, 0x3, 0x9, 0x6, 0x3, 0x80000000, 0x6, 0x7, 0x6, 0x5, 0x2, 0x3, 0x9, 0x0, 0x4c394f20, 0xac8d, 0x9, 0x7, 0xd3, 0x80000001, 0x8, 0x5, 0x6, 0x3, 0xa34, 0x888, 0x4, 0x8000, 0x5, 0x81, 0x40, 0xa1, 0x7, 0x2, 0x4, 0x7fffffffffffffff, 0xfffffffffffffff7, 0x0, 0xfffffffffffffff9, 0x8, 0x2, 0x5, 0x9, 0x4, 0xe28, 0x2, 0x3c, 0x2, 0x4, 0x8, 0xff, 0xff, 0x4, 0x8000000000000000, 0x1, 0x200, 0xd7d, 0x4, 0x9, 0x7ff, 0x4, 0x30381d9d, 0x6, 0x18, 0x3, 0x3, 0x5, 0xfffffffffffffff7, 0x1, 0x50a, 0x6, 0x5, 0x4, 0xfff, 0xda45]})

[ 1028.630187][T30379]  kmem_cache_alloc+0x4e/0x250
[ 1028.634952][T30379]  dup_fd+0x4c/0x600
[ 1028.638864][T30379]  ? avc_has_perm+0xd4/0x150
[ 1028.643506][T30379]  copy_files+0xc0/0x130
[ 1028.647747][T30379]  copy_process+0xf66/0x20a0
[ 1028.652411][T30379]  kernel_clone+0x169/0x560
[ 1028.656921][T30379]  __x64_sys_clone+0xe8/0x120
[ 1028.661627][T30379]  do_syscall_64+0x44/0x110
[ 1028.666146][T30379]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1028.672208][T30379] RIP: 0033:0x7f424acd3ba9
[ 1028.676615][T30379] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1028.696221][T30379] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1028.704689][T30379] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1028.712664][T30379] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1028.720699][T30379] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1028.728674][T30379] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[ 1028.736649][T30379] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1028.740127][T30563] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=30563 comm=syz-executor.4
[ 1028.744641][T30379]  </TASK>
[ 1028.749393][T30566] FAULT_INJECTION: forcing a failure.
[ 1028.749393][T30566] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1028.773827][T30566] CPU: 1 PID: 30566 Comm: syz-executor.2 Not tainted 6.7.0-rc6-syzkaller #0
11:56:21 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 10)

11:56:21 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
close_range(r0, 0xffffffffffffffff, 0x0) (async)
r1 = socket(0x10, 0x2, 0x0)
write(r1, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
sendmsg$TIPC_NL_PUBL_GET(r1, &(0x7f0000000280)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000240)={&(0x7f0000000c80)={0x208, 0x0, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x194, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x303}, @TIPC_NLA_NODE_KEY={0x4b, 0x4, {'gcm(aes)\x00', 0x23, "71b11e960b2febea5112f1d0c0f50bd1028a6f33234e85e91336877dc50572d71242b0"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0xa1, 0x3, "83971165bda0921303b48fedaf397ee167cf54e291ccfc13e1e8f637611870ebfcd7200f790d680a434041dadd65f11f2a346a7e2349159f1924ce5bbe3e62152cdc361e5d508bdfbc843a0289f2144ff852c44d6106975d97b1395292e7b4c552f8894235915e2f539d34f070c22d7cbe54b819854a7e4ebacfdad434112407f9243342c01b39c1de404d4f746df36de0bf7a25a450c42bee71d0eb6c"}, @TIPC_NLA_NODE_KEY={0x42, 0x4, {'gcm(aes)\x00', 0x1a, "6886dcc17016604ce7509a5771eba73ecc7e2a43a6467c706b19"}}, @TIPC_NLA_NODE_ID={0x4d, 0x3, "9cb9ea3e875261351255c7f1113698ae8dbc7d169ff5bf414a104a323398eaddce009b21ea4b3c67ac4cfd565670cf800f364c3ae984991934763fe88a123b04eb1979a96de8b9a46c"}]}, @TIPC_NLA_MEDIA={0x38, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffff7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc4}]}]}, @TIPC_NLA_SOCK={0x28, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}]}]}]}, 0x208}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) (async)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/seq/clients\x00', 0x0, 0x0)
r4 = socket(0x10, 0x2, 0x0)
write(r4, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
fsetxattr$trusted_overlay_nlink(r4, &(0x7f0000000100), &(0x7f0000000140)={'L-', 0x81}, 0x16, 0x3)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f00000000c0)={{0x1, 0x1, 0x63, 0x1, 0x81f}}) (async, rerun: 32)
readv(r2, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1) (rerun: 32)
r5 = socket(0x10, 0x2, 0x0)
write(r5, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async, rerun: 32)
ioctl$BTRFS_IOC_GET_DEV_STATS(r3, 0xc4089434, &(0x7f0000000400)={<r6=>0x0, 0x8000000000000000, 0x0, [0x2, 0x140000, 0x0, 0x8000000000000001, 0x9], [0x3ff, 0x2, 0x7, 0xdada, 0x3ff, 0x1, 0x97, 0x8, 0x1, 0xbd9, 0x7fff, 0x2, 0x100000000, 0x2, 0x7, 0x9, 0x10001, 0x6, 0x1, 0x8884000000000, 0x4e5270db, 0x6, 0x127, 0x8, 0x0, 0x80, 0x208, 0x0, 0x7, 0x2, 0x6e, 0x0, 0x401, 0xff000000, 0x875, 0x1ff, 0x6000000000, 0xffffffffffffffe0, 0xa9, 0x4, 0x7, 0x0, 0x10001, 0x8, 0x7fff, 0x9, 0x4c1, 0x85, 0x0, 0x80000000, 0x5, 0xffffffff, 0x1, 0x4, 0x1, 0x401, 0x8, 0x3, 0x4, 0x9, 0x2, 0x5, 0x8, 0x2, 0x3, 0x2, 0x0, 0x26, 0x4, 0x400, 0x7f, 0x7, 0x401, 0x8, 0x100000000, 0x100000001, 0x9, 0x9, 0xd04, 0x8, 0x8000000000000000, 0x2, 0x0, 0xfffffffffffffffa, 0x0, 0x6, 0x100, 0x214, 0x6, 0x6, 0x9, 0x3ff, 0x0, 0x8, 0x8, 0xfe8b, 0x5, 0x7, 0xfffffffffffffff7, 0x0, 0x0, 0xffff, 0x80000001, 0x7fffffff, 0xa58f, 0x9, 0x46b, 0xa83, 0x0, 0x7f, 0xb22, 0x1, 0x8, 0x3, 0x100000000, 0x7fff, 0x80000001, 0x4, 0x4, 0x400, 0x9]}) (rerun: 32)
ioctl$BTRFS_IOC_GET_DEV_STATS(r5, 0xc4089434, &(0x7f0000000840)={r6, 0x8000000000000000, 0x1, [0x80000001, 0x6, 0x0, 0x8, 0x80000001], [0x6, 0x1f, 0x7fff, 0x2, 0x5, 0xfffffffffffffffc, 0x700000000, 0x100000000, 0x6, 0x65b7, 0x3c814875, 0x8, 0x8001, 0x501c8f71, 0x7f, 0x6, 0x8, 0x1000, 0x4, 0x7fffffffffffffff, 0x4, 0x4, 0x5, 0x6, 0x2, 0x6, 0x100000001, 0x4, 0x200, 0x7, 0x200, 0xcf, 0x878, 0x8, 0x6, 0x0, 0x2, 0x8, 0x7, 0xed, 0x3f, 0x70, 0x4, 0x5, 0x3, 0x7fffffff, 0x100000001, 0x3, 0x9, 0x6, 0x3, 0x80000000, 0x6, 0x7, 0x6, 0x5, 0x2, 0x3, 0x9, 0x0, 0x4c394f20, 0xac8d, 0x9, 0x7, 0xd3, 0x80000001, 0x8, 0x5, 0x6, 0x3, 0xa34, 0x888, 0x4, 0x8000, 0x5, 0x81, 0x40, 0xa1, 0x7, 0x2, 0x4, 0x7fffffffffffffff, 0xfffffffffffffff7, 0x0, 0xfffffffffffffff9, 0x8, 0x2, 0x5, 0x9, 0x4, 0xe28, 0x2, 0x3c, 0x2, 0x4, 0x8, 0xff, 0xff, 0x4, 0x8000000000000000, 0x1, 0x200, 0xd7d, 0x4, 0x9, 0x7ff, 0x4, 0x30381d9d, 0x6, 0x18, 0x3, 0x3, 0x5, 0xfffffffffffffff7, 0x1, 0x50a, 0x6, 0x5, 0x4, 0xfff, 0xda45]})

[ 1028.782509][T30566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1028.792561][T30566] Call Trace:
[ 1028.795905][T30566]  <TASK>
[ 1028.798829][T30566]  dump_stack_lvl+0xda/0x130
[ 1028.803532][T30566]  dump_stack+0x15/0x20
[ 1028.807771][T30566]  should_fail_ex+0x21f/0x230
[ 1028.812506][T30566]  __should_fail_alloc_page+0xfd/0x110
[ 1028.817981][T30566]  __alloc_pages+0x108/0x340
[ 1028.822572][T30566]  alloc_pages_mpol+0xb1/0x1d0
[ 1028.827335][T30566]  alloc_pages+0xe0/0x100
11:56:21 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1028.831732][T30566]  __get_free_pages+0xc/0x30
[ 1028.836322][T30566]  pgd_alloc+0x1d/0x120
[ 1028.840570][T30566]  mm_init+0x355/0x6d0
[ 1028.844727][T30566]  ? kmem_cache_alloc+0x15a/0x250
[ 1028.849842][T30566]  copy_mm+0x11c/0xf50
[ 1028.853924][T30566]  ? slab_post_alloc_hook+0x1f2/0x2f0
[ 1028.859374][T30566]  ? copy_signal+0x54/0x360
[ 1028.863945][T30566]  ? kmem_cache_alloc+0x15a/0x250
[ 1028.868975][T30566]  ? hrtimer_init+0x104/0x1f0
[ 1028.873685][T30566]  ? __init_rwsem+0x5d/0x70
[ 1028.878251][T30566]  ? copy_signal+0x338/0x360
11:56:21 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000140)={0x0, 0x0, 0x4})
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x5e1080, 0x0)
write(0xffffffffffffffff, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
r4 = socket(0x10, 0x2, 0x0)
io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000000100)=[r3, 0xffffffffffffffff, r4], 0x3)
r5 = socket(0x10, 0x2, 0x0)
write(r5, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
ioctl$BTRFS_IOC_SEND(r5, 0x40489426, &(0x7f0000000200)={{}, 0x4, &(0x7f00000001c0)=[0xf4, 0x3, 0x1, 0x0], 0x5, 0x8})
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)

[ 1028.882913][T30566]  copy_process+0x1002/0x20a0
[ 1028.887594][T30566]  kernel_clone+0x169/0x560
[ 1028.892118][T30566]  __x64_sys_clone+0xe8/0x120
[ 1028.896797][T30566]  do_syscall_64+0x44/0x110
[ 1028.901314][T30566]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1028.907205][T30566] RIP: 0033:0x7f1d2ec63ba9
[ 1028.911726][T30566] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1028.923193][T30779] FAULT_INJECTION: forcing a failure.
[ 1028.923193][T30779] name failslab, interval 1, probability 0, space 0, times 0
[ 1028.931322][T30566] RSP: 002b:00007f1d2dfe6078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1028.931344][T30566] RAX: ffffffffffffffda RBX: 00007f1d2ed82f80 RCX: 00007f1d2ec63ba9
[ 1028.931357][T30566] RDX: 0000000020000680 RSI: 0000000000000000 RDI: 0000000000080000
[ 1028.931369][T30566] RBP: 00007f1d2dfe6120 R08: 0000000000000000 R09: 0000000000000000
[ 1028.931382][T30566] R10: 0000000020000a40 R11: 0000000000000206 R12: 0000000000000002
11:56:21 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (fail_nth: 13)

[ 1028.931394][T30566] R13: 000000000000000b R14: 00007f1d2ed82f80 R15: 00007ffe807e09e8
[ 1028.931409][T30566]  </TASK>
[ 1028.995330][T30779] CPU: 0 PID: 30779 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1029.004039][T30779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1029.014091][T30779] Call Trace:
[ 1029.017365][T30779]  <TASK>
[ 1029.020293][T30779]  dump_stack_lvl+0xda/0x130
[ 1029.024958][T30779]  dump_stack+0x15/0x20
[ 1029.029147][T30779]  should_fail_ex+0x21f/0x230
[ 1029.033855][T30779]  ? copy_signal+0x54/0x360
[ 1029.037017][T30785] FAULT_INJECTION: forcing a failure.
[ 1029.037017][T30785] name failslab, interval 1, probability 0, space 0, times 0
[ 1029.038354][T30779]  __should_failslab+0x92/0xa0
[ 1029.038386][T30779]  should_failslab+0x9/0x20
[ 1029.060171][T30779]  kmem_cache_alloc+0x4e/0x250
[ 1029.064985][T30779]  copy_signal+0x54/0x360
[ 1029.069302][T30779]  copy_process+0xfdb/0x20a0
[ 1029.073882][T30779]  kernel_clone+0x169/0x560
[ 1029.078375][T30779]  __x64_sys_clone+0xe8/0x120
[ 1029.083093][T30779]  do_syscall_64+0x44/0x110
[ 1029.087651][T30779]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1029.093538][T30779] RIP: 0033:0x7f424acd3ba9
[ 1029.097946][T30779] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1029.117539][T30779] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1029.125985][T30779] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1029.134011][T30779] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1029.141975][T30779] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1029.150008][T30779] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1029.158024][T30779] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1029.165985][T30779]  </TASK>
[ 1029.168988][T30785] CPU: 1 PID: 30785 Comm: syz-executor.2 Not tainted 6.7.0-rc6-syzkaller #0
[ 1029.177670][T30785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1029.187730][T30785] Call Trace:
[ 1029.191007][T30785]  <TASK>
[ 1029.193938][T30785]  dump_stack_lvl+0xda/0x130
[ 1029.198607][T30785]  dump_stack+0x15/0x20
[ 1029.202799][T30785]  should_fail_ex+0x21f/0x230
[ 1029.207494][T30785]  ? copy_fs_struct+0x31/0x100
[ 1029.212329][T30785]  __should_failslab+0x92/0xa0
[ 1029.217136][T30785]  should_failslab+0x9/0x20
[ 1029.221683][T30785]  kmem_cache_alloc+0x4e/0x250
[ 1029.226445][T30785]  copy_fs_struct+0x31/0x100
[ 1029.231059][T30785]  copy_fs+0x59/0xf0
[ 1029.234933][T30785]  copy_process+0xf8d/0x20a0
[ 1029.239558][T30785]  kernel_clone+0x169/0x560
[ 1029.244100][T30785]  __x64_sys_clone+0xe8/0x120
[ 1029.248782][T30785]  do_syscall_64+0x44/0x110
[ 1029.253289][T30785]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1029.259230][T30785] RIP: 0033:0x7f1d2ec63ba9
[ 1029.263694][T30785] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1029.283366][T30785] RSP: 002b:00007f1d2dfe6078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1029.291817][T30785] RAX: ffffffffffffffda RBX: 00007f1d2ed82f80 RCX: 00007f1d2ec63ba9
[ 1029.299769][T30785] RDX: 0000000020000680 RSI: 0000000000000000 RDI: 0000000000080000
[ 1029.307802][T30785] RBP: 00007f1d2dfe6120 R08: 0000000000000000 R09: 0000000000000000
[ 1029.315806][T30785] R10: 0000000020000a40 R11: 0000000000000206 R12: 0000000000000002
[ 1029.323823][T30785] R13: 000000000000000b R14: 00007f1d2ed82f80 R15: 00007ffe807e09e8
[ 1029.331800][T30785]  </TASK>
11:56:21 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 11)

11:56:21 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async, rerun: 32)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000040)={0x0, 0x48, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:21 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = dup3(0xffffffffffffffff, r0, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080))

11:56:21 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:21 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (fail_nth: 14)

[ 1029.397760][T30796] FAULT_INJECTION: forcing a failure.
[ 1029.397760][T30796] name failslab, interval 1, probability 0, space 0, times 0
[ 1029.410406][T30796] CPU: 1 PID: 30796 Comm: syz-executor.2 Not tainted 6.7.0-rc6-syzkaller #0
[ 1029.419081][T30796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1029.429120][T30796] Call Trace:
[ 1029.432392][T30796]  <TASK>
[ 1029.435447][T30796]  dump_stack_lvl+0xda/0x130
[ 1029.440049][T30796]  dump_stack+0x15/0x20
[ 1029.444273][T30796]  should_fail_ex+0x21f/0x230
[ 1029.445064][T30799] FAULT_INJECTION: forcing a failure.
[ 1029.445064][T30799] name failslab, interval 1, probability 0, space 0, times 0
[ 1029.448986][T30796]  ? copy_sighand+0x52/0x1a0
[ 1029.466135][T30796]  __should_failslab+0x92/0xa0
[ 1029.470950][T30796]  should_failslab+0x9/0x20
[ 1029.475443][T30796]  kmem_cache_alloc+0x4e/0x250
[ 1029.480269][T30796]  copy_sighand+0x52/0x1a0
[ 1029.484714][T30796]  copy_process+0xfb4/0x20a0
[ 1029.489382][T30796]  kernel_clone+0x169/0x560
[ 1029.493887][T30796]  __x64_sys_clone+0xe8/0x120
[ 1029.498558][T30796]  do_syscall_64+0x44/0x110
[ 1029.503054][T30796]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1029.508947][T30796] RIP: 0033:0x7f1d2ec63ba9
[ 1029.513350][T30796] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1029.532964][T30796] RSP: 002b:00007f1d2dfe6078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1029.541425][T30796] RAX: ffffffffffffffda RBX: 00007f1d2ed82f80 RCX: 00007f1d2ec63ba9
[ 1029.549388][T30796] RDX: 0000000020000680 RSI: 0000000000000000 RDI: 0000000000080000
[ 1029.557347][T30796] RBP: 00007f1d2dfe6120 R08: 0000000000000000 R09: 0000000000000000
[ 1029.565311][T30796] R10: 0000000020000a40 R11: 0000000000000206 R12: 0000000000000002
[ 1029.573350][T30796] R13: 000000000000000b R14: 00007f1d2ed82f80 R15: 00007ffe807e09e8
[ 1029.581310][T30796]  </TASK>
[ 1029.584315][T30799] CPU: 0 PID: 30799 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
11:56:22 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (fail_nth: 15)

[ 1029.592992][T30799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1029.603065][T30799] Call Trace:
[ 1029.606340][T30799]  <TASK>
[ 1029.609277][T30799]  dump_stack_lvl+0xda/0x130
[ 1029.613872][T30799]  dump_stack+0x15/0x20
[ 1029.618101][T30799]  should_fail_ex+0x21f/0x230
[ 1029.618356][T30806] FAULT_INJECTION: forcing a failure.
[ 1029.618356][T30806] name failslab, interval 1, probability 0, space 0, times 0
[ 1029.622776][T30799]  ? kvmalloc_node+0x72/0x160
[ 1029.622800][T30799]  __should_failslab+0x92/0xa0
[ 1029.644798][T30799]  should_failslab+0x9/0x20
[ 1029.649333][T30799]  __kmem_cache_alloc_node+0x4e/0x210
[ 1029.654739][T30799]  ? kvmalloc_node+0x72/0x160
[ 1029.659477][T30799]  __kmalloc_node+0x98/0x1a0
[ 1029.664148][T30799]  kvmalloc_node+0x72/0x160
[ 1029.668643][T30799]  alloc_fdtable+0xfe/0x190
[ 1029.673183][T30799]  dup_fd+0x4b9/0x600
[ 1029.677186][T30799]  copy_files+0xc0/0x130
[ 1029.681437][T30799]  copy_process+0xf66/0x20a0
[ 1029.686069][T30799]  kernel_clone+0x169/0x560
[ 1029.690558][T30799]  __x64_sys_clone+0xe8/0x120
[ 1029.695260][T30799]  do_syscall_64+0x44/0x110
[ 1029.699814][T30799]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1029.705783][T30799] RIP: 0033:0x7f424acd3ba9
[ 1029.710233][T30799] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1029.729851][T30799] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1029.738251][T30799] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1029.746208][T30799] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1029.754186][T30799] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1029.762148][T30799] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1029.770171][T30799] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1029.778210][T30799]  </TASK>
[ 1029.781213][T30806] CPU: 1 PID: 30806 Comm: syz-executor.2 Not tainted 6.7.0-rc6-syzkaller #0
11:56:22 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000140)={0x0, 0x0, 0x4})
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x5e1080, 0x0)
write(0xffffffffffffffff, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
r4 = socket(0x10, 0x2, 0x0)
io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000000100)=[r3, 0xffffffffffffffff, r4], 0x3)
r5 = socket(0x10, 0x2, 0x0)
write(r5, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
ioctl$BTRFS_IOC_SEND(r5, 0x40489426, &(0x7f0000000200)={{}, 0x4, &(0x7f00000001c0)=[0xf4, 0x3, 0x1, 0x0], 0x5, 0x8})
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)
io_uring_setup(0x4f01, &(0x7f0000000140)={0x0, 0x0, 0x4}) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) (async)
bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8) (async)
openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x5e1080, 0x0) (async)
write(0xffffffffffffffff, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
socket(0x10, 0x2, 0x0) (async)
io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000000100)=[r3, 0xffffffffffffffff, r4], 0x3) (async)
socket(0x10, 0x2, 0x0) (async)
write(r5, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
ioctl$BTRFS_IOC_SEND(r5, 0x40489426, &(0x7f0000000200)={{}, 0x4, &(0x7f00000001c0)=[0xf4, 0x3, 0x1, 0x0], 0x5, 0x8}) (async)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1) (async)

11:56:22 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 12)

[ 1029.789921][T30806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1029.799976][T30806] Call Trace:
[ 1029.803253][T30806]  <TASK>
[ 1029.806177][T30806]  dump_stack_lvl+0xda/0x130
[ 1029.810782][T30806]  dump_stack+0x15/0x20
[ 1029.814981][T30806]  should_fail_ex+0x21f/0x230
[ 1029.819674][T30806]  ? copy_signal+0x54/0x360
[ 1029.824246][T30806]  __should_failslab+0x92/0xa0
[ 1029.829034][T30806]  should_failslab+0x9/0x20
[ 1029.833601][T30806]  kmem_cache_alloc+0x4e/0x250
[ 1029.838378][T30806]  copy_signal+0x54/0x360
[ 1029.842772][T30806]  copy_process+0xfdb/0x20a0
[ 1029.846712][T30812] FAULT_INJECTION: forcing a failure.
[ 1029.846712][T30812] name failslab, interval 1, probability 0, space 0, times 0
[ 1029.847414][T30806]  kernel_clone+0x169/0x560
[ 1029.847438][T30806]  __x64_sys_clone+0xe8/0x120
[ 1029.847456][T30806]  do_syscall_64+0x44/0x110
[ 1029.873728][T30806]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1029.879631][T30806] RIP: 0033:0x7f1d2ec63ba9
[ 1029.884056][T30806] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1029.903665][T30806] RSP: 002b:00007f1d2dfe6078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1029.912063][T30806] RAX: ffffffffffffffda RBX: 00007f1d2ed82f80 RCX: 00007f1d2ec63ba9
[ 1029.920069][T30806] RDX: 0000000020000680 RSI: 0000000000000000 RDI: 0000000000080000
[ 1029.928030][T30806] RBP: 00007f1d2dfe6120 R08: 0000000000000000 R09: 0000000000000000
[ 1029.936029][T30806] R10: 0000000020000a40 R11: 0000000000000206 R12: 0000000000000002
[ 1029.944074][T30806] R13: 000000000000000b R14: 00007f1d2ed82f80 R15: 00007ffe807e09e8
[ 1029.952084][T30806]  </TASK>
[ 1029.955090][T30812] CPU: 0 PID: 30812 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1029.963825][T30812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1029.973902][T30812] Call Trace:
[ 1029.977179][T30812]  <TASK>
[ 1029.980110][T30812]  dump_stack_lvl+0xda/0x130
[ 1029.984780][T30812]  dump_stack+0x15/0x20
[ 1029.988949][T30812]  should_fail_ex+0x21f/0x230
[ 1029.993647][T30812]  ? kvmalloc_node+0x72/0x160
11:56:22 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:22 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (fail_nth: 16)

[ 1029.998359][T30812]  __should_failslab+0x92/0xa0
[ 1030.003125][T30812]  should_failslab+0x9/0x20
[ 1030.007633][T30812]  __kmem_cache_alloc_node+0x4e/0x210
[ 1030.013056][T30812]  ? kvmalloc_node+0x72/0x160
[ 1030.017769][T30812]  __kmalloc_node+0x98/0x1a0
[ 1030.019620][T30916] FAULT_INJECTION: forcing a failure.
[ 1030.019620][T30916] name failslab, interval 1, probability 0, space 0, times 0
[ 1030.022384][T30812]  kvmalloc_node+0x72/0x160
[ 1030.022408][T30812]  alloc_fdtable+0xfe/0x190
[ 1030.022440][T30812]  dup_fd+0x4b9/0x600
[ 1030.022460][T30812]  copy_files+0xc0/0x130
[ 1030.052219][T30812]  copy_process+0xf66/0x20a0
[ 1030.056833][T30812]  kernel_clone+0x169/0x560
[ 1030.061350][T30812]  __x64_sys_clone+0xe8/0x120
[ 1030.066015][T30812]  do_syscall_64+0x44/0x110
[ 1030.070512][T30812]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1030.076468][T30812] RIP: 0033:0x7f424acd3ba9
[ 1030.080954][T30812] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1030.100552][T30812] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1030.108951][T30812] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1030.116910][T30812] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1030.124868][T30812] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1030.132826][T30812] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1030.140856][T30812] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
11:56:22 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000140)={0x0, 0x0, 0x4})
close_range(r0, 0xffffffffffffffff, 0x0) (async)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8) (async)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x5e1080, 0x0) (async)
write(0xffffffffffffffff, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
r4 = socket(0x10, 0x2, 0x0)
io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000000100)=[r3, 0xffffffffffffffff, r4], 0x3) (async)
r5 = socket(0x10, 0x2, 0x0)
write(r5, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
ioctl$BTRFS_IOC_SEND(r5, 0x40489426, &(0x7f0000000200)={{}, 0x4, &(0x7f00000001c0)=[0xf4, 0x3, 0x1, 0x0], 0x5, 0x8})
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)

11:56:22 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 13)

[ 1030.148817][T30812]  </TASK>
[ 1030.151820][T30916] CPU: 1 PID: 30916 Comm: syz-executor.2 Not tainted 6.7.0-rc6-syzkaller #0
[ 1030.160504][T30916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1030.170568][T30916] Call Trace:
[ 1030.173842][T30916]  <TASK>
[ 1030.176814][T30916]  dump_stack_lvl+0xda/0x130
[ 1030.181492][T30916]  dump_stack+0x15/0x20
[ 1030.185714][T30916]  should_fail_ex+0x21f/0x230
[ 1030.190402][T30916]  ? vm_area_dup+0x98/0x130
[ 1030.194986][T30916]  __should_failslab+0x92/0xa0
11:56:22 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r2, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000080)={{0x3, 0x2, 0xfffffffd, 0x0, 0x40}})
r3 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0), 0x103200, 0x0)
ioctl$SNDRV_TIMER_IOCTL_STATUS32(r3, 0x80585414, &(0x7f0000000100))
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)

[ 1030.199763][T30916]  should_failslab+0x9/0x20
[ 1030.204324][T30916]  kmem_cache_alloc+0x4e/0x250
[ 1030.209106][T30916]  vm_area_dup+0x98/0x130
[ 1030.213446][T30916]  copy_mm+0x6b6/0xf50
[ 1030.217558][T30916]  copy_process+0x1002/0x20a0
[ 1030.222317][T30916]  kernel_clone+0x169/0x560
[ 1030.226817][T30916]  __x64_sys_clone+0xe8/0x120
[ 1030.230904][T31021] FAULT_INJECTION: forcing a failure.
[ 1030.230904][T31021] name failslab, interval 1, probability 0, space 0, times 0
[ 1030.231545][T30916]  do_syscall_64+0x44/0x110
[ 1030.248637][T30916]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1030.254535][T30916] RIP: 0033:0x7f1d2ec63ba9
[ 1030.258934][T30916] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1030.278594][T30916] RSP: 002b:00007f1d2dfe6078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1030.287024][T30916] RAX: ffffffffffffffda RBX: 00007f1d2ed82f80 RCX: 00007f1d2ec63ba9
[ 1030.294987][T30916] RDX: 0000000020000680 RSI: 0000000000000000 RDI: 0000000000080000
[ 1030.303038][T30916] RBP: 00007f1d2dfe6120 R08: 0000000000000000 R09: 0000000000000000
[ 1030.310996][T30916] R10: 0000000020000a40 R11: 0000000000000206 R12: 0000000000000002
[ 1030.318954][T30916] R13: 000000000000000b R14: 00007f1d2ed82f80 R15: 00007ffe807e09e8
[ 1030.326916][T30916]  </TASK>
[ 1030.329926][T31021] CPU: 0 PID: 31021 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1030.338608][T31021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1030.348661][T31021] Call Trace:
[ 1030.351935][T31021]  <TASK>
[ 1030.354858][T31021]  dump_stack_lvl+0xda/0x130
[ 1030.359506][T31021]  dump_stack+0x15/0x20
[ 1030.363669][T31021]  should_fail_ex+0x21f/0x230
[ 1030.368549][T31021]  ? mas_alloc_nodes+0x1e2/0x490
[ 1030.373489][T31021]  __should_failslab+0x92/0xa0
[ 1030.378286][T31021]  should_failslab+0x9/0x20
[ 1030.382789][T31021]  kmem_cache_alloc+0x4e/0x250
[ 1030.387608][T31021]  mas_alloc_nodes+0x1e2/0x490
[ 1030.392371][T31021]  mas_expected_entries+0x148/0x200
[ 1030.397580][T31021]  copy_mm+0x41c/0xf50
[ 1030.401660][T31021]  copy_process+0x1002/0x20a0
[ 1030.406408][T31021]  kernel_clone+0x169/0x560
[ 1030.411043][T31021]  __x64_sys_clone+0xe8/0x120
[ 1030.415988][T31021]  do_syscall_64+0x44/0x110
[ 1030.420549][T31021]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1030.426462][T31021] RIP: 0033:0x7f424acd3ba9
[ 1030.430874][T31021] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
11:56:22 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000040)={0x0, 0x48, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:22 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = dup3(0xffffffffffffffff, r0, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080))

11:56:22 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r2, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000080)={{0x3, 0x2, 0xfffffffd, 0x0, 0x40}})
r3 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0), 0x103200, 0x0)
ioctl$SNDRV_TIMER_IOCTL_STATUS32(r3, 0x80585414, &(0x7f0000000100))
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0) (async)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r2, 0x0) (async)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000080)={{0x3, 0x2, 0xfffffffd, 0x0, 0x40}}) (async)
openat$zero(0xffffffffffffff9c, &(0x7f00000000c0), 0x103200, 0x0) (async)
ioctl$SNDRV_TIMER_IOCTL_STATUS32(r3, 0x80585414, &(0x7f0000000100)) (async)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1) (async)

11:56:22 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (fail_nth: 17)

[ 1030.450635][T31021] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1030.459047][T31021] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1030.467012][T31021] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1030.474977][T31021] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1030.482952][T31021] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1030.490922][T31021] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1030.498894][T31021]  </TASK>
11:56:22 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 14)

[ 1030.507786][T31132] FAULT_INJECTION: forcing a failure.
[ 1030.507786][T31132] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1030.521038][T31132] CPU: 0 PID: 31132 Comm: syz-executor.2 Not tainted 6.7.0-rc6-syzkaller #0
[ 1030.529713][T31132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1030.539767][T31132] Call Trace:
[ 1030.543039][T31132]  <TASK>
[ 1030.545965][T31132]  dump_stack_lvl+0xda/0x130
[ 1030.550619][T31132]  dump_stack+0x15/0x20
11:56:23 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1030.554828][T31132]  should_fail_ex+0x21f/0x230
[ 1030.559570][T31132]  __should_fail_alloc_page+0xfd/0x110
[ 1030.565043][T31132]  __alloc_pages+0x108/0x340
[ 1030.569665][T31132]  alloc_pages_mpol+0xb1/0x1d0
[ 1030.574443][T31132]  alloc_pages+0xe0/0x100
[ 1030.578771][T31132]  __get_free_pages+0xc/0x30
[ 1030.583359][T31132]  pgd_alloc+0x1d/0x120
[ 1030.587594][T31132]  mm_init+0x355/0x6d0
[ 1030.591669][T31132]  ? kmem_cache_alloc+0x15a/0x250
[ 1030.595888][T31199] FAULT_INJECTION: forcing a failure.
[ 1030.595888][T31199] name failslab, interval 1, probability 0, space 0, times 0
[ 1030.596713][T31132]  copy_mm+0x11c/0xf50
[ 1030.596734][T31132]  ? slab_post_alloc_hook+0x1f2/0x2f0
[ 1030.618757][T31132]  ? copy_signal+0x54/0x360
[ 1030.623283][T31132]  ? kmem_cache_alloc+0x15a/0x250
[ 1030.628300][T31132]  ? hrtimer_init+0x104/0x1f0
[ 1030.632966][T31132]  ? __init_rwsem+0x5d/0x70
[ 1030.637535][T31132]  ? copy_signal+0x338/0x360
[ 1030.642122][T31132]  copy_process+0x1002/0x20a0
[ 1030.646797][T31132]  kernel_clone+0x169/0x560
[ 1030.651290][T31132]  __x64_sys_clone+0xe8/0x120
[ 1030.655957][T31132]  do_syscall_64+0x44/0x110
[ 1030.660457][T31132]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1030.666342][T31132] RIP: 0033:0x7f1d2ec63ba9
[ 1030.670779][T31132] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1030.690450][T31132] RSP: 002b:00007f1d2dfe6078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1030.698850][T31132] RAX: ffffffffffffffda RBX: 00007f1d2ed82f80 RCX: 00007f1d2ec63ba9
[ 1030.706886][T31132] RDX: 0000000020000680 RSI: 0000000000000000 RDI: 0000000000080000
[ 1030.714843][T31132] RBP: 00007f1d2dfe6120 R08: 0000000000000000 R09: 0000000000000000
[ 1030.722800][T31132] R10: 0000000020000a40 R11: 0000000000000206 R12: 0000000000000002
[ 1030.730762][T31132] R13: 000000000000000b R14: 00007f1d2ed82f80 R15: 00007ffe807e09e8
[ 1030.738723][T31132]  </TASK>
[ 1030.741729][T31199] CPU: 1 PID: 31199 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
11:56:23 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (fail_nth: 18)

[ 1030.750411][T31199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1030.760462][T31199] Call Trace:
[ 1030.763748][T31199]  <TASK>
[ 1030.766737][T31199]  dump_stack_lvl+0xda/0x130
[ 1030.771338][T31199]  dump_stack+0x15/0x20
[ 1030.775625][T31199]  should_fail_ex+0x21f/0x230
[ 1030.780305][T31199]  __should_failslab+0x92/0xa0
[ 1030.785083][T31199]  should_failslab+0x9/0x20
[ 1030.787201][T31245] FAULT_INJECTION: forcing a failure.
[ 1030.787201][T31245] name failslab, interval 1, probability 0, space 0, times 0
[ 1030.789581][T31199]  kmem_cache_alloc_bulk+0x56/0x2e0
[ 1030.807394][T31199]  mas_alloc_nodes+0x2bb/0x490
[ 1030.812149][T31199]  mas_expected_entries+0x148/0x200
[ 1030.817344][T31199]  copy_mm+0x41c/0xf50
[ 1030.821420][T31199]  copy_process+0x1002/0x20a0
[ 1030.826084][T31199]  kernel_clone+0x169/0x560
[ 1030.830576][T31199]  __x64_sys_clone+0xe8/0x120
[ 1030.835355][T31199]  do_syscall_64+0x44/0x110
[ 1030.839889][T31199]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1030.845813][T31199] RIP: 0033:0x7f424acd3ba9
[ 1030.850210][T31199] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1030.869803][T31199] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1030.878219][T31199] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1030.886225][T31199] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1030.894183][T31199] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1030.902164][T31199] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1030.910120][T31199] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1030.918145][T31199]  </TASK>
[ 1030.921157][T31245] CPU: 0 PID: 31245 Comm: syz-executor.2 Not tainted 6.7.0-rc6-syzkaller #0
[ 1030.929843][T31245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1030.939935][T31245] Call Trace:
[ 1030.943210][T31245]  <TASK>
[ 1030.946153][T31245]  dump_stack_lvl+0xda/0x130
[ 1030.950875][T31245]  dump_stack+0x15/0x20
[ 1030.955043][T31245]  should_fail_ex+0x21f/0x230
11:56:23 executing program 4:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r2, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000080)={{0x3, 0x2, 0xfffffffd, 0x0, 0x40}})
r3 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0), 0x103200, 0x0)
ioctl$SNDRV_TIMER_IOCTL_STATUS32(r3, 0x80585414, &(0x7f0000000100))
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0) (async)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r2, 0x0) (async)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000080)={{0x3, 0x2, 0xfffffffd, 0x0, 0x40}}) (async)
openat$zero(0xffffffffffffff9c, &(0x7f00000000c0), 0x103200, 0x0) (async)
ioctl$SNDRV_TIMER_IOCTL_STATUS32(r3, 0x80585414, &(0x7f0000000100)) (async)
readv(r1, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/25, 0x19}], 0x1) (async)

11:56:23 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 15)

[ 1030.959794][T31245]  ? vm_area_dup+0x98/0x130
[ 1030.964300][T31245]  __should_failslab+0x92/0xa0
[ 1030.969075][T31245]  should_failslab+0x9/0x20
[ 1030.973635][T31245]  kmem_cache_alloc+0x4e/0x250
[ 1030.978453][T31245]  vm_area_dup+0x98/0x130
[ 1030.982793][T31245]  copy_mm+0x6b6/0xf50
[ 1030.986878][T31245]  copy_process+0x1002/0x20a0
[ 1030.991617][T31245]  kernel_clone+0x169/0x560
[ 1030.996171][T31245]  __x64_sys_clone+0xe8/0x120
[ 1031.000842][T31245]  do_syscall_64+0x44/0x110
[ 1031.005436][T31245]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1031.011423][T31245] RIP: 0033:0x7f1d2ec63ba9
[ 1031.015867][T31245] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1031.035514][T31245] RSP: 002b:00007f1d2dfe6078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1031.044081][T31245] RAX: ffffffffffffffda RBX: 00007f1d2ed82f80 RCX: 00007f1d2ec63ba9
[ 1031.052053][T31245] RDX: 0000000020000680 RSI: 0000000000000000 RDI: 0000000000080000
11:56:23 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (fail_nth: 1)

[ 1031.060044][T31245] RBP: 00007f1d2dfe6120 R08: 0000000000000000 R09: 0000000000000000
[ 1031.068013][T31245] R10: 0000000020000a40 R11: 0000000000000206 R12: 0000000000000002
[ 1031.076003][T31245] R13: 000000000000000b R14: 00007f1d2ed82f80 R15: 00007ffe807e09e8
[ 1031.083980][T31245]  </TASK>
[ 1031.090772][T31351] FAULT_INJECTION: forcing a failure.
[ 1031.090772][T31351] name failslab, interval 1, probability 0, space 0, times 0
[ 1031.103408][T31351] CPU: 0 PID: 31351 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1031.112083][T31351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1031.122132][T31351] Call Trace:
[ 1031.125408][T31351]  <TASK>
[ 1031.128356][T31351]  dump_stack_lvl+0xda/0x130
[ 1031.132950][T31351]  dump_stack+0x15/0x20
[ 1031.137154][T31351]  should_fail_ex+0x21f/0x230
[ 1031.141886][T31351]  ? copy_signal+0x54/0x360
[ 1031.146389][T31351]  __should_failslab+0x92/0xa0
[ 1031.151171][T31351]  should_failslab+0x9/0x20
[ 1031.155677][T31351]  kmem_cache_alloc+0x4e/0x250
11:56:23 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

[ 1031.160441][T31351]  copy_signal+0x54/0x360
[ 1031.164767][T31351]  copy_process+0xfdb/0x20a0
[ 1031.169446][T31351]  kernel_clone+0x169/0x560
[ 1031.174028][T31351]  __x64_sys_clone+0xe8/0x120
[ 1031.178702][T31351]  do_syscall_64+0x44/0x110
[ 1031.183270][T31351]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1031.189221][T31351] RIP: 0033:0x7f424acd3ba9
11:56:23 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000003880)={0x38, 0x0, 0x0, 0x0, 0xfe}, 0x0)
capset(&(0x7f0000000000)={0x20071026}, &(0x7f0000000040)={0xc, 0x3, 0x2, 0xff, 0x8000, 0x3})
syslog(0x2, &(0x7f0000000200)=""/126, 0x7e)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:23 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (fail_nth: 19)

[ 1031.193636][T31351] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1031.213307][T31351] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1031.221723][T31351] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1031.229688][T31351] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1031.237655][T31351] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1031.245620][T31351] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1031.253588][T31351] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1031.261567][T31351]  </TASK>
11:56:23 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:23 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 16)

11:56:23 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (fail_nth: 20)

11:56:23 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

[ 1031.336745][T31518] FAULT_INJECTION: forcing a failure.
[ 1031.336745][T31518] name failslab, interval 1, probability 0, space 0, times 0
[ 1031.349373][T31518] CPU: 0 PID: 31518 Comm: syz-executor.2 Not tainted 6.7.0-rc6-syzkaller #0
[ 1031.354215][T31548] FAULT_INJECTION: forcing a failure.
[ 1031.354215][T31548] name failslab, interval 1, probability 0, space 0, times 0
[ 1031.358031][T31518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1031.358052][T31518] Call Trace:
[ 1031.384098][T31518]  <TASK>
[ 1031.387031][T31518]  dump_stack_lvl+0xda/0x130
[ 1031.391641][T31518]  dump_stack+0x15/0x20
[ 1031.395790][T31518]  should_fail_ex+0x21f/0x230
[ 1031.400532][T31518]  ? vm_area_dup+0x98/0x130
[ 1031.405062][T31518]  __should_failslab+0x92/0xa0
[ 1031.409897][T31518]  should_failslab+0x9/0x20
[ 1031.414392][T31518]  kmem_cache_alloc+0x4e/0x250
[ 1031.419290][T31518]  vm_area_dup+0x98/0x130
[ 1031.423613][T31518]  copy_mm+0x6b6/0xf50
[ 1031.427671][T31518]  copy_process+0x1002/0x20a0
[ 1031.432400][T31518]  kernel_clone+0x169/0x560
[ 1031.436892][T31518]  __x64_sys_clone+0xe8/0x120
[ 1031.441594][T31518]  do_syscall_64+0x44/0x110
[ 1031.446098][T31518]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1031.451983][T31518] RIP: 0033:0x7f1d2ec63ba9
[ 1031.456387][T31518] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1031.476054][T31518] RSP: 002b:00007f1d2dfe6078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1031.484463][T31518] RAX: ffffffffffffffda RBX: 00007f1d2ed82f80 RCX: 00007f1d2ec63ba9
[ 1031.492483][T31518] RDX: 0000000020000680 RSI: 0000000000000000 RDI: 0000000000080000
[ 1031.500443][T31518] RBP: 00007f1d2dfe6120 R08: 0000000000000000 R09: 0000000000000000
[ 1031.508404][T31518] R10: 0000000020000a40 R11: 0000000000000206 R12: 0000000000000002
[ 1031.516367][T31518] R13: 000000000000000b R14: 00007f1d2ed82f80 R15: 00007ffe807e09e8
[ 1031.524374][T31518]  </TASK>
[ 1031.527447][T31548] CPU: 1 PID: 31548 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
11:56:24 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (fail_nth: 21)

11:56:24 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async, rerun: 64)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64)
sched_setattr(0x0, &(0x7f0000003880)={0x38, 0x0, 0x0, 0x0, 0xfe}, 0x0) (async)
capset(&(0x7f0000000000)={0x20071026}, &(0x7f0000000040)={0xc, 0x3, 0x2, 0xff, 0x8000, 0x3}) (async)
syslog(0x2, &(0x7f0000000200)=""/126, 0x7e) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1031.536175][T31548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1031.546277][T31548] Call Trace:
[ 1031.549600][T31548]  <TASK>
[ 1031.552524][T31548]  dump_stack_lvl+0xda/0x130
[ 1031.557204][T31548]  dump_stack+0x15/0x20
[ 1031.561433][T31548]  should_fail_ex+0x21f/0x230
[ 1031.566129][T31548]  ? vm_area_dup+0x98/0x130
[ 1031.570701][T31548]  __should_failslab+0x92/0xa0
[ 1031.575499][T31548]  should_failslab+0x9/0x20
[ 1031.579999][T31548]  kmem_cache_alloc+0x4e/0x250
11:56:24 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000000c0)=0x7f)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000100)=0x5)

[ 1031.584764][T31548]  vm_area_dup+0x98/0x130
[ 1031.589161][T31548]  copy_mm+0x6b6/0xf50
[ 1031.593251][T31548]  copy_process+0x1002/0x20a0
[ 1031.597947][T31548]  kernel_clone+0x169/0x560
[ 1031.602454][T31548]  __x64_sys_clone+0xe8/0x120
[ 1031.607137][T31548]  do_syscall_64+0x44/0x110
[ 1031.611649][T31548]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1031.617617][T31548] RIP: 0033:0x7f424acd3ba9
[ 1031.622048][T31548] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1031.641661][T31548] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1031.650066][T31548] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1031.658033][T31548] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1031.666000][T31548] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1031.674015][T31548] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
11:56:24 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1031.681981][T31548] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1031.689970][T31548]  </TASK>
11:56:24 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 17)

11:56:24 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000000c0)=0x7f)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000100)=0x5)

11:56:24 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1031.771385][T31867] FAULT_INJECTION: forcing a failure.
[ 1031.771385][T31867] name failslab, interval 1, probability 0, space 0, times 0
[ 1031.784091][T31867] CPU: 0 PID: 31867 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1031.792806][T31867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1031.802860][T31867] Call Trace:
[ 1031.806132][T31867]  <TASK>
[ 1031.809120][T31867]  dump_stack_lvl+0xda/0x130
[ 1031.813912][T31867]  dump_stack+0x15/0x20
11:56:24 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000003880)={0x38, 0x0, 0x0, 0x0, 0xfe}, 0x0) (async)
capset(&(0x7f0000000000)={0x20071026}, &(0x7f0000000040)={0xc, 0x3, 0x2, 0xff, 0x8000, 0x3}) (async)
syslog(0x2, &(0x7f0000000200)=""/126, 0x7e)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1031.818088][T31867]  should_fail_ex+0x21f/0x230
[ 1031.822806][T31867]  ? vm_area_dup+0x2c/0x130
[ 1031.827372][T31867]  __should_failslab+0x92/0xa0
[ 1031.832176][T31867]  should_failslab+0x9/0x20
[ 1031.836685][T31867]  kmem_cache_alloc+0x4e/0x250
[ 1031.841537][T31867]  vm_area_dup+0x2c/0x130
[ 1031.845909][T31867]  copy_mm+0x6b6/0xf50
[ 1031.849981][T31867]  copy_process+0x1002/0x20a0
[ 1031.854764][T31867]  kernel_clone+0x169/0x560
[ 1031.859276][T31867]  __x64_sys_clone+0xe8/0x120
[ 1031.863969][T31867]  do_syscall_64+0x44/0x110
11:56:24 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80002, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:24 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000000c0)=0x7f)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xe) (async)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000100)=0x5)

[ 1031.868499][T31867]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1031.874410][T31867] RIP: 0033:0x7f424acd3ba9
[ 1031.878822][T31867] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1031.898516][T31867] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1031.906934][T31867] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
11:56:24 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80003, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1031.914942][T31867] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1031.922910][T31867] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1031.930876][T31867] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1031.938900][T31867] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1031.946936][T31867]  </TASK>
11:56:24 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:24 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:24 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 18)

11:56:24 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
r1 = signalfd(r0, &(0x7f00000000c0)={[0x284]}, 0x8)
setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT_OLD(r1, 0x28, 0x6, &(0x7f0000000100)={0x0, 0x2710}, 0x10)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r2 = syz_open_pts(r0, 0x0)
r3 = dup3(r2, r0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17)

11:56:24 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80004, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1032.417672][T32139] FAULT_INJECTION: forcing a failure.
[ 1032.417672][T32139] name failslab, interval 1, probability 0, space 0, times 0
[ 1032.430457][T32139] CPU: 0 PID: 32139 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1032.439205][T32139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1032.449258][T32139] Call Trace:
[ 1032.452539][T32139]  <TASK>
[ 1032.455482][T32139]  dump_stack_lvl+0xda/0x130
[ 1032.460084][T32139]  dump_stack+0x15/0x20
11:56:24 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80008, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:24 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80009, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1032.464265][T32139]  should_fail_ex+0x21f/0x230
[ 1032.469016][T32139]  ? mas_alloc_nodes+0x1e2/0x490
[ 1032.473968][T32139]  __should_failslab+0x92/0xa0
[ 1032.478786][T32139]  should_failslab+0x9/0x20
[ 1032.483376][T32139]  kmem_cache_alloc+0x4e/0x250
[ 1032.488177][T32139]  mas_alloc_nodes+0x1e2/0x490
[ 1032.492949][T32139]  ? __percpu_counter_init_many+0x1d3/0x1f0
[ 1032.498859][T32139]  mas_expected_entries+0x148/0x200
[ 1032.504066][T32139]  copy_mm+0x41c/0xf50
[ 1032.508137][T32139]  copy_process+0x1002/0x20a0
[ 1032.512890][T32139]  kernel_clone+0x169/0x560
[ 1032.517387][T32139]  __x64_sys_clone+0xe8/0x120
[ 1032.522091][T32139]  do_syscall_64+0x44/0x110
[ 1032.526670][T32139]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1032.532631][T32139] RIP: 0033:0x7f424acd3ba9
[ 1032.537403][T32139] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1032.557045][T32139] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
11:56:25 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x8000a, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:25 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:25 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x20})
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$nci(r1, &(0x7f0000000000)=@NCI_OP_RF_DEACTIVATE_RSP={0x1, 0x1, 0x2, 0x6, 0x4}, 0x4)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r4)
sendmsg$NLBL_MGMT_C_ADD(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB='5\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="1100000000000000000001000000080008007f000001080002000500000008000700000000000500010000000000"], 0x34}, 0x1, 0x10}, 0x0)
r6 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r6, 0x0, &(0x7f00000000c0)=<r7=>0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r8)
sendmsg$NFC_CMD_DEV_UP(r8, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r7], 0x1c}}, 0x0)
sendmsg$NFC_CMD_ACTIVATE_TARGET(r3, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)={0x1c, 0x0, 0x100, 0x70bd29, 0x25dfdbfd, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40801}, 0x0)
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r10)
sendmsg$NFC_CMD_DEV_UP(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r11, @ANYRESHEX=r1, @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1032.565453][T32139] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1032.573425][T32139] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1032.581409][T32139] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1032.589380][T32139] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1032.597440][T32139] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1032.605498][T32139]  </TASK>
11:56:25 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 19)

11:56:25 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x8000c, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1032.662235][T32362] FAULT_INJECTION: forcing a failure.
[ 1032.662235][T32362] name failslab, interval 1, probability 0, space 0, times 0
[ 1032.674908][T32362] CPU: 1 PID: 32362 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1032.683576][T32362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1032.693670][T32362] Call Trace:
[ 1032.696943][T32362]  <TASK>
[ 1032.699896][T32362]  dump_stack_lvl+0xda/0x130
[ 1032.704497][T32362]  dump_stack+0x15/0x20
[ 1032.708691][T32362]  should_fail_ex+0x21f/0x230
[ 1032.713384][T32362]  ? vm_area_dup+0x2c/0x130
[ 1032.717903][T32362]  __should_failslab+0x92/0xa0
[ 1032.722729][T32362]  should_failslab+0x9/0x20
[ 1032.727281][T32362]  kmem_cache_alloc+0x4e/0x250
[ 1032.732030][T32362]  vm_area_dup+0x2c/0x130
[ 1032.736397][T32362]  copy_mm+0x6b6/0xf50
[ 1032.740450][T32362]  copy_process+0x1002/0x20a0
[ 1032.745174][T32362]  kernel_clone+0x169/0x560
[ 1032.749771][T32362]  __x64_sys_clone+0xe8/0x120
[ 1032.754428][T32362]  do_syscall_64+0x44/0x110
[ 1032.758983][T32362]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1032.764898][T32362] RIP: 0033:0x7f424acd3ba9
[ 1032.769364][T32362] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1032.788962][T32362] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1032.797352][T32362] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1032.805302][T32362] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1032.813261][T32362] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1032.821239][T32362] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1032.829206][T32362] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1032.837168][T32362]  </TASK>
11:56:25 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:25 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x8000d, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:25 executing program 4:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
signalfd(r0, &(0x7f00000000c0)={[0x284]}, 0x8) (async)
r1 = signalfd(r0, &(0x7f00000000c0)={[0x284]}, 0x8)
setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT_OLD(r1, 0x28, 0x6, &(0x7f0000000100)={0x0, 0x2710}, 0x10)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r2 = syz_open_pts(r0, 0x0)
r3 = dup3(r2, r0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17)

11:56:25 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="01000000000000000000020000000800017f", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:25 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x20})
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$nci(r1, &(0x7f0000000000)=@NCI_OP_RF_DEACTIVATE_RSP={0x1, 0x1, 0x2, 0x6, 0x4}, 0x4)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r4) (async)
r5 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r4)
sendmsg$NLBL_MGMT_C_ADD(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB='5\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="1100000000000000000001000000080008007f000001080002000500000008000700000000000500010000000000"], 0x34}, 0x1, 0x10}, 0x0)
r6 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r6, 0x0, &(0x7f00000000c0)=<r7=>0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r8) (async)
r9 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r8)
sendmsg$NFC_CMD_DEV_UP(r8, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r7], 0x1c}}, 0x0)
sendmsg$NFC_CMD_ACTIVATE_TARGET(r3, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)={0x1c, 0x0, 0x100, 0x70bd29, 0x25dfdbfd, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40801}, 0x0) (async)
sendmsg$NFC_CMD_ACTIVATE_TARGET(r3, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)={0x1c, 0x0, 0x100, 0x70bd29, 0x25dfdbfd, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40801}, 0x0)
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r10)
sendmsg$NFC_CMD_DEV_UP(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r11, @ANYRESHEX=r1, @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:25 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 20)

[ 1033.287718][T32412] FAULT_INJECTION: forcing a failure.
[ 1033.287718][T32412] name failslab, interval 1, probability 0, space 0, times 0
[ 1033.300369][T32412] CPU: 1 PID: 32412 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1033.309054][T32412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1033.319106][T32412] Call Trace:
[ 1033.322379][T32412]  <TASK>
[ 1033.325300][T32412]  dump_stack_lvl+0xda/0x130
[ 1033.329902][T32412]  dump_stack+0x15/0x20
11:56:25 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:25 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x8000e, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:25 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
r1 = signalfd(r0, &(0x7f00000000c0)={[0x284]}, 0x8)
setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT_OLD(r1, 0x28, 0x6, &(0x7f0000000100)={0x0, 0x2710}, 0x10)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r2 = syz_open_pts(r0, 0x0)
r3 = dup3(r2, r0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
signalfd(r0, &(0x7f00000000c0)={[0x284]}, 0x8) (async)
setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT_OLD(r1, 0x28, 0x6, &(0x7f0000000100)={0x0, 0x2710}, 0x10) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
syz_open_pts(r0, 0x0) (async)
dup3(r2, r0, 0x0) (async)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17) (async)

[ 1033.334125][T32412]  should_fail_ex+0x21f/0x230
[ 1033.338832][T32412]  ? anon_vma_fork+0xac/0x2c0
[ 1033.343510][T32412]  __should_failslab+0x92/0xa0
[ 1033.348284][T32412]  should_failslab+0x9/0x20
[ 1033.352799][T32412]  kmem_cache_alloc+0x4e/0x250
[ 1033.357572][T32412]  anon_vma_fork+0xac/0x2c0
[ 1033.362117][T32412]  copy_mm+0x72a/0xf50
[ 1033.366203][T32412]  copy_process+0x1002/0x20a0
[ 1033.370969][T32412]  kernel_clone+0x169/0x560
[ 1033.375479][T32412]  __x64_sys_clone+0xe8/0x120
[ 1033.380169][T32412]  do_syscall_64+0x44/0x110
11:56:25 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x8000f, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1033.384763][T32412]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1033.390653][T32412] RIP: 0033:0x7f424acd3ba9
[ 1033.395064][T32412] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1033.414669][T32412] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1033.423109][T32412] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
11:56:25 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80011, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:25 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 21)

[ 1033.431076][T32412] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1033.439046][T32412] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1033.447093][T32412] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1033.455070][T32412] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1033.463130][T32412]  </TASK>
[ 1033.475354][T32483] workqueue: Failed to create a rescuer kthread for wq "nfc5_nci_cmd_wq": -EINTR
[ 1033.519904][T32615] FAULT_INJECTION: forcing a failure.
[ 1033.519904][T32615] name failslab, interval 1, probability 0, space 0, times 0
[ 1033.541752][T32615] CPU: 0 PID: 32615 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1033.550507][T32615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1033.560567][T32615] Call Trace:
[ 1033.563910][T32615]  <TASK>
[ 1033.566844][T32615]  dump_stack_lvl+0xda/0x130
[ 1033.571486][T32615]  dump_stack+0x15/0x20
[ 1033.575664][T32615]  should_fail_ex+0x21f/0x230
[ 1033.580327][T32615]  ? vm_area_dup+0x2c/0x130
[ 1033.584824][T32615]  __should_failslab+0x92/0xa0
[ 1033.589585][T32615]  should_failslab+0x9/0x20
[ 1033.594137][T32615]  kmem_cache_alloc+0x4e/0x250
[ 1033.598950][T32615]  vm_area_dup+0x2c/0x130
[ 1033.603316][T32615]  copy_mm+0x6b6/0xf50
[ 1033.607504][T32615]  copy_process+0x1002/0x20a0
[ 1033.612177][T32615]  kernel_clone+0x169/0x560
[ 1033.616661][T32615]  __x64_sys_clone+0xe8/0x120
[ 1033.621416][T32615]  do_syscall_64+0x44/0x110
[ 1033.625905][T32615]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1033.631796][T32615] RIP: 0033:0x7f424acd3ba9
[ 1033.636189][T32615] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1033.655775][T32615] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1033.664170][T32615] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1033.672134][T32615] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1033.680171][T32615] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1033.688122][T32615] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1033.696101][T32615] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1033.704056][T32615]  </TASK>
11:56:26 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:26 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x20}) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$nci(r1, &(0x7f0000000000)=@NCI_OP_RF_DEACTIVATE_RSP={0x1, 0x1, 0x2, 0x6, 0x4}, 0x4)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r4)
sendmsg$NLBL_MGMT_C_ADD(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB='5\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="1100000000000000000001000000080008007f000001080002000500000008000700000000000500010000000000"], 0x34}, 0x1, 0x10}, 0x0)
r6 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r6, 0x0, &(0x7f00000000c0)=<r7=>0x0) (async)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r8)
sendmsg$NFC_CMD_DEV_UP(r8, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r7], 0x1c}}, 0x0) (async)
sendmsg$NFC_CMD_ACTIVATE_TARGET(r3, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)={0x1c, 0x0, 0x100, 0x70bd29, 0x25dfdbfd, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40801}, 0x0) (async)
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r10)
sendmsg$NFC_CMD_DEV_UP(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r11, @ANYRESHEX=r1, @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:26 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:26 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 22)

11:56:26 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCL_SCROLLCONSOLE(r0, 0x541c, &(0x7f00000000c0)={0xd, 0x101})
r2 = dup3(r1, r0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r2, 0xc018937d, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000100000019000000", @ANYRES32=<r3=>r2, @ANYBLOB="04000000000000002e2f66696c653000"])
recvmsg$unix(r3, &(0x7f0000000780)={&(0x7f0000000140)=@abs, 0x6e, &(0x7f0000000680)=[{&(0x7f00000001c0)}, {&(0x7f0000000200)=""/56, 0x38}, {&(0x7f0000000240)=""/136, 0x88}, {&(0x7f0000000300)=""/17, 0x11}, {&(0x7f0000000340)=""/22, 0x16}, {&(0x7f0000000380)=""/241, 0xf1}, {&(0x7f0000000480)=""/95, 0x5f}, {&(0x7f0000000500)=""/76, 0x4c}, {&(0x7f0000000580)=""/56, 0x38}, {&(0x7f00000005c0)=""/143, 0x8f}], 0xa, &(0x7f0000000740)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x62)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
r4 = socket(0x10, 0x2, 0x0)
write(r4, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
syz_open_pts(r1, 0x1e3140)
dup3(r0, r4, 0x80000)

11:56:26 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80013, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1034.151919][T32625] FAULT_INJECTION: forcing a failure.
[ 1034.151919][T32625] name failslab, interval 1, probability 0, space 0, times 0
[ 1034.164586][T32625] CPU: 0 PID: 32625 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1034.173265][T32625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1034.183322][T32625] Call Trace:
[ 1034.186596][T32625]  <TASK>
[ 1034.189577][T32625]  dump_stack_lvl+0xda/0x130
[ 1034.194177][T32625]  dump_stack+0x15/0x20
[ 1034.198348][T32625]  should_fail_ex+0x21f/0x230
[ 1034.203084][T32625]  ? vm_area_dup+0x2c/0x130
[ 1034.207677][T32625]  __should_failslab+0x92/0xa0
[ 1034.212459][T32625]  should_failslab+0x9/0x20
[ 1034.216996][T32625]  kmem_cache_alloc+0x4e/0x250
[ 1034.221848][T32625]  vm_area_dup+0x2c/0x130
[ 1034.226190][T32625]  copy_mm+0x6b6/0xf50
[ 1034.230257][T32625]  copy_process+0x1002/0x20a0
[ 1034.234969][T32625]  kernel_clone+0x169/0x560
[ 1034.239471][T32625]  __x64_sys_clone+0xe8/0x120
[ 1034.244194][T32625]  do_syscall_64+0x44/0x110
[ 1034.248701][T32625]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1034.254640][T32625] RIP: 0033:0x7f424acd3ba9
[ 1034.259115][T32625] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1034.278717][T32625] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1034.287126][T32625] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
11:56:26 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:26 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:26 executing program 3:
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
r1 = dup3(r0, 0xffffffffffffffff, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080))

11:56:26 executing program 3:
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
r1 = dup3(r0, 0xffffffffffffffff, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080))

11:56:26 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCL_SCROLLCONSOLE(r0, 0x541c, &(0x7f00000000c0)={0xd, 0x101}) (async)
r2 = dup3(r1, r0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r2, 0xc018937d, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000100000019000000", @ANYRES32=<r3=>r2, @ANYBLOB="04000000000000002e2f66696c653000"])
recvmsg$unix(r3, &(0x7f0000000780)={&(0x7f0000000140)=@abs, 0x6e, &(0x7f0000000680)=[{&(0x7f00000001c0)}, {&(0x7f0000000200)=""/56, 0x38}, {&(0x7f0000000240)=""/136, 0x88}, {&(0x7f0000000300)=""/17, 0x11}, {&(0x7f0000000340)=""/22, 0x16}, {&(0x7f0000000380)=""/241, 0xf1}, {&(0x7f0000000480)=""/95, 0x5f}, {&(0x7f0000000500)=""/76, 0x4c}, {&(0x7f0000000580)=""/56, 0x38}, {&(0x7f00000005c0)=""/143, 0x8f}], 0xa, &(0x7f0000000740)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x62)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
r4 = socket(0x10, 0x2, 0x0)
write(r4, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async, rerun: 64)
syz_open_pts(r1, 0x1e3140) (async, rerun: 64)
dup3(r0, r4, 0x80000)

11:56:26 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x800c0, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:26 executing program 3:
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
r1 = dup3(r0, 0xffffffffffffffff, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080))

[ 1034.295124][T32625] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1034.303099][T32625] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1034.311096][T32625] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1034.319064][T32625] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1034.327036][T32625]  </TASK>
11:56:26 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 23)

11:56:26 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
r1 = syz_open_pts(r0, 0x0) (async)
ioctl$TIOCL_SCROLLCONSOLE(r0, 0x541c, &(0x7f00000000c0)={0xd, 0x101})
r2 = dup3(r1, r0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r2, 0xc018937d, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000100000019000000", @ANYRES32=<r3=>r2, @ANYBLOB="04000000000000002e2f66696c653000"])
recvmsg$unix(r3, &(0x7f0000000780)={&(0x7f0000000140)=@abs, 0x6e, &(0x7f0000000680)=[{&(0x7f00000001c0)}, {&(0x7f0000000200)=""/56, 0x38}, {&(0x7f0000000240)=""/136, 0x88}, {&(0x7f0000000300)=""/17, 0x11}, {&(0x7f0000000340)=""/22, 0x16}, {&(0x7f0000000380)=""/241, 0xf1}, {&(0x7f0000000480)=""/95, 0x5f}, {&(0x7f0000000500)=""/76, 0x4c}, {&(0x7f0000000580)=""/56, 0x38}, {&(0x7f00000005c0)=""/143, 0x8f}], 0xa, &(0x7f0000000740)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x62) (async)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)
r4 = socket(0x10, 0x2, 0x0)
write(r4, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
syz_open_pts(r1, 0x1e3140)
dup3(r0, r4, 0x80000)

11:56:26 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:26 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:26 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$NFC_CMD_DEV_UP(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="01000000000000000000020000000800aea1", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:26 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x802c4, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:26 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

[ 1034.449012][  T594] FAULT_INJECTION: forcing a failure.
[ 1034.449012][  T594] name failslab, interval 1, probability 0, space 0, times 0
[ 1034.461738][  T594] CPU: 0 PID: 594 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1034.470236][  T594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1034.480290][  T594] Call Trace:
[ 1034.483568][  T594]  <TASK>
[ 1034.486495][  T594]  dump_stack_lvl+0xda/0x130
[ 1034.491153][  T594]  dump_stack+0x15/0x20
11:56:26 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80300, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:26 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x400400)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:26 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:27 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

[ 1034.495336][  T594]  should_fail_ex+0x21f/0x230
[ 1034.500018][  T594]  ? vm_area_dup+0x98/0x130
[ 1034.504557][  T594]  __should_failslab+0x92/0xa0
[ 1034.509408][  T594]  should_failslab+0x9/0x20
[ 1034.513982][  T594]  kmem_cache_alloc+0x4e/0x250
[ 1034.518762][  T594]  vm_area_dup+0x98/0x130
[ 1034.523125][  T594]  copy_mm+0x6b6/0xf50
[ 1034.527265][  T594]  copy_process+0x1002/0x20a0
[ 1034.531970][  T594]  kernel_clone+0x169/0x560
[ 1034.536477][  T594]  __x64_sys_clone+0xe8/0x120
[ 1034.541161][  T594]  do_syscall_64+0x44/0x110
11:56:27 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80380, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1034.545798][  T594]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1034.551706][  T594] RIP: 0033:0x7f424acd3ba9
[ 1034.556115][  T594] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1034.575804][  T594] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1034.584225][  T594] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
11:56:27 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 24)

11:56:27 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$NFC_CMD_DEV_UP(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="01000000000000000000020000000800aea1", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), 0xffffffffffffffff) (async)
sendmsg$NFC_CMD_DEV_UP(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="01000000000000000000020000000800aea1", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)

11:56:27 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:27 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:27 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x803a1, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1034.592192][  T594] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1034.600222][  T594] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1034.608186][  T594] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1034.616152][  T594] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1034.624196][  T594]  </TASK>
11:56:27 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:27 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x803dd, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:27 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

[ 1034.676352][  T759] FAULT_INJECTION: forcing a failure.
[ 1034.676352][  T759] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1034.689644][  T759] CPU: 0 PID: 759 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1034.698150][  T759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1034.708205][  T759] Call Trace:
[ 1034.711483][  T759]  <TASK>
[ 1034.714412][  T759]  dump_stack_lvl+0xda/0x130
[ 1034.719013][  T759]  dump_stack+0x15/0x20
11:56:27 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x400400)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
syz_open_pts(r0, 0x400400) (async)
dup3(r1, r0, 0x0) (async)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)

11:56:27 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:27 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x803e5, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1034.723192][  T759]  should_fail_ex+0x21f/0x230
[ 1034.727883][  T759]  __should_fail_alloc_page+0xfd/0x110
[ 1034.733359][  T759]  __alloc_pages+0x108/0x340
[ 1034.737955][  T759]  alloc_pages_mpol+0xb1/0x1d0
[ 1034.742722][  T759]  alloc_pages+0xe0/0x100
[ 1034.747054][  T759]  pte_alloc_one+0x32/0xe0
[ 1034.751479][  T759]  __pte_alloc+0x33/0x270
[ 1034.755819][  T759]  copy_page_range+0x1d20/0x2220
[ 1034.760764][  T759]  copy_mm+0x953/0xf50
[ 1034.764834][  T759]  copy_process+0x1002/0x20a0
[ 1034.769513][  T759]  kernel_clone+0x169/0x560
[ 1034.774012][  T759]  __x64_sys_clone+0xe8/0x120
[ 1034.778710][  T759]  do_syscall_64+0x44/0x110
[ 1034.783219][  T759]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1034.789124][  T759] RIP: 0033:0x7f424acd3ba9
[ 1034.793536][  T759] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1034.813139][  T759] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
11:56:27 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

[ 1034.821540][  T759] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1034.828733][  T773] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR
[ 1034.829492][  T759] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1034.829507][  T759] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1034.829518][  T759] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1034.829528][  T759] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1034.829541][  T759]  </TASK>
11:56:27 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80900, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:27 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, 0x0, 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:27 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 25)

11:56:27 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:27 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$NFC_CMD_DEV_UP(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="01000000000000000000020000000800aea1", @ANYRES32=r2], 0x1c}}, 0x0) (async, rerun: 64)
close_range(r0, 0xffffffffffffffff, 0x0) (rerun: 64)

11:56:27 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, 0x0, 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:27 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
r1 = syz_open_pts(r0, 0x400400)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:27 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80a00, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:27 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, 0x0, 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

[ 1034.952431][ T1010] FAULT_INJECTION: forcing a failure.
[ 1034.952431][ T1010] name failslab, interval 1, probability 0, space 0, times 0
[ 1034.965124][ T1010] CPU: 0 PID: 1010 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1034.973786][ T1010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1034.983859][ T1010] Call Trace:
[ 1034.987200][ T1010]  <TASK>
[ 1034.990127][ T1010]  dump_stack_lvl+0xda/0x130
[ 1034.994740][ T1010]  dump_stack+0x15/0x20
11:56:27 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80c00, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:27 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
r3 = socket(0x10, 0x2, 0x0)
write(r3, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
ioctl$F2FS_IOC_DEFRAGMENT(r3, 0xc010f508, &(0x7f00000000c0)={0x4, 0x3ff})
r4 = socket(0x10, 0x2, 0x0)
ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f0000000200)={0x1, 0x4, 0x5, 0xfc, 0x4, [{0x0, 0x2, 0x5, '\x00', 0x2000}, {0xfffffffffffffff8, 0x9, 0x1, '\x00', 0x4}, {0x0, 0x800, 0x6}, {0x4, 0x2, 0xfffffffffffffffc, '\x00', 0x1000}]})
write(r4, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
sendmsg$nl_route(r4, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=@RTM_NEWNSID={0x1c, 0x58, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@NETNSA_FD={0x8, 0x3, r2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x40000)

[ 1034.998894][ T1010]  should_fail_ex+0x21f/0x230
[ 1035.003591][ T1010]  ? vm_area_dup+0x2c/0x130
[ 1035.008104][ T1010]  __should_failslab+0x92/0xa0
[ 1035.012871][ T1010]  should_failslab+0x9/0x20
[ 1035.017449][ T1010]  kmem_cache_alloc+0x4e/0x250
[ 1035.022219][ T1010]  vm_area_dup+0x2c/0x130
[ 1035.026571][ T1010]  copy_mm+0x6b6/0xf50
[ 1035.030681][ T1010]  copy_process+0x1002/0x20a0
[ 1035.035371][ T1010]  kernel_clone+0x169/0x560
[ 1035.039883][ T1010]  __x64_sys_clone+0xe8/0x120
[ 1035.044586][ T1010]  do_syscall_64+0x44/0x110
[ 1035.049100][ T1010]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1035.055080][ T1010] RIP: 0033:0x7f424acd3ba9
[ 1035.059561][ T1010] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1035.079246][ T1010] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1035.087652][ T1010] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
11:56:27 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
sendmsg$NLBL_MGMT_C_VERSION(r3, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="24000100", @ANYRES16=0x0, @ANYBLOB="20002dbd7000fedbdf250800000008000400ffffffff06000b002c000000"], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:27 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 26)

11:56:27 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80d00, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:27 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:27 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1035.095612][ T1010] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1035.103583][ T1010] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1035.111648][ T1010] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1035.119689][ T1010] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1035.127658][ T1010]  </TASK>
11:56:27 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80e00, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1035.176655][ T1245] FAULT_INJECTION: forcing a failure.
[ 1035.176655][ T1245] name failslab, interval 1, probability 0, space 0, times 0
[ 1035.189356][ T1245] CPU: 0 PID: 1245 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1035.198032][ T1245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1035.208088][ T1245] Call Trace:
[ 1035.211365][ T1245]  <TASK>
[ 1035.214291][ T1245]  dump_stack_lvl+0xda/0x130
[ 1035.218950][ T1245]  dump_stack+0x15/0x20
11:56:27 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
r3 = socket(0x10, 0x2, 0x0)
write(r3, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
ioctl$F2FS_IOC_DEFRAGMENT(r3, 0xc010f508, &(0x7f00000000c0)={0x4, 0x3ff})
r4 = socket(0x10, 0x2, 0x0)
ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f0000000200)={0x1, 0x4, 0x5, 0xfc, 0x4, [{0x0, 0x2, 0x5, '\x00', 0x2000}, {0xfffffffffffffff8, 0x9, 0x1, '\x00', 0x4}, {0x0, 0x800, 0x6}, {0x4, 0x2, 0xfffffffffffffffc, '\x00', 0x1000}]})
write(r4, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
sendmsg$nl_route(r4, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=@RTM_NEWNSID={0x1c, 0x58, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@NETNSA_FD={0x8, 0x3, r2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x40000)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
syz_open_pts(r0, 0x0) (async)
dup3(r1, r0, 0x0) (async)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)
socket(0x10, 0x2, 0x0) (async)
write(r3, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
ioctl$F2FS_IOC_DEFRAGMENT(r3, 0xc010f508, &(0x7f00000000c0)={0x4, 0x3ff}) (async)
socket(0x10, 0x2, 0x0) (async)
ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f0000000200)={0x1, 0x4, 0x5, 0xfc, 0x4, [{0x0, 0x2, 0x5, '\x00', 0x2000}, {0xfffffffffffffff8, 0x9, 0x1, '\x00', 0x4}, {0x0, 0x800, 0x6}, {0x4, 0x2, 0xfffffffffffffffc, '\x00', 0x1000}]}) (async)
write(r4, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
sendmsg$nl_route(r4, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=@RTM_NEWNSID={0x1c, 0x58, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@NETNSA_FD={0x8, 0x3, r2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x40000) (async)

[ 1035.223188][ T1245]  should_fail_ex+0x21f/0x230
[ 1035.227992][ T1245]  ? vm_area_dup+0x98/0x130
[ 1035.232553][ T1245]  __should_failslab+0x92/0xa0
[ 1035.237404][ T1245]  should_failslab+0x9/0x20
[ 1035.241948][ T1245]  kmem_cache_alloc+0x4e/0x250
[ 1035.246718][ T1245]  vm_area_dup+0x98/0x130
[ 1035.251176][ T1245]  copy_mm+0x6b6/0xf50
[ 1035.255287][ T1245]  copy_process+0x1002/0x20a0
[ 1035.260032][ T1245]  kernel_clone+0x169/0x560
[ 1035.264608][ T1245]  __x64_sys_clone+0xe8/0x120
[ 1035.269361][ T1245]  do_syscall_64+0x44/0x110
11:56:27 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80f00, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:27 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
sendmsg$NLBL_MGMT_C_VERSION(r3, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="24000100", @ANYRES16=0x0, @ANYBLOB="20002dbd7000fedbdf250800000008000400ffffffff06000b002c000000"], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
sendmsg$NLBL_MGMT_C_VERSION(r3, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="24000100", @ANYRES16=0x0, @ANYBLOB="20002dbd7000fedbdf250800000008000400ffffffff06000b002c000000"], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)

[ 1035.273941][ T1245]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1035.279846][ T1245] RIP: 0033:0x7f424acd3ba9
[ 1035.284259][ T1245] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1035.303866][ T1245] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1035.312385][ T1245] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
11:56:27 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x81100, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:27 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:27 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 27)

[ 1035.320360][ T1245] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1035.328337][ T1245] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1035.336303][ T1245] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1035.344360][ T1245] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1035.352330][ T1245]  </TASK>
11:56:27 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async, rerun: 32)
r1 = syz_open_pts(r0, 0x0) (rerun: 32)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)
r3 = socket(0x10, 0x2, 0x0)
write(r3, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
ioctl$F2FS_IOC_DEFRAGMENT(r3, 0xc010f508, &(0x7f00000000c0)={0x4, 0x3ff})
r4 = socket(0x10, 0x2, 0x0)
ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f0000000200)={0x1, 0x4, 0x5, 0xfc, 0x4, [{0x0, 0x2, 0x5, '\x00', 0x2000}, {0xfffffffffffffff8, 0x9, 0x1, '\x00', 0x4}, {0x0, 0x800, 0x6}, {0x4, 0x2, 0xfffffffffffffffc, '\x00', 0x1000}]}) (async, rerun: 64)
write(r4, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async, rerun: 64)
sendmsg$nl_route(r4, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=@RTM_NEWNSID={0x1c, 0x58, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@NETNSA_FD={0x8, 0x3, r2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x40000)

11:56:27 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x81300, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1035.357816][ T1250] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR
[ 1035.412900][ T1315] FAULT_INJECTION: forcing a failure.
[ 1035.412900][ T1315] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1035.435178][ T1315] CPU: 0 PID: 1315 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1035.443764][ T1315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1035.453814][ T1315] Call Trace:
[ 1035.457089][ T1315]  <TASK>
11:56:27 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
sendmsg$NLBL_MGMT_C_VERSION(r3, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="24000100", @ANYRES16=0x0, @ANYBLOB="20002dbd7000fedbdf250800000008000400ffffffff06000b002c000000"], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
sendmsg$NLBL_MGMT_C_VERSION(r3, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="24000100", @ANYRES16=0x0, @ANYBLOB="20002dbd7000fedbdf250800000008000400ffffffff06000b002c000000"], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)

[ 1035.460018][ T1315]  dump_stack_lvl+0xda/0x130
[ 1035.464618][ T1315]  dump_stack+0x15/0x20
[ 1035.468783][ T1315]  should_fail_ex+0x21f/0x230
[ 1035.473468][ T1315]  __should_fail_alloc_page+0xfd/0x110
[ 1035.478938][ T1315]  __alloc_pages+0x108/0x340
[ 1035.483532][ T1315]  alloc_pages_mpol+0xb1/0x1d0
[ 1035.488306][ T1315]  alloc_pages+0xe0/0x100
[ 1035.492635][ T1315]  __pmd_alloc+0x4b/0x3c0
[ 1035.496978][ T1315]  copy_page_range+0x1fda/0x2220
[ 1035.501926][ T1315]  ? mas_wr_store_entry+0x235/0x350
[ 1035.507143][ T1315]  copy_mm+0x953/0xf50
[ 1035.511236][ T1315]  copy_process+0x1002/0x20a0
[ 1035.515920][ T1315]  kernel_clone+0x169/0x560
[ 1035.520423][ T1315]  __x64_sys_clone+0xe8/0x120
[ 1035.525106][ T1315]  do_syscall_64+0x44/0x110
[ 1035.529618][ T1315]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1035.535518][ T1315] RIP: 0033:0x7f424acd3ba9
[ 1035.539935][ T1315] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1035.559547][ T1315] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1035.567997][ T1315] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1035.575971][ T1315] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1035.583945][ T1315] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1035.591921][ T1315] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1035.599892][ T1315] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1035.607868][ T1315]  </TASK>
11:56:28 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:28 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x3, 0x0, 0x0, 0x0, "000000000000000000000000000000000400"})
r1 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x7)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r2=>r1}, './file0\x00'})
ioctl$FITHAW(r2, 0xc0045878)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r3=>r2, {0x4}}, './file0\x00'})
ioctl$USBDEVFS_REAPURBNDELAY(r3, 0x4008550d, &(0x7f0000000180))
ioctl$VT_SETMODE(r1, 0x5602, &(0x7f00000000c0)={0x2, 0x20, 0x190, 0x0, 0x2})
r4 = syz_open_pts(r0, 0x0)
r5 = dup3(r4, r0, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000080)=0x17)

11:56:28 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:28 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
r5 = socket(0x10, 0x2, 0x0)
write(r5, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
accept$nfc_llcp(r5, &(0x7f0000000000), &(0x7f0000000100)=0x60)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:28 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 28)

11:56:28 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x81f00, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1036.059823][ T1730] FAULT_INJECTION: forcing a failure.
[ 1036.059823][ T1730] name failslab, interval 1, probability 0, space 0, times 0
[ 1036.072462][ T1730] CPU: 1 PID: 1730 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1036.081051][ T1730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1036.091097][ T1730] Call Trace:
[ 1036.094371][ T1730]  <TASK>
[ 1036.097348][ T1730]  dump_stack_lvl+0xda/0x130
[ 1036.101970][ T1730]  dump_stack+0x15/0x20
[ 1036.106202][ T1730]  should_fail_ex+0x21f/0x230
[ 1036.110893][ T1730]  ? vm_area_dup+0x98/0x130
[ 1036.115411][ T1730]  __should_failslab+0x92/0xa0
[ 1036.120236][ T1730]  should_failslab+0x9/0x20
[ 1036.124748][ T1730]  kmem_cache_alloc+0x4e/0x250
[ 1036.129569][ T1730]  vm_area_dup+0x98/0x130
[ 1036.133909][ T1730]  copy_mm+0x6b6/0xf50
[ 1036.138046][ T1730]  copy_process+0x1002/0x20a0
[ 1036.142738][ T1730]  kernel_clone+0x169/0x560
[ 1036.147238][ T1730]  __x64_sys_clone+0xe8/0x120
[ 1036.151983][ T1730]  do_syscall_64+0x44/0x110
11:56:28 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x82000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:28 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x3, 0x0, 0x0, 0x0, "000000000000000000000000000000000400"}) (async, rerun: 64)
r1 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x7) (rerun: 64)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r2=>r1}, './file0\x00'})
ioctl$FITHAW(r2, 0xc0045878)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r3=>r2, {0x4}}, './file0\x00'})
ioctl$USBDEVFS_REAPURBNDELAY(r3, 0x4008550d, &(0x7f0000000180)) (async)
ioctl$VT_SETMODE(r1, 0x5602, &(0x7f00000000c0)={0x2, 0x20, 0x190, 0x0, 0x2})
r4 = syz_open_pts(r0, 0x0)
r5 = dup3(r4, r0, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000080)=0x17)

11:56:28 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x88003, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1036.156570][ T1730]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1036.162472][ T1730] RIP: 0033:0x7f424acd3ba9
[ 1036.166969][ T1730] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1036.186691][ T1730] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1036.195163][ T1730] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
11:56:28 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x8a103, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:28 executing program 1:
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
socket(0x10, 0x2, 0x0) (async)
r5 = socket(0x10, 0x2, 0x0)
write(r5, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
accept$nfc_llcp(r5, &(0x7f0000000000), &(0x7f0000000100)=0x60)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:28 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0xf}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1036.203146][ T1730] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1036.211216][ T1730] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1036.219207][ T1730] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1036.227200][ T1730] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1036.235235][ T1730]  </TASK>
11:56:29 executing program 4:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x3, 0x0, 0x0, 0x0, "000000000000000000000000000000000400"}) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x3, 0x0, 0x0, 0x0, "000000000000000000000000000000000400"})
r1 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x7)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r2=>r1}, './file0\x00'})
ioctl$FITHAW(r2, 0xc0045878)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r3=>r2, {0x4}}, './file0\x00'})
ioctl$USBDEVFS_REAPURBNDELAY(r3, 0x4008550d, &(0x7f0000000180))
ioctl$VT_SETMODE(r1, 0x5602, &(0x7f00000000c0)={0x2, 0x20, 0x190, 0x0, 0x2})
syz_open_pts(r0, 0x0) (async)
r4 = syz_open_pts(r0, 0x0)
dup3(r4, r0, 0x0) (async)
r5 = dup3(r4, r0, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000080)=0x17)

11:56:29 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 29)

11:56:29 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x8c000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:29 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3) (async)
r5 = socket(0x10, 0x2, 0x0)
write(r5, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
accept$nfc_llcp(r5, &(0x7f0000000000), &(0x7f0000000100)=0x60)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:29 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:29 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x10}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1036.898421][ T1970] FAULT_INJECTION: forcing a failure.
[ 1036.898421][ T1970] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1036.911715][ T1970] CPU: 1 PID: 1970 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1036.920301][ T1970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1036.930360][ T1970] Call Trace:
[ 1036.933634][ T1970]  <TASK>
[ 1036.936558][ T1970]  dump_stack_lvl+0xda/0x130
[ 1036.941163][ T1970]  dump_stack+0x15/0x20
11:56:29 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x4, 0x0, 0x2, 0x200, 0xff, "df3f0400000000000000000000000609000040"})
pipe(&(0x7f0000000400)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r1, 0x0, r1)
vmsplice(r2, &(0x7f0000000240)=[{&(0x7f0000000280)="12", 0x1}, {&(0x7f0000000140)="750215c05774514b366a41baca8549d548b6dfd4226bc52427df2320bf6e4abfef18a5c6fd30fbf0af93cad7b6bcd942cccb7335b93cb6aca3ba4de416db072f477e128a0ee9b1d85f514dad1f0f698271bf1586017353f59032e78b3ccbdc2b35c49ae4c7bb3b3bd7775a29ab6587928b61f37db6a22236c17b7b76245dceec21b426c1a5a034a4ff2f55ed8ba335ee51e9abb2b84d4bcff5e91b0c3b76e25ccac8fb27c0b6b8badae439c56951c67203a25072ca7c1b6eaaa3a73080d8b99bcbe3d47d2f122f3765699e82707a41851e66e2b0ca3eb8416e65416b9db722c1e1e2a2b925cbe1f7ea6c", 0xfffffd09}], 0x2, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r3, &(0x7f0000001400)=[{{&(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x10, 0x0}}], 0x1, 0x240080e4)
writev(r2, &(0x7f00000006c0)=[{&(0x7f00000002c0)='8', 0x1}], 0x1)
r4 = openat$cgroup_subtree(r2, &(0x7f0000000100), 0x2, 0x0)
splice(r4, 0x0, r3, 0x0, 0x200000000622b, 0xe)
r5 = syz_open_pts(r0, 0x0)
r6 = dup3(r5, r0, 0x0)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000080)=0x17)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0)
ioctl$TCSETS(r6, 0x5402, &(0x7f00000000c0)={0x5, 0xab8c, 0x90, 0x60, 0x14, "2fb41e736292fa0e375143fc2de75f2e1623b4"})

[ 1036.945328][ T1970]  should_fail_ex+0x21f/0x230
[ 1036.950062][ T1970]  __should_fail_alloc_page+0xfd/0x110
[ 1036.955658][ T1970]  __alloc_pages+0x108/0x340
[ 1036.960242][ T1970]  alloc_pages_mpol+0xb1/0x1d0
[ 1036.965002][ T1970]  alloc_pages+0xe0/0x100
[ 1036.969343][ T1970]  pte_alloc_one+0x32/0xe0
[ 1036.973770][ T1970]  __pte_alloc+0x33/0x270
[ 1036.978102][ T1970]  copy_page_range+0x1d20/0x2220
[ 1036.983048][ T1970]  copy_mm+0x953/0xf50
[ 1036.987124][ T1970]  copy_process+0x1002/0x20a0
[ 1036.991803][ T1970]  kernel_clone+0x169/0x560
11:56:29 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008cf624f668e1af4579223026f8061000100", @ANYRES32=r2], 0x1c}}, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000040)=<r5=>0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000100)=<r6=>0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000240))
r7 = syz_genetlink_get_family_id$nfc(&(0x7f0000000200), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x44, r7, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r5}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x44}}, 0x404c8c1)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:29 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x8c402, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1036.996299][ T1970]  __x64_sys_clone+0xe8/0x120
[ 1037.000977][ T1970]  do_syscall_64+0x44/0x110
[ 1037.005489][ T1970]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1037.011386][ T1970] RIP: 0033:0x7f424acd3ba9
[ 1037.015794][ T1970] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1037.035402][ T1970] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
11:56:29 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x8dd03, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1037.043839][ T1970] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1037.051812][ T1970] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1037.059790][ T1970] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1037.067765][ T1970] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1037.075737][ T1970] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1037.083708][ T1970]  </TASK>
11:56:29 executing program 4:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x4, 0x0, 0x2, 0x200, 0xff, "df3f0400000000000000000000000609000040"})
pipe(&(0x7f0000000400)) (async)
pipe(&(0x7f0000000400)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r1, 0x0, r1)
vmsplice(r2, &(0x7f0000000240)=[{&(0x7f0000000280)="12", 0x1}, {&(0x7f0000000140)="750215c05774514b366a41baca8549d548b6dfd4226bc52427df2320bf6e4abfef18a5c6fd30fbf0af93cad7b6bcd942cccb7335b93cb6aca3ba4de416db072f477e128a0ee9b1d85f514dad1f0f698271bf1586017353f59032e78b3ccbdc2b35c49ae4c7bb3b3bd7775a29ab6587928b61f37db6a22236c17b7b76245dceec21b426c1a5a034a4ff2f55ed8ba335ee51e9abb2b84d4bcff5e91b0c3b76e25ccac8fb27c0b6b8badae439c56951c67203a25072ca7c1b6eaaa3a73080d8b99bcbe3d47d2f122f3765699e82707a41851e66e2b0ca3eb8416e65416b9db722c1e1e2a2b925cbe1f7ea6c", 0xfffffd09}], 0x2, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r3, &(0x7f0000001400)=[{{&(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x10, 0x0}}], 0x1, 0x240080e4)
writev(r2, &(0x7f00000006c0)=[{&(0x7f00000002c0)='8', 0x1}], 0x1)
openat$cgroup_subtree(r2, &(0x7f0000000100), 0x2, 0x0) (async)
r4 = openat$cgroup_subtree(r2, &(0x7f0000000100), 0x2, 0x0)
splice(r4, 0x0, r3, 0x0, 0x200000000622b, 0xe) (async)
splice(r4, 0x0, r3, 0x0, 0x200000000622b, 0xe)
r5 = syz_open_pts(r0, 0x0)
r6 = dup3(r5, r0, 0x0)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000080)=0x17) (async)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000080)=0x17)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0)
ioctl$TCSETS(r6, 0x5402, &(0x7f00000000c0)={0x5, 0xab8c, 0x90, 0x60, 0x14, "2fb41e736292fa0e375143fc2de75f2e1623b4"})

11:56:29 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x140}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:29 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 30)

11:56:29 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x8e503, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:29 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async, rerun: 32)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (rerun: 32)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008cf624f668e1af4579223026f8061000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000040)=<r5=>0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000100)=<r6=>0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000240))
r7 = syz_genetlink_get_family_id$nfc(&(0x7f0000000200), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x44, r7, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r5}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x44}}, 0x404c8c1) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1037.109891][ T2161] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1037.160970][ T2235] FAULT_INJECTION: forcing a failure.
[ 1037.160970][ T2235] name failslab, interval 1, probability 0, space 0, times 0
[ 1037.173623][ T2235] CPU: 0 PID: 2235 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1037.182250][ T2235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1037.192298][ T2235] Call Trace:
[ 1037.195576][ T2235]  <TASK>
[ 1037.198508][ T2235]  dump_stack_lvl+0xda/0x130
[ 1037.203139][ T2235]  dump_stack+0x15/0x20
[ 1037.207311][ T2235]  should_fail_ex+0x21f/0x230
[ 1037.212027][ T2235]  ? vm_area_dup+0x98/0x130
[ 1037.216564][ T2235]  __should_failslab+0x92/0xa0
[ 1037.221343][ T2235]  should_failslab+0x9/0x20
[ 1037.225918][ T2235]  kmem_cache_alloc+0x4e/0x250
[ 1037.230703][ T2235]  vm_area_dup+0x98/0x130
[ 1037.235127][ T2235]  copy_mm+0x6b6/0xf50
[ 1037.239277][ T2235]  copy_process+0x1002/0x20a0
[ 1037.243974][ T2235]  kernel_clone+0x169/0x560
[ 1037.248557][ T2235]  __x64_sys_clone+0xe8/0x120
[ 1037.253331][ T2235]  do_syscall_64+0x44/0x110
11:56:29 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x100000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1037.257961][ T2235]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1037.263886][ T2235] RIP: 0033:0x7f424acd3ba9
[ 1037.268313][ T2235] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1037.287932][ T2235] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1037.296289][ T2281] workqueue: Failed to create a rescuer kthread for wq "nfc3_nci_cmd_wq": -EINTR
[ 1037.296364][ T2235] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1037.296380][ T2235] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1037.321400][ T2235] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1037.329395][ T2235] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1037.337363][ T2235] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1037.345319][ T2235]  </TASK>
11:56:30 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x4, 0x0, 0x2, 0x200, 0xff, "df3f0400000000000000000000000609000040"}) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x4, 0x0, 0x2, 0x200, 0xff, "df3f0400000000000000000000000609000040"})
pipe(&(0x7f0000000400)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$dupfd(r1, 0x0, r1) (async)
r2 = fcntl$dupfd(r1, 0x0, r1)
vmsplice(r2, &(0x7f0000000240)=[{&(0x7f0000000280)="12", 0x1}, {&(0x7f0000000140)="750215c05774514b366a41baca8549d548b6dfd4226bc52427df2320bf6e4abfef18a5c6fd30fbf0af93cad7b6bcd942cccb7335b93cb6aca3ba4de416db072f477e128a0ee9b1d85f514dad1f0f698271bf1586017353f59032e78b3ccbdc2b35c49ae4c7bb3b3bd7775a29ab6587928b61f37db6a22236c17b7b76245dceec21b426c1a5a034a4ff2f55ed8ba335ee51e9abb2b84d4bcff5e91b0c3b76e25ccac8fb27c0b6b8badae439c56951c67203a25072ca7c1b6eaaa3a73080d8b99bcbe3d47d2f122f3765699e82707a41851e66e2b0ca3eb8416e65416b9db722c1e1e2a2b925cbe1f7ea6c", 0xfffffd09}], 0x2, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10) (async)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r3, &(0x7f0000001400)=[{{&(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x10, 0x0}}], 0x1, 0x240080e4)
writev(r2, &(0x7f00000006c0)=[{&(0x7f00000002c0)='8', 0x1}], 0x1) (async)
writev(r2, &(0x7f00000006c0)=[{&(0x7f00000002c0)='8', 0x1}], 0x1)
r4 = openat$cgroup_subtree(r2, &(0x7f0000000100), 0x2, 0x0)
splice(r4, 0x0, r3, 0x0, 0x200000000622b, 0xe)
r5 = syz_open_pts(r0, 0x0)
r6 = dup3(r5, r0, 0x0)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000080)=0x17)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0)
ioctl$TCSETS(r6, 0x5402, &(0x7f00000000c0)={0x5, 0xab8c, 0x90, 0x60, 0x14, "2fb41e736292fa0e375143fc2de75f2e1623b4"}) (async)
ioctl$TCSETS(r6, 0x5402, &(0x7f00000000c0)={0x5, 0xab8c, 0x90, 0x60, 0x14, "2fb41e736292fa0e375143fc2de75f2e1623b4"})

11:56:30 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x1100000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:30 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008cf624f668e1af4579223026f8061000100", @ANYRES32=r2], 0x1c}}, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000040)=<r5=>0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000100)=<r6=>0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000240))
r7 = syz_genetlink_get_family_id$nfc(&(0x7f0000000200), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x44, r7, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r5}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x44}}, 0x404c8c1) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:30 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 31)

11:56:30 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, 0x0)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:30 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0xec0}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:30 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x2, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:30 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x3, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1037.765381][ T2429] FAULT_INJECTION: forcing a failure.
[ 1037.765381][ T2429] name failslab, interval 1, probability 0, space 0, times 0
[ 1037.778051][ T2429] CPU: 0 PID: 2429 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1037.786641][ T2429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1037.796715][ T2429] Call Trace:
[ 1037.799996][ T2429]  <TASK>
[ 1037.802972][ T2429]  dump_stack_lvl+0xda/0x130
[ 1037.807568][ T2429]  dump_stack+0x15/0x20
11:56:30 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x4, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1037.811800][ T2429]  should_fail_ex+0x21f/0x230
[ 1037.816543][ T2429]  ? vm_area_dup+0x2c/0x130
[ 1037.821057][ T2429]  __should_failslab+0x92/0xa0
[ 1037.825875][ T2429]  should_failslab+0x9/0x20
[ 1037.830382][ T2429]  kmem_cache_alloc+0x4e/0x250
[ 1037.835201][ T2429]  vm_area_dup+0x2c/0x130
[ 1037.839681][ T2429]  copy_mm+0x6b6/0xf50
[ 1037.843757][ T2429]  copy_process+0x1002/0x20a0
[ 1037.848438][ T2429]  kernel_clone+0x169/0x560
[ 1037.852942][ T2429]  __x64_sys_clone+0xe8/0x120
[ 1037.857644][ T2429]  do_syscall_64+0x44/0x110
11:56:30 executing program 4:
ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, &(0x7f0000000880)={0x8, &(0x7f0000000780)=[{0x2, 0x60, &(0x7f0000000180)="44e517ec1843f34087c99770bdb8899a002a32db4f2163da203201bcda6be9a71aad4eea9e52c652ed56716967e6f7b5662f304728bd37ae94db8da5d5befb6a421dc7fd6185da074da905fe8812acf2a43ec1ba7ead9d6b8e3dd50c9c13f7b3"}, {0x4, 0x4b, &(0x7f0000000200)="883f2fe5f24ba394a9d67d95b0cfe9137e596820292fc3575ab0962b4d8f3c4fc64f4f6291f73d775208941b43260b0342ba305e8bf6b56e9a1c4f85706c58bdf58f5d158509f587cb2c4d", 0x1, 0x1}, {0x4, 0xa1, &(0x7f00000002c0)="0ed0c63a3300fb0f4c4ba7d6ef2d6738ac739fa79d4a1872fa09e4411893e844ef48e011bf9576bd00fc6ee57b8833070ce181fdd65f497597dabb06667deb47c2d42d3db550d228c1291de450a6123e9a509b65832481b2b255c7251bae141e74790e311645b48e6046c36bd781ad38b76fcf51513685af910989f6e56fb19089304355275ce8a7c7b45da7f7ebb8cf306514e38a06929ad44ed35a9b1201586e", 0x1}, {0x5, 0xf6, &(0x7f0000000380)="ec6955d371468c94a46be5c647781dd3b9c3068a2ea4010946394f06e5623fd8794616520b2e2b3dfa2063b79ab3b885c1707e3c75758534cf9f4e248e1df64a20042bf5e399f422c358c4bb57abf3a7c22f594f1eec86d9d100c776102b6c98e1a3054a4549a23929e5f043995ed7ca53219ea84ac752d7105933918f64b991bc40b4077c279b89f14e23c734f52c3568468fdb177ed1d14cede29da41f148f29ed22d33f077df8d86bd8dda883c889404f76310eed5200f13b4a5a8830b7a367456458693b48d15306b50d78051d8f9c4b5969381f58a0ddc9c153ef1458f54b20980e8f88a1cebeb3cca09a37728266a023cc6d25", 0x0, 0x1}, {0x9, 0x53, &(0x7f0000000480)="5ee32d48b257c2c48c6fab6856d13ccb27acbcc4ec94a2fdf50cf8615f98c48598e71fd1439bd5e0ecb0e8dd77ce28fefed369ffb49e11550541f65bcd0c91332805461c62f1f77b36fbbaa9b5e662406bd823", 0x1}, {0xae, 0xf9, &(0x7f0000000500)="fb2f8bcd6bdb02c42e32429a0c98f19cbadd2ebaeb666ce59647a9ab8d8283369c4fe8002a8108162cad0dc571b6f99e7757194eff2179ac2e0d105b00518ea5025d57302cc12260f02855d33b16c9448041c70b0fbc75fddff6147b265f4d09d67d63ed7075a6eb475623eee0f948cdc2eb3096ac0c29711e4930c98294f07b98d028d1da5b1ac9795e4e5f61b062f8dc971c46ac760dd20205a6f0efd8ba1294d6b9a3d394a6ad685d095208ec44730c1e2f4472c4261b38a7227250d63dc54de27a11af869629a4b4c0216e40aed32eeb92c098bbe04ef15b592f9199a8b8d30f3a23565db00ffc37c35bb322cdff8c602a79d12de724ff", 0x1}, {0x401, 0xfd, &(0x7f0000000600)="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"}, {0x0, 0x67, &(0x7f0000000700)="359acb0783c5ce8377cfc41ee1019ff521cc18037f3d442f4a47b011c77d2369ccf6e8f506e52477deb5137c3c1501b01e57f2a463fc7fdc9b31f6cb83b046b2e356a848dfc941d1d31ebef946d95e9f88d1f9a9d57a376710fa8c637ec68d4ebfa6dd4533cf5f", 0x0, 0x1}]})
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {r0}}, './file0\x00'})
r1 = syz_open_dev$vcsu(&(0x7f0000000100), 0x7, 0x100)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TCSETS(r2, 0x40045431, &(0x7f00000000c0)={0x0, 0x3d, 0x220, 0x80, 0xc, "dff3576c763d000900100065000100"})
syz_open_pts(r0, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x14000, 0x0)
r4 = dup3(r1, r3, 0x80000)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TCSETS(r5, 0x5402, &(0x7f00000008c0)={0x1, 0x2, 0xfffffff9, 0x700, 0x13, "09fc7b9489743ab2184fdc3bcdd1fb5b2ed43b"})
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17)

[ 1037.862221][ T2429]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1037.868126][ T2429] RIP: 0033:0x7f424acd3ba9
[ 1037.872613][ T2429] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1037.892275][ T2429] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1037.900692][ T2429] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
11:56:30 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x33fe0}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:30 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x8, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:30 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 32)

[ 1037.908719][ T2429] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1037.916703][ T2429] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1037.924676][ T2429] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1037.932708][ T2429] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1037.940697][ T2429]  </TASK>
11:56:30 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x9, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1038.057416][ T2675] FAULT_INJECTION: forcing a failure.
[ 1038.057416][ T2675] name failslab, interval 1, probability 0, space 0, times 0
[ 1038.070082][ T2675] CPU: 0 PID: 2675 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1038.078663][ T2675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1038.088716][ T2675] Call Trace:
[ 1038.092042][ T2675]  <TASK>
[ 1038.094975][ T2675]  dump_stack_lvl+0xda/0x130
[ 1038.099582][ T2675]  dump_stack+0x15/0x20
11:56:30 executing program 1:
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
write$nci(r0, &(0x7f0000000000)=ANY=[@ANYBLOB='A\x00\a\x00'], 0x4)
r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r5)
r6 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r6, 0x0, &(0x7f00000000c0)=<r7=>0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$smc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$SMC_PNETID_GET(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x14, r9, 0x713}, 0x14}}, 0x0)
r10 = openat$full(0xffffffffffffff9c, &(0x7f0000000500), 0x20000, 0x0)
setsockopt$RDS_GET_MR_FOR_DEST(r10, 0x114, 0x7, &(0x7f0000000640)={@rxrpc=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e23, 0x1f, @private0}}, {&(0x7f0000000540)=""/174, 0xae}, &(0x7f0000000600), 0x4}, 0xa0)
sendmsg$SMC_PNETID_GET(r2, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, r9, 0x100, 0x70bd2a, 0x25dfdbfe, {}, [@SMC_PNETID_IBPORT={0x5, 0x4, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x84)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r11)
sendmsg$NFC_CMD_DEV_UP(r11, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r12, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r7], 0x1c}}, 0x0)
sendmsg$NFC_CMD_DEV_UP(r5, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20202}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, r4, 0x100, 0x70bd2d, 0x25dfdbfc, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24000001}, 0x4000)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cb90000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r1], 0x1c}}, 0x0)
r13 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r14 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_LIST_DEVKEY(r13, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, r14, 0x20, 0x70bd2c, 0x25dfdbfe, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x20040010}, 0x8800)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

11:56:30 executing program 4:
ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, &(0x7f0000000880)={0x8, &(0x7f0000000780)=[{0x2, 0x60, &(0x7f0000000180)="44e517ec1843f34087c99770bdb8899a002a32db4f2163da203201bcda6be9a71aad4eea9e52c652ed56716967e6f7b5662f304728bd37ae94db8da5d5befb6a421dc7fd6185da074da905fe8812acf2a43ec1ba7ead9d6b8e3dd50c9c13f7b3"}, {0x4, 0x4b, &(0x7f0000000200)="883f2fe5f24ba394a9d67d95b0cfe9137e596820292fc3575ab0962b4d8f3c4fc64f4f6291f73d775208941b43260b0342ba305e8bf6b56e9a1c4f85706c58bdf58f5d158509f587cb2c4d", 0x1, 0x1}, {0x4, 0xa1, &(0x7f00000002c0)="0ed0c63a3300fb0f4c4ba7d6ef2d6738ac739fa79d4a1872fa09e4411893e844ef48e011bf9576bd00fc6ee57b8833070ce181fdd65f497597dabb06667deb47c2d42d3db550d228c1291de450a6123e9a509b65832481b2b255c7251bae141e74790e311645b48e6046c36bd781ad38b76fcf51513685af910989f6e56fb19089304355275ce8a7c7b45da7f7ebb8cf306514e38a06929ad44ed35a9b1201586e", 0x1}, {0x5, 0xf6, &(0x7f0000000380)="ec6955d371468c94a46be5c647781dd3b9c3068a2ea4010946394f06e5623fd8794616520b2e2b3dfa2063b79ab3b885c1707e3c75758534cf9f4e248e1df64a20042bf5e399f422c358c4bb57abf3a7c22f594f1eec86d9d100c776102b6c98e1a3054a4549a23929e5f043995ed7ca53219ea84ac752d7105933918f64b991bc40b4077c279b89f14e23c734f52c3568468fdb177ed1d14cede29da41f148f29ed22d33f077df8d86bd8dda883c889404f76310eed5200f13b4a5a8830b7a367456458693b48d15306b50d78051d8f9c4b5969381f58a0ddc9c153ef1458f54b20980e8f88a1cebeb3cca09a37728266a023cc6d25", 0x0, 0x1}, {0x9, 0x53, &(0x7f0000000480)="5ee32d48b257c2c48c6fab6856d13ccb27acbcc4ec94a2fdf50cf8615f98c48598e71fd1439bd5e0ecb0e8dd77ce28fefed369ffb49e11550541f65bcd0c91332805461c62f1f77b36fbbaa9b5e662406bd823", 0x1}, {0xae, 0xf9, &(0x7f0000000500)="fb2f8bcd6bdb02c42e32429a0c98f19cbadd2ebaeb666ce59647a9ab8d8283369c4fe8002a8108162cad0dc571b6f99e7757194eff2179ac2e0d105b00518ea5025d57302cc12260f02855d33b16c9448041c70b0fbc75fddff6147b265f4d09d67d63ed7075a6eb475623eee0f948cdc2eb3096ac0c29711e4930c98294f07b98d028d1da5b1ac9795e4e5f61b062f8dc971c46ac760dd20205a6f0efd8ba1294d6b9a3d394a6ad685d095208ec44730c1e2f4472c4261b38a7227250d63dc54de27a11af869629a4b4c0216e40aed32eeb92c098bbe04ef15b592f9199a8b8d30f3a23565db00ffc37c35bb322cdff8c602a79d12de724ff", 0x1}, {0x401, 0xfd, &(0x7f0000000600)="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"}, {0x0, 0x67, &(0x7f0000000700)="359acb0783c5ce8377cfc41ee1019ff521cc18037f3d442f4a47b011c77d2369ccf6e8f506e52477deb5137c3c1501b01e57f2a463fc7fdc9b31f6cb83b046b2e356a848dfc941d1d31ebef946d95e9f88d1f9a9d57a376710fa8c637ec68d4ebfa6dd4533cf5f", 0x0, 0x1}]}) (async)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {r0}}, './file0\x00'}) (async)
r1 = syz_open_dev$vcsu(&(0x7f0000000100), 0x7, 0x100) (async)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TCSETS(r2, 0x40045431, &(0x7f00000000c0)={0x0, 0x3d, 0x220, 0x80, 0xc, "dff3576c763d000900100065000100"}) (async)
syz_open_pts(r0, 0x0) (async)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x14000, 0x0)
r4 = dup3(r1, r3, 0x80000) (async)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0xe) (async)
ioctl$TCSETS(r5, 0x5402, &(0x7f00000008c0)={0x1, 0x2, 0xfffffff9, 0x700, 0x13, "09fc7b9489743ab2184fdc3bcdd1fb5b2ed43b"}) (async)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17)

[ 1038.103751][ T2675]  should_fail_ex+0x21f/0x230
[ 1038.108449][ T2675]  ? vm_area_dup+0x2c/0x130
[ 1038.113024][ T2675]  __should_failslab+0x92/0xa0
[ 1038.117822][ T2675]  should_failslab+0x9/0x20
[ 1038.122343][ T2675]  kmem_cache_alloc+0x4e/0x250
[ 1038.127120][ T2675]  vm_area_dup+0x2c/0x130
[ 1038.131474][ T2675]  copy_mm+0x6b6/0xf50
[ 1038.135553][ T2675]  copy_process+0x1002/0x20a0
[ 1038.140241][ T2675]  kernel_clone+0x169/0x560
[ 1038.144754][ T2675]  __x64_sys_clone+0xe8/0x120
[ 1038.149442][ T2675]  do_syscall_64+0x44/0x110
[ 1038.153958][ T2675]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1038.159906][ T2675] RIP: 0033:0x7f424acd3ba9
[ 1038.164312][ T2675] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1038.183934][ T2675] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1038.192403][ T2675] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1038.200367][ T2675] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1038.208380][ T2675] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1038.216352][ T2675] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1038.224318][ T2675] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1038.232278][ T2675]  </TASK>
11:56:31 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, 0x0)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:31 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0xfffffdef}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:31 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xa, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:31 executing program 4:
ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, &(0x7f0000000880)={0x8, &(0x7f0000000780)=[{0x2, 0x60, &(0x7f0000000180)="44e517ec1843f34087c99770bdb8899a002a32db4f2163da203201bcda6be9a71aad4eea9e52c652ed56716967e6f7b5662f304728bd37ae94db8da5d5befb6a421dc7fd6185da074da905fe8812acf2a43ec1ba7ead9d6b8e3dd50c9c13f7b3"}, {0x4, 0x4b, &(0x7f0000000200)="883f2fe5f24ba394a9d67d95b0cfe9137e596820292fc3575ab0962b4d8f3c4fc64f4f6291f73d775208941b43260b0342ba305e8bf6b56e9a1c4f85706c58bdf58f5d158509f587cb2c4d", 0x1, 0x1}, {0x4, 0xa1, &(0x7f00000002c0)="0ed0c63a3300fb0f4c4ba7d6ef2d6738ac739fa79d4a1872fa09e4411893e844ef48e011bf9576bd00fc6ee57b8833070ce181fdd65f497597dabb06667deb47c2d42d3db550d228c1291de450a6123e9a509b65832481b2b255c7251bae141e74790e311645b48e6046c36bd781ad38b76fcf51513685af910989f6e56fb19089304355275ce8a7c7b45da7f7ebb8cf306514e38a06929ad44ed35a9b1201586e", 0x1}, {0x5, 0xf6, &(0x7f0000000380)="ec6955d371468c94a46be5c647781dd3b9c3068a2ea4010946394f06e5623fd8794616520b2e2b3dfa2063b79ab3b885c1707e3c75758534cf9f4e248e1df64a20042bf5e399f422c358c4bb57abf3a7c22f594f1eec86d9d100c776102b6c98e1a3054a4549a23929e5f043995ed7ca53219ea84ac752d7105933918f64b991bc40b4077c279b89f14e23c734f52c3568468fdb177ed1d14cede29da41f148f29ed22d33f077df8d86bd8dda883c889404f76310eed5200f13b4a5a8830b7a367456458693b48d15306b50d78051d8f9c4b5969381f58a0ddc9c153ef1458f54b20980e8f88a1cebeb3cca09a37728266a023cc6d25", 0x0, 0x1}, {0x9, 0x53, &(0x7f0000000480)="5ee32d48b257c2c48c6fab6856d13ccb27acbcc4ec94a2fdf50cf8615f98c48598e71fd1439bd5e0ecb0e8dd77ce28fefed369ffb49e11550541f65bcd0c91332805461c62f1f77b36fbbaa9b5e662406bd823", 0x1}, {0xae, 0xf9, &(0x7f0000000500)="fb2f8bcd6bdb02c42e32429a0c98f19cbadd2ebaeb666ce59647a9ab8d8283369c4fe8002a8108162cad0dc571b6f99e7757194eff2179ac2e0d105b00518ea5025d57302cc12260f02855d33b16c9448041c70b0fbc75fddff6147b265f4d09d67d63ed7075a6eb475623eee0f948cdc2eb3096ac0c29711e4930c98294f07b98d028d1da5b1ac9795e4e5f61b062f8dc971c46ac760dd20205a6f0efd8ba1294d6b9a3d394a6ad685d095208ec44730c1e2f4472c4261b38a7227250d63dc54de27a11af869629a4b4c0216e40aed32eeb92c098bbe04ef15b592f9199a8b8d30f3a23565db00ffc37c35bb322cdff8c602a79d12de724ff", 0x1}, {0x401, 0xfd, &(0x7f0000000600)="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"}, {0x0, 0x67, &(0x7f0000000700)="359acb0783c5ce8377cfc41ee1019ff521cc18037f3d442f4a47b011c77d2369ccf6e8f506e52477deb5137c3c1501b01e57f2a463fc7fdc9b31f6cb83b046b2e356a848dfc941d1d31ebef946d95e9f88d1f9a9d57a376710fa8c637ec68d4ebfa6dd4533cf5f", 0x0, 0x1}]}) (async)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {r0}}, './file0\x00'}) (async)
r1 = syz_open_dev$vcsu(&(0x7f0000000100), 0x7, 0x100) (async)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe) (async)
ioctl$TCSETS(r2, 0x40045431, &(0x7f00000000c0)={0x0, 0x3d, 0x220, 0x80, 0xc, "dff3576c763d000900100065000100"})
syz_open_pts(r0, 0x0) (async)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x14000, 0x0)
r4 = dup3(r1, r3, 0x80000) (async)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TCSETS(r5, 0x5402, &(0x7f00000008c0)={0x1, 0x2, 0xfffffff9, 0x700, 0x13, "09fc7b9489743ab2184fdc3bcdd1fb5b2ed43b"}) (async)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17)

11:56:31 executing program 1:
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
write$nci(r0, &(0x7f0000000000)=ANY=[@ANYBLOB='A\x00\a\x00'], 0x4) (async)
r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r5) (async)
r6 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r6, 0x0, &(0x7f00000000c0)=<r7=>0x0) (async)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$smc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$SMC_PNETID_GET(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x14, r9, 0x713}, 0x14}}, 0x0) (async, rerun: 64)
r10 = openat$full(0xffffffffffffff9c, &(0x7f0000000500), 0x20000, 0x0) (rerun: 64)
setsockopt$RDS_GET_MR_FOR_DEST(r10, 0x114, 0x7, &(0x7f0000000640)={@rxrpc=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e23, 0x1f, @private0}}, {&(0x7f0000000540)=""/174, 0xae}, &(0x7f0000000600), 0x4}, 0xa0) (async)
sendmsg$SMC_PNETID_GET(r2, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, r9, 0x100, 0x70bd2a, 0x25dfdbfe, {}, [@SMC_PNETID_IBPORT={0x5, 0x4, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x84) (async)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r11)
sendmsg$NFC_CMD_DEV_UP(r11, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r12, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r7], 0x1c}}, 0x0)
sendmsg$NFC_CMD_DEV_UP(r5, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20202}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, r4, 0x100, 0x70bd2d, 0x25dfdbfc, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24000001}, 0x4000) (async, rerun: 32)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cb90000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r1], 0x1c}}, 0x0) (rerun: 32)
r13 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r14 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_LIST_DEVKEY(r13, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, r14, 0x20, 0x70bd2c, 0x25dfdbfe, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x20040010}, 0x8800) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

11:56:31 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 33)

11:56:31 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xc, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:31 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x2}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:31 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 34)

11:56:31 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[@ANYRES64=r0], 0xff2e)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x1)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000100), 0x400001, 0x0)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000140)={0xed1, 0x4, 0x9, 0x24, 0x6, "ef3b205ff09ef1519f36dd39691c11fc519c2a"})
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f00000000c0)={0x2, {0x2, 0x1, 0xbbf7, 0x4, 0xfd9c, 0xf}})
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r3 = syz_open_pts(r0, 0x0)
syz_open_pts(r0, 0x0)
r4 = dup3(r3, r0, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17)

[ 1038.689691][ T2981] FAULT_INJECTION: forcing a failure.
[ 1038.689691][ T2981] name failslab, interval 1, probability 0, space 0, times 0
[ 1038.702397][ T2981] CPU: 1 PID: 2981 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1038.710988][ T2981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1038.721104][ T2981] Call Trace:
[ 1038.724426][ T2981]  <TASK>
[ 1038.727343][ T2981]  dump_stack_lvl+0xda/0x130
[ 1038.731953][ T2981]  dump_stack+0x15/0x20
[ 1038.736106][ T2981]  should_fail_ex+0x21f/0x230
[ 1038.740793][ T2981]  ? vm_area_dup+0x2c/0x130
[ 1038.745303][ T2981]  __should_failslab+0x92/0xa0
[ 1038.750228][ T2981]  should_failslab+0x9/0x20
[ 1038.754761][ T2981]  kmem_cache_alloc+0x4e/0x250
[ 1038.759588][ T2981]  vm_area_dup+0x2c/0x130
[ 1038.763992][ T2981]  copy_mm+0x6b6/0xf50
[ 1038.768132][ T2981]  copy_process+0x1002/0x20a0
[ 1038.772817][ T2981]  kernel_clone+0x169/0x560
[ 1038.777365][ T2981]  __x64_sys_clone+0xe8/0x120
[ 1038.782130][ T2981]  do_syscall_64+0x44/0x110
11:56:31 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xd, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:31 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[@ANYRES64=r0], 0xff2e)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x1) (async)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000100), 0x400001, 0x0)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000140)={0xed1, 0x4, 0x9, 0x24, 0x6, "ef3b205ff09ef1519f36dd39691c11fc519c2a"}) (async)
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f00000000c0)={0x2, {0x2, 0x1, 0xbbf7, 0x4, 0xfd9c, 0xf}}) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r3 = syz_open_pts(r0, 0x0)
syz_open_pts(r0, 0x0) (async)
r4 = dup3(r3, r0, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17)

[ 1038.786704][ T2981]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1038.792605][ T2981] RIP: 0033:0x7f424acd3ba9
[ 1038.797112][ T2981] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1038.816795][ T2981] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1038.825210][ T2981] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1038.833255][ T2981] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1038.841227][ T2981] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1038.849208][ T2981] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1038.857220][ T2981] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1038.865193][ T2981]  </TASK>
11:56:31 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, 0x0)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:31 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xe, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:31 executing program 1:
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0) (async)
write$nci(r0, &(0x7f0000000000)=ANY=[@ANYBLOB='A\x00\a\x00'], 0x4) (async)
r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3) (async)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r5) (async)
r6 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r6, 0x0, &(0x7f00000000c0)=<r7=>0x0) (async)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$smc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$SMC_PNETID_GET(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x14, r9, 0x713}, 0x14}}, 0x0) (async)
r10 = openat$full(0xffffffffffffff9c, &(0x7f0000000500), 0x20000, 0x0)
setsockopt$RDS_GET_MR_FOR_DEST(r10, 0x114, 0x7, &(0x7f0000000640)={@rxrpc=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e23, 0x1f, @private0}}, {&(0x7f0000000540)=""/174, 0xae}, &(0x7f0000000600), 0x4}, 0xa0)
sendmsg$SMC_PNETID_GET(r2, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, r9, 0x100, 0x70bd2a, 0x25dfdbfe, {}, [@SMC_PNETID_IBPORT={0x5, 0x4, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x84) (async)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r11)
sendmsg$NFC_CMD_DEV_UP(r11, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r12, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r7], 0x1c}}, 0x0) (async)
sendmsg$NFC_CMD_DEV_UP(r5, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20202}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, r4, 0x100, 0x70bd2d, 0x25dfdbfc, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24000001}, 0x4000) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cb90000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r1], 0x1c}}, 0x0) (async)
r13 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r14 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_LIST_DEVKEY(r13, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, r14, 0x20, 0x70bd2c, 0x25dfdbfe, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x20040010}, 0x8800)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

11:56:31 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x600}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:31 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 35)

11:56:31 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[@ANYRES64=r0], 0xff2e) (async)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x1) (async)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000100), 0x400001, 0x0)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000140)={0xed1, 0x4, 0x9, 0x24, 0x6, "ef3b205ff09ef1519f36dd39691c11fc519c2a"}) (async)
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f00000000c0)={0x2, {0x2, 0x1, 0xbbf7, 0x4, 0xfd9c, 0xf}})
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
r3 = syz_open_pts(r0, 0x0)
syz_open_pts(r0, 0x0) (async)
r4 = dup3(r3, r0, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17)

[ 1039.479832][ T3376] FAULT_INJECTION: forcing a failure.
[ 1039.479832][ T3376] name failslab, interval 1, probability 0, space 0, times 0
[ 1039.492556][ T3376] CPU: 0 PID: 3376 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1039.501143][ T3376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1039.511203][ T3376] Call Trace:
[ 1039.514478][ T3376]  <TASK>
[ 1039.517403][ T3376]  dump_stack_lvl+0xda/0x130
[ 1039.522000][ T3376]  dump_stack+0x15/0x20
[ 1039.526168][ T3376]  should_fail_ex+0x21f/0x230
[ 1039.530853][ T3376]  ? vm_area_dup+0x98/0x130
[ 1039.535361][ T3376]  __should_failslab+0x92/0xa0
[ 1039.540167][ T3376]  should_failslab+0x9/0x20
[ 1039.544671][ T3376]  kmem_cache_alloc+0x4e/0x250
[ 1039.549444][ T3376]  vm_area_dup+0x98/0x130
[ 1039.553802][ T3376]  copy_mm+0x6b6/0xf50
[ 1039.557869][ T3376]  copy_process+0x1002/0x20a0
[ 1039.562560][ T3376]  kernel_clone+0x169/0x560
[ 1039.567106][ T3376]  __x64_sys_clone+0xe8/0x120
[ 1039.571797][ T3376]  do_syscall_64+0x44/0x110
[ 1039.574799][ T3309] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[ 1039.576331][ T3376]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1039.590973][ T3376] RIP: 0033:0x7f424acd3ba9
[ 1039.595389][ T3376] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1039.615010][ T3376] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
11:56:31 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xf, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:32 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x1b)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0xffffffff, 0x24000, 0x1, 0x8, "df3f04000000e5ff0002008f9f471f09000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TCSETA(r2, 0x5406, &(0x7f0000000100)={0x2, 0x80, 0x5, 0x1, 0x19, "11aa2ec4cb0f4b0d"})
r3 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17)

11:56:32 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
read$nci(r1, &(0x7f0000000000)=""/50, 0x32)
io_uring_register$IORING_REGISTER_RING_FDS(r0, 0x14, &(0x7f0000005fc0)=[{0x5, 0x0, 0x0, &(0x7f0000001540)=[{&(0x7f0000000240)=""/198, 0xc6}, {&(0x7f0000000040)=""/39, 0x27}, {&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f0000001340)=""/212, 0xd4}, {&(0x7f0000001440)=""/211, 0xd3}], &(0x7f00000015c0)=[0x0, 0x100000001, 0x4]}, {0x4, 0x0, 0x0, &(0x7f0000002840)=[{&(0x7f0000001600)=""/190, 0xbe}, {&(0x7f00000016c0)=""/4096, 0x1000}, {&(0x7f00000026c0)=""/229, 0xe5}, {&(0x7f00000027c0)=""/74, 0x4a}], &(0x7f0000002880)=[0x9, 0xa64, 0x9, 0x5]}, {0xa, 0x1, 0x0, &(0x7f0000005040)=[{&(0x7f00000028c0)=""/196, 0xc4}, {&(0x7f00000029c0)=""/4096, 0x1000}, {&(0x7f00000039c0)=""/4096, 0x1000}, {&(0x7f00000049c0)=""/207, 0xcf}, {&(0x7f0000004ac0)=""/178, 0xb2}, {&(0x7f0000004b80)=""/222, 0xde}, {&(0x7f0000004c80)=""/219, 0xdb}, {&(0x7f0000004d80)=""/220, 0xdc}, {&(0x7f0000004e80)=""/240, 0xf0}, {&(0x7f0000004f80)=""/134, 0x86}], &(0x7f0000005100)=[0x40000000000000, 0x9e97, 0xa48, 0xfff, 0x10001, 0xf90, 0x7f]}, {0x6, 0x0, 0x0, &(0x7f0000005500)=[{&(0x7f0000005140)=""/192, 0xc0}, {&(0x7f0000005200)=""/132, 0x84}, {&(0x7f00000052c0)=""/28, 0x1c}, {&(0x7f0000005300)=""/237, 0xed}, {&(0x7f0000005400)=""/109, 0x6d}, {&(0x7f0000005480)=""/84, 0x54}], &(0x7f0000005580)=[0x8, 0x4]}, {0xa, 0x1, 0x0, &(0x7f0000005b80)=[{&(0x7f00000055c0)=""/183, 0xb7}, {&(0x7f0000005680)=""/48, 0x30}, {&(0x7f00000056c0)=""/115, 0x73}, {&(0x7f0000005740)=""/207, 0xcf}, {&(0x7f0000005840)=""/23, 0x17}, {&(0x7f0000005880)=""/135, 0x87}, {&(0x7f0000005940)}, {&(0x7f0000005980)=""/109, 0x6d}, {&(0x7f0000005a00)=""/154, 0x9a}, {&(0x7f0000005ac0)=""/191, 0xbf}], &(0x7f0000005c40)=[0x9, 0x1, 0x9, 0x5, 0x7, 0x1, 0x800, 0x7fffffffffffffff, 0x1, 0xe69]}, {0x4, 0x0, 0x0, &(0x7f0000005f40)=[{&(0x7f0000005cc0)=""/121, 0x79}, {&(0x7f0000005d40)=""/56, 0x38}, {&(0x7f0000005d80)=""/134, 0x86}, {&(0x7f0000005e40)=""/203, 0xcb}], &(0x7f0000005f80)=[0x401, 0x0, 0x0, 0x8000000000000000]}], 0x6)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:32 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 36)

[ 1039.623462][ T3376] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1039.631427][ T3376] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1039.639435][ T3376] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1039.647411][ T3376] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1039.655464][ T3376] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1039.663449][ T3376]  </TASK>
11:56:32 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x2}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:32 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x11, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1039.697726][ T3623] FAULT_INJECTION: forcing a failure.
[ 1039.697726][ T3623] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1039.710967][ T3623] CPU: 0 PID: 3623 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1039.719548][ T3623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1039.729597][ T3623] Call Trace:
[ 1039.732877][ T3623]  <TASK>
[ 1039.735798][ T3623]  dump_stack_lvl+0xda/0x130
[ 1039.740404][ T3623]  dump_stack+0x15/0x20
[ 1039.744567][ T3623]  should_fail_ex+0x21f/0x230
[ 1039.749250][ T3623]  __should_fail_alloc_page+0xfd/0x110
[ 1039.754731][ T3623]  __alloc_pages+0x108/0x340
[ 1039.759332][ T3623]  alloc_pages_mpol+0xb1/0x1d0
[ 1039.764101][ T3623]  alloc_pages+0xe0/0x100
[ 1039.768439][ T3623]  __pud_alloc+0x4c/0x3b0
[ 1039.772781][ T3623]  ? __mod_memcg_lruvec_state+0xd4/0x140
[ 1039.778412][ T3623]  copy_page_range+0x2082/0x2220
[ 1039.783352][ T3623]  ? mas_wr_end_piv+0x153/0x430
[ 1039.788209][ T3623]  ? mas_wr_store_entry+0x235/0x350
[ 1039.793420][ T3623]  copy_mm+0x953/0xf50
[ 1039.797493][ T3623]  copy_process+0x1002/0x20a0
[ 1039.802178][ T3623]  kernel_clone+0x169/0x560
[ 1039.806689][ T3623]  __x64_sys_clone+0xe8/0x120
[ 1039.811376][ T3623]  do_syscall_64+0x44/0x110
[ 1039.815885][ T3623]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1039.821777][ T3623] RIP: 0033:0x7f424acd3ba9
[ 1039.826171][ T3623] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1039.845770][ T3623] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1039.854163][ T3623] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1039.862128][ T3623] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1039.870088][ T3623] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1039.878049][ T3623] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1039.886000][ T3623] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1039.893954][ T3623]  </TASK>
[ 1039.924860][ T3744] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
11:56:32 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x1b) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0xffffffff, 0x24000, 0x1, 0x8, "df3f04000000e5ff0002008f9f471f09000040"}) (async)
r1 = syz_open_pts(r0, 0x0) (async)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe) (async)
ioctl$TCSETA(r2, 0x5406, &(0x7f0000000100)={0x2, 0x80, 0x5, 0x1, 0x19, "11aa2ec4cb0f4b0d"})
r3 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17)

11:56:32 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x13, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:32 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 37)

11:56:32 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x3}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:32 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(0xffffffffffffffff, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:32 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
read$nci(r1, &(0x7f0000000000)=""/50, 0x32)
io_uring_register$IORING_REGISTER_RING_FDS(r0, 0x14, &(0x7f0000005fc0)=[{0x5, 0x0, 0x0, &(0x7f0000001540)=[{&(0x7f0000000240)=""/198, 0xc6}, {&(0x7f0000000040)=""/39, 0x27}, {&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f0000001340)=""/212, 0xd4}, {&(0x7f0000001440)=""/211, 0xd3}], &(0x7f00000015c0)=[0x0, 0x100000001, 0x4]}, {0x4, 0x0, 0x0, &(0x7f0000002840)=[{&(0x7f0000001600)=""/190, 0xbe}, {&(0x7f00000016c0)=""/4096, 0x1000}, {&(0x7f00000026c0)=""/229, 0xe5}, {&(0x7f00000027c0)=""/74, 0x4a}], &(0x7f0000002880)=[0x9, 0xa64, 0x9, 0x5]}, {0xa, 0x1, 0x0, &(0x7f0000005040)=[{&(0x7f00000028c0)=""/196, 0xc4}, {&(0x7f00000029c0)=""/4096, 0x1000}, {&(0x7f00000039c0)=""/4096, 0x1000}, {&(0x7f00000049c0)=""/207, 0xcf}, {&(0x7f0000004ac0)=""/178, 0xb2}, {&(0x7f0000004b80)=""/222, 0xde}, {&(0x7f0000004c80)=""/219, 0xdb}, {&(0x7f0000004d80)=""/220, 0xdc}, {&(0x7f0000004e80)=""/240, 0xf0}, {&(0x7f0000004f80)=""/134, 0x86}], &(0x7f0000005100)=[0x40000000000000, 0x9e97, 0xa48, 0xfff, 0x10001, 0xf90, 0x7f]}, {0x6, 0x0, 0x0, &(0x7f0000005500)=[{&(0x7f0000005140)=""/192, 0xc0}, {&(0x7f0000005200)=""/132, 0x84}, {&(0x7f00000052c0)=""/28, 0x1c}, {&(0x7f0000005300)=""/237, 0xed}, {&(0x7f0000005400)=""/109, 0x6d}, {&(0x7f0000005480)=""/84, 0x54}], &(0x7f0000005580)=[0x8, 0x4]}, {0xa, 0x1, 0x0, &(0x7f0000005b80)=[{&(0x7f00000055c0)=""/183, 0xb7}, {&(0x7f0000005680)=""/48, 0x30}, {&(0x7f00000056c0)=""/115, 0x73}, {&(0x7f0000005740)=""/207, 0xcf}, {&(0x7f0000005840)=""/23, 0x17}, {&(0x7f0000005880)=""/135, 0x87}, {&(0x7f0000005940)}, {&(0x7f0000005980)=""/109, 0x6d}, {&(0x7f0000005a00)=""/154, 0x9a}, {&(0x7f0000005ac0)=""/191, 0xbf}], &(0x7f0000005c40)=[0x9, 0x1, 0x9, 0x5, 0x7, 0x1, 0x800, 0x7fffffffffffffff, 0x1, 0xe69]}, {0x4, 0x0, 0x0, &(0x7f0000005f40)=[{&(0x7f0000005cc0)=""/121, 0x79}, {&(0x7f0000005d40)=""/56, 0x38}, {&(0x7f0000005d80)=""/134, 0x86}, {&(0x7f0000005e40)=""/203, 0xcb}], &(0x7f0000005f80)=[0x401, 0x0, 0x0, 0x8000000000000000]}], 0x6)
close_range(r0, 0xffffffffffffffff, 0x0)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r3) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
read$nci(r1, &(0x7f0000000000)=""/50, 0x32) (async)
io_uring_register$IORING_REGISTER_RING_FDS(r0, 0x14, &(0x7f0000005fc0)=[{0x5, 0x0, 0x0, &(0x7f0000001540)=[{&(0x7f0000000240)=""/198, 0xc6}, {&(0x7f0000000040)=""/39, 0x27}, {&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f0000001340)=""/212, 0xd4}, {&(0x7f0000001440)=""/211, 0xd3}], &(0x7f00000015c0)=[0x0, 0x100000001, 0x4]}, {0x4, 0x0, 0x0, &(0x7f0000002840)=[{&(0x7f0000001600)=""/190, 0xbe}, {&(0x7f00000016c0)=""/4096, 0x1000}, {&(0x7f00000026c0)=""/229, 0xe5}, {&(0x7f00000027c0)=""/74, 0x4a}], &(0x7f0000002880)=[0x9, 0xa64, 0x9, 0x5]}, {0xa, 0x1, 0x0, &(0x7f0000005040)=[{&(0x7f00000028c0)=""/196, 0xc4}, {&(0x7f00000029c0)=""/4096, 0x1000}, {&(0x7f00000039c0)=""/4096, 0x1000}, {&(0x7f00000049c0)=""/207, 0xcf}, {&(0x7f0000004ac0)=""/178, 0xb2}, {&(0x7f0000004b80)=""/222, 0xde}, {&(0x7f0000004c80)=""/219, 0xdb}, {&(0x7f0000004d80)=""/220, 0xdc}, {&(0x7f0000004e80)=""/240, 0xf0}, {&(0x7f0000004f80)=""/134, 0x86}], &(0x7f0000005100)=[0x40000000000000, 0x9e97, 0xa48, 0xfff, 0x10001, 0xf90, 0x7f]}, {0x6, 0x0, 0x0, &(0x7f0000005500)=[{&(0x7f0000005140)=""/192, 0xc0}, {&(0x7f0000005200)=""/132, 0x84}, {&(0x7f00000052c0)=""/28, 0x1c}, {&(0x7f0000005300)=""/237, 0xed}, {&(0x7f0000005400)=""/109, 0x6d}, {&(0x7f0000005480)=""/84, 0x54}], &(0x7f0000005580)=[0x8, 0x4]}, {0xa, 0x1, 0x0, &(0x7f0000005b80)=[{&(0x7f00000055c0)=""/183, 0xb7}, {&(0x7f0000005680)=""/48, 0x30}, {&(0x7f00000056c0)=""/115, 0x73}, {&(0x7f0000005740)=""/207, 0xcf}, {&(0x7f0000005840)=""/23, 0x17}, {&(0x7f0000005880)=""/135, 0x87}, {&(0x7f0000005940)}, {&(0x7f0000005980)=""/109, 0x6d}, {&(0x7f0000005a00)=""/154, 0x9a}, {&(0x7f0000005ac0)=""/191, 0xbf}], &(0x7f0000005c40)=[0x9, 0x1, 0x9, 0x5, 0x7, 0x1, 0x800, 0x7fffffffffffffff, 0x1, 0xe69]}, {0x4, 0x0, 0x0, &(0x7f0000005f40)=[{&(0x7f0000005cc0)=""/121, 0x79}, {&(0x7f0000005d40)=""/56, 0x38}, {&(0x7f0000005d80)=""/134, 0x86}, {&(0x7f0000005e40)=""/203, 0xcb}], &(0x7f0000005f80)=[0x401, 0x0, 0x0, 0x8000000000000000]}], 0x6) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)

11:56:32 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 38)

11:56:32 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xc0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1040.391895][ T3833] FAULT_INJECTION: forcing a failure.
[ 1040.391895][ T3833] name failslab, interval 1, probability 0, space 0, times 0
[ 1040.404614][ T3833] CPU: 0 PID: 3833 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1040.413225][ T3833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1040.423271][ T3833] Call Trace:
[ 1040.426548][ T3833]  <TASK>
[ 1040.429480][ T3833]  dump_stack_lvl+0xda/0x130
[ 1040.434127][ T3833]  dump_stack+0x15/0x20
11:56:32 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x1b)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0xffffffff, 0x24000, 0x1, 0x8, "df3f04000000e5ff0002008f9f471f09000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TCSETA(r2, 0x5406, &(0x7f0000000100)={0x2, 0x80, 0x5, 0x1, 0x19, "11aa2ec4cb0f4b0d"})
r3 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x1b) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0xffffffff, 0x24000, 0x1, 0x8, "df3f04000000e5ff0002008f9f471f09000040"}) (async)
syz_open_pts(r0, 0x0) (async)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe) (async)
ioctl$TCSETA(r2, 0x5406, &(0x7f0000000100)={0x2, 0x80, 0x5, 0x1, 0x19, "11aa2ec4cb0f4b0d"}) (async)
dup3(r1, r0, 0x0) (async)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17) (async)

[ 1040.438300][ T3833]  should_fail_ex+0x21f/0x230
[ 1040.443042][ T3833]  ? anon_vma_fork+0xac/0x2c0
[ 1040.447760][ T3833]  __should_failslab+0x92/0xa0
[ 1040.452555][ T3833]  should_failslab+0x9/0x20
[ 1040.457069][ T3833]  kmem_cache_alloc+0x4e/0x250
[ 1040.461880][ T3833]  anon_vma_fork+0xac/0x2c0
[ 1040.466388][ T3833]  copy_mm+0x72a/0xf50
[ 1040.470472][ T3833]  copy_process+0x1002/0x20a0
[ 1040.475212][ T3833]  kernel_clone+0x169/0x560
[ 1040.479713][ T3833]  __x64_sys_clone+0xe8/0x120
[ 1040.484404][ T3833]  do_syscall_64+0x44/0x110
[ 1040.488927][ T3833]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1040.494858][ T3833] RIP: 0033:0x7f424acd3ba9
[ 1040.499268][ T3833] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1040.518944][ T3833] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1040.527357][ T3833] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
11:56:33 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x4}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:33 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x2c4, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1040.535340][ T3833] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1040.543357][ T3833] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1040.551319][ T3833] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1040.559291][ T3833] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1040.567259][ T3833]  </TASK>
11:56:33 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
read$nci(r1, &(0x7f0000000000)=""/50, 0x32)
io_uring_register$IORING_REGISTER_RING_FDS(r0, 0x14, &(0x7f0000005fc0)=[{0x5, 0x0, 0x0, &(0x7f0000001540)=[{&(0x7f0000000240)=""/198, 0xc6}, {&(0x7f0000000040)=""/39, 0x27}, {&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f0000001340)=""/212, 0xd4}, {&(0x7f0000001440)=""/211, 0xd3}], &(0x7f00000015c0)=[0x0, 0x100000001, 0x4]}, {0x4, 0x0, 0x0, &(0x7f0000002840)=[{&(0x7f0000001600)=""/190, 0xbe}, {&(0x7f00000016c0)=""/4096, 0x1000}, {&(0x7f00000026c0)=""/229, 0xe5}, {&(0x7f00000027c0)=""/74, 0x4a}], &(0x7f0000002880)=[0x9, 0xa64, 0x9, 0x5]}, {0xa, 0x1, 0x0, &(0x7f0000005040)=[{&(0x7f00000028c0)=""/196, 0xc4}, {&(0x7f00000029c0)=""/4096, 0x1000}, {&(0x7f00000039c0)=""/4096, 0x1000}, {&(0x7f00000049c0)=""/207, 0xcf}, {&(0x7f0000004ac0)=""/178, 0xb2}, {&(0x7f0000004b80)=""/222, 0xde}, {&(0x7f0000004c80)=""/219, 0xdb}, {&(0x7f0000004d80)=""/220, 0xdc}, {&(0x7f0000004e80)=""/240, 0xf0}, {&(0x7f0000004f80)=""/134, 0x86}], &(0x7f0000005100)=[0x40000000000000, 0x9e97, 0xa48, 0xfff, 0x10001, 0xf90, 0x7f]}, {0x6, 0x0, 0x0, &(0x7f0000005500)=[{&(0x7f0000005140)=""/192, 0xc0}, {&(0x7f0000005200)=""/132, 0x84}, {&(0x7f00000052c0)=""/28, 0x1c}, {&(0x7f0000005300)=""/237, 0xed}, {&(0x7f0000005400)=""/109, 0x6d}, {&(0x7f0000005480)=""/84, 0x54}], &(0x7f0000005580)=[0x8, 0x4]}, {0xa, 0x1, 0x0, &(0x7f0000005b80)=[{&(0x7f00000055c0)=""/183, 0xb7}, {&(0x7f0000005680)=""/48, 0x30}, {&(0x7f00000056c0)=""/115, 0x73}, {&(0x7f0000005740)=""/207, 0xcf}, {&(0x7f0000005840)=""/23, 0x17}, {&(0x7f0000005880)=""/135, 0x87}, {&(0x7f0000005940)}, {&(0x7f0000005980)=""/109, 0x6d}, {&(0x7f0000005a00)=""/154, 0x9a}, {&(0x7f0000005ac0)=""/191, 0xbf}], &(0x7f0000005c40)=[0x9, 0x1, 0x9, 0x5, 0x7, 0x1, 0x800, 0x7fffffffffffffff, 0x1, 0xe69]}, {0x4, 0x0, 0x0, &(0x7f0000005f40)=[{&(0x7f0000005cc0)=""/121, 0x79}, {&(0x7f0000005d40)=""/56, 0x38}, {&(0x7f0000005d80)=""/134, 0x86}, {&(0x7f0000005e40)=""/203, 0xcb}], &(0x7f0000005f80)=[0x401, 0x0, 0x0, 0x8000000000000000]}], 0x6)
close_range(r0, 0xffffffffffffffff, 0x0)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r3) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
read$nci(r1, &(0x7f0000000000)=""/50, 0x32) (async)
io_uring_register$IORING_REGISTER_RING_FDS(r0, 0x14, &(0x7f0000005fc0)=[{0x5, 0x0, 0x0, &(0x7f0000001540)=[{&(0x7f0000000240)=""/198, 0xc6}, {&(0x7f0000000040)=""/39, 0x27}, {&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f0000001340)=""/212, 0xd4}, {&(0x7f0000001440)=""/211, 0xd3}], &(0x7f00000015c0)=[0x0, 0x100000001, 0x4]}, {0x4, 0x0, 0x0, &(0x7f0000002840)=[{&(0x7f0000001600)=""/190, 0xbe}, {&(0x7f00000016c0)=""/4096, 0x1000}, {&(0x7f00000026c0)=""/229, 0xe5}, {&(0x7f00000027c0)=""/74, 0x4a}], &(0x7f0000002880)=[0x9, 0xa64, 0x9, 0x5]}, {0xa, 0x1, 0x0, &(0x7f0000005040)=[{&(0x7f00000028c0)=""/196, 0xc4}, {&(0x7f00000029c0)=""/4096, 0x1000}, {&(0x7f00000039c0)=""/4096, 0x1000}, {&(0x7f00000049c0)=""/207, 0xcf}, {&(0x7f0000004ac0)=""/178, 0xb2}, {&(0x7f0000004b80)=""/222, 0xde}, {&(0x7f0000004c80)=""/219, 0xdb}, {&(0x7f0000004d80)=""/220, 0xdc}, {&(0x7f0000004e80)=""/240, 0xf0}, {&(0x7f0000004f80)=""/134, 0x86}], &(0x7f0000005100)=[0x40000000000000, 0x9e97, 0xa48, 0xfff, 0x10001, 0xf90, 0x7f]}, {0x6, 0x0, 0x0, &(0x7f0000005500)=[{&(0x7f0000005140)=""/192, 0xc0}, {&(0x7f0000005200)=""/132, 0x84}, {&(0x7f00000052c0)=""/28, 0x1c}, {&(0x7f0000005300)=""/237, 0xed}, {&(0x7f0000005400)=""/109, 0x6d}, {&(0x7f0000005480)=""/84, 0x54}], &(0x7f0000005580)=[0x8, 0x4]}, {0xa, 0x1, 0x0, &(0x7f0000005b80)=[{&(0x7f00000055c0)=""/183, 0xb7}, {&(0x7f0000005680)=""/48, 0x30}, {&(0x7f00000056c0)=""/115, 0x73}, {&(0x7f0000005740)=""/207, 0xcf}, {&(0x7f0000005840)=""/23, 0x17}, {&(0x7f0000005880)=""/135, 0x87}, {&(0x7f0000005940)}, {&(0x7f0000005980)=""/109, 0x6d}, {&(0x7f0000005a00)=""/154, 0x9a}, {&(0x7f0000005ac0)=""/191, 0xbf}], &(0x7f0000005c40)=[0x9, 0x1, 0x9, 0x5, 0x7, 0x1, 0x800, 0x7fffffffffffffff, 0x1, 0xe69]}, {0x4, 0x0, 0x0, &(0x7f0000005f40)=[{&(0x7f0000005cc0)=""/121, 0x79}, {&(0x7f0000005d40)=""/56, 0x38}, {&(0x7f0000005d80)=""/134, 0x86}, {&(0x7f0000005e40)=""/203, 0xcb}], &(0x7f0000005f80)=[0x401, 0x0, 0x0, 0x8000000000000000]}], 0x6) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)

11:56:33 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 39)

11:56:33 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x18c741, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TIOCSCTTY(r3, 0x540e, 0x5)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:33 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x18c741, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0) (async)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xe) (async)
ioctl$TIOCSCTTY(r3, 0x540e, 0x5) (async)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

[ 1040.659052][ T4210] FAULT_INJECTION: forcing a failure.
[ 1040.659052][ T4210] name failslab, interval 1, probability 0, space 0, times 0
[ 1040.671776][ T4210] CPU: 0 PID: 4210 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1040.680369][ T4210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1040.690437][ T4210] Call Trace:
[ 1040.693711][ T4210]  <TASK>
[ 1040.696641][ T4210]  dump_stack_lvl+0xda/0x130
[ 1040.701258][ T4210]  dump_stack+0x15/0x20
11:56:33 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x300, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1040.705478][ T4210]  should_fail_ex+0x21f/0x230
[ 1040.710269][ T4210]  ? vm_area_dup+0x2c/0x130
[ 1040.714844][ T4210]  __should_failslab+0x92/0xa0
[ 1040.719654][ T4210]  should_failslab+0x9/0x20
[ 1040.724166][ T4210]  kmem_cache_alloc+0x4e/0x250
[ 1040.729034][ T4210]  vm_area_dup+0x2c/0x130
[ 1040.733469][ T4210]  copy_mm+0x6b6/0xf50
[ 1040.737544][ T4210]  copy_process+0x1002/0x20a0
[ 1040.742227][ T4210]  kernel_clone+0x169/0x560
[ 1040.746711][ T4210]  __x64_sys_clone+0xe8/0x120
[ 1040.751445][ T4210]  do_syscall_64+0x44/0x110
[ 1040.755933][ T4210]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1040.761808][ T4210] RIP: 0033:0x7f424acd3ba9
[ 1040.766236][ T4210] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1040.785829][ T4210] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1040.794278][ T4210] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1040.802241][ T4210] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1040.810192][ T4210] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1040.818146][ T4210] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1040.826111][ T4210] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1040.834099][ T4210]  </TASK>
11:56:33 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(0xffffffffffffffff, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:33 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x18c741, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
dup3(r1, r0, 0x0) (async)
r2 = dup3(r1, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xe) (async)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TIOCSCTTY(r3, 0x540e, 0x5)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:33 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x380, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:33 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0xf}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:33 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 40)

11:56:33 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="0100"/18, @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:33 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x3a1, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1041.239745][ T4444] FAULT_INJECTION: forcing a failure.
[ 1041.239745][ T4444] name failslab, interval 1, probability 0, space 0, times 0
[ 1041.252489][ T4444] CPU: 0 PID: 4444 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1041.261109][ T4444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1041.271161][ T4444] Call Trace:
[ 1041.274433][ T4444]  <TASK>
[ 1041.277360][ T4444]  dump_stack_lvl+0xda/0x130
[ 1041.281975][ T4444]  dump_stack+0x15/0x20
11:56:33 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="0100"/18, @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="0100"/18, @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)

11:56:33 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
flock(r1, 0x4)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r2=>r0}, './file0\x00'})
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000100)=0x10)
r3 = socket(0x10, 0x2, 0x0)
write(r3, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
r4 = socket$caif_seqpacket(0x25, 0x5, 0x2)
sendfile(r3, r4, &(0x7f0000000140)=0x6, 0x5)
r5 = syz_open_pts(r0, 0x0)
r6 = dup3(r5, r5, 0x0)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000080)=0x17)

[ 1041.286144][ T4444]  should_fail_ex+0x21f/0x230
[ 1041.290835][ T4444]  ? vm_area_dup+0x98/0x130
[ 1041.295350][ T4444]  __should_failslab+0x92/0xa0
[ 1041.300180][ T4444]  should_failslab+0x9/0x20
[ 1041.304790][ T4444]  kmem_cache_alloc+0x4e/0x250
[ 1041.309557][ T4444]  vm_area_dup+0x98/0x130
[ 1041.313905][ T4444]  copy_mm+0x6b6/0xf50
[ 1041.318056][ T4444]  copy_process+0x1002/0x20a0
[ 1041.322838][ T4444]  kernel_clone+0x169/0x560
[ 1041.327342][ T4444]  __x64_sys_clone+0xe8/0x120
[ 1041.332090][ T4444]  do_syscall_64+0x44/0x110
11:56:33 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x3dd, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1041.336607][ T4444]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1041.342507][ T4444] RIP: 0033:0x7f424acd3ba9
[ 1041.346947][ T4444] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1041.366614][ T4444] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1041.375118][ T4444] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
11:56:33 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x300}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:33 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x3e5, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1041.383175][ T4444] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1041.391147][ T4444] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1041.399126][ T4444] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1041.407180][ T4444] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1041.415244][ T4444]  </TASK>
11:56:34 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(0xffffffffffffffff, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:34 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async, rerun: 32)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="0100"/18, @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:34 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 41)

11:56:34 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
flock(r1, 0x4) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async, rerun: 64)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r2=>r0}, './file0\x00'}) (rerun: 64)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000100)=0x10) (async, rerun: 64)
r3 = socket(0x10, 0x2, 0x0) (rerun: 64)
write(r3, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
r4 = socket$caif_seqpacket(0x25, 0x5, 0x2)
sendfile(r3, r4, &(0x7f0000000140)=0x6, 0x5) (async, rerun: 64)
r5 = syz_open_pts(r0, 0x0) (rerun: 64)
r6 = dup3(r5, r5, 0x0)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000080)=0x17)

11:56:34 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x900, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:34 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0xf00}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1042.088262][ T4783] FAULT_INJECTION: forcing a failure.
[ 1042.088262][ T4783] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1042.101542][ T4783] CPU: 1 PID: 4783 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1042.110123][ T4783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1042.120175][ T4783] Call Trace:
[ 1042.123442][ T4783]  <TASK>
[ 1042.126365][ T4783]  dump_stack_lvl+0xda/0x130
[ 1042.130970][ T4783]  dump_stack+0x15/0x20
[ 1042.135133][ T4783]  should_fail_ex+0x21f/0x230
[ 1042.139822][ T4783]  __should_fail_alloc_page+0xfd/0x110
[ 1042.145304][ T4783]  __alloc_pages+0x108/0x340
[ 1042.149897][ T4783]  alloc_pages_mpol+0xb1/0x1d0
[ 1042.154663][ T4783]  alloc_pages+0xe0/0x100
[ 1042.158994][ T4783]  __pud_alloc+0x4c/0x3b0
[ 1042.163326][ T4783]  ? __mod_memcg_lruvec_state+0xd4/0x140
[ 1042.168956][ T4783]  copy_page_range+0x2082/0x2220
[ 1042.173899][ T4783]  ? mas_wr_end_piv+0x153/0x430
[ 1042.178760][ T4783]  ? mas_wr_store_entry+0x235/0x350
[ 1042.183959][ T4783]  copy_mm+0x953/0xf50
[ 1042.188028][ T4783]  copy_process+0x1002/0x20a0
[ 1042.192703][ T4783]  kernel_clone+0x169/0x560
[ 1042.197210][ T4783]  __x64_sys_clone+0xe8/0x120
[ 1042.201882][ T4783]  do_syscall_64+0x44/0x110
[ 1042.206398][ T4783]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1042.212293][ T4783] RIP: 0033:0x7f424acd3ba9
[ 1042.216704][ T4783] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
11:56:34 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
flock(r1, 0x4) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r2=>r0}, './file0\x00'})
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000100)=0x10)
r3 = socket(0x10, 0x2, 0x0)
write(r3, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
r4 = socket$caif_seqpacket(0x25, 0x5, 0x2)
sendfile(r3, r4, &(0x7f0000000140)=0x6, 0x5) (async)
r5 = syz_open_pts(r0, 0x0)
r6 = dup3(r5, r5, 0x0)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000080)=0x17)

11:56:34 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xa00, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:34 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 42)

11:56:34 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x34000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1042.236311][ T4783] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1042.244894][ T4783] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1042.252870][ T4783] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1042.260838][ T4783] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1042.268804][ T4783] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1042.276765][ T4783] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1042.284731][ T4783]  </TASK>
11:56:34 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {<r5=>0xee01, 0xee00}}, './file0\x00'})
quotactl_fd$Q_GETQUOTA(r1, 0xffffffff80000702, r5, &(0x7f0000000240))
close_range(r0, 0xffffffffffffffff, 0x2)

11:56:34 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xc00, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1042.299692][ T4786] workqueue: Failed to create a rescuer kthread for wq "nfc3_nci_tx_wq": -EINTR
[ 1042.367976][ T5025] FAULT_INJECTION: forcing a failure.
[ 1042.367976][ T5025] name failslab, interval 1, probability 0, space 0, times 0
[ 1042.389703][ T5025] CPU: 1 PID: 5025 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1042.398286][ T5025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1042.408323][ T5025] Call Trace:
[ 1042.411584][ T5025]  <TASK>
[ 1042.414495][ T5025]  dump_stack_lvl+0xda/0x130
[ 1042.419161][ T5025]  dump_stack+0x15/0x20
[ 1042.423306][ T5025]  should_fail_ex+0x21f/0x230
[ 1042.428024][ T5025]  ? vm_area_dup+0x98/0x130
[ 1042.432580][ T5025]  __should_failslab+0x92/0xa0
[ 1042.437358][ T5025]  should_failslab+0x9/0x20
[ 1042.441846][ T5025]  kmem_cache_alloc+0x4e/0x250
[ 1042.446623][ T5025]  vm_area_dup+0x98/0x130
[ 1042.450967][ T5025]  copy_mm+0x6b6/0xf50
[ 1042.455032][ T5025]  copy_process+0x1002/0x20a0
[ 1042.459699][ T5025]  kernel_clone+0x169/0x560
[ 1042.464219][ T5025]  __x64_sys_clone+0xe8/0x120
[ 1042.468970][ T5025]  do_syscall_64+0x44/0x110
[ 1042.473466][ T5025]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1042.479361][ T5025] RIP: 0033:0x7f424acd3ba9
[ 1042.483762][ T5025] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1042.503521][ T5025] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1042.511914][ T5025] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1042.519865][ T5025] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1042.527819][ T5025] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1042.535848][ T5025] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1042.543898][ T5025] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1042.551852][ T5025]  </TASK>
11:56:35 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
syz_open_pts(r0, 0x0)
r1 = dup3(0xffffffffffffffff, r0, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080))

11:56:35 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r3=>r2, {0x0, 0xee00}}, './file0\x00'})
setsockopt$RDS_CONG_MONITOR(r3, 0x114, 0x6, &(0x7f0000000100), 0x4)

11:56:35 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xd00, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:35 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {<r5=>0xee01, 0xee00}}, './file0\x00'})
quotactl_fd$Q_GETQUOTA(r1, 0xffffffff80000702, r5, &(0x7f0000000240))
close_range(r0, 0xffffffffffffffff, 0x2)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0xee01, 0xee00}}, './file0\x00'}) (async)
quotactl_fd$Q_GETQUOTA(r1, 0xffffffff80000702, r5, &(0x7f0000000240)) (async)
close_range(r0, 0xffffffffffffffff, 0x2) (async)

11:56:35 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x400300}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:35 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 43)

[ 1042.965768][ T5048] FAULT_INJECTION: forcing a failure.
[ 1042.965768][ T5048] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1042.979042][ T5048] CPU: 1 PID: 5048 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1042.987627][ T5048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1042.997674][ T5048] Call Trace:
[ 1043.000947][ T5048]  <TASK>
[ 1043.003877][ T5048]  dump_stack_lvl+0xda/0x130
[ 1043.008472][ T5048]  dump_stack+0x15/0x20
[ 1043.012635][ T5048]  should_fail_ex+0x21f/0x230
[ 1043.017316][ T5048]  __should_fail_alloc_page+0xfd/0x110
[ 1043.022783][ T5048]  __alloc_pages+0x108/0x340
[ 1043.027379][ T5048]  alloc_pages_mpol+0xb1/0x1d0
[ 1043.032152][ T5048]  alloc_pages+0xe0/0x100
[ 1043.036493][ T5048]  pte_alloc_one+0x32/0xe0
[ 1043.040925][ T5048]  __pte_alloc+0x33/0x270
[ 1043.045255][ T5048]  copy_page_range+0x1d20/0x2220
[ 1043.050191][ T5048]  copy_mm+0x953/0xf50
[ 1043.054264][ T5048]  copy_process+0x1002/0x20a0
[ 1043.058942][ T5048]  kernel_clone+0x169/0x560
[ 1043.063438][ T5048]  __x64_sys_clone+0xe8/0x120
[ 1043.068117][ T5048]  do_syscall_64+0x44/0x110
[ 1043.072628][ T5048]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1043.078524][ T5048] RIP: 0033:0x7f424acd3ba9
[ 1043.082932][ T5048] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1043.091550][ T5047] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[ 1043.102521][ T5048] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1043.102541][ T5048] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1043.102554][ T5048] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1043.118076][ T5052] workqueue: Failed to create a rescuer kthread for wq "nfc3_nci_cmd_wq": -EINTR
[ 1043.120020][ T5048] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1043.120035][ T5048] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
11:56:35 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {<r5=>0xee01, 0xee00}}, './file0\x00'})
quotactl_fd$Q_GETQUOTA(r1, 0xffffffff80000702, r5, &(0x7f0000000240))
close_range(r0, 0xffffffffffffffff, 0x2)

11:56:35 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xe00, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:35 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/cs53l32a', 0x551540, 0x3d)
io_uring_register$IORING_REGISTER_FILES(r4, 0x2, &(0x7f0000000100)=[r0], 0x1)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x40)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:35 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x1000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:35 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 44)

11:56:35 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xf00, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1043.160980][ T5048] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1043.168960][ T5048]  </TASK>
[ 1043.219767][ T5264] FAULT_INJECTION: forcing a failure.
[ 1043.219767][ T5264] name failslab, interval 1, probability 0, space 0, times 0
[ 1043.232419][ T5264] CPU: 1 PID: 5264 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1043.241065][ T5264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1043.251118][ T5264] Call Trace:
[ 1043.254395][ T5264]  <TASK>
[ 1043.257329][ T5264]  dump_stack_lvl+0xda/0x130
[ 1043.261929][ T5264]  dump_stack+0x15/0x20
[ 1043.266210][ T5264]  should_fail_ex+0x21f/0x230
[ 1043.270909][ T5264]  ? anon_vma_fork+0xac/0x2c0
[ 1043.275585][ T5264]  __should_failslab+0x92/0xa0
[ 1043.280372][ T5264]  should_failslab+0x9/0x20
[ 1043.284979][ T5264]  kmem_cache_alloc+0x4e/0x250
[ 1043.289747][ T5264]  anon_vma_fork+0xac/0x2c0
[ 1043.294236][ T5264]  copy_mm+0x72a/0xf50
[ 1043.298303][ T5264]  copy_process+0x1002/0x20a0
[ 1043.302960][ T5264]  kernel_clone+0x169/0x560
[ 1043.307442][ T5264]  __x64_sys_clone+0xe8/0x120
[ 1043.312129][ T5264]  do_syscall_64+0x44/0x110
[ 1043.316616][ T5264]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1043.322498][ T5264] RIP: 0033:0x7f424acd3ba9
[ 1043.326972][ T5264] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1043.346575][ T5264] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1043.355007][ T5264] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1043.362979][ T5264] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1043.370935][ T5264] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1043.378975][ T5264] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1043.386928][ T5264] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1043.394880][ T5264]  </TASK>
11:56:36 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
syz_open_pts(r0, 0x0)
r1 = dup3(0xffffffffffffffff, r0, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080))

11:56:36 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x1100, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:36 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r3=>r2, {0x0, 0xee00}}, './file0\x00'})
setsockopt$RDS_CONG_MONITOR(r3, 0x114, 0x6, &(0x7f0000000100), 0x4)

11:56:36 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x2000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:36 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 45)

11:56:36 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/cs53l32a', 0x551540, 0x3d)
io_uring_register$IORING_REGISTER_FILES(r4, 0x2, &(0x7f0000000100)=[r0], 0x1) (async)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x40) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1043.835248][ T5297] FAULT_INJECTION: forcing a failure.
[ 1043.835248][ T5297] name failslab, interval 1, probability 0, space 0, times 0
[ 1043.847926][ T5297] CPU: 1 PID: 5297 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1043.856516][ T5297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1043.866643][ T5297] Call Trace:
[ 1043.869913][ T5297]  <TASK>
[ 1043.872833][ T5297]  dump_stack_lvl+0xda/0x130
[ 1043.877502][ T5297]  dump_stack+0x15/0x20
[ 1043.881657][ T5297]  should_fail_ex+0x21f/0x230
[ 1043.886413][ T5297]  ? vm_area_dup+0x2c/0x130
[ 1043.890975][ T5297]  __should_failslab+0x92/0xa0
[ 1043.895847][ T5297]  should_failslab+0x9/0x20
[ 1043.900358][ T5297]  kmem_cache_alloc+0x4e/0x250
[ 1043.905137][ T5297]  vm_area_dup+0x2c/0x130
[ 1043.909541][ T5297]  copy_mm+0x6b6/0xf50
[ 1043.913688][ T5297]  copy_process+0x1002/0x20a0
[ 1043.918373][ T5297]  kernel_clone+0x169/0x560
[ 1043.922877][ T5297]  __x64_sys_clone+0xe8/0x120
[ 1043.927633][ T5297]  do_syscall_64+0x44/0x110
[ 1043.932233][ T5297]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1043.938142][ T5297] RIP: 0033:0x7f424acd3ba9
[ 1043.942611][ T5297] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1043.962246][ T5297] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1043.963070][ T5301] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
11:56:36 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x1300, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:36 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
syz_open_pts(r0, 0x0)
r1 = dup3(0xffffffffffffffff, r0, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080))

11:56:36 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/cs53l32a', 0x551540, 0x3d)
io_uring_register$IORING_REGISTER_FILES(r4, 0x2, &(0x7f0000000100)=[r0], 0x1)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3) (async)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x40)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:36 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 46)

11:56:36 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x3000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1043.970641][ T5297] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1043.970655][ T5297] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1043.995677][ T5297] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1044.003650][ T5297] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1044.011767][ T5297] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1044.019738][ T5297]  </TASK>
11:56:36 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x1f00, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:36 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r3=>r2, {0x0, 0xee00}}, './file0\x00'})
setsockopt$RDS_CONG_MONITOR(r3, 0x114, 0x6, &(0x7f0000000100), 0x4)

[ 1044.085264][ T5603] FAULT_INJECTION: forcing a failure.
[ 1044.085264][ T5603] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1044.098613][ T5603] CPU: 0 PID: 5603 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1044.107203][ T5603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1044.117261][ T5603] Call Trace:
[ 1044.120540][ T5603]  <TASK>
[ 1044.123466][ T5603]  dump_stack_lvl+0xda/0x130
[ 1044.128072][ T5603]  dump_stack+0x15/0x20
11:56:36 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x2000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1044.132245][ T5603]  should_fail_ex+0x21f/0x230
[ 1044.136932][ T5603]  __should_fail_alloc_page+0xfd/0x110
[ 1044.142394][ T5603]  __alloc_pages+0x108/0x340
[ 1044.146986][ T5603]  alloc_pages_mpol+0xb1/0x1d0
[ 1044.151752][ T5603]  alloc_pages+0xe0/0x100
[ 1044.156091][ T5603]  __pud_alloc+0x4c/0x3b0
[ 1044.160426][ T5603]  copy_page_range+0x2082/0x2220
[ 1044.165365][ T5603]  ? mas_wr_end_piv+0x153/0x430
[ 1044.170237][ T5603]  ? mas_wr_store_entry+0x235/0x350
[ 1044.175455][ T5603]  copy_mm+0x953/0xf50
[ 1044.179532][ T5603]  copy_process+0x1002/0x20a0
11:56:36 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x546001, 0x1)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f0000000040))
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="0000d319d3b940", @ANYRES32=r3], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1044.184216][ T5603]  kernel_clone+0x169/0x560
[ 1044.188721][ T5603]  __x64_sys_clone+0xe8/0x120
[ 1044.193401][ T5603]  do_syscall_64+0x44/0x110
[ 1044.197918][ T5603]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1044.203816][ T5603] RIP: 0033:0x7f424acd3ba9
[ 1044.208223][ T5603] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
11:56:36 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x8003, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:36 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x0, 0xc, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r3, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x3, &(0x7f0000000640)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000d4e18b6f53bcf5eaadb93440302d47a26a00885a768410eb09042fad495ae9b6604f1c5606486ed3f28004937f93d572a667cdfc43b9e5e0363edccf359611719ad39a16e3c21466d66703572a240e07b8e133df9d6be05f994957adefaafd94b1b0dca0f6ee684642b6ff5ea249101475b7f80fbb0933b89c90200919662ca36d8a2d690006500dc36529983d0043a9a3b9f1dd905ae18afbfff8bb2f1a7cea03b696661c57c262369b506707b1aa0635465b3ca0b66e35cf45dd30263b0d37a0e3b3c913004d07ef02f777173d00000000000000"], &(0x7f0000000040)='syzkaller\x00'}, 0x80)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sys_enter\x00', r4}, 0x10)
r6 = getpid()
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={r6, r5, 0x0, 0x0, 0x0}, 0x30)
r7 = pidfd_open(r6, 0x0)
r8 = syz_open_pts(r2, 0x100)
ioctl$TIOCSTI(r8, 0x5412, &(0x7f0000000180)=0x7f)
r9 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000380)=0xffffffffffffffff, 0x4)
r10 = openat$null(0xffffffffffffff9c, &(0x7f0000000480), 0x80041, 0x0)
perf_event_open(&(0x7f00000009c0)={0x5, 0x80, 0x7f, 0x2, 0x0, 0xff, 0x0, 0x0, 0x4091, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x10000, 0x4, @perf_bp={&(0x7f0000000980)}, 0x8, 0x101, 0x5, 0x9, 0xc35e, 0x7ff, 0x800, 0x0, 0x3f, 0x0, 0x1ff}, r6, 0xe, r2, 0x1)
r11 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000a40), 0xa8001, 0x0)
io_submit(0x0, 0x6, &(0x7f0000000600)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x5, 0xeea, r2, &(0x7f00000000c0)="d343fb68864565bac00c99daea4bc7572edb252f8789bbf900998c8d1b3171dd357bf72e2d61b384ad8661ab16ba9caab24c2321440c196c576655a199460c0e16fdff9591818dd01c68d1e1a0e01546de83b00652dc0ca32d62346de3", 0x5d}, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x7, 0x200, r2, &(0x7f0000000180), 0x0, 0x80000001, 0x0, 0x1, r3}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x5, r2, &(0x7f0000000200)="56e339058eb96ff853598938cfd4f883cd7105229f99db2f8f4fdd96795e52113bdf85739e80eac5cd349adb48d97aee870bddbbde6ed8e065b8a6303071bfaa1c0e346821de2e4acaed1b2a88bba4691b61543d0c2956b88dc91b2daccc6130aa0502f4a496959e2d31ae627cea772fc7f638734efc98c4da210805806d967081f7bb0f5379b5bb280134a25607c3b283ff8d37d2ac7fe9e3dba63ba62a37ad4ae968487284a9bc06331a0c", 0xac, 0x4, 0x0, 0x2}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x8, 0x7, r7, &(0x7f0000000300)="7948947220741084191d163e5c8687a96244ad98ccec9c4f4d6b1d951dbe37535252a68b7bafb6ad7e", 0x29, 0x1, 0x0, 0x3, r2}, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x3, 0x80, r9, &(0x7f00000003c0)="2e50552a4503f65b8966460a3098cc129432bee987881f3a31ef49ba11d040beb0e48f41336e1002503e51f234e190931d797ca3dfe7f7450ef863f4e871a1f247879ed15edfb14b0885b6ebeaba5bd1bb4a410968f25ae4e258f923484ad757a2293e9d619da0c3cf4e6ac88a6cec1048255290f0871bdb903a04476c04376683575b56a2ab480c198ed418741aba92e8a5b455e69193502dacca600e54d8daaa6114e3fd151827c50980afe3552f96", 0xb0, 0x6fa3, 0x0, 0x1, r10}, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x6, 0xfff, r1, &(0x7f0000000500)="fbe0a8d91f07efda4cf2cad40c5fc16db22457bf9e1d7d65fe67e21f27d230609b4b5954ee666d823d24a6374d3597d664862cc1f9bb3629e033201b4c40c31a67e68a44e0aba3dae4eda6b14c78d76bc5b7131b038dc3a03142241d1730b1f0ed2b8ef854", 0x65, 0x1f, 0x0, 0x2, r11}])
r12 = openat2(r11, &(0x7f0000000740)='./file0\x00', &(0x7f0000000780)={0x2, 0x141, 0x7}, 0x18)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r11, 0x89f2, &(0x7f00000008c0)={'ip_vti0\x00', &(0x7f00000007c0)={'gretap0\x00', <r13=>0x0, 0x1, 0x558a74451cd7319a, 0x6, 0x6, {{0x34, 0x4, 0x2, 0x20, 0xd0, 0x64, 0x0, 0x20, 0x2f, 0x0, @broadcast, @empty, {[@cipso={0x86, 0x59, 0x3, [{0x7, 0x12, "38be8c10f207a1783d71e3e98f132550"}, {0x6, 0x9, "57ce42b1e61e7f"}, {0x5, 0x3, '*'}, {0x0, 0x9, "381b6f2ed8340e"}, {0x7, 0xe, "6b7dde9593f4e52a45058d9c"}, {0x5, 0x10, "8197456a52e69d3952a0153afe7b"}, {0x0, 0xe, "a3b77185c7798526e9f8d382"}]}, @rr={0x7, 0xf, 0xe, [@remote, @empty, @private=0xa010100]}, @rr={0x7, 0x2b, 0xfd, [@multicast2, @remote, @empty, @multicast2, @remote, @rand_addr=0x64010101, @local, @initdev={0xac, 0x1e, 0x1, 0x0}, @dev={0xac, 0x14, 0x14, 0xa}, @loopback]}, @ra={0x94, 0x4}, @ssrr={0x89, 0x17, 0x86, [@initdev={0xac, 0x1e, 0x1, 0x0}, @multicast2, @private=0xa010101, @loopback, @multicast1]}, @cipso={0x86, 0xd, 0x3, [{0x7, 0x7, "af9e1fda57"}]}]}}}}})
bpf$MAP_CREATE(0x0, &(0x7f0000000900)=@bloom_filter={0x1e, 0x8, 0x194754db, 0x80000000, 0x8, r12, 0xfff, '\x00', r13, 0xffffffffffffffff, 0x2, 0x3, 0x4, 0xc}, 0x48)

11:56:36 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x546001, 0x1)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f0000000040)) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r3=>0x0) (async)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="0000d319d3b940", @ANYRES32=r3], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:36 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x4000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1044.227829][ T5603] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1044.236240][ T5603] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1044.244208][ T5603] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1044.252174][ T5603] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1044.260147][ T5603] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1044.268115][ T5603] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1044.276087][ T5603]  </TASK>
11:56:36 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:36 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 47)

11:56:36 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x546001, 0x1)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f0000000040)) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f0000000040))
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4) (async)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="0000d319d3b940", @ANYRES32=r3], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:36 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xa103, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:36 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x0, 0xc, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r3, 0x0) (async)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x3, &(0x7f0000000640)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000d4e18b6f53bcf5eaadb93440302d47a26a00885a768410eb09042fad495ae9b6604f1c5606486ed3f28004937f93d572a667cdfc43b9e5e0363edccf359611719ad39a16e3c21466d66703572a240e07b8e133df9d6be05f994957adefaafd94b1b0dca0f6ee684642b6ff5ea249101475b7f80fbb0933b89c90200919662ca36d8a2d690006500dc36529983d0043a9a3b9f1dd905ae18afbfff8bb2f1a7cea03b696661c57c262369b506707b1aa0635465b3ca0b66e35cf45dd30263b0d37a0e3b3c913004d07ef02f777173d00000000000000"], &(0x7f0000000040)='syzkaller\x00'}, 0x80)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sys_enter\x00', r4}, 0x10) (async)
r6 = getpid()
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={r6, r5, 0x0, 0x0, 0x0}, 0x30) (async)
r7 = pidfd_open(r6, 0x0)
r8 = syz_open_pts(r2, 0x100)
ioctl$TIOCSTI(r8, 0x5412, &(0x7f0000000180)=0x7f) (async)
r9 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000380)=0xffffffffffffffff, 0x4)
r10 = openat$null(0xffffffffffffff9c, &(0x7f0000000480), 0x80041, 0x0)
perf_event_open(&(0x7f00000009c0)={0x5, 0x80, 0x7f, 0x2, 0x0, 0xff, 0x0, 0x0, 0x4091, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x10000, 0x4, @perf_bp={&(0x7f0000000980)}, 0x8, 0x101, 0x5, 0x9, 0xc35e, 0x7ff, 0x800, 0x0, 0x3f, 0x0, 0x1ff}, r6, 0xe, r2, 0x1) (async)
r11 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000a40), 0xa8001, 0x0)
io_submit(0x0, 0x6, &(0x7f0000000600)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x5, 0xeea, r2, &(0x7f00000000c0)="d343fb68864565bac00c99daea4bc7572edb252f8789bbf900998c8d1b3171dd357bf72e2d61b384ad8661ab16ba9caab24c2321440c196c576655a199460c0e16fdff9591818dd01c68d1e1a0e01546de83b00652dc0ca32d62346de3", 0x5d}, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x7, 0x200, r2, &(0x7f0000000180), 0x0, 0x80000001, 0x0, 0x1, r3}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x5, r2, &(0x7f0000000200)="56e339058eb96ff853598938cfd4f883cd7105229f99db2f8f4fdd96795e52113bdf85739e80eac5cd349adb48d97aee870bddbbde6ed8e065b8a6303071bfaa1c0e346821de2e4acaed1b2a88bba4691b61543d0c2956b88dc91b2daccc6130aa0502f4a496959e2d31ae627cea772fc7f638734efc98c4da210805806d967081f7bb0f5379b5bb280134a25607c3b283ff8d37d2ac7fe9e3dba63ba62a37ad4ae968487284a9bc06331a0c", 0xac, 0x4, 0x0, 0x2}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x8, 0x7, r7, &(0x7f0000000300)="7948947220741084191d163e5c8687a96244ad98ccec9c4f4d6b1d951dbe37535252a68b7bafb6ad7e", 0x29, 0x1, 0x0, 0x3, r2}, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x3, 0x80, r9, &(0x7f00000003c0)="2e50552a4503f65b8966460a3098cc129432bee987881f3a31ef49ba11d040beb0e48f41336e1002503e51f234e190931d797ca3dfe7f7450ef863f4e871a1f247879ed15edfb14b0885b6ebeaba5bd1bb4a410968f25ae4e258f923484ad757a2293e9d619da0c3cf4e6ac88a6cec1048255290f0871bdb903a04476c04376683575b56a2ab480c198ed418741aba92e8a5b455e69193502dacca600e54d8daaa6114e3fd151827c50980afe3552f96", 0xb0, 0x6fa3, 0x0, 0x1, r10}, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x6, 0xfff, r1, &(0x7f0000000500)="fbe0a8d91f07efda4cf2cad40c5fc16db22457bf9e1d7d65fe67e21f27d230609b4b5954ee666d823d24a6374d3597d664862cc1f9bb3629e033201b4c40c31a67e68a44e0aba3dae4eda6b14c78d76bc5b7131b038dc3a03142241d1730b1f0ed2b8ef854", 0x65, 0x1f, 0x0, 0x2, r11}]) (async)
r12 = openat2(r11, &(0x7f0000000740)='./file0\x00', &(0x7f0000000780)={0x2, 0x141, 0x7}, 0x18) (async)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r11, 0x89f2, &(0x7f00000008c0)={'ip_vti0\x00', &(0x7f00000007c0)={'gretap0\x00', <r13=>0x0, 0x1, 0x558a74451cd7319a, 0x6, 0x6, {{0x34, 0x4, 0x2, 0x20, 0xd0, 0x64, 0x0, 0x20, 0x2f, 0x0, @broadcast, @empty, {[@cipso={0x86, 0x59, 0x3, [{0x7, 0x12, "38be8c10f207a1783d71e3e98f132550"}, {0x6, 0x9, "57ce42b1e61e7f"}, {0x5, 0x3, '*'}, {0x0, 0x9, "381b6f2ed8340e"}, {0x7, 0xe, "6b7dde9593f4e52a45058d9c"}, {0x5, 0x10, "8197456a52e69d3952a0153afe7b"}, {0x0, 0xe, "a3b77185c7798526e9f8d382"}]}, @rr={0x7, 0xf, 0xe, [@remote, @empty, @private=0xa010100]}, @rr={0x7, 0x2b, 0xfd, [@multicast2, @remote, @empty, @multicast2, @remote, @rand_addr=0x64010101, @local, @initdev={0xac, 0x1e, 0x1, 0x0}, @dev={0xac, 0x14, 0x14, 0xa}, @loopback]}, @ra={0x94, 0x4}, @ssrr={0x89, 0x17, 0x86, [@initdev={0xac, 0x1e, 0x1, 0x0}, @multicast2, @private=0xa010101, @loopback, @multicast1]}, @cipso={0x86, 0xd, 0x3, [{0x7, 0x7, "af9e1fda57"}]}]}}}}})
bpf$MAP_CREATE(0x0, &(0x7f0000000900)=@bloom_filter={0x1e, 0x8, 0x194754db, 0x80000000, 0x8, r12, 0xfff, '\x00', r13, 0xffffffffffffffff, 0x2, 0x3, 0x4, 0xc}, 0x48)

11:56:36 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0xf000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1044.481578][ T5877] FAULT_INJECTION: forcing a failure.
[ 1044.481578][ T5877] name failslab, interval 1, probability 0, space 0, times 0
[ 1044.494269][ T5877] CPU: 1 PID: 5877 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1044.502865][ T5877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1044.513058][ T5877] Call Trace:
[ 1044.516331][ T5877]  <TASK>
[ 1044.519254][ T5877]  dump_stack_lvl+0xda/0x130
[ 1044.523939][ T5877]  dump_stack+0x15/0x20
[ 1044.528127][ T5877]  should_fail_ex+0x21f/0x230
[ 1044.532895][ T5877]  ? vm_area_dup+0x98/0x130
[ 1044.537406][ T5877]  __should_failslab+0x92/0xa0
[ 1044.542244][ T5877]  should_failslab+0x9/0x20
[ 1044.546770][ T5877]  kmem_cache_alloc+0x4e/0x250
[ 1044.551546][ T5877]  vm_area_dup+0x98/0x130
[ 1044.555882][ T5877]  copy_mm+0x6b6/0xf50
[ 1044.559985][ T5877]  copy_process+0x1002/0x20a0
[ 1044.564671][ T5877]  kernel_clone+0x169/0x560
[ 1044.569177][ T5877]  __x64_sys_clone+0xe8/0x120
[ 1044.573865][ T5877]  do_syscall_64+0x44/0x110
11:56:37 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xc000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:37 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x0, 0xc, "df3f0400000000000000000000000609000040"}) (async)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r3, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x3, &(0x7f0000000640)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000d4e18b6f53bcf5eaadb93440302d47a26a00885a768410eb09042fad495ae9b6604f1c5606486ed3f28004937f93d572a667cdfc43b9e5e0363edccf359611719ad39a16e3c21466d66703572a240e07b8e133df9d6be05f994957adefaafd94b1b0dca0f6ee684642b6ff5ea249101475b7f80fbb0933b89c90200919662ca36d8a2d690006500dc36529983d0043a9a3b9f1dd905ae18afbfff8bb2f1a7cea03b696661c57c262369b506707b1aa0635465b3ca0b66e35cf45dd30263b0d37a0e3b3c913004d07ef02f777173d00000000000000"], &(0x7f0000000040)='syzkaller\x00'}, 0x80)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sys_enter\x00', r4}, 0x10)
r6 = getpid()
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={r6, r5, 0x0, 0x0, 0x0}, 0x30)
r7 = pidfd_open(r6, 0x0) (async)
r8 = syz_open_pts(r2, 0x100)
ioctl$TIOCSTI(r8, 0x5412, &(0x7f0000000180)=0x7f) (async)
r9 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000380)=0xffffffffffffffff, 0x4)
r10 = openat$null(0xffffffffffffff9c, &(0x7f0000000480), 0x80041, 0x0) (async)
perf_event_open(&(0x7f00000009c0)={0x5, 0x80, 0x7f, 0x2, 0x0, 0xff, 0x0, 0x0, 0x4091, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x10000, 0x4, @perf_bp={&(0x7f0000000980)}, 0x8, 0x101, 0x5, 0x9, 0xc35e, 0x7ff, 0x800, 0x0, 0x3f, 0x0, 0x1ff}, r6, 0xe, r2, 0x1) (async)
r11 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000a40), 0xa8001, 0x0)
io_submit(0x0, 0x6, &(0x7f0000000600)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x5, 0xeea, r2, &(0x7f00000000c0)="d343fb68864565bac00c99daea4bc7572edb252f8789bbf900998c8d1b3171dd357bf72e2d61b384ad8661ab16ba9caab24c2321440c196c576655a199460c0e16fdff9591818dd01c68d1e1a0e01546de83b00652dc0ca32d62346de3", 0x5d}, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x7, 0x200, r2, &(0x7f0000000180), 0x0, 0x80000001, 0x0, 0x1, r3}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x5, r2, &(0x7f0000000200)="56e339058eb96ff853598938cfd4f883cd7105229f99db2f8f4fdd96795e52113bdf85739e80eac5cd349adb48d97aee870bddbbde6ed8e065b8a6303071bfaa1c0e346821de2e4acaed1b2a88bba4691b61543d0c2956b88dc91b2daccc6130aa0502f4a496959e2d31ae627cea772fc7f638734efc98c4da210805806d967081f7bb0f5379b5bb280134a25607c3b283ff8d37d2ac7fe9e3dba63ba62a37ad4ae968487284a9bc06331a0c", 0xac, 0x4, 0x0, 0x2}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x8, 0x7, r7, &(0x7f0000000300)="7948947220741084191d163e5c8687a96244ad98ccec9c4f4d6b1d951dbe37535252a68b7bafb6ad7e", 0x29, 0x1, 0x0, 0x3, r2}, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x3, 0x80, r9, &(0x7f00000003c0)="2e50552a4503f65b8966460a3098cc129432bee987881f3a31ef49ba11d040beb0e48f41336e1002503e51f234e190931d797ca3dfe7f7450ef863f4e871a1f247879ed15edfb14b0885b6ebeaba5bd1bb4a410968f25ae4e258f923484ad757a2293e9d619da0c3cf4e6ac88a6cec1048255290f0871bdb903a04476c04376683575b56a2ab480c198ed418741aba92e8a5b455e69193502dacca600e54d8daaa6114e3fd151827c50980afe3552f96", 0xb0, 0x6fa3, 0x0, 0x1, r10}, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x6, 0xfff, r1, &(0x7f0000000500)="fbe0a8d91f07efda4cf2cad40c5fc16db22457bf9e1d7d65fe67e21f27d230609b4b5954ee666d823d24a6374d3597d664862cc1f9bb3629e033201b4c40c31a67e68a44e0aba3dae4eda6b14c78d76bc5b7131b038dc3a03142241d1730b1f0ed2b8ef854", 0x65, 0x1f, 0x0, 0x2, r11}]) (async)
r12 = openat2(r11, &(0x7f0000000740)='./file0\x00', &(0x7f0000000780)={0x2, 0x141, 0x7}, 0x18) (async)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r11, 0x89f2, &(0x7f00000008c0)={'ip_vti0\x00', &(0x7f00000007c0)={'gretap0\x00', <r13=>0x0, 0x1, 0x558a74451cd7319a, 0x6, 0x6, {{0x34, 0x4, 0x2, 0x20, 0xd0, 0x64, 0x0, 0x20, 0x2f, 0x0, @broadcast, @empty, {[@cipso={0x86, 0x59, 0x3, [{0x7, 0x12, "38be8c10f207a1783d71e3e98f132550"}, {0x6, 0x9, "57ce42b1e61e7f"}, {0x5, 0x3, '*'}, {0x0, 0x9, "381b6f2ed8340e"}, {0x7, 0xe, "6b7dde9593f4e52a45058d9c"}, {0x5, 0x10, "8197456a52e69d3952a0153afe7b"}, {0x0, 0xe, "a3b77185c7798526e9f8d382"}]}, @rr={0x7, 0xf, 0xe, [@remote, @empty, @private=0xa010100]}, @rr={0x7, 0x2b, 0xfd, [@multicast2, @remote, @empty, @multicast2, @remote, @rand_addr=0x64010101, @local, @initdev={0xac, 0x1e, 0x1, 0x0}, @dev={0xac, 0x14, 0x14, 0xa}, @loopback]}, @ra={0x94, 0x4}, @ssrr={0x89, 0x17, 0x86, [@initdev={0xac, 0x1e, 0x1, 0x0}, @multicast2, @private=0xa010101, @loopback, @multicast1]}, @cipso={0x86, 0xd, 0x3, [{0x7, 0x7, "af9e1fda57"}]}]}}}}})
bpf$MAP_CREATE(0x0, &(0x7f0000000900)=@bloom_filter={0x1e, 0x8, 0x194754db, 0x80000000, 0x8, r12, 0xfff, '\x00', r13, 0xffffffffffffffff, 0x2, 0x3, 0x4, 0xc}, 0x48)

[ 1044.578388][ T5877]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1044.584362][ T5877] RIP: 0033:0x7f424acd3ba9
[ 1044.588776][ T5877] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1044.608377][ T5877] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1044.616826][ T5877] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
11:56:37 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xc402, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:37 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB='\x00\x00\x00\t', @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:37 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 48)

11:56:37 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0xffffff7f}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1044.624860][ T5877] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1044.632827][ T5877] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1044.640792][ T5877] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1044.648771][ T5877] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1044.656749][ T5877]  </TASK>
[ 1044.748362][ T6112] FAULT_INJECTION: forcing a failure.
[ 1044.748362][ T6112] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1044.761619][ T6112] CPU: 0 PID: 6112 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1044.770215][ T6112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1044.780265][ T6112] Call Trace:
[ 1044.783540][ T6112]  <TASK>
[ 1044.786470][ T6112]  dump_stack_lvl+0xda/0x130
[ 1044.791075][ T6112]  dump_stack+0x15/0x20
[ 1044.795234][ T6112]  should_fail_ex+0x21f/0x230
[ 1044.799924][ T6112]  __should_fail_alloc_page+0xfd/0x110
[ 1044.805396][ T6112]  __alloc_pages+0x108/0x340
[ 1044.809987][ T6112]  alloc_pages_mpol+0xb1/0x1d0
[ 1044.814742][ T6112]  alloc_pages+0xe0/0x100
[ 1044.819081][ T6112]  pte_alloc_one+0x32/0xe0
[ 1044.823503][ T6112]  __pte_alloc+0x33/0x270
[ 1044.827844][ T6112]  copy_page_range+0x1d20/0x2220
[ 1044.832778][ T6112]  copy_mm+0x953/0xf50
[ 1044.836844][ T6112]  copy_process+0x1002/0x20a0
[ 1044.841520][ T6112]  kernel_clone+0x169/0x560
[ 1044.846023][ T6112]  __x64_sys_clone+0xe8/0x120
[ 1044.850697][ T6112]  do_syscall_64+0x44/0x110
[ 1044.855198][ T6112]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1044.861090][ T6112] RIP: 0033:0x7f424acd3ba9
[ 1044.865496][ T6112] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1044.885107][ T6112] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
11:56:37 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:37 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xdd03, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:37 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB='\x00\x00\x00\t', @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:37 executing program 4:
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r0 = syz_open_pts(0xffffffffffffffff, 0x101500)
r1 = dup3(r0, 0xffffffffffffffff, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080)=0x17)

11:56:37 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x40030000000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:37 executing program 4:
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
r0 = syz_open_pts(0xffffffffffffffff, 0x101500)
r1 = dup3(r0, 0xffffffffffffffff, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080)=0x17)

11:56:37 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 49)

[ 1044.893504][ T6112] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1044.901465][ T6112] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1044.909426][ T6112] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1044.917385][ T6112] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1044.925351][ T6112] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1044.933320][ T6112]  </TASK>
11:56:37 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB='\x00\x00\x00\t', @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:37 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xe503, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:37 executing program 4:
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
r0 = syz_open_pts(0xffffffffffffffff, 0x101500)
r1 = dup3(r0, 0xffffffffffffffff, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080)=0x17)

11:56:37 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x20010, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1045.012624][ T6135] FAULT_INJECTION: forcing a failure.
[ 1045.012624][ T6135] name failslab, interval 1, probability 0, space 0, times 0
[ 1045.025338][ T6135] CPU: 1 PID: 6135 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1045.033987][ T6135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1045.044167][ T6135] Call Trace:
[ 1045.047443][ T6135]  <TASK>
[ 1045.050366][ T6135]  dump_stack_lvl+0xda/0x130
[ 1045.054963][ T6135]  dump_stack+0x15/0x20
11:56:37 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
ioctl$PIO_UNIMAPCLR(r0, 0x4b68, &(0x7f0000000180)={0x7, 0x80, 0x4})
r1 = syz_open_pts(r0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r2=>r0}, './file0\x00'})
mmap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x2, 0x4190010, r2, 0x7749e000)
r3 = dup3(r1, r2, 0x0)
mmap(&(0x7f0000fee000/0x10000)=nil, 0x10000, 0x4, 0x4000010, r2, 0x71b8b000)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17)
r4 = signalfd(r2, &(0x7f0000000100)={[0x8]}, 0x8)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000140)=0x1b)

[ 1045.059121][ T6135]  should_fail_ex+0x21f/0x230
[ 1045.063830][ T6135]  ? anon_vma_fork+0xac/0x2c0
[ 1045.068529][ T6135]  __should_failslab+0x92/0xa0
[ 1045.073354][ T6135]  should_failslab+0x9/0x20
[ 1045.077910][ T6135]  kmem_cache_alloc+0x4e/0x250
[ 1045.082721][ T6135]  anon_vma_fork+0xac/0x2c0
[ 1045.087268][ T6135]  copy_mm+0x72a/0xf50
[ 1045.091341][ T6135]  copy_process+0x1002/0x20a0
[ 1045.096020][ T6135]  kernel_clone+0x169/0x560
[ 1045.100538][ T6135]  __x64_sys_clone+0xe8/0x120
[ 1045.105226][ T6135]  do_syscall_64+0x44/0x110
[ 1045.109860][ T6135]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1045.115763][ T6135] RIP: 0033:0x7f424acd3ba9
[ 1045.120173][ T6135] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1045.139889][ T6135] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1045.148392][ T6135] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1045.156467][ T6135] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1045.164518][ T6135] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1045.172493][ T6135] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1045.180465][ T6135] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1045.188462][ T6135]  </TASK>
11:56:37 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 50)

11:56:37 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x100000000000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:37 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x20200, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:37 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, 0xffffffffffffffff, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

11:56:37 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r1, 0x10, &(0x7f00000002c0)={0xe61b, 0x0, &(0x7f0000000040)=[{&(0x7f0000000240)=""/88, 0x58}], &(0x7f0000000100)=[0x3, 0x20, 0xbacf, 0x3, 0xe3a, 0x6, 0x7, 0x10], 0x1}, 0x20)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:37 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
ioctl$PIO_UNIMAPCLR(r0, 0x4b68, &(0x7f0000000180)={0x7, 0x80, 0x4})
r1 = syz_open_pts(r0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r2=>r0}, './file0\x00'})
mmap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x2, 0x4190010, r2, 0x7749e000)
r3 = dup3(r1, r2, 0x0)
mmap(&(0x7f0000fee000/0x10000)=nil, 0x10000, 0x4, 0x4000010, r2, 0x71b8b000)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17)
r4 = signalfd(r2, &(0x7f0000000100)={[0x8]}, 0x8)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000140)=0x1b)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
ioctl$PIO_UNIMAPCLR(r0, 0x4b68, &(0x7f0000000180)={0x7, 0x80, 0x4}) (async)
syz_open_pts(r0, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) (async)
mmap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x2, 0x4190010, r2, 0x7749e000) (async)
dup3(r1, r2, 0x0) (async)
mmap(&(0x7f0000fee000/0x10000)=nil, 0x10000, 0x4, 0x4000010, r2, 0x71b8b000) (async)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17) (async)
signalfd(r2, &(0x7f0000000100)={[0x8]}, 0x8) (async)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000140)=0x1b) (async)

[ 1045.360041][ T6371] FAULT_INJECTION: forcing a failure.
[ 1045.360041][ T6371] name failslab, interval 1, probability 0, space 0, times 0
[ 1045.372697][ T6371] CPU: 1 PID: 6371 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1045.381361][ T6371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1045.391404][ T6371] Call Trace:
[ 1045.394675][ T6371]  <TASK>
[ 1045.397670][ T6371]  dump_stack_lvl+0xda/0x130
[ 1045.402269][ T6371]  dump_stack+0x15/0x20
11:56:37 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
ioctl$PIO_UNIMAPCLR(r0, 0x4b68, &(0x7f0000000180)={0x7, 0x80, 0x4}) (async)
r1 = syz_open_pts(r0, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r2=>r0}, './file0\x00'})
mmap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x2, 0x4190010, r2, 0x7749e000) (async)
r3 = dup3(r1, r2, 0x0)
mmap(&(0x7f0000fee000/0x10000)=nil, 0x10000, 0x4, 0x4000010, r2, 0x71b8b000) (async, rerun: 32)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17) (async, rerun: 32)
r4 = signalfd(r2, &(0x7f0000000100)={[0x8]}, 0x8)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000140)=0x1b)

11:56:37 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x80000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1045.406494][ T6371]  should_fail_ex+0x21f/0x230
[ 1045.411225][ T6371]  ? vm_area_dup+0x98/0x130
[ 1045.415756][ T6371]  __should_failslab+0x92/0xa0
[ 1045.420638][ T6371]  should_failslab+0x9/0x20
[ 1045.425212][ T6371]  kmem_cache_alloc+0x4e/0x250
[ 1045.429987][ T6371]  vm_area_dup+0x98/0x130
[ 1045.434453][ T6371]  copy_mm+0x6b6/0xf50
[ 1045.438526][ T6371]  copy_process+0x1002/0x20a0
[ 1045.443282][ T6371]  kernel_clone+0x169/0x560
[ 1045.447783][ T6371]  __x64_sys_clone+0xe8/0x120
[ 1045.452462][ T6371]  do_syscall_64+0x44/0x110
[ 1045.457000][ T6371]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1045.462902][ T6371] RIP: 0033:0x7f424acd3ba9
[ 1045.467413][ T6371] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1045.487026][ T6371] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1045.495443][ T6371] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
11:56:37 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x101000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:38 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r1, 0x10, &(0x7f00000002c0)={0xe61b, 0x0, &(0x7f0000000040)=[{&(0x7f0000000240)=""/88, 0x58}], &(0x7f0000000100)=[0x3, 0x20, 0xbacf, 0x3, 0xe3a, 0x6, 0x7, 0x10], 0x1}, 0x20) (async)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0) (async, rerun: 64)
close_range(r0, 0xffffffffffffffff, 0x0) (rerun: 64)

11:56:38 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x200000000000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:38 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
write$binfmt_aout(r1, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r2 = syz_open_pts(r0, 0x0)
r3 = dup3(r2, r0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17)

11:56:38 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
write$binfmt_aout(r1, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
r2 = syz_open_pts(r0, 0x0)
r3 = dup3(r2, r0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17)

11:56:38 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 51)

[ 1045.503409][ T6371] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1045.511450][ T6371] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1045.519486][ T6371] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1045.527448][ T6371] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1045.535427][ T6371]  </TASK>
11:56:38 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x1000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1045.598247][ T6617] FAULT_INJECTION: forcing a failure.
[ 1045.598247][ T6617] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1045.611531][ T6617] CPU: 0 PID: 6617 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1045.620122][ T6617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1045.630175][ T6617] Call Trace:
[ 1045.633453][ T6617]  <TASK>
[ 1045.636380][ T6617]  dump_stack_lvl+0xda/0x130
[ 1045.640982][ T6617]  dump_stack+0x15/0x20
[ 1045.645152][ T6617]  should_fail_ex+0x21f/0x230
[ 1045.649846][ T6617]  __should_fail_alloc_page+0xfd/0x110
[ 1045.655312][ T6617]  __alloc_pages+0x108/0x340
[ 1045.659908][ T6617]  alloc_pages_mpol+0xb1/0x1d0
[ 1045.664679][ T6617]  alloc_pages+0xe0/0x100
[ 1045.669012][ T6617]  __pmd_alloc+0x4b/0x3c0
[ 1045.673347][ T6617]  copy_page_range+0x1fda/0x2220
[ 1045.678298][ T6617]  ? mas_wr_store_entry+0x235/0x350
[ 1045.683524][ T6617]  copy_mm+0x953/0xf50
[ 1045.687601][ T6617]  copy_process+0x1002/0x20a0
[ 1045.692278][ T6617]  kernel_clone+0x169/0x560
[ 1045.696765][ T6617]  __x64_sys_clone+0xe8/0x120
[ 1045.701424][ T6617]  do_syscall_64+0x44/0x110
[ 1045.705935][ T6617]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1045.711810][ T6617] RIP: 0033:0x7f424acd3ba9
[ 1045.716203][ T6617] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1045.735788][ T6617] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1045.744183][ T6617] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1045.752142][ T6617] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1045.760090][ T6617] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1045.768044][ T6617] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1045.776006][ T6617] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1045.783957][ T6617]  </TASK>
11:56:38 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
dup3(r1, r0, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000080))

11:56:38 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
write$binfmt_aout(r1, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
r2 = syz_open_pts(r0, 0x0)
r3 = dup3(r2, r0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17)

11:56:38 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x2000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:38 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0x2}}, './file0\x00'})
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r1, 0x10, &(0x7f00000002c0)={0xe61b, 0x0, &(0x7f0000000040)=[{&(0x7f0000000240)=""/88, 0x58}], &(0x7f0000000100)=[0x3, 0x20, 0xbacf, 0x3, 0xe3a, 0x6, 0x7, 0x10], 0x1}, 0x20)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r3=>0x0) (async)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:38 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x300000000000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:38 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 52)

[ 1046.215472][ T6724] FAULT_INJECTION: forcing a failure.
[ 1046.215472][ T6724] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1046.228731][ T6724] CPU: 1 PID: 6724 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1046.237322][ T6724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1046.247372][ T6724] Call Trace:
[ 1046.250639][ T6724]  <TASK>
[ 1046.253559][ T6724]  dump_stack_lvl+0xda/0x130
[ 1046.258151][ T6724]  dump_stack+0x15/0x20
[ 1046.262315][ T6724]  should_fail_ex+0x21f/0x230
[ 1046.266999][ T6724]  __should_fail_alloc_page+0xfd/0x110
[ 1046.272471][ T6724]  __alloc_pages+0x108/0x340
[ 1046.277064][ T6724]  alloc_pages_mpol+0xb1/0x1d0
[ 1046.281834][ T6724]  alloc_pages+0xe0/0x100
[ 1046.286165][ T6724]  __pmd_alloc+0x4b/0x3c0
[ 1046.290496][ T6724]  copy_page_range+0x1fda/0x2220
[ 1046.295442][ T6724]  ? mas_wr_store_entry+0x235/0x350
[ 1046.300655][ T6724]  copy_mm+0x953/0xf50
[ 1046.304722][ T6724]  copy_process+0x1002/0x20a0
[ 1046.309397][ T6724]  kernel_clone+0x169/0x560
11:56:38 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x3000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1046.313888][ T6724]  __x64_sys_clone+0xe8/0x120
[ 1046.318566][ T6724]  do_syscall_64+0x44/0x110
[ 1046.323076][ T6724]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1046.328973][ T6724] RIP: 0033:0x7f424acd3ba9
[ 1046.333384][ T6724] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1046.352985][ T6724] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
11:56:38 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x4, 0x0, 0x80, "df3f0400000000000000000000000609000040"})
r1 = syz_open_dev$ttys(0xc, 0x2, 0x1)
syz_open_pts(r1, 0x301d02)
r2 = syz_open_pts(r0, 0x0)
syz_open_pts(r2, 0x404200)
r3 = dup3(r2, r0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17)

11:56:38 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 53)

[ 1046.361394][ T6724] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1046.369357][ T6724] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1046.377325][ T6724] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1046.385296][ T6724] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1046.393266][ T6724] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1046.401239][ T6724]  </TASK>
11:56:38 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=<r5=>r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000000))
r6 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r6, 0x0, &(0x7f00000000c0)=<r7=>0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$packet(0x11, 0x2, 0x300)
r9 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r8)
sendmsg$NFC_CMD_DEV_UP(r8, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="010000000000000000000200000008000800", @ANYRES32=r7], 0x1c}}, 0x0)
r10 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r10, 0x0, &(0x7f00000000c0)=<r11=>0x0)
r12 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r13 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r12)
r14 = socket(0x10, 0x2, 0x0)
write(r14, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
sendmsg$NFC_CMD_DEV_UP(r12, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r13, @ANYBLOB="010000000000000000000200000008000100", @ANYRESOCT=r5], 0x1c}, 0x1, 0x0, 0x0, 0x400a0}, 0x0)
r15 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r15, 0x0, &(0x7f00000000c0)=<r16=>0x0)
r17 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r18 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r17)
sendmsg$NFC_CMD_DEV_UP(r17, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r18, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r16], 0x1c}}, 0x0)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)={0x34, r9, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r11}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r16}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}]}, 0x34}, 0x1, 0x0, 0x0, 0x40810}, 0x10)

11:56:38 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x400000000000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:38 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x4000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1046.521375][ T6777] FAULT_INJECTION: forcing a failure.
[ 1046.521375][ T6777] name failslab, interval 1, probability 0, space 0, times 0
[ 1046.534065][ T6777] CPU: 1 PID: 6777 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1046.542702][ T6777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1046.552752][ T6777] Call Trace:
[ 1046.556044][ T6777]  <TASK>
[ 1046.559012][ T6777]  dump_stack_lvl+0xda/0x130
[ 1046.563657][ T6777]  dump_stack+0x15/0x20
11:56:39 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
dup3(r1, r0, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000080))

11:56:39 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x4, 0x0, 0x80, "df3f0400000000000000000000000609000040"}) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x4, 0x0, 0x80, "df3f0400000000000000000000000609000040"})
r1 = syz_open_dev$ttys(0xc, 0x2, 0x1)
syz_open_pts(r1, 0x301d02)
syz_open_pts(r0, 0x0) (async)
r2 = syz_open_pts(r0, 0x0)
syz_open_pts(r2, 0x404200)
r3 = dup3(r2, r0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17) (async)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17)

11:56:39 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x8000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1046.567825][ T6777]  should_fail_ex+0x21f/0x230
[ 1046.572513][ T6777]  ? vm_area_dup+0x98/0x130
[ 1046.577032][ T6777]  __should_failslab+0x92/0xa0
[ 1046.581817][ T6777]  should_failslab+0x9/0x20
[ 1046.586329][ T6777]  kmem_cache_alloc+0x4e/0x250
[ 1046.591102][ T6777]  vm_area_dup+0x98/0x130
[ 1046.595450][ T6777]  copy_mm+0x6b6/0xf50
[ 1046.599581][ T6777]  copy_process+0x1002/0x20a0
[ 1046.604270][ T6777]  kernel_clone+0x169/0x560
[ 1046.608780][ T6777]  __x64_sys_clone+0xe8/0x120
[ 1046.613468][ T6777]  do_syscall_64+0x44/0x110
[ 1046.617980][ T6777]  ? irqentry_exit+0x12/0x40
[ 1046.622610][ T6777]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1046.628507][ T6777] RIP: 0033:0x7f424acd3ba9
[ 1046.632925][ T6777] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1046.652532][ T6777] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1046.660949][ T6777] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
11:56:39 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0xf00000000000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:39 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
dup3(r1, r0, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000080))

11:56:39 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x4, 0x0, 0x80, "df3f0400000000000000000000000609000040"})
r1 = syz_open_dev$ttys(0xc, 0x2, 0x1)
syz_open_pts(r1, 0x301d02)
r2 = syz_open_pts(r0, 0x0)
syz_open_pts(r2, 0x404200)
r3 = dup3(r2, r0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x4, 0x0, 0x80, "df3f0400000000000000000000000609000040"}) (async)
syz_open_dev$ttys(0xc, 0x2, 0x1) (async)
syz_open_pts(r1, 0x301d02) (async)
syz_open_pts(r0, 0x0) (async)
syz_open_pts(r2, 0x404200) (async)
dup3(r2, r0, 0x0) (async)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17) (async)

11:56:39 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 54)

[ 1046.668919][ T6777] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1046.676940][ T6777] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1046.685016][ T6777] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1046.693032][ T6777] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1046.701011][ T6777]  </TASK>
[ 1046.769006][ T6991] FAULT_INJECTION: forcing a failure.
[ 1046.769006][ T6991] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1046.782286][ T6991] CPU: 1 PID: 6991 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1046.790868][ T6991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1046.800912][ T6991] Call Trace:
[ 1046.804182][ T6991]  <TASK>
[ 1046.807105][ T6991]  dump_stack_lvl+0xda/0x130
[ 1046.811754][ T6991]  dump_stack+0x15/0x20
11:56:39 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x9000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:39 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xa000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1046.815992][ T6991]  should_fail_ex+0x21f/0x230
[ 1046.820787][ T6991]  __should_fail_alloc_page+0xfd/0x110
[ 1046.826311][ T6991]  __alloc_pages+0x108/0x340
[ 1046.831000][ T6991]  alloc_pages_mpol+0xb1/0x1d0
[ 1046.835810][ T6991]  alloc_pages+0xe0/0x100
[ 1046.840141][ T6991]  pte_alloc_one+0x32/0xe0
[ 1046.844565][ T6991]  __pte_alloc+0x33/0x270
[ 1046.848906][ T6991]  copy_page_range+0x1d20/0x2220
[ 1046.853920][ T6991]  copy_mm+0x953/0xf50
[ 1046.858010][ T6991]  copy_process+0x1002/0x20a0
[ 1046.862812][ T6991]  kernel_clone+0x169/0x560
[ 1046.867340][ T6991]  __x64_sys_clone+0xe8/0x120
[ 1046.872026][ T6991]  do_syscall_64+0x44/0x110
[ 1046.876539][ T6991]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1046.882434][ T6991] RIP: 0033:0x7f424acd3ba9
[ 1046.886877][ T6991] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1046.906602][ T6991] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
11:56:39 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xc000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:39 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=<r5=>r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000000))
r6 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r6, 0x0, &(0x7f00000000c0)=<r7=>0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$packet(0x11, 0x2, 0x300)
r9 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r8)
sendmsg$NFC_CMD_DEV_UP(r8, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="010000000000000000000200000008000800", @ANYRES32=r7], 0x1c}}, 0x0) (async)
r10 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r10, 0x0, &(0x7f00000000c0)=<r11=>0x0) (async, rerun: 32)
r12 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
r13 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r12) (async)
r14 = socket(0x10, 0x2, 0x0)
write(r14, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
sendmsg$NFC_CMD_DEV_UP(r12, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r13, @ANYBLOB="010000000000000000000200000008000100", @ANYRESOCT=r5], 0x1c}, 0x1, 0x0, 0x0, 0x400a0}, 0x0) (async)
r15 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r15, 0x0, &(0x7f00000000c0)=<r16=>0x0)
r17 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r18 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r17)
sendmsg$NFC_CMD_DEV_UP(r17, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r18, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r16], 0x1c}}, 0x0) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)={0x34, r9, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r11}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r16}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}]}, 0x34}, 0x1, 0x0, 0x0, 0x40810}, 0x10)

11:56:39 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xd000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:39 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0xffffff7f00000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:39 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 55)

[ 1046.915119][ T6991] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1046.923094][ T6991] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1046.931059][ T6991] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1046.939048][ T6991] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1046.947032][ T6991] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1046.955038][ T6991]  </TASK>
11:56:39 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xe000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:39 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r1 = socket$phonet(0x23, 0x2, 0x1)
write$binfmt_aout(r1, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r2 = syz_open_pts(r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TCFLSH(r3, 0x540b, 0x0)
r4 = dup3(r2, r0, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17)

[ 1046.996431][ T7063] FAULT_INJECTION: forcing a failure.
[ 1046.996431][ T7063] name failslab, interval 1, probability 0, space 0, times 0
[ 1047.009086][ T7063] CPU: 0 PID: 7063 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1047.017713][ T7063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1047.027793][ T7063] Call Trace:
[ 1047.031067][ T7063]  <TASK>
[ 1047.033990][ T7063]  dump_stack_lvl+0xda/0x130
[ 1047.038618][ T7063]  dump_stack+0x15/0x20
[ 1047.042792][ T7063]  should_fail_ex+0x21f/0x230
[ 1047.047897][ T7063]  ? vm_area_dup+0x2c/0x130
[ 1047.052422][ T7063]  __should_failslab+0x92/0xa0
[ 1047.057245][ T7063]  should_failslab+0x9/0x20
[ 1047.061965][ T7063]  kmem_cache_alloc+0x4e/0x250
[ 1047.066795][ T7063]  vm_area_dup+0x2c/0x130
[ 1047.071147][ T7063]  copy_mm+0x6b6/0xf50
[ 1047.075230][ T7063]  copy_process+0x1002/0x20a0
[ 1047.079934][ T7063]  kernel_clone+0x169/0x560
[ 1047.084504][ T7063]  __x64_sys_clone+0xe8/0x120
[ 1047.089190][ T7063]  do_syscall_64+0x44/0x110
[ 1047.093709][ T7063]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1047.099607][ T7063] RIP: 0033:0x7f424acd3ba9
[ 1047.103998][ T7063] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1047.123600][ T7063] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1047.131989][ T7063] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1047.139995][ T7063] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1047.147971][ T7063] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1047.155952][ T7063] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1047.163903][ T7063] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1047.171994][ T7063]  </TASK>
11:56:40 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0xffffffff00000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:40 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xf000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:40 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=<r5=>r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000000)) (async)
r6 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r6, 0x0, &(0x7f00000000c0)=<r7=>0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$packet(0x11, 0x2, 0x300) (async)
r9 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r8)
sendmsg$NFC_CMD_DEV_UP(r8, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="010000000000000000000200000008000800", @ANYRES32=r7], 0x1c}}, 0x0) (async)
r10 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r10, 0x0, &(0x7f00000000c0)=<r11=>0x0)
r12 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r13 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r12) (async)
r14 = socket(0x10, 0x2, 0x0)
write(r14, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
sendmsg$NFC_CMD_DEV_UP(r12, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r13, @ANYBLOB="010000000000000000000200000008000100", @ANYRESOCT=r5], 0x1c}, 0x1, 0x0, 0x0, 0x400a0}, 0x0)
r15 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r15, 0x0, &(0x7f00000000c0)=<r16=>0x0) (async)
r17 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r18 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r17)
sendmsg$NFC_CMD_DEV_UP(r17, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r18, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r16], 0x1c}}, 0x0) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)={0x34, r9, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r11}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r16}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}]}, 0x34}, 0x1, 0x0, 0x0, 0x40810}, 0x10)

11:56:40 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r1 = socket$phonet(0x23, 0x2, 0x1)
write$binfmt_aout(r1, &(0x7f00000000c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r2 = syz_open_pts(r0, 0x0) (async)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xe) (async)
ioctl$TCFLSH(r3, 0x540b, 0x0) (async)
r4 = dup3(r2, r0, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17)

11:56:40 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 56)

11:56:40 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, 0x0)

11:56:40 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x10000200, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1047.584779][ T7246] FAULT_INJECTION: forcing a failure.
[ 1047.584779][ T7246] name failslab, interval 1, probability 0, space 0, times 0
[ 1047.597415][ T7246] CPU: 0 PID: 7246 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1047.605995][ T7246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1047.616095][ T7246] Call Trace:
[ 1047.619372][ T7246]  <TASK>
[ 1047.622465][ T7246]  dump_stack_lvl+0xda/0x130
[ 1047.627098][ T7246]  dump_stack+0x15/0x20
11:56:40 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x11000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1047.631267][ T7246]  should_fail_ex+0x21f/0x230
[ 1047.636013][ T7246]  ? vm_area_dup+0x98/0x130
[ 1047.640533][ T7246]  __should_failslab+0x92/0xa0
[ 1047.645321][ T7246]  should_failslab+0x9/0x20
[ 1047.649875][ T7246]  kmem_cache_alloc+0x4e/0x250
[ 1047.654652][ T7246]  vm_area_dup+0x98/0x130
[ 1047.659051][ T7246]  copy_mm+0x6b6/0xf50
[ 1047.663189][ T7246]  copy_process+0x1002/0x20a0
[ 1047.667959][ T7246]  kernel_clone+0x169/0x560
[ 1047.672456][ T7246]  __x64_sys_clone+0xe8/0x120
[ 1047.677176][ T7246]  do_syscall_64+0x44/0x110
[ 1047.681687][ T7246]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1047.687592][ T7246] RIP: 0033:0x7f424acd3ba9
[ 1047.692011][ T7246] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1047.711634][ T7246] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1047.720071][ T7246] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
11:56:40 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x13000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:40 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r1 = socket$phonet(0x23, 0x2, 0x1)
write$binfmt_aout(r1, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r2 = syz_open_pts(r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TCFLSH(r3, 0x540b, 0x0)
r4 = dup3(r2, r0, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
socket$phonet(0x23, 0x2, 0x1) (async)
write$binfmt_aout(r1, &(0x7f00000000c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
syz_open_pts(r0, 0x0) (async)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xe) (async)
ioctl$TCFLSH(r3, 0x540b, 0x0) (async)
dup3(r2, r0, 0x0) (async)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17) (async)

11:56:40 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r1, 0x0)
io_uring_enter(r1, 0xdc4, 0x2d39, 0x4, &(0x7f0000000000)={[0x2d2f]}, 0x8)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:40 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x2}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1047.728051][ T7246] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1047.736022][ T7246] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1047.744032][ T7246] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1047.752032][ T7246] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1047.754268][ T7241] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[ 1047.759997][ T7246]  </TASK>
11:56:40 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 57)

[ 1047.837812][ T7476] FAULT_INJECTION: forcing a failure.
[ 1047.837812][ T7476] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1047.851077][ T7476] CPU: 0 PID: 7476 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1047.859667][ T7476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1047.869771][ T7476] Call Trace:
[ 1047.873042][ T7476]  <TASK>
[ 1047.875966][ T7476]  dump_stack_lvl+0xda/0x130
[ 1047.880641][ T7476]  dump_stack+0x15/0x20
11:56:40 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x1f000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1047.884809][ T7476]  should_fail_ex+0x21f/0x230
[ 1047.889534][ T7476]  __should_fail_alloc_page+0xfd/0x110
[ 1047.895010][ T7476]  __alloc_pages+0x108/0x340
[ 1047.899625][ T7476]  alloc_pages_mpol+0xb1/0x1d0
[ 1047.904467][ T7476]  alloc_pages+0xe0/0x100
[ 1047.908805][ T7476]  pte_alloc_one+0x32/0xe0
[ 1047.913308][ T7476]  __pte_alloc+0x33/0x270
[ 1047.917645][ T7476]  copy_page_range+0x1d20/0x2220
[ 1047.922598][ T7476]  copy_mm+0x953/0xf50
[ 1047.926670][ T7476]  copy_process+0x1002/0x20a0
[ 1047.931421][ T7476]  kernel_clone+0x169/0x560
11:56:40 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x1fffefff, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1047.935932][ T7476]  __x64_sys_clone+0xe8/0x120
[ 1047.940616][ T7476]  do_syscall_64+0x44/0x110
[ 1047.945132][ T7476]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1047.951076][ T7476] RIP: 0033:0x7f424acd3ba9
[ 1047.955486][ T7476] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1047.975162][ T7476] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
11:56:40 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x3}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:40 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

[ 1047.983690][ T7476] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1047.991676][ T7476] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1047.999735][ T7476] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1048.007716][ T7476] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1048.015791][ T7476] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1048.023775][ T7476]  </TASK>
11:56:40 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, 0x0)

11:56:40 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x20000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:40 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 58)

11:56:40 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x4}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:40 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0xf}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1048.166259][ T7686] FAULT_INJECTION: forcing a failure.
[ 1048.166259][ T7686] name failslab, interval 1, probability 0, space 0, times 0
[ 1048.179009][ T7686] CPU: 1 PID: 7686 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1048.187605][ T7686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1048.197655][ T7686] Call Trace:
[ 1048.200924][ T7686]  <TASK>
[ 1048.203887][ T7686]  dump_stack_lvl+0xda/0x130
[ 1048.208489][ T7686]  dump_stack+0x15/0x20
[ 1048.212666][ T7686]  should_fail_ex+0x21f/0x230
[ 1048.217355][ T7686]  ? vm_area_dup+0x2c/0x130
[ 1048.221932][ T7686]  __should_failslab+0x92/0xa0
[ 1048.226713][ T7686]  should_failslab+0x9/0x20
[ 1048.231214][ T7686]  kmem_cache_alloc+0x4e/0x250
[ 1048.236006][ T7686]  vm_area_dup+0x2c/0x130
[ 1048.240356][ T7686]  copy_mm+0x6b6/0xf50
[ 1048.244467][ T7686]  copy_process+0x1002/0x20a0
[ 1048.249309][ T7686]  kernel_clone+0x169/0x560
[ 1048.253802][ T7686]  __x64_sys_clone+0xe8/0x120
[ 1048.258491][ T7686]  do_syscall_64+0x44/0x110
[ 1048.263089][ T7686]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1048.269045][ T7686] RIP: 0033:0x7f424acd3ba9
[ 1048.273508][ T7686] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1048.293115][ T7686] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1048.301600][ T7686] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
11:56:40 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0) (async)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r1, 0x0)
io_uring_enter(r1, 0xdc4, 0x2d39, 0x4, &(0x7f0000000000)={[0x2d2f]}, 0x8)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r4) (async)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0) (async)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:40 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x80030000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:40 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
syz_open_pts(r0, 0x0) (async)
dup3(r1, r0, 0x0) (async)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)

11:56:40 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x300}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1048.309582][ T7686] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1048.317587][ T7686] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1048.325599][ T7686] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1048.333570][ T7686] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1048.341538][ T7686]  </TASK>
11:56:40 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xa1030000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:40 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0xf00}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:40 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 59)

[ 1048.349072][ T7707] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR
[ 1048.453479][ T7787] FAULT_INJECTION: forcing a failure.
[ 1048.453479][ T7787] name failslab, interval 1, probability 0, space 0, times 0
[ 1048.475209][ T7787] CPU: 1 PID: 7787 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1048.483939][ T7787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1048.493996][ T7787] Call Trace:
[ 1048.497274][ T7787]  <TASK>
[ 1048.500211][ T7787]  dump_stack_lvl+0xda/0x130
[ 1048.504881][ T7787]  dump_stack+0x15/0x20
[ 1048.509079][ T7787]  should_fail_ex+0x21f/0x230
[ 1048.513824][ T7787]  ? vm_area_dup+0x2c/0x130
[ 1048.518339][ T7787]  __should_failslab+0x92/0xa0
[ 1048.523199][ T7787]  should_failslab+0x9/0x20
[ 1048.527736][ T7787]  kmem_cache_alloc+0x4e/0x250
[ 1048.532560][ T7787]  vm_area_dup+0x2c/0x130
[ 1048.536895][ T7787]  copy_mm+0x6b6/0xf50
[ 1048.540971][ T7787]  copy_process+0x1002/0x20a0
[ 1048.545763][ T7787]  kernel_clone+0x169/0x560
11:56:41 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, 0x0)

11:56:41 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xc0000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:41 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
syz_open_pts(r0, 0x0) (async)
r1 = syz_open_pts(r0, 0x0)
dup3(r1, r0, 0x0) (async)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

[ 1048.550276][ T7787]  __x64_sys_clone+0xe8/0x120
[ 1048.554957][ T7787]  do_syscall_64+0x44/0x110
[ 1048.559509][ T7787]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1048.565431][ T7787] RIP: 0033:0x7f424acd3ba9
[ 1048.569958][ T7787] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1048.589577][ T7787] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
11:56:41 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xc4020000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:41 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x34000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1048.597991][ T7787] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1048.605993][ T7787] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1048.614008][ T7787] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1048.621982][ T7787] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1048.629991][ T7787] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1048.637959][ T7787]  </TASK>
11:56:41 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r1, 0x0)
io_uring_enter(r1, 0xdc4, 0x2d39, 0x4, &(0x7f0000000000)={[0x2d2f]}, 0x8) (async)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:41 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 60)

11:56:41 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xdd030000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:41 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
syz_open_pts(r1, 0x206282)

11:56:41 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x400300}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:41 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x1000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1048.781868][ T7969] FAULT_INJECTION: forcing a failure.
[ 1048.781868][ T7969] name failslab, interval 1, probability 0, space 0, times 0
[ 1048.794506][ T7969] CPU: 0 PID: 7969 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1048.803158][ T7969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1048.813214][ T7969] Call Trace:
[ 1048.816484][ T7969]  <TASK>
[ 1048.819411][ T7969]  dump_stack_lvl+0xda/0x130
[ 1048.824083][ T7969]  dump_stack+0x15/0x20
11:56:41 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xe5030000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1048.828251][ T7969]  should_fail_ex+0x21f/0x230
[ 1048.832935][ T7969]  ? vm_area_dup+0x2c/0x130
[ 1048.837484][ T7969]  __should_failslab+0x92/0xa0
[ 1048.842248][ T7969]  should_failslab+0x9/0x20
[ 1048.846755][ T7969]  kmem_cache_alloc+0x4e/0x250
[ 1048.851529][ T7969]  vm_area_dup+0x2c/0x130
[ 1048.855895][ T7969]  copy_mm+0x6b6/0xf50
[ 1048.859969][ T7969]  copy_process+0x1002/0x20a0
[ 1048.864750][ T7969]  kernel_clone+0x169/0x560
[ 1048.869258][ T7969]  __x64_sys_clone+0xe8/0x120
[ 1048.873949][ T7969]  do_syscall_64+0x44/0x110
[ 1048.878541][ T7969]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1048.884444][ T7969] RIP: 0033:0x7f424acd3ba9
[ 1048.888860][ T7969] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1048.908547][ T7969] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1048.916952][ T7969] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1048.924918][ T7969] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1048.932898][ T7969] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1048.940918][ T7969] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1048.948897][ T7969] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1048.956929][ T7969]  </TASK>
11:56:41 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="03000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x2a7db4db00ac066a)
close_range(r0, 0xffffffffffffffff, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r5 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r5, &(0x7f0000000000)={0xa, 0x0, @multicast1}, 0x1c)
syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r3)

11:56:41 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
syz_open_pts(r1, 0x206282)

11:56:41 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 61)

11:56:41 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x2000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:41 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xf5ffffff, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:41 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x20010, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:41 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="03000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x2a7db4db00ac066a) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
r5 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r5, &(0x7f0000000000)={0xa, 0x0, @multicast1}, 0x1c)
syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r3)

[ 1049.048867][   T27] audit: type=1400 audit(1702900601.507:516): avc:  denied  { bind } for  pid=8087 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1049.071778][ T8093] FAULT_INJECTION: forcing a failure.
[ 1049.071778][ T8093] name failslab, interval 1, probability 0, space 0, times 0
[ 1049.084451][ T8093] CPU: 0 PID: 8093 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
11:56:41 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xd, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1049.093116][ T8093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1049.103263][ T8093] Call Trace:
[ 1049.106580][ T8093]  <TASK>
[ 1049.109588][ T8093]  dump_stack_lvl+0xda/0x130
[ 1049.114198][ T8093]  dump_stack+0x15/0x20
[ 1049.118516][ T8093]  should_fail_ex+0x21f/0x230
[ 1049.123258][ T8093]  ? vm_area_dup+0x2c/0x130
[ 1049.127778][ T8093]  __should_failslab+0x92/0xa0
[ 1049.132546][ T8093]  should_failslab+0x9/0x20
[ 1049.137190][ T8093]  kmem_cache_alloc+0x4e/0x250
[ 1049.141982][ T8093]  vm_area_dup+0x2c/0x130
11:56:41 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xfbffffff, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1049.146391][ T8093]  copy_mm+0x6b6/0xf50
[ 1049.150484][ T8093]  copy_process+0x1002/0x20a0
[ 1049.155229][ T8093]  kernel_clone+0x169/0x560
[ 1049.159733][ T8093]  __x64_sys_clone+0xe8/0x120
[ 1049.164414][ T8093]  do_syscall_64+0x44/0x110
[ 1049.168958][ T8093]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1049.174858][ T8093] RIP: 0033:0x7f424acd3ba9
[ 1049.179270][ T8093] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
11:56:41 executing program 3:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000003880)={0x38, 0x0, 0x0, 0x0, 0xfe}, 0x0)
capset(&(0x7f0000000000)={0x20071026}, &(0x7f0000000040)={0xc, 0x3, 0x2, 0xff, 0x8000, 0x3})
syslog(0x2, &(0x7f0000000200)=""/126, 0x7e)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1049.198892][ T8093] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1049.207312][ T8093] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1049.215278][ T8093] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1049.223248][ T8093] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1049.231278][ T8093] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1049.239288][ T8093] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
11:56:41 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
syz_open_pts(r1, 0x206282)

11:56:41 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 62)

11:56:41 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="03000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x2a7db4db00ac066a) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
r5 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r5, &(0x7f0000000000)={0xa, 0x0, @multicast1}, 0x1c) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r3)

11:56:41 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x3000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1049.247330][ T8093]  </TASK>
11:56:41 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xffefff1f, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1049.263895][ T8103] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[ 1049.338860][ T8489] FAULT_INJECTION: forcing a failure.
[ 1049.338860][ T8489] name failslab, interval 1, probability 0, space 0, times 0
[ 1049.360662][ T8489] CPU: 1 PID: 8489 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1049.369396][ T8489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1049.379467][ T8489] Call Trace:
[ 1049.382766][ T8489]  <TASK>
[ 1049.385690][ T8489]  dump_stack_lvl+0xda/0x130
[ 1049.390346][ T8489]  dump_stack+0x15/0x20
[ 1049.394507][ T8489]  should_fail_ex+0x21f/0x230
[ 1049.399347][ T8489]  ? vm_area_dup+0x98/0x130
[ 1049.403919][ T8489]  __should_failslab+0x92/0xa0
[ 1049.408693][ T8489]  should_failslab+0x9/0x20
[ 1049.413236][ T8489]  kmem_cache_alloc+0x4e/0x250
[ 1049.418083][ T8489]  vm_area_dup+0x98/0x130
[ 1049.422448][ T8489]  copy_mm+0x6b6/0xf50
[ 1049.426595][ T8489]  copy_process+0x1002/0x20a0
[ 1049.431266][ T8489]  kernel_clone+0x169/0x560
11:56:41 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xfffffff5, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:41 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x4000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:41 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSLCKTRMIOS(0xffffffffffffffff, 0x5457, &(0x7f00000000c0))
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:41 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r5)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r3)
sendmsg$IEEE802154_ADD_IFACE(r5, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)={0x50, r6, 0x400, 0x70bd2c, 0x25dfdbff, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x4008000}, 0x1)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:41 executing program 4:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSLCKTRMIOS(0xffffffffffffffff, 0x5457, &(0x7f00000000c0))
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

[ 1049.435774][ T8489]  __x64_sys_clone+0xe8/0x120
[ 1049.440467][ T8489]  do_syscall_64+0x44/0x110
[ 1049.444982][ T8489]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1049.450931][ T8489] RIP: 0033:0x7f424acd3ba9
[ 1049.455345][ T8489] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1049.474976][ T8489] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
11:56:42 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 63)

[ 1049.483394][ T8489] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1049.491415][ T8489] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1049.499388][ T8489] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1049.507355][ T8489] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1049.515345][ T8489] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1049.523317][ T8489]  </TASK>
[ 1049.568727][ T8594] FAULT_INJECTION: forcing a failure.
[ 1049.568727][ T8594] name failslab, interval 1, probability 0, space 0, times 0
[ 1049.581416][ T8594] CPU: 0 PID: 8594 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1049.590003][ T8594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1049.600068][ T8594] Call Trace:
[ 1049.603347][ T8594]  <TASK>
[ 1049.606365][ T8594]  dump_stack_lvl+0xda/0x130
[ 1049.611014][ T8594]  dump_stack+0x15/0x20
[ 1049.615240][ T8594]  should_fail_ex+0x21f/0x230
[ 1049.620035][ T8594]  ? vm_area_dup+0x2c/0x130
[ 1049.624615][ T8594]  __should_failslab+0x92/0xa0
[ 1049.629441][ T8594]  should_failslab+0x9/0x20
[ 1049.633948][ T8594]  kmem_cache_alloc+0x4e/0x250
[ 1049.638730][ T8594]  vm_area_dup+0x2c/0x130
[ 1049.643140][ T8594]  copy_mm+0x6b6/0xf50
[ 1049.647226][ T8594]  copy_process+0x1002/0x20a0
[ 1049.651970][ T8594]  kernel_clone+0x169/0x560
[ 1049.656492][ T8594]  __x64_sys_clone+0xe8/0x120
[ 1049.661244][ T8594]  do_syscall_64+0x44/0x110
11:56:42 executing program 3:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000003880)={0x38, 0x0, 0x0, 0x0, 0xfe}, 0x0)
capset(&(0x7f0000000000)={0x20071026}, &(0x7f0000000040)={0xc, 0x3, 0x2, 0xff, 0x8000, 0x3})
syslog(0x2, &(0x7f0000000200)=""/126, 0x7e)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:42 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0xf000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:42 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xfffffffb, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:42 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSLCKTRMIOS(0xffffffffffffffff, 0x5457, &(0x7f00000000c0))
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
syz_open_pts(r0, 0x0) (async)
ioctl$TIOCSLCKTRMIOS(0xffffffffffffffff, 0x5457, &(0x7f00000000c0)) (async)
dup3(r1, r0, 0x0) (async)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)

11:56:42 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x7f1d2e3e6fff, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:42 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0xfffffffd, 0x0, 0x0, 0x0, "df3f0400000000000000080000000609000040"})
r1 = syz_open_pts(r0, 0x204200)
r2 = dup3(r1, r0, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x228002, 0x0)
r4 = openat2(r2, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x22400, 0x16}, 0x18)
ioctl$LOOP_CHANGE_FD(r3, 0x4c06, r4)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000000c0)={0x0, 0x6, 0x9d, 0x7, 0xb5, 0x6, 0xaf, 0xff, 0x8, 0x3, 0x1, 0x16, 0x6e, 0x4}, 0xe)

[ 1049.665763][ T8594]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1049.671668][ T8594] RIP: 0033:0x7f424acd3ba9
[ 1049.676250][ T8594] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1049.695880][ T8594] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1049.704293][ T8594] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
11:56:42 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x7f1d2e7e6fff, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:42 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3) (async)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r5) (async)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r3)
sendmsg$IEEE802154_ADD_IFACE(r5, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)={0x50, r6, 0x400, 0x70bd2c, 0x25dfdbff, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x4008000}, 0x1) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async, rerun: 32)
close_range(r0, 0xffffffffffffffff, 0x0) (rerun: 32)

11:56:42 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0xffffff7f}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1049.712344][ T8594] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1049.720322][ T8594] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1049.728293][ T8594] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1049.736258][ T8594] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1049.744238][ T8594]  </TASK>
11:56:42 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x7ffe807e9000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:42 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 64)

[ 1049.849864][ T8871] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[ 1049.856131][ T9008] FAULT_INJECTION: forcing a failure.
[ 1049.856131][ T9008] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1049.871796][ T9008] CPU: 1 PID: 9008 Comm: syz-executor.5 Not tainted 6.7.0-rc6-syzkaller #0
[ 1049.880381][ T9008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1049.890427][ T9008] Call Trace:
[ 1049.893735][ T9008]  <TASK>
11:56:42 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x7fffffffefff, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1049.896655][ T9008]  dump_stack_lvl+0xda/0x130
[ 1049.901280][ T9008]  dump_stack+0x15/0x20
[ 1049.905441][ T9008]  should_fail_ex+0x21f/0x230
[ 1049.910206][ T9008]  __should_fail_alloc_page+0xfd/0x110
[ 1049.915683][ T9008]  __alloc_pages+0x108/0x340
[ 1049.920286][ T9008]  alloc_pages_mpol+0xb1/0x1d0
[ 1049.925060][ T9008]  alloc_pages+0xe0/0x100
[ 1049.929472][ T9008]  pte_alloc_one+0x32/0xe0
[ 1049.933903][ T9008]  __pte_alloc+0x33/0x270
[ 1049.938248][ T9008]  copy_page_range+0x1d20/0x2220
[ 1049.943271][ T9008]  copy_mm+0x953/0xf50
[ 1049.947377][ T9008]  copy_process+0x1002/0x20a0
[ 1049.952089][ T9008]  kernel_clone+0x169/0x560
[ 1049.956596][ T9008]  __x64_sys_clone+0xe8/0x120
[ 1049.961287][ T9008]  do_syscall_64+0x44/0x110
[ 1049.965813][ T9008]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1049.971719][ T9008] RIP: 0033:0x7f424acd3ba9
[ 1049.976230][ T9008] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
11:56:42 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)) (fail_nth: 1)

11:56:42 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0xfffffffd, 0x0, 0x0, 0x0, "df3f0400000000000000080000000609000040"})
r1 = syz_open_pts(r0, 0x204200)
r2 = dup3(r1, r0, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x228002, 0x0) (async)
r4 = openat2(r2, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x22400, 0x16}, 0x18)
ioctl$LOOP_CHANGE_FD(r3, 0x4c06, r4) (async, rerun: 32)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (rerun: 32)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000000c0)={0x0, 0x6, 0x9d, 0x7, 0xb5, 0x6, 0xaf, 0xff, 0x8, 0x3, 0x1, 0x16, 0x6e, 0x4}, 0xe)

11:56:42 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x1000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:42 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x40030000000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:42 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r5)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r3)
sendmsg$IEEE802154_ADD_IFACE(r5, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)={0x50, r6, 0x400, 0x70bd2c, 0x25dfdbff, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x4008000}, 0x1)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r5) (async)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r3) (async)
sendmsg$IEEE802154_ADD_IFACE(r5, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)={0x50, r6, 0x400, 0x70bd2c, 0x25dfdbff, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x4008000}, 0x1) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)

11:56:42 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x2001000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1049.995840][ T9008] RSP: 002b:00007f424a056078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1050.004285][ T9008] RAX: ffffffffffffffda RBX: 00007f424adf2f80 RCX: 00007f424acd3ba9
[ 1050.012275][ T9008] RDX: 0000000000000000 RSI: 0000000020001480 RDI: 0000000000080000
[ 1050.020246][ T9008] RBP: 00007f424a056120 R08: 0000000000000000 R09: 0000000000000000
[ 1050.028218][ T9008] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 1050.036184][ T9008] R13: 000000000000000b R14: 00007f424adf2f80 R15: 00007ffd07ed7148
[ 1050.044235][ T9008]  </TASK>
11:56:42 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0) (fail_nth: 65)

11:56:42 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x2020000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:42 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x100000000000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

[ 1050.151463][ T9034] FAULT_INJECTION: forcing a failure.
[ 1050.151463][ T9034] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1050.164589][ T9034] CPU: 0 PID: 9034 Comm: syz-executor.3 Not tainted 6.7.0-rc6-syzkaller #0
[ 1050.173207][ T9034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1050.183352][ T9034] Call Trace:
[ 1050.186617][ T9034]  <TASK>
[ 1050.189534][ T9034]  dump_stack_lvl+0xda/0x130
[ 1050.194181][ T9034]  dump_stack+0x15/0x20
[ 1050.198334][ T9034]  should_fail_ex+0x21f/0x230
[ 1050.203060][ T9034]  should_fail+0xb/0x10
[ 1050.207284][ T9034]  should_fail_usercopy+0x1a/0x20
[ 1050.212303][ T9034]  _copy_to_user+0x1e/0x90
[ 1050.216710][ T9034]  simple_read_from_buffer+0xa0/0x110
[ 1050.222077][ T9034]  proc_fail_nth_read+0xfc/0x140
[ 1050.227009][ T9034]  ? proc_fault_inject_write+0x210/0x210
[ 1050.232632][ T9034]  vfs_read+0x1a4/0x590
[ 1050.236854][ T9034]  ? mutex_lock+0xd/0x30
[ 1050.241108][ T9034]  ksys_read+0xeb/0x1a0
[ 1050.245257][ T9034]  __x64_sys_read+0x42/0x50
[ 1050.249772][ T9034]  do_syscall_64+0x44/0x110
[ 1050.254271][ T9034]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 1050.260161][ T9034] RIP: 0033:0x7f8067bb884c
[ 1050.264587][ T9034] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[ 1050.284184][ T9034] RSP: 002b:00007f8066f3c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1050.292581][ T9034] RAX: ffffffffffffffda RBX: 00007f8067cd8f80 RCX: 00007f8067bb884c
11:56:42 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080))

[ 1050.300538][ T9034] RDX: 000000000000000f RSI: 00007f8066f3c130 RDI: 0000000000000004
[ 1050.308508][ T9034] RBP: 00007f8066f3c120 R08: 0000000000000000 R09: 0000000000000000
[ 1050.316507][ T9034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1050.324469][ T9034] R13: 000000000000000b R14: 00007f8067cd8f80 R15: 00007ffd403419c8
[ 1050.332432][ T9034]  </TASK>
11:56:42 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0xfffffffd, 0x0, 0x0, 0x0, "df3f0400000000000000080000000609000040"}) (async)
r1 = syz_open_pts(r0, 0x204200)
r2 = dup3(r1, r0, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x228002, 0x0) (async)
r4 = openat2(r2, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x22400, 0x16}, 0x18)
ioctl$LOOP_CHANGE_FD(r3, 0x4c06, r4)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000000c0)={0x0, 0x6, 0x9d, 0x7, 0xb5, 0x6, 0xaf, 0xff, 0x8, 0x3, 0x1, 0x16, 0x6e, 0x4}, 0xe)

11:56:42 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_SIOCGIFCONF(r5, 0x8912, &(0x7f0000000040)=@req={0x28, &(0x7f0000000000)={'lo\x00', @ifru_addrs=@xdp={0x2c, 0x2, 0x0, 0x1c}}})
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:42 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x200000000000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:42 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x8000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:42 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:42 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x300000000000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:42 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3) (async)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_SIOCGIFCONF(r5, 0x8912, &(0x7f0000000040)=@req={0x28, &(0x7f0000000000)={'lo\x00', @ifru_addrs=@xdp={0x2c, 0x2, 0x0, 0x1c}}})
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:42 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x10100000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:43 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80002, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:43 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
syz_open_pts(r1, 0x210400)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000000c0)=0x5)
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000300), 0x121800, 0x0)
ioctl$TCSETSW(r3, 0x5403, &(0x7f0000000200)={0x2, 0x3, 0x1000, 0xa877, 0x4, "99a81798087327d4e577342dc06d1d4e739c39"})
getsockopt$TIPC_CONN_TIMEOUT(r4, 0x10f, 0x82, &(0x7f0000000140), &(0x7f0000000180)=0x4)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0xe)
ioctl$PIO_UNIMAP(r3, 0x4b67, &(0x7f00000002c0)={0x5, &(0x7f0000000240)=[{0xff, 0xfffc}, {0x80, 0x400}, {0xfff}, {0x8bfc, 0x349}, {0xffff, 0x6}]})
ioctl$TIOCSTI(r5, 0x5412, &(0x7f00000001c0)=0x9)
syz_open_pts(r3, 0x400)

11:56:43 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x400000000000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:43 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x2, &(0x7f0000000080))

11:56:43 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80003, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:43 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x10817f0180ffff, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:43 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0xf00000000000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:43 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_SIOCGIFCONF(r5, 0x8912, &(0x7f0000000040)=@req={0x28, &(0x7f0000000000)={'lo\x00', @ifru_addrs=@xdp={0x2c, 0x2, 0x0, 0x1c}}}) (async, rerun: 32)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async, rerun: 32)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:43 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
syz_open_pts(r1, 0x210400) (async)
syz_open_pts(r1, 0x210400)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000000c0)=0x5)
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000300), 0x121800, 0x0)
ioctl$TCSETSW(r3, 0x5403, &(0x7f0000000200)={0x2, 0x3, 0x1000, 0xa877, 0x4, "99a81798087327d4e577342dc06d1d4e739c39"}) (async)
ioctl$TCSETSW(r3, 0x5403, &(0x7f0000000200)={0x2, 0x3, 0x1000, 0xa877, 0x4, "99a81798087327d4e577342dc06d1d4e739c39"})
getsockopt$TIPC_CONN_TIMEOUT(r4, 0x10f, 0x82, &(0x7f0000000140), &(0x7f0000000180)=0x4)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0xe) (async)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0xe)
ioctl$PIO_UNIMAP(r3, 0x4b67, &(0x7f00000002c0)={0x5, &(0x7f0000000240)=[{0xff, 0xfffc}, {0x80, 0x400}, {0xfff}, {0x8bfc, 0x349}, {0xffff, 0x6}]})
ioctl$TIOCSTI(r5, 0x5412, &(0x7f00000001c0)=0x9) (async)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f00000001c0)=0x9)
syz_open_pts(r3, 0x400) (async)
syz_open_pts(r3, 0x400)

11:56:43 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0xf3b3})
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:43 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80004, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:43 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0xffffff7f00000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:43 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x2035d1e280ffff, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:43 executing program 4:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
syz_open_pts(r0, 0x0) (async)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
syz_open_pts(r1, 0x210400)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000000c0)=0x5)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000300), 0x121800, 0x0) (async)
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000300), 0x121800, 0x0)
ioctl$TCSETSW(r3, 0x5403, &(0x7f0000000200)={0x2, 0x3, 0x1000, 0xa877, 0x4, "99a81798087327d4e577342dc06d1d4e739c39"})
getsockopt$TIPC_CONN_TIMEOUT(r4, 0x10f, 0x82, &(0x7f0000000140), &(0x7f0000000180)=0x4)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0xe) (async)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0xe)
ioctl$PIO_UNIMAP(r3, 0x4b67, &(0x7f00000002c0)={0x5, &(0x7f0000000240)=[{0xff, 0xfffc}, {0x80, 0x400}, {0xfff}, {0x8bfc, 0x349}, {0xffff, 0x6}]})
ioctl$TIOCSTI(r5, 0x5412, &(0x7f00000001c0)=0x9)
syz_open_pts(r3, 0x400) (async)
syz_open_pts(r3, 0x400)

11:56:43 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80008, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:43 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0xf3b3})
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0xf3b3}) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)

11:56:43 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x302ad1e280ffff, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:43 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0xffffffff00000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:43 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:43 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80009, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:43 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x4b47, &(0x7f0000000080))

11:56:43 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
syz_open_pts(r0, 0x0) (async)
dup3(r1, r0, 0x0) (async)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)

11:56:43 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x8000a, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:43 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x30817f0180ffff, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:43 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:43 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x8000c, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:43 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:43 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x503fd1e280ffff, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:43 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0xf3b3}) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:43 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x100000000)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:43 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x8000d, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:43 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x2}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:43 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x4b49, &(0x7f0000000080))

11:56:43 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x3}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:43 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x9041d1e280ffff, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:43 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x8000e, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:43 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x100000000) (async)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:43 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000000)={0x0, 0x0, 0x100, 0x0, 0x8})
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYRES16=r3, @ANYRES16=r0, @ANYRES16=r0, @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:43 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x8000f, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

[ 1051.331829][T10191] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
11:56:43 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x907e80fe7f0000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:43 executing program 1:
io_uring_setup(0x4f01, &(0x7f0000000000)={0x0, 0x0, 0x100, 0x0, 0x8}) (async)
r0 = io_uring_setup(0x4f01, &(0x7f0000000000)={0x0, 0x0, 0x100, 0x0, 0x8})
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYRES16=r3, @ANYRES16=r0, @ANYRES16=r0, @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:43 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:43 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80011, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:43 executing program 4:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
syz_open_pts(r0, 0x0) (async)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x100000000)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:44 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5409, &(0x7f0000000080))

11:56:44 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xa029d1e280ffff, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:44 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80013, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:44 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/zoneinfo\x00', 0x0, 0x0)
syz_open_pts(r1, 0x0)
r2 = syz_open_pts(r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xe)
syz_open_pts(r3, 0x10000)
r4 = dup3(r2, r0, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17)

11:56:44 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000000)={0x0, 0x0, 0x100, 0x0, 0x8})
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYRES16=r3, @ANYRES16=r0, @ANYRES16=r0, @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:44 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0xf}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:44 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = signalfd4(r0, &(0x7f0000000000)={[0xfff]}, 0x8, 0x0)
fchdir(r4)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:44 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xd074d0e280ffff, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:44 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x800c0, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:44 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x300}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:44 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xd0817f0180ffff, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:44 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x801f4, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:44 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x540b, &(0x7f0000000080))

11:56:44 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80300, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:44 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/zoneinfo\x00', 0x0, 0x0)
syz_open_pts(r1, 0x0) (async)
r2 = syz_open_pts(r0, 0x0) (async)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xe) (async)
syz_open_pts(r3, 0x10000)
r4 = dup3(r2, r0, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17)

11:56:44 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xe02fd1e280ffff, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:44 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async, rerun: 64)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r4 = signalfd4(r0, &(0x7f0000000000)={[0xfff]}, 0x8, 0x0)
fchdir(r4)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async, rerun: 32)
close_range(r0, 0xffffffffffffffff, 0x0) (rerun: 32)

11:56:44 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0xf00}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:44 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x100000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:44 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x8034b, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:44 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x803a1, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:44 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x34000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:44 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x200000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:44 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = signalfd4(r0, &(0x7f0000000000)={[0xfff]}, 0x8, 0x0)
fchdir(r4) (async)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:44 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/zoneinfo\x00', 0x0, 0x0)
syz_open_pts(r1, 0x0) (async)
r2 = syz_open_pts(r0, 0x0) (async, rerun: 64)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (rerun: 64)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xe)
syz_open_pts(r3, 0x10000)
r4 = dup3(r2, r0, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17)

11:56:44 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x803d2, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:44 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x400300}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:44 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
syz_io_uring_setup(0x7be, &(0x7f0000000300)={0x0, 0xdd74, 0x40, 0x2, 0x3b8, 0x0, r0}, &(0x7f0000000000), &(0x7f0000000100))
syz_io_uring_setup(0x74a9, &(0x7f0000000540)={0x0, 0x123f, 0x2000, 0x0, 0x266}, &(0x7f00000002c0), &(0x7f00000005c0))
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="01000000000000000000020000000800010009e9522d5547d30075660ba9fc154c8473a5713b6721232846f422a0dae7b41dcfdb314c92a0452c82a105cf82677dd377c215f261e1c8e5cf2da6596484fb79ee5104c3323533475dc4511470ceb77fb998aea1fc5212eb65b4c09ea1f89b5a92bea78308c1937796c0a2ba01ab2335891280a3126f160032b0879c4a1a92a040cb1b306045df524c4e2ddcb3f560c6e40e41a7267ac662f41540fd4960d69a93e733937553748101a4ad21d6b4716776e23a9f551857a6b2001b494a71d0df0f657b385335f5e6b6392a4c2853", @ANYRES32=r2], 0x1c}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r6, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r6, 0x0, &(0x7f0000000380))
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x30, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x4}]}], {0x14}}, 0x58}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:44 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x300000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:44 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x540c, &(0x7f0000000080))

11:56:44 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x803dd, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:44 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x400000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:44 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x803e5, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:44 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:44 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x1000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:44 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80900, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:44 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x800000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:44 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
syz_io_uring_setup(0x7be, &(0x7f0000000300)={0x0, 0xdd74, 0x40, 0x2, 0x3b8, 0x0, r0}, &(0x7f0000000000), &(0x7f0000000100)) (async)
syz_io_uring_setup(0x74a9, &(0x7f0000000540)={0x0, 0x123f, 0x2000, 0x0, 0x266}, &(0x7f00000002c0), &(0x7f00000005c0)) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="01000000000000000000020000000800010009e9522d5547d30075660ba9fc154c8473a5713b6721232846f422a0dae7b41dcfdb314c92a0452c82a105cf82677dd377c215f261e1c8e5cf2da6596484fb79ee5104c3323533475dc4511470ceb77fb998aea1fc5212eb65b4c09ea1f89b5a92bea78308c1937796c0a2ba01ab2335891280a3126f160032b0879c4a1a92a040cb1b306045df524c4e2ddcb3f560c6e40e41a7267ac662f41540fd4960d69a93e733937553748101a4ad21d6b4716776e23a9f551857a6b2001b494a71d0df0f657b385335f5e6b6392a4c2853", @ANYRES32=r2], 0x1c}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r6, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r6, 0x0, &(0x7f0000000380))
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) (async, rerun: 64)
sendmsg$NFT_BATCH(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x30, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x4}]}], {0x14}}, 0x58}}, 0x0) (rerun: 64)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:44 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x900000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:44 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x2000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:44 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80a00, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:45 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x540d, &(0x7f0000000080))

11:56:45 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:45 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xa00000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:45 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80c00, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:45 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x3000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:45 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80d00, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:45 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xc00000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:45 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:45 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
syz_io_uring_setup(0x7be, &(0x7f0000000300)={0x0, 0xdd74, 0x40, 0x2, 0x3b8, 0x0, r0}, &(0x7f0000000000), &(0x7f0000000100))
syz_io_uring_setup(0x74a9, &(0x7f0000000540)={0x0, 0x123f, 0x2000, 0x0, 0x266}, &(0x7f00000002c0), &(0x7f00000005c0)) (async)
syz_io_uring_setup(0x74a9, &(0x7f0000000540)={0x0, 0x123f, 0x2000, 0x0, 0x266}, &(0x7f00000002c0), &(0x7f00000005c0))
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="01000000000000000000020000000800010009e9522d5547d30075660ba9fc154c8473a5713b6721232846f422a0dae7b41dcfdb314c92a0452c82a105cf82677dd377c215f261e1c8e5cf2da6596484fb79ee5104c3323533475dc4511470ceb77fb998aea1fc5212eb65b4c09ea1f89b5a92bea78308c1937796c0a2ba01ab2335891280a3126f160032b0879c4a1a92a040cb1b306045df524c4e2ddcb3f560c6e40e41a7267ac662f41540fd4960d69a93e733937553748101a4ad21d6b4716776e23a9f551857a6b2001b494a71d0df0f657b385335f5e6b6392a4c2853", @ANYRES32=r2], 0x1c}}, 0x0) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="01000000000000000000020000000800010009e9522d5547d30075660ba9fc154c8473a5713b6721232846f422a0dae7b41dcfdb314c92a0452c82a105cf82677dd377c215f261e1c8e5cf2da6596484fb79ee5104c3323533475dc4511470ceb77fb998aea1fc5212eb65b4c09ea1f89b5a92bea78308c1937796c0a2ba01ab2335891280a3126f160032b0879c4a1a92a040cb1b306045df524c4e2ddcb3f560c6e40e41a7267ac662f41540fd4960d69a93e733937553748101a4ad21d6b4716776e23a9f551857a6b2001b494a71d0df0f657b385335f5e6b6392a4c2853", @ANYRES32=r2], 0x1c}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
write$binfmt_script(r6, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r6, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r6, 0x0, &(0x7f0000000380))
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x30, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x4}]}], {0x14}}, 0x58}}, 0x0) (async)
sendmsg$NFT_BATCH(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x30, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x4}]}], {0x14}}, 0x58}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:45 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80e00, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:45 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xd00000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:45 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:45 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5413, &(0x7f0000000080))

11:56:45 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80f00, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:45 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0xf000000}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:45 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xe00000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:45 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r1 = socket(0x10, 0x2, 0x0)
write(r1, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
r2 = socket(0x10, 0x2, 0x0)
write(r2, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
write$binfmt_aout(r0, &(0x7f00000001c0)=ANY=[@ANYRESOCT=r1, @ANYRES16=r2], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r3 = syz_open_pts(r0, 0x0)
r4 = dup3(r3, r0, 0x0)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0xe)
syz_open_pts(r5, 0x400)
r6 = socket(0x10, 0x2, 0x0)
write(r6, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
sendmsg$NFT_MSG_GETOBJ(r6, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x34, 0x13, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x1}, [@NFTA_OBJ_USERDATA={0x9, 0x8, "a95035ca28"}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x4}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x2}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000}, 0x4006880)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17)

11:56:45 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x81100, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:45 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0xffffff7f}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:45 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xf00000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:45 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x81300, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:45 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r1 = socket(0x10, 0x2, 0x0)
write(r1, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
r2 = socket(0x10, 0x2, 0x0)
write(r2, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
write$binfmt_aout(r0, &(0x7f00000001c0)=ANY=[@ANYRESOCT=r1, @ANYRES16=r2], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r3 = syz_open_pts(r0, 0x0)
r4 = dup3(r3, r0, 0x0)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x0) (async)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0xe)
syz_open_pts(r5, 0x400) (async)
r6 = socket(0x10, 0x2, 0x0)
write(r6, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
sendmsg$NFT_MSG_GETOBJ(r6, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x34, 0x13, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x1}, [@NFTA_OBJ_USERDATA={0x9, 0x8, "a95035ca28"}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x4}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x2}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000}, 0x4006880)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17)

11:56:45 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x1100000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:45 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r3, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
ioctl$PTP_PIN_SETFUNC2(r3, 0x40603d10, &(0x7f0000000000)={'\x00', 0x3, 0x3, 0x100})
r6 = socket(0x10, 0x2, 0x0)
write(r6, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
close_range(r6, r0, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r7, 0x0)
write$nci(r7, &(0x7f0000000240)=@NCI_OP_CORE_INIT_RSP_V2={0x0, 0x1, 0x2, 0x1, 0x9, {0x0, 0x5, 0x8, 0x7, 0x8, 0x1, 0x62, 0x3, 0x48, "f860b4b0cf69845ecce947e75bb2399c66a717bcf1b06548e2613d760ee1d6191bfa31fbc8f4827d535db3f3ea760bd16710e58e6fb4e053c192924b4276afdfed0dfd9884f75175"}}, 0x59)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:46 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x81f00, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:46 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x2)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:46 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x1300000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:46 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r1 = socket(0x10, 0x2, 0x0)
write(r1, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
r2 = socket(0x10, 0x2, 0x0)
write(r2, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
write$binfmt_aout(r0, &(0x7f00000001c0)=ANY=[@ANYRESOCT=r1, @ANYRES16=r2], 0xff2e) (async)
write$binfmt_aout(r0, &(0x7f00000001c0)=ANY=[@ANYRESOCT=r1, @ANYRES16=r2], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r3 = syz_open_pts(r0, 0x0)
r4 = dup3(r3, r0, 0x0)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x0) (async)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0xe)
syz_open_pts(r5, 0x400)
socket(0x10, 0x2, 0x0) (async)
r6 = socket(0x10, 0x2, 0x0)
write(r6, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
write(r6, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
sendmsg$NFT_MSG_GETOBJ(r6, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x34, 0x13, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x1}, [@NFTA_OBJ_USERDATA={0x9, 0x8, "a95035ca28"}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x4}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x2}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000}, 0x4006880)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17)

11:56:46 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5414, &(0x7f0000000080))

11:56:46 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r3, 0x0) (async)
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4) (async)
ioctl$PTP_PIN_SETFUNC2(r3, 0x40603d10, &(0x7f0000000000)={'\x00', 0x3, 0x3, 0x100}) (async)
r6 = socket(0x10, 0x2, 0x0)
write(r6, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
close_range(r6, r0, 0x0) (async)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r7, 0x0)
write$nci(r7, &(0x7f0000000240)=@NCI_OP_CORE_INIT_RSP_V2={0x0, 0x1, 0x2, 0x1, 0x9, {0x0, 0x5, 0x8, 0x7, 0x8, 0x1, 0x62, 0x3, 0x48, "f860b4b0cf69845ecce947e75bb2399c66a717bcf1b06548e2613d760ee1d6191bfa31fbc8f4827d535db3f3ea760bd16710e58e6fb4e053c192924b4276afdfed0dfd9884f75175"}}, 0x59) (async)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:46 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x82000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:46 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x1f00000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:46 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0))
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:46 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x3)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:46 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x83f00, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:46 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x2000000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:46 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x84b03, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:46 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x4)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:46 executing program 1:
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r3, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) (async)
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4) (async)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
ioctl$PTP_PIN_SETFUNC2(r3, 0x40603d10, &(0x7f0000000000)={'\x00', 0x3, 0x3, 0x100})
r6 = socket(0x10, 0x2, 0x0)
write(r6, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
close_range(r6, r0, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
write$binfmt_script(r7, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r7, 0x0)
write$nci(r7, &(0x7f0000000240)=@NCI_OP_CORE_INIT_RSP_V2={0x0, 0x1, 0x2, 0x1, 0x9, {0x0, 0x5, 0x8, 0x7, 0x8, 0x1, 0x62, 0x3, 0x48, "f860b4b0cf69845ecce947e75bb2399c66a717bcf1b06548e2613d760ee1d6191bfa31fbc8f4827d535db3f3ea760bd16710e58e6fb4e053c192924b4276afdfed0dfd9884f75175"}}, 0x59)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:46 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x8003000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:46 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5415, &(0x7f0000000080))

11:56:46 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x8a103, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:46 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)) (async)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:46 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xa103000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:46 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0xf)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:46 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x8c000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:46 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x300)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:46 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xc000000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:46 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0))
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:46 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r1], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:46 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x8d203, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:46 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0xf00)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:46 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5416, &(0x7f0000000080))

11:56:46 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f00000000c0)=<r1=>0x0) (async)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r1], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:46 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xc402000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:46 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0xe)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x6041, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe)
r3 = socket(0x10, 0x2, 0x0)
write(r3, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
setsockopt$inet_tcp_TLS_TX(r3, 0x6, 0x1, &(0x7f0000000100)=@ccm_128={{0x303}, "36a08df21952137e", "97dc1c7970a454c971b997707d8f627d", "cfde8c39", "15c2715c444eddb7"}, 0x28)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0xe00, 0x1)
r5 = syz_open_pts(r4, 0x424080)
r6 = dup3(r5, r0, 0x0)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000080)=0x17)
openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x161800, 0x10)

11:56:46 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x8dd03, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:46 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x34000)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:46 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x8e503, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:46 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r1], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2) (async)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r1], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)

11:56:46 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xdd03000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:47 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x400300)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:47 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x8f401, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:47 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0xe)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x6041, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe)
r3 = socket(0x10, 0x2, 0x0)
write(r3, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
setsockopt$inet_tcp_TLS_TX(r3, 0x6, 0x1, &(0x7f0000000100)=@ccm_128={{0x303}, "36a08df21952137e", "97dc1c7970a454c971b997707d8f627d", "cfde8c39", "15c2715c444eddb7"}, 0x28)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0xe00, 0x1)
r5 = syz_open_pts(r4, 0x424080)
r6 = dup3(r5, r0, 0x0)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000080)=0x17)
openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x161800, 0x10)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0xe) (async)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x6041, 0x0) (async)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe) (async)
socket(0x10, 0x2, 0x0) (async)
write(r3, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
setsockopt$inet_tcp_TLS_TX(r3, 0x6, 0x1, &(0x7f0000000100)=@ccm_128={{0x303}, "36a08df21952137e", "97dc1c7970a454c971b997707d8f627d", "cfde8c39", "15c2715c444eddb7"}, 0x28) (async)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0xe00, 0x1) (async)
syz_open_pts(r4, 0x424080) (async)
dup3(r5, r0, 0x0) (async)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000080)=0x17) (async)
openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x161800, 0x10) (async)

11:56:47 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x100000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:47 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xe503000000000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:47 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYRES8=r0, @ANYRES32=r2], 0x1c}}, 0x20000014)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:47 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x1000000)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:47 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5417, &(0x7f0000000080))

11:56:47 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x1100000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)

11:56:47 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async, rerun: 32)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (rerun: 32)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0xe) (async)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x6041, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe) (async, rerun: 32)
r3 = socket(0x10, 0x2, 0x0) (rerun: 32)
write(r3, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async, rerun: 32)
setsockopt$inet_tcp_TLS_TX(r3, 0x6, 0x1, &(0x7f0000000100)=@ccm_128={{0x303}, "36a08df21952137e", "97dc1c7970a454c971b997707d8f627d", "cfde8c39", "15c2715c444eddb7"}, 0x28) (async, rerun: 32)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0xe00, 0x1)
r5 = syz_open_pts(r4, 0x424080)
r6 = dup3(r5, r0, 0x0)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000080)=0x17) (async, rerun: 64)
openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x161800, 0x10) (rerun: 64)

11:56:47 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xf5ffffff00000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:47 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async, rerun: 64)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYRES8=r0, @ANYRES32=r2], 0x1c}}, 0x20000014) (async, rerun: 64)
close_range(r0, 0xffffffffffffffff, 0x0) (rerun: 64)

11:56:47 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x2, 0x0, 0x0, 0x0)

11:56:47 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xfbffffff00000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:47 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x2000000)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:47 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000200)=ANY=[@ANYRES64=r1, @ANYRESDEC=r1, @ANYRES16, @ANYBLOB="02d451bdfa408c3478481d08b1cf8e19840df49ab37ad186f6c0d582cd2003d1a826f08d7edb65a24a218db84cb8f764ffe92d4c6af9fe7474c286a29962bc2d63c586cdef87f2d8d7910c9527fddf23a613f1e66854427c8fe4738b3bf59423e88525bc577226d6f4f27810068ecf9a992cdcce62c55f9f21bd2a14c194e9d2922cff9351c3b3ae4dd84382c9bbb681653021f365a2fcdb980f9a263ae579889a4f20e8db3bcc7829446f0c609bf25040aba872dc7b16bcd71a6a0e638175d42f355f8de470e80fa0298d5e33fc9afc1d56f4492c468a619896c46bcbf46c8a663ea8ea7f5b7e4d7dc2981797a07194f97253df", @ANYRESHEX=r0], 0x6db6e571)
r2 = socket(0x10, 0x2, 0x0)
write(r2, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
ioctl$BTRFS_IOC_GET_DEV_STATS(r2, 0xc4089434, &(0x7f0000000340)={0x0, 0x1000, 0x0, [0x2, 0x5, 0xf36e, 0x9, 0x93d9], [0x9, 0x81, 0x8b, 0x0, 0x3, 0x7614, 0xffff, 0x3f, 0x800000000000, 0x9fd6, 0x3f, 0x7, 0x5, 0x4, 0x4, 0x2, 0xfffffffffffffff7, 0x4, 0x6, 0xb2, 0xc79, 0x1, 0x80000001, 0x1, 0x4, 0xffff, 0x7f, 0x6, 0x6, 0x1, 0xffffffffffff3140, 0x8b, 0x3, 0xffff, 0x9, 0x4f0a, 0x8000, 0xffffffffffffffdf, 0x0, 0x3, 0xffffffffffffff3c, 0x4, 0xfffffffffffffc01, 0x682e, 0x24000000000000, 0xffff, 0x8, 0x3, 0xbc7a, 0x2, 0x10001, 0x5, 0xa374, 0x0, 0x0, 0x6, 0x7fffffff, 0x7, 0x8, 0x200, 0x7, 0x1, 0x81, 0xfb0, 0x7, 0x2, 0x79b1a87, 0x2, 0x4, 0x0, 0xfffffffffffffffd, 0x4, 0x9, 0x7d, 0x5, 0x1, 0x400, 0x200, 0x6, 0x2, 0x1000, 0x8000, 0xa1, 0x6b, 0x1000, 0xffffffffffffffff, 0x3, 0x8, 0x7, 0x11, 0x9d9a, 0x200, 0x7, 0x467cd64b, 0x1, 0x6, 0x9, 0x10001, 0x3, 0x4, 0xb140, 0x1, 0x5, 0xa800, 0xd96c, 0x5, 0x3, 0xdbb7, 0xe01, 0x17a, 0x7, 0xd822, 0x10001, 0x0, 0x78, 0xffffffff00000001, 0x1f, 0xbc, 0x6, 0x401, 0x4]})
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r1, 0x0)
ioctl$TUNDETACHFILTER(r1, 0x401054d6, 0x0)
r3 = syz_open_pts(r0, 0x0)
ioctl$PTP_PIN_SETFUNC2(r1, 0x40603d10, &(0x7f00000000c0)={'\x00', 0x7, 0x0, 0x800})
r4 = dup3(r3, r0, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17)

11:56:47 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x3, 0x0, 0x0, 0x0)

11:56:47 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3) (async)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYRES8=r0, @ANYRES32=r2], 0x1c}}, 0x20000014)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:47 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xff6f3e2e1d7f0000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:47 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x4, 0x0, 0x0, 0x0)

11:56:47 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x3000000)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:47 executing program 1:
io_uring_setup(0x4f01, &(0x7f0000000180))
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r1], 0x1c}}, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r4)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000040), r2)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f0000000100)=<r6=>0x0)
sendmsg$NFC_CMD_START_POLL(r4, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x3c, r5, 0x300, 0x70bd2b, 0x25dfdbfd, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r1}, @NFC_ATTR_IM_PROTOCOLS={0x8}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x60}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}, @NFC_ATTR_IM_PROTOCOLS={0x8, 0xd, 0x10}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000001}, 0x20000805)
r7 = socket(0x10, 0x2, 0x0)
write(r7, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
r8 = socket(0x10, 0x2, 0x0)
write(r8, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
r9 = socket(0x10, 0x2, 0x0)
write(r9, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
close_range(r7, r9, 0x0)

11:56:47 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000200)=ANY=[@ANYRES64=r1, @ANYRESDEC=r1, @ANYRES16, @ANYBLOB="02d451bdfa408c3478481d08b1cf8e19840df49ab37ad186f6c0d582cd2003d1a826f08d7edb65a24a218db84cb8f764ffe92d4c6af9fe7474c286a29962bc2d63c586cdef87f2d8d7910c9527fddf23a613f1e66854427c8fe4738b3bf59423e88525bc577226d6f4f27810068ecf9a992cdcce62c55f9f21bd2a14c194e9d2922cff9351c3b3ae4dd84382c9bbb681653021f365a2fcdb980f9a263ae579889a4f20e8db3bcc7829446f0c609bf25040aba872dc7b16bcd71a6a0e638175d42f355f8de470e80fa0298d5e33fc9afc1d56f4492c468a619896c46bcbf46c8a663ea8ea7f5b7e4d7dc2981797a07194f97253df", @ANYRESHEX=r0], 0x6db6e571)
r2 = socket(0x10, 0x2, 0x0)
write(r2, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
ioctl$BTRFS_IOC_GET_DEV_STATS(r2, 0xc4089434, &(0x7f0000000340)={0x0, 0x1000, 0x0, [0x2, 0x5, 0xf36e, 0x9, 0x93d9], [0x9, 0x81, 0x8b, 0x0, 0x3, 0x7614, 0xffff, 0x3f, 0x800000000000, 0x9fd6, 0x3f, 0x7, 0x5, 0x4, 0x4, 0x2, 0xfffffffffffffff7, 0x4, 0x6, 0xb2, 0xc79, 0x1, 0x80000001, 0x1, 0x4, 0xffff, 0x7f, 0x6, 0x6, 0x1, 0xffffffffffff3140, 0x8b, 0x3, 0xffff, 0x9, 0x4f0a, 0x8000, 0xffffffffffffffdf, 0x0, 0x3, 0xffffffffffffff3c, 0x4, 0xfffffffffffffc01, 0x682e, 0x24000000000000, 0xffff, 0x8, 0x3, 0xbc7a, 0x2, 0x10001, 0x5, 0xa374, 0x0, 0x0, 0x6, 0x7fffffff, 0x7, 0x8, 0x200, 0x7, 0x1, 0x81, 0xfb0, 0x7, 0x2, 0x79b1a87, 0x2, 0x4, 0x0, 0xfffffffffffffffd, 0x4, 0x9, 0x7d, 0x5, 0x1, 0x400, 0x200, 0x6, 0x2, 0x1000, 0x8000, 0xa1, 0x6b, 0x1000, 0xffffffffffffffff, 0x3, 0x8, 0x7, 0x11, 0x9d9a, 0x200, 0x7, 0x467cd64b, 0x1, 0x6, 0x9, 0x10001, 0x3, 0x4, 0xb140, 0x1, 0x5, 0xa800, 0xd96c, 0x5, 0x3, 0xdbb7, 0xe01, 0x17a, 0x7, 0xd822, 0x10001, 0x0, 0x78, 0xffffffff00000001, 0x1f, 0xbc, 0x6, 0x401, 0x4]})
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r1, 0x0)
ioctl$TUNDETACHFILTER(r1, 0x401054d6, 0x0)
r3 = syz_open_pts(r0, 0x0)
ioctl$PTP_PIN_SETFUNC2(r1, 0x40603d10, &(0x7f00000000c0)={'\x00', 0x7, 0x0, 0x800})
r4 = dup3(r3, r0, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0) (async)
write$binfmt_script(r1, &(0x7f0000000200)=ANY=[@ANYRES64=r1, @ANYRESDEC=r1, @ANYRES16, @ANYBLOB="02d451bdfa408c3478481d08b1cf8e19840df49ab37ad186f6c0d582cd2003d1a826f08d7edb65a24a218db84cb8f764ffe92d4c6af9fe7474c286a29962bc2d63c586cdef87f2d8d7910c9527fddf23a613f1e66854427c8fe4738b3bf59423e88525bc577226d6f4f27810068ecf9a992cdcce62c55f9f21bd2a14c194e9d2922cff9351c3b3ae4dd84382c9bbb681653021f365a2fcdb980f9a263ae579889a4f20e8db3bcc7829446f0c609bf25040aba872dc7b16bcd71a6a0e638175d42f355f8de470e80fa0298d5e33fc9afc1d56f4492c468a619896c46bcbf46c8a663ea8ea7f5b7e4d7dc2981797a07194f97253df", @ANYRESHEX=r0], 0x6db6e571) (async)
socket(0x10, 0x2, 0x0) (async)
write(r2, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
ioctl$BTRFS_IOC_GET_DEV_STATS(r2, 0xc4089434, &(0x7f0000000340)={0x0, 0x1000, 0x0, [0x2, 0x5, 0xf36e, 0x9, 0x93d9], [0x9, 0x81, 0x8b, 0x0, 0x3, 0x7614, 0xffff, 0x3f, 0x800000000000, 0x9fd6, 0x3f, 0x7, 0x5, 0x4, 0x4, 0x2, 0xfffffffffffffff7, 0x4, 0x6, 0xb2, 0xc79, 0x1, 0x80000001, 0x1, 0x4, 0xffff, 0x7f, 0x6, 0x6, 0x1, 0xffffffffffff3140, 0x8b, 0x3, 0xffff, 0x9, 0x4f0a, 0x8000, 0xffffffffffffffdf, 0x0, 0x3, 0xffffffffffffff3c, 0x4, 0xfffffffffffffc01, 0x682e, 0x24000000000000, 0xffff, 0x8, 0x3, 0xbc7a, 0x2, 0x10001, 0x5, 0xa374, 0x0, 0x0, 0x6, 0x7fffffff, 0x7, 0x8, 0x200, 0x7, 0x1, 0x81, 0xfb0, 0x7, 0x2, 0x79b1a87, 0x2, 0x4, 0x0, 0xfffffffffffffffd, 0x4, 0x9, 0x7d, 0x5, 0x1, 0x400, 0x200, 0x6, 0x2, 0x1000, 0x8000, 0xa1, 0x6b, 0x1000, 0xffffffffffffffff, 0x3, 0x8, 0x7, 0x11, 0x9d9a, 0x200, 0x7, 0x467cd64b, 0x1, 0x6, 0x9, 0x10001, 0x3, 0x4, 0xb140, 0x1, 0x5, 0xa800, 0xd96c, 0x5, 0x3, 0xdbb7, 0xe01, 0x17a, 0x7, 0xd822, 0x10001, 0x0, 0x78, 0xffffffff00000001, 0x1f, 0xbc, 0x6, 0x401, 0x4]}) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r1, 0x0) (async)
ioctl$TUNDETACHFILTER(r1, 0x401054d6, 0x0) (async)
syz_open_pts(r0, 0x0) (async)
ioctl$PTP_PIN_SETFUNC2(r1, 0x40603d10, &(0x7f00000000c0)={'\x00', 0x7, 0x0, 0x800}) (async)
dup3(r3, r0, 0x0) (async)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17) (async)

11:56:47 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5418, &(0x7f0000000080))

11:56:47 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xff6f7e2e1d7f0000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:47 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xffefff1f00000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:47 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x4000000)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:47 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x8, 0x0, 0x0, 0x0)

11:56:47 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000200)=ANY=[@ANYRES64=r1, @ANYRESDEC=r1, @ANYRES16, @ANYBLOB="02d451bdfa408c3478481d08b1cf8e19840df49ab37ad186f6c0d582cd2003d1a826f08d7edb65a24a218db84cb8f764ffe92d4c6af9fe7474c286a29962bc2d63c586cdef87f2d8d7910c9527fddf23a613f1e66854427c8fe4738b3bf59423e88525bc577226d6f4f27810068ecf9a992cdcce62c55f9f21bd2a14c194e9d2922cff9351c3b3ae4dd84382c9bbb681653021f365a2fcdb980f9a263ae579889a4f20e8db3bcc7829446f0c609bf25040aba872dc7b16bcd71a6a0e638175d42f355f8de470e80fa0298d5e33fc9afc1d56f4492c468a619896c46bcbf46c8a663ea8ea7f5b7e4d7dc2981797a07194f97253df", @ANYRESHEX=r0], 0x6db6e571) (async)
write$binfmt_script(r1, &(0x7f0000000200)=ANY=[@ANYRES64=r1, @ANYRESDEC=r1, @ANYRES16, @ANYBLOB="02d451bdfa408c3478481d08b1cf8e19840df49ab37ad186f6c0d582cd2003d1a826f08d7edb65a24a218db84cb8f764ffe92d4c6af9fe7474c286a29962bc2d63c586cdef87f2d8d7910c9527fddf23a613f1e66854427c8fe4738b3bf59423e88525bc577226d6f4f27810068ecf9a992cdcce62c55f9f21bd2a14c194e9d2922cff9351c3b3ae4dd84382c9bbb681653021f365a2fcdb980f9a263ae579889a4f20e8db3bcc7829446f0c609bf25040aba872dc7b16bcd71a6a0e638175d42f355f8de470e80fa0298d5e33fc9afc1d56f4492c468a619896c46bcbf46c8a663ea8ea7f5b7e4d7dc2981797a07194f97253df", @ANYRESHEX=r0], 0x6db6e571)
r2 = socket(0x10, 0x2, 0x0)
write(r2, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
ioctl$BTRFS_IOC_GET_DEV_STATS(r2, 0xc4089434, &(0x7f0000000340)={0x0, 0x1000, 0x0, [0x2, 0x5, 0xf36e, 0x9, 0x93d9], [0x9, 0x81, 0x8b, 0x0, 0x3, 0x7614, 0xffff, 0x3f, 0x800000000000, 0x9fd6, 0x3f, 0x7, 0x5, 0x4, 0x4, 0x2, 0xfffffffffffffff7, 0x4, 0x6, 0xb2, 0xc79, 0x1, 0x80000001, 0x1, 0x4, 0xffff, 0x7f, 0x6, 0x6, 0x1, 0xffffffffffff3140, 0x8b, 0x3, 0xffff, 0x9, 0x4f0a, 0x8000, 0xffffffffffffffdf, 0x0, 0x3, 0xffffffffffffff3c, 0x4, 0xfffffffffffffc01, 0x682e, 0x24000000000000, 0xffff, 0x8, 0x3, 0xbc7a, 0x2, 0x10001, 0x5, 0xa374, 0x0, 0x0, 0x6, 0x7fffffff, 0x7, 0x8, 0x200, 0x7, 0x1, 0x81, 0xfb0, 0x7, 0x2, 0x79b1a87, 0x2, 0x4, 0x0, 0xfffffffffffffffd, 0x4, 0x9, 0x7d, 0x5, 0x1, 0x400, 0x200, 0x6, 0x2, 0x1000, 0x8000, 0xa1, 0x6b, 0x1000, 0xffffffffffffffff, 0x3, 0x8, 0x7, 0x11, 0x9d9a, 0x200, 0x7, 0x467cd64b, 0x1, 0x6, 0x9, 0x10001, 0x3, 0x4, 0xb140, 0x1, 0x5, 0xa800, 0xd96c, 0x5, 0x3, 0xdbb7, 0xe01, 0x17a, 0x7, 0xd822, 0x10001, 0x0, 0x78, 0xffffffff00000001, 0x1f, 0xbc, 0x6, 0x401, 0x4]})
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r1, 0x0)
ioctl$TUNDETACHFILTER(r1, 0x401054d6, 0x0) (async)
ioctl$TUNDETACHFILTER(r1, 0x401054d6, 0x0)
syz_open_pts(r0, 0x0) (async)
r3 = syz_open_pts(r0, 0x0)
ioctl$PTP_PIN_SETFUNC2(r1, 0x40603d10, &(0x7f00000000c0)={'\x00', 0x7, 0x0, 0x800}) (async)
ioctl$PTP_PIN_SETFUNC2(r1, 0x40603d10, &(0x7f00000000c0)={'\x00', 0x7, 0x0, 0x800})
r4 = dup3(r3, r0, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17)

11:56:47 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xffefffffff7f0000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:47 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x9, 0x0, 0x0, 0x0)

11:56:47 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xffff80017f811000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:47 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xa, 0x0, 0x0, 0x0)

11:56:47 executing program 1:
io_uring_setup(0x4f01, &(0x7f0000000180))
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r1], 0x1c}}, 0x0) (async)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r4) (async)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000040), r2)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f0000000100)=<r6=>0x0)
sendmsg$NFC_CMD_START_POLL(r4, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x3c, r5, 0x300, 0x70bd2b, 0x25dfdbfd, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r1}, @NFC_ATTR_IM_PROTOCOLS={0x8}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x60}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}, @NFC_ATTR_IM_PROTOCOLS={0x8, 0xd, 0x10}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000001}, 0x20000805) (async)
r7 = socket(0x10, 0x2, 0x0)
write(r7, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
r8 = socket(0x10, 0x2, 0x0)
write(r8, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
r9 = socket(0x10, 0x2, 0x0)
write(r9, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
close_range(r7, r9, 0x0)

11:56:47 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f040000f281f4d195387e6f4a0609000040"})
r1 = socket(0x10, 0x2, 0x0)
r2 = syz_open_pts(r0, 0x20002)
write(r1, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000640)={0x0, 0x727b}, 0x8)
r3 = syz_open_pts(r0, 0x0)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000680)={0x100, 0xffff7fff, 0x2, 0x715b565, 0x14, "c3856fd13054b14c93029aa1fdf27582b5612e"})
ioctl$AUTOFS_IOC_EXPIRE(r0, 0x810c9365, &(0x7f0000000100)={{0x4, 0xdf}, 0x100, './file0\x00'})
openat$nvram(0xffffffffffffff9c, &(0x7f00000006c0), 0x50240, 0x0)
socketpair(0xf, 0x1, 0x4, &(0x7f00000007c0)={<r4=>0xffffffffffffffff})
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r4, 0x84, 0x1f, &(0x7f0000000700)={0x0, @in6={{0xa, 0x4e21, 0x9, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}, 0x5, 0x6}, 0x90)
r5 = dup3(r3, r0, 0x0)
ioctl$KDFONTOP_COPY(r3, 0x4b72, &(0x7f0000000000)={0x3, 0x0, 0x11, 0x0, 0x94, &(0x7f0000000240)})
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000080)=0x17)

11:56:47 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x541b, &(0x7f0000000080))

11:56:47 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0xf000000)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:47 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xffff80017f813000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

[ 1055.312612][T13042] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
11:56:47 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xc, 0x0, 0x0, 0x0)

11:56:47 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xffff80017f81d000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:47 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xd, 0x0, 0x0, 0x0)

11:56:47 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f040000f281f4d195387e6f4a0609000040"}) (async)
r1 = socket(0x10, 0x2, 0x0)
r2 = syz_open_pts(r0, 0x20002) (async)
write(r1, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000640)={0x0, 0x727b}, 0x8) (async)
r3 = syz_open_pts(r0, 0x0)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000680)={0x100, 0xffff7fff, 0x2, 0x715b565, 0x14, "c3856fd13054b14c93029aa1fdf27582b5612e"})
ioctl$AUTOFS_IOC_EXPIRE(r0, 0x810c9365, &(0x7f0000000100)={{0x4, 0xdf}, 0x100, './file0\x00'})
openat$nvram(0xffffffffffffff9c, &(0x7f00000006c0), 0x50240, 0x0)
socketpair(0xf, 0x1, 0x4, &(0x7f00000007c0)={<r4=>0xffffffffffffffff})
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r4, 0x84, 0x1f, &(0x7f0000000700)={0x0, @in6={{0xa, 0x4e21, 0x9, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}, 0x5, 0x6}, 0x90) (async)
r5 = dup3(r3, r0, 0x0)
ioctl$KDFONTOP_COPY(r3, 0x4b72, &(0x7f0000000000)={0x3, 0x0, 0x11, 0x0, 0x94, &(0x7f0000000240)}) (async)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000080)=0x17)

11:56:47 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0xffffff7f)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:48 executing program 1:
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r1], 0x1c}}, 0x0) (async)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r4) (async)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000040), r2) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f0000000100)=<r6=>0x0)
sendmsg$NFC_CMD_START_POLL(r4, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x3c, r5, 0x300, 0x70bd2b, 0x25dfdbfd, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r1}, @NFC_ATTR_IM_PROTOCOLS={0x8}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x60}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}, @NFC_ATTR_IM_PROTOCOLS={0x8, 0xd, 0x10}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000001}, 0x20000805)
r7 = socket(0x10, 0x2, 0x0)
write(r7, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
r8 = socket(0x10, 0x2, 0x0)
write(r8, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
r9 = socket(0x10, 0x2, 0x0)
write(r9, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
close_range(r7, r9, 0x0)

[ 1055.491881][T13387] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
11:56:48 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xffff80e2d074d000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:48 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x40030000000000)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:48 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xe, 0x0, 0x0, 0x0)

[ 1055.629396][T13687] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
11:56:48 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9b34a66dcc554408259d6d4bc36139f73263b477a27b6f01851505f868390d65e2faf0b283d31470804429ab1d04f4805e6acff8616fc6", @ANYRES16=r4, @ANYBLOB="0100000000000000000002000000080001009a0524a114677ab36d9fe3c7c78c3e9d315ada9f36d519b4a1278afc2a27c9fea5c50c9e16258366d5859f8bf249b1b6d5ce4d9ad6332d043c36e8d892381c377af63c835a8456a8d99895cdc5085e0eddee474c8fcf010e2f1749f833551ada46047f81f5014c1b2b6edff4f5a895", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:48 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f040000f281f4d195387e6f4a0609000040"})
r1 = socket(0x10, 0x2, 0x0)
r2 = syz_open_pts(r0, 0x20002) (async)
write(r1, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000640)={0x0, 0x727b}, 0x8) (async)
r3 = syz_open_pts(r0, 0x0)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000680)={0x100, 0xffff7fff, 0x2, 0x715b565, 0x14, "c3856fd13054b14c93029aa1fdf27582b5612e"}) (async)
ioctl$AUTOFS_IOC_EXPIRE(r0, 0x810c9365, &(0x7f0000000100)={{0x4, 0xdf}, 0x100, './file0\x00'}) (async)
openat$nvram(0xffffffffffffff9c, &(0x7f00000006c0), 0x50240, 0x0) (async)
socketpair(0xf, 0x1, 0x4, &(0x7f00000007c0)={<r4=>0xffffffffffffffff})
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r4, 0x84, 0x1f, &(0x7f0000000700)={0x0, @in6={{0xa, 0x4e21, 0x9, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}, 0x5, 0x6}, 0x90) (async)
r5 = dup3(r3, r0, 0x0)
ioctl$KDFONTOP_COPY(r3, 0x4b72, &(0x7f0000000000)={0x3, 0x0, 0x11, 0x0, 0x94, &(0x7f0000000240)}) (async)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000080)=0x17)

11:56:48 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xffff80e2d129a000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:48 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xf, 0x0, 0x0, 0x0)

11:56:48 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x541d, &(0x7f0000000080))

11:56:48 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x100000000000000)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:48 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xffff80e2d12a3000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:48 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9b34a66dcc554408259d6d4bc36139f73263b477a27b6f01851505f868390d65e2faf0b283d31470804429ab1d04f4805e6acff8616fc6", @ANYRES16=r4, @ANYBLOB="0100000000000000000002000000080001009a0524a114677ab36d9fe3c7c78c3e9d315ada9f36d519b4a1278afc2a27c9fea5c50c9e16258366d5859f8bf249b1b6d5ce4d9ad6332d043c36e8d892381c377af63c835a8456a8d99895cdc5085e0eddee474c8fcf010e2f1749f833551ada46047f81f5014c1b2b6edff4f5a895", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:48 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x11, 0x0, 0x0, 0x0)

11:56:48 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x200000000000000)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:48 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xffff80e2d12fe000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:48 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x4, 0x0, 0x0, 0x0, "0000000000fdffffffffffff00"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:48 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async, rerun: 64)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="9b34a66dcc554408259d6d4bc36139f73263b477a27b6f01851505f868390d65e2faf0b283d31470804429ab1d04f4805e6acff8616fc6", @ANYRES16=r4, @ANYBLOB="0100000000000000000002000000080001009a0524a114677ab36d9fe3c7c78c3e9d315ada9f36d519b4a1278afc2a27c9fea5c50c9e16258366d5859f8bf249b1b6d5ce4d9ad6332d043c36e8d892381c377af63c835a8456a8d99895cdc5085e0eddee474c8fcf010e2f1749f833551ada46047f81f5014c1b2b6edff4f5a895", @ANYRES32=r2], 0x1c}}, 0x0) (async, rerun: 32)
close_range(r0, 0xffffffffffffffff, 0x0) (rerun: 32)

11:56:48 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x541e, &(0x7f0000000080))

11:56:48 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x13, 0x0, 0x0, 0x0)

11:56:48 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x300000000000000)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:48 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xffff80e2d1352000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:48 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
write$nci(r1, &(0x7f0000000000)=@NCI_OP_NFCEE_DISCOVER_NTF={0x2, 0x1, 0x3, 0x0, 0x9, {0xf1, 0x6, "919bcd9244fa80817314dad6c3fcd65f389eb3fe71abeaf50d89da97d20820a07ee2fa3ce65dd7f92d333d7f4547dd608694b157b611a0d6e39f568b26e73b2f1aa6958fbcf431c1fa9f7c619ee67709df027e0cb3389dcfe04a766678dcfbe4c3488798bf1341"}}, 0x6c)

11:56:48 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x4, 0x0, 0x0, 0x0, "0000000000fdffffffffffff00"})
r1 = syz_open_pts(r0, 0x0)
dup3(r1, r0, 0x0) (async)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:48 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xc0, 0x0, 0x0, 0x0)

11:56:48 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xffff80e2d13f5000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:48 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
write$nci(r1, &(0x7f0000000000)=@NCI_OP_NFCEE_DISCOVER_NTF={0x2, 0x1, 0x3, 0x0, 0x9, {0xf1, 0x6, "919bcd9244fa80817314dad6c3fcd65f389eb3fe71abeaf50d89da97d20820a07ee2fa3ce65dd7f92d333d7f4547dd608694b157b611a0d6e39f568b26e73b2f1aa6958fbcf431c1fa9f7c619ee67709df027e0cb3389dcfe04a766678dcfbe4c3488798bf1341"}}, 0x6c)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
write$nci(r1, &(0x7f0000000000)=@NCI_OP_NFCEE_DISCOVER_NTF={0x2, 0x1, 0x3, 0x0, 0x9, {0xf1, 0x6, "919bcd9244fa80817314dad6c3fcd65f389eb3fe71abeaf50d89da97d20820a07ee2fa3ce65dd7f92d333d7f4547dd608694b157b611a0d6e39f568b26e73b2f1aa6958fbcf431c1fa9f7c619ee67709df027e0cb3389dcfe04a766678dcfbe4c3488798bf1341"}}, 0x6c) (async)

11:56:48 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x1f4, 0x0, 0x0, 0x0)

11:56:48 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x400000000000000)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:48 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x4, 0x0, 0x0, 0x0, "0000000000fdffffffffffff00"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x4, 0x0, 0x0, 0x0, "0000000000fdffffffffffff00"}) (async)
syz_open_pts(r0, 0x0) (async)
dup3(r1, r0, 0x0) (async)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)

11:56:48 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x541e, &(0x7f0000000080))

11:56:48 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xffff80e2d1419000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:48 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x300, 0x0, 0x0, 0x0)

11:56:48 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async, rerun: 64)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (rerun: 64)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
write$nci(r1, &(0x7f0000000000)=@NCI_OP_NFCEE_DISCOVER_NTF={0x2, 0x1, 0x3, 0x0, 0x9, {0xf1, 0x6, "919bcd9244fa80817314dad6c3fcd65f389eb3fe71abeaf50d89da97d20820a07ee2fa3ce65dd7f92d333d7f4547dd608694b157b611a0d6e39f568b26e73b2f1aa6958fbcf431c1fa9f7c619ee67709df027e0cb3389dcfe04a766678dcfbe4c3488798bf1341"}}, 0x6c)

11:56:48 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TCSETA(r3, 0x5406, &(0x7f00000000c0)={0x75, 0x1, 0x1, 0x4, 0x14, "aa712301d1af91f2"})

11:56:48 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0xf00000000000000)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:48 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0xffffffff00000000, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:48 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x34b, 0x0, 0x0, 0x0)

11:56:48 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0xffffff7f00000000)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:49 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TCSETA(r3, 0x5406, &(0x7f00000000c0)={0x75, 0x1, 0x1, 0x4, 0x14, "aa712301d1af91f2"})

11:56:49 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x3a1, 0x0, 0x0, 0x0)

11:56:49 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/4\x00')
r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000040), 0xc00)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:49 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5421, &(0x7f0000000080))

11:56:49 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0xffffffff00000000)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:49 executing program 1:
r0 = io_uring_setup(0x7b79, &(0x7f0000000240)={0x0, 0x0, 0x2000, 0x1000003})
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000040)=<r5=>0x0)
sendmsg$NFC_CMD_DISABLE_SE(r3, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x24, r4, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@NFC_ATTR_SE_INDEX={0x8, 0x15, 0x2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000001}, 0x20000c10)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:49 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xe) (async)
ioctl$TCSETA(r3, 0x5406, &(0x7f00000000c0)={0x75, 0x1, 0x1, 0x4, 0x14, "aa712301d1af91f2"})

11:56:49 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x3d2, 0x0, 0x0, 0x0)

11:56:49 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0) (async)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/4\x00')
r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000040), 0xc00)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (async)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:49 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x3dd, 0x0, 0x0, 0x0)

11:56:49 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
dup(0xffffffffffffffff) (async)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0) (async)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/4\x00') (async)
r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000040), 0xc00)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:49 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
r1 = socket(0x10, 0x0, 0x0)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000040)=0x14)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:49 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x3e5, 0x0, 0x0, 0x0)

11:56:49 executing program 2:
r0 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = fcntl$getown(r0, 0x9)
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x1, 0x9, 0x8, 0x0, 0x3, 0x84208, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x9, 0x1, @perf_bp, 0x1c024, 0x7, 0x4, 0x5, 0x9, 0x2, 0x6, 0x0, 0x1, 0x0, 0x4}, r1, 0x4, 0xffffffffffffffff, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:49 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x900, 0x0, 0x0, 0x0)

11:56:49 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5423, &(0x7f0000000080))

11:56:49 executing program 2:
r0 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = fcntl$getown(r0, 0x9)
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x1, 0x9, 0x8, 0x0, 0x3, 0x84208, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x9, 0x1, @perf_bp, 0x1c024, 0x7, 0x4, 0x5, 0x9, 0x2, 0x6, 0x0, 0x1, 0x0, 0x4}, r1, 0x4, 0xffffffffffffffff, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async, rerun: 64)
dup(0xffffffffffffffff) (async)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0) (async)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:50 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x8)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:50 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xa00, 0x0, 0x0, 0x0)

11:56:50 executing program 2:
r0 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = fcntl$getown(r0, 0x9)
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x1, 0x9, 0x8, 0x0, 0x3, 0x84208, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x9, 0x1, @perf_bp, 0x1c024, 0x7, 0x4, 0x5, 0x9, 0x2, 0x6, 0x0, 0x1, 0x0, 0x4}, r1, 0x4, 0xffffffffffffffff, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0) (async)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:50 executing program 1:
r0 = io_uring_setup(0x7b79, &(0x7f0000000240)={0x0, 0x0, 0x2000, 0x1000003})
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000040)=<r5=>0x0)
sendmsg$NFC_CMD_DISABLE_SE(r3, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x24, r4, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@NFC_ATTR_SE_INDEX={0x8, 0x15, 0x2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000001}, 0x20000c10)
close_range(r0, 0xffffffffffffffff, 0x0)
io_uring_setup(0x7b79, &(0x7f0000000240)={0x0, 0x0, 0x2000, 0x1000003}) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000040)) (async)
sendmsg$NFC_CMD_DISABLE_SE(r3, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x24, r4, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@NFC_ATTR_SE_INDEX={0x8, 0x15, 0x2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000001}, 0x20000c10) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)

11:56:50 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678}) (async)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0) (async)
r1 = socket(0x10, 0x0, 0x0) (async)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0) (async)
getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000040)=0x14)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:50 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xc00, 0x0, 0x0, 0x0)

11:56:50 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
process_vm_readv(0x0, &(0x7f00000002c0)=[{&(0x7f0000000140)=""/177, 0xb1}, {&(0x7f0000000200)=""/1, 0x1}, {&(0x7f0000000240)=""/121, 0x79}], 0x3, &(0x7f0000000500)=[{&(0x7f0000000300)=""/189, 0xbd}, {&(0x7f0000000400)=""/174, 0xae}, {&(0x7f00000004c0)=""/42, 0x2a}], 0x3, 0x0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r0, 0x0)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x7, 0x1, 0x40, 0x1, 0x0, 0x3ed, 0x30, 0x8, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x800, 0x5, @perf_config_ext={0x20, 0x2}, 0x0, 0x5, 0x3, 0x3, 0xffffffff, 0x4, 0x6, 0x0, 0x6, 0x0, 0x20}, 0x0, 0xb, r0, 0x9)

11:56:50 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xd00, 0x0, 0x0, 0x0)

11:56:50 executing program 4:
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x8) (async)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x8)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:50 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xe00, 0x0, 0x0, 0x0)

[ 1056.564261][T14461] workqueue: Failed to create a rescuer kthread for wq "nfc11_nci_rx_wq": -EINTR
[ 1057.772751][T15287] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
11:56:50 executing program 1:
r0 = io_uring_setup(0x7b79, &(0x7f0000000240)={0x0, 0x0, 0x2000, 0x1000003}) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000040)=<r5=>0x0)
sendmsg$NFC_CMD_DISABLE_SE(r3, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x24, r4, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@NFC_ATTR_SE_INDEX={0x8, 0x15, 0x2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000001}, 0x20000c10) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:50 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
r1 = socket(0x10, 0x0, 0x0)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000040)=0x14)
close_range(r0, 0xffffffffffffffff, 0x0)
io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678}) (async)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0) (async)
socket(0x10, 0x0, 0x0) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4) (async)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0) (async)
getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000040)=0x14) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)

11:56:50 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xf00, 0x0, 0x0, 0x0)

11:56:50 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x8)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x8) (async)
syz_open_pts(r0, 0x0) (async)
dup3(r1, r0, 0x0) (async)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)

11:56:50 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0) (async)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
dup(0xffffffffffffffff) (async)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
process_vm_readv(0x0, &(0x7f00000002c0)=[{&(0x7f0000000140)=""/177, 0xb1}, {&(0x7f0000000200)=""/1, 0x1}, {&(0x7f0000000240)=""/121, 0x79}], 0x3, &(0x7f0000000500)=[{&(0x7f0000000300)=""/189, 0xbd}, {&(0x7f0000000400)=""/174, 0xae}, {&(0x7f00000004c0)=""/42, 0x2a}], 0x3, 0x0) (async)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (async)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r0, 0x0) (async)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x7, 0x1, 0x40, 0x1, 0x0, 0x3ed, 0x30, 0x8, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x800, 0x5, @perf_config_ext={0x20, 0x2}, 0x0, 0x5, 0x3, 0x3, 0xffffffff, 0x4, 0x6, 0x0, 0x6, 0x0, 0x20}, 0x0, 0xb, r0, 0x9)

11:56:50 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5424, &(0x7f0000000080))

11:56:50 executing program 1:
r0 = io_uring_setup(0x1e6, &(0x7f0000000280)={0x0, 0x0, 0x40})
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$nci(r1, &(0x7f0000000040)=@NCI_OP_RF_DISCOVER_SELECT_RSP={0x1, 0x0, 0x2, 0x4, 0x1f, 0x1}, 0x4)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000002800)={0x6, 0x0, &(0x7f0000002700)=[{&(0x7f0000000300)=""/206, 0xce}, {&(0x7f0000000440)=""/4096, 0x1000}, {&(0x7f0000001440)=""/223, 0xdf}, {&(0x7f0000001540)=""/4096, 0x1000}, {&(0x7f0000002540)=""/99, 0x63}, {&(0x7f00000025c0)=""/19, 0x13}, {&(0x7f0000002600)=""/165, 0xa5}, {&(0x7f00000026c0)=""/32, 0x20}], &(0x7f0000002780)=[0x3800000, 0x0, 0xfff, 0x8, 0x7ff, 0x479e, 0x3, 0x1, 0x800, 0x1a], 0x8}, 0x20)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0))
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
write$nci(r1, &(0x7f0000000240)=@NCI_OP_RF_DEACTIVATE_NTF={0x1, 0x0, 0x3, 0x6, 0x9, {0x7, 0x2}}, 0x5)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYRESOCT=r3, @ANYBLOB="b2508f26352d7188deaf05f344bd1503bebf0bceeec6f7ab01086a97c941933fb3cb3ef98735"], 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000000)={0xfff, 0x100, 0x7, 0x8, 0x6, 0x200})
close_range(r0, 0xffffffffffffffff, 0x0)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000200)=@o_path={&(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, 0x4000, r0}, 0x18)

11:56:50 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x1100, 0x0, 0x0, 0x0)

11:56:50 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x1300, 0x0, 0x0, 0x0)

11:56:50 executing program 1:
r0 = io_uring_setup(0x1e6, &(0x7f0000000280)={0x0, 0x0, 0x40})
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$nci(r1, &(0x7f0000000040)=@NCI_OP_RF_DISCOVER_SELECT_RSP={0x1, 0x0, 0x2, 0x4, 0x1f, 0x1}, 0x4)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000002800)={0x6, 0x0, &(0x7f0000002700)=[{&(0x7f0000000300)=""/206, 0xce}, {&(0x7f0000000440)=""/4096, 0x1000}, {&(0x7f0000001440)=""/223, 0xdf}, {&(0x7f0000001540)=""/4096, 0x1000}, {&(0x7f0000002540)=""/99, 0x63}, {&(0x7f00000025c0)=""/19, 0x13}, {&(0x7f0000002600)=""/165, 0xa5}, {&(0x7f00000026c0)=""/32, 0x20}], &(0x7f0000002780)=[0x3800000, 0x0, 0xfff, 0x8, 0x7ff, 0x479e, 0x3, 0x1, 0x800, 0x1a], 0x8}, 0x20)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0))
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
write$nci(r1, &(0x7f0000000240)=@NCI_OP_RF_DEACTIVATE_NTF={0x1, 0x0, 0x3, 0x6, 0x9, {0x7, 0x2}}, 0x5)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYRESOCT=r3, @ANYBLOB="b2508f26352d7188deaf05f344bd1503bebf0bceeec6f7ab01086a97c941933fb3cb3ef98735"], 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000000)={0xfff, 0x100, 0x7, 0x8, 0x6, 0x200})
close_range(r0, 0xffffffffffffffff, 0x0)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000200)=@o_path={&(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, 0x4000, r0}, 0x18)
io_uring_setup(0x1e6, &(0x7f0000000280)={0x0, 0x0, 0x40}) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
write$nci(r1, &(0x7f0000000040)=@NCI_OP_RF_DISCOVER_SELECT_RSP={0x1, 0x0, 0x2, 0x4, 0x1f, 0x1}, 0x4) (async)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000002800)={0x6, 0x0, &(0x7f0000002700)=[{&(0x7f0000000300)=""/206, 0xce}, {&(0x7f0000000440)=""/4096, 0x1000}, {&(0x7f0000001440)=""/223, 0xdf}, {&(0x7f0000001540)=""/4096, 0x1000}, {&(0x7f0000002540)=""/99, 0x63}, {&(0x7f00000025c0)=""/19, 0x13}, {&(0x7f0000002600)=""/165, 0xa5}, {&(0x7f00000026c0)=""/32, 0x20}], &(0x7f0000002780)=[0x3800000, 0x0, 0xfff, 0x8, 0x7ff, 0x479e, 0x3, 0x1, 0x800, 0x1a], 0x8}, 0x20) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
write$nci(r1, &(0x7f0000000240)=@NCI_OP_RF_DEACTIVATE_NTF={0x1, 0x0, 0x3, 0x6, 0x9, {0x7, 0x2}}, 0x5) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2) (async)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYRESOCT=r3, @ANYBLOB="b2508f26352d7188deaf05f344bd1503bebf0bceeec6f7ab01086a97c941933fb3cb3ef98735"], 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x0) (async)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000000)={0xfff, 0x100, 0x7, 0x8, 0x6, 0x200}) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000200)=@o_path={&(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, 0x4000, r0}, 0x18) (async)

11:56:50 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
process_vm_readv(0x0, &(0x7f00000002c0)=[{&(0x7f0000000140)=""/177, 0xb1}, {&(0x7f0000000200)=""/1, 0x1}, {&(0x7f0000000240)=""/121, 0x79}], 0x3, &(0x7f0000000500)=[{&(0x7f0000000300)=""/189, 0xbd}, {&(0x7f0000000400)=""/174, 0xae}, {&(0x7f00000004c0)=""/42, 0x2a}], 0x3, 0x0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r0, 0x0)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x7, 0x1, 0x40, 0x1, 0x0, 0x3ed, 0x30, 0x8, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x800, 0x5, @perf_config_ext={0x20, 0x2}, 0x0, 0x5, 0x3, 0x3, 0xffffffff, 0x4, 0x6, 0x0, 0x6, 0x0, 0x20}, 0x0, 0xb, r0, 0x9)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0) (async)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
dup(0xffffffffffffffff) (async)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0) (async)
process_vm_readv(0x0, &(0x7f00000002c0)=[{&(0x7f0000000140)=""/177, 0xb1}, {&(0x7f0000000200)=""/1, 0x1}, {&(0x7f0000000240)=""/121, 0x79}], 0x3, &(0x7f0000000500)=[{&(0x7f0000000300)=""/189, 0xbd}, {&(0x7f0000000400)=""/174, 0xae}, {&(0x7f00000004c0)=""/42, 0x2a}], 0x3, 0x0) (async)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0) (async)
write$binfmt_script(r0, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r0, 0x0) (async)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x7, 0x1, 0x40, 0x1, 0x0, 0x3ed, 0x30, 0x8, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x800, 0x5, @perf_config_ext={0x20, 0x2}, 0x0, 0x5, 0x3, 0x3, 0xffffffff, 0x4, 0x6, 0x0, 0x6, 0x0, 0x20}, 0x0, 0xb, r0, 0x9) (async)

11:56:50 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
r1 = socket(0x10, 0x0, 0x0)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = socket(0x10, 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000300)={{0x1, 0x1, 0x18, <r5=>r2}, './file0\x00'})
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f0000000340))
write(r4, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r8, &(0x7f0000000080)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r9, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000740)={0x0, 0x925, &(0x7f0000000700)={&(0x7f0000000080)=@ipv6_newnexthop={0x38, 0x68, 0x1, 0x0, 0x0, {0x2}, [@NHA_ENCAP={0x10, 0x8, 0x0, 0x1, @LWT_BPF_XMIT={0xc, 0x3, 0x0, 0x1, @LWT_BPF_PROG_NAME={0x6, 0x2, '.\x00'}}}, @NHA_OIF={0x8, 0x5, r9}, @NHA_ENCAP_TYPE={0x6, 0x7, 0x9}]}, 0x38}}, 0x0)
r10 = accept(r1, &(0x7f0000000240)=@in6={0xa, 0x0, 0x0, @private0}, &(0x7f0000000040)=0x80)
bind$xdp(r4, &(0x7f0000000100)={0x2c, 0x4, r9, 0x1b, r10}, 0x10)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r11)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f0000000000))
sendmsg$NFC_CMD_DEV_UP(r11, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r12, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
write$nci(r2, &(0x7f00000002c0)=@NCI_OP_CORE_INTF_ERROR_NTF={0x0, 0x0, 0x3, 0x8, 0x7f, {0x1, 0x2}}, 0x5)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:50 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x1f00, 0x0, 0x0, 0x0)

11:56:50 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:50 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:50 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x2000, 0x0, 0x0, 0x0)

11:56:50 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
r1 = socket(0x10, 0x0, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = socket(0x10, 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000300)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000300)={{0x1, 0x1, 0x18, <r5=>r2}, './file0\x00'})
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f0000000340)) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f0000000340))
write(r4, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
socket$nl_route(0x10, 0x3, 0x0) (async)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x2, 0x0) (async)
r8 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r8, &(0x7f0000000080)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r9, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r9, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000740)={0x0, 0x925, &(0x7f0000000700)={&(0x7f0000000080)=@ipv6_newnexthop={0x38, 0x68, 0x1, 0x0, 0x0, {0x2}, [@NHA_ENCAP={0x10, 0x8, 0x0, 0x1, @LWT_BPF_XMIT={0xc, 0x3, 0x0, 0x1, @LWT_BPF_PROG_NAME={0x6, 0x2, '.\x00'}}}, @NHA_OIF={0x8, 0x5, r9}, @NHA_ENCAP_TYPE={0x6, 0x7, 0x9}]}, 0x38}}, 0x0) (async)
sendmsg$nl_route(r6, &(0x7f0000000740)={0x0, 0x925, &(0x7f0000000700)={&(0x7f0000000080)=@ipv6_newnexthop={0x38, 0x68, 0x1, 0x0, 0x0, {0x2}, [@NHA_ENCAP={0x10, 0x8, 0x0, 0x1, @LWT_BPF_XMIT={0xc, 0x3, 0x0, 0x1, @LWT_BPF_PROG_NAME={0x6, 0x2, '.\x00'}}}, @NHA_OIF={0x8, 0x5, r9}, @NHA_ENCAP_TYPE={0x6, 0x7, 0x9}]}, 0x38}}, 0x0)
r10 = accept(r1, &(0x7f0000000240)=@in6={0xa, 0x0, 0x0, @private0}, &(0x7f0000000040)=0x80)
bind$xdp(r4, &(0x7f0000000100)={0x2c, 0x4, r9, 0x1b, r10}, 0x10)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r11) (async)
r12 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r11)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f0000000000))
sendmsg$NFC_CMD_DEV_UP(r11, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r12, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
write$nci(r2, &(0x7f00000002c0)=@NCI_OP_CORE_INTF_ERROR_NTF={0x0, 0x0, 0x3, 0x8, 0x7f, {0x1, 0x2}}, 0x5)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:50 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5425, &(0x7f0000000080))

11:56:50 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x3f00, 0x0, 0x0, 0x0)

11:56:50 executing program 1:
r0 = io_uring_setup(0x1e6, &(0x7f0000000280)={0x0, 0x0, 0x40})
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$nci(r1, &(0x7f0000000040)=@NCI_OP_RF_DISCOVER_SELECT_RSP={0x1, 0x0, 0x2, 0x4, 0x1f, 0x1}, 0x4)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000002800)={0x6, 0x0, &(0x7f0000002700)=[{&(0x7f0000000300)=""/206, 0xce}, {&(0x7f0000000440)=""/4096, 0x1000}, {&(0x7f0000001440)=""/223, 0xdf}, {&(0x7f0000001540)=""/4096, 0x1000}, {&(0x7f0000002540)=""/99, 0x63}, {&(0x7f00000025c0)=""/19, 0x13}, {&(0x7f0000002600)=""/165, 0xa5}, {&(0x7f00000026c0)=""/32, 0x20}], &(0x7f0000002780)=[0x3800000, 0x0, 0xfff, 0x8, 0x7ff, 0x479e, 0x3, 0x1, 0x800, 0x1a], 0x8}, 0x20)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0))
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
write$nci(r1, &(0x7f0000000240)=@NCI_OP_RF_DEACTIVATE_NTF={0x1, 0x0, 0x3, 0x6, 0x9, {0x7, 0x2}}, 0x5)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYRESOCT=r3, @ANYBLOB="b2508f26352d7188deaf05f344bd1503bebf0bceeec6f7ab01086a97c941933fb3cb3ef98735"], 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000000)={0xfff, 0x100, 0x7, 0x8, 0x6, 0x200})
close_range(r0, 0xffffffffffffffff, 0x0)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000200)=@o_path={&(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, 0x4000, r0}, 0x18)
io_uring_setup(0x1e6, &(0x7f0000000280)={0x0, 0x0, 0x40}) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
write$nci(r1, &(0x7f0000000040)=@NCI_OP_RF_DISCOVER_SELECT_RSP={0x1, 0x0, 0x2, 0x4, 0x1f, 0x1}, 0x4) (async)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000002800)={0x6, 0x0, &(0x7f0000002700)=[{&(0x7f0000000300)=""/206, 0xce}, {&(0x7f0000000440)=""/4096, 0x1000}, {&(0x7f0000001440)=""/223, 0xdf}, {&(0x7f0000001540)=""/4096, 0x1000}, {&(0x7f0000002540)=""/99, 0x63}, {&(0x7f00000025c0)=""/19, 0x13}, {&(0x7f0000002600)=""/165, 0xa5}, {&(0x7f00000026c0)=""/32, 0x20}], &(0x7f0000002780)=[0x3800000, 0x0, 0xfff, 0x8, 0x7ff, 0x479e, 0x3, 0x1, 0x800, 0x1a], 0x8}, 0x20) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
write$nci(r1, &(0x7f0000000240)=@NCI_OP_RF_DEACTIVATE_NTF={0x1, 0x0, 0x3, 0x6, 0x9, {0x7, 0x2}}, 0x5) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2) (async)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYRESOCT=r3, @ANYBLOB="b2508f26352d7188deaf05f344bd1503bebf0bceeec6f7ab01086a97c941933fb3cb3ef98735"], 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x0) (async)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000000)={0xfff, 0x100, 0x7, 0x8, 0x6, 0x200}) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000200)=@o_path={&(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, 0x4000, r0}, 0x18) (async)

11:56:50 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
r0 = socket(0x10, 0x2, 0x0)
write(r0, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
ioctl$F2FS_IOC_DEFRAGMENT(r0, 0xc010f508, &(0x7f0000000000)={0x1})
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:50 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:50 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678}) (async)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0) (async, rerun: 64)
r1 = socket(0x10, 0x0, 0x0) (async, rerun: 64)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = socket(0x10, 0x2, 0x0) (async, rerun: 32)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000300)={{0x1, 0x1, 0x18, <r5=>r2}, './file0\x00'}) (rerun: 32)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f0000000340)) (async)
write(r4, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async, rerun: 32)
r6 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 32)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x140}}, 0x0)
getsockname$packet(r8, &(0x7f0000000080)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xab)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffff00000000", @ANYRES32=r9, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route(r6, &(0x7f0000000740)={0x0, 0x925, &(0x7f0000000700)={&(0x7f0000000080)=@ipv6_newnexthop={0x38, 0x68, 0x1, 0x0, 0x0, {0x2}, [@NHA_ENCAP={0x10, 0x8, 0x0, 0x1, @LWT_BPF_XMIT={0xc, 0x3, 0x0, 0x1, @LWT_BPF_PROG_NAME={0x6, 0x2, '.\x00'}}}, @NHA_OIF={0x8, 0x5, r9}, @NHA_ENCAP_TYPE={0x6, 0x7, 0x9}]}, 0x38}}, 0x0)
r10 = accept(r1, &(0x7f0000000240)=@in6={0xa, 0x0, 0x0, @private0}, &(0x7f0000000040)=0x80)
bind$xdp(r4, &(0x7f0000000100)={0x2c, 0x4, r9, 0x1b, r10}, 0x10) (async, rerun: 32)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
r12 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r11)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f0000000000)) (async, rerun: 32)
sendmsg$NFC_CMD_DEV_UP(r11, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r12, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0) (async, rerun: 32)
write$nci(r2, &(0x7f00000002c0)=@NCI_OP_CORE_INTF_ERROR_NTF={0x0, 0x0, 0x3, 0x8, 0x7f, {0x1, 0x2}}, 0x5) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:50 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(0xffffffffffffffff, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:50 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x674, 0x400})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:50 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x4b03, 0x0, 0x0, 0x0)

11:56:50 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0) (async)
r0 = socket(0x10, 0x2, 0x0)
write(r0, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
ioctl$F2FS_IOC_DEFRAGMENT(r0, 0xc010f508, &(0x7f0000000000)={0x1}) (async)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0) (async)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:50 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xa103, 0x0, 0x0, 0x0)

11:56:50 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f00000002c0)={0x0, 0x359a})
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000000)={<r5=>0xffffffffffffffff}, 0x80)
io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, &(0x7f0000000040)=r5, 0x1)

11:56:50 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5427, &(0x7f0000000080))

11:56:50 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x674, 0x400})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:50 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xc000, 0x0, 0x0, 0x0)

11:56:50 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async, rerun: 64)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (rerun: 64)
r1 = syz_open_pts(0xffffffffffffffff, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:50 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
r0 = socket(0x10, 0x2, 0x0)
write(r0, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
ioctl$F2FS_IOC_DEFRAGMENT(r0, 0xc010f508, &(0x7f0000000000)={0x1}) (async)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0) (async)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:50 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f00000002c0)={0x0, 0x359a}) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
pipe2(&(0x7f0000000000)={<r5=>0xffffffffffffffff}, 0x80)
io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, &(0x7f0000000040)=r5, 0x1)

11:56:51 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xd203, 0x0, 0x0, 0x0)

11:56:51 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)
r0 = socket$rxrpc(0x21, 0x2, 0x2)
mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x100000e, 0x12, r0, 0x94308000)

11:56:51 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(0xffffffffffffffff, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
syz_open_pts(0xffffffffffffffff, 0x0) (async)
dup3(r1, r0, 0x0) (async)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)

11:56:51 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xdd03, 0x0, 0x0, 0x0)

11:56:51 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x674, 0x400}) (async)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:51 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f00000002c0)={0x0, 0x359a}) (async, rerun: 32)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (rerun: 32)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async, rerun: 32)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async, rerun: 64)
close_range(r0, 0xffffffffffffffff, 0x0) (async, rerun: 64)
pipe2(&(0x7f0000000000)={<r5=>0xffffffffffffffff}, 0x80)
io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, &(0x7f0000000040)=r5, 0x1)

[ 1058.694172][   T27] audit: type=1400 audit(1702900611.147:517): avc:  denied  { map } for  pid=17140 comm="syz-executor.2" path="socket:[488113]" dev="sockfs" ino=488113 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[ 1058.717934][   T27] audit: type=1400 audit(1702900611.147:518): avc:  denied  { read accept } for  pid=17140 comm="syz-executor.2" path="socket:[488113]" dev="sockfs" ino=488113 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
11:56:51 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5428, &(0x7f0000000080))

11:56:51 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0) (async)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
dup(0xffffffffffffffff) (async)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0) (async)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (async)
r0 = socket$rxrpc(0x21, 0x2, 0x2)
mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x100000e, 0x12, r0, 0x94308000)

11:56:51 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xe503, 0x0, 0x0, 0x0)

11:56:51 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)
syz_open_procfs(0x0, &(0x7f00000000c0)='cmdline\x00')

11:56:51 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0xa44a})
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:51 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xf401, 0x0, 0x0, 0x0)

11:56:51 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)
r0 = socket$rxrpc(0x21, 0x2, 0x2)
mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x100000e, 0x12, r0, 0x94308000) (async)
mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x100000e, 0x12, r0, 0x94308000)

11:56:51 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x20010, 0x0, 0x0, 0x0)

11:56:51 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)
syz_open_procfs(0x0, &(0x7f00000000c0)='cmdline\x00')

11:56:51 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x20200, 0x0, 0x0, 0x0)

11:56:51 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
r1 = socket(0x10, 0x0, 0x0)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000040)=0x14)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:51 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
prlimit64(0x0, 0x8, &(0x7f0000000000)={0x77cf, 0x100000001}, &(0x7f0000000040))
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:51 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x80000, 0x0, 0x0, 0x0)

11:56:51 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)
syz_open_procfs(0x0, &(0x7f00000000c0)='cmdline\x00')

11:56:51 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5437, &(0x7f0000000080))

11:56:51 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0xa44a}) (async, rerun: 32)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (rerun: 32)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:52 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x101000, 0x0, 0x0, 0x0)

11:56:52 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0) (async)
prlimit64(0x0, 0x8, &(0x7f0000000000)={0x77cf, 0x100000001}, &(0x7f0000000040)) (async, rerun: 32)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (rerun: 32)

11:56:52 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0) (async)
r1 = socket(0x10, 0x0, 0x0) (async)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r3=>0x0) (async)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000040)=0x14)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:52 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x1000000, 0x0, 0x0, 0x0)

11:56:52 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
r1 = socket(0x10, 0x0, 0x0)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000040)=0x14)
close_range(r0, 0xffffffffffffffff, 0x0)
io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678}) (async)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0) (async)
socket(0x10, 0x0, 0x0) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4) (async)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0) (async)
getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000040)=0x14) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)

11:56:52 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async, rerun: 64)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
dup(0xffffffffffffffff) (async, rerun: 32)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0) (rerun: 32)
prlimit64(0x0, 0x8, &(0x7f0000000000)={0x77cf, 0x100000001}, &(0x7f0000000040)) (async)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:52 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0xa44a})
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0xa44a}) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)

11:56:52 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x2000000, 0x0, 0x0, 0x0)

11:56:52 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x0, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_IOC_READY(r0, 0x9360, 0x0)

11:56:52 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000200)={0x7, 0x6, 0x3, 0x4, 0x0, "a2055a96594f2dd2cb62c9585efacfecb5d952"})
ioctl$TIOCMIWAIT(r1, 0x545c, 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x88900)
r4 = signalfd(r1, &(0x7f0000000240)={[0x2]}, 0x8)
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r1, &(0x7f00000002c0)={0x10})
ioctl$PIO_FONT(r3, 0x4b61, &(0x7f0000000100)="13012fc013a641a8850ac13df9067715c154ce1032e69fde57669296c1bd30b777684ba0648798f7972a16a693dc8fb556535f8fd3c7aa997c83cd5b276b35def215140ba6a64fd0234da96fb41ea952dbce65d5e2d8dfe08c9cf4ef1f5fc7c9d3c01fd4e1c28fd25edb085d12098dba7bf6d1e2d998c70a51b0eca851215b0e2b8e2a69a8ea4ecf1570b5e2acc0b3d18ac50628fe9c2fa1a55403aeb79d8036aa32d3e4ea6b8103e9c002b1c0a0ac31f3b86126bb0c0e476bc4475dfe8444b2dfb6550f3e9efedd3cb7391fd571ee4703d3bd01e6adaa9f72fcb88853a7956792cfca8912d43039d673768417")
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000000)={0x0, 0x3, 0x9, 0xda55, 0x2, "df3f0400060900004000"})
r5 = syz_open_pts(r0, 0x0)
r6 = dup3(r5, r0, 0x0)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000080)=0x17)

11:56:52 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5441, &(0x7f0000000080))

11:56:52 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x3000000, 0x0, 0x0, 0x0)

11:56:52 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x3, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:52 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000200)={0x7, 0x6, 0x3, 0x4, 0x0, "a2055a96594f2dd2cb62c9585efacfecb5d952"})
ioctl$TIOCMIWAIT(r1, 0x545c, 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x88900)
r4 = signalfd(r1, &(0x7f0000000240)={[0x2]}, 0x8)
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r1, &(0x7f00000002c0)={0x10})
ioctl$PIO_FONT(r3, 0x4b61, &(0x7f0000000100)="13012fc013a641a8850ac13df9067715c154ce1032e69fde57669296c1bd30b777684ba0648798f7972a16a693dc8fb556535f8fd3c7aa997c83cd5b276b35def215140ba6a64fd0234da96fb41ea952dbce65d5e2d8dfe08c9cf4ef1f5fc7c9d3c01fd4e1c28fd25edb085d12098dba7bf6d1e2d998c70a51b0eca851215b0e2b8e2a69a8ea4ecf1570b5e2acc0b3d18ac50628fe9c2fa1a55403aeb79d8036aa32d3e4ea6b8103e9c002b1c0a0ac31f3b86126bb0c0e476bc4475dfe8444b2dfb6550f3e9efedd3cb7391fd571ee4703d3bd01e6adaa9f72fcb88853a7956792cfca8912d43039d673768417")
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000000)={0x0, 0x3, 0x9, 0xda55, 0x2, "df3f0400060900004000"})
r5 = syz_open_pts(r0, 0x0)
r6 = dup3(r5, r0, 0x0)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000080)=0x17)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe) (async)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000200)={0x7, 0x6, 0x3, 0x4, 0x0, "a2055a96594f2dd2cb62c9585efacfecb5d952"}) (async)
ioctl$TIOCMIWAIT(r1, 0x545c, 0x0) (async)
open_tree(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x88900) (async)
signalfd(r1, &(0x7f0000000240)={[0x2]}, 0x8) (async)
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r1, &(0x7f00000002c0)={0x10}) (async)
ioctl$PIO_FONT(r3, 0x4b61, &(0x7f0000000100)="13012fc013a641a8850ac13df9067715c154ce1032e69fde57669296c1bd30b777684ba0648798f7972a16a693dc8fb556535f8fd3c7aa997c83cd5b276b35def215140ba6a64fd0234da96fb41ea952dbce65d5e2d8dfe08c9cf4ef1f5fc7c9d3c01fd4e1c28fd25edb085d12098dba7bf6d1e2d998c70a51b0eca851215b0e2b8e2a69a8ea4ecf1570b5e2acc0b3d18ac50628fe9c2fa1a55403aeb79d8036aa32d3e4ea6b8103e9c002b1c0a0ac31f3b86126bb0c0e476bc4475dfe8444b2dfb6550f3e9efedd3cb7391fd571ee4703d3bd01e6adaa9f72fcb88853a7956792cfca8912d43039d673768417") (async)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0xe) (async)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000000)={0x0, 0x3, 0x9, 0xda55, 0x2, "df3f0400060900004000"}) (async)
syz_open_pts(r0, 0x0) (async)
dup3(r5, r0, 0x0) (async)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000080)=0x17) (async)

11:56:52 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000003a00)=[{&(0x7f0000002440)=""/177, 0xb1}, {&(0x7f0000002500)=""/232, 0xe8}, {&(0x7f0000002600)=""/254, 0xfe}, {&(0x7f0000002700)=""/4096, 0x1000}, {&(0x7f0000003700)=""/186, 0xba}, {&(0x7f00000037c0)=""/137, 0x89}, {&(0x7f0000003880)=""/174, 0xae}, {&(0x7f0000003940)=""/166, 0xa6}], 0x8)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000001400)=@generic={&(0x7f00000013c0)='./file0\x00', 0x0, 0x18}, 0x18)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r2, 0x0)
write$nci(r2, &(0x7f00000002c0)=@NCI_GID_PROPRIETARY_NFT={0xf, 0x0, 0x3, 0x0, 0x3, "8858c21cee7d82b2b498b99406f32ff01315f624c98a2fb548ebb8bec5b9f419f96562c8c33d71eefe41a6c31b7e4e19094b4ebe8958f0d3d8c4c6006302dcb485ef6801fd4f68230f05bfb05ae14df0cfd8491574dd38d487d3cc0b67255181ac8c84245189aefca78933d8c8947d15bf2e50782a940ea5d345aeacbd9ab7963689ec2b4c5da289f0ca69289d6589a4b64e0531c9fae142c98d7237197a20a262df7d2e2017a58c13aae74e0994a1cb7da6ace4d7f8d632503615a60b462a4c63b50d8b58da809faed2de7327edfea71819a315404b0069dc95c88e584c29aacc7933ae880d9c208944af9b49dca670ec266f353fb498dda71c8e58d368c529b19509f3162a9de4a88c7682e1369fe489bc1e415f7424d94b4c00daa1e238a9daf78dd8024ef8a8ac77410169aeb113dcf43c2b492623706aa8ebe34390de0cae8019aacc9bb54598836b1f21c940e489ac5d8c9938128d5dcc3c9b36eda16451b0b0ac9b7a028370cda52a884734276dcd44a260a9c8fe193827d807d0066451fba83e9ea7ab2cb143248358bea2e03556d3f1383bae5d334b4af2907a9a3868fe3c0b7c727ba0bca76c66a051079af866924b8c59d9b85a1b4498c124c79bb7b5fe3e366d34669e9bdcff5cb8a11962c52806ea01b52d13f5d63de74c0c421cd0987340e52703a51654cb7698ab6c1c27c12bcb021be9a69331384f441a4a519e37c36b218f5423ad7f38e238df7e5b99bd5cb0f694e9531e06c1fe5f503a3948cab5e09320391c8df38d3becbe273c5ababd7b11199c9c014e241ae0ba2edaa3b050985e480afabb9bd15c545b31adbcdac74f44bf55ef05365445e5e2c93c4cc94b0a1ceac6261661428e65deb47a48d57a37cb2f4a6f288c6ae37d602d8ccf9608dfd297c640c0fc425656e910b0a0ba32978e7b83f177448786357327cf9e57d141a15fbe63f3fba4d3de6b6911b113b0e8b446037389b3d38cf1d3b4277d8ae4d43b5681418df30d2d3f3986c9072e28d2441207ab4c47999a134ed8a34ff074638c8ba5f77d1d74a271f1c3902202626d2227f090184d6d45963b0e4b9a56e142718f2f938ee13bcdf11098f0fe830ebc4154e08b38538a7f0d84423469251637309542bc31912eaffc066854dc5d0b01e0fcfdcfe51c4cda65978ba06f0943cb1832a2e04b9c9800c151a75549d9f005313bef2689146f39227e0dc6b6b0f1f2ed2967e16588188be4ca6c865b8d29c02ef6351226f00225c70eb8ac0820d7c82f73dcc2b02af51895903c21c9fbdf2f0242026f2ca340d334629791c94a87cd4cd414075d976551c71afcd42c2af00a532fbc8a9f8e31917543bd19c15eaf2beb37b7d018b33b1ac01841816c1feb8d9d3a70ba6865fbdd34a48b827246cccf7d71c44bcfd0a0583cf3832e774029b012eabef14170aeef3daa59c1cd2d7ed5e8c2e498fd7eedbf4d313374dee5e33b1c29e94ad827a35f948cc74def3cb97bf0a8f27c6838b0432026e7085c6f0f17ec5ea938926f787abc3f2239ec4f9df028e3a21423b192e486d1b3b2619ad445e701d8351284ecdd1b0ca2458c0c441295865f9da5c1f6a719a1daa6841360e786d77c85e8278677db1f03b451116dbce16812c306b42cefe3ee4a1267c69ce8e1cb0fdd11d444d5d3c46bdfd21a943e770d3dbd0bfd00942f650f546c919acc8da2c3193eb1dc4b339057499e78350df41a55d2ebe21c966f2abd05ef3b957a5b35a7e05d8397b97beda5111874febd25637a30b6abbb52c745552b3ca4dd5b4b01633b905756d6cb64c221854882cb0fd04db1ece5448c5aa6bb0bd57e15331beb366d4bd00adf930159b0ffc2ba1e929e6b763ee555e2991a56cf7c170ffe8ef8543fc401d3c391f8ca36f9d0d39ca2925526550712ea6c7fd0453b4fbdc0181974ba6191f62920951d4e0943dd46d4169566174d51ddedb3fca1c89bc88667751298f13040042c5cd543cc9a4a917dc993ae1616d6837e4473df115c124db9df37f8e0528f91866e8fb91baa91b41a84ac5b7aa9d505267a19b4b8c31fc5796633c6d17a3722133c2cc6045e8387f5f48428a1563cc115a017b2d6c73864032a2c7cc3ee07e3a528d7c626c603c5ee38f8570a529c2c4ab70f6e0cf8a401ff27d3a6d4f67fefb45fd71f76c4722a2f5f09c0d3f5a81ef0c839ef4c7652d6facb5bed3f1d77b9cf18c07c6984aa006bd3bc4e2087ebcbf7d583c5cfea5057580258d4dc3ac38987259cc81648e78d6f5244230f645a0fb7152641772280e5866183969703f64f94c6409d72ba24a682fcb271394f50445b530afb33ec7efa70be606d8ebaade56ab501ecde8216b92e59f17ad0a173612b136431b3dcb237ef2601261d8f9193c2a17d5f2faf4c3b315bf35aa9733716623a21f154f0ef78b6f3babedf6686f012c9c0a6c1fdd5b44cd903d988c82150c3ede3b1d965450a5f71796c5028ce18e0195468c344831acc15ee3231efdeead1f03b3e8cc2aee590fd16092c4f276ff1b596e188a0361b0e3de4dea3d48baf55c3b343b01090ffcdf2784772b040dcaf4711d767828347f04f9e46cf5cb4e6e48d1eafb7feff053612b319d2b84167b99ce69c3acda875bbd2320e80988c8acfdc51d96df4a3328ed38ed47b663a26747a37ac8af9ee90b6d4136f7cdb9051f64fd1151c88ed4092b96afe42442ee445b40409beed0b1098db349f53e39d47ffc0847d04ed80a5b28298b67ca3650559f5495d02867855c9444d572d307afd1292e6b9afed6f6455a51655eba09c57ab80882a343236c48e4b5ad10c314474a40f6b89418a833c2a5e71f40ac9cc4eac9931b04b24f6c2d3f21f908327ab4c5c53f865c4d6923df9040ece84c081645861aa56e81d76c9693d5990b302554eea0b6a4fa5a866b0824203b658daf79eec8289b8a1339885f4511b1a9daf71567cc6f9e89fa0e786721ccc6135d63f5a0fbb534475bbc4ee3d2f6abe6c6ee48b1ec80af394decfa89c8e790705008840e9a6fbc79de01ed291979361c923842befae698423dcd0e85b11c1528df3956069b6cc3b9ac68958144e078b862e0f26b9c979d3f40e446313f0af11d9166d246c9c899bc6eb7af0f8f6a6a81bd7b31c1b8037c180836cffb64cdbe45b247f0ec453305873d493f261071750a43ce4f7abb57bbc16b32ca682efb9e88bb916ae29a6fb490b5843b1961cd942967e2af76111cae48cfe5be5e9d5183d2014ba6eeddab328151011c399ed5fb741bcd7e49e7a52ff47d8962dbc23fb38f739f26718aab12b4c7a5cb289861b8c7e7a2bbb8cd033631de73ef7f66ebd6b426bc7526fd02fbd2c23bbb39c614ffd5113c0114a4afae00624a054ec5339960e93ded640b5aa9393cbfadde5816c1cdc91afdd049deaabd72ddfebc50adf05110aff33720085d107a624c038f95890af41da79ee8865843a9acbc06bc868da43c795c8c2a065b4a19c83003646ff30a966a13c00bd75f68f691e09c386ca210e55fd2897532dc1ba6e1323d4c9bc58c0eb75755e96694ce0611425abcb065995d32129acafbf3aa922c4c482b78f0ccb2900166fae23ff368cfef5332fd255e5fb8484ecab6fcd6b0553252a362c466d9a12cd01d393631585756669b0424a57de13826427a486317d9d257817f4086a3bad97768334f3b6cfb78711fb7a26554ac8d855bd807f8814aa11e916fe4093eeb824a56836f393bf60b4b8aa2fd4bed2781972f4a1e3fd7dee0a9245e4ec9864e2c9e1ab054f3bf97c7c1fe937c4f7d32f9b608e558cdf70b3d43ce1247db583607cfa6ce92572ee2d97dd045b8e67ef9cea3541ccdb3ffe8809efd586d4482852b491cd93fa927044208eaf4d053031a68ae3fb8413d7ae3cb0a157e793459281ecd600d7509e8a576f35951c494c554cdf2c2ad1031369ba2874b3578c88a5f9dbf32683b348ee85d7b532c96823384d6db3f849eaebb17cf6ecdad7ed2d99189f05236cef50d8040971061b876aeda9d621322b0737a977d66e8100e7873bd6be38e0e3bb3a5d24201432ff80c280ead73d72cc3f4cf9814da3ea3d11a47f4229e920a20d7de4fa93e702531f554e5ca5fe59904c04a583f9a21762719095b61793c4f4e8bb94aaab2e8e7edc268bccfa7392d651ca98ac06023b75b53f228fbc6c93f273741d67a942fa4c66e97dd5cf4d292a16482da2caf82c02aca22700e6342f22d300e053745d286b956827fe93693b6127c58d4e2aa1facc2996df0fab28cda75c41b79901bb805df99e44c6f3ed5cd2def7c24b8f688d26cb8b27cf3a6792af0b9ede2925f1dd8d9a531d6ebc7b58da2450cbeebc1db56272cec4754e2a28efd85309bb407cb6fbe5432bc2aff232e5275e63fcd9d32d5edb73df63076c8a7e0b694cce23a274da96baa965826df71a8dddfe22a6d8a33ecba9c2975985617103cc4aefb57d7540230d29042fd558ed0e12d00925c91348c0ba681b5e7892bca6d1790beca9e462ba50a4181a3e384b256659b923c22296e818d422427ea8868c21811fbd017d61ca0007fae479ec127a881e2f51c0403be055a1a17b37831cbed5a8e25a752801c07e1a4173dbd5132050eeebe5b9421404f94bf0df3f6e8b9c2041096d13d8bfc4fdc67b6f397e5a87ccf48bd6e2dffe127cfec1c060d78144cc24592894c41b8dba2711057c336def0926e818fa77b2d6c2a6d1ff8a0f526d9595ec7d6c6bba92a4754f584aaf3cc6868fba5c97644a4078c41798b0ca8283b1b5d2316eef77ab31c0be8f323e8e9275237543d7f900633bb38458a8f0ab627c63d5d8d8a10c6204f7304a52ce4b5cb44941db8f55626dbc25c8095341483de617da7b2be49bb2ae633f3c90a49af44f49507a6eaacceaf5276250fa22f385838a79ce55c1a3586902ab60b44ae7d286a3cfc2a73e8e064a4331e4041bf98f5f83b216531360912eb246a0d5c8d0206358a28472d79991563432d538cfbdcfb4fb991973381e3a8fc546647215c05534cc480ba8888efee68d82e7022bf2cea4349ecdd12f46e78f52ce0ee98aedc9726fef52559670beb5bb0e45359e076dd05c9b4641660d1bfdc13a3b3beb3618fae3bf8d7739945172b3207726f20c7d7d209175ddf45ee8853eb805f483a97946fd443bbe95bb02d200fa2621e1492c719f48662065945481a97000b18315fb2e6a1ff38d3b13db2679465a7341a79f666f89bd928b3aa6987fd5bb3b3869a7a1e2f0ada98ac00f92116bacc70fb003401e6df3ee484086935ba9d04814afd184a5315171948d4d1b005c30c1264eb41c76584c37e7619b2f4e72063df2290c6068a87c2a9bd41af94a10bf32916ea19a6f454b69d491ea356f4f710d84f523286d1e5c3c0920360eb208c40cf8a2e2d6548a49880a538f05e171fcd415a67aedd4855e0e0d0f9b8830cd05920548c27254c9647a5657efd8f72eea1b48be575cbb425588566a0766eda179aac688575a0351d36637fd9217ee225af58079d87108f77455db07dbe746fe19dd76c7769ea025d800da22762ae306775a8fd1535359b842ded33b57fa53a9fa0f04f0ab911ae88c5e48cdb85176d2900aaf082d2e21cc2122dcccb36ab0178685bebb1b5c74135f9d2035f1cf50a09eea55a12526b56144edefac7c3a17b452c1f3772b345a7e0af27ef691454b4aaeff0d8302fd5d52e8a19a551ec1f858c548862f10233be4d461c64d827e3986a163cd85bdeaeae9b3f635bf871198c04a93010a78aea13b731edf628939ba13bd0ff4ca"}, 0x1003)
pipe(&(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$nci(r3, &(0x7f0000000100)=@NCI_OP_CORE_RESET_RSP={0x0, 0x1, 0x2, 0x0, 0x3, {0x1, 0x20, 0x5c}}, 0x6)
r5 = dup2(r4, r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f0000000240))
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r0, 0x7, &(0x7f0000000000), 0x1)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r6=>0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nfc(&(0x7f0000000280), r7)
read$nci(r3, &(0x7f0000001440)=""/4096, 0x1000)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
ioctl$KDDISABIO(r4, 0x4b37)
write$binfmt_script(r9, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r9, 0x0)
read$nci(r9, &(0x7f0000001300)=""/133, 0x85)
sendmsg$NFC_CMD_DEV_UP(r7, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES16=r8, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r6], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:52 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0) (async)
socket(0x0, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
ioctl$AUTOFS_IOC_READY(r0, 0x9360, 0x0)

11:56:52 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x4000000, 0x0, 0x0, 0x0)

11:56:52 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x3, 0x0) (async)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:52 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x8000000, 0x0, 0x0, 0x0)

[ 1058.776037][T17168] workqueue: Failed to create a rescuer kthread for wq "nfc4_nci_tx_wq": -EINTR
[ 1060.454135][    C1] ==================================================================
[ 1060.471255][    C1] BUG: KCSAN: data-race in wq_worker_tick / wq_worker_tick
[ 1060.478471][    C1] 
[ 1060.480787][    C1] read-write to 0xffff8881000670a8 of 8 bytes by interrupt on cpu 0:
[ 1060.488854][    C1]  wq_worker_tick+0x66/0x3c0
[ 1060.493461][    C1]  scheduler_tick+0x13e/0x1d0
[ 1060.498143][    C1]  update_process_times+0xf5/0x110
[ 1060.503240][    C1]  tick_nohz_highres_handler+0x244/0x2c0
[ 1060.508868][    C1]  __hrtimer_run_queues+0x217/0x700
[ 1060.514060][    C1]  hrtimer_interrupt+0x20d/0x7b0
[ 1060.518985][    C1]  __sysvec_apic_timer_interrupt+0x52/0x190
[ 1060.524864][    C1]  sysvec_apic_timer_interrupt+0x68/0x80
[ 1060.530489][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1060.536458][    C1]  _raw_spin_unlock_irq+0x2f/0x40
[ 1060.541555][    C1]  process_scheduled_works+0x59c/0xa30
[ 1060.547085][    C1]  worker_thread+0x525/0x730
[ 1060.551661][    C1]  kthread+0x1d7/0x210
[ 1060.555723][    C1]  ret_from_fork+0x48/0x60
[ 1060.560128][    C1]  ret_from_fork_asm+0x11/0x20
[ 1060.564881][    C1] 
[ 1060.567184][    C1] read-write to 0xffff8881000670a8 of 8 bytes by interrupt on cpu 1:
[ 1060.575230][    C1]  wq_worker_tick+0x66/0x3c0
[ 1060.579811][    C1]  scheduler_tick+0x13e/0x1d0
[ 1060.584476][    C1]  update_process_times+0xf5/0x110
[ 1060.589575][    C1]  tick_nohz_highres_handler+0x244/0x2c0
[ 1060.595201][    C1]  __hrtimer_run_queues+0x217/0x700
[ 1060.600386][    C1]  hrtimer_interrupt+0x20d/0x7b0
[ 1060.605311][    C1]  __sysvec_apic_timer_interrupt+0x52/0x190
[ 1060.611188][    C1]  sysvec_apic_timer_interrupt+0x68/0x80
[ 1060.616806][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1060.622772][    C1]  _raw_spin_unlock_irqrestore+0x3d/0x50
[ 1060.628390][    C1]  tty_insert_flip_string_and_push_buffer+0x1ae/0x200
[ 1060.635138][    C1]  pty_write+0x7e/0xa0
[ 1060.639193][    C1]  tty_put_char+0x83/0xb0
[ 1060.643515][    C1]  __process_echoes+0x3a3/0x6a0
[ 1060.648359][    C1]  n_tty_receive_buf_common+0x8e6/0xbc0
[ 1060.653897][    C1]  n_tty_receive_buf2+0x33/0x40
[ 1060.658741][    C1]  tty_ldisc_receive_buf+0x60/0xe0
[ 1060.663836][    C1]  tty_port_default_receive_buf+0x59/0x90
[ 1060.669542][    C1]  flush_to_ldisc+0x1ca/0x400
[ 1060.674203][    C1]  process_scheduled_works+0x5b8/0xa30
[ 1060.679647][    C1]  worker_thread+0x525/0x730
[ 1060.684223][    C1]  kthread+0x1d7/0x210
[ 1060.688283][    C1]  ret_from_fork+0x48/0x60
[ 1060.692686][    C1]  ret_from_fork_asm+0x11/0x20
[ 1060.697436][    C1] 
11:56:53 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x9000000, 0x0, 0x0, 0x0)

[ 1060.699738][    C1] value changed: 0x0000000000a98670 -> 0x0000000000a9ad80
[ 1060.706825][    C1] 
[ 1060.709128][    C1] Reported by Kernel Concurrency Sanitizer on:
[ 1060.715255][    C1] CPU: 1 PID: 16145 Comm: kworker/u4:8 Not tainted 6.7.0-rc6-syzkaller #0
[ 1060.723737][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 1060.733775][    C1] Workqueue: events_unbound flush_to_ldisc
[ 1060.739567][    C1] ==================================================================
11:56:53 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678}) (async)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0) (async)
socket(0x0, 0x0, 0x0) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_IOC_READY(r0, 0x9360, 0x0)

11:56:53 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x3, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x3, 0x0) (async)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
dup(0xffffffffffffffff) (async)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0) (async)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (async)

11:56:53 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5450, &(0x7f0000000080))

11:56:53 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000003a00)=[{&(0x7f0000002440)=""/177, 0xb1}, {&(0x7f0000002500)=""/232, 0xe8}, {&(0x7f0000002600)=""/254, 0xfe}, {&(0x7f0000002700)=""/4096, 0x1000}, {&(0x7f0000003700)=""/186, 0xba}, {&(0x7f00000037c0)=""/137, 0x89}, {&(0x7f0000003880)=""/174, 0xae}, {&(0x7f0000003940)=""/166, 0xa6}], 0x8)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000001400)=@generic={&(0x7f00000013c0)='./file0\x00', 0x0, 0x18}, 0x18) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r2, 0x0) (async)
write$nci(r2, &(0x7f00000002c0)=@NCI_GID_PROPRIETARY_NFT={0xf, 0x0, 0x3, 0x0, 0x3, "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"}, 0x1003)
pipe(&(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$nci(r3, &(0x7f0000000100)=@NCI_OP_CORE_RESET_RSP={0x0, 0x1, 0x2, 0x0, 0x3, {0x1, 0x20, 0x5c}}, 0x6)
r5 = dup2(r4, r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f0000000240))
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r0, 0x7, &(0x7f0000000000), 0x1) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r6=>0x0) (async, rerun: 64)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
r8 = syz_genetlink_get_family_id$nfc(&(0x7f0000000280), r7) (async, rerun: 32)
read$nci(r3, &(0x7f0000001440)=""/4096, 0x1000) (async, rerun: 32)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
ioctl$KDDISABIO(r4, 0x4b37)
write$binfmt_script(r9, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r9, 0x0) (async, rerun: 64)
read$nci(r9, &(0x7f0000001300)=""/133, 0x85) (async, rerun: 64)
sendmsg$NFC_CMD_DEV_UP(r7, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES16=r8, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r6], 0x1c}}, 0x0) (async, rerun: 32)
close_range(r0, 0xffffffffffffffff, 0x0) (rerun: 32)

11:56:53 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678, 0x20})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:53 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xa000000, 0x0, 0x0, 0x0)

11:56:53 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='syzkaller\x00'}, 0x80)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sys_enter\x00', r1}, 0x10)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x20, 0x2, 0x6, 0x301, 0x0, 0x0, {0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x20}}, 0x810)
r3 = getpid()
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={r3, r2, 0x0, 0x0, 0x0}, 0x30)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:53 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000200)={0x7, 0x6, 0x3, 0x4, 0x0, "a2055a96594f2dd2cb62c9585efacfecb5d952"})
ioctl$TIOCMIWAIT(r1, 0x545c, 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x88900)
r4 = signalfd(r1, &(0x7f0000000240)={[0x2]}, 0x8)
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r1, &(0x7f00000002c0)={0x10})
ioctl$PIO_FONT(r3, 0x4b61, &(0x7f0000000100)="13012fc013a641a8850ac13df9067715c154ce1032e69fde57669296c1bd30b777684ba0648798f7972a16a693dc8fb556535f8fd3c7aa997c83cd5b276b35def215140ba6a64fd0234da96fb41ea952dbce65d5e2d8dfe08c9cf4ef1f5fc7c9d3c01fd4e1c28fd25edb085d12098dba7bf6d1e2d998c70a51b0eca851215b0e2b8e2a69a8ea4ecf1570b5e2acc0b3d18ac50628fe9c2fa1a55403aeb79d8036aa32d3e4ea6b8103e9c002b1c0a0ac31f3b86126bb0c0e476bc4475dfe8444b2dfb6550f3e9efedd3cb7391fd571ee4703d3bd01e6adaa9f72fcb88853a7956792cfca8912d43039d673768417")
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000000)={0x0, 0x3, 0x9, 0xda55, 0x2, "df3f0400060900004000"})
r5 = syz_open_pts(r0, 0x0)
r6 = dup3(r5, r0, 0x0)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000080)=0x17)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) (async)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe) (async)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000200)={0x7, 0x6, 0x3, 0x4, 0x0, "a2055a96594f2dd2cb62c9585efacfecb5d952"}) (async)
ioctl$TIOCMIWAIT(r1, 0x545c, 0x0) (async)
open_tree(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x88900) (async)
signalfd(r1, &(0x7f0000000240)={[0x2]}, 0x8) (async)
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r1, &(0x7f00000002c0)={0x10}) (async)
ioctl$PIO_FONT(r3, 0x4b61, &(0x7f0000000100)="13012fc013a641a8850ac13df9067715c154ce1032e69fde57669296c1bd30b777684ba0648798f7972a16a693dc8fb556535f8fd3c7aa997c83cd5b276b35def215140ba6a64fd0234da96fb41ea952dbce65d5e2d8dfe08c9cf4ef1f5fc7c9d3c01fd4e1c28fd25edb085d12098dba7bf6d1e2d998c70a51b0eca851215b0e2b8e2a69a8ea4ecf1570b5e2acc0b3d18ac50628fe9c2fa1a55403aeb79d8036aa32d3e4ea6b8103e9c002b1c0a0ac31f3b86126bb0c0e476bc4475dfe8444b2dfb6550f3e9efedd3cb7391fd571ee4703d3bd01e6adaa9f72fcb88853a7956792cfca8912d43039d673768417") (async)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0xe) (async)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000000)={0x0, 0x3, 0x9, 0xda55, 0x2, "df3f0400060900004000"}) (async)
syz_open_pts(r0, 0x0) (async)
dup3(r5, r0, 0x0) (async)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000080)=0x17) (async)

11:56:53 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xc000000, 0x0, 0x0, 0x0)

11:56:53 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async, rerun: 64)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r0 = dup(0xffffffffffffffff) (async)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0) (async)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='syzkaller\x00'}, 0x80)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sys_enter\x00', r1}, 0x10) (async, rerun: 64)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x20, 0x2, 0x6, 0x301, 0x0, 0x0, {0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x20}}, 0x810) (async, rerun: 64)
r3 = getpid()
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={r3, r2, 0x0, 0x0, 0x0}, 0x30) (async)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:53 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$VT_RELDISP(r0, 0x5605)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:53 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xd000000, 0x0, 0x0, 0x0)

11:56:53 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000003a00)=[{&(0x7f0000002440)=""/177, 0xb1}, {&(0x7f0000002500)=""/232, 0xe8}, {&(0x7f0000002600)=""/254, 0xfe}, {&(0x7f0000002700)=""/4096, 0x1000}, {&(0x7f0000003700)=""/186, 0xba}, {&(0x7f00000037c0)=""/137, 0x89}, {&(0x7f0000003880)=""/174, 0xae}, {&(0x7f0000003940)=""/166, 0xa6}], 0x8) (async, rerun: 64)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async, rerun: 64)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000001400)=@generic={&(0x7f00000013c0)='./file0\x00', 0x0, 0x18}, 0x18) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r2, 0x0) (async)
write$nci(r2, &(0x7f00000002c0)=@NCI_GID_PROPRIETARY_NFT={0xf, 0x0, 0x3, 0x0, 0x3, "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"}, 0x1003) (async, rerun: 64)
pipe(&(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}) (rerun: 64)
write$nci(r3, &(0x7f0000000100)=@NCI_OP_CORE_RESET_RSP={0x0, 0x1, 0x2, 0x0, 0x3, {0x1, 0x20, 0x5c}}, 0x6) (async)
r5 = dup2(r4, r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f0000000240)) (async)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r0, 0x7, &(0x7f0000000000), 0x1)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r6=>0x0) (async)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nfc(&(0x7f0000000280), r7) (async, rerun: 32)
read$nci(r3, &(0x7f0000001440)=""/4096, 0x1000) (async, rerun: 32)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
ioctl$KDDISABIO(r4, 0x4b37) (async)
write$binfmt_script(r9, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r9, 0x0) (async)
read$nci(r9, &(0x7f0000001300)=""/133, 0x85) (async)
sendmsg$NFC_CMD_DEV_UP(r7, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES16=r8, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r6], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:53 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='syzkaller\x00'}, 0x80)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sys_enter\x00', r1}, 0x10)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x20, 0x2, 0x6, 0x301, 0x0, 0x0, {0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x20}}, 0x810)
r3 = getpid()
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={r3, r2, 0x0, 0x0, 0x0}, 0x30)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0) (async)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
dup(0xffffffffffffffff) (async)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='syzkaller\x00'}, 0x80) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sys_enter\x00', r1}, 0x10) (async)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x20, 0x2, 0x6, 0x301, 0x0, 0x0, {0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x20}}, 0x810) (async)
getpid() (async)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={r3, r2, 0x0, 0x0, 0x0}, 0x30) (async)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (async)

11:56:53 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5451, &(0x7f0000000080))

11:56:53 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xe000000, 0x0, 0x0, 0x0)

11:56:53 executing program 1:
perf_event_open(&(0x7f00000002c0)={0x4, 0x80, 0x20, 0x20, 0x46, 0x80, 0x0, 0x2, 0x1000, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x3, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1000, 0x0, @perf_config_ext={0x8, 0x4000000000000000}, 0x6, 0x6, 0x575, 0x6, 0x5, 0x101ba3c, 0x5, 0x0, 0x9, 0x0, 0x40}, 0x0, 0x7, 0xffffffffffffffff, 0x1)
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000000))
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r2, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
read$nci(r1, &(0x7f0000000240)=""/114, 0x72)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r5, 0x0)
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
r6 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="0c87aa0d", @ANYRES16=r6, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:54 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678, 0x20}) (async)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:54 executing program 2:
r0 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x1}, 0x0, 0x8, 0xfffffffd, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='syzkaller\x00'}, 0x80)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sys_enter\x00', r1}, 0x10)
r3 = getpid()
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={r3, r2, 0x0, 0x0, 0x0}, 0x30)
perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x4, 0x1, 0x0, 0x1, 0x0, 0x9, 0x4000, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x3f, 0x1, @perf_config_ext={0x2, 0x6}, 0x8020, 0x2, 0x0, 0x4, 0x6, 0x22b5, 0x5, 0x0, 0x3, 0x0, 0x10000}, r3, 0xe, r0, 0x0)
r4 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = dup(0xffffffffffffffff)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r6, 0x0)
perf_event_open$cgroup(&(0x7f0000000000)={0x1, 0x80, 0x9, 0xff, 0x1, 0x3, 0x0, 0x1, 0x84, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x5, 0x2, @perf_config_ext={0x4d, 0x3}, 0x0, 0xf6, 0xffffffff, 0x1, 0x3, 0x5, 0x9c47, 0x0, 0x9, 0x0, 0x5}, r6, 0x5, r5, 0xa)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
r7 = syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)
setpriority(0x0, r7, 0x4)
perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0x6, 0x8d, 0x7, 0x0, 0x0, 0xff, 0x8000, 0x8, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x9, 0x2, @perf_bp={&(0x7f0000000240), 0x4}, 0xa800, 0x1ff, 0x100, 0x0, 0x1, 0x400, 0x200, 0x0, 0x4, 0x0, 0x1}, r7, 0x1, r4, 0x9)

11:56:54 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$VT_RELDISP(r0, 0x5605)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (async)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17)

11:56:54 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xf000000, 0x0, 0x0, 0x0)

11:56:54 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5452, &(0x7f0000000080))

11:56:54 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x10000200, 0x0, 0x0, 0x0)

11:56:54 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x11000000, 0x0, 0x0, 0x0)

11:56:54 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$VT_RELDISP(r0, 0x5605) (async, rerun: 32)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x17) (rerun: 32)

11:56:54 executing program 2:
r0 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x1}, 0x0, 0x8, 0xfffffffd, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='syzkaller\x00'}, 0x80)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sys_enter\x00', r1}, 0x10) (async)
r3 = getpid()
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={r3, r2, 0x0, 0x0, 0x0}, 0x30) (async)
perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x4, 0x1, 0x0, 0x1, 0x0, 0x9, 0x4000, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x3f, 0x1, @perf_config_ext={0x2, 0x6}, 0x8020, 0x2, 0x0, 0x4, 0x6, 0x22b5, 0x5, 0x0, 0x3, 0x0, 0x10000}, r3, 0xe, r0, 0x0) (async)
r4 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r5 = dup(0xffffffffffffffff) (async)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r6, 0x0) (async)
perf_event_open$cgroup(&(0x7f0000000000)={0x1, 0x80, 0x9, 0xff, 0x1, 0x3, 0x0, 0x1, 0x84, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x5, 0x2, @perf_config_ext={0x4d, 0x3}, 0x0, 0xf6, 0xffffffff, 0x1, 0x3, 0x5, 0x9c47, 0x0, 0x9, 0x0, 0x5}, r6, 0x5, r5, 0xa)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0) (async)
r7 = syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)
setpriority(0x0, r7, 0x4)
perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0x6, 0x8d, 0x7, 0x0, 0x0, 0xff, 0x8000, 0x8, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x9, 0x2, @perf_bp={&(0x7f0000000240), 0x4}, 0xa800, 0x1ff, 0x100, 0x0, 0x1, 0x400, 0x200, 0x0, 0x4, 0x0, 0x1}, r7, 0x1, r4, 0x9)

11:56:54 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x13000000, 0x0, 0x0, 0x0)

11:56:54 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x1f000000, 0x0, 0x0, 0x0)

11:56:54 executing program 1:
perf_event_open(&(0x7f00000002c0)={0x4, 0x80, 0x20, 0x20, 0x46, 0x80, 0x0, 0x2, 0x1000, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x3, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1000, 0x0, @perf_config_ext={0x8, 0x4000000000000000}, 0x6, 0x6, 0x575, 0x6, 0x5, 0x101ba3c, 0x5, 0x0, 0x9, 0x0, 0x40}, 0x0, 0x7, 0xffffffffffffffff, 0x1)
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000000))
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r2, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
read$nci(r1, &(0x7f0000000240)=""/114, 0x72)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r5, 0x0)
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
r6 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="0c87aa0d", @ANYRES16=r6, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000002c0)={0x4, 0x80, 0x20, 0x20, 0x46, 0x80, 0x0, 0x2, 0x1000, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x3, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1000, 0x0, @perf_config_ext={0x8, 0x4000000000000000}, 0x6, 0x6, 0x575, 0x6, 0x5, 0x101ba3c, 0x5, 0x0, 0x9, 0x0, 0x40}, 0x0, 0x7, 0xffffffffffffffff, 0x1) (async)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000000)) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0) (async)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r2, 0x0) (async)
io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) (async)
read$nci(r1, &(0x7f0000000240)=""/114, 0x72) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0) (async)
write$binfmt_script(r5, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r5, 0x0) (async)
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4) (async)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="0c87aa0d", @ANYRES16=r6, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)

11:56:55 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678, 0x20}) (async)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:55 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
r1 = socket(0x10, 0x2, 0x0)
write(r1, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000380)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r2 = syz_open_pts(r0, 0x0)
r3 = dup3(r2, r0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r4=>r3}, './file0\x00'})
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17)
syz_open_pts(r0, 0x1e3af9be719ad35c)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r3, 0xc018937a, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r5=>r0, {0xfffffffffffffffb}}, './file0\x00'})
r6 = socket(0x2, 0x80805, 0x0)
ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000000240)=0x10000)
r7 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000000100)=@assoc_value={<r8=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x7c, &(0x7f0000000080)={r8}, 0x14)
r9 = openat$nvram(0xffffffffffffff9c, &(0x7f00000003c0), 0x480041, 0x0)
r10 = socket(0x2, 0x80805, 0x0)
r11 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r11, 0x84, 0x14, &(0x7f0000000100)=@assoc_value={<r12=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r10, 0x84, 0x7c, &(0x7f0000000080)={r12}, 0x14)
setsockopt$inet_sctp_SCTP_ADD_STREAMS(r9, 0x84, 0x79, &(0x7f0000000400)={r12, 0x4, 0xfff7}, 0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000300)={r8, 0xcc, &(0x7f0000000440)=[@in6={0xa, 0x4e20, 0x3, @mcast1, 0x3}, @in6={0xa, 0x4e24, 0x40, @loopback, 0x8}, @in6={0xa, 0x4e24, 0x774c, @private1={0xfc, 0x1, '\x00', 0x1}, 0x6}, @in={0x2, 0x4e20, @broadcast}, @in6={0xa, 0x4e20, 0x1, @mcast2, 0x5}, @in={0x2, 0x4e23, @rand_addr=0x64010100}, @in6={0xa, 0x4e22, 0x8, @empty, 0x5}, @in={0x2, 0x4e24, @multicast1}, @in={0x2, 0x4e21, @multicast2}]}, &(0x7f0000000340)=0x10)
r13 = socket$igmp6(0xa, 0x3, 0x2)
write$binfmt_misc(r13, &(0x7f0000000140)={'syz0', "da7f5c99c36ad24defca9703b42bfec9cd8128ceb5ea094d09378056efa6fe1b952374fd72b45821ef0f44d656cbc1abd741293f53f56b17ae2e25d1c3cf04aca31c04c383056b21024995cdea61c63bc894fb666932e43e7c813a9e880288d972fb6407f7af391167d43bf5f3d61aee876f50cedba73895dff3d6eac1d429f7fc11f5e4ae66b2e3379d762bf49fb0a902570c"}, 0x97)
ioctl$TIOCSSOFTCAR(r5, 0x541a, &(0x7f0000000100)=0x9)

11:56:55 executing program 2:
r0 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x1}, 0x0, 0x8, 0xfffffffd, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='syzkaller\x00'}, 0x80)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sys_enter\x00', r1}, 0x10) (async)
r3 = getpid()
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={r3, r2, 0x0, 0x0, 0x0}, 0x30)
perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x4, 0x1, 0x0, 0x1, 0x0, 0x9, 0x4000, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x3f, 0x1, @perf_config_ext={0x2, 0x6}, 0x8020, 0x2, 0x0, 0x4, 0x6, 0x22b5, 0x5, 0x0, 0x3, 0x0, 0x10000}, r3, 0xe, r0, 0x0) (async)
r4 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r5 = dup(0xffffffffffffffff) (async)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r6, 0x0) (async)
perf_event_open$cgroup(&(0x7f0000000000)={0x1, 0x80, 0x9, 0xff, 0x1, 0x3, 0x0, 0x1, 0x84, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x5, 0x2, @perf_config_ext={0x4d, 0x3}, 0x0, 0xf6, 0xffffffff, 0x1, 0x3, 0x5, 0x9c47, 0x0, 0x9, 0x0, 0x5}, r6, 0x5, r5, 0xa)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0) (async, rerun: 64)
r7 = syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (rerun: 64)
setpriority(0x0, r7, 0x4)
perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0x6, 0x8d, 0x7, 0x0, 0x0, 0xff, 0x8000, 0x8, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x9, 0x2, @perf_bp={&(0x7f0000000240), 0x4}, 0xa800, 0x1ff, 0x100, 0x0, 0x1, 0x400, 0x200, 0x0, 0x4, 0x0, 0x1}, r7, 0x1, r4, 0x9)

11:56:55 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x1fffefff, 0x0, 0x0, 0x0)

11:56:55 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x545d, &(0x7f0000000080))

11:56:55 executing program 1:
perf_event_open(&(0x7f00000002c0)={0x4, 0x80, 0x20, 0x20, 0x46, 0x80, 0x0, 0x2, 0x1000, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x3, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1000, 0x0, @perf_config_ext={0x8, 0x4000000000000000}, 0x6, 0x6, 0x575, 0x6, 0x5, 0x101ba3c, 0x5, 0x0, 0x9, 0x0, 0x40}, 0x0, 0x7, 0xffffffffffffffff, 0x1)
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000000))
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r2, 0x0) (async)
io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) (async)
read$nci(r1, &(0x7f0000000240)=""/114, 0x72)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r3=>0x0) (async)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r5, 0x0) (async)
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0) (async)
r6 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="0c87aa0d", @ANYRES16=r6, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:55 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x20000000, 0x0, 0x0, 0x0)

11:56:55 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x80, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9100, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:55 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
r1 = socket(0x10, 0x2, 0x0)
write(r1, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000380)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r2 = syz_open_pts(r0, 0x0)
r3 = dup3(r2, r0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r4=>r3}, './file0\x00'})
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17)
syz_open_pts(r0, 0x1e3af9be719ad35c)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r3, 0xc018937a, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r5=>r0, {0xfffffffffffffffb}}, './file0\x00'}) (async)
r6 = socket(0x2, 0x80805, 0x0) (async)
ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000000240)=0x10000) (async)
r7 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000000100)=@assoc_value={<r8=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x7c, &(0x7f0000000080)={r8}, 0x14) (async)
r9 = openat$nvram(0xffffffffffffff9c, &(0x7f00000003c0), 0x480041, 0x0) (async)
r10 = socket(0x2, 0x80805, 0x0)
r11 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r11, 0x84, 0x14, &(0x7f0000000100)=@assoc_value={<r12=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r10, 0x84, 0x7c, &(0x7f0000000080)={r12}, 0x14)
setsockopt$inet_sctp_SCTP_ADD_STREAMS(r9, 0x84, 0x79, &(0x7f0000000400)={r12, 0x4, 0xfff7}, 0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000300)={r8, 0xcc, &(0x7f0000000440)=[@in6={0xa, 0x4e20, 0x3, @mcast1, 0x3}, @in6={0xa, 0x4e24, 0x40, @loopback, 0x8}, @in6={0xa, 0x4e24, 0x774c, @private1={0xfc, 0x1, '\x00', 0x1}, 0x6}, @in={0x2, 0x4e20, @broadcast}, @in6={0xa, 0x4e20, 0x1, @mcast2, 0x5}, @in={0x2, 0x4e23, @rand_addr=0x64010100}, @in6={0xa, 0x4e22, 0x8, @empty, 0x5}, @in={0x2, 0x4e24, @multicast1}, @in={0x2, 0x4e21, @multicast2}]}, &(0x7f0000000340)=0x10)
r13 = socket$igmp6(0xa, 0x3, 0x2)
write$binfmt_misc(r13, &(0x7f0000000140)={'syz0', "da7f5c99c36ad24defca9703b42bfec9cd8128ceb5ea094d09378056efa6fe1b952374fd72b45821ef0f44d656cbc1abd741293f53f56b17ae2e25d1c3cf04aca31c04c383056b21024995cdea61c63bc894fb666932e43e7c813a9e880288d972fb6407f7af391167d43bf5f3d61aee876f50cedba73895dff3d6eac1d429f7fc11f5e4ae66b2e3379d762bf49fb0a902570c"}, 0x97) (async)
ioctl$TIOCSSOFTCAR(r5, 0x541a, &(0x7f0000000100)=0x9)

11:56:55 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x3f000000, 0x0, 0x0, 0x0)

11:56:55 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x80, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9100, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff) (async)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:55 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
io_uring_enter(r0, 0x79cc, 0xae36, 0x2, &(0x7f0000000340)={[0xd1]}, 0x8)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000100)=<r6=>0x0)
r7 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r7, 0x0, &(0x7f00000000c0)=<r8=>0x0)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r9)
r11 = socket(0x10, 0x2, 0x0)
write(r11, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
sendmsg$NFC_CMD_DEV_UP(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYRES64=r11, @ANYRES16=r10, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r8], 0x1c}}, 0x0)
sendmsg$NFC_CMD_DEV_UP(r5, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x64, r4, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r8}]}, 0x64}, 0x1, 0x0, 0x0, 0x804}, 0x20004010)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c0010496ac703a157d69e660d58c409be00", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:55 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x80, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9100, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x80, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9100, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x8) (async)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0) (async)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
dup(0xffffffffffffffff) (async)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0) (async)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0) (async)

11:56:55 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0x4b030000, 0x0, 0x0, 0x0)

11:56:55 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
r1 = socket(0x10, 0x2, 0x0)
write(r1, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000380)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
r2 = syz_open_pts(r0, 0x0)
r3 = dup3(r2, r0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r4=>r3}, './file0\x00'})
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17) (async)
syz_open_pts(r0, 0x1e3af9be719ad35c) (async)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r3, 0xc018937a, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r5=>r0, {0xfffffffffffffffb}}, './file0\x00'}) (async)
r6 = socket(0x2, 0x80805, 0x0) (async)
ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000000240)=0x10000) (async)
r7 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000000100)=@assoc_value={<r8=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x7c, &(0x7f0000000080)={r8}, 0x14) (async)
r9 = openat$nvram(0xffffffffffffff9c, &(0x7f00000003c0), 0x480041, 0x0) (async)
r10 = socket(0x2, 0x80805, 0x0)
r11 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r11, 0x84, 0x14, &(0x7f0000000100)=@assoc_value={<r12=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r10, 0x84, 0x7c, &(0x7f0000000080)={r12}, 0x14) (async)
setsockopt$inet_sctp_SCTP_ADD_STREAMS(r9, 0x84, 0x79, &(0x7f0000000400)={r12, 0x4, 0xfff7}, 0x8) (async)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000300)={r8, 0xcc, &(0x7f0000000440)=[@in6={0xa, 0x4e20, 0x3, @mcast1, 0x3}, @in6={0xa, 0x4e24, 0x40, @loopback, 0x8}, @in6={0xa, 0x4e24, 0x774c, @private1={0xfc, 0x1, '\x00', 0x1}, 0x6}, @in={0x2, 0x4e20, @broadcast}, @in6={0xa, 0x4e20, 0x1, @mcast2, 0x5}, @in={0x2, 0x4e23, @rand_addr=0x64010100}, @in6={0xa, 0x4e22, 0x8, @empty, 0x5}, @in={0x2, 0x4e24, @multicast1}, @in={0x2, 0x4e21, @multicast2}]}, &(0x7f0000000340)=0x10)
r13 = socket$igmp6(0xa, 0x3, 0x2)
write$binfmt_misc(r13, &(0x7f0000000140)={'syz0', "da7f5c99c36ad24defca9703b42bfec9cd8128ceb5ea094d09378056efa6fe1b952374fd72b45821ef0f44d656cbc1abd741293f53f56b17ae2e25d1c3cf04aca31c04c383056b21024995cdea61c63bc894fb666932e43e7c813a9e880288d972fb6407f7af391167d43bf5f3d61aee876f50cedba73895dff3d6eac1d429f7fc11f5e4ae66b2e3379d762bf49fb0a902570c"}, 0x97) (async)
ioctl$TIOCSSOFTCAR(r5, 0x541a, &(0x7f0000000100)=0x9)

11:56:55 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5460, &(0x7f0000000080))

11:56:55 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="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", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:55 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)) (async, rerun: 64)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (rerun: 64)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
io_uring_enter(r0, 0x79cc, 0xae36, 0x2, &(0x7f0000000340)={[0xd1]}, 0x8) (async, rerun: 64)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000100)=<r6=>0x0) (rerun: 64)
r7 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r7, 0x0, &(0x7f00000000c0)=<r8=>0x0) (async)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r9) (async, rerun: 32)
r11 = socket(0x10, 0x2, 0x0) (rerun: 32)
write(r11, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
sendmsg$NFC_CMD_DEV_UP(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYRES64=r11, @ANYRES16=r10, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r8], 0x1c}}, 0x0) (async, rerun: 64)
sendmsg$NFC_CMD_DEV_UP(r5, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x64, r4, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r8}]}, 0x64}, 0x1, 0x0, 0x0, 0x804}, 0x20004010) (async, rerun: 64)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c0010496ac703a157d69e660d58c409be00", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:56 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xa1030000, 0x0, 0x0, 0x0)

11:56:56 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678}) (async)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0) (async)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="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", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:56 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2140c0, 0x0)
r1 = syz_open_dev$vcsa(&(0x7f00000000c0), 0x6, 0x802)
ioctl$KDGKBTYPE(r1, 0x4b33, &(0x7f0000000100))
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f0000000180)={{0x1, 0x1, 0x18}, './file0\x00'})
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe)
r3 = syz_open_pts(r2, 0x2)
r4 = dup3(r3, r0, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000140)=0x4)
ioctl$TCSETA(r4, 0x5406, &(0x7f00000001c0)={0x2, 0x2, 0x9, 0x3, 0x16, "5bd03f0ffe111c5a"})

11:56:56 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x20000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x8, 0xffffffffffffffff, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:56 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2140c0, 0x0)
r1 = syz_open_dev$vcsa(&(0x7f00000000c0), 0x6, 0x802)
ioctl$KDGKBTYPE(r1, 0x4b33, &(0x7f0000000100)) (async)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f0000000180)={{0x1, 0x1, 0x18}, './file0\x00'}) (async)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe) (async, rerun: 32)
r3 = syz_open_pts(r2, 0x2) (rerun: 32)
r4 = dup3(r3, r0, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17) (async)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000140)=0x4) (async)
ioctl$TCSETA(r4, 0x5406, &(0x7f00000001c0)={0x2, 0x2, 0x9, 0x3, 0x16, "5bd03f0ffe111c5a"})

11:56:56 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xc0000000, 0x0, 0x0, 0x0)

11:56:56 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x20000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x8, 0xffffffffffffffff, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0) (async)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
dup(0xffffffffffffffff) (async)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0) (async)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:56 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="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", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678}) (async)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0) (async)
socket(0x10, 0x0, 0x0) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="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", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)

11:56:56 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2140c0, 0x0)
r1 = syz_open_dev$vcsa(&(0x7f00000000c0), 0x6, 0x802)
ioctl$KDGKBTYPE(r1, 0x4b33, &(0x7f0000000100))
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f0000000180)={{0x1, 0x1, 0x18}, './file0\x00'})
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe)
r3 = syz_open_pts(r2, 0x2)
r4 = dup3(r3, r0, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000080)=0x17) (async)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000140)=0x4)
ioctl$TCSETA(r4, 0x5406, &(0x7f00000001c0)={0x2, 0x2, 0x9, 0x3, 0x16, "5bd03f0ffe111c5a"})

11:56:56 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xd2030000, 0x0, 0x0, 0x0)

11:56:56 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x20000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x8, 0xffffffffffffffff, 0x1) (async)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0) (async)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
dup(0xffffffffffffffff) (async)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:56 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00000000c0)={0x0, 0xec, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r1=>r0, {0x1ff}}, './file0\x00'})
r2 = syz_open_pts(r1, 0x212101)
r3 = dup3(r2, r0, 0x0)
r4 = openat$incfs(r3, &(0x7f0000000000)='.pending_reads\x00', 0x121200, 0x24)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000100)=0xd)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17)

11:56:56 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="b29ea88afdd6086b712b694500f0ffffff60e5ffbe6a0cc37580695830", @ANYRES16=r4, @ANYBLOB="010000001c000000000002000000acd80000", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:56 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180))
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
io_uring_enter(r0, 0x79cc, 0xae36, 0x2, &(0x7f0000000340)={[0xd1]}, 0x8)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000100)=<r6=>0x0)
r7 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r7, 0x0, &(0x7f00000000c0)=<r8=>0x0)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r9)
r11 = socket(0x10, 0x2, 0x0)
write(r11, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
sendmsg$NFC_CMD_DEV_UP(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYRES64=r11, @ANYRES16=r10, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r8], 0x1c}}, 0x0)
sendmsg$NFC_CMD_DEV_UP(r5, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x64, r4, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r8}]}, 0x64}, 0x1, 0x0, 0x0, 0x804}, 0x20004010)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c0010496ac703a157d69e660d58c409be00", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
io_uring_setup(0x4f01, &(0x7f0000000180)) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
io_uring_enter(r0, 0x79cc, 0xae36, 0x2, &(0x7f0000000340)={[0xd1]}, 0x8) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000100)) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r7, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r9) (async)
socket(0x10, 0x2, 0x0) (async)
write(r11, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24) (async)
sendmsg$NFC_CMD_DEV_UP(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYRES64=r11, @ANYRES16=r10, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r8], 0x1c}}, 0x0) (async)
sendmsg$NFC_CMD_DEV_UP(r5, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x64, r4, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r8}]}, 0x64}, 0x1, 0x0, 0x0, 0x804}, 0x20004010) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c0010496ac703a157d69e660d58c409be00", @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)

11:56:56 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x40049409, &(0x7f0000000080))

11:56:56 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xdd030000, 0x0, 0x0, 0x0)

11:56:56 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="b29ea88afdd6086b712b694500f0ffffff60e5ffbe6a0cc37580695830", @ANYRES16=r4, @ANYBLOB="010000001c000000000002000000acd80000", @ANYRES32=r2], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678}) (async)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0) (async)
socket(0x10, 0x0, 0x0) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3) (async)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="b29ea88afdd6086b712b694500f0ffffff60e5ffbe6a0cc37580695830", @ANYRES16=r4, @ANYBLOB="010000001c000000000002000000acd80000", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)

11:56:56 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0)
set_mempolicy(0x4000, &(0x7f0000000000), 0x200)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:56 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678}) (async)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0) (async)
socket(0x10, 0x0, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r3)
sendmsg$NFC_CMD_DEV_UP(r3, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="b29ea88afdd6086b712b694500f0ffffff60e5ffbe6a0cc37580695830", @ANYRES16=r4, @ANYBLOB="010000001c000000000002000000acd80000", @ANYRES32=r2], 0x1c}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:56 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xe5030000, 0x0, 0x0, 0x0)

11:56:56 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x0, 0x100})
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0))
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH(r1, 0xd0009411, &(0x7f0000000440)={{<r5=>0x0, 0x0, 0xfffffffffffffc00, 0x4, 0x800, 0xf1, 0xfffffffffffffffb, 0x6, 0x1, 0x400, 0x3, 0x8, 0x5d, 0x7, 0xffff}})
ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000001440)={{r5, 0x236, 0x80000001, 0x7f, 0x2, 0x2, 0x6, 0x4, 0x8, 0x1, 0x1, 0xf5c4, 0x8, 0x435d, 0x5}})
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000000)=ANY=[], 0x6db6e571)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r6, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x8, 0x80010, r6, 0x0)
r7 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f64cb4b7", @ANYRES16=r7, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r6], 0x1c}}, 0x0)
r8 = perf_event_open(&(0x7f0000000240)={0x3, 0x80, 0x1, 0x0, 0x9, 0x0, 0x0, 0xd3, 0x0, 0x6, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0xea, 0x1, @perf_config_ext={0xa0cd, 0x1}, 0x8000, 0x1, 0x9, 0x7, 0x8000000000000000, 0x80000000, 0x1, 0x0, 0x8000, 0x0, 0x7}, 0x0, 0x5, r4, 0x1)
pipe2$9p(&(0x7f0000000040)={<r9=>0xffffffffffffffff}, 0x0)
close_range(r8, r9, 0x0)

11:56:56 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e) (async, rerun: 64)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00000000c0)={0x0, 0xec, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async, rerun: 64)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r1=>r0, {0x1ff}}, './file0\x00'})
r2 = syz_open_pts(r1, 0x212101)
r3 = dup3(r2, r0, 0x0)
r4 = openat$incfs(r3, &(0x7f0000000000)='.pending_reads\x00', 0x121200, 0x24)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000100)=0xd)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17)

11:56:56 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async, rerun: 64)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
dup(0xffffffffffffffff) (async)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0) (async)
set_mempolicy(0x4000, &(0x7f0000000000), 0x200) (async)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:56 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
r1 = socket(0x10, 0x0, 0x0)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$packet_int(r1, 0x107, 0x3, &(0x7f0000000000)=0x4, 0x4)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:56 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xf4010000, 0x0, 0x0, 0x0)

11:56:56 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xf5ffffff, 0x0, 0x0, 0x0)

11:56:56 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x40086602, &(0x7f0000000080))

11:56:56 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00000000c0)={0x0, 0xec, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"}) (async)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r1=>r0, {0x1ff}}, './file0\x00'})
r2 = syz_open_pts(r1, 0x212101)
r3 = dup3(r2, r0, 0x0)
r4 = openat$incfs(r3, &(0x7f0000000000)='.pending_reads\x00', 0x121200, 0x24)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000100)=0xd)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x17)

11:56:56 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
r1 = socket(0x10, 0x0, 0x0) (async)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$packet_int(r1, 0x107, 0x3, &(0x7f0000000000)=0x4, 0x4)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:56 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0) (async)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff) (async)
set_mempolicy(0x0, &(0x7f00000003c0), 0xe0) (async)
set_mempolicy(0x4000, &(0x7f0000000000), 0x200) (async)
syz_clone(0x80000, 0x0, 0x0, &(0x7f0000000680), &(0x7f0000000a40), 0x0)

11:56:56 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x0, 0x100}) (async, rerun: 32)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (rerun: 32)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH(r1, 0xd0009411, &(0x7f0000000440)={{<r5=>0x0, 0x0, 0xfffffffffffffc00, 0x4, 0x800, 0xf1, 0xfffffffffffffffb, 0x6, 0x1, 0x400, 0x3, 0x8, 0x5d, 0x7, 0xffff}})
ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000001440)={{r5, 0x236, 0x80000001, 0x7f, 0x2, 0x2, 0x6, 0x4, 0x8, 0x1, 0x1, 0xf5c4, 0x8, 0x435d, 0x5}})
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r6, 0x0) (async)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x8, 0x80010, r6, 0x0)
r7 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f64cb4b7", @ANYRES16=r7, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r6], 0x1c}}, 0x0)
r8 = perf_event_open(&(0x7f0000000240)={0x3, 0x80, 0x1, 0x0, 0x9, 0x0, 0x0, 0xd3, 0x0, 0x6, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0xea, 0x1, @perf_config_ext={0xa0cd, 0x1}, 0x8000, 0x1, 0x9, 0x7, 0x8000000000000000, 0x80000000, 0x1, 0x0, 0x8000, 0x0, 0x7}, 0x0, 0x5, r4, 0x1) (async, rerun: 32)
pipe2$9p(&(0x7f0000000040)={<r9=>0xffffffffffffffff}, 0x0) (rerun: 32)
close_range(r8, r9, 0x0)

11:56:56 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xfbffffff, 0x0, 0x0, 0x0)

11:56:56 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xffefff1f, 0x0, 0x0, 0x0)

11:56:56 executing program 0:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x678})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
socket(0x10, 0x0, 0x0) (async)
r1 = socket(0x10, 0x0, 0x0)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$packet_int(r1, 0x107, 0x3, &(0x7f0000000000)=0x4, 0x4)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0) (async)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x1000000, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

11:56:56 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000021c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3f0400000000000000000000000609000040"})
r1 = dup3(0xffffffffffffffff, r0, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080)=0x17)

11:56:56 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x80000, &(0x7f0000001480), 0xffffff7f, 0x0, 0x0, 0x0)

11:56:56 executing program 1:
r0 = io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x0, 0x100}) (async, rerun: 32)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (rerun: 32)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)) (async, rerun: 64)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) (async)
ioctl$BTRFS_IOC_TREE_SEARCH(r1, 0xd0009411, &(0x7f0000000440)={{<r5=>0x0, 0x0, 0xfffffffffffffc00, 0x4, 0x800, 0xf1, 0xfffffffffffffffb, 0x6, 0x1, 0x400, 0x3, 0x8, 0x5d, 0x7, 0xffff}})
ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000001440)={{r5, 0x236, 0x80000001, 0x7f, 0x2, 0x2, 0x6, 0x4, 0x8, 0x1, 0x1, 0xf5c4, 0x8, 0x435d, 0x5}}) (async)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000000)=ANY=[], 0x6db6e571) (async, rerun: 32)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x11, r6, 0x0) (async, rerun: 32)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x8, 0x80010, r6, 0x0) (async)
r7 = syz_genetlink_get_family_id$nfc(&(0x7f0000000400), r2)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f64cb4b7", @ANYRES16=r7, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r6], 0x1c}}, 0x0)
r8 = perf_event_open(&(0x7f0000000240)={0x3, 0x80, 0x1, 0x0, 0x9, 0x0, 0x0, 0xd3, 0x0, 0x6, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0xea, 0x1, @perf_config_ext={0xa0cd, 0x1}, 0x8000, 0x1, 0x9, 0x7, 0x8000000000000000, 0x80000000, 0x1, 0x0, 0x8000, 0x0, 0x7}, 0x0, 0x5, r4, 0x1) (async)
pipe2$9p(&(0x7f0000000040)={<r9=>0xffffffffffffffff}, 0x0)
close_range(r8, r9, 0x0)

11:56:56 executing program 2:
r0 = getpid()
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={r0, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000005c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {<r1=>0xffffffffffffffff, 0xee01}}, './file0\x00'})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='syzkaller\x00'}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sys_enter\x00', r2}, 0x10)
r4 = getpid()
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={r4, r3, 0x0, 0x0, 0x0}, 0x30)
lstat(&(0x7f0000000600)='./file0\x00', &(0x7f0000002a00)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
r6 = getuid()
setresuid(0xee00, r6, 0xee01)
statx(0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00', 0x4000, 0x7ff, &(0x7f0000002a80)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0})
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='syzkaller\x00'}, 0x80)
r9 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sys_enter\x00', r8}, 0x10)
r10 = getpid()
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={r10, r9, 0x0, 0x0, 0x0}, 0x30)
r11 = getuid()
setresuid(0xee00, r11, 0xee01)
getgroups(0x1, &(0x7f0000002b80)=[<r12=>0xffffffffffffffff])
r13 = socket(0x10, 0x2, 0x0)
write(r13, &(0x7f0000000800)="240000001c005f0214f90408faac470002000000010000000000080008000dc00e0000ff", 0x24)
r14 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000002dc0)={0x6, 0x10, &(0x7f0000002bc0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x200}, {}, {}, [@exit], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000002c40)='syzkaller\x00', 0x7fc000, 0x54, &(0x7f0000002c80)=""/84, 0x41100, 0x78, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000002d00)={0x4, 0xc, 0x9f, 0x9}, 0x10, 0x0, 0x0, 0x5, 0x0, &(0x7f0000002d40)=[{0x0, 0x2, 0x9, 0xa}, {0x1, 0x1, 0x10, 0xc}, {0x0, 0x2, 0xa, 0x6}, {0x5, 0x4, 0x9, 0x3}, {0x5, 0x3, 0x5, 0x1}], 0x10, 0x1ff}, 0x90)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000002e80)={{0x1, 0x1, 0x18, <r15=>0xffffffffffffffff, {0x4}}, './file0\x00'})
r16 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000002ec0), 0x400000, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000002fc0)={&(0x7f0000000000)=@kern={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000002940)=[{&(0x7f0000000140)={0x148, 0x21, 0x1, 0x70bd2d, 0x25dfdbfd, "", [@generic="d2f95420052129720174eba99d757aef96dd779918bc1adfeb0132ab56ce50c130116001eafff34041793b97cd39a4df0ecf009913c09ffa2a9472bc514c4cab7a7005bcb9bb4f6e4c351ebded32bd66ee5f3e4bd1411d875dcf610773261e148ab9d4646b3502b81b9a69fdf3513c08d32600ef0e7bffecfee93719306adb1ea04602a392dfa4bf9ab69ca2f9cdbad7d7ed6fbba3c31ed391918a2eeae55baab2f8c432cd610937834e1d2f4a56a40353043f83a5d3", @typed={0x8, 0x6e, 0x0, 0x0, @pid}, @nested={0x10, 0x55, 0x0, 0x1, [@typed={0xc, 0x4a, 0x0, 0x0, @u64=0x4}]}, @nested={0x68, 0xc, 0x0, 0x1, [@typed={0x32, 0x46, 0x0, 0x0, @binary="bb816d27e847fe68a41d2d59f45340248da0ff910dea779741674b1de062536c717b40ca39191f52280e41f3c2d1"}, @generic="d681f06ea4d0ba171dc63820f3f906ce0ec0bde1759db33fe4239e81a30ccf6cc6be21de65a41ea8f5e886663584b552"]}]}, 0x148}, {&(0x7f0000000a80)={0x434, 0x22, 0x1, 0x70bd29, 0x25dfdbfe, "", [@generic="7c32a34058e9086913d382b516f257a0f93d9b199544723c97522a568d20947dabd9649b5365afdb171f7b4b0218e7b6750a8d807079131640a05d5a49f3cb53c1712724329b7ade75888d9d90e32b51c2e2aaf123c94a0ca8684e7fd261df8b9df51cf2b1cc752c58b21d70ab19eb1e6bcfb5c1f516693294a14592", @generic="a8a2bc3ef7e772f9bb758102514272fc403902cdf610d72fb5101aee9037af8a272a276231b6c9d4979175a22ff6db55419d876ed0f9f5d6fdb0b59201b9390c5d3781745a6dea71eb77e30b7725682aa0a3aa609a28999c42be725db02fcc0f58be3d979451ccdbc1a98d80000ac2596ec90e55d62da0e54417fb17075ed8e960b27ac968e2124adf4a523e1d7e66cfdc3b3b9a3224c7c9ef9e386a02abdfe9d4fef9ffc2ece331", @nested={0x14b, 0x5f, 0x0, 0x1, [@typed={0x8, 0x51, 0x0, 0x0, @fd}, @generic="70bced2cf8ee7c84ba8d0b80e27249bf5af23b5175fa7d7c50b7733a5114fe2aba422c973618a85dbf9c7c1ded5994db9c270870c2c805b2799536cb297a6f60106004add967fd18d0ee846579ee4d286036eea43807992df9a2", @typed={0x8, 0x1, 0x0, 0x0, @pid}, @typed={0x8, 0x22, 0x0, 0x0, @u32=0x80}, @typed={0x8, 0x83, 0x0, 0x0, @ipv4=@loopback}, @generic="ed35d3146beac6da25214766dedd095e18c0b4463c006652ad6fd0696b97edaf9a67781b3925fd8126e4b75503fec0192972ae1d226b3ab07a3ba01fabd4335c3e6e03fe237139156a72810eb56aa59da6307a006a56b2b0de1f74f8c733156505512760d4964b3eab3ce2245aaf80e590f6a1b5d2b2d5c9ac3b7b1afe0708b1c5a6bfd1213fdc21db69ce6236a1d5f6c52613dfda901c212945f38b66e5199b28a93d7f4e050696527115b8489eccb1897deb44088ac9f99ecad0cea18a547f205b14169dcffa9d3f5678d767"]}, @typed={0x4, 0x90}, @nested={0x101, 0x7c, 0x0, 0x1, [@generic="77f321def6b298d4262ae3272f1d9332d7f6840a34e83996766330875506e5753cca08744898ad43c858d43ebc81302d73da38c702f4d1ae1ef8a31a04581a36705ceda5a8ae56189b9e7d5d9761f418987d54d2673fdd054e681c14d30e1b3925dafcd0d6dd6ac7d85e13ad2c1a849f9a1673230bae2fba0e89e465146cb966e8167cc35a52c7cbffe3ef29aebd7f59c9ec36efca884d45b2e0ce14", @generic="d28ef11e17f88353f0d34b2942157f393d5e800e385bc40d6734575aa1a00f38af1a844e4df52830f8d144e9394419aa748278578bdb1b6af344d5da0f0c7d6f4b1e277df8cbdb0fbec746e04cb0a24a762dd24c10115965d24a455b5f4cd079bc"]}, @generic="3f178bc5eafe90f0fd6c012417ec4a127833d700659056c41899d8e734bff88e7ab5b5d3c06fe67d1ce9b7234ba4dcc824f161d3278f4cc76e91e5609f89bedb451a75d930f038041efd973b01e8411866d6f196fca6f1caabc2997e810a2aeb66ed8cb391991d1ac2392692609f9ba4cb9f9beccafd74073fa6e601f4502c6ac7ef6f55c5e5cb671a2937528113b009ed2e441b1d14262fe364111fef34afe4b2bff4cf02394f8dd39d73ad"]}, 0x434}, {&(0x7f0000000ec0)={0x3b8, 0x20, 0x400, 0x70bd25, 0x25dfdbff, "", [@nested={0xb8, 0x87, 0x0, 0x1, [@typed={0x5b, 0x49, 0x0, 0x0, @binary="a6d2060cc1ac6194f9a78ce4d52aabc7382684007da0b67e99681f28d17db3448f09eee6071e8ce52a20eb7b6ef9beaf4f94aeb7eed5e8550a14ef0526436e82b96cb5b8fc9bf61e1c08f0594f62e26aa788bf1378afd6"}, @typed={0x4, 0x17}, @generic="0ea3f2a960f11ea16ebdbc50ea75ef07fadfa095f0b819f79ad9ec8d01d4bd2bc485fd83b91d89b5f36482dc51bc3be7a0038ffe032f06a83849e794f76f2b867fa535b3811fc9f745fe19e6e8126fca3de69d8a"]}, @typed={0x8, 0x45, 0x0, 0x0, @pid}, @nested={0x7f, 0x73, 0x0, 0x1, [@generic="6f7e73d0b51c9a20067f9bb500ca84c2319042280db379c7c69bd61d0db7d66ea0d6a5d52a262c660f5bc73e04dc8ed38d969d8f5a075e41620e84e646a7b89ce5501e07546d7401a8dc7d9f620fdc3453c864b2f46f53e340ccc1fab41d1443fe9d89d7e8e7a72c3e445809af9bc5e6d94548d123efe0", @typed={0x4, 0x56}]}, @typed={0xa3, 0x2, 0x0, 0x0, @binary="9b7262fd4c62b4a9c124875fb6d62990714eadd44816d5737ff8f74ba2ba08a56409130dc48d666414f0dc1ed56aeedc82446e1937b0112c2164bcec47214fd3e2705c3a49671efe774eee361b1420a888d28a188ebf1903a7ce5be334c6860c394228dd131fc9676a7f21dde1fb63701c43da7a75b3baaa01f10aa3ec8cd70f19179b54b787eb04f3a2f5a6b186b782bdaceffd23ce8dab673e3736ee29f0"}, @nested={0xfd, 0x31, 0x0, 0x1, [@typed={0xa, 0x5c, 0x0, 0x0, @str='\\\xe3/[]\x00'}, @typed={0x8, 0x1c, 0x0, 0x0, @u32=0x4000}, @generic="046b08d845bfc9dbce96f36cb9e0520a7d8484d9728611e9977462b9306ba0d23bd9b51084ca40f2b0683e794f9d85a291efe27683a0252f1e460f056bd84860239529522ac579a63b65ce5c26be5e60a5092ce19556be6352bf887cf2adf0fbf344e40321a196a5212f4fd5ab68d10d72799393dc730d1a4097960c33c117458fdb0304af21fd876ff1d4ede07ea7132fb5dee8dcf52bef7ca596ff84196480c5b7cc31eea14a058009a61c93804763ff2f4c27b2718498d8a927d04faec7bcc6d5e6363d58e84ddcc1bc12221a758dd04c262cc0389a9d3f9e4a53a01a36d36a41430d12"]}, @typed={0x8, 0x27, 0x0, 0x0, @fd}, @typed={0x14, 0x5f, 0x0, 0x0, @ipv6=@remote}, @typed={0x8, 0x7e, 0x0, 0x0, @uid}, @generic="27a3d4c09775388473de4fdbbd39edebe11c401007dc3ff3077eb2bc69900a164ca58dc88f4cb649a3d5a8a91ed34ee984efe6a3bff2348a9562b60195640da238982f3781c379d0c3c5502f0fbc2390b3105d7b67c047b4eb796aab65bf73d7e6db71ed92ba6502973b5bd36cfb1c59f4672608ef06f2c0b194b05da32d35fe1b7a84f4294acfaf889b1abc3f90ceb6c94726d8e04552ab1fc17dec93"]}, 0x3b8}, {0x0}, {&(0x7f0000000400)={0x1c0, 0x28, 0x200, 0x70bd26, 0x25dfdbff, "", [@generic="ff3aebb7", @generic="6486709b1dab9099ee13547073c9a68ebbaf6ba2a23171879e7a697c3a282ca52817998b56d6918265ccd722b152e5ff87cab8d022ecc5312687c0603c5e5faffeb9860e54edfa47303d347a495520a347b0ff46bb71bab8a18b709613deba1ac5bf2414781e929199b19c462afb3a2675a0efdeec0076a9fff817712336c437ced1c45d6e8518660d6bb63ad4dcb5", @generic="1fccd6a1799ac08667403fd3678567586ddbfd72cedc59558e3dd81ebacbb4cb6d21c0be50cf4060a1ff4f434c323702", @nested={0xc2, 0x42, 0x0, 0x1, [@generic="00c0a5265a8d507cc375150a3dc488dcc5a798507a513d3eaa125d1857a6f0c27950eba3b1a7fb6845579804987663a60f0040ecbfffddd97183766c07c5293e95f5a51ff9133908c590910e96bb1d9fac6a6bd64fbbf7c010d584b0c56acf010478696e3c8c29e4c8dc651fd6994b1e8d60cb7b8e3d76fd11e6", @generic="7cc5124a0c077006c4083b42e269c77d3f68c4bdb43612a2c60ed641be675e16c36ca93d6f13516292a5c026e2e0cec8509fcbfb9508d300294b420a95b22d4fc3f1b339"]}, @typed={0x8, 0x46, 0x0, 0x0, @pid=0xffffffffffffffff}, @generic="b25fb388ac6783804fda44c45b60eb8ebadb5ee66fa134cba1ae0682", @typed={0x4, 0x4f}]}, 0x1c0}, {&(0x7f00000006c0)={0x138, 0x3d, 0x4, 0x70bd25, 0x25dfdbfd, "", [@nested={0x128, 0x89, 0x0, 0x1, [@generic="0b51a648e2573cb252b55e8c", @typed={0xb4, 0x50, 0x0, 0x0, @binary="ac6a2340ae33be4075cf81af53c4042160c4600244778dafbd816f7c74ada3a58b43de0622669a148f87040fe2a9e4924dde9845e347a41fbb8d344beafa63ea07a82f33f8d6d9718de0a2e1b3ccdbd07d1ceeb2316a4b70e67d45683f48c85de1c792fd95d5e2972aeaeee97c52a847ada6ea02f1b1fa1dd38cd04b38073bbb39edb0005013e868972812e6215e92f2d6a325dbaf2e38bbdb99005f6fd76a003ef9427b613b6aa004e86fd909214b75"}, @generic="c723a771db5b", @typed={0x8, 0x63, 0x0, 0x0, @pid}, @typed={0x8, 0x9, 0x0, 0x0, @ipv4=@local}, @generic="93b7a0db31a84ddc95c04de0633d76c669275f2d15a01c7cc0d6bec709a1a80cf2b2565edc21d6e23709603fe4b04d330343487a9d406fd9e49b0220fd72c9da0f5e244c3cc8", @typed={0x8, 0x82, 0x0, 0x0, @u32=0x5}]}]}, 0x138}, {&(0x7f0000001280)={0x4f0, 0x1b, 0x8, 0x70bd2a, 0x25dfdbfd, "", [@nested={0x2b4, 0x88, 0x0, 0x1, [@typed={0x8, 0x38, 0x0, 0x0, @fd}, @typed={0x8, 0x4a, 0x0, 0x0, @fd}, @typed={0x8, 0x4, 0x0, 0x0, @pid}, @generic="562d60dc7b43cdd98f3a4e9d669255a1f6ea996bc85b49c82edfc7071a90b493b1fe22da80fcf6a21e71085b669c13365e323dbf2aa201100fb2a733cf070a6727d7f9d2f43a2b2ecfc31e0e6ac899d4b0066f3d5853f1dba010385a09299973c757a2870c8212d3efde3400c1d0a43d1ad014fdfbb6e31ca7bf6ad27b2984cc9f5bf9b922bff049c40f9cff32d24004756451f618a008cea5b36a2faeb62e57a87007ed613d3335dec67e1152166c4d39e082efa0f144d3ee9a4dc128910e13f8139621f05df6901702a47858028da7b302190e85f0581bd16d38e8", @generic="69609245e94655bb0ce2c613a8a5b73025a2a848c135d664d7b1ce1a646d4e2109a937c4cc033098d4e35b4bb8adcfe9a6e63ae2ff0d2dc7d2247a3e4fdc36e6c2c8ab35fa644635a54a38fc8de59c81bf8947a196e01536895d6438b9b36942402d1792ec72b17d", @generic="3831236e84ee2125d4f86f8d35f5f3fbc1e4526d5efd2188b997301c9256cb9b2525bc2f6c79c804f460d018fd346b202b686e7cd98ee475371c782cf6f6724b05ca54b0a20e223cb81846890b6b0c422d77ee89f14485a82dc1b906c58ff50bf0037cd9387cca056231eed55c654085a20e782aae0b469be865691fb300873914842eaa059b7f55", @typed={0xcb, 0x1c, 0x0, 0x0, @binary="6acc9f77f7d4cb04dedff336bb4bf945ae776d13d8d01d2cbf24d047349aa92e12dd5c82dae365b8c5b4bb8e30e581cd3ca34e7c4b3e0b7152a1d67e773213fcdb1989ac0c0e6a0fd58b31c6c61bfd230ed0370b6a30f097988e37c80e892a3f2327578db7c82d8757c079e3b18df3f63443a84e612efd3ce28b298e184fc2d64ada1b8101503b3d66c53041982877a80e55e8bbf381f379e5c03593a23fb570c21d78ebdf745dc6bb1ba6747b910582b238c0223462bf7a3c05a91a7ed4d15f17c9e61b0fad53"}]}, @generic="5ea24af5e58615aae165a02d65fa2d154d00d46d8d6eb401a94c44758563df1d67c8db5b99e41c4d3c5bc0f10c8fadb277a4f7790fdae4d10893fe2976f91668cbdf30f06d1075d4d384935d666902279d57e775013a0d51629dea4e5987b0167b4cbede717ad5a98cb34f094f59768fe135b6e49d3c9c010269a37af7d034a0a48f1ca2bb91fe", @generic="f869af51f6668c6f627cf4b186aca47a544b70b3415a65c6d0a04eec9e915e098e93471fdc15ffde7b6c1a645e9611c6e67547c51fab7d3115fd810f7d030f8b3f6e91755e5d6bd6001db558c8281f2ff8322088dc36304c641981bf899350187fde2e2efb47c3e04f520ea7133d286a8ee24ca143554d39efbb147e3a8866abd6f010a2059e857f2a038d15a2a700ad00c6532129998f1504c8ce5d87b136156c6fddf4e0b9", @generic="137811101244aea6c5bb604050c199e1b0915563ef3c15d52ca1658308ac51875eb226163b63c88f8361e3433aa3675d4aa7f00f6ab6a3238d5dd2b15e21", @nested={0xbf, 0x25, 0x0, 0x1, [@generic="047c2b618a6e097efb6bf18ee06abe1f979f6c430613778696dda21eddb4b5a897a5ddfa823b4d12dd46d174c289e51ae25438c149aa83b4a563461a97be78c8ed18b84e5ac7ab26d6b037e8445ea75ac2fbc406dd210beb1e528e4051068a8e986d2ea2e16b4ea6ef60b656f707bc4ac7005e88d91ce1ae47e153c9fb", @typed={0xc, 0x88, 0x0, 0x0, @u64=0x2}, @generic="0e788d2f69bbf10b50bba14d97ec6f18874b14f36d3a1e85808e87673640a3050892ecb70700e43c2b2442ccdc89e701e277"]}]}, 0x4f0}, {&(0x7f0000001780)={0x598, 0x28, 0x200, 0x70bd27, 0x25dfdbfe, "", [@generic="d1f8a104f6f47e8ef8903a78d5eab95bf2b9b6fa18a9f03cf01927fd1e818b6028d7e46a05f9f43c307b2023db9948ed5003ffefb85764d587637e9d337423ed5b6961357c431db7d034fdc57083755b6340e3bbc21b1095305ea0f6a0ba25585d32179523e718ef57ce4d6e32f8034728d81adb623c2edcfa668ae0a999b30aad4af987aa015781f525dc911fd61cd55293db0ba168bbfda52dc72f2828097f40a5eae25d42504836250e07d74916dea2f5bcafc7406b52baf5be44673c008953cb2c8c067ee5", @nested={0x11f, 0x10, 0x0, 0x1, [@typed={0x4, 0x17}, @generic="bf745a4cbbb716fc2a3a7341bf7d1a8974b4b7a5d015c6dce20e920963ca6e986d2ec6a15b50c9c9807261d4fad481866fd2a5a1ca4916a82887a53f40a348400c28ce226af59dd1f59c65651196939c726c858a2fc05a348cf21502d36cefacdd8c18d51b59bce7dd33b405fbe69b3a29bf31f0b9dd2661f2749c5a0f177385c51ae3074920edc1f45221899de595c0e1074504fab2651c6b8330d8dc3b76feb21967fa46215bc67b67a991f4212049e75068d63b5faaee26d31f5fcc6de9fa1b23089d9486", @generic="deef10d9abddaee386bf82a0d60a3e61ee7369ce826fec8fd9dd010d6f9a2e4d7efc9c6573271fdbe20b7e92900d7de41359cd5fda9566ae5f04ae6825abf4e39d4a13380231eba7133e557d27d83c2cb5"]}, @nested={0x153, 0x88, 0x0, 0x1, [@generic="6a11774dfb6e1a2a39bac5b31074d814de73e09bf37f55100dd609e645d052a995df8fa6247cce6c82d904570a6bd71464e709d4d887ce1fea8a5a4fafc94d", @generic="99cbf23151b6c7a8f859fbe03ba9c98729fc71e0ae6d32cac328e5376b1ff12dec7145c872663e7c14fbb0395cddda1c503f0a2945bd97c5714bfeeeee96988ca60b722529c602b2092051aaf6e22afa05dd05170f7bb24885e41a59167a2323988fe242c84d3affdfcbb8a41cb2fcf2d48fcaff033ae0fa1ce36ab9c5620cae5da661d2c998c5a9b5403d3c4c9594d75fa636187dd569d569b67fea1202a3c1a578a37bafe8", @generic="a61623235121aacd733c4181719192f59c97ce700e613bbc7deb091f2bf33deccef0b755de342956df89fbf86ef56647cb31f6ebbdcac9676b8b69cdfebec437734671b3916bcefbaf28c9438de1dc25c00f2167024fd729c951f21143d4a2302a6475a530281fb0fd95"]}, @nested={0xe0, 0xe, 0x0, 0x1, [@generic="f3661d3fd86c8e71fcdf93a7966c2d148d087f8e0d9e7ef14d0a5279408161d59ec5b8291d4fa10c58237b88ad8e797861d107531b8825790e92d415dfff01c3a052383ae3393ec141ba08efbf7ea8a656c78e671e0628eba66511051d7b727460bfe44226ff1695d0d631e53d873ae2d7d07cb12da4fb619903c8fc3d6854c756626525d1aba5152ad839d6c22072e68d75cb0c0227fe2c99c1752f10bba61e19ef65f850149672a10cd1fdd5a48b005bf6ae05d03efa3d8be6a25d31c6bc52b01bd45001e4d95c3e74cfd12496c745", @typed={0xc, 0x37, 0x0, 0x0, @u64=0x100000000}]}, @generic="e75d94b7f5791d09daf09180da527d2d88b41042a06cab6caf8c0379aa425bc882d9882ffcc64fa3260474f449beb15fc3a57472363c91aae3fa8b589365a9eac9626e3a83145ae9a4bdaf43836cfe6a5a73b021227881abc91899af4c748405b4b75c5b3fdb71e1710d8502fe0c1f752d61ab35dc30c47119bc060a7c19b6624883402d555c869bba1d57aab471fe0484666ebd8b48f95f0b9ed32fba4df6a6587b2dc2021a6e6cd6d114adaab6c6fe2ca5fc5d6f5203b4aedaafcaebcde0a3494cbd67049f86a62254d06014337f4f380319805a7b055dc9f3bb58bb107c3789207a7abcd7fcd5", @generic="a9bab764c46e411791779c3a42f50aca05c9698ac3bb448641fc2a1e7433cb467c96bcc97158f6bfcf747365262906e4ce6da843358266e939987ff6a7641d8169c0757351b340a451976752b97125c2392cbc0523125511436de6655bed71db677d5374ca52cbb246644c654dfae7915274aed174108a9bd0d11f0ee37588fd28faa01e49"]}, 0x598}, {&(0x7f0000000800)={0x240, 0x39, 0x1, 0x70bd2b, 0x25dfdbff, "", [@nested={0x170, 0xa, 0x0, 0x1, [@generic="60724675f9557e5627ffee1c4c05c05a3112f2eeb7dfc704382c900cc203de0fbe0f0cf8", @typed={0x8, 0x68, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x2e}}, @generic="5a51dae37614e666", @typed={0x8, 0x87, 0x0, 0x0, @u32=0x2}, @typed={0x8, 0x85, 0x0, 0x0, @pid}, @typed={0x87, 0x21, 0x0, 0x0, @binary="c7b7c016cc2dc8962384307396fca348376498c497912c2e6a7e2af394730073c11cd80cb40d68e6ce1b25c31aff55d1a6c2386e824e9ad1b2c58311c8e75ead7488ed8486accb54f888a984c825a198bf10d712fb99203c5b28e683a7c081553f3e8c686ca4f1db592920cc3b3d7c8bbd6f7802a76a5568a122379fcf4d0706d269bc"}, @generic="c1c9343f7f34b3294c05f0df7852e5d467dcd58095099fd6e110b6cae1f8bfd8c9d8201195cdb08a73cac23e623be47cbb9488cfe733e44f1d43110a04065fa669", @typed={0x14, 0x8c, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @generic="695d2f4db59427749f00f3697b01756036f25ccb9068141fd3517d75244ce2560d1b5ef9349904862cb49d31a1678b02990d6bdf6f4198773682496a8c34f9d8cb117c666e97ab4d10795d"]}, @typed={0x8, 0x70, 0x0, 0x0, @ipv4=@remote}, @typed={0x8, 0x1d, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @typed={0x8, 0x94, 0x0, 0x0, @ipv4=@remote}, @nested={0x18, 0x11, 0x0, 0x1, [@typed={0xc, 0x7, 0x0, 0x0, @u64=0x5}, @typed={0x8, 0x53, 0x0, 0x0, @u32=0x2}]}, @nested={0x86, 0x37, 0x0, 0x1, [@generic="e58fa09b286d6e32ed1d379f19223accfb569abe73622a78b26dcf6265a9f230a3b1261370f2", @typed={0x8, 0x43, 0x0, 0x0, @fd}, @generic, @typed={0xc, 0x95, 0x0, 0x0, @u64=0x5}, @generic="8623182ec954e09e260e196ee3355c165293743ac11c7bed4b69b071232c58039460a2d057eeb3e16e558c835bc12d7e389fdac20c4d8291904e62d6d89e3688", @typed={0x8, 0x8b, 0x0, 0x0, @pid=r0}]}, @generic, @typed={0x8, 0x2d, 0x0, 0x0, @uid=r1}]}, 0x240}, {&(0x7f0000001d40)={0xbd8, 0x19, 0x300, 0x70bd25, 0x25dfdbfd, "", [@typed={0x14, 0x26, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}}, @generic="93466c42929b2c8dec7e3b73b3f03f810d", @generic="08fc3a32bc91c29134c161bf38d77eedf63834c8f9680841c6c1c392fbb31c6b60a0470bd2284e255464d777a4a8fb32f7bde042280da5e7a39dbd4ad2ce2889cd6b06db5547073076ed75fc08dca6ab98e445fea7d7245c944c24ad5fcb13672680fca4feade58ab7fb8bf7c10f62f12466d92196d8b88dbd69978cd505940a6b5f8ed935ac7d56730c818c100035657d", @nested={0xd4, 0x87, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @u32=0x7}, @generic="f2c53133f923e861914f0d4703d3256dac1e86a51c551ea8c23c6cf5256f38304e14b4d58504b5bfb33577e3250dd812c381dc9dac81a12aca399d3801b07874673434de337240cb77a04507f0b477712a3ba671e197eaa228973bde8262b0dc73bf8d6b2048462294896bcc1ae7152bb21b67249bc9e948f02d8416aaf59dc80215c4c42f494d811e99d3e13dc83aa84c10d7acd766e1dd6307b42de6cfd3b2dbc69666348af62904ab32eb2f680e8523f7b33e67156ed0d2d93fc6aad8e02996274134da945e51"]}, @nested={0x3d8, 0x86, 0x0, 0x1, [@typed={0x86, 0x3b, 0x0, 0x0, @binary="71456919c549b32be4dca8c3df81e79b510061a225bdd34b046b07085f6541ae5fe9d9ec761c7417dd15c9fdae0c59dbd62cf795ca7cedf5c929615cbfc5e8c695d9a2592a3397bdea2eea7893906ee7d61321ed2569ebb054ae36626cfe16b170a48a10d5a8206c44b2dcd00a147ba94685aa852e67b7c2876a98f7c523ec989994"}, @generic="7bff0e515e658b651b2b9ba13723d9ae132487d6c33402a36eabfc94917120fbbd6a0aa0cb4289db329cb85d631e387c5492b2df4024cf636635398e121f8b57215e71d58ebfefcc0ee5985858f7694b57e83c83b0d926a1434e1c5fbc7f2dd73262cd8d5b310b792734694f90592ff836c8b5beae96b205e68b3088969d0548948fdac7ae02bb9d894d9ab120f5bfa1a0e1e5856a8a1acbe14fa739c782512070b1cad21cc68cc1ab04e787d100d36fa3d4d6d8609f30c0b4f7c3d04e573a568d55ff66f1c93147546e0f4ed780a7a33f773feaadf80e7bfb328b9fdd8fee5cbfc95b7e773c", @generic="7d877e8948e6264bea3d9a6fef13439c0bb6de7e514f1854d777e0fb98485944b71ad769f6badda8b76b0477ce9ebcb42fe070263bd99961499c6bfbd00c1567f088994012134ac5f70743a17bbafd4266d19691d65f03f3f5d8bacff49b418da2dcaa70aa092e7fb89a4f57f16fcb3fce720379a13e8be0e154099d98ee51535eb541fa856976c860e7e43851cfd37b3cf82d7fd9a7b017cf9c97fb76d15a51f662dc60fd7ee2ac9b4408ae7dd56d784fe400e5abece9a54c13d1b4d299a0eed803e5a0dcf121f249f1917df4a7b558d2451b61665f2481b8873b93a7a5", @typed={0x62, 0x33, 0x0, 0x0, @binary="86db7753234ca28dbd87d5988aac8b7fe73b1e6c95945f7b5dd4b15cb1dbf3c8c6d2bbe4b8eb3e3bb869fd9bfd60c33c14e8eba7c9cae97093a1805a6c471942b53336a6e35fdd33e711440a00b4a50c9330fe95e5b574d0d51c06d911eb"}, @generic="12817cb9f1015d42617f57fda2c712571d240182edecfffe4898e66e8cec9dddbc8c34d5bfef7d47a590852d8e0af8b5e3578af7db6fa927534f52b068b8173da03b5dfd50f246b31b8126e0d200b226c12c0170349a5c4cb755fc43caaedcbbcbd937908a8575fcec", @generic="1d71d3c79d4ae45310a83cf84ef744d1e2d0c4aada73dcee0b38c065ceb42384bfd74dc3886dceeac122d575915f95ed367736d146ac8c05f9b87f163741c30f39", @generic="0fc0d5ef276fa7cb572b4d6c646da5a9876075af23969b34add14ba49399ee81707a9642233f3bfe6e6d039812ec498bd88a7fe03364efd895c2d46f411b2500d72bb34b4236e8c5b1a3f41c4b7ddef7a361b0a75c74fa95c86eaaf7a4162445486560f941708aa52888ca423a3d37026b61c00d38cb6b514e60"]}, @nested={0x2e3, 0x90, 0x0, 0x1, [@generic="0283393c999381c7549f0bb9d74b96e501edb19c4cd3b4e749b5a24e85ea3359c665471ee816a22ee1be6f6842cb2b32acbb49f11b847ed1570c67da6d35f520061ad458db6dc8c4366889b2c51421de37dad72526eb6d5c982cc73ba44c3345ce447c836ca40f9e935ce90be3efa1af1c427765", @typed={0x81, 0x11, 0x0, 0x0, @binary="941aed5f5441fd07507c3925d3285452b740d1997f35217743274f4eb209377825cfc395962417e32826d269873ea1a15d93eebc204d80f0315152aec9ac95e80715215b4ab96f484d79b871d318ce73713c23dc5769ea738b02dd0d7c0dd1ab70bb3671c95ffadd3186a118633e0b8806ebc4de2b26e400cc54d254ae"}, @typed={0x14, 0x8b, 0x0, 0x0, @ipv6=@private0}, @typed={0x14, 0x57, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x16}}, @generic="2c95d81e62e9e5fb6ec052e3415c5541c973cb9329d6ddb9623a5e8ce226c9ea7c9bb18b476262d423ab1cc16064226f3c742e898a3fde3d280d98f629172eeaff4ec7f5244f841ecbd0ca95cd1da53f3c58051885411466883e86da328808ddd205d1345b0bd027099a5134d049cd1020a349fb12b36943dffcea20165a86736f052d4954836ce3e89f51f710948b5db33200f3812533561fc79dbd574b6749c3cd29ca245baad4337e092369e0e07be3269ebfa98849fd1371d300b201a418427f7dbc60ca0ab8e16b57c7c8c4579e3c7af60984d7cb74b2bc8a4b3505b89d91bb9a", @typed={0x8, 0x8d, 0x0, 0x0, @fd}, @generic="da4a4b8ecbc82d70cb55d073ed167b26da606d9c842dc9c0b005da89551da2609d271cfdd92213f07a28c09218d4b8510f43c5f088503078d2bc225e7e1eebc8e1f6e49c774b277a38b0b8543d61df25d