0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:11:29 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

06:11:29 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

06:11:29 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x0, 0xffffffff, 0xffffff85})

06:11:29 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, 0x0)
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:11:29 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(0x0, 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:11:38 executing program 4:
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0x1000)
perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x7b, 0x0, 0x3, 0x0, 0x0, 0xd29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f00005da000/0x2000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
r1 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="6d70706c3d7032656665843a2c00"])
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000180)=[{&(0x7f00000000c0)=""/136, 0x88}, {&(0x7f0000000200)=""/182, 0xb6}], 0x2)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f00000002c0)={{0x1, 0x1, 0x18, <r2=>r1, {0x57}}, './file0\x00'})
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f0000000440)=[{&(0x7f00000003c0)=""/123, 0x7b}, {&(0x7f0000000580)=""/173, 0xad}, {&(0x7f0000000640)=""/213, 0xd5}], 0x3)
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x2b7)
dup(r3)

06:11:38 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, 0x0)
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:11:38 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x0, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:11:38 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x8902, 0x0)

06:11:38 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

06:11:38 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x0, 0xffffffff, 0xffffff85})

06:11:38 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, 0x0)
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:11:38 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

06:11:38 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x15, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b00480"})

06:11:38 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

[ 1232.487694] tmpfs: Unknown parameter 'mppl'
[ 1232.504227] program syz-executor.6 is using a deprecated SCSI ioctl, please convert it to SG_IO
06:11:38 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

06:11:38 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

06:11:38 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x15, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b00480"})

06:11:38 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0x0, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:11:38 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, 0x0)
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:11:38 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x0, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

[ 1232.810668] program syz-executor.6 is using a deprecated SCSI ioctl, please convert it to SG_IO
06:11:38 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

06:11:38 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x15, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b00480"})

06:11:38 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

06:11:38 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x8903, 0x0)

06:11:38 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0x0, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:11:38 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, 0x0)
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:11:47 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x20, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a0000000000"})

06:11:47 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x8904, 0x0)

06:11:47 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0x0, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:11:47 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x0, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:11:47 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0x0, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:11:47 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

06:11:47 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

06:11:47 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x102204c, &(0x7f0000000100)={[{}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:11:47 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

06:11:47 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

[ 1241.657088] program syz-executor.6 is using a deprecated SCSI ioctl, please convert it to SG_IO
06:11:47 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0x0, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:11:47 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x20, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a0000000000"})

06:11:47 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

06:11:56 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

06:11:56 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:11:56 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0x7ff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r0, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000003c0))
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="ee800f47569d20723a2c00"/25])
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)
r2 = fcntl$dupfd(r1, 0x406, r1)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x3, 0x6, 0x5, 0x2, 0x0, 0x9, 0x29084, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8, 0x2, @perf_config_ext={0x36fe, 0x400}, 0x68400, 0x100000001, 0x3577, 0x4, 0x7fffffff, 0x3f, 0x400, 0x0, 0x1000, 0x0, 0x4}, 0xffffffffffffffff, 0xb, r2, 0xb)
io_uring_enter(0xffffffffffffffff, 0x1a57, 0x2a28, 0x0, &(0x7f0000000100), 0x8)
syz_io_uring_setup(0x7fab, &(0x7f0000000140)={0x0, 0xb6e6, 0x1, 0x0, 0x340, 0x0, r1}, &(0x7f00004f0000/0x2000)=nil, &(0x7f0000d9d000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000200))

06:11:56 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x20, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a0000000000"})

06:11:56 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0x0, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:11:56 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0x0, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:11:56 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

06:11:56 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x8906, 0x0)

06:11:56 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

06:11:56 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0x0, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:11:56 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0x0, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

[ 1250.658595] tmpfs: Unknown parameter '�GV� r:'
06:11:56 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x8907, 0x0)

06:11:56 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:11:56 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

06:11:56 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

06:11:56 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:11:56 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x25, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/37})

06:11:56 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0x0, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:12:05 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:12:05 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0x0, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:12:05 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

06:12:05 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

06:12:05 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:12:05 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x0, 0x0, 0x2}, 0x0, 0x10, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:12:05 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x8912, 0x0)

06:12:05 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x25, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/37})

[ 1260.075432] tmpfs: Bad value for 'mpol'
06:12:05 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:12:05 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:12:05 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0x0, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:12:05 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x25, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/37})

06:12:05 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

06:12:05 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

06:12:05 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x8940, 0x0)

06:12:05 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x15, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b00480"})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:12:05 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:12:16 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x8941, 0x0)

06:12:16 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:12:16 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

06:12:16 executing program 4:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
perf_event_open(&(0x7f0000003c40)={0x5, 0x80, 0x40, 0x9, 0x3f, 0x1, 0x0, 0x400000000, 0x48448, 0xa, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x5, 0x0, @perf_bp={&(0x7f00000002c0), 0x4}, 0x10, 0x1, 0x80000000, 0x2, 0x7, 0xffff, 0xff72, 0x0, 0x1, 0x0, 0x3}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x8)
r2 = getpgid(0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r3=>r0, {0x6}}, './file0\x00'})
perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x3, 0xfa, 0x1, 0xef, 0x0, 0x80000000, 0x88112, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x7fff, 0x2, @perf_bp={&(0x7f00000000c0), 0x1}, 0x3800, 0x8001, 0x1ff, 0x1, 0x1, 0x8, 0x1, 0x0, 0x8, 0x0, 0x7}, r2, 0xa, r3, 0x9)
ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000003a00)=[{{&(0x7f0000000200)=@abs, 0x6e, &(0x7f0000000280), 0x0, &(0x7f00000003c0)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x80}}, {{0x0, 0x0, &(0x7f0000001900)=[{&(0x7f0000000580)=""/93, 0x5d}, {&(0x7f0000000600)=""/152, 0x98}, {&(0x7f00000006c0)=""/210, 0xd2}, {&(0x7f0000000280)=""/63, 0x3f}, {&(0x7f00000007c0)=""/101, 0x65}, {&(0x7f0000000840)=""/174, 0xae}, {&(0x7f0000000900)=""/4096, 0x1000}], 0x7, &(0x7f0000001980)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x60}}, {{&(0x7f0000001a00)=@abs, 0x6e, &(0x7f0000000440)=[{&(0x7f0000001a80)=""/135, 0x87}], 0x1, &(0x7f0000001b40)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [<r4=>0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14}}], 0xa8}}, {{&(0x7f0000001c00)=@abs, 0x6e, &(0x7f0000001d40)=[{&(0x7f0000001c80)=""/74, 0x4a}, {&(0x7f0000001d00)=""/59, 0x3b}], 0x2, &(0x7f0000001d80)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xffffffffffffffd0}}, {{&(0x7f0000001f00), 0x6e, &(0x7f0000002000)=[{&(0x7f0000001f80)=""/46, 0x2e}, {&(0x7f0000001fc0)=""/23, 0x17}], 0x2, &(0x7f0000002040)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x90}}, {{&(0x7f0000002100)=@abs, 0x6e, &(0x7f0000003180)=[{&(0x7f0000002180)=""/4096, 0x1000}], 0x1, &(0x7f00000031c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x70}}, {{&(0x7f0000003240), 0x6e, &(0x7f00000033c0)=[{&(0x7f00000032c0)}, {&(0x7f0000003300)=""/130, 0x82}], 0x2, &(0x7f0000003400)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xb0}}, {{&(0x7f00000034c0)=@abs, 0x6e, &(0x7f00000038c0)=[{&(0x7f0000003540)=""/64, 0x40}, {&(0x7f0000003580)=""/232, 0xe8}, {&(0x7f0000003680)=""/155, 0x9b}, {&(0x7f0000003740)=""/16, 0x10}, {&(0x7f0000003780)=""/208, 0xd0}, {&(0x7f0000003880)=""/23, 0x17}], 0x6, &(0x7f0000003940)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x10}}], 0x98}}], 0x8, 0x40000000, &(0x7f0000003c00)={0x77359400})
mmap$IORING_OFF_SQ_RING(&(0x7f0000c96000/0x2000)=nil, 0x2000, 0x0, 0x12, r4, 0x0)
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:12:16 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

06:12:16 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x28, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/40})

06:12:16 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x15, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b00480"})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:12:16 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:12:17 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

06:12:17 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:12:17 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x15, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b00480"})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

[ 1271.511392] tmpfs: Bad value for 'mpol'
06:12:17 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, 0x0)
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:12:17 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x28, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/40})

06:12:17 executing program 2:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:12:17 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, 0x0)
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

[ 1271.829762] Bluetooth: hci7: unexpected event for opcode 0x0804
[ 1271.833143] Bluetooth: hci7: ACL packet for unknown connection handle 200
[ 1271.845639] Bluetooth: hci7: SCO packet for unknown connection handle 0
[ 1275.837828] Bluetooth: hci7: Controller not accepting commands anymore: ncmd = 0
[ 1275.840840] Bluetooth: hci7: Injecting HCI hardware error event
[ 1275.843620] Bluetooth: hci7: hardware error 0x00
[ 1277.885822] Bluetooth: hci7: Opcode 0x0c03 failed: -110
06:12:27 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, 0x0)
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:12:27 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:12:27 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x894c, 0x0)

06:12:27 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x28, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/40})

06:12:27 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x20, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a0000000000"})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:12:27 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

06:12:27 executing program 4:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x3, 0xf8, 0x0, 0x7f, 0x0, 0xe013, 0x2001, 0xd, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_bp={&(0x7f00000000c0), 0xd}, 0x8, 0x80000000, 0x80000001, 0x6, 0x2000, 0x9, 0x100, 0x0, 0x400, 0x0, 0x9db}, 0xffffffffffffffff, 0x5, r0, 0xb)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:12:27 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))

[ 1281.881358] tmpfs: Bad value for 'mpol'
06:12:27 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x20, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a0000000000"})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:12:27 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

06:12:27 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0x0, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:12:27 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x15, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b00480"})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:12:27 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x29, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/41})

06:12:27 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0))
fork()

06:12:27 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 1)

[ 1282.089319] FAULT_INJECTION: forcing a failure.
[ 1282.089319] name failslab, interval 1, probability 0, space 0, times 0
[ 1282.090389] CPU: 0 UID: 0 PID: 22529 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1282.090405] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1282.090413] Call Trace:
[ 1282.090418]  <TASK>
[ 1282.090423]  dump_stack_lvl+0xfa/0x120
[ 1282.090444]  should_fail_ex+0x4d7/0x5e0
[ 1282.090473]  ? getname_flags.part.0+0x48/0x540
[ 1282.090492]  should_failslab+0xc2/0x120
[ 1282.090510]  kmem_cache_alloc_noprof+0x80/0x690
[ 1282.090535]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 1282.090562]  ? getname_flags.part.0+0x48/0x540
[ 1282.090580]  getname_flags.part.0+0x48/0x540
[ 1282.090604]  __x64_sys_mkdir+0xdb/0x140
[ 1282.090624]  do_syscall_64+0xbf/0x390
[ 1282.090644]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1282.090657] RIP: 0033:0x7efe12680c27
06:12:27 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x15, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b00480"})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

[ 1282.090667] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1282.090678] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1282.090689] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe12680c27
[ 1282.090701] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1282.090708] RBP: 00007efe0fbf7040 R08: 0000000000000000 R09: 0000000000000000
[ 1282.090715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1282.090722] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1282.090755]  </TASK>
06:12:27 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x20, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a0000000000"})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:12:36 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 2)

06:12:36 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0x0, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:12:36 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 1)

06:12:36 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x25, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/37})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:12:36 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x20e001, 0xfffffffffffffffd)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:12:36 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x15, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b00480"})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:12:36 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x8982, 0x0)

06:12:36 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x29, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/41})

[ 1290.923878] FAULT_INJECTION: forcing a failure.
[ 1290.923878] name failslab, interval 1, probability 0, space 0, times 0
[ 1290.925793] CPU: 1 UID: 0 PID: 22594 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1290.925826] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1290.925840] Call Trace:
[ 1290.925849]  <TASK>
[ 1290.925858]  dump_stack_lvl+0xfa/0x120
[ 1290.925890]  should_fail_ex+0x4d7/0x5e0
[ 1290.925927]  ? getname_flags.part.0+0x48/0x540
[ 1290.925966]  should_failslab+0xc2/0x120
[ 1290.926000]  kmem_cache_alloc_noprof+0x80/0x690
[ 1290.926039]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 1290.926076]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 1290.926115]  ? getname_flags.part.0+0x48/0x540
[ 1290.926153]  getname_flags.part.0+0x48/0x540
[ 1290.926196]  __x64_sys_mkdir+0xdb/0x140
[ 1290.926229]  do_syscall_64+0xbf/0x390
[ 1290.926261]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1290.926286] RIP: 0033:0x7f13ca8c9c27
[ 1290.926305] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1290.926328] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1290.926351] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8c9c27
[ 1290.926367] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1290.926382] RBP: 00007f13c7e40040 R08: 0000000000000000 R09: 0000000000000000
[ 1290.926396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1290.926411] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1290.926446]  </TASK>
06:12:36 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x20, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a0000000000"})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:12:36 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0x0, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:12:36 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x29, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/41})

06:12:36 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 2)

06:12:36 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 3)

[ 1291.092350] tmpfs: Bad value for 'mpol'
06:12:36 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x25, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/37})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:12:36 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x20, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a0000000000"})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

[ 1291.253593] FAULT_INJECTION: forcing a failure.
[ 1291.253593] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1291.255530] CPU: 1 UID: 0 PID: 22690 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1291.255564] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1291.255578] Call Trace:
[ 1291.255586]  <TASK>
[ 1291.255596]  dump_stack_lvl+0xfa/0x120
[ 1291.255629]  should_fail_ex+0x4d7/0x5e0
[ 1291.255661]  strncpy_from_user+0x3b/0x2f0
[ 1291.255708]  getname_flags.part.0+0x8d/0x540
[ 1291.255753]  __x64_sys_mkdir+0xdb/0x140
[ 1291.255786]  do_syscall_64+0xbf/0x390
[ 1291.255818]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1291.255844] RIP: 0033:0x7efe12680c27
[ 1291.255863] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1291.255886] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1291.255910] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe12680c27
[ 1291.255926] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1291.255941] RBP: 00007efe0fbf7040 R08: 0000000000000000 R09: 0000000000000000
[ 1291.255955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1291.255970] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1291.256005]  </TASK>
06:12:46 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0x0, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:12:46 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x25, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/37})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:12:46 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 3)

06:12:46 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0), 0x10100, 0x0)
ioctl$RNDCLEARPOOL(r1, 0x5206, &(0x7f0000000100)=0x25800)
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:12:46 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x8983, 0x0)

06:12:46 executing program 1:
select(0x0, 0x0, 0x0, 0x0, &(0x7f0000000200))
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRES64], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:12:46 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x20, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a0000000000"})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:12:46 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 4)

06:12:46 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x25, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/37})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:12:46 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x28, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/40})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:12:46 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0x0, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

[ 1300.843538] tmpfs: Bad value for 'mpol'
[ 1300.847291] FAULT_INJECTION: forcing a failure.
[ 1300.847291] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1300.849214] CPU: 1 UID: 0 PID: 22834 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1300.849244] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1300.849257] Call Trace:
[ 1300.849264]  <TASK>
[ 1300.849272]  dump_stack_lvl+0xfa/0x120
[ 1300.849302]  should_fail_ex+0x4d7/0x5e0
[ 1300.849330]  strncpy_from_user+0x3b/0x2f0
[ 1300.849365]  getname_flags.part.0+0x8d/0x540
[ 1300.849403]  __x64_sys_mkdir+0xdb/0x140
[ 1300.849432]  do_syscall_64+0xbf/0x390
[ 1300.849461]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1300.849484] RIP: 0033:0x7f13ca8c9c27
[ 1300.849500] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1300.849520] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1300.849541] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8c9c27
[ 1300.849555] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1300.849567] RBP: 00007f13c7e40040 R08: 0000000000000000 R09: 0000000000000000
[ 1300.849580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1300.849592] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1300.849623]  </TASK>
[ 1300.853742] FAULT_INJECTION: forcing a failure.
[ 1300.853742] name failslab, interval 1, probability 0, space 0, times 0
[ 1300.862964] CPU: 0 UID: 0 PID: 22836 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1300.862982] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1300.862991] Call Trace:
[ 1300.862996]  <TASK>
[ 1300.863002]  dump_stack_lvl+0xfa/0x120
[ 1300.863027]  should_fail_ex+0x4d7/0x5e0
[ 1300.863051]  ? __d_alloc+0x31/0xa10
[ 1300.863069]  should_failslab+0xc2/0x120
[ 1300.863090]  kmem_cache_alloc_lru_noprof+0x84/0x690
[ 1300.863112]  ? __d_lookup+0x255/0x490
[ 1300.863141]  ? __d_alloc+0x31/0xa10
[ 1300.863157]  __d_alloc+0x31/0xa10
[ 1300.863184]  d_alloc+0x4a/0x1e0
[ 1300.863207]  lookup_one_qstr_excl+0x174/0x270
[ 1300.863227]  ? mnt_want_write+0x153/0x420
[ 1300.863246]  filename_create+0x1ca/0x480
[ 1300.863264]  ? __pfx_filename_create+0x10/0x10
[ 1300.863277]  ? __virt_addr_valid+0x2e8/0x5d0
[ 1300.863315]  do_mkdirat+0x9a/0x3d0
[ 1300.863338]  ? __pfx_do_mkdirat+0x10/0x10
[ 1300.863371]  __x64_sys_mkdir+0xf3/0x140
[ 1300.863392]  do_syscall_64+0xbf/0x390
[ 1300.863414]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1300.863428] RIP: 0033:0x7efe12680c27
[ 1300.863439] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1300.863452] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1300.863464] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe12680c27
[ 1300.863473] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1300.863481] RBP: 00007efe0fbf7040 R08: 0000000000000000 R09: 0000000000000000
[ 1300.863489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1300.863497] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1300.863533]  </TASK>
06:12:46 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 4)

06:12:46 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x101000, 0x0)
faccessat2(r1, &(0x7f0000000180)='./file0\x00', 0x140, 0x1000)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/snmp6\x00')
write$P9_RCLUNK(r2, 0x0, 0x0)
faccessat2(r2, &(0x7f0000000040)='./file0\x00', 0x1c, 0x100)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r3 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:12:46 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 5)

[ 1301.060559] FAULT_INJECTION: forcing a failure.
[ 1301.060559] name failslab, interval 1, probability 0, space 0, times 0
[ 1301.061504] CPU: 0 UID: 0 PID: 22958 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1301.061520] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1301.061528] Call Trace:
[ 1301.061533]  <TASK>
[ 1301.061539]  dump_stack_lvl+0xfa/0x120
[ 1301.061561]  should_fail_ex+0x4d7/0x5e0
[ 1301.061583]  ? __d_alloc+0x31/0xa10
[ 1301.061600]  should_failslab+0xc2/0x120
[ 1301.061619]  kmem_cache_alloc_lru_noprof+0x84/0x690
[ 1301.061641]  ? __d_lookup+0x255/0x490
[ 1301.061667]  ? __d_alloc+0x31/0xa10
[ 1301.061682]  __d_alloc+0x31/0xa10
[ 1301.061711]  d_alloc+0x4a/0x1e0
[ 1301.061732]  lookup_one_qstr_excl+0x174/0x270
[ 1301.061751]  ? mnt_want_write+0x153/0x420
[ 1301.061769]  filename_create+0x1ca/0x480
[ 1301.061785]  ? __pfx_filename_create+0x10/0x10
[ 1301.061797]  ? __virt_addr_valid+0x2e8/0x5d0
[ 1301.061833]  do_mkdirat+0x9a/0x3d0
[ 1301.061854]  ? __pfx_do_mkdirat+0x10/0x10
[ 1301.061886]  __x64_sys_mkdir+0xf3/0x140
[ 1301.061906]  do_syscall_64+0xbf/0x390
[ 1301.061925]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1301.061938] RIP: 0033:0x7f13ca8c9c27
[ 1301.061949] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1301.061960] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1301.061972] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8c9c27
[ 1301.061980] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1301.061986] RBP: 00007f13c7e40040 R08: 0000000000000000 R09: 0000000000000000
[ 1301.061994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1301.062001] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1301.062035]  </TASK>
06:12:55 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0x0, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:12:55 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 5)

06:12:55 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x89a0, 0x0)

06:12:55 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYRESOCT], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:12:55 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x25, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/37})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:12:55 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x28, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/40})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:12:55 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0)
r2 = fork()
sendmsg$AUDIT_SET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x38, 0x3e9, 0x0, 0x70bd28, 0x25dfdbfe, {0x18, 0x0, 0x2, r2, 0x8, 0x6, 0x10000, 0x8, 0x0, 0x6}, ["", "", "", ""]}, 0x38}, 0x1, 0x0, 0x0, 0x8010}, 0x4040000)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x31, 0x80, 0x94, 0xff, 0x0, 0x6, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x77, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x1, 0x80000000, 0x7, 0x3, 0xb7f, 0x0, 0xf992, 0x0, 0x80000000, 0x0, 0xbf2d}, r2, 0xb, r0, 0x3)
keyctl$instantiate_iov(0x14, 0x0, &(0x7f0000000640)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0, 0xffffffffffffff8d}, {0x0}, {0x0}, {0x0}], 0x9, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:12:55 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 6)

06:12:55 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:12:55 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000340)={0x2a, 0x7fa, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

[ 1309.839630] FAULT_INJECTION: forcing a failure.
[ 1309.839630] name failslab, interval 1, probability 0, space 0, times 0
[ 1309.841464] CPU: 1 UID: 0 PID: 23076 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1309.841495] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1309.841509] Call Trace:
[ 1309.841516]  <TASK>
[ 1309.841525]  dump_stack_lvl+0xfa/0x120
[ 1309.841556]  should_fail_ex+0x4d7/0x5e0
[ 1309.841586]  ? ext4_alloc_inode+0x28/0x600
[ 1309.841622]  should_failslab+0xc2/0x120
[ 1309.841654]  kmem_cache_alloc_lru_noprof+0x84/0x690
[ 1309.841708]  ? __pfx_ext4_alloc_inode+0x10/0x10
[ 1309.841747]  ? ext4_alloc_inode+0x28/0x600
[ 1309.841781]  ext4_alloc_inode+0x28/0x600
[ 1309.841817]  ? __pfx_ext4_alloc_inode+0x10/0x10
[ 1309.841851]  alloc_inode+0x67/0x250
[ 1309.841887]  new_inode+0x1e/0x160
[ 1309.841923]  __ext4_new_inode+0x35d/0x4d70
[ 1309.841966]  ? avc_has_perm_noaudit+0x150/0x3d0
[ 1309.842006]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1309.842042]  ? __pfx_avc_has_perm+0x10/0x10
[ 1309.842074]  ? __pfx___dquot_initialize+0x10/0x10
[ 1309.842127]  ext4_mkdir+0x331/0xb30
[ 1309.842162]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1309.842184]  ? security_inode_permission+0x72/0xe0
[ 1309.842223]  vfs_mkdir+0x59a/0x8d0
[ 1309.842252]  do_mkdirat+0x19f/0x3d0
[ 1309.842285]  ? __pfx_do_mkdirat+0x10/0x10
[ 1309.842325]  __x64_sys_mkdir+0xf3/0x140
[ 1309.842356]  do_syscall_64+0xbf/0x390
[ 1309.842387]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1309.842411] RIP: 0033:0x7efe12680c27
[ 1309.842429] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1309.842451] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1309.842473] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe12680c27
[ 1309.842488] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1309.842502] RBP: 00007efe0fbf7040 R08: 0000000000000000 R09: 0000000000000000
[ 1309.842516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1309.842530] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1309.842564]  </TASK>
06:12:55 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 6)

06:12:55 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x25, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/37})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:12:55 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3f, 0x80, &(0x7f0000000040))
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:12:55 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

[ 1309.956192] FAULT_INJECTION: forcing a failure.
[ 1309.956192] name failslab, interval 1, probability 0, space 0, times 0
06:12:55 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x28, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/40})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

[ 1309.957472] CPU: 0 UID: 0 PID: 23093 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1309.957488] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1309.957496] Call Trace:
[ 1309.957501]  <TASK>
[ 1309.957507]  dump_stack_lvl+0xfa/0x120
[ 1309.957529]  should_fail_ex+0x4d7/0x5e0
[ 1309.957550]  ? ext4_alloc_inode+0x28/0x600
[ 1309.957570]  should_failslab+0xc2/0x120
[ 1309.957589]  kmem_cache_alloc_lru_noprof+0x84/0x690
[ 1309.957622]  ? __pfx_ext4_alloc_inode+0x10/0x10
[ 1309.957644]  ? ext4_alloc_inode+0x28/0x600
[ 1309.957662]  ext4_alloc_inode+0x28/0x600
[ 1309.957681]  ? __pfx_ext4_alloc_inode+0x10/0x10
[ 1309.957703]  alloc_inode+0x67/0x250
[ 1309.957724]  new_inode+0x1e/0x160
[ 1309.957748]  __ext4_new_inode+0x35d/0x4d70
[ 1309.957779]  ? avc_has_perm_noaudit+0x150/0x3d0
[ 1309.957806]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1309.957829]  ? __pfx_avc_has_perm+0x10/0x10
[ 1309.957846]  ? __pfx___dquot_initialize+0x10/0x10
[ 1309.957888]  ext4_mkdir+0x331/0xb30
[ 1309.957919]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1309.957932]  ? security_inode_permission+0x72/0xe0
[ 1309.957961]  vfs_mkdir+0x59a/0x8d0
[ 1309.957983]  do_mkdirat+0x19f/0x3d0
[ 1309.958005]  ? __pfx_do_mkdirat+0x10/0x10
[ 1309.958037]  __x64_sys_mkdir+0xf3/0x140
[ 1309.958056]  do_syscall_64+0xbf/0x390
[ 1309.958076]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1309.958089] RIP: 0033:0x7f13ca8c9c27
[ 1309.958099] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1309.958111] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1309.958123] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8c9c27
[ 1309.958131] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1309.958137] RBP: 00007f13c7e40040 R08: 0000000000000000 R09: 0000000000000000
[ 1309.958144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1309.958151] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1309.958184]  </TASK>
06:12:55 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 7)

06:12:55 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x29, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/41})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:12:55 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x89a3, 0x0)

06:12:55 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x28, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/40})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:12:55 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 7)

06:12:55 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 8)

[ 1310.205449] FAULT_INJECTION: forcing a failure.
[ 1310.205449] name failslab, interval 1, probability 0, space 0, times 0
[ 1310.206655] CPU: 0 UID: 0 PID: 23303 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1310.206672] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1310.206679] Call Trace:
[ 1310.206684]  <TASK>
[ 1310.206689]  dump_stack_lvl+0xfa/0x120
[ 1310.206715]  should_fail_ex+0x4d7/0x5e0
[ 1310.206736]  ? security_inode_alloc+0x3e/0x130
[ 1310.206750]  should_failslab+0xc2/0x120
[ 1310.206769]  kmem_cache_alloc_noprof+0x80/0x690
[ 1310.206799]  ? __pfx_map_id_range_down+0x10/0x10
[ 1310.206832]  ? security_inode_alloc+0x3e/0x130
[ 1310.206844]  security_inode_alloc+0x3e/0x130
[ 1310.206862]  inode_init_always_gfp+0xc94/0xff0
[ 1310.206888]  alloc_inode+0x8d/0x250
[ 1310.206908]  new_inode+0x1e/0x160
[ 1310.206931]  __ext4_new_inode+0x35d/0x4d70
[ 1310.206963]  ? avc_has_perm_noaudit+0x150/0x3d0
[ 1310.206990]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1310.207011]  ? __pfx_avc_has_perm+0x10/0x10
[ 1310.207029]  ? __pfx___dquot_initialize+0x10/0x10
[ 1310.207070]  ext4_mkdir+0x331/0xb30
[ 1310.207101]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1310.207114]  ? security_inode_permission+0x72/0xe0
[ 1310.207143]  vfs_mkdir+0x59a/0x8d0
[ 1310.207164]  do_mkdirat+0x19f/0x3d0
[ 1310.207186]  ? __pfx_do_mkdirat+0x10/0x10
[ 1310.207218]  __x64_sys_mkdir+0xf3/0x140
[ 1310.207237]  do_syscall_64+0xbf/0x390
[ 1310.207256]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1310.207270] RIP: 0033:0x7efe12680c27
[ 1310.207280] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1310.207291] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1310.207303] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe12680c27
[ 1310.207311] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1310.207318] RBP: 00007efe0fbf7040 R08: 0000000000000000 R09: 0000000000000000
[ 1310.207325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1310.207331] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1310.207365]  </TASK>
06:13:05 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

06:13:05 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="8300000000000000ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:13:05 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCDELRT(r1, 0x890c, &(0x7f0000000000)={0x0, @xdp={0x2c, 0x1, 0x0, 0x34}, @in={0x2, 0x4e24, @empty}, @llc={0x1a, 0xffff, 0x1, 0xff, 0x0, 0xff}, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x5, 0x10000000007f, 0x2})
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r4=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000000c0)={@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x3}}, 0x0, r4})
r5 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_REFRESH(r5, 0x2402, 0x5)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000080)={'sit0\x00', &(0x7f0000000180)={'syztnl1\x00', r4, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @loopback, 0x0, 0x20}})
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000740)=<r6=>0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000980)={&(0x7f0000000240)=ANY=[@ANYBLOB="dc0100001800000125bd7000fedbdf25000000000000000000000000000000000a0101020000000000000000000000004e2404014e2300000000000000000000005232c5631a1d434f42f8ca5776bd6687aacaf5d7eb633396643b56b9bf4c6651c3acf092efcc9e6878d11a5d78", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0a010100000000000000000000000000000004d33300000064010100000000000000000000000000c5ffffffffffffff05000000000000000104000000000000210000000000000000000000000000004000000000000000030000000000000000fcffffffffffff0104000000000000d10200000000000009000000000000000800000000000000000800bb0200000002000027bd70000740bf49916e7bb313eb5f1b3500000a0006060200000000000000b500000000000000e4000600fe800000000000000000000000000037000000000000000000000000000000004e20009b4e23", @ANYRES32=r4, @ANYRES32=r6, @ANYBLOB="ac1414aa000000000000000000000000000004d46c00000000000000000000000000000000000000dd0e0000000000004d0000000000000000010000000000000200000000000000060000000000000005000000000000001f00000000000000000005000000000000005f9300000000000008000000000000002000000007000000500f000028bd700007350000020002d64700"/168], 0x1dc}, 0x1, 0x0, 0x0, 0x4000011}, 0x40084)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@mpol={'mpol', 0x3d, {'prefer'}}}], [{@appraise_type}, {@subj_type={'subj_type', 0x3d, '+//]'}}, {@hash}, {@fsmagic={'fsmagic', 0x3d, 0xc2c}}, {@dont_appraise}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@pcr={'pcr', 0x3d, 0x33}}, {@euid_lt={'euid<', r6}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x4, 0x0)

06:13:05 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x28, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/40})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:13:05 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x0, 0xffffffff, 0xffffff85})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:13:05 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x29, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/41})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:13:05 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 8)

06:13:05 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 9)

[ 1319.828942] FAULT_INJECTION: forcing a failure.
[ 1319.828942] name failslab, interval 1, probability 0, space 0, times 0
[ 1319.830741] CPU: 1 UID: 0 PID: 23420 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1319.830771] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1319.830783] Call Trace:
[ 1319.830790]  <TASK>
[ 1319.830798]  dump_stack_lvl+0xfa/0x120
[ 1319.830828]  should_fail_ex+0x4d7/0x5e0
[ 1319.830856]  ? security_inode_alloc+0x3e/0x130
[ 1319.830880]  should_failslab+0xc2/0x120
[ 1319.830930]  kmem_cache_alloc_noprof+0x80/0x690
[ 1319.830964]  ? __pfx_map_id_range_down+0x10/0x10
[ 1319.831006]  ? security_inode_alloc+0x3e/0x130
[ 1319.831028]  security_inode_alloc+0x3e/0x130
[ 1319.831054]  inode_init_always_gfp+0xc94/0xff0
[ 1319.831088]  alloc_inode+0x8d/0x250
[ 1319.831120]  new_inode+0x1e/0x160
[ 1319.831154]  __ext4_new_inode+0x35d/0x4d70
[ 1319.831195]  ? avc_has_perm_noaudit+0x150/0x3d0
[ 1319.831232]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1319.831265]  ? __pfx_avc_has_perm+0x10/0x10
[ 1319.831294]  ? __pfx___dquot_initialize+0x10/0x10
[ 1319.831344]  ext4_mkdir+0x331/0xb30
[ 1319.831378]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1319.831398]  ? security_inode_permission+0x72/0xe0
[ 1319.831434]  vfs_mkdir+0x59a/0x8d0
[ 1319.831461]  do_mkdirat+0x19f/0x3d0
[ 1319.831491]  ? __pfx_do_mkdirat+0x10/0x10
[ 1319.831529]  __x64_sys_mkdir+0xf3/0x140
[ 1319.831558]  do_syscall_64+0xbf/0x390
[ 1319.831586]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1319.831609] RIP: 0033:0x7f13ca8c9c27
[ 1319.831626] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1319.831646] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1319.831667] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8c9c27
[ 1319.831681] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1319.831693] RBP: 00007f13c7e40040 R08: 0000000000000000 R09: 0000000000000000
[ 1319.831713] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1319.831726] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1319.831758]  </TASK>
06:13:05 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x15, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b00480"})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

[ 1319.929333] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
06:13:05 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x29, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/41})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)

06:13:05 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000600)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x1000}, "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"}, 0x1004)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f0000000480)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x3, 0x2, 0x151}, @l2cap_cid_signaling={{0x14d}, [@l2cap_create_chan_req={{0xc, 0xfd, 0x5}, {0x1f, 0xc1a, 0x40}}, @l2cap_cmd_rej_unk={{0x1, 0x89, 0x2}, {0x200}}, @l2cap_conf_rsp={{0x5, 0x5, 0x6}, {0x7, 0x80, 0x8}}, @l2cap_create_chan_rsp={{0xd, 0x9, 0x8}, {0x2c9a, 0x2, 0x0, 0x2}}, @l2cap_create_chan_req={{0xc, 0x66, 0x5}, {0x9, 0x4, 0xbd}}, @l2cap_info_rsp={{0xb, 0x7, 0xf3}, {0x1, 0x3f, "35cae5106aba762fce7a9656e82ffdebd7498a13b30f4d988d7b184dea80694656c8134966e06a88f2137ca9e697023dc6c134d7ee1435d03951d8ea64a5845cc62324206d66db276b105fc265323bcae99694d4e7dbadfa0529e1f26f71936a9cc2e3a041695fa08cf3295bb25bbaa6e78c60466e60552890d3a710d0311bdaa27ef864f78a400696d5849338f97dc393cda887fd5804b6f76d793ae37ed7d140c89ab59db58e3d11c175f519db64bb15cdb9d3ef4c485c41dbdcfa9cb41f06e44caac81ea0c615f1dc19129b8c51b73d001307dbd0f7cec49d7d0f8ae7ab3517e6654763db975ebbabc09942bbec"}}, @l2cap_disconn_rsp={{0x7, 0x9, 0x4}, {0x2, 0xc5}}, @l2cap_conf_rsp={{0x5, 0x2, 0x1c}, {0x7f, 0x7, 0x8000, [@l2cap_conf_mtu={0x1, 0x2, 0x6}, @l2cap_conf_efs={0x6, 0x10, {0x0, 0x1, 0x3, 0x35, 0x2, 0x1}}]}}]}}, 0x156)
syz_emit_vhci(&(0x7f0000000140)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x77}, "0494d67c4b98885ae0d9e1ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b616a60fbbfb863bc28dbad20dc0cce8d0800000000000000c02c883b6c56bbe75fa24a41756d403945197517ec56e5844808dac0c1a91dc3d9b4d9d692ce57f36894ad1e8f68001cd08288eb4002"}, 0x7b)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_phy_link_complete={{0x40, 0x2}, {0x81, 0xc8}}}, 0x5)

06:13:05 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x28, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/40})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:13:05 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448cc, 0x0)

06:13:15 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 10)

06:13:15 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448dc, 0x0)

06:13:15 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="8de90000c3a2de92eefda9bc3836f4c14ca30851bbb02f4c508c44e6d5187e128f3650d475f936f5b5450b4b726f46c46270c5eef54e2177c831e5fca31658b012fcbd8df464f88c749f56fd0da32bcebfeb0d80fe053a9c0607000001000000001b92f0d798587d4a00"/121], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:13:15 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 9)

06:13:15 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x15, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b00480"})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:13:15 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(0x0, 0xf)

06:13:15 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x29, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/41})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:13:15 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f00000000c0))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="6d706f6c3d7072656665723a2c00f3252f64732d8e3f58a338582700f7d0fc27a9f09e014c3eb8897257262df0cea00bbc2ba17de3b443b95a672ebf38866b"])
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000180), 0x9, 0x88000)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r1, 0xc400941d, &(0x7f0000000540)={0x0, 0xf00, 0x3, 0x1})
ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000100)=0x4)

[ 1330.415524] FAULT_INJECTION: forcing a failure.
[ 1330.415524] name failslab, interval 1, probability 0, space 0, times 0
[ 1330.416835] CPU: 0 UID: 0 PID: 23657 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1330.416853] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1330.416860] Call Trace:
[ 1330.416865]  <TASK>
[ 1330.416870]  dump_stack_lvl+0xfa/0x120
[ 1330.416893]  should_fail_ex+0x4d7/0x5e0
[ 1330.416914]  ? jbd2__journal_start+0x193/0x6b0
[ 1330.416928]  should_failslab+0xc2/0x120
[ 1330.416948]  kmem_cache_alloc_noprof+0x80/0x690
[ 1330.416972]  ? lock_is_held_type+0x9e/0x120
[ 1330.416994]  ? jbd2__journal_start+0x193/0x6b0
[ 1330.417007]  jbd2__journal_start+0x193/0x6b0
[ 1330.417029]  __ext4_journal_start_sb+0x325/0x5d0
[ 1330.417059]  __ext4_new_inode+0x2cbe/0x4d70
[ 1330.417115]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1330.417142]  ? __pfx_avc_has_perm+0x10/0x10
[ 1330.417161]  ? __pfx___dquot_initialize+0x10/0x10
[ 1330.417203]  ext4_mkdir+0x331/0xb30
[ 1330.417234]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1330.417246]  ? security_inode_permission+0x72/0xe0
[ 1330.417276]  vfs_mkdir+0x59a/0x8d0
[ 1330.417298]  do_mkdirat+0x19f/0x3d0
[ 1330.417320]  ? __pfx_do_mkdirat+0x10/0x10
[ 1330.417352]  __x64_sys_mkdir+0xf3/0x140
[ 1330.417371]  do_syscall_64+0xbf/0x390
[ 1330.417389]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1330.417402] RIP: 0033:0x7efe12680c27
[ 1330.417412] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1330.417423] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1330.417435] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe12680c27
[ 1330.417443] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1330.417450] RBP: 00007efe0fbf7040 R08: 0000000000000000 R09: 0000000000000000
[ 1330.417458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1330.417465] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1330.417498]  </TASK>
[ 1330.417506] EXT4-fs error (device sda) in __ext4_new_inode:1086: Out of memory
06:13:16 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x29, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/41})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

[ 1330.476781] tmpfs: Bad value for 'mpol'
06:13:16 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 11)

06:13:16 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448e4, 0x0)

06:13:16 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 10)

06:13:16 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(0x0, 0xf)

06:13:16 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:13:16 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x400, &(0x7f00000000c0)={[{@mpol={'mpol', 0x3d, {'prefer', '=static'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:13:16 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 12)

06:13:16 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x15, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b00480"})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

[ 1330.664421] FAULT_INJECTION: forcing a failure.
[ 1330.664421] name failslab, interval 1, probability 0, space 0, times 0
[ 1330.665535] CPU: 0 UID: 0 PID: 23777 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1330.665551] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1330.665559] Call Trace:
[ 1330.665564]  <TASK>
[ 1330.665569]  dump_stack_lvl+0xfa/0x120
[ 1330.665591]  should_fail_ex+0x4d7/0x5e0
[ 1330.665613]  should_failslab+0xc2/0x120
[ 1330.665633]  __kmalloc_noprof+0xcd/0x680
[ 1330.665651]  ? current_umask+0x12/0x80
[ 1330.665669]  ? posix_acl_create.part.0+0x2a0/0x480
[ 1330.665686]  ? security_inode_init_security+0x113/0x370
[ 1330.665721]  security_inode_init_security+0x113/0x370
[ 1330.665744]  ? __pfx_ext4_initxattrs+0x10/0x10
[ 1330.665760]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1330.665788]  ? crc32c+0x1ae/0x350
[ 1330.665816]  __ext4_new_inode+0x3452/0x4d70
[ 1330.665860]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1330.665886]  ? __pfx___dquot_initialize+0x10/0x10
[ 1330.665927]  ext4_mkdir+0x331/0xb30
[ 1330.665959]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1330.665972]  ? security_inode_permission+0x72/0xe0
[ 1330.666001]  vfs_mkdir+0x59a/0x8d0
[ 1330.666024]  do_mkdirat+0x19f/0x3d0
[ 1330.666046]  ? __pfx_do_mkdirat+0x10/0x10
[ 1330.666078]  __x64_sys_mkdir+0xf3/0x140
[ 1330.666098]  do_syscall_64+0xbf/0x390
[ 1330.666117]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1330.666130] RIP: 0033:0x7efe12680c27
[ 1330.666140] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1330.666152] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1330.666163] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe12680c27
[ 1330.666171] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1330.666178] RBP: 00007efe0fbf7040 R08: 0000000000000000 R09: 0000000000000000
[ 1330.666186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1330.666193] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1330.666227]  </TASK>
06:13:16 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x20, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a0000000000"})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:13:16 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x29, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/41})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:13:16 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(0x0, 0xf)

[ 1330.758749] FAULT_INJECTION: forcing a failure.
[ 1330.758749] name failslab, interval 1, probability 0, space 0, times 0
[ 1330.760836] CPU: 1 UID: 0 PID: 23788 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1330.760867] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1330.760879] Call Trace:
[ 1330.760887]  <TASK>
[ 1330.760895]  dump_stack_lvl+0xfa/0x120
[ 1330.760927]  should_fail_ex+0x4d7/0x5e0
[ 1330.760956]  ? jbd2__journal_start+0x193/0x6b0
[ 1330.760979]  should_failslab+0xc2/0x120
[ 1330.761008]  kmem_cache_alloc_noprof+0x80/0x690
[ 1330.761044]  ? lock_is_held_type+0x9e/0x120
[ 1330.761073]  ? jbd2__journal_start+0x193/0x6b0
[ 1330.761094]  jbd2__journal_start+0x193/0x6b0
[ 1330.761122]  __ext4_journal_start_sb+0x325/0x5d0
[ 1330.761160]  __ext4_new_inode+0x2cbe/0x4d70
[ 1330.761209]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1330.761242]  ? __pfx_avc_has_perm+0x10/0x10
[ 1330.761273]  ? __pfx___dquot_initialize+0x10/0x10
[ 1330.761322]  ext4_mkdir+0x331/0xb30
[ 1330.761355]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1330.761376]  ? security_inode_permission+0x72/0xe0
[ 1330.761412]  vfs_mkdir+0x59a/0x8d0
[ 1330.761439]  do_mkdirat+0x19f/0x3d0
[ 1330.761469]  ? __pfx_do_mkdirat+0x10/0x10
[ 1330.761507]  __x64_sys_mkdir+0xf3/0x140
06:13:16 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 13)

[ 1330.761536]  do_syscall_64+0xbf/0x390
[ 1330.761563]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1330.761585] RIP: 0033:0x7f13ca8c9c27
[ 1330.761602] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1330.761623] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1330.761644] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8c9c27
[ 1330.761658] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1330.761671] RBP: 00007f13c7e40040 R08: 0000000000000000 R09: 0000000000000000
[ 1330.761683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1330.761696] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1330.761736]  </TASK>
[ 1330.788557] EXT4-fs error (device sda) in __ext4_new_inode:1086: Out of memory
[ 1330.798586] tmpfs: Bad value for 'mpol'
06:13:16 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x20, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a0000000000"})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:13:25 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(0x0, 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:13:25 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448e6, 0x0)

06:13:25 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 14)

06:13:25 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
clock_gettime(0x0, &(0x7f00000001c0)={0x0, <r1=>0x0})
select(0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x0, r1/1000+60000})
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r2 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:13:25 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 11)

06:13:25 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x20, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a0000000000"})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:13:25 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f00000000c0))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="6d706f6c3d7072656665723a2c00f3252f64732d8e3f58a338582700f7d0fc27a9f09e014c3eb8897257262df0cea00bbc2ba17de3b443b95a672ebf38866b"])
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000180), 0x9, 0x88000)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r1, 0xc400941d, &(0x7f0000000540)={0x0, 0xf00, 0x3, 0x1})
ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000100)=0x4)

06:13:25 executing program 4:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f00000000c0)='+(,\x00')
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='mer:,\x00'])
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.events\x00', 0x0, 0x0)
r3 = accept4$unix(0xffffffffffffffff, &(0x7f0000000200)=@abs, &(0x7f0000000280)=0x6e, 0x80800)
mount$9p_fd(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x803082, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@aname={'aname', 0x3d, ']\\!%%'}}, {@version_u}], [{@uid_lt={'uid<', 0xffffffffffffffff}}]}})
fork()
r4 = fcntl$getown(r1, 0x9)
migrate_pages(r4, 0x0, &(0x7f00000002c0)=0x100000000000, &(0x7f0000000440)=0x3)
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

[ 1340.115572] tmpfs: Unknown parameter 'mer:'
06:13:25 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448e7, 0x0)

[ 1340.160313] FAULT_INJECTION: forcing a failure.
[ 1340.160313] name failslab, interval 1, probability 0, space 0, times 0
[ 1340.162283] CPU: 0 UID: 0 PID: 23920 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1340.162314] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1340.162327] Call Trace:
[ 1340.162336]  <TASK>
[ 1340.162347]  dump_stack_lvl+0xfa/0x120
[ 1340.162383]  should_fail_ex+0x4d7/0x5e0
[ 1340.162408]  ? vfs_mkdir+0x59a/0x8d0
[ 1340.162445]  should_failslab+0xc2/0x120
[ 1340.162481]  __kmalloc_node_track_caller_noprof+0xc6/0x690
[ 1340.162511]  ? sidtab_sid2str_get+0x85/0x6f0
[ 1340.162543]  ? sidtab_sid2str_get+0x17e/0x6f0
[ 1340.162593]  kmemdup_noprof+0x2b/0x60
[ 1340.162632]  sidtab_sid2str_get+0x17e/0x6f0
[ 1340.162679]  sidtab_entry_to_string+0x33/0x110
[ 1340.162727]  security_sid_to_context_core+0x350/0x620
[ 1340.162770]  selinux_inode_init_security+0x432/0x650
[ 1340.162813]  ? __pfx_selinux_inode_init_security+0x10/0x10
[ 1340.162845]  ? trace_kmalloc+0x1f/0xb0
[ 1340.162874]  ? current_umask+0x12/0x80
[ 1340.162906]  ? posix_acl_create.part.0+0x2a0/0x480
[ 1340.162937]  ? security_inode_init_security+0x113/0x370
[ 1340.162997]  security_inode_init_security+0x1bc/0x370
[ 1340.163041]  ? __pfx_ext4_initxattrs+0x10/0x10
[ 1340.163071]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1340.163125]  ? crc32c+0x1ae/0x350
[ 1340.163190]  __ext4_new_inode+0x3452/0x4d70
[ 1340.163276]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1340.163327]  ? __pfx___dquot_initialize+0x10/0x10
[ 1340.163407]  ext4_mkdir+0x331/0xb30
[ 1340.163469]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1340.163494]  ? security_inode_permission+0x72/0xe0
[ 1340.163551]  vfs_mkdir+0x59a/0x8d0
[ 1340.163592]  do_mkdirat+0x19f/0x3d0
[ 1340.163635]  ? __pfx_do_mkdirat+0x10/0x10
[ 1340.163699]  __x64_sys_mkdir+0xf3/0x140
[ 1340.163737]  do_syscall_64+0xbf/0x390
[ 1340.163774]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1340.163799] RIP: 0033:0x7efe12680c27
[ 1340.163818] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1340.163839] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1340.163861] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe12680c27
[ 1340.163877] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1340.163890] RBP: 00007efe0fbf7040 R08: 0000000000000000 R09: 0000000000000000
[ 1340.163904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1340.163917] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1340.163985]  </TASK>
[ 1340.226279] tmpfs: Bad value for 'mpol'
06:13:25 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(0x0, 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:13:25 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x25, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/37})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:13:25 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 15)

06:13:25 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6d706f89953d44b36c3d70726500"])
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:13:25 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x40049409, 0x0)

[ 1340.365427] tmpfs: Unknown parameter 'mpo��'
06:13:36 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYRESHEX=r0, @ANYRESOCT=r0, @ANYRESOCT], 0x9)
getdents64(r0, &(0x7f0000000100)=""/123, 0x7b)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:13:36 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 12)

06:13:36 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
signalfd4(r0, &(0x7f00000000c0), 0x8, 0x80000)
r1 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:13:36 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x25, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/37})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:13:36 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(0x0, 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:13:36 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 16)

06:13:36 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYRESOCT], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:13:36 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x40086602, 0x0)

06:13:36 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000100)={0x9})

06:13:36 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x25, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/37})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

[ 1350.571248] FAULT_INJECTION: forcing a failure.
[ 1350.571248] name failslab, interval 1, probability 0, space 0, times 0
[ 1350.573317] CPU: 1 UID: 0 PID: 24360 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1350.573349] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1350.573362] Call Trace:
[ 1350.573371]  <TASK>
[ 1350.573380]  dump_stack_lvl+0xfa/0x120
[ 1350.573412]  should_fail_ex+0x4d7/0x5e0
[ 1350.573444]  should_failslab+0xc2/0x120
[ 1350.573476]  __kmalloc_noprof+0xcd/0x680
[ 1350.573509]  ? current_umask+0x12/0x80
[ 1350.573540]  ? posix_acl_create.part.0+0x2a0/0x480
[ 1350.573568]  ? security_inode_init_security+0x113/0x370
[ 1350.573614]  security_inode_init_security+0x113/0x370
[ 1350.573653]  ? __pfx_ext4_initxattrs+0x10/0x10
[ 1350.573681]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1350.573733]  ? crc32c+0x1ae/0x350
[ 1350.573772]  __ext4_new_inode+0x3452/0x4d70
[ 1350.573824]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1350.573863]  ? __pfx___dquot_initialize+0x10/0x10
[ 1350.573915]  ext4_mkdir+0x331/0xb30
[ 1350.573951]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1350.573973]  ? security_inode_permission+0x72/0xe0
[ 1350.574011]  vfs_mkdir+0x59a/0x8d0
[ 1350.574041]  do_mkdirat+0x19f/0x3d0
[ 1350.574076]  ? __pfx_do_mkdirat+0x10/0x10
[ 1350.574116]  __x64_sys_mkdir+0xf3/0x140
[ 1350.574147]  do_syscall_64+0xbf/0x390
[ 1350.574177]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1350.574201] RIP: 0033:0x7f13ca8c9c27
[ 1350.574219] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1350.574241] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1350.574263] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8c9c27
[ 1350.574278] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1350.574291] RBP: 00007f13c7e40040 R08: 0000000000000000 R09: 0000000000000000
[ 1350.574305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1350.574318] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1350.574361]  </TASK>
[ 1350.590903] FAULT_INJECTION: forcing a failure.
[ 1350.590903] name failslab, interval 1, probability 0, space 0, times 0
[ 1350.600934] CPU: 0 UID: 0 PID: 24363 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1350.600953] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1350.600961] Call Trace:
[ 1350.600966]  <TASK>
[ 1350.600972]  dump_stack_lvl+0xfa/0x120
[ 1350.600997]  should_fail_ex+0x4d7/0x5e0
[ 1350.601022]  should_failslab+0xc2/0x120
[ 1350.601043]  __kmalloc_noprof+0xcd/0x680
[ 1350.601070]  ? ext4_find_extent+0x7f5/0xa00
[ 1350.601103]  ext4_find_extent+0x7f5/0xa00
[ 1350.601136]  ext4_ext_map_blocks+0x1cc/0x5f70
[ 1350.601152]  ? fs_reclaim_acquire+0xae/0x150
[ 1350.601172]  ? lock_is_held_type+0x9e/0x120
[ 1350.601212]  ? perf_trace_run_bpf_submit+0xef/0x180
[ 1350.601233]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[ 1350.601247]  ? perf_trace_run_bpf_submit+0xef/0x180
[ 1350.601273]  ? perf_trace_lock_acquire+0x3c2/0x700
[ 1350.601296]  ? register_lock_class+0x41/0x560
[ 1350.601322]  ? __lock_acquire+0xc65/0x1b70
[ 1350.601362]  ? lock_acquire+0x15e/0x2f0
[ 1350.601379]  ? ext4_map_blocks+0x49f/0x14a0
[ 1350.601406]  ext4_map_query_blocks+0x117/0x890
[ 1350.601429]  ? __pfx_ext4_map_query_blocks+0x10/0x10
[ 1350.601445]  ? __pfx_down_read+0x10/0x10
[ 1350.601463]  ? ext4_es_lookup_extent+0xc8/0xb30
[ 1350.601493]  ext4_map_blocks+0x4b3/0x14a0
[ 1350.601523]  ? __pfx_ext4_map_blocks+0x10/0x10
[ 1350.601540]  ? __pfx_ext4_initxattrs+0x10/0x10
[ 1350.601557]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1350.601589]  ? crc32c+0x1ae/0x350
[ 1350.601616]  ? __brelse+0x7f/0xa0
[ 1350.601633]  ? __ext4_new_inode+0x116/0x4d70
[ 1350.601660]  ext4_append+0x1b6/0x530
[ 1350.601686]  ? __pfx_ext4_append+0x10/0x10
[ 1350.601714]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1350.601748]  ext4_init_new_dir+0x13c/0x240
[ 1350.601763]  ? __pfx_ext4_init_new_dir+0x10/0x10
[ 1350.601794]  ext4_mkdir+0x3c5/0xb30
[ 1350.601820]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1350.601833]  ? security_inode_permission+0x72/0xe0
[ 1350.601864]  vfs_mkdir+0x59a/0x8d0
[ 1350.601888]  do_mkdirat+0x19f/0x3d0
[ 1350.601912]  ? __pfx_do_mkdirat+0x10/0x10
[ 1350.601946]  __x64_sys_mkdir+0xf3/0x140
[ 1350.601966]  do_syscall_64+0xbf/0x390
[ 1350.601986]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1350.602001] RIP: 0033:0x7efe12680c27
[ 1350.602011] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1350.602024] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1350.602036] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe12680c27
[ 1350.602045] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1350.602053] RBP: 00007efe0fbf7040 R08: 0000000000000000 R09: 0000000000000000
[ 1350.602061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1350.602068] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1350.602104]  </TASK>
[ 1350.628665] tmpfs: Bad value for 'mpol'
06:13:45 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x40087602, 0x0)

06:13:45 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="6d70ff0daa81666005e11d3a2c00"])
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:13:45 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 17)

06:13:45 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x28, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/40})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:13:45 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000100)={0x9})

06:13:45 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 13)

06:13:45 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_oob_data_request={{0x35, 0x6}}}, 0x9)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="102c30197549654548b4489dfb121e167063c1b42ac63094510a7ad03e841fc7b4efcc936d7c2ba55cf4610ecfae5f0063a6585707611b73491ff863c1cba5c7957bc80755903099e05fe27d6a106cc909f276d3b7df01415fdf1279471e3bc7c1f4e9c898006ad4bddfd7b5254228d1e916ab4d89a39d"], 0xf)
syz_emit_vhci(&(0x7f0000000100)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x7b}, "f0acc011ca18261b4eb6028741fef666d46a9e8def6a6d83f56d49502124f645e4d2ebbe40ca81fab6fbdbd64d58a4e4e0ce6b7dcfd45d16326a82ec27a36fd74fa30363f31c0dfc4d406886cee70fd9c527046e84fd54b73163a50e7e1826f24e791722a334dc44df98246ee2202c156470d968b3fd0ca9bf4005"}, 0x7f)
syz_emit_vhci(&(0x7f0000000480)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x89}, "5ca139e1495fefc1ac8ebb813e70fab4204d6db643247044a27f8f995846f1c8c045b0ed35debacd5442a7bedc5b851619d0ffc8cba68717f2c99d723e8e1fc6d5b4c8702eee20bfdf16514d01a8d510159e6152018cd6ffb7195603389bf391677e2a31b6ce2ba3a17b056953802d5ef2716045081d6b28fd43c603cf874baba7f38464bd00a62d3f"}, 0x8d)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:13:45 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYRESOCT], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:13:45 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000100)={0x9})

06:13:45 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x28, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/40})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

[ 1359.990492] tmpfs: Unknown parameter 'mp���f`�:'
06:13:45 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 18)

06:13:45 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 14)

06:13:45 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYRESOCT], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:13:45 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @inquiry_info_with_rssi_and_pscan_mode={{0x22, 0x1f}, {0x2, [{@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x7, 0x1f, 0x7, "f28236", 0x8, 0x3f}, {@any, 0x7f, 0x1, 0x40, "8196a8", 0x401, 0x20}]}}}, 0x22)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:13:45 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000100)={0x9})

06:13:45 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x401c5820, 0x0)

[ 1360.110966] FAULT_INJECTION: forcing a failure.
[ 1360.110966] name failslab, interval 1, probability 0, space 0, times 0
[ 1360.112436] CPU: 0 UID: 0 PID: 24600 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1360.112453] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1360.112460] Call Trace:
[ 1360.112465]  <TASK>
[ 1360.112470]  dump_stack_lvl+0xfa/0x120
[ 1360.112492]  should_fail_ex+0x4d7/0x5e0
[ 1360.112512]  ? __es_insert_extent+0xed2/0x1370
[ 1360.112526]  should_failslab+0xc2/0x120
[ 1360.112545]  kmem_cache_alloc_noprof+0x80/0x690
[ 1360.112569]  ? do_syscall_64+0xbf/0x390
[ 1360.112593]  ? __es_insert_extent+0xed2/0x1370
[ 1360.112605]  __es_insert_extent+0xed2/0x1370
[ 1360.112623]  ? __pfx_do_raw_write_lock+0x10/0x10
[ 1360.112653]  ext4_es_insert_extent+0x4d0/0x1100
[ 1360.112684]  ? __pfx_ext4_es_insert_extent+0x10/0x10
[ 1360.112715]  ? lock_acquire+0x15e/0x2f0
[ 1360.112736]  ? find_held_lock+0x2b/0x80
[ 1360.112753]  ? ext4_es_find_extent_range+0x1cf/0x510
[ 1360.112769]  ? lock_release+0xc8/0x290
[ 1360.112789]  ? do_raw_read_unlock+0x44/0xe0
[ 1360.112813]  ext4_ext_map_blocks+0x178d/0x5f70
[ 1360.112840]  ? perf_trace_run_bpf_submit+0xef/0x180
[ 1360.112861]  ? perf_trace_run_bpf_submit+0xef/0x180
[ 1360.112884]  ? perf_trace_run_bpf_submit+0xef/0x180
[ 1360.112896]  ? perf_trace_lock_acquire+0x3c2/0x700
[ 1360.112918]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[ 1360.112930]  ? perf_trace_run_bpf_submit+0xef/0x180
[ 1360.112954]  ? perf_trace_lock_acquire+0x3c2/0x700
[ 1360.112974]  ? register_lock_class+0x41/0x560
[ 1360.112998]  ? __lock_acquire+0xc65/0x1b70
[ 1360.113036]  ? lock_acquire+0x15e/0x2f0
[ 1360.113052]  ? ext4_map_blocks+0x49f/0x14a0
[ 1360.113077]  ext4_map_query_blocks+0x117/0x890
[ 1360.113099]  ? __pfx_ext4_map_query_blocks+0x10/0x10
[ 1360.113114]  ? __pfx_down_read+0x10/0x10
[ 1360.113130]  ? ext4_es_lookup_extent+0xc8/0xb30
[ 1360.113158]  ext4_map_blocks+0x4b3/0x14a0
[ 1360.113187]  ? __pfx_ext4_map_blocks+0x10/0x10
[ 1360.113203]  ? __pfx_ext4_initxattrs+0x10/0x10
[ 1360.113218]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1360.113247]  ? crc32c+0x1ae/0x350
[ 1360.113271]  ? __brelse+0x7f/0xa0
[ 1360.113286]  ? __ext4_new_inode+0x116/0x4d70
[ 1360.113312]  ext4_append+0x1b6/0x530
[ 1360.113336]  ? __pfx_ext4_append+0x10/0x10
[ 1360.113358]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1360.113390]  ext4_init_new_dir+0x13c/0x240
[ 1360.113404]  ? __pfx_ext4_init_new_dir+0x10/0x10
[ 1360.113434]  ext4_mkdir+0x3c5/0xb30
[ 1360.113458]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1360.113471]  ? security_inode_permission+0x72/0xe0
[ 1360.113500]  vfs_mkdir+0x59a/0x8d0
[ 1360.113523]  do_mkdirat+0x19f/0x3d0
[ 1360.113544]  ? __pfx_do_mkdirat+0x10/0x10
[ 1360.113577]  __x64_sys_mkdir+0xf3/0x140
[ 1360.113597]  do_syscall_64+0xbf/0x390
[ 1360.113615]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1360.113628] RIP: 0033:0x7efe12680c27
[ 1360.113638] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1360.113649] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1360.113661] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe12680c27
[ 1360.113669] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1360.113676] RBP: 00007efe0fbf7040 R08: 0000000000000000 R09: 0000000000000000
[ 1360.113683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1360.113691] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1360.113725]  </TASK>
[ 1360.146133] FAULT_INJECTION: forcing a failure.
[ 1360.146133] name failslab, interval 1, probability 0, space 0, times 0
[ 1360.147074] CPU: 0 UID: 0 PID: 24620 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1360.147089] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1360.147096] Call Trace:
[ 1360.147100]  <TASK>
[ 1360.147106]  dump_stack_lvl+0xfa/0x120
[ 1360.147122]  should_fail_ex+0x4d7/0x5e0
[ 1360.147133]  ? vfs_mkdir+0x59a/0x8d0
[ 1360.147151]  should_failslab+0xc2/0x120
[ 1360.147169]  __kmalloc_node_track_caller_noprof+0xc6/0x690
[ 1360.147184]  ? sidtab_sid2str_get+0x85/0x6f0
[ 1360.147201]  ? sidtab_sid2str_get+0x17e/0x6f0
[ 1360.147227]  kmemdup_noprof+0x2b/0x60
[ 1360.147248]  sidtab_sid2str_get+0x17e/0x6f0
[ 1360.147272]  sidtab_entry_to_string+0x33/0x110
[ 1360.147293]  security_sid_to_context_core+0x350/0x620
[ 1360.147315]  selinux_inode_init_security+0x432/0x650
[ 1360.147338]  ? __pfx_selinux_inode_init_security+0x10/0x10
[ 1360.147354]  ? trace_kmalloc+0x1f/0xb0
[ 1360.147380]  ? current_umask+0x12/0x80
[ 1360.147397]  ? posix_acl_create.part.0+0x2a0/0x480
[ 1360.147413]  ? security_inode_init_security+0x113/0x370
[ 1360.147443]  security_inode_init_security+0x1bc/0x370
[ 1360.147466]  ? __pfx_ext4_initxattrs+0x10/0x10
[ 1360.147481]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1360.147508]  ? crc32c+0x1ae/0x350
[ 1360.147533]  __ext4_new_inode+0x3452/0x4d70
[ 1360.147576]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1360.147602]  ? __pfx___dquot_initialize+0x10/0x10
[ 1360.147644]  ext4_mkdir+0x331/0xb30
[ 1360.147675]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1360.147688]  ? security_inode_permission+0x72/0xe0
[ 1360.147721]  vfs_mkdir+0x59a/0x8d0
[ 1360.147742]  do_mkdirat+0x19f/0x3d0
[ 1360.147764]  ? __pfx_do_mkdirat+0x10/0x10
[ 1360.147797]  __x64_sys_mkdir+0xf3/0x140
[ 1360.147816]  do_syscall_64+0xbf/0x390
[ 1360.147834]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1360.147846] RIP: 0033:0x7f13ca8c9c27
[ 1360.147855] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1360.147866] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1360.147877] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8c9c27
[ 1360.147885] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1360.147892] RBP: 00007f13c7e40040 R08: 0000000000000000 R09: 0000000000000000
[ 1360.147899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1360.147905] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1360.147939]  </TASK>
06:13:45 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x28, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/40})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:13:54 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYRESOCT], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)

06:13:54 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 15)

06:13:54 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x29, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/41})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:13:54 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x4020940d, 0x0)

06:13:54 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 19)

06:13:54 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000100)={0x9})

06:13:54 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="040f0481000608"], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x2, 0x4}}, 0x9)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:13:54 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6d306f6c3d7072656665723a2c0043275fe96583ee"])
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:13:54 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000140)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x1, 0x10}, @l2cap_cid_signaling={{0xc}, [@l2cap_create_chan_rsp={{0xd, 0x8, 0x8}, {0x3, 0x1, 0x20, 0x7}}]}}, 0x15)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
clock_gettime(0x6, &(0x7f00000001c0)={0x0, <r1=>0x0})
select(0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x0, r1/1000+60000})
clock_gettime(0x0, &(0x7f00000001c0)={0x0, <r2=>0x0})
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYRES64=r0, @ANYRESDEC=r2, @ANYRES64, @ANYRESOCT=r1], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="8e01c010000c00050012ff087dc230a8b9f5569a6b"], 0x15)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="03c9002ff793d67c4b98805ae0d9e0dd50965766fbcbc1d645db42a5736dda56a849613b0f3f762acbca53d59e612d207b614de46cc46c"], 0x33)
r3 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:13:54 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYRESOCT], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)

[ 1369.155424] tmpfs: Unknown parameter 'm0ol'
06:13:54 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 20)

06:13:54 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000100)={0x9})

06:13:54 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYRESOCT], 0xf)

06:13:54 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x29, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/41})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:13:54 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 16)

06:13:54 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x800448d2, 0x0)

[ 1369.301259] FAULT_INJECTION: forcing a failure.
[ 1369.301259] name failslab, interval 1, probability 0, space 0, times 0
[ 1369.302373] CPU: 1 UID: 0 PID: 24956 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1369.302389] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1369.302397] Call Trace:
[ 1369.302401]  <TASK>
[ 1369.302406]  dump_stack_lvl+0xfa/0x120
[ 1369.302424]  should_fail_ex+0x4d7/0x5e0
[ 1369.302441]  should_failslab+0xc2/0x120
[ 1369.302458]  __kmalloc_noprof+0xcd/0x680
[ 1369.302478]  ? ext4_find_extent+0x7f5/0xa00
[ 1369.302502]  ext4_find_extent+0x7f5/0xa00
[ 1369.302524]  ext4_ext_map_blocks+0x1cc/0x5f70
[ 1369.302536]  ? fs_reclaim_acquire+0xae/0x150
[ 1369.302551]  ? lock_is_held_type+0x9e/0x120
[ 1369.302571]  ? bdev_getblk+0xd6/0x660
[ 1369.302591]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[ 1369.302604]  ? map_id_range_up+0x1d5/0x350
[ 1369.302624]  ? look_up_lock_class+0x56/0x150
[ 1369.302636]  ? perf_trace_lock_acquire+0xc9/0x700
[ 1369.302653]  ? register_lock_class+0x41/0x560
[ 1369.302673]  ? __lock_acquire+0xc65/0x1b70
[ 1369.302700]  ? lock_acquire+0x15e/0x2f0
[ 1369.302715]  ? ext4_map_blocks+0x49f/0x14a0
[ 1369.302734]  ext4_map_query_blocks+0x117/0x890
[ 1369.302749]  ? __pfx_ext4_map_query_blocks+0x10/0x10
[ 1369.302762]  ? __pfx_down_read+0x10/0x10
[ 1369.302776]  ? ext4_es_lookup_extent+0xc8/0xb30
[ 1369.302795]  ext4_map_blocks+0x4b3/0x14a0
[ 1369.302814]  ? __pfx_ext4_map_blocks+0x10/0x10
[ 1369.302829]  ? __pfx_ext4_initxattrs+0x10/0x10
[ 1369.302842]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1369.302865]  ? crc32c+0x1ae/0x350
[ 1369.302884]  ? __brelse+0x7f/0xa0
[ 1369.302896]  ? __ext4_new_inode+0x116/0x4d70
[ 1369.302915]  ext4_append+0x1b6/0x530
[ 1369.302934]  ? __pfx_ext4_append+0x10/0x10
[ 1369.302952]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1369.302974]  ext4_init_new_dir+0x13c/0x240
[ 1369.302985]  ? __pfx_ext4_init_new_dir+0x10/0x10
[ 1369.303003]  ext4_mkdir+0x3c5/0xb30
[ 1369.303019]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1369.303030]  ? security_inode_permission+0x72/0xe0
[ 1369.303049]  vfs_mkdir+0x59a/0x8d0
[ 1369.303065]  do_mkdirat+0x19f/0x3d0
[ 1369.303081]  ? __pfx_do_mkdirat+0x10/0x10
[ 1369.303102]  __x64_sys_mkdir+0xf3/0x140
[ 1369.303118]  do_syscall_64+0xbf/0x390
[ 1369.303133]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1369.303145] RIP: 0033:0x7f13ca8c9c27
[ 1369.303155] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1369.303166] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1369.303178] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8c9c27
[ 1369.303185] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1369.303192] RBP: 00007f13c7e40040 R08: 0000000000000000 R09: 0000000000000000
[ 1369.303199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1369.303206] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1369.303223]  </TASK>
[ 1369.359514] FAULT_INJECTION: forcing a failure.
[ 1369.359514] name failslab, interval 1, probability 0, space 0, times 0
06:13:54 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x800448d5, 0x0)

06:13:54 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

[ 1369.361960] CPU: 0 UID: 0 PID: 24984 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1369.361993] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1369.362007] Call Trace:
[ 1369.362016]  <TASK>
[ 1369.362026]  dump_stack_lvl+0xfa/0x120
[ 1369.362064]  should_fail_ex+0x4d7/0x5e0
[ 1369.362107]  should_failslab+0xc2/0x120
[ 1369.362143]  __kmalloc_noprof+0xcd/0x680
[ 1369.362185]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 1369.362219]  ? ext4_find_extent+0x7f5/0xa00
[ 1369.362274]  ext4_find_extent+0x7f5/0xa00
[ 1369.362319]  ? mark_held_locks+0x49/0x80
[ 1369.362366]  ext4_ext_map_blocks+0x1cc/0x5f70
[ 1369.362408]  ? perf_trace_run_bpf_submit+0xef/0x180
[ 1369.362438]  ? perf_trace_run_bpf_submit+0xef/0x180
[ 1369.362487]  ? perf_trace_lock_acquire+0x3c2/0x700
[ 1369.362527]  ? __pfx___schedule+0x10/0x10
[ 1369.362579]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[ 1369.362626]  ? look_up_lock_class+0x56/0x150
[ 1369.362664]  ? lock_acquire+0x15e/0x2f0
[ 1369.362705]  ? ext4_map_blocks+0x55b/0x14a0
[ 1369.362774]  ? down_write+0x119/0x1f0
[ 1369.362804]  ? __pfx_down_write+0x10/0x10
[ 1369.362828]  ? ext4_es_lookup_extent+0xc8/0xb30
[ 1369.362884]  ext4_map_blocks+0x624/0x14a0
[ 1369.362950]  ? __up_read+0x197/0x750
[ 1369.362989]  ? __pfx_ext4_map_blocks+0x10/0x10
[ 1369.363021]  ? __pfx___up_read+0x10/0x10
[ 1369.363064]  ? lock_release+0xc8/0x290
[ 1369.363118]  ? ext4_map_blocks+0x1e0/0x14a0
[ 1369.363173]  ext4_getblk+0x682/0x8e0
[ 1369.363212]  ? __pfx_ext4_getblk+0x10/0x10
[ 1369.363239]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1369.363295]  ? crc32c+0x1ae/0x350
[ 1369.363352]  ext4_bread+0x2e/0x1a0
[ 1369.363391]  ext4_append+0x224/0x530
[ 1369.363438]  ? __pfx_ext4_append+0x10/0x10
[ 1369.363495]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1369.363558]  ext4_init_new_dir+0x13c/0x240
[ 1369.363584]  ? __pfx_ext4_init_new_dir+0x10/0x10
[ 1369.363643]  ext4_mkdir+0x3c5/0xb30
[ 1369.363690]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1369.363715]  ? security_inode_permission+0x72/0xe0
[ 1369.363772]  vfs_mkdir+0x59a/0x8d0
[ 1369.363814]  do_mkdirat+0x19f/0x3d0
[ 1369.363857]  ? __pfx_do_mkdirat+0x10/0x10
[ 1369.363920]  __x64_sys_mkdir+0xf3/0x140
[ 1369.363958]  do_syscall_64+0xbf/0x390
[ 1369.363993]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1369.364018] RIP: 0033:0x7efe12680c27
[ 1369.364037] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1369.364058] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1369.364081] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe12680c27
[ 1369.364096] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1369.364109] RBP: 00007efe0fbf7040 R08: 0000000000000000 R09: 0000000000000000
[ 1369.364123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1369.364137] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1369.364202]  </TASK>
06:13:55 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:13:55 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x29, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/41})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:14:06 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, 0x0)

06:14:06 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(0x0, 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:14:06 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x800448d7, 0x0)

06:14:06 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x4, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='efer:,\x00\x00\x00\x00\x00\x00\x00\x00'])
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:14:06 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="040f5fae000408"], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:14:06 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 17)

06:14:06 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:14:06 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 21)

[ 1380.514684] tmpfs: Unknown parameter 'efer:'
06:14:21 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 22)

06:14:21 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x2, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:14:21 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(0x0, 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:14:21 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x800448f0, 0x0)

06:14:21 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 18)

06:14:21 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:14:21 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x2000001fb, 0x28a040)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2, 0x10}, @l2cap_cid_le_signaling={{0xc}, @l2cap_ecred_reconf_req={{0x19, 0x0, 0x8}, {0x3, 0x9, [0x3, 0x1]}}}}, 0x15)

06:14:21 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, 0x0)

[ 1395.938501] FAULT_INJECTION: forcing a failure.
[ 1395.938501] name failslab, interval 1, probability 0, space 0, times 0
[ 1395.940613] CPU: 1 UID: 0 PID: 25405 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1395.940651] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1395.940666] Call Trace:
[ 1395.940676]  <TASK>
[ 1395.940686]  dump_stack_lvl+0xfa/0x120
[ 1395.940730]  should_fail_ex+0x4d7/0x5e0
[ 1395.940765]  ? ext4_mb_new_blocks+0x64e/0x45b0
[ 1395.940801]  should_failslab+0xc2/0x120
[ 1395.940839]  kmem_cache_alloc_noprof+0x80/0x690
[ 1395.940882]  ? do_raw_spin_unlock+0x53/0x220
[ 1395.940920]  ? ext4_mb_new_blocks+0x64e/0x45b0
[ 1395.940954]  ext4_mb_new_blocks+0x64e/0x45b0
[ 1395.941006]  ? kasan_save_track+0x14/0x30
[ 1395.941042]  ? __kasan_kmalloc+0x7f/0x90
[ 1395.941079]  ? trace_kmalloc+0x1f/0xb0
[ 1395.941111]  ? __kmalloc_noprof+0x274/0x680
[ 1395.941152]  ? mark_held_locks+0x49/0x80
[ 1395.941189]  ? __pfx_ext4_mb_new_blocks+0x10/0x10
[ 1395.941228]  ? ext4_ext_search_right+0x2e8/0xbd0
[ 1395.941271]  ? ext4_inode_to_goal_block+0x323/0x430
[ 1395.941318]  ext4_ext_map_blocks+0x1c4b/0x5f70
[ 1395.941371]  ? perf_trace_lock_acquire+0xc9/0x700
[ 1395.941410]  ? perf_trace_lock_acquire+0xc9/0x700
[ 1395.941456]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[ 1395.941502]  ? lock_acquire+0x15e/0x2f0
[ 1395.941538]  ? ext4_map_blocks+0x55b/0x14a0
[ 1395.941592]  ? __pfx_down_write+0x10/0x10
[ 1395.941623]  ? ext4_es_lookup_extent+0xc8/0xb30
[ 1395.941667]  ext4_map_blocks+0x624/0x14a0
[ 1395.941708]  ? __up_read+0x197/0x750
[ 1395.941750]  ? __pfx_ext4_map_blocks+0x10/0x10
[ 1395.941789]  ? __pfx___up_read+0x10/0x10
[ 1395.941833]  ? lock_release+0xc8/0x290
[ 1395.941879]  ? ext4_map_blocks+0x1e0/0x14a0
[ 1395.941924]  ext4_getblk+0x682/0x8e0
[ 1395.941961]  ? __pfx_ext4_getblk+0x10/0x10
[ 1395.941992]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1395.942046]  ? crc32c+0x1ae/0x350
[ 1395.942096]  ext4_bread+0x2e/0x1a0
[ 1395.942132]  ext4_append+0x224/0x530
[ 1395.942176]  ? __pfx_ext4_append+0x10/0x10
[ 1395.942219]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1395.942270]  ext4_init_new_dir+0x13c/0x240
[ 1395.942298]  ? __pfx_ext4_init_new_dir+0x10/0x10
[ 1395.942340]  ext4_mkdir+0x3c5/0xb30
[ 1395.942376]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1395.942403]  ? security_inode_permission+0x72/0xe0
[ 1395.942449]  vfs_mkdir+0x59a/0x8d0
[ 1395.942484]  do_mkdirat+0x19f/0x3d0
[ 1395.942523]  ? __pfx_do_mkdirat+0x10/0x10
[ 1395.942571]  __x64_sys_mkdir+0xf3/0x140
[ 1395.942608]  do_syscall_64+0xbf/0x390
[ 1395.942643]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1395.942671] RIP: 0033:0x7efe12680c27
[ 1395.942692] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1395.942719] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1395.942745] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe12680c27
[ 1395.942763] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1395.942809] RBP: 00007efe0fbf7040 R08: 0000000000000000 R09: 0000000000000000
[ 1395.942825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1395.942842] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1395.942883]  </TASK>
[ 1396.016281] FAULT_INJECTION: forcing a failure.
[ 1396.016281] name failslab, interval 1, probability 0, space 0, times 0
[ 1396.018251] CPU: 1 UID: 0 PID: 25460 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1396.018282] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1396.018296] Call Trace:
[ 1396.018303]  <TASK>
[ 1396.018312]  dump_stack_lvl+0xfa/0x120
[ 1396.018343]  should_fail_ex+0x4d7/0x5e0
[ 1396.018373]  ? __es_insert_extent+0xed2/0x1370
[ 1396.018398]  should_failslab+0xc2/0x120
[ 1396.018429]  kmem_cache_alloc_noprof+0x80/0x690
[ 1396.018468]  ? do_syscall_64+0xbf/0x390
[ 1396.018502]  ? __es_insert_extent+0xed2/0x1370
[ 1396.018525]  __es_insert_extent+0xed2/0x1370
[ 1396.018553]  ? __pfx_do_raw_write_lock+0x10/0x10
[ 1396.018588]  ext4_es_insert_extent+0x4d0/0x1100
[ 1396.018628]  ? __pfx_ext4_es_insert_extent+0x10/0x10
[ 1396.018664]  ? lock_acquire+0x15e/0x2f0
[ 1396.018705]  ? find_held_lock+0x2b/0x80
[ 1396.018728]  ? ext4_es_find_extent_range+0x1cf/0x510
[ 1396.018755]  ? lock_release+0xc8/0x290
[ 1396.018789]  ? do_raw_read_unlock+0x44/0xe0
[ 1396.018819]  ext4_ext_map_blocks+0x178d/0x5f70
[ 1396.018864]  ? bdev_getblk+0xd6/0x660
[ 1396.018903]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[ 1396.018928]  ? map_id_range_up+0x1d5/0x350
[ 1396.018967]  ? look_up_lock_class+0x56/0x150
[ 1396.018989]  ? perf_trace_lock_acquire+0xc9/0x700
[ 1396.019021]  ? register_lock_class+0x41/0x560
[ 1396.019059]  ? __lock_acquire+0xc65/0x1b70
[ 1396.019105]  ? lock_acquire+0x15e/0x2f0
[ 1396.019135]  ? ext4_map_blocks+0x49f/0x14a0
[ 1396.019170]  ext4_map_query_blocks+0x117/0x890
[ 1396.019199]  ? __pfx_ext4_map_query_blocks+0x10/0x10
[ 1396.019225]  ? __pfx_down_read+0x10/0x10
[ 1396.019252]  ? ext4_es_lookup_extent+0xc8/0xb30
[ 1396.019289]  ext4_map_blocks+0x4b3/0x14a0
[ 1396.019327]  ? __pfx_ext4_map_blocks+0x10/0x10
[ 1396.019355]  ? __pfx_ext4_initxattrs+0x10/0x10
[ 1396.019379]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1396.019423]  ? crc32c+0x1ae/0x350
[ 1396.019458]  ? __brelse+0x7f/0xa0
[ 1396.019481]  ? __ext4_new_inode+0x116/0x4d70
[ 1396.019519]  ext4_append+0x1b6/0x530
[ 1396.019556]  ? __pfx_ext4_append+0x10/0x10
[ 1396.019591]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1396.019634]  ext4_init_new_dir+0x13c/0x240
[ 1396.019657]  ? __pfx_ext4_init_new_dir+0x10/0x10
[ 1396.019693]  ext4_mkdir+0x3c5/0xb30
[ 1396.019723]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1396.019745]  ? security_inode_permission+0x72/0xe0
[ 1396.019798]  vfs_mkdir+0x59a/0x8d0
[ 1396.019827]  do_mkdirat+0x19f/0x3d0
[ 1396.019860]  ? __pfx_do_mkdirat+0x10/0x10
[ 1396.019901]  __x64_sys_mkdir+0xf3/0x140
[ 1396.019932]  do_syscall_64+0xbf/0x390
[ 1396.019960]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1396.019984] RIP: 0033:0x7f13ca8c9c27
[ 1396.020001] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1396.020023] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1396.020045] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8c9c27
[ 1396.020060] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1396.020073] RBP: 00007f13c7e40040 R08: 0000000000000000 R09: 0000000000000000
[ 1396.020087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1396.020100] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1396.020136]  </TASK>
06:14:21 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(0x0, 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:14:21 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xd7c, 0x0, &(0x7f0000000100))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r1, 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000040)={0x2a, 0xfffffffc, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:14:21 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, 0x0)

06:14:21 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:14:21 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100))

06:14:21 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:14:21 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 23)

06:14:21 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$mouse(&(0x7f0000000040), 0x6, 0x105480)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r1, 0x800c6613, &(0x7f0000000100)=@v2={0x2, @aes256, 0x0, '\x00', @d})
r2 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:14:21 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 19)

06:14:21 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:14:21 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100))

06:14:21 executing program 4:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0)
r2 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
r3 = fcntl$getown(r2, 0x9)
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x0, 0x8d, 0x40, 0x0, 0x0, 0x5, 0x202, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x40, 0x0, @perf_config_ext={0x0, 0x2}, 0x31a, 0x5, 0x3, 0x6, 0xa00000000000, 0x4, 0x8, 0x0, 0xc83, 0x0, 0x7f}, r3, 0x10000000000e, r0, 0xa)
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:14:21 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:14:21 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x80086601, 0x0)

06:14:21 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 24)

[ 1396.371222] FAULT_INJECTION: forcing a failure.
[ 1396.371222] name failslab, interval 1, probability 0, space 0, times 0
[ 1396.372217] CPU: 0 UID: 0 PID: 25640 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1396.372233] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1396.372240] Call Trace:
[ 1396.372245]  <TASK>
[ 1396.372251]  dump_stack_lvl+0xfa/0x120
[ 1396.372272]  should_fail_ex+0x4d7/0x5e0
[ 1396.372294]  ? ext4_mb_new_blocks+0x2414/0x45b0
[ 1396.372310]  should_failslab+0xc2/0x120
[ 1396.372328]  kmem_cache_alloc_noprof+0x80/0x690
[ 1396.372364]  ? ext4_mb_new_blocks+0x2414/0x45b0
[ 1396.372378]  ext4_mb_new_blocks+0x2414/0x45b0
[ 1396.372411]  ? kasan_save_track+0x14/0x30
[ 1396.372428]  ? __kasan_kmalloc+0x7f/0x90
[ 1396.372446]  ? trace_kmalloc+0x1f/0xb0
[ 1396.372460]  ? __kmalloc_noprof+0x274/0x680
[ 1396.372479]  ? mark_held_locks+0x49/0x80
[ 1396.372498]  ? __pfx_ext4_mb_new_blocks+0x10/0x10
[ 1396.372518]  ? ext4_ext_search_right+0x2e8/0xbd0
[ 1396.372537]  ? ext4_inode_to_goal_block+0x323/0x430
[ 1396.372566]  ext4_ext_map_blocks+0x1c4b/0x5f70
[ 1396.372604]  ? perf_trace_lock_acquire+0x3c2/0x700
[ 1396.372635]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[ 1396.372668]  ? lock_acquire+0x15e/0x2f0
[ 1396.372684]  ? ext4_map_blocks+0x55b/0x14a0
[ 1396.372727]  ? __pfx_down_write+0x10/0x10
[ 1396.372741]  ? ext4_es_lookup_extent+0xc8/0xb30
[ 1396.372769]  ext4_map_blocks+0x624/0x14a0
[ 1396.372794]  ? __up_read+0x197/0x750
[ 1396.372812]  ? __pfx_ext4_map_blocks+0x10/0x10
[ 1396.372828]  ? __pfx___up_read+0x10/0x10
[ 1396.372849]  ? lock_release+0xc8/0x290
[ 1396.372876]  ? ext4_map_blocks+0x1e0/0x14a0
[ 1396.372904]  ext4_getblk+0x682/0x8e0
[ 1396.372924]  ? __pfx_ext4_getblk+0x10/0x10
[ 1396.372937]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1396.372966]  ? crc32c+0x1ae/0x350
[ 1396.372995]  ext4_bread+0x2e/0x1a0
[ 1396.373015]  ext4_append+0x224/0x530
[ 1396.373038]  ? __pfx_ext4_append+0x10/0x10
[ 1396.373060]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1396.373092]  ext4_init_new_dir+0x13c/0x240
[ 1396.373105]  ? __pfx_ext4_init_new_dir+0x10/0x10
[ 1396.373135]  ext4_mkdir+0x3c5/0xb30
[ 1396.373159]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1396.373171]  ? security_inode_permission+0x72/0xe0
[ 1396.373200]  vfs_mkdir+0x59a/0x8d0
[ 1396.373222]  do_mkdirat+0x19f/0x3d0
[ 1396.373243]  ? __pfx_do_mkdirat+0x10/0x10
[ 1396.373275]  __x64_sys_mkdir+0xf3/0x140
[ 1396.373294]  do_syscall_64+0xbf/0x390
[ 1396.373313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1396.373326] RIP: 0033:0x7efe12680c27
[ 1396.373336] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1396.373347] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1396.373359] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe12680c27
[ 1396.373367] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1396.373373] RBP: 00007efe0fbf7040 R08: 0000000000000000 R09: 0000000000000000
[ 1396.373380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1396.373387] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1396.373421]  </TASK>
[ 1396.392417] tmpfs: Bad value for 'mpol'
06:14:30 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100))

06:14:30 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="030000f9aec0221ad7bac4f84fdec4c5502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/100], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:14:30 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x80087601, 0x0)

06:14:30 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 20)

06:14:30 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:14:30 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 25)

06:14:30 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x186d, 0x0, 0x20000, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="6d706f22d40000000000"])
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)
r1 = fork()
sendmsg$AUDIT_SET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x38, 0x3e9, 0x0, 0x70bd28, 0x25dfdbfe, {0x18, 0x0, 0x2, r1, 0x8, 0x6, 0x10000, 0x8, 0x0, 0x6}, ["", "", "", ""]}, 0x38}, 0x1, 0x0, 0x0, 0x8010}, 0x4040000)
waitid(0x0, r1, &(0x7f00000000c0), 0x1000000, 0x0)

06:14:30 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

[ 1405.421470] FAULT_INJECTION: forcing a failure.
[ 1405.421470] name failslab, interval 1, probability 0, space 0, times 0
[ 1405.422467] CPU: 0 UID: 0 PID: 25754 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1405.422483] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1405.422491] Call Trace:
[ 1405.422496]  <TASK>
[ 1405.422501]  dump_stack_lvl+0xfa/0x120
[ 1405.422523]  should_fail_ex+0x4d7/0x5e0
[ 1405.422546]  should_failslab+0xc2/0x120
[ 1405.422566]  __kmalloc_noprof+0xcd/0x680
[ 1405.422588]  ? mark_held_locks+0x49/0x80
[ 1405.422606]  ? ext4_find_extent+0x7f5/0xa00
[ 1405.422635]  ext4_find_extent+0x7f5/0xa00
[ 1405.422666]  ext4_ext_map_blocks+0x1cc/0x5f70
[ 1405.422688]  ? perf_trace_run_bpf_submit+0xef/0x180
[ 1405.422709]  ? perf_trace_run_bpf_submit+0xef/0x180
[ 1405.422733]  ? perf_trace_lock_acquire+0x3c2/0x700
[ 1405.422765]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[ 1405.422798]  ? lock_acquire+0x15e/0x2f0
[ 1405.422814]  ? ext4_map_blocks+0x55b/0x14a0
[ 1405.422850]  ? down_write+0x119/0x1f0
[ 1405.422867]  ? __pfx_down_write+0x10/0x10
[ 1405.422879]  ? ext4_es_lookup_extent+0xc8/0xb30
[ 1405.422907]  ext4_map_blocks+0x624/0x14a0
[ 1405.422932]  ? __up_read+0x197/0x750
[ 1405.422952]  ? __pfx_ext4_map_blocks+0x10/0x10
[ 1405.422967]  ? __pfx___up_read+0x10/0x10
[ 1405.422989]  ? lock_release+0xc8/0x290
[ 1405.423016]  ? ext4_map_blocks+0x1e0/0x14a0
[ 1405.423044]  ext4_getblk+0x682/0x8e0
[ 1405.423064]  ? __pfx_ext4_getblk+0x10/0x10
[ 1405.423077]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1405.423106]  ? crc32c+0x1ae/0x350
[ 1405.423139]  ext4_bread+0x2e/0x1a0
[ 1405.423159]  ext4_append+0x224/0x530
[ 1405.423183]  ? __pfx_ext4_append+0x10/0x10
[ 1405.423205]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1405.423238]  ext4_init_new_dir+0x13c/0x240
[ 1405.423251]  ? __pfx_ext4_init_new_dir+0x10/0x10
[ 1405.423281]  ext4_mkdir+0x3c5/0xb30
[ 1405.423305]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1405.423318]  ? security_inode_permission+0x72/0xe0
[ 1405.423347]  vfs_mkdir+0x59a/0x8d0
[ 1405.423370]  do_mkdirat+0x19f/0x3d0
[ 1405.423392]  ? __pfx_do_mkdirat+0x10/0x10
[ 1405.423424]  __x64_sys_mkdir+0xf3/0x140
[ 1405.423443]  do_syscall_64+0xbf/0x390
[ 1405.423462]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1405.423476] RIP: 0033:0x7f13ca8c9c27
[ 1405.423487] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1405.423499] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1405.423511] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8c9c27
[ 1405.423519] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1405.423526] RBP: 00007f13c7e40040 R08: 0000000000000000 R09: 0000000000000000
[ 1405.423533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1405.423540] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1405.423574]  </TASK>
06:14:31 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:14:31 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 26)

[ 1405.520117] tmpfs: Unknown parameter 'mpo"�'
06:14:31 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x800448d7, 0x0)

06:14:31 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

[ 1405.587996] FAULT_INJECTION: forcing a failure.
[ 1405.587996] name failslab, interval 1, probability 0, space 0, times 0
[ 1405.589123] CPU: 0 UID: 0 PID: 25823 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1405.589140] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1405.589148] Call Trace:
[ 1405.589154]  <TASK>
[ 1405.589160]  dump_stack_lvl+0xfa/0x120
[ 1405.589183]  should_fail_ex+0x4d7/0x5e0
[ 1405.589197]  ? __es_remove_extent+0x53f/0x1570
[ 1405.589218]  ? __es_insert_extent+0xed2/0x1370
[ 1405.589230]  should_failslab+0xc2/0x120
[ 1405.589250]  kmem_cache_alloc_noprof+0x80/0x690
[ 1405.589275]  ? __pfx___es_remove_extent+0x10/0x10
[ 1405.589297]  ? __es_insert_extent+0xed2/0x1370
[ 1405.589310]  __es_insert_extent+0xed2/0x1370
[ 1405.589348]  ext4_es_insert_extent+0x4d0/0x1100
[ 1405.589379]  ? __pfx_ext4_es_insert_extent+0x10/0x10
[ 1405.589395]  ? lock_acquire+0x15e/0x2f0
[ 1405.589413]  ? ext4_map_blocks+0x55b/0x14a0
[ 1405.589452]  ? __pfx_down_write+0x10/0x10
[ 1405.589467]  ? ext4_es_lookup_extent+0xc8/0xb30
[ 1405.589494]  ext4_map_blocks+0x7ff/0x14a0
[ 1405.589519]  ? __up_read+0x197/0x750
[ 1405.589539]  ? __pfx_ext4_map_blocks+0x10/0x10
[ 1405.589555]  ? __pfx___up_read+0x10/0x10
[ 1405.589576]  ? lock_release+0xc8/0x290
[ 1405.589603]  ? ext4_map_blocks+0x1e0/0x14a0
[ 1405.589632]  ext4_getblk+0x682/0x8e0
[ 1405.589652]  ? __pfx_ext4_getblk+0x10/0x10
[ 1405.589665]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1405.589698]  ? crc32c+0x1ae/0x350
[ 1405.589730]  ext4_bread+0x2e/0x1a0
[ 1405.589750]  ext4_append+0x224/0x530
[ 1405.589774]  ? __pfx_ext4_append+0x10/0x10
[ 1405.589795]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1405.589828]  ext4_init_new_dir+0x13c/0x240
[ 1405.589842]  ? __pfx_ext4_init_new_dir+0x10/0x10
[ 1405.589872]  ext4_mkdir+0x3c5/0xb30
[ 1405.589896]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1405.589909]  ? security_inode_permission+0x72/0xe0
[ 1405.589938]  vfs_mkdir+0x59a/0x8d0
[ 1405.589961]  do_mkdirat+0x19f/0x3d0
[ 1405.589983]  ? __pfx_do_mkdirat+0x10/0x10
[ 1405.590015]  __x64_sys_mkdir+0xf3/0x140
[ 1405.590034]  do_syscall_64+0xbf/0x390
[ 1405.590053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1405.590067] RIP: 0033:0x7efe12680c27
[ 1405.590077] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1405.590088] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1405.590100] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe12680c27
[ 1405.590108] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1405.590115] RBP: 00007efe0fbf7040 R08: 0000000000000000 R09: 0000000000000000
[ 1405.590123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1405.590130] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1405.590164]  </TASK>
06:14:31 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 21)

06:14:31 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(0xffffffffffffffff, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r0 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:14:39 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:14:39 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x80108906, 0x0)

06:14:39 executing program 4:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r1, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x2000000}])
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r4 = fsmount(0xffffffffffffffff, 0x1, 0x4)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r5, 0x0, 0x0)
io_submit(r1, 0x4, &(0x7f00000003c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x6, 0x7, r3, &(0x7f00000000c0)="6bc49e31516b61c073e336fbb47fd64c6e1e9cf305957521c63a430b83168e0ad68008878d42c565d3c222188c204ad2ff48d0b09932", 0x36, 0x3, 0x0, 0x1, r4}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x2, 0x4, r0, &(0x7f0000000200)="22919a7d6cc1ec1a8d82a562c3ea6cad2c233716b0ce4210369e91e17d74f500d40d8dcd7b69dd803f2638568778ed8f0fa058dcd330c817dc9e6f807388d076a89ebb96f544a06d880cf4c48ccecbe413da2e2ee4b50df93a1b377a1ad492195515d9c6a46bef69e34ffec097cedeef385e9a66d7e2d401c260e467cd8b476e361e5b4b6b265516c6baa273ea2ebab51bf45046c67fdc7dc6b5f7771483", 0x9e, 0x7, 0x0, 0x2}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x7, 0x6, r0, &(0x7f0000000580)="745eb07cae5e5707c9ecfc571933a4ebdf048c53c97d2fcea55c24d9dbabe44d6b6ddb177c745e449e4fcdc8e242ca5e4f6bc643a79be24f9e0fa44603267a584314e78a73506d6ec6deda6accb91e1bc0c671734457d791edf491e04abdd333710e809d83bf5de6993c541acb0d8eec0832782ad2931fd540a5101da6560df369ecb892396a1a60a15cf2fb262af3b638cd4228da9bef5551a7b49fd1fddd8103a864024b0a6f922c61c175064656643c479a88c7a010e2f93306d59e14f852d294bdaceb96c2226c2a1795df3d64e30751f849afaf931d2678ee2cba0bdd8d132023ee71", 0xe5, 0x10001, 0x0, 0x0, r5}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x4137, r0, &(0x7f0000000680)="c734f1179b6421cf150f1641b51312d8da66ec2e62633c5fc15bcd6fb5e131fa32f522223f1fa7bdbafae6ef6cfedf81a826bdbefc23527e869b3a651426e914c9db73cd004d786edbdc23eb7bd88dd35fbd35e944f195c36ad40f457619219578c0ebe6eb0f72e96d7d908e0e42f3c3716540665692d8aa116f798cf4b9a5e0cd95e25dd534bcca5d8d1abaef61b5f7710c232f672e11d83c2f1fd56c027ad588853c6b86d5efaba917d1b324496278cdf0383603f442a41db4952f43c3e8df8b04f6d7102bfd83e62b10b4af", 0xcd, 0x8, 0x0, 0x3}])
r6 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r6, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:14:39 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x12}, @l2cap_cid_le_signaling={{0xe}, @l2cap_le_conn_req={{0x14, 0x3e, 0xa}, {0x4, 0x5, 0xfff, 0x8, 0x8}}}}, 0x17)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0xc}, @hci_rp_le_read_max_data_len={{0xc}, {0x5, 0x3f, 0x8, 0x7, 0x9}}}}, 0xf)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:14:39 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:14:39 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="02c81014000500050017f70b000104a7060400ff0001000600"], 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:14:39 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 27)

06:14:39 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 22)

[ 1413.905332] FAULT_INJECTION: forcing a failure.
[ 1413.905332] name failslab, interval 1, probability 0, space 0, times 0
[ 1413.907072] CPU: 0 UID: 0 PID: 26003 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1413.907103] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1413.907116] Call Trace:
[ 1413.907126]  <TASK>
[ 1413.907136]  dump_stack_lvl+0xfa/0x120
[ 1413.907172]  should_fail_ex+0x4d7/0x5e0
[ 1413.907212]  ? ext4_mb_new_blocks+0x64e/0x45b0
[ 1413.907243]  should_failslab+0xc2/0x120
[ 1413.907278]  kmem_cache_alloc_noprof+0x80/0x690
[ 1413.907314]  ? do_raw_spin_unlock+0x53/0x220
[ 1413.907364]  ? ext4_mb_new_blocks+0x64e/0x45b0
[ 1413.907393]  ext4_mb_new_blocks+0x64e/0x45b0
[ 1413.907460]  ? kasan_save_track+0x14/0x30
[ 1413.907492]  ? __kasan_kmalloc+0x7f/0x90
[ 1413.907527]  ? trace_kmalloc+0x1f/0xb0
[ 1413.907554]  ? __kmalloc_noprof+0x274/0x680
[ 1413.907594]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 1413.907630]  ? __pfx_ext4_mb_new_blocks+0x10/0x10
[ 1413.907669]  ? ext4_ext_search_right+0x2e8/0xbd0
[ 1413.907714]  ? ext4_inode_to_goal_block+0x323/0x430
[ 1413.907771]  ext4_ext_map_blocks+0x1c4b/0x5f70
[ 1413.907848]  ? perf_trace_lock_acquire+0x3c2/0x700
[ 1413.907888]  ? __pfx___schedule+0x10/0x10
[ 1413.907940]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[ 1413.908018]  ? lock_acquire+0x15e/0x2f0
[ 1413.908050]  ? ext4_map_blocks+0x55b/0x14a0
[ 1413.908126]  ? __pfx_down_write+0x10/0x10
[ 1413.908151]  ? ext4_es_lookup_extent+0xc8/0xb30
[ 1413.908206]  ext4_map_blocks+0x624/0x14a0
[ 1413.908255]  ? __up_read+0x197/0x750
[ 1413.908292]  ? __pfx_ext4_map_blocks+0x10/0x10
[ 1413.908324]  ? __pfx___up_read+0x10/0x10
[ 1413.908367]  ? lock_release+0xc8/0x290
[ 1413.908420]  ? ext4_map_blocks+0x1e0/0x14a0
[ 1413.908476]  ext4_getblk+0x682/0x8e0
[ 1413.908515]  ? __pfx_ext4_getblk+0x10/0x10
[ 1413.908541]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1413.908597]  ? crc32c+0x1ae/0x350
[ 1413.908654]  ext4_bread+0x2e/0x1a0
[ 1413.908693]  ext4_append+0x224/0x530
[ 1413.908739]  ? __pfx_ext4_append+0x10/0x10
06:14:39 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

[ 1413.908782]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1413.908846]  ext4_init_new_dir+0x13c/0x240
[ 1413.908873]  ? __pfx_ext4_init_new_dir+0x10/0x10
[ 1413.908931]  ext4_mkdir+0x3c5/0xb30
[ 1413.908978]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1413.909004]  ? security_inode_permission+0x72/0xe0
[ 1413.909061]  vfs_mkdir+0x59a/0x8d0
[ 1413.909103]  do_mkdirat+0x19f/0x3d0
[ 1413.909145]  ? __pfx_do_mkdirat+0x10/0x10
[ 1413.909209]  __x64_sys_mkdir+0xf3/0x140
[ 1413.909251]  do_syscall_64+0xbf/0x390
[ 1413.909287]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1413.909311] RIP: 0033:0x7f13ca8c9c27
[ 1413.909330] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1413.909352] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1413.909374] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8c9c27
[ 1413.909389] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1413.909403] RBP: 00007f13c7e40040 R08: 0000000000000000 R09: 0000000000000000
[ 1413.909416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1413.909430] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1413.909496]  </TASK>
06:14:39 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x5, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
clock_gettime(0x0, &(0x7f00000001c0)={0x0, <r1=>0x0})
select(0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x0, r1/1000+60000})
ioctl$BTRFS_IOC_WAIT_SYNC(r0, 0x40089416, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYRES64=r1], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r2 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:14:39 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 28)

06:14:39 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:14:39 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 23)

06:14:39 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_conn_param_update_rsp={{0x13, 0xfc, 0x2}, {0x7}}}}, 0xf)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

[ 1414.108281] tmpfs: Bad value for 'mpol'
[ 1414.120683] FAULT_INJECTION: forcing a failure.
[ 1414.120683] name failslab, interval 1, probability 0, space 0, times 0
[ 1414.122402] CPU: 1 UID: 0 PID: 26112 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1414.122432] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1414.122444] Call Trace:
[ 1414.122452]  <TASK>
[ 1414.122461]  dump_stack_lvl+0xfa/0x120
[ 1414.122491]  should_fail_ex+0x4d7/0x5e0
[ 1414.122520]  ? jbd2_journal_add_journal_head+0x367/0x5d0
[ 1414.122556]  should_failslab+0xc2/0x120
[ 1414.122587]  kmem_cache_alloc_noprof+0x80/0x690
[ 1414.122622]  ? fs_reclaim_acquire+0xae/0x150
[ 1414.122656]  ? jbd2_journal_add_journal_head+0x367/0x5d0
[ 1414.122691]  jbd2_journal_add_journal_head+0x367/0x5d0
[ 1414.122738]  jbd2_journal_get_create_access+0x44/0x560
[ 1414.122765]  ? lock_is_held_type+0x9e/0x120
[ 1414.122793]  __ext4_journal_get_create_access+0x54/0x1b0
[ 1414.122833]  ext4_getblk+0x3c9/0x8e0
[ 1414.122864]  ? __pfx_ext4_getblk+0x10/0x10
[ 1414.122889]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1414.122931]  ? crc32c+0x1ae/0x350
[ 1414.122971]  ext4_bread+0x2e/0x1a0
[ 1414.123000]  ext4_append+0x224/0x530
[ 1414.123035]  ? __pfx_ext4_append+0x10/0x10
[ 1414.123069]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1414.123110]  ext4_init_new_dir+0x13c/0x240
[ 1414.123132]  ? __pfx_ext4_init_new_dir+0x10/0x10
[ 1414.123165]  ext4_mkdir+0x3c5/0xb30
[ 1414.123194]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1414.123215]  ? security_inode_permission+0x72/0xe0
[ 1414.123251]  vfs_mkdir+0x59a/0x8d0
[ 1414.123280]  do_mkdirat+0x19f/0x3d0
[ 1414.123310]  ? __pfx_do_mkdirat+0x10/0x10
[ 1414.123349]  __x64_sys_mkdir+0xf3/0x140
[ 1414.123378]  do_syscall_64+0xbf/0x390
[ 1414.123405]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1414.123428] RIP: 0033:0x7efe12680c27
[ 1414.123444] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1414.123465] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1414.123486] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe12680c27
[ 1414.123500] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1414.123514] RBP: 00007efe0fbf7040 R08: 0000000000000000 R09: 0000000000000000
[ 1414.123527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1414.123540] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1414.123573]  </TASK>
[ 1414.154451] ENOMEM in journal_alloc_journal_head, retrying.
06:14:39 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x80108907, 0x0)

06:14:39 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:14:39 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 24)

[ 1414.419502] FAULT_INJECTION: forcing a failure.
[ 1414.419502] name failslab, interval 1, probability 0, space 0, times 0
[ 1414.421172] CPU: 1 UID: 0 PID: 26283 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1414.421203] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1414.421218] Call Trace:
[ 1414.421226]  <TASK>
[ 1414.421235]  dump_stack_lvl+0xfa/0x120
[ 1414.421269]  should_fail_ex+0x4d7/0x5e0
[ 1414.421298]  ? ext4_mb_new_blocks+0x2414/0x45b0
[ 1414.421329]  should_failslab+0xc2/0x120
[ 1414.421362]  kmem_cache_alloc_noprof+0x80/0x690
[ 1414.421414]  ? ext4_mb_new_blocks+0x2414/0x45b0
[ 1414.421443]  ext4_mb_new_blocks+0x2414/0x45b0
[ 1414.421487]  ? kasan_save_track+0x14/0x30
[ 1414.421517]  ? __kasan_kmalloc+0x7f/0x90
[ 1414.421550]  ? trace_kmalloc+0x1f/0xb0
[ 1414.421581]  ? __kmalloc_noprof+0x274/0x680
[ 1414.421619]  ? mark_held_locks+0x49/0x80
[ 1414.421656]  ? __pfx_ext4_mb_new_blocks+0x10/0x10
[ 1414.421691]  ? ext4_ext_search_right+0x2e8/0xbd0
[ 1414.421735]  ? ext4_inode_to_goal_block+0x323/0x430
[ 1414.421777]  ext4_ext_map_blocks+0x1c4b/0x5f70
[ 1414.421820]  ? perf_trace_lock_acquire+0xc9/0x700
[ 1414.421855]  ? perf_trace_lock_acquire+0xc9/0x700
[ 1414.421896]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[ 1414.421935]  ? lock_acquire+0x15e/0x2f0
[ 1414.421968]  ? ext4_map_blocks+0x55b/0x14a0
[ 1414.422014]  ? __pfx_down_write+0x10/0x10
[ 1414.422041]  ? ext4_es_lookup_extent+0xc8/0xb30
[ 1414.422078]  ext4_map_blocks+0x624/0x14a0
[ 1414.422113]  ? __up_read+0x197/0x750
[ 1414.422148]  ? __pfx_ext4_map_blocks+0x10/0x10
[ 1414.422177]  ? __pfx___up_read+0x10/0x10
[ 1414.422213]  ? lock_release+0xc8/0x290
[ 1414.422252]  ? ext4_map_blocks+0x1e0/0x14a0
[ 1414.422288]  ext4_getblk+0x682/0x8e0
[ 1414.422319]  ? __pfx_ext4_getblk+0x10/0x10
[ 1414.422346]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1414.422390]  ? crc32c+0x1ae/0x350
[ 1414.422433]  ext4_bread+0x2e/0x1a0
[ 1414.422463]  ext4_append+0x224/0x530
[ 1414.422500]  ? __pfx_ext4_append+0x10/0x10
[ 1414.422535]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1414.422578]  ext4_init_new_dir+0x13c/0x240
[ 1414.422601]  ? __pfx_ext4_init_new_dir+0x10/0x10
[ 1414.422637]  ext4_mkdir+0x3c5/0xb30
[ 1414.422667]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1414.422689]  ? security_inode_permission+0x72/0xe0
[ 1414.422727]  vfs_mkdir+0x59a/0x8d0
[ 1414.422757]  do_mkdirat+0x19f/0x3d0
[ 1414.422790]  ? __pfx_do_mkdirat+0x10/0x10
[ 1414.422830]  __x64_sys_mkdir+0xf3/0x140
[ 1414.422861]  do_syscall_64+0xbf/0x390
[ 1414.422890]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1414.422914] RIP: 0033:0x7f13ca8c9c27
[ 1414.422933] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1414.422954] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1414.422977] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8c9c27
[ 1414.422992] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1414.423005] RBP: 00007f13c7e40040 R08: 0000000000000000 R09: 0000000000000000
[ 1414.423019] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1414.423033] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1414.423067]  </TASK>
06:14:49 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 29)

06:14:49 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(0xffffffffffffffff, &(0x7f0000000040)=""/32, 0x20)

06:14:49 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000582bbbe9325c2f4825ed4e2e795d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4daae11c89a05bc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000480)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xd7}, "4959753d697d8d1ea0912ff76b60181e5b17b3fe71c16bdb7daf8e4f2e1714ee659167931beea4719ec3ad3ffa5f188a8c2465565bf51929fab678f3920e37e2d7daa201590d0c1de34618c6ea231bcd49e748440dbdc47f3cd510e02ede026db308d1c0d4cc8d1c63aed1db114899fa0c0ca5ba992efc070e42ba57a3dcf14652229ee2305fe3cd362498d04cad34282f604a8161095fbe718ec27d2e3bc70cc9a2174af502dc2b412e9628d7540a13bc04c79dd31890cdd3bc8ef66e70195a59983485e261aa6beb74c83e5be0bf88f45e92dadc46e1"}, 0xdb)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:14:49 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)
r0 = fork()
r1 = syz_open_dev$mouse(&(0x7f0000000180), 0x20, 0x401)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x7f, 0x0, 0x4, 0x6, 0x0, 0xfffffffffffffffe, 0x400, 0x8, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x2, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x9, 0x2, @perf_bp={&(0x7f00000000c0), 0x8}, 0x40, 0x1, 0x6cc9, 0x0, 0x2, 0x0, 0x81, 0x0, 0x7, 0x0, 0x8}, r0, 0x10, r1, 0x3)

06:14:49 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:14:49 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 25)

06:14:49 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x80111500, 0x0)

06:14:49 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
setresgid(0x0, 0x0, 0xee01)
r1 = getegid()
newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='./file0/file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}, 0xb24ce62207e50b5b)
setgroups(0x6, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, r1, r2])
sendmsg$netlink(r0, &(0x7f0000000fc0)={&(0x7f0000000040)=@kern={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000006c0)=[{&(0x7f0000000480)={0xdc, 0x1b, 0x300, 0x70bd2c, 0x25dfdbfc, "", [@nested={0xcb, 0x64, 0x0, 0x1, [@typed={0x8, 0x27, 0x0, 0x0, @ipv4=@multicast2}, @typed={0x8, 0x53, 0x0, 0x0, @uid}, @generic="ffe61e51509a4ede58e5342bacf8", @generic="c49d27fcf3924ec0241399f0fb73425711f38e39791df29eb72f0d9db7a10090747ba1ce2005d28b17c79aaa41d1b8b68d27a039dbd956d7e27b74989ecd36612154c811a22a8cdb18ba1faa1c7a3192ca6ebefd4c71c704b33751c0bce523775df0e7a17b0e0a78fbad97be470e7072697cad0facd67555b4e30176ab85b3c888fb872100dd378a9d86a1d577aa1dfadd6b435154416a366de42dec220b05da40", @typed={0x8, 0x55, 0x0, 0x0, @u32=0xfff}]}]}, 0xdc}, {&(0x7f0000000580)={0x10c, 0x26, 0x800, 0x70bd28, 0x25dfdbfc, "", [@nested={0xc, 0xd, 0x0, 0x1, [@typed={0x8, 0x14, 0x0, 0x0, @u32=0x8000}]}, @typed={0x8, 0x41, 0x0, 0x0, @pid=0xffffffffffffffff}, @typed={0xc, 0x61, 0x0, 0x0, @u64=0xfffffffffffffffd}, @nested={0x20, 0x22, 0x0, 0x1, [@generic, @typed={0xc, 0x80, 0x0, 0x0, @u64=0x2}, @typed={0x8, 0x80, 0x0, 0x0, @fd=r0}, @typed={0x8, 0x89, 0x0, 0x0, @u32=0x8}]}, @nested={0xba, 0x3e, 0x0, 0x1, [@typed={0xd, 0x8e, 0x0, 0x0, @str='/dev/sg#\x00'}, @typed={0x14, 0x5, 0x0, 0x0, @ipv6=@mcast2}, @generic="5561a69b5974890e4a30f4d71c783e95d438d542f79a7966db99508b8b6355ac643b9f793edc50452cb9e52bf042b4723184db97ef747d0b8bd379658ea85a936036559941001c0413507319729759426c5a742f64e1831a2a9aee29f1b9a8fa25f51196ded678bfb5badf2758ef2d7dedb00c76149d7d72b16e61e8846a9739bc5e34b7cd23907485de693631faedc91a1b"]}]}, 0x10c}], 0x2, &(0x7f0000000e40)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, r0]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}], 0x148, 0x20000000}, 0xc040)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r3 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:14:49 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

[ 1423.550759] tmpfs: Bad value for 'mpol'
06:14:49 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xa}, "765c973e310749af3679"}, 0xe)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:14:49 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(0xffffffffffffffff, &(0x7f0000000040)=""/32, 0x20)

06:14:49 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="02c81014001000050017030c000104a7060420ff0001000600"], 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000100)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xb0}, "e13287f4a782a5f492d032b4adfc5303bd43203bdd5c2e629ad8b5c64ee0c88ecd36c0f2d0e102c4bec92bcadb8111a4a372ae1e9f6e92649e168545a9482da9de1237bce44e124613494a233ccdb674a195852c300a3fa528537609aac32e93e7905a01f5adb329eb84a368ed1a318279add137210f7d4334112c3313d3b5fea911ea98615be06cc7afc82c9a219e310408ff1c2d987b5c308453a4c9768bf8aefadefe1a4e68845334445f2bb67ae7"}, 0xb4)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
clock_gettime(0x0, &(0x7f00000001c0)={0x0, <r1=>0x0})
select(0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x0, r1/1000+60000})
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYRESOCT=r1], 0xf)
syz_emit_vhci(&(0x7f0000000400)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2)
syz_emit_vhci(&(0x7f0000000480)=@HCI_SCODATA_PKT={0x3, {0x0, 0x5b}, "e1c8c6398710ee3be9a376cb48f750d678f485d4420d6b5353fb458414cca764970df333200ce8d15a98c5e6fc9678f0d64d4814251b07a77e70aac995f27a62b44f348fd868ff0764d858cbcd08959d90ae864873b79b8f46f5f0"}, 0x5f)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r2 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:14:49 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 26)

06:14:49 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x801c581f, 0x0)

06:14:49 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100))
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:14:49 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 30)

[ 1423.749960] FAULT_INJECTION: forcing a failure.
[ 1423.749960] name failslab, interval 1, probability 0, space 0, times 0
[ 1423.751796] CPU: 1 UID: 0 PID: 26603 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1423.751827] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1423.751840] Call Trace:
[ 1423.751847]  <TASK>
[ 1423.751856]  dump_stack_lvl+0xfa/0x120
[ 1423.751885]  should_fail_ex+0x4d7/0x5e0
[ 1423.751909]  ? __es_remove_extent+0x53f/0x1570
[ 1423.751939]  ? __es_insert_extent+0xed2/0x1370
[ 1423.751962]  should_failslab+0xc2/0x120
[ 1423.751994]  kmem_cache_alloc_noprof+0x80/0x690
[ 1423.752033]  ? __pfx___es_remove_extent+0x10/0x10
[ 1423.752065]  ? __es_insert_extent+0xed2/0x1370
[ 1423.752089]  __es_insert_extent+0xed2/0x1370
[ 1423.752145]  ext4_es_insert_extent+0x4d0/0x1100
[ 1423.752184]  ? __pfx_ext4_es_insert_extent+0x10/0x10
[ 1423.752211]  ? lock_acquire+0x15e/0x2f0
[ 1423.752243]  ? ext4_map_blocks+0x55b/0x14a0
[ 1423.752288]  ? __pfx_down_write+0x10/0x10
[ 1423.752313]  ? ext4_es_lookup_extent+0xc8/0xb30
[ 1423.752350]  ext4_map_blocks+0x7ff/0x14a0
[ 1423.752384]  ? __up_read+0x197/0x750
[ 1423.752419]  ? __pfx_ext4_map_blocks+0x10/0x10
[ 1423.752447]  ? __pfx___up_read+0x10/0x10
[ 1423.752483]  ? lock_release+0xc8/0x290
[ 1423.752521]  ? ext4_map_blocks+0x1e0/0x14a0
[ 1423.752558]  ext4_getblk+0x682/0x8e0
[ 1423.752589]  ? __pfx_ext4_getblk+0x10/0x10
[ 1423.752615]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1423.752660]  ? crc32c+0x1ae/0x350
[ 1423.752709]  ext4_bread+0x2e/0x1a0
[ 1423.752739]  ext4_append+0x224/0x530
[ 1423.752775]  ? __pfx_ext4_append+0x10/0x10
[ 1423.752811]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1423.752854]  ext4_init_new_dir+0x13c/0x240
[ 1423.752876]  ? __pfx_ext4_init_new_dir+0x10/0x10
[ 1423.752912]  ext4_mkdir+0x3c5/0xb30
[ 1423.752942]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1423.752963]  ? security_inode_permission+0x72/0xe0
[ 1423.753002]  vfs_mkdir+0x59a/0x8d0
[ 1423.753031]  do_mkdirat+0x19f/0x3d0
[ 1423.753063]  ? __pfx_do_mkdirat+0x10/0x10
[ 1423.753104]  __x64_sys_mkdir+0xf3/0x140
[ 1423.753134]  do_syscall_64+0xbf/0x390
[ 1423.753163]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1423.753187] RIP: 0033:0x7f13ca8c9c27
[ 1423.753205] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1423.753226] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1423.753248] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8c9c27
[ 1423.753263] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1423.753277] RBP: 00007f13c7e40040 R08: 0000000000000000 R09: 0000000000000000
[ 1423.753290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1423.753304] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1423.753338]  </TASK>
06:14:58 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYRESHEX=r0, @ANYRES32, @ANYRES16=r0, @ANYRES32, @ANYRESOCT=r0], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:14:58 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="02c8000104a7060400ff0001000600"], 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:14:58 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(0xffffffffffffffff, &(0x7f0000000040)=""/32, 0x20)

06:14:58 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100))
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:14:58 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x80811501, 0x0)

06:14:58 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 31)

06:14:58 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 27)

06:14:58 executing program 4:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x5, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0x3591, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0)
dup(r0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="6d706f6c3d707265666561bd05021c0292ca2eee89f86e7cc8e0c20ee65045422df3c61d1cab4d18d30b0034069e053dcb5ef7b9e888dbe4e2d6ee3d9e2bcc94f4b6ee9137edfb6e90080fef9917c204a0388976c03c3f1a4ea4c1f97c0778c7c3b6b40dcb427d6338dfa33a45c7961708652448fc0e71dedae41a16d61673030f7419148e3e4d14075a1bfe86b7cc6b7c2b87a858465a59d2fef8ccf401435901fd932ed629a5f7a5fd812fb1a98d0792e57868d816cdd38b5bb35679408b44e8278911e50cb18d96d134ad93854792e1d96fa29078346f08f126943fe2a9b2bfd908a631e6"])
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)
fchmodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x80)

06:14:58 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100))
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}, 0x20}}}, 0x7)

06:14:58 executing program 0:
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={'veth1_virt_wifi\x00', {0x2, 0x0, @loopback}})
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_mode_change={{0x14, 0x6}, {0x6, 0xc9, 0x5, 0x200}}}, 0x9)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
syz_emit_vhci(&(0x7f0000000140)=@HCI_VENDOR_PKT, 0x2)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:14:58 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(0x0, 0x0)

[ 1432.699183] FAULT_INJECTION: forcing a failure.
[ 1432.699183] name failslab, interval 1, probability 0, space 0, times 0
[ 1432.701167] CPU: 1 UID: 0 PID: 26722 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1432.701200] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1432.701214] Call Trace:
[ 1432.701222]  <TASK>
[ 1432.701231]  dump_stack_lvl+0xfa/0x120
[ 1432.701263]  should_fail_ex+0x4d7/0x5e0
[ 1432.701288]  ? __es_remove_extent+0x53f/0x1570
[ 1432.701321]  ? __es_insert_extent+0xed2/0x1370
[ 1432.701346]  should_failslab+0xc2/0x120
[ 1432.701380]  kmem_cache_alloc_noprof+0x80/0x690
[ 1432.701422]  ? __pfx___es_remove_extent+0x10/0x10
[ 1432.701457]  ? __es_insert_extent+0xed2/0x1370
[ 1432.701483]  __es_insert_extent+0xed2/0x1370
[ 1432.701528]  ext4_es_insert_extent+0x4d0/0x1100
[ 1432.701570]  ? __pfx_ext4_es_insert_extent+0x10/0x10
[ 1432.701600]  ? lock_acquire+0x15e/0x2f0
[ 1432.701633]  ? ext4_map_blocks+0x55b/0x14a0
[ 1432.701682]  ? __pfx_down_write+0x10/0x10
[ 1432.701718]  ? ext4_es_lookup_extent+0xc8/0xb30
[ 1432.701757]  ext4_map_blocks+0x7ff/0x14a0
[ 1432.701794]  ? __up_read+0x197/0x750
[ 1432.701831]  ? __pfx_ext4_map_blocks+0x10/0x10
[ 1432.701861]  ? __pfx___up_read+0x10/0x10
[ 1432.701900]  ? lock_release+0xc8/0x290
[ 1432.701941]  ? ext4_map_blocks+0x1e0/0x14a0
[ 1432.701981]  ext4_getblk+0x682/0x8e0
[ 1432.702014]  ? __pfx_ext4_getblk+0x10/0x10
[ 1432.702042]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1432.702090]  ? crc32c+0x1ae/0x350
[ 1432.702135]  ext4_bread+0x2e/0x1a0
[ 1432.702167]  ext4_append+0x224/0x530
[ 1432.702207]  ? __pfx_ext4_append+0x10/0x10
[ 1432.702245]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1432.702291]  ext4_init_new_dir+0x13c/0x240
[ 1432.702316]  ? __pfx_ext4_init_new_dir+0x10/0x10
[ 1432.702354]  ext4_mkdir+0x3c5/0xb30
[ 1432.702386]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1432.702409]  ? security_inode_permission+0x72/0xe0
[ 1432.702450]  vfs_mkdir+0x59a/0x8d0
[ 1432.702482]  do_mkdirat+0x19f/0x3d0
[ 1432.702517]  ? __pfx_do_mkdirat+0x10/0x10
[ 1432.702560]  __x64_sys_mkdir+0xf3/0x140
[ 1432.702593]  do_syscall_64+0xbf/0x390
[ 1432.702624]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1432.702649] RIP: 0033:0x7f13ca8c9c27
[ 1432.702668] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1432.702691] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1432.702715] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8c9c27
[ 1432.702731] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1432.702745] RBP: 00007f13c7e40040 R08: 0000000000000000 R09: 0000000000000000
[ 1432.702760] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1432.702775] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1432.702812]  </TASK>
06:14:58 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

[ 1432.761583] tmpfs: Bad value for 'mpol'
06:15:07 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:15:07 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents64(r0, &(0x7f0000000180)=""/4, 0x4)
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
move_mount(r0, &(0x7f0000000040)='./file0\x00', r0, &(0x7f0000000140)='./file0\x00', 0x18)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:15:07 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0xc0045878, 0x0)

06:15:07 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540)=<r1=>0x0)
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x1000)=nil, 0x1000, 0x7, 0x13, 0xffffffffffffffff, 0x0)
r3 = syz_io_uring_complete(r2)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r5, 0x0, 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r5)
sendmsg$NL80211_CMD_SET_MPATH(r3, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x68, r6, 0x200, 0x70bd2d, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x68}, 0x1, 0x0, 0x0, 0x408d1}, 0x20004000)
unlinkat(r5, &(0x7f0000000100)='./file0\x00', 0x200)
syz_io_uring_submit(r2, r1, &(0x7f00000000c0)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x5, 0x4000, @fd_index=0x7, 0x100000000, 0x0, 0x0, 0x0, 0x1, {0x1, r4}}, 0x7)
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:15:07 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(0x0, 0x0)

06:15:07 executing program 1:
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_hardware_error={{0x10, 0x1}, {0x9}}}, 0x4)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d800004c248dbc73be336b0e1cb20000000000000000000034b206c0b652d0cd4dd529ba4885e3590559d563d17dc47f2caf01abae6a212a2de1a74be6104c1b1b99f1174d0a4245bc0227956ca488b7787d0ba042a6f37a3eef765871572adab70b2be3566b69730a13cb97213e7e46bb9710d4c3297c1aeb710d8f99f89f0a9674f41f21b05d9cd628331900"], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000300)=ANY=[@ANYBLOB="3c708686b106e2f070a4642aa7d7195181d67ee652b623ef0ba5f27b02508e9023ae7216b4f44b3fd9db41dd48d67931139c755f0ac8bf8ba2a046b4ba9eada4c1de6ea67df3b185df26"], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r1, 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000480)={0x12f, 0x2, 0x2, "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"})

06:15:07 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 28)

06:15:07 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 32)

[ 1441.724549] FAULT_INJECTION: forcing a failure.
[ 1441.724549] name failslab, interval 1, probability 0, space 0, times 0
[ 1441.725502] CPU: 0 UID: 0 PID: 26930 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1441.725518] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1441.725526] Call Trace:
[ 1441.725530]  <TASK>
[ 1441.725536]  dump_stack_lvl+0xfa/0x120
[ 1441.725556]  should_fail_ex+0x4d7/0x5e0
[ 1441.725577]  ? jbd2_journal_add_journal_head+0x367/0x5d0
[ 1441.725597]  should_failslab+0xc2/0x120
[ 1441.725616]  kmem_cache_alloc_noprof+0x80/0x690
[ 1441.725637]  ? fs_reclaim_acquire+0xae/0x150
[ 1441.725664]  ? jbd2_journal_add_journal_head+0x367/0x5d0
[ 1441.725684]  jbd2_journal_add_journal_head+0x367/0x5d0
[ 1441.725714]  jbd2_journal_get_create_access+0x44/0x560
[ 1441.725731]  ? lock_is_held_type+0x9e/0x120
[ 1441.725752]  __ext4_journal_get_create_access+0x54/0x1b0
[ 1441.725780]  ext4_getblk+0x3c9/0x8e0
[ 1441.725800]  ? __pfx_ext4_getblk+0x10/0x10
[ 1441.725814]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1441.725843]  ? crc32c+0x1ae/0x350
[ 1441.725873]  ext4_bread+0x2e/0x1a0
[ 1441.725893]  ext4_append+0x224/0x530
[ 1441.725917]  ? __pfx_ext4_append+0x10/0x10
[ 1441.725939]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1441.725972]  ext4_init_new_dir+0x13c/0x240
[ 1441.725985]  ? __pfx_ext4_init_new_dir+0x10/0x10
[ 1441.726015]  ext4_mkdir+0x3c5/0xb30
[ 1441.726039]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1441.726052]  ? security_inode_permission+0x72/0xe0
[ 1441.726081]  vfs_mkdir+0x59a/0x8d0
[ 1441.726104]  do_mkdirat+0x19f/0x3d0
[ 1441.726126]  ? __pfx_do_mkdirat+0x10/0x10
[ 1441.726158]  __x64_sys_mkdir+0xf3/0x140
[ 1441.726177]  do_syscall_64+0xbf/0x390
[ 1441.726195]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1441.726209] RIP: 0033:0x7f13ca8c9c27
[ 1441.726219] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1441.726230] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1441.726241] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8c9c27
[ 1441.726249] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1441.726256] RBP: 00007f13c7e40040 R08: 0000000000000000 R09: 0000000000000000
[ 1441.726263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1441.726270] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1441.726303]  </TASK>
[ 1441.742571] FAULT_INJECTION: forcing a failure.
[ 1441.742571] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1441.743029] ENOMEM in journal_alloc_journal_head, retrying.
[ 1441.744535] CPU: 1 UID: 0 PID: 26931 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1441.744568] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1441.744581] Call Trace:
[ 1441.744589]  <TASK>
[ 1441.744598]  dump_stack_lvl+0xfa/0x120
[ 1441.744625]  should_fail_ex+0x4d7/0x5e0
[ 1441.744655]  _copy_from_user+0x30/0xd0
[ 1441.744684]  memdup_user+0x7e/0xe0
[ 1441.744726]  strndup_user+0x78/0xe0
[ 1441.744761]  __x64_sys_mount+0x136/0x310
[ 1441.744795]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1441.744839]  do_syscall_64+0xbf/0x390
[ 1441.744869]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1441.744893] RIP: 0033:0x7efe1268304a
[ 1441.744910] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1441.744933] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1441.744956] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe1268304a
[ 1441.744972] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1441.744987] RBP: 00007efe0fbf7040 R08: 00007efe0fbf7040 R09: 0000000020000000
[ 1441.745002] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1441.745017] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1441.745051]  </TASK>
06:15:07 executing program 3:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:15:07 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(0x0, 0x0)

06:15:07 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

[ 1441.842055] tmpfs: Bad value for 'mpol'
06:15:07 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000140)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x45}, "4814a349f69ebfddf67754fa7943110b86f22d53777cd30c1a8d68ac7c345c0a322163659a24d10bed0fbde87bc9645558b21455173d43fa00b2d6f97860bcd5d210d12c05"}, 0x49)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:15:07 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{}, 0x20}}}, 0x7)

06:15:07 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000100)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x2, 0xc}, @l2cap_cid_signaling={{0x8}, [@l2cap_move_chan_cfm={{0x10, 0x3f, 0x4}, {0x8000, 0x8}}]}}, 0x11)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYRESDEC=r0], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000140)={0x40000009})

06:15:07 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 29)

06:15:07 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 33)

[ 1441.954607] FAULT_INJECTION: forcing a failure.
[ 1441.954607] name failslab, interval 1, probability 0, space 0, times 0
[ 1441.955846] CPU: 0 UID: 0 PID: 27070 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
06:15:07 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{}, 0x20}}}, 0x7)

[ 1441.955863] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1441.955870] Call Trace:
[ 1441.955875]  <TASK>
[ 1441.955880]  dump_stack_lvl+0xfa/0x120
[ 1441.955901]  should_fail_ex+0x4d7/0x5e0
[ 1441.955922]  ? jbd2_journal_add_journal_head+0x367/0x5d0
[ 1441.955942]  should_failslab+0xc2/0x120
[ 1441.955961]  kmem_cache_alloc_noprof+0x80/0x690
[ 1441.955981]  ? fs_reclaim_acquire+0xae/0x150
[ 1441.956008]  ? jbd2_journal_add_journal_head+0x367/0x5d0
[ 1441.956027]  jbd2_journal_add_journal_head+0x367/0x5d0
[ 1441.956053]  jbd2_journal_get_create_access+0x44/0x560
[ 1441.956069]  ? lock_is_held_type+0x9e/0x120
[ 1441.956091]  __ext4_journal_get_create_access+0x54/0x1b0
[ 1441.956118]  ext4_getblk+0x3c9/0x8e0
[ 1441.956139]  ? __pfx_ext4_getblk+0x10/0x10
[ 1441.956152]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1441.956181]  ? crc32c+0x1ae/0x350
[ 1441.956211]  ext4_bread+0x2e/0x1a0
[ 1441.956231]  ext4_append+0x224/0x530
[ 1441.956255]  ? __pfx_ext4_append+0x10/0x10
[ 1441.956277]  ? __pfx___ext4_new_inode+0x10/0x10
[ 1441.956321]  ext4_init_new_dir+0x13c/0x240
[ 1441.956335]  ? __pfx_ext4_init_new_dir+0x10/0x10
[ 1441.956365]  ext4_mkdir+0x3c5/0xb30
[ 1441.956389]  ? __pfx_ext4_mkdir+0x10/0x10
[ 1441.956402]  ? security_inode_permission+0x72/0xe0
[ 1441.956431]  vfs_mkdir+0x59a/0x8d0
[ 1441.956454]  do_mkdirat+0x19f/0x3d0
[ 1441.956475]  ? __pfx_do_mkdirat+0x10/0x10
[ 1441.956508]  __x64_sys_mkdir+0xf3/0x140
[ 1441.956527]  do_syscall_64+0xbf/0x390
[ 1441.956545]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1441.956558] RIP: 0033:0x7f13ca8c9c27
[ 1441.956568] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1441.956579] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1441.956591] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8c9c27
[ 1441.956598] RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000020000080
[ 1441.956605] RBP: 00007f13c7e40040 R08: 0000000000000000 R09: 0000000000000000
[ 1441.956613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 1441.956620] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1441.956654]  </TASK>
[ 1441.956660] ENOMEM in journal_alloc_journal_head, retrying.
06:15:07 executing program 1:
ioctl$F2FS_IOC_PRECACHE_EXTENTS(0xffffffffffffffff, 0xf50f, 0x0)
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f0000000100)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x0, 0x40}, @l2cap_cid_signaling={{0x3c}, [@l2cap_create_chan_rsp={{0xd, 0x37, 0x8}, {0x80, 0x7, 0x7f, 0x8}}, @l2cap_conn_rsp={{0x3, 0x9, 0x8}, {0x4, 0x4, 0x4, 0x8000}}, @l2cap_disconn_rsp={{0x7, 0x2, 0x4}, {0x4, 0x1f}}, @l2cap_cmd_rej_unk={{0x1, 0x8, 0x2}, {0xfffe}}, @l2cap_disconn_rsp={{0x7, 0x53, 0x4}, {0x6, 0xabb}}, @l2cap_move_chan_rsp={{0xf, 0x1, 0x4}, {0x0, 0x43}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x2, 0x2}, {0x5}}]}}, 0x45)
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x7fff, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

[ 1442.062529] FAULT_INJECTION: forcing a failure.
[ 1442.062529] name failslab, interval 1, probability 0, space 0, times 0
[ 1442.063636] CPU: 0 UID: 0 PID: 27154 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1442.063653] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1442.063660] Call Trace:
[ 1442.063664]  <TASK>
[ 1442.063670]  dump_stack_lvl+0xfa/0x120
[ 1442.063695]  should_fail_ex+0x4d7/0x5e0
[ 1442.063716]  should_failslab+0xc2/0x120
[ 1442.063735]  __kmalloc_cache_noprof+0x81/0x6b0
[ 1442.063754]  ? __might_fault+0xe0/0x190
[ 1442.063771]  ? copy_mount_options+0x55/0x180
[ 1442.063800]  ? copy_mount_options+0x55/0x180
[ 1442.063815]  ? memdup_user+0x95/0xe0
[ 1442.063832]  copy_mount_options+0x55/0x180
[ 1442.063856]  __x64_sys_mount+0x1ab/0x310
[ 1442.063874]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1442.063907]  do_syscall_64+0xbf/0x390
[ 1442.063926]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1442.063939] RIP: 0033:0x7efe1268304a
[ 1442.063949] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1442.063960] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1442.063971] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe1268304a
[ 1442.063979] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1442.063986] RBP: 00007efe0fbf7040 R08: 00007efe0fbf7040 R09: 0000000020000000
[ 1442.063993] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1442.064000] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1442.064033]  </TASK>
06:15:16 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 30)

06:15:16 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x2, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
signalfd(r0, &(0x7f0000000040)={[0x4]}, 0x8)
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000140)=@HCI_VENDOR_PKT, 0x2)
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000180), 0x60400, 0x0)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="19aaf2f01d810200050017030c000104a7060400ff00010006"], 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f0000000740)=ANY=[@ANYBLOB="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"/430], 0x54)
syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYRESOCT=r1], 0x19)
getdents64(r1, 0x0, 0x0)
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="8d00000000000000ff042a94c8ea4c468c631699bd6f2b1cd0e393ce029d663681d15eed0fb6d8e2fb15956a046c067e1a1fc375be5dd6ce2880b11676eeaf51f8a69ef702baafc3c700e9160d0faca67671cfd514dfe43899a352a9bda2e1a186b77e7a9dd5304bf669b28ec2ca9ca273df2d117bb687b8c078b5"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r2 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000340)={0x2a, 0xfffdffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000100))

06:15:16 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="a8c8778da27a1ed19589651fa9852d0636135e25f3fb67ba10a08be0e22c7eaeb76f2d782d0f4d46730251d6717a0804d398633bfc2552516dc2cc2494b4a31007eec3b3c1a2b9e930bc2c9337923e6cf47b0998c6677f375937d21c9d552cf0977843d53ac85f5b6dc64ab4872efadb59aafae957a4b064f3d95d2678321877fd36d2c85f5ecdc6e5540ee140f2d74e1c"])
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:15:16 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:15:16 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:15:16 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{}, 0x20}}}, 0x7)

06:15:16 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 34)

06:15:16 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0xc0045878, 0x0)

[ 1450.454517] tmpfs: Unknown parameter '��w��zѕ�e��-6^%��g�����'
06:15:16 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000100)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xf0}, "5ba6619d51497dbb9d9f3a62294caefc383053c78dfa3d221a34d35eac33384e41c0384497d7dff69ba4751a7eddf6cd8e1b75f1939254a8f77bf472f298ec546142ba4bafc9315146ec546bbea72404c7e9045fb64a37fc1eca0da66a5651c33e7e2ff954ef3acb6daa00c9ccc9e87f1c86eb5b3286b20df4c310f21c4a902aeb3e0bb84effed327368eab6d75e28d8075b6c0a23348e7ff1bd5b87777ca694a95452d84f5d38e1ae33bc9248f9d6ff40e73ad9e108346b8946eb737a8c9b266b7483764aabb44b82045785bf0ce94a937e04127e833fb9e3e86291e98bd8ed68eeeec97e010dd7b6d423fa3673d51c"}, 0xf4)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="03c9002f0494d67c4b981e96e130ea999d7ac1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"], 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:15:16 executing program 0:
clock_gettime(0x0, &(0x7f00000001c0))
select(0x0, 0x0, 0x0, 0x0, &(0x7f0000000200))
syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYRESDEC], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000500)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x0, 0x12}, @l2cap_cid_le_signaling={{0xe}, @l2cap_le_conn_req={{0x14, 0x9, 0xa}, {0xc625, 0x7ff, 0x64, 0xa19, 0x5}}}}, 0x17)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
pselect6(0x40, &(0x7f0000000040)={0x1, 0x60d, 0x7fff, 0x10001, 0x200, 0xd5, 0x2, 0x1}, &(0x7f0000000140)={0xffff, 0x6, 0x4, 0xbac0, 0x2, 0x6, 0x1, 0x23}, &(0x7f0000000180)={0x1, 0x100000001, 0x9fed, 0x0, 0x7, 0x4, 0x8, 0x8}, &(0x7f0000000400)={0x0, 0x989680}, &(0x7f00000004c0)={&(0x7f0000000480)={[0x3]}, 0x8})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000100)={0xc})

06:15:16 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}}}}, 0x7)

06:15:16 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 31)

06:15:16 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 35)

06:15:16 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:15:16 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x80, 0x7, &(0x7f0000000040)=0x1)
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:15:16 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_phy_link_complete={{0x40, 0x2}, {0x5, 0xc8}}}, 0x5)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000600)=ANY=[@ANYBLOB="f9fffefbff521d00ffbafed69daa5fd8d22dd31fe2d68a82fe25cdf26c8acfe2e4d9d81d663d40210c9e8bc7f318fb39aab222b6c78aaee31040c2acd6554bcb33a4ae4046ef9094ed4965686e7c4da6c2f8951c33b07c51bb24e20e901d2a3e9ab8c64465393fe6f6005b41003bf23d7771cae02123bcb075db0107a78864314807390f1a769e"], 0x9)
clock_gettime(0x0, &(0x7f00000001c0)={0x0, <r1=>0x0})
select(0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x0, r1/1000+60000})
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYRESHEX=r1], 0xe)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r2 = syz_open_dev$sg(&(0x7f0000000380), 0x1, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000080)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)

[ 1450.696147] FAULT_INJECTION: forcing a failure.
[ 1450.696147] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1450.698076] CPU: 1 UID: 0 PID: 27400 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1450.698108] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1450.698121] Call Trace:
[ 1450.698128]  <TASK>
[ 1450.698137]  dump_stack_lvl+0xfa/0x120
[ 1450.698168]  should_fail_ex+0x4d7/0x5e0
[ 1450.698198]  _copy_from_user+0x30/0xd0
[ 1450.698227]  copy_mount_options+0x76/0x180
[ 1450.698266]  __x64_sys_mount+0x1ab/0x310
[ 1450.698297]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1450.698339]  do_syscall_64+0xbf/0x390
[ 1450.698369]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1450.698394] RIP: 0033:0x7efe1268304a
[ 1450.698411] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1450.698433] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1450.698455] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe1268304a
[ 1450.698470] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1450.698484] RBP: 00007efe0fbf7040 R08: 00007efe0fbf7040 R09: 0000000020000000
[ 1450.698499] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1450.698512] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1450.698546]  </TASK>
[ 1450.741460] program syz-executor.0 is using a deprecated SCSI ioctl, please convert it to SG_IO
06:15:16 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0xc0189436, 0x0)

06:15:16 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:15:24 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}}}}, 0x7)

06:15:24 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 32)

06:15:24 executing program 4:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
ioctl$BTRFS_IOC_SYNC(r2, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)
r3 = fork()
sendmsg$AUDIT_SET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x38, 0x3e9, 0x0, 0x70bd28, 0x25dfdbfe, {0x18, 0x0, 0x2, r3, 0x8, 0x6, 0x10000, 0x8, 0x0, 0x6}, ["", "", "", ""]}, 0x38}, 0x1, 0x0, 0x0, 0x8010}, 0x4040000)
wait4(r3, 0x0, 0x1000000, &(0x7f00000000c0))

06:15:24 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, 0x0)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:15:24 executing program 1:
syz_genetlink_get_family_id$nl802154(&(0x7f0000000480), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000004c0)={'wpan0\x00', <r0=>0x0})
sendmsg$NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x30, 0x0, 0x800, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x2}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r0}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}]}, 0x30}, 0x1, 0x0, 0x0, 0x24000080}, 0x40080)
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
syz_emit_vhci(&(0x7f00000006c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x1, 0xfd}, @l2cap_cid_signaling={{0xf9}, [@l2cap_cmd_rej_unk={{0x1, 0x41, 0x2}, {0x7ff}}, @l2cap_conn_req={{0x2, 0x6, 0x4}, {0x1, 0x26}}, @l2cap_disconn_rsp={{0x7, 0x0, 0x4}, {0x2fe, 0x1ff}}, @l2cap_conn_rsp={{0x3, 0x81, 0x8}, {0x9, 0x8be0, 0x8, 0x81}}, @l2cap_info_rsp={{0xb, 0x90, 0xc7}, {0x6, 0x2, "b8c8a0707cbe12bbf4ea687ec3fd4a0756e19b137f46cee3f8ba6a777cb55203966679de5fc85ce04bd3d496abb97eeb22bacb20b14540e255feb491e4d45a4980861b90f6b2869451940855b7bc34829cce6a05c8d50f137fb2caf908e0133836b7ff8a3e4144684cf7525886e7b429fddacb8d2e9b769e4c01ac5b3b9069f1130e9fce77fdf46568a46fd96be52c40ac1e76e11375a96488109094f195fc8af4cc0d1d3a9e686128191e5c4821358b3d96237020183b65270eb24a979587f0ea3dd7"}}, @l2cap_cmd_rej_unk={{0x1, 0x8, 0x2}, {0xfe01}}, @l2cap_info_req={{0xa, 0xd0, 0x2}, {0x2}}]}}, 0x102)
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT, 0x2)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87, @ANYRES32=r0, @ANYRESOCT], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r1, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r2 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:15:24 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 36)

06:15:24 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0xc020660b, 0x0)

06:15:24 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:15:24 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="510f07000000000000000481000408"], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000480)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x3, 0x2, 0x1050}, @l2cap_cid_signaling={{0x104c}, [@l2cap_conn_req={{0x2, 0x9, 0x4}, {0x3f, 0x9b5}}, @l2cap_create_chan_req={{0xc, 0x8, 0x5}, {0x6, 0x17, 0x7}}, @l2cap_conn_req={{0x2, 0x1, 0x4}, {0x6, 0x5b00}}, @l2cap_create_chan_req={{0xc, 0x2, 0x5}, {0x8001, 0x71, 0x1}}, @l2cap_conn_rsp={{0x3, 0x2, 0x8}, {0x27, 0x3, 0x0, 0x1000}}, @l2cap_disconn_rsp={{0x7, 0x7, 0x4}, {0xffff, 0xc29a}}, @l2cap_disconn_req={{0x6, 0x47, 0x4}, {0x6, 0x1}}, @l2cap_info_rsp={{0xb, 0x1, 0x1004}, {0x1, 0x4, "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"}}, @l2cap_cmd_rej_unk={{0x1, 0x8, 0x2}, {0x4000}}]}}, 0x1055)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x3, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

[ 1459.403372] FAULT_INJECTION: forcing a failure.
[ 1459.403372] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1459.404521] CPU: 0 UID: 0 PID: 27524 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1459.404537] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1459.404544] Call Trace:
[ 1459.404549]  <TASK>
[ 1459.404554]  dump_stack_lvl+0xfa/0x120
[ 1459.404575]  should_fail_ex+0x4d7/0x5e0
[ 1459.404597]  _copy_from_user+0x30/0xd0
[ 1459.404615]  memdup_user+0x7e/0xe0
[ 1459.404635]  strndup_user+0x78/0xe0
[ 1459.404655]  __x64_sys_mount+0x136/0x310
[ 1459.404675]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1459.404712]  do_syscall_64+0xbf/0x390
[ 1459.404730]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1459.404743] RIP: 0033:0x7f13ca8cc04a
[ 1459.404753] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1459.404764] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1459.404775] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8cc04a
[ 1459.404783] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1459.404790] RBP: 00007f13c7e40040 R08: 00007f13c7e40040 R09: 0000000020000000
[ 1459.404797] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1459.404804] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1459.404836]  </TASK>
06:15:24 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x2, 0x1b}, @l2cap_cid_signaling={{0x17}, [@l2cap_disconn_rsp={{0x7, 0xda, 0x4}, {0x20, 0x7f}}, @l2cap_move_chan_req={{0xe, 0x1, 0x3}, {0x7, 0x9}}, @l2cap_move_chan_cfm={{0x10, 0x0, 0x4}, {0x0, 0x1}}]}}, 0x20)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYRESOCT=r0], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

[ 1459.413976] FAULT_INJECTION: forcing a failure.
[ 1459.413976] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1459.417790] CPU: 1 UID: 0 PID: 27529 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1459.417822] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1459.417834] Call Trace:
[ 1459.417841]  <TASK>
[ 1459.417849]  dump_stack_lvl+0xfa/0x120
[ 1459.417875]  should_fail_ex+0x4d7/0x5e0
[ 1459.417903]  _copy_from_user+0x30/0xd0
[ 1459.417929]  copy_mount_options+0x76/0x180
[ 1459.417967]  __x64_sys_mount+0x1ab/0x310
[ 1459.417997]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1459.418038]  do_syscall_64+0xbf/0x390
[ 1459.418066]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1459.418089] RIP: 0033:0x7efe1268304a
[ 1459.418106] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1459.418127] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1459.418149] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe1268304a
[ 1459.418164] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1459.418178] RBP: 00007efe0fbf7040 R08: 00007efe0fbf7040 R09: 0000000020000000
[ 1459.418192] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1459.418206] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1459.418239]  </TASK>
[ 1459.441563] tmpfs: Bad value for 'mpol'
06:15:25 executing program 6:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_SCAN_PARAM={{0x20}}}}, 0x7)

06:15:25 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, 0x0)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:15:25 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000)=0x1)
syz_emit_vhci(&(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYRES64], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:15:33 executing program 1:
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={@local, @initdev={0xac, 0x1e, 0x0, 0x0}, @empty}, 0xc)
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x82, 0x1, 0x413}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_pin_code_req={{0x16, 0x6}, {@none}}}, 0x9)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000080)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)

06:15:33 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 37)

06:15:33 executing program 7:
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000000c0)=<r0=>0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x58bc}, r0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r1, 0x400448e0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r2, &(0x7f0000000100)=ANY=[@ANYBLOB="01067cf6ffffffff7fff"], 0xa)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0x4, 0x1}, 0x6)

06:15:33 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, 0x0)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:15:33 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_EVENT_PKT={0x4, @HCI_EV_INQUIRY_COMPLETE={{0x1, 0x1}, 0x7}}, 0x4)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f0000000480)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_name={{0x7, 0xff}, {0x0, @any, "f13ad34ca12ef25696d1bc3a764e35cc1e4043e78ecdeef68f50774dd3d1a43c52cbb1befc1030535077d894dbe5d85cbbd6165556c33b949a3e924b462a226b9aa11068e840502bedd83107c9cf41867c1ea2cc6e35977767c33455c8a505811aa0a43372bbcb505e79ede2ec0ea25e9d02c7a7ccd4448c7cd64719a21b49219e5c2acb7019ea63413d64c78266db5c54212788dc15b6775ed1a0348c02217285edb1a896a6ce12eac505c9d8cb9fe97c4fa8cf2eb49a00c2019a1c1371b0552ed00d084fe12a1daaf4d2db50a42ef0986b99aaeb50b7c0cee846aa2f5e439abb06ffb68a00e2de8f246e566ac2f7cc291d3f15b642524d"}}}, 0x102)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
ioctl$SCSI_IOCTL_START_UNIT(r1, 0x5)

06:15:33 executing program 4:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x30c00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xb, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
r2 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000040)={r2, 0xe529, 0x0, 0x8})
ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='mpol9prefer:,\x00'])
fork()
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
dup(r3)
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:15:33 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x80111500, 0x0)

06:15:33 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 33)

[ 1467.771407] FAULT_INJECTION: forcing a failure.
[ 1467.771407] name failslab, interval 1, probability 0, space 0, times 0
[ 1467.772381] CPU: 0 UID: 0 PID: 27758 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1467.772398] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1467.772405] Call Trace:
[ 1467.772410]  <TASK>
[ 1467.772416]  dump_stack_lvl+0xfa/0x120
[ 1467.772437]  should_fail_ex+0x4d7/0x5e0
[ 1467.772460]  should_failslab+0xc2/0x120
[ 1467.772480]  __kmalloc_cache_noprof+0x81/0x6b0
[ 1467.772499]  ? __might_fault+0xe0/0x190
[ 1467.772517]  ? copy_mount_options+0x55/0x180
[ 1467.772545]  ? copy_mount_options+0x55/0x180
[ 1467.772561]  ? memdup_user+0x95/0xe0
[ 1467.772578]  copy_mount_options+0x55/0x180
[ 1467.772602]  __x64_sys_mount+0x1ab/0x310
[ 1467.772629]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1467.772662]  do_syscall_64+0xbf/0x390
[ 1467.772681]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1467.772699] RIP: 0033:0x7f13ca8cc04a
[ 1467.772709] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1467.772720] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1467.772732] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8cc04a
[ 1467.772739] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1467.772746] RBP: 00007f13c7e40040 R08: 00007f13c7e40040 R09: 0000000020000000
[ 1467.772754] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1467.772761] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1467.772793]  </TASK>
[ 1467.802459] tmpfs: Unknown parameter 'mpol9prefer:'
06:15:33 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2)
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:15:33 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 34)

06:15:33 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
syz_emit_vhci(&(0x7f0000000100)=@HCI_SCODATA_PKT={0x3, {0x1f5, 0x2a}, "5b6c2ecb6cf9d178258c33c5278420f466c3ef41326ef6bd4dc2affd641a5ce14b055b1c5460071c98a6"}, 0x2e)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000480)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x3, 0xc5}, @l2cap_cid_signaling={{0xc1}, [@l2cap_conn_req={{0x2, 0x5, 0x4}, {0x3, 0x5}}, @l2cap_info_rsp={{0xb, 0xf3, 0x6f}, {0x6, 0x6, "bf67bebe1fd35c144bccd4a94300021367aeb7c1d894865bd1fa4302123c2f44d9a6afbf9fbf8d8ec3f2e977ab0a12eee1d7a8575c8919db2a0e2233eac8d455b60c8f9be4cd6eef24fb5274b67004ecb28ba058ae48f6e9af8d04dd19ba4e91f02f30d9212348bdae8155"}}, @l2cap_create_chan_rsp={{0xd, 0x3, 0x8}, {0x7f, 0x3f, 0x8, 0xee}}, @l2cap_conn_rsp={{0x3, 0x7f, 0x8}, {0x80, 0x3ff, 0x7, 0x95}}, @l2cap_disconn_req={{0x6, 0xc, 0x4}, {0x4000, 0x40}}, @l2cap_create_chan_rsp={{0xd, 0x2, 0x8}, {0x1, 0x43, 0x3, 0x6}}, @l2cap_move_chan_req={{0xe, 0x0, 0x3}, {0x401, 0xa9}}, @l2cap_conf_req={{0x4, 0xc4, 0xf}, {0x2, 0xfff7, [@l2cap_conf_rfc={0x4, 0x9, {0x4, 0x1, 0x20, 0x3, 0x2, 0x6809}}]}}]}}, 0xca)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_sniff_subrate={{0x2e, 0xb}, {0x1, 0xc8, 0x5, 0x8, 0x3, 0x9}}}, 0xe)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="03c9002f0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c575f6eaee5abe341c602e0308af3c9951da3d2afae459caa142cca4d88d53b62a2e719675c15c4fc3c93775a08"], 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:15:33 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xb}, "2f5f1aab3c48b387111cd9"}, 0xf)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030020502bbbe9325c2f5225ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
syz_emit_vhci(&(0x7f0000000140)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x1, 0x85}, @l2cap_cid_signaling={{0x81}, [@l2cap_conn_req={{0x2, 0x9, 0x4}, {0x1, 0x5}}, @l2cap_create_chan_req={{0xc, 0x1f, 0x5}, {0xf2f3, 0xffba, 0x3f}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x95, 0x2}, {0x101}}, @l2cap_create_chan_rsp={{0xd, 0x5, 0x8}, {0x6, 0x8001, 0x1000, 0x5}}, @l2cap_conf_req={{0x4, 0x9, 0x5a}, {0x8, 0x4, [@l2cap_conf_fcs={0x5, 0x1, 0x1}, @l2cap_conf_mtu={0x1, 0x2, 0x3ff}, @l2cap_conf_fcs={0x5, 0x1, 0x1}, @l2cap_conf_ews={0x7, 0x2, 0x6987}, @l2cap_conf_efs={0x6, 0x10, {0x7, 0x0, 0x7f, 0xff, 0x9, 0x200}}, @l2cap_conf_efs={0x6, 0x10, {0x0, 0x1, 0x3f, 0x0, 0xc48, 0x7}}, @l2cap_conf_efs={0x6, 0x10, {0x81, 0x0, 0x1ff, 0x9, 0x0, 0x4}}, @l2cap_conf_efs={0x6, 0x10, {0x9, 0x1, 0x3f, 0x7, 0x0, 0x9}}]}}]}}, 0x8a)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000c17f0dfd"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:15:33 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f0000000080))
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448e0, 0x0)

06:15:33 executing program 6:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r1, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x2000000}])
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r4 = fsmount(0xffffffffffffffff, 0x1, 0x4)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r5, 0x0, 0x0)
io_submit(r1, 0x4, &(0x7f00000003c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x6, 0x7, r3, &(0x7f00000000c0)="6bc49e31516b61c073e336fbb47fd64c6e1e9cf305957521c63a430b83168e0ad68008878d42c565d3c222188c204ad2ff48d0b09932", 0x36, 0x3, 0x0, 0x1, r4}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x2, 0x4, r0, &(0x7f0000000200)="22919a7d6cc1ec1a8d82a562c3ea6cad2c233716b0ce4210369e91e17d74f500d40d8dcd7b69dd803f2638568778ed8f0fa058dcd330c817dc9e6f807388d076a89ebb96f544a06d880cf4c48ccecbe413da2e2ee4b50df93a1b377a1ad492195515d9c6a46bef69e34ffec097cedeef385e9a66d7e2d401c260e467cd8b476e361e5b4b6b265516c6baa273ea2ebab51bf45046c67fdc7dc6b5f7771483", 0x9e, 0x7, 0x0, 0x2}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x7, 0x6, r0, &(0x7f0000000580)="745eb07cae5e5707c9ecfc571933a4ebdf048c53c97d2fcea55c24d9dbabe44d6b6ddb177c745e449e4fcdc8e242ca5e4f6bc643a79be24f9e0fa44603267a584314e78a73506d6ec6deda6accb91e1bc0c671734457d791edf491e04abdd333710e809d83bf5de6993c541acb0d8eec0832782ad2931fd540a5101da6560df369ecb892396a1a60a15cf2fb262af3b638cd4228da9bef5551a7b49fd1fddd8103a864024b0a6f922c61c175064656643c479a88c7a010e2f93306d59e14f852d294bdaceb96c2226c2a1795df3d64e30751f849afaf931d2678ee2cba0bdd8d132023ee71", 0xe5, 0x10001, 0x0, 0x0, r5}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x4137, r0, &(0x7f0000000680)="c734f1179b6421cf150f1641b51312d8da66ec2e62633c5fc15bcd6fb5e131fa32f522223f1fa7bdbafae6ef6cfedf81a826bdbefc23527e869b3a651426e914c9db73cd004d786edbdc23eb7bd88dd35fbd35e944f195c36ad40f457619219578c0ebe6eb0f72e96d7d908e0e42f3c3716540665692d8aa116f798cf4b9a5e0cd95e25dd534bcca5d8d1abaef61b5f7710c232f672e11d83c2f1fd56c027ad588853c6b86d5efaba917d1b324496278cdf0383603f442a41db4952f43c3e8df8b04f6d7102bfd83e62b10b4af", 0xcd, 0x8, 0x0, 0x3}])
r6 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r6, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:15:33 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 38)

06:15:33 executing program 3:
openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(0xffffffffffffffff, &(0x7f0000000040)=""/32, 0x20)

06:15:33 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 35)

06:15:33 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f0000000480)=ANY=[@ANYBLOB="03c9002f0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46ce0378fb266d2cdedc81e899e5fdc97467b89bc511de40a3faa3b3b673765a950575ca7672c34da1ef1ab2e2546eea870594cf368fea6c2faffffffffffffffa50d4ded737260be81729536b694e1bffde63c01c0b6489af448817359"], 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

[ 1468.089982] FAULT_INJECTION: forcing a failure.
[ 1468.089982] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1468.090980] CPU: 0 UID: 0 PID: 28079 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1468.090996] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1468.091003] Call Trace:
[ 1468.091008]  <TASK>
[ 1468.091014]  dump_stack_lvl+0xfa/0x120
[ 1468.091036]  should_fail_ex+0x4d7/0x5e0
[ 1468.091059]  _copy_from_user+0x30/0xd0
[ 1468.091080]  copy_mount_options+0x76/0x180
[ 1468.091105]  __x64_sys_mount+0x1ab/0x310
[ 1468.091124]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1468.091157]  do_syscall_64+0xbf/0x390
[ 1468.091176]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1468.091190] RIP: 0033:0x7f13ca8cc04a
[ 1468.091200] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1468.091212] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1468.091224] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8cc04a
[ 1468.091231] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1468.091239] RBP: 00007f13c7e40040 R08: 00007f13c7e40040 R09: 0000000020000000
[ 1468.091247] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1468.091254] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1468.091287]  </TASK>
[ 1468.128766] FAULT_INJECTION: forcing a failure.
[ 1468.128766] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1468.130958] CPU: 1 UID: 0 PID: 28095 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1468.130993] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1468.131007] Call Trace:
[ 1468.131015]  <TASK>
[ 1468.131025]  dump_stack_lvl+0xfa/0x120
[ 1468.131059]  should_fail_ex+0x4d7/0x5e0
[ 1468.131091]  strncpy_from_user+0x3b/0x2f0
[ 1468.131132]  getname_flags.part.0+0x8d/0x540
[ 1468.131176]  getname_flags+0x95/0xe0
[ 1468.131206]  user_path_at+0x27/0x90
[ 1468.131236]  __x64_sys_mount+0x1fb/0x310
[ 1468.131271]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1468.131316]  do_syscall_64+0xbf/0x390
06:15:33 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x1f1319b6, 0x0, &(0x7f0000000000)=0x1)
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x1, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_conn_param_update_rsp={{0x13, 0x7f, 0x2}, {0x6}}}}, 0xf)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

[ 1468.131348]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1468.131374] RIP: 0033:0x7efe1268304a
[ 1468.131394] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1468.131417] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1468.131441] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe1268304a
[ 1468.131457] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1468.131472] RBP: 00007efe0fbf7040 R08: 00007efe0fbf7040 R09: 0000000020000000
[ 1468.131487] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1468.131502] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1468.131538]  </TASK>
[ 1468.277004] tmpfs: Bad value for 'mpol'
06:15:42 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:15:42 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 39)

06:15:42 executing program 3:
openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(0xffffffffffffffff, &(0x7f0000000040)=""/32, 0x20)

06:15:42 executing program 6:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r1, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x2000000}])
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r4 = fsmount(0xffffffffffffffff, 0x1, 0x4)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r5, 0x0, 0x0)
io_submit(r1, 0x4, &(0x7f00000003c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x6, 0x7, r3, &(0x7f00000000c0)="6bc49e31516b61c073e336fbb47fd64c6e1e9cf305957521c63a430b83168e0ad68008878d42c565d3c222188c204ad2ff48d0b09932", 0x36, 0x3, 0x0, 0x1, r4}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x2, 0x4, r0, &(0x7f0000000200)="22919a7d6cc1ec1a8d82a562c3ea6cad2c233716b0ce4210369e91e17d74f500d40d8dcd7b69dd803f2638568778ed8f0fa058dcd330c817dc9e6f807388d076a89ebb96f544a06d880cf4c48ccecbe413da2e2ee4b50df93a1b377a1ad492195515d9c6a46bef69e34ffec097cedeef385e9a66d7e2d401c260e467cd8b476e361e5b4b6b265516c6baa273ea2ebab51bf45046c67fdc7dc6b5f7771483", 0x9e, 0x7, 0x0, 0x2}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x7, 0x6, r0, &(0x7f0000000580)="745eb07cae5e5707c9ecfc571933a4ebdf048c53c97d2fcea55c24d9dbabe44d6b6ddb177c745e449e4fcdc8e242ca5e4f6bc643a79be24f9e0fa44603267a584314e78a73506d6ec6deda6accb91e1bc0c671734457d791edf491e04abdd333710e809d83bf5de6993c541acb0d8eec0832782ad2931fd540a5101da6560df369ecb892396a1a60a15cf2fb262af3b638cd4228da9bef5551a7b49fd1fddd8103a864024b0a6f922c61c175064656643c479a88c7a010e2f93306d59e14f852d294bdaceb96c2226c2a1795df3d64e30751f849afaf931d2678ee2cba0bdd8d132023ee71", 0xe5, 0x10001, 0x0, 0x0, r5}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x4137, r0, &(0x7f0000000680)="c734f1179b6421cf150f1641b51312d8da66ec2e62633c5fc15bcd6fb5e131fa32f522223f1fa7bdbafae6ef6cfedf81a826bdbefc23527e869b3a651426e914c9db73cd004d786edbdc23eb7bd88dd35fbd35e944f195c36ad40f457619219578c0ebe6eb0f72e96d7d908e0e42f3c3716540665692d8aa116f798cf4b9a5e0cd95e25dd534bcca5d8d1abaef61b5f7710c232f672e11d83c2f1fd56c027ad588853c6b86d5efaba917d1b324496278cdf0383603f442a41db4952f43c3e8df8b04f6d7102bfd83e62b10b4af", 0xcd, 0x8, 0x0, 0x3}])
r6 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r6, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:15:42 executing program 4:
r0 = gettid()
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x9100, 0x0, 0x10000000, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x400}, r0, 0x10, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x3f, 0xf7, 0x7, 0x8, 0x0, 0x7, 0x14040, 0x4, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x4, 0x1, @perf_config_ext={0xb0fc, 0x1ff}, 0x6258, 0x1000, 0x4, 0x4157ffae4910339b, 0x2, 0xfffffffe, 0x4, 0x0, 0x35fc226e, 0x0, 0x30}, 0xffffffffffffffff, 0xd, r1, 0x0)
r2 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500)=<r3=>0x0, &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r2, 0x9408, 0x0)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r6=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r4, 0x8916, &(0x7f00000000c0)={@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x3}}, 0x0, r6})
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000080)={'sit0\x00', &(0x7f0000000180)={'syztnl1\x00', r6, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @loopback, 0x0, 0x20}})
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000740)=<r7=>0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000980)={&(0x7f0000000240)=ANY=[@ANYBLOB="dc0100001800000125bd7000fedbdf25000000000000000000000000000000000a0101020000000000000000000000004e2404014e2300000000000000000000005232c5631a1d434f42f8ca5776bd6687aacaf5d7eb633396643b56b9bf4c6651c3acf092efcc9e6878d11a5d78", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0a010100000000000000000000000000000004d33300000064010100000000000000000000000000c5ffffffffffffff05000000000000000104000000000000210000000000000000000000000000004000000000000000030000000000000000fcffffffffffff0104000000000000d10200000000000009000000000000000800000000000000000800bb0200000002000027bd70000740bf49916e7bb313eb5f1b3500000a0006060200000000000000b500000000000000e4000600fe800000000000000000000000000037000000000000000000000000000000004e20009b4e23", @ANYRES32=r6, @ANYRES32=r7, @ANYBLOB="ac1414aa000000000000000000000000000004d46c00000000000000000000000000000000000000dd0e0000000000004d0000000000000000010000000000000200000000000000060000000000000005000000000000001f00000000000000000005000000000000005f9300000000000008000000000000002000000007000000500f000028bd700007350000020002d64700"/168], 0x1dc}, 0x1, 0x0, 0x0, 0x4000011}, 0x40084)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@ll={0x11, 0xf5, r6, 0x1, 0x4, 0x6, @broadcast}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000200)="f367f041c470da6da401aca4a15f7894e27eba90d9e338f4d5f3c06f888f264896603bdb69b8", 0x26}], 0x1, &(0x7f0000000e80)=ANY=[], 0x3d0}, 0x0, 0x0, 0x1, {0x0, r8}}, 0x6)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_TEE={0x21, 0x1, 0x0, @fd, 0x0, 0x0, 0x9c, 0x5, 0x0, {0x0, r8}}, 0x3000)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000140)=@IORING_OP_WRITE={0x17, 0x4, 0x2004, @fd_index=0x9, 0x5, &(0x7f0000000080)="afadd278b809c9bfd9da3b123d2dcec8d9f650a47491b9cb64ec7c8f326835f592c2d8f594de6f340917442fc536eb6f19c1d6a749db515c82a5f1895fdfc81313131a5b", 0x44, 0x0, 0x1, {0x0, r8}}, 0x3f)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000140)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r8}}, 0x8)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()

06:15:42 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f0000000340)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x1, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_ecred_reconf_rsp={{0x1a, 0x2, 0x2}, {0x7f}}}}, 0xf)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000340)=ANY=[], 0x19)
syz_emit_vhci(&(0x7f0000000480)=@HCI_EVENT_PKT={0x4, @HCI_EV_VENDOR={{0xff, 0xdb}, "6df6b3d6d82ba865a1bd763c2e74080ce4f92cbaf893d782bbb21a763eb0802645133c042e3607831a0f69c517ff55dcbd517fb69d39cea124d594eabff2c8d4bd834679e1d74ed18fc88ad2859c9307dc2ca88231caf78f18faa7a8c33c6fa9c6a5131b33ec4c886f69d7a970066d435e79d99fc40805972e0a229a3e0d0dfd85078200b6eef7697bf0b056bd1668e9e10cfbacd745787faf010412dae6b05329881191ed082953a18a9ec99ec761e6a4b4af35a8965d9ea5c582c643885b331366936a0644260ee8c174b2648433ff6269e8bcb6f03561847fc9"}}, 0xde)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x33}, "aa61d3d3a9dc3ff35fad074f38bcf8618ef49bba6f40bc9d6ae82054fcc6cfde5bcf09693c84694e49bfcb2a87558144a17d71"}, 0x37)
r2 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
syz_emit_vhci(&(0x7f0000000100)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xe1}, "e5785801c4f19fd6bdd28a538d192caabb4b461e28036895e4d0dac3572800a23ab40bc16fa063fde1ba5fd0f9d2669c1f59f59341c4eade95d0c6018a7b19eab2b7ecb574152f7a89a71f84ad8f077e3314c8551c4546263ea5262f50c38c43b72e536a976cd742f179b2d7a5f4bd50ebfff923b884efa338cbe320eab89c6b397444ae1ac98cc7beec818e6c1d45827f4465e054c23f43fb51ff02e57361542f24143f0b7eec1c9a451c2dc58bcc3e63b1509d0719c89718152df8d25206b3df4004616990be2df0ae647649e26a019361389f32dcd6591262269ed00ae65124"}, 0xe5)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000580)=ANY=[@ANYBLOB="a3fb2a000000ffffff9411b98f499e1fb76e48f35eab14041a00000002fecf4b43656855087bfd1484568fcc530f4ee830b4d44967e0929d6e313b13e1e32a8719e75fa1821060e4d1580beff659d73889452990b18ed023a3c6ed82fd4a"])

06:15:42 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 36)

06:15:42 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448e0, 0x0)
r1 = open_tree(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x80000)
ioctl$sock_bt_hci(r1, 0x800448d4, &(0x7f00000000c0)="748ddc126159d5164099bd7c4e84542c993bd8b44c044e8cf8539ed9830143b971a29f0a708c03b60a85b79bdce0fcb7f1438f1be0ae82a6259ca22d5ee8eb34e81059c3f057bedfd7c9a27f2d52591e72666b8e1f82572a783401cee9ba5f2b330c11d9df7431e40cc8faf7ff895b520dbede50fc8029d55e40f9ea96fd629489989976408431b0e4b9fc05d639cbbc03b2c1d83b55b53bc07868c18a5ee93d68d2497137209675c6a0d3c564c5")

[ 1476.890824] FAULT_INJECTION: forcing a failure.
[ 1476.890824] name failslab, interval 1, probability 0, space 0, times 0
[ 1476.891932] CPU: 0 UID: 0 PID: 28115 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1476.891950] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1476.891958] Call Trace:
[ 1476.891963]  <TASK>
[ 1476.891969]  dump_stack_lvl+0xfa/0x120
[ 1476.891993]  should_fail_ex+0x4d7/0x5e0
[ 1476.892015]  ? getname_flags.part.0+0x48/0x540
[ 1476.892036]  should_failslab+0xc2/0x120
[ 1476.892056]  kmem_cache_alloc_noprof+0x80/0x690
[ 1476.892094]  ? getname_flags.part.0+0x48/0x540
[ 1476.892112]  getname_flags.part.0+0x48/0x540
[ 1476.892138]  getname_flags+0x95/0xe0
[ 1476.892158]  user_path_at+0x27/0x90
[ 1476.892177]  __x64_sys_mount+0x1fb/0x310
[ 1476.892198]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1476.892233]  do_syscall_64+0xbf/0x390
[ 1476.892254]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1476.892269] RIP: 0033:0x7f13ca8cc04a
[ 1476.892279] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1476.892292] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1476.892305] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8cc04a
[ 1476.892313] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1476.892321] RBP: 00007f13c7e40040 R08: 00007f13c7e40040 R09: 0000000020000000
[ 1476.892330] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1476.892337] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1476.892373]  </TASK>
[ 1476.922396] FAULT_INJECTION: forcing a failure.
[ 1476.922396] name failslab, interval 1, probability 0, space 0, times 0
[ 1476.924234] CPU: 1 UID: 0 PID: 28122 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1476.924265] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1476.924278] Call Trace:
[ 1476.924286]  <TASK>
[ 1476.924294]  dump_stack_lvl+0xfa/0x120
[ 1476.924326]  should_fail_ex+0x4d7/0x5e0
[ 1476.924355]  should_failslab+0xc2/0x120
[ 1476.924387]  __kmalloc_cache_noprof+0x81/0x6b0
[ 1476.924421]  ? find_held_lock+0x2b/0x80
[ 1476.924447]  ? __get_fs_type+0xe6/0x160
[ 1476.924477]  ? alloc_fs_context+0x58/0x9e0
[ 1476.924510]  ? alloc_fs_context+0x58/0x9e0
[ 1476.924533]  ? _raw_read_unlock+0x1e/0x40
[ 1476.924570]  alloc_fs_context+0x58/0x9e0
[ 1476.924604]  path_mount+0xd87/0x2130
[ 1476.924635]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1476.924670]  ? __pfx_path_mount+0x10/0x10
[ 1476.924707]  ? kmem_cache_free+0x2a4/0x540
[ 1476.924741]  ? putname.part.0+0x11b/0x160
[ 1476.924776]  ? getname_flags.part.0+0x1c6/0x540
[ 1476.924815]  ? putname.part.0+0x11b/0x160
[ 1476.924854]  __x64_sys_mount+0x293/0x310
[ 1476.924884]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1476.924925]  do_syscall_64+0xbf/0x390
[ 1476.924954]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1476.924977] RIP: 0033:0x7efe1268304a
[ 1476.924995] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1476.925017] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1476.925039] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe1268304a
[ 1476.925054] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1476.925068] RBP: 00007efe0fbf7040 R08: 00007efe0fbf7040 R09: 0000000020000000
[ 1476.925082] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1476.925096] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1476.925128]  </TASK>
06:15:42 executing program 3:
openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(0xffffffffffffffff, &(0x7f0000000040)=""/32, 0x20)

06:15:42 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000180)={&(0x7f0000000480)={0xe8, 0x0, 0x200, 0x70bd2c, 0x25dfdbfc, {{}, {@void, @void, @val={0xc, 0x99, {0x61e, 0x34}}}}, [@NL80211_ATTR_SOCKET_OWNER={0x4}, @mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "2c9cdb93be8f8a984337743cf88df2569c93a22767fe32ef"}, @NL80211_ATTR_MNTR_FLAGS={0x10, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MNTR_FLAGS={0x20, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "36b0c8b81946b65b66e3eaf8bc156736b76efb334a9bce67"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}], @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_4ADDR={0x5}, @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'ipvlan0\x00'}]}, 0xe8}, 0x1, 0x0, 0x0, 0x30048810}, 0x10)
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
clock_gettime(0x0, &(0x7f00000001c0)={0x0, <r1=>0x0})
select(0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x0, r1/1000+60000})
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYRES64=r1], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r2 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000100)={0x9})

06:15:42 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 37)

[ 1476.973525] tmpfs: Bad value for 'mpol'
06:15:42 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_conn_param_update_rsp={{0x13, 0x1, 0x2}, {0xfffa}}}}, 0xf)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_key_refresh_complete={{0x30, 0x3}, {0x91, 0xc8}}}, 0x6)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="b702d399a139dd32f8d3ea485b78f96dab7902b53101a1701ee76ae575c56936382e44d4e86526066f0d09848b88928801dda0c3cc5f"], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:15:42 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 38)

06:15:42 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(r0, 0x0, 0x0)

06:15:42 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 40)

06:15:42 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYRES64], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:15:42 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 39)

06:15:42 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(r0, 0x0, 0x0)

[ 1477.225852] tmpfs: Bad value for 'mpol'
06:15:42 executing program 7:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000080)={0x4, 0x80, 0x9, 0x7, 0x0, 0xfb, 0x0, 0x3, 0x20302, 0xa, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x401, 0xfffffffffffffc00}, 0x1, 0x75e9, 0x1, 0x4, 0x6, 0x6, 0x7, 0x0, 0x3ff}, 0xffffffffffffffff, 0x10, r0, 0x3)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r1, 0x400448e0, 0x0)

[ 1477.302277] FAULT_INJECTION: forcing a failure.
[ 1477.302277] name failslab, interval 1, probability 0, space 0, times 0
[ 1477.303413] CPU: 0 UID: 0 PID: 28339 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1477.303430] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1477.303438] Call Trace:
[ 1477.303443]  <TASK>
[ 1477.303448]  dump_stack_lvl+0xfa/0x120
[ 1477.303471]  should_fail_ex+0x4d7/0x5e0
[ 1477.303494]  should_failslab+0xc2/0x120
[ 1477.303513]  __kmalloc_cache_noprof+0x81/0x6b0
[ 1477.303534]  ? find_held_lock+0x2b/0x80
[ 1477.303550]  ? __get_fs_type+0xe6/0x160
[ 1477.303567]  ? alloc_fs_context+0x58/0x9e0
[ 1477.303591]  ? alloc_fs_context+0x58/0x9e0
[ 1477.303603]  ? _raw_read_unlock+0x1e/0x40
[ 1477.303624]  alloc_fs_context+0x58/0x9e0
[ 1477.303650]  path_mount+0xd87/0x2130
[ 1477.303670]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1477.303698]  ? __pfx_path_mount+0x10/0x10
[ 1477.303715]  ? kmem_cache_free+0x2a4/0x540
[ 1477.303728]  ? putname.part.0+0x11b/0x160
[ 1477.303749]  ? getname_flags.part.0+0x1c6/0x540
[ 1477.303774]  ? putname.part.0+0x11b/0x160
[ 1477.303801]  __x64_sys_mount+0x293/0x310
[ 1477.303819]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1477.303851]  do_syscall_64+0xbf/0x390
[ 1477.303870]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1477.303883] RIP: 0033:0x7f13ca8cc04a
[ 1477.303893] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1477.303905] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1477.303916] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8cc04a
[ 1477.303924] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1477.303931] RBP: 00007f13c7e40040 R08: 00007f13c7e40040 R09: 0000000020000000
[ 1477.303938] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1477.303945] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1477.303978]  </TASK>
06:15:43 executing program 6:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r1, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x2000000}])
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r4 = fsmount(0xffffffffffffffff, 0x1, 0x4)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r5, 0x0, 0x0)
io_submit(r1, 0x4, &(0x7f00000003c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x6, 0x7, r3, &(0x7f00000000c0)="6bc49e31516b61c073e336fbb47fd64c6e1e9cf305957521c63a430b83168e0ad68008878d42c565d3c222188c204ad2ff48d0b09932", 0x36, 0x3, 0x0, 0x1, r4}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x2, 0x4, r0, &(0x7f0000000200)="22919a7d6cc1ec1a8d82a562c3ea6cad2c233716b0ce4210369e91e17d74f500d40d8dcd7b69dd803f2638568778ed8f0fa058dcd330c817dc9e6f807388d076a89ebb96f544a06d880cf4c48ccecbe413da2e2ee4b50df93a1b377a1ad492195515d9c6a46bef69e34ffec097cedeef385e9a66d7e2d401c260e467cd8b476e361e5b4b6b265516c6baa273ea2ebab51bf45046c67fdc7dc6b5f7771483", 0x9e, 0x7, 0x0, 0x2}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x7, 0x6, r0, &(0x7f0000000580)="745eb07cae5e5707c9ecfc571933a4ebdf048c53c97d2fcea55c24d9dbabe44d6b6ddb177c745e449e4fcdc8e242ca5e4f6bc643a79be24f9e0fa44603267a584314e78a73506d6ec6deda6accb91e1bc0c671734457d791edf491e04abdd333710e809d83bf5de6993c541acb0d8eec0832782ad2931fd540a5101da6560df369ecb892396a1a60a15cf2fb262af3b638cd4228da9bef5551a7b49fd1fddd8103a864024b0a6f922c61c175064656643c479a88c7a010e2f93306d59e14f852d294bdaceb96c2226c2a1795df3d64e30751f849afaf931d2678ee2cba0bdd8d132023ee71", 0xe5, 0x10001, 0x0, 0x0, r5}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x4137, r0, &(0x7f0000000680)="c734f1179b6421cf150f1641b51312d8da66ec2e62633c5fc15bcd6fb5e131fa32f522223f1fa7bdbafae6ef6cfedf81a826bdbefc23527e869b3a651426e914c9db73cd004d786edbdc23eb7bd88dd35fbd35e944f195c36ad40f457619219578c0ebe6eb0f72e96d7d908e0e42f3c3716540665692d8aa116f798cf4b9a5e0cd95e25dd534bcca5d8d1abaef61b5f7710c232f672e11d83c2f1fd56c027ad588853c6b86d5efaba917d1b324496278cdf0383603f442a41db4952f43c3e8df8b04f6d7102bfd83e62b10b4af", 0xcd, 0x8, 0x0, 0x3}])
r6 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r6, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:15:43 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 41)

06:15:43 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448e0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x80000001}}, './file0\x00'})

06:15:43 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(r0, 0x0, 0x0)

06:15:43 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:15:43 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x1, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_disconn_rsp={{0x7, 0xa, 0x4}, {0x6, 0x2}}}}, 0x11)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_change_link_key_complete={{0x9, 0x3}, {0x2, 0xc9}}}, 0x6)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

[ 1477.495309] FAULT_INJECTION: forcing a failure.
[ 1477.495309] name failslab, interval 1, probability 0, space 0, times 0
[ 1477.497145] CPU: 1 UID: 0 PID: 28465 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1477.497174] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1477.497187] Call Trace:
[ 1477.497194]  <TASK>
[ 1477.497202]  dump_stack_lvl+0xfa/0x120
[ 1477.497232]  should_fail_ex+0x4d7/0x5e0
[ 1477.497259]  should_failslab+0xc2/0x120
[ 1477.497287]  ? __pfx_shmem_init_fs_context+0x10/0x10
[ 1477.497312]  __kmalloc_cache_noprof+0x81/0x6b0
[ 1477.497345]  ? trace_kmalloc+0x1f/0xb0
[ 1477.497370]  ? __kmalloc_cache_noprof+0x27b/0x6b0
[ 1477.497401]  ? shmem_init_fs_context+0x45/0x2c0
[ 1477.497426]  ? __pfx_shmem_init_fs_context+0x10/0x10
[ 1477.497454]  ? shmem_init_fs_context+0x45/0x2c0
[ 1477.497476]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1477.497509]  shmem_init_fs_context+0x45/0x2c0
[ 1477.497531]  ? __pfx_shmem_init_fs_context+0x10/0x10
[ 1477.497556]  alloc_fs_context+0x570/0x9e0
[ 1477.497590]  path_mount+0xd87/0x2130
[ 1477.497619]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1477.497651]  ? __pfx_path_mount+0x10/0x10
[ 1477.497679]  ? kmem_cache_free+0x2a4/0x540
[ 1477.497707]  ? putname.part.0+0x11b/0x160
[ 1477.497740]  ? getname_flags.part.0+0x1c6/0x540
[ 1477.497776]  ? putname.part.0+0x11b/0x160
[ 1477.497812]  __x64_sys_mount+0x293/0x310
[ 1477.497840]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1477.497879]  do_syscall_64+0xbf/0x390
[ 1477.497907]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1477.497929] RIP: 0033:0x7efe1268304a
[ 1477.497946] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1477.497966] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1477.497987] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe1268304a
[ 1477.498001] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1477.498014] RBP: 00007efe0fbf7040 R08: 00007efe0fbf7040 R09: 0000000020000000
[ 1477.498028] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1477.498040] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1477.498071]  </TASK>
[ 1477.529519] tmpfs: Bad value for 'mpol'
[ 1477.553288] tmpfs: Bad value for 'mpol'
06:15:51 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_simple_pair_complete={{0x36, 0x7}, {0x40, @none}}}, 0xa)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
creat(&(0x7f0000000100)='./file0\x00', 0x5a)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:15:51 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000780)=ANY=[@ANYBLOB="025a2114001000050000ed6d4969dbea9f13ae2e90d9673743cff49707a8fc3cfe86f85963dac305c1f980602e50c32c1c405cfcff9dbc6fd4194d6a1d96930c04b4e59c43e3ce058852e811c1b957ee10e65f4bbeed7811092bdc0fa8a40fedfbec2fc42a3d338d6e8c610773f4dfe07598699d5aff9ea0ada983bb9cc55bc1493a260e2d32c14c7a953a369496e39fbff5aa5acaf5c1e1a1574bdbd8a1368f5aa6602de4da3ffff0255ed8f97be4b7118e4d04e01b4ed8bbd78761b7cacf3010809e8a368e2133b1f86f95d23bcd9a9187f6aa4c5665ac0bf5eb2573a1118c0ba245a50fa936"], 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x37939ea6, 0x3, &(0x7f0000000040)=0x1)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000480)=ANY=[@ANYBLOB="27d210f5654f5a1c2d5b06e7324d74a488d56c6d12386e65cab3b47aafc42f0b2a4fd81bce75dbd9eff34b9979ed5d45fd71fede5951e057cb7356accf201d0dfc7f6b9cdbebbef47a02adb2fc82f0f1e453eb4b4747bea9bf660459df5acfee633fd94e2ce90c61f4f5250ca4e5106951b1c7612ae3a44cf943ef8f9bb6b0eef2c2daa7", @ANYRES16=r0, @ANYBLOB="0925a399320d3df8a65b34493bb7b4c52bb4b8c1216e19c6026ad99cf995025fdfe751ec616b064fb261a102fea08b4c36d7269130d540167c03bfc6f4e14f0ae618741c38cedfa4ceaeb88aecb3714e97fd8e0ad05fb65c128322a663ecbf73f0f24edc516d1730c2ea8b6cb42a3f0518f818f7f53febc6cc882a92d71f85f31c90148d40", @ANYRESDEC=r0], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46400)
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:15:51 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup/syz1\x00', 0x200002, 0x0)
ioctl$FS_IOC_SETFSLABEL(r2, 0x41009432, &(0x7f0000000200)="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")
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r0)

06:15:51 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x5, 0x4, 0xfe, 0x80, 0x0, 0x100000001, 0x0, 0xa, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0xfffff134, 0x4, @perf_config_ext={0x3, 0x101}, 0x1, 0x6, 0x5, 0x3, 0x7, 0xfffffffd, 0xc657, 0x0, 0x6f, 0x0, 0x7f}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0xb)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448e0, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/nf_conntrack\x00')

06:15:51 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 42)

06:15:51 executing program 6:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r1, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x2000000}])
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r4 = fsmount(0xffffffffffffffff, 0x1, 0x4)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r5, 0x0, 0x0)
io_submit(r1, 0x4, &(0x7f00000003c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x6, 0x7, r3, &(0x7f00000000c0)="6bc49e31516b61c073e336fbb47fd64c6e1e9cf305957521c63a430b83168e0ad68008878d42c565d3c222188c204ad2ff48d0b09932", 0x36, 0x3, 0x0, 0x1, r4}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x2, 0x4, r0, &(0x7f0000000200)="22919a7d6cc1ec1a8d82a562c3ea6cad2c233716b0ce4210369e91e17d74f500d40d8dcd7b69dd803f2638568778ed8f0fa058dcd330c817dc9e6f807388d076a89ebb96f544a06d880cf4c48ccecbe413da2e2ee4b50df93a1b377a1ad492195515d9c6a46bef69e34ffec097cedeef385e9a66d7e2d401c260e467cd8b476e361e5b4b6b265516c6baa273ea2ebab51bf45046c67fdc7dc6b5f7771483", 0x9e, 0x7, 0x0, 0x2}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x7, 0x6, r0, &(0x7f0000000580)="745eb07cae5e5707c9ecfc571933a4ebdf048c53c97d2fcea55c24d9dbabe44d6b6ddb177c745e449e4fcdc8e242ca5e4f6bc643a79be24f9e0fa44603267a584314e78a73506d6ec6deda6accb91e1bc0c671734457d791edf491e04abdd333710e809d83bf5de6993c541acb0d8eec0832782ad2931fd540a5101da6560df369ecb892396a1a60a15cf2fb262af3b638cd4228da9bef5551a7b49fd1fddd8103a864024b0a6f922c61c175064656643c479a88c7a010e2f93306d59e14f852d294bdaceb96c2226c2a1795df3d64e30751f849afaf931d2678ee2cba0bdd8d132023ee71", 0xe5, 0x10001, 0x0, 0x0, r5}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x4137, r0, &(0x7f0000000680)="c734f1179b6421cf150f1641b51312d8da66ec2e62633c5fc15bcd6fb5e131fa32f522223f1fa7bdbafae6ef6cfedf81a826bdbefc23527e869b3a651426e914c9db73cd004d786edbdc23eb7bd88dd35fbd35e944f195c36ad40f457619219578c0ebe6eb0f72e96d7d908e0e42f3c3716540665692d8aa116f798cf4b9a5e0cd95e25dd534bcca5d8d1abaef61b5f7710c232f672e11d83c2f1fd56c027ad588853c6b86d5efaba917d1b324496278cdf0383603f442a41db4952f43c3e8df8b04f6d7102bfd83e62b10b4af", 0xcd, 0x8, 0x0, 0x3}])
r6 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r6, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()

06:15:51 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 40)

06:15:51 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(r0, &(0x7f0000000040)=""/32, 0x20) (fail_nth: 1)

[ 1486.310213] tmpfs: Bad value for 'mpol'
[ 1486.342032] FAULT_INJECTION: forcing a failure.
[ 1486.342032] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1486.343094] CPU: 0 UID: 0 PID: 28692 Comm: syz-executor.3 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1486.343111] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1486.343120] Call Trace:
[ 1486.343124]  <TASK>
[ 1486.343129]  dump_stack_lvl+0xfa/0x120
[ 1486.343149]  should_fail_ex+0x4d7/0x5e0
[ 1486.343167]  _copy_to_user+0x32/0xd0
06:15:51 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000180)=@HCI_EVENT_PKT={0x4, @inquiry_info={{0x2, 0x1}}}, 0x4)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x1000, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e79f3bc3c71351ec886a10b6d40f44ecf77650061bd702355317273eb566be076f0696fc89190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c24c47c218dbc73be336b0e1cb2"], 0x54)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x2, 0x1f, 0xc8, 0x7}}}, 0xa)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="03ca0011f55afea595455fd0683a7954c330334b88"], 0x15)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f0000000140)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="03c9002f0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca57d59e612d207b614de46cc46c"], 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000480)={0xdc, 0xffffffff, 0xffffff85, "942d1c2b0b5d4391f9956513e2382194d7d8f87c90d88bfa7f677a0700004d43c3f6a8000001000000000000070000000000000000002b58b526ae64ad0a8422edcb95b9135d7cae3c913e5ff28c587062c6acf42d19326e6cf046ff9724eb14c5e4cd609b1f8cf30e51e9c645a6ef1fa67272e926197203c09e6e6cc8e60be25b60d3484275911bd2ea0e0726bf4708cbfdf4d02b241bb47687a5c4ffe41f0af2ac2126aba5f8a0f6611c648c56a2fd9c100660b3d84838791d66f4f7d621893a7f400adc3ec64e2008ce60f6b67d9294e53434b77810c8d7d04b8f"})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

[ 1486.343183]  simple_read_from_buffer+0xe0/0x180
[ 1486.343200]  proc_fail_nth_read+0x18a/0x240
[ 1486.343219]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1486.343237]  ? security_file_permission+0x22/0x90
[ 1486.343256]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1486.343273]  vfs_read+0x1eb/0xc70
[ 1486.343293]  ? __pfx_vfs_read+0x10/0x10
[ 1486.343308]  ? lock_release+0xc8/0x290
[ 1486.343330]  ? __fget_files+0x20d/0x3b0
[ 1486.343352]  ksys_read+0x121/0x240
[ 1486.343367]  ? __pfx_ksys_read+0x10/0x10
[ 1486.343380]  ? syscall_user_dispatch+0x78/0x140
[ 1486.343404]  do_syscall_64+0xbf/0x390
[ 1486.343421]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1486.343435] RIP: 0033:0x7f5fb0f7b69c
[ 1486.343446] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 1486.343458] RSP: 002b:00007f5fae53e170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1486.343471] RAX: ffffffffffffffda RBX: 0000000000000018 RCX: 00007f5fb0f7b69c
[ 1486.343479] RDX: 000000000000000f RSI: 00007f5fae53e1e0 RDI: 0000000000000004
[ 1486.343487] RBP: 00007f5fae53e1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1486.343495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1486.343502] R13: 00007fff91154c5f R14: 00007f5fae53e300 R15: 0000000000022000
[ 1486.343520]  </TASK>
06:15:52 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 43)

06:15:52 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 41)

[ 1486.539949] tmpfs: Bad value for 'mpol'
[ 1486.544175] FAULT_INJECTION: forcing a failure.
[ 1486.544175] name failslab, interval 1, probability 0, space 0, times 0
[ 1486.546193] CPU: 1 UID: 0 PID: 28901 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1486.546227] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1486.546241] Call Trace:
[ 1486.546249]  <TASK>
[ 1486.546258]  dump_stack_lvl+0xfa/0x120
[ 1486.546292]  should_fail_ex+0x4d7/0x5e0
[ 1486.546324]  should_failslab+0xc2/0x120
[ 1486.546358]  __kmalloc_cache_noprof+0x81/0x6b0
[ 1486.546400]  ? alloc_super+0x53/0xb20
[ 1486.546435]  ? alloc_super+0x53/0xb20
[ 1486.546459]  alloc_super+0x53/0xb20
[ 1486.546484]  ? lock_release+0xc8/0x290
[ 1486.546526]  sget_fc+0xfe/0xb80
[ 1486.546553]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1486.546582]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1486.546611]  get_tree_nodev+0x28/0x190
[ 1486.546641]  vfs_get_tree+0x93/0x340
[ 1486.546665]  path_mount+0x720/0x2130
[ 1486.546708]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1486.546747]  ? __pfx_path_mount+0x10/0x10
[ 1486.546781]  ? putname.part.0+0x11b/0x160
[ 1486.546818]  ? getname_flags.part.0+0x1c6/0x540
[ 1486.546859]  ? putname.part.0+0x11b/0x160
[ 1486.546901]  __x64_sys_mount+0x293/0x310
[ 1486.546933]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1486.546977]  do_syscall_64+0xbf/0x390
[ 1486.547009]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1486.547034] RIP: 0033:0x7efe1268304a
[ 1486.547053] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1486.547076] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1486.547100] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe1268304a
[ 1486.547116] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1486.547131] RBP: 00007efe0fbf7040 R08: 00007efe0fbf7040 R09: 0000000020000000
[ 1486.547148] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1486.547164] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1486.547201]  </TASK>
[ 1486.580026] FAULT_INJECTION: forcing a failure.
[ 1486.580026] name failslab, interval 1, probability 0, space 0, times 0
[ 1486.581011] CPU: 0 UID: 0 PID: 28902 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1486.581028] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1486.581035] Call Trace:
[ 1486.581041]  <TASK>
[ 1486.581046]  dump_stack_lvl+0xfa/0x120
[ 1486.581070]  should_fail_ex+0x4d7/0x5e0
[ 1486.581093]  should_failslab+0xc2/0x120
[ 1486.581112]  ? __pfx_shmem_init_fs_context+0x10/0x10
[ 1486.581128]  __kmalloc_cache_noprof+0x81/0x6b0
[ 1486.581150]  ? trace_kmalloc+0x1f/0xb0
[ 1486.581164]  ? __kmalloc_cache_noprof+0x27b/0x6b0
[ 1486.581182]  ? shmem_init_fs_context+0x45/0x2c0
[ 1486.581198]  ? __pfx_shmem_init_fs_context+0x10/0x10
[ 1486.581217]  ? shmem_init_fs_context+0x45/0x2c0
[ 1486.581229]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1486.581250]  shmem_init_fs_context+0x45/0x2c0
[ 1486.581262]  ? __pfx_shmem_init_fs_context+0x10/0x10
[ 1486.581277]  alloc_fs_context+0x570/0x9e0
[ 1486.581306]  path_mount+0xd87/0x2130
[ 1486.581326]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1486.581349]  ? __pfx_path_mount+0x10/0x10
[ 1486.581367]  ? kmem_cache_free+0x2a4/0x540
[ 1486.581380]  ? putname.part.0+0x11b/0x160
[ 1486.581401]  ? getname_flags.part.0+0x1c6/0x540
[ 1486.581426]  ? putname.part.0+0x11b/0x160
[ 1486.581452]  __x64_sys_mount+0x293/0x310
[ 1486.581471]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1486.581503]  do_syscall_64+0xbf/0x390
[ 1486.581524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1486.581537] RIP: 0033:0x7f13ca8cc04a
[ 1486.581547] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1486.581558] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1486.581569] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8cc04a
[ 1486.581577] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1486.581584] RBP: 00007f13c7e40040 R08: 00007f13c7e40040 R09: 0000000020000000
[ 1486.581592] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1486.581598] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1486.581631]  </TASK>
06:16:01 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_encrypt_change={{0x8, 0x4}, {0x1, 0x0, 0x80}}}, 0x7)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:16:01 executing program 6:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r1, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x2000000}])
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r4 = fsmount(0xffffffffffffffff, 0x1, 0x4)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r5, 0x0, 0x0)
io_submit(r1, 0x4, &(0x7f00000003c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x6, 0x7, r3, &(0x7f00000000c0)="6bc49e31516b61c073e336fbb47fd64c6e1e9cf305957521c63a430b83168e0ad68008878d42c565d3c222188c204ad2ff48d0b09932", 0x36, 0x3, 0x0, 0x1, r4}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x2, 0x4, r0, &(0x7f0000000200)="22919a7d6cc1ec1a8d82a562c3ea6cad2c233716b0ce4210369e91e17d74f500d40d8dcd7b69dd803f2638568778ed8f0fa058dcd330c817dc9e6f807388d076a89ebb96f544a06d880cf4c48ccecbe413da2e2ee4b50df93a1b377a1ad492195515d9c6a46bef69e34ffec097cedeef385e9a66d7e2d401c260e467cd8b476e361e5b4b6b265516c6baa273ea2ebab51bf45046c67fdc7dc6b5f7771483", 0x9e, 0x7, 0x0, 0x2}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x7, 0x6, r0, &(0x7f0000000580)="745eb07cae5e5707c9ecfc571933a4ebdf048c53c97d2fcea55c24d9dbabe44d6b6ddb177c745e449e4fcdc8e242ca5e4f6bc643a79be24f9e0fa44603267a584314e78a73506d6ec6deda6accb91e1bc0c671734457d791edf491e04abdd333710e809d83bf5de6993c541acb0d8eec0832782ad2931fd540a5101da6560df369ecb892396a1a60a15cf2fb262af3b638cd4228da9bef5551a7b49fd1fddd8103a864024b0a6f922c61c175064656643c479a88c7a010e2f93306d59e14f852d294bdaceb96c2226c2a1795df3d64e30751f849afaf931d2678ee2cba0bdd8d132023ee71", 0xe5, 0x10001, 0x0, 0x0, r5}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x4137, r0, &(0x7f0000000680)="c734f1179b6421cf150f1641b51312d8da66ec2e62633c5fc15bcd6fb5e131fa32f522223f1fa7bdbafae6ef6cfedf81a826bdbefc23527e869b3a651426e914c9db73cd004d786edbdc23eb7bd88dd35fbd35e944f195c36ad40f457619219578c0ebe6eb0f72e96d7d908e0e42f3c3716540665692d8aa116f798cf4b9a5e0cd95e25dd534bcca5d8d1abaef61b5f7710c232f672e11d83c2f1fd56c027ad588853c6b86d5efaba917d1b324496278cdf0383603f442a41db4952f43c3e8df8b04f6d7102bfd83e62b10b4af", 0xcd, 0x8, 0x0, 0x3}])
r6 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r6, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})

06:16:01 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 44)

06:16:01 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r2=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f00000000c0)={@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x3}}, 0x0, r2})
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000080)={'sit0\x00', &(0x7f0000000180)={'syztnl1\x00', r2, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @loopback, 0x0, 0x20}})
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000740)=<r3=>0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000980)={&(0x7f0000000240)=ANY=[@ANYBLOB="dc0100001800000125bd7000fedbdf25000000000000000000000000000000000a0101020000000000000000000000004e2404014e2300000000000000000000005232c5631a1d434f42f8ca5776bd6687aacaf5d7eb633396643b56b9bf4c6651c3acf092efcc9e6878d11a5d78", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0a010100000000000000000000000000000004d33300000064010100000000000000000000000000c5ffffffffffffff05000000000000000104000000000000210000000000000000000000000000004000000000000000030000000000000000fcffffffffffff0104000000000000d10200000000000009000000000000000800000000000000000800bb0200000002000027bd70000740bf49916e7bb313eb5f1b3500000a0006060200000000000000b500000000000000e4000600fe800000000000000000000000000037000000000000000000000000000000004e20009b4e23", @ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="ac1414aa000000000000000000000000000004d46c00000000000000000000000000000000000000dd0e0000000000004d0000000000000000010000000000000200000000000000060000000000000005000000000000001f00000000000000000005000000000000005f9300000000000008000000000000002000000007000000500f000028bd700007350000020002d64700"/168], 0x1dc}, 0x1, 0x0, 0x0, 0x4000011}, 0x40084)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f00000085c0)={0x0, 0x0, <r5=>0x0}, &(0x7f0000008600)=0xc)
setresgid(r5, 0x0, 0xee01)
fstat(r4, &(0x7f0000000240))
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f00000085c0)={0x0, 0x0, <r6=>0x0}, &(0x7f0000008600)=0xc)
setresgid(r6, 0x0, 0xee01)
getegid()
newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='./file0/file0\x00', &(0x7f00000002c0), 0xb24ce62207e50b5b)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000002700)={&(0x7f0000000080)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000002240)=[{&(0x7f0000000100)="2d6514b89a827fd9e81ccbc56f0c01476e6391bd64b345580c76c95cfc9e9dc141cec5b8abb03659af13e360adddb25159dfc68a7cad236fa5e53a5f829d54772ea92b4e3ab6e5ce9b62aeda60e98aa7f2c8be90197167c264e445fd09148cd78211285c651a2a33e23a5a967f6e2a86475c1123b3578509a2ef74677df4c48b636b361fbcafaba7e4", 0x89}, {&(0x7f00000001c0)="e19cefc968d77363c7ff9273c0ef50ffa6dfbb5b2d3b02d89b6c0f14e0c2da201903af777b9ffb3213ce4eb5c0ab59b8038ec1ae8c245ad767daa45bace094a2af00e18ae7c4b59e7f5a2054b13e59866dbb71356f98bc4f3b0cf1fd9fe8cebdfb05c3272f20156f2b75c5b3b837641d212831919867069759c005e8", 0x7c}, {&(0x7f0000000240)="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", 0x1000}, {&(0x7f0000001240)="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", 0x1000}, {&(0x7f0000002240)}, {&(0x7f0000002480)="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", 0x119}, {&(0x7f00000022c0)="c260aba06ec8e96c4b4e18bc90e48a16deb57ce3710d31b44b33232cc281b55cf233232df1b33d73f92151d15041b3e0922b58e37d228a32950c57498ad04927b35aeb02bf73360f9e254d1899762a70f6be186426e64e442ed2305556fe5d3f61f60c90fbebba33e5ff7bcd1f4629cc4ec4aead2200b5884018462df18dc47277ca1a348ca7ad515ba0d7b016caff39060d2d4472cc53e5abfe439d1e11cc469c73f7fb701482f491ee97e5e558ef1520b631bbb6fc15477fcd86b58a7a72dcd0193f2b591a876f0640", 0xca}, {&(0x7f00000023c0)="d21b753038399d913e9b9cfa0a018043ac173ef297cac93b633fbe3b28c6d6e84a2b1d536f4fb0d04ad255c6d184f27614", 0x31}], 0x8, &(0x7f00000025c0)=[@rights={{0x10}}, @rights={{0x10}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r3, r6}}}], 0x60, 0x4000840}, 0x40088)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448e0, 0x0)

06:16:01 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_cmd_rej_unk={{0x1, 0x80, 0x2}, {0xda}}}}, 0xf)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x1, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_reconf_req={{0x19, 0x40, 0xc}, {0x80, 0x2, [0x58, 0x4, 0xc80b, 0x8001]}}}}, 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:16:01 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:16:01 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0xfa, 0x0, 0x301e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xc}, 0x5d18, 0x3, 0x0, 0x0, 0x8000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:16:01 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 42)

[ 1495.685301] tmpfs: Bad value for 'mpol'
[ 1495.760358] tmpfs: Bad value for 'mpol'
06:16:09 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(r0, &(0x7f0000000040)=""/32, 0x18)

06:16:09 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={0x0}, 0x12}, 0x0, 0x5, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:16:09 executing program 1:
sendmsg$NL80211_CMD_NOTIFY_RADAR(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x54, 0x0, 0x4, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x13d}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x4}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0xdc}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x13}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x1c}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2a}]}, 0x54}, 0x1, 0x0, 0x0, 0x20000844}, 0x240088d1)
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
syz_emit_vhci(&(0x7f0000000580)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}, {0x3, 0x0, @any, 0x0, 0x20, 0xff, 0x3, 0x583, 0x2}}}, 0x14)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_MCAST_MSFILTER(r1, 0x0, 0x30, &(0x7f0000000100)={0x0, {{0x2, 0x0, @broadcast}}, 0x0, 0x1fffffe, [{{0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}, {{0x2, 0x0, @loopback}}]}, 0x190)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000040))
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f00000005c0)=ANY=[@ANYBLOB="c790911e50d5ef452dec3bf9073a3ba2ad8f85470a00449341f2501c7b02a2aa6e40b384ed91e2027a85ea9ca3bb85abada860e3403318e8bb890f6998114490e72a03ad26dfea5f48f485389ea13a414168db901fbc193a1faeee45a07f9f28d4a956fe98e471a789838ca4cdce17a3698ec78e5f612dfb9d9517cd9fa4fa3caf3ec1a514e43f2fb1ee843000fbe56cbdc1c48f3c7dae3106b2794414b9e5817adc60b769400e9af0560346b63be3bf9aa7ba82cd2e77db2922b0349d2a39e96d2600ea73c8209ae9d2677c6516"], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r2 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:16:09 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 43)

06:16:09 executing program 7:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r1, 0x400448e0, 0x0)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x4, 0x1}, 0x6)
write$bt_hci(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="011c0c339f4403ac"], 0x8)

06:16:09 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 45)

06:16:09 executing program 6:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r1, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x2000000}])
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r4 = fsmount(0xffffffffffffffff, 0x1, 0x4)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r5, 0x0, 0x0)
io_submit(r1, 0x4, &(0x7f00000003c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x6, 0x7, r3, &(0x7f00000000c0)="6bc49e31516b61c073e336fbb47fd64c6e1e9cf305957521c63a430b83168e0ad68008878d42c565d3c222188c204ad2ff48d0b09932", 0x36, 0x3, 0x0, 0x1, r4}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x2, 0x4, r0, &(0x7f0000000200)="22919a7d6cc1ec1a8d82a562c3ea6cad2c233716b0ce4210369e91e17d74f500d40d8dcd7b69dd803f2638568778ed8f0fa058dcd330c817dc9e6f807388d076a89ebb96f544a06d880cf4c48ccecbe413da2e2ee4b50df93a1b377a1ad492195515d9c6a46bef69e34ffec097cedeef385e9a66d7e2d401c260e467cd8b476e361e5b4b6b265516c6baa273ea2ebab51bf45046c67fdc7dc6b5f7771483", 0x9e, 0x7, 0x0, 0x2}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x7, 0x6, r0, &(0x7f0000000580)="745eb07cae5e5707c9ecfc571933a4ebdf048c53c97d2fcea55c24d9dbabe44d6b6ddb177c745e449e4fcdc8e242ca5e4f6bc643a79be24f9e0fa44603267a584314e78a73506d6ec6deda6accb91e1bc0c671734457d791edf491e04abdd333710e809d83bf5de6993c541acb0d8eec0832782ad2931fd540a5101da6560df369ecb892396a1a60a15cf2fb262af3b638cd4228da9bef5551a7b49fd1fddd8103a864024b0a6f922c61c175064656643c479a88c7a010e2f93306d59e14f852d294bdaceb96c2226c2a1795df3d64e30751f849afaf931d2678ee2cba0bdd8d132023ee71", 0xe5, 0x10001, 0x0, 0x0, r5}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x4137, r0, &(0x7f0000000680)="c734f1179b6421cf150f1641b51312d8da66ec2e62633c5fc15bcd6fb5e131fa32f522223f1fa7bdbafae6ef6cfedf81a826bdbefc23527e869b3a651426e914c9db73cd004d786edbdc23eb7bd88dd35fbd35e944f195c36ad40f457619219578c0ebe6eb0f72e96d7d908e0e42f3c3716540665692d8aa116f798cf4b9a5e0cd95e25dd534bcca5d8d1abaef61b5f7710c232f672e11d83c2f1fd56c027ad588853c6b86d5efaba917d1b324496278cdf0383603f442a41db4952f43c3e8df8b04f6d7102bfd83e62b10b4af", 0xcd, 0x8, 0x0, 0x3}])
r6 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r6, 0x9408, 0x0)

06:16:09 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000140)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
syz_emit_vhci(&(0x7f0000000180)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

[ 1504.410005] tmpfs: Bad value for 'mpol'
06:16:10 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_SCODATA_PKT={0x3, {0xc8}, "e68ccadedc7c47df72c1b83229acd82df97ca05cce5496242245d5cc668a806a60e0cf69fa8ba6cb26694d037b30f08a2ae880caec740eae05c44ad7b08a47a4079eb59aa0834db69476e0d23a6993ec9fdcd726fca9f60048c08586f3cc3ffdd25cf0d68469"}, 0xfd4a)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

[ 1504.450806] FAULT_INJECTION: forcing a failure.
[ 1504.450806] name failslab, interval 1, probability 0, space 0, times 0
[ 1504.451400] FAULT_INJECTION: forcing a failure.
[ 1504.451400] name failslab, interval 1, probability 0, space 0, times 0
[ 1504.452574] CPU: 1 UID: 0 PID: 29179 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1504.452606] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1504.452619] Call Trace:
[ 1504.452627]  <TASK>
[ 1504.452636]  dump_stack_lvl+0xfa/0x120
[ 1504.452666]  should_fail_ex+0x4d7/0x5e0
[ 1504.452700]  should_failslab+0xc2/0x120
[ 1504.452731]  __kmalloc_cache_noprof+0x81/0x6b0
[ 1504.452770]  ? alloc_super+0x53/0xb20
[ 1504.452800]  ? alloc_super+0x53/0xb20
[ 1504.452822]  alloc_super+0x53/0xb20
[ 1504.452844]  ? lock_release+0xc8/0x290
[ 1504.452881]  sget_fc+0xfe/0xb80
[ 1504.452905]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1504.452929]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1504.452955]  get_tree_nodev+0x28/0x190
[ 1504.452981]  vfs_get_tree+0x93/0x340
[ 1504.453003]  path_mount+0x720/0x2130
[ 1504.453048]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1504.453081]  ? __pfx_path_mount+0x10/0x10
[ 1504.453111]  ? putname.part.0+0x11b/0x160
[ 1504.453144]  ? getname_flags.part.0+0x1c6/0x540
[ 1504.453180]  ? putname.part.0+0x11b/0x160
[ 1504.453217]  __x64_sys_mount+0x293/0x310
[ 1504.453245]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1504.453284]  do_syscall_64+0xbf/0x390
[ 1504.453312]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1504.453334] RIP: 0033:0x7f13ca8cc04a
[ 1504.453351] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1504.453371] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1504.453392] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8cc04a
[ 1504.453406] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1504.453419] RBP: 00007f13c7e40040 R08: 00007f13c7e40040 R09: 0000000020000000
[ 1504.453433] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1504.453445] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1504.453492]  </TASK>
[ 1504.468861] CPU: 0 UID: 0 PID: 29167 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1504.468879] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1504.468887] Call Trace:
[ 1504.468893]  <TASK>
[ 1504.468899]  dump_stack_lvl+0xfa/0x120
[ 1504.468923]  should_fail_ex+0x4d7/0x5e0
[ 1504.468948]  should_failslab+0xc2/0x120
[ 1504.468970]  __kmalloc_noprof+0xcd/0x680
[ 1504.468991]  ? down_write_nested+0x11d/0x1f0
[ 1504.469015]  ? __pfx_down_write_nested+0x10/0x10
[ 1504.469042]  ? security_sb_alloc+0xe3/0x140
[ 1504.469067]  security_sb_alloc+0xe3/0x140
[ 1504.469084]  alloc_super+0x1e9/0xb20
[ 1504.469102]  ? lock_release+0xc8/0x290
[ 1504.469131]  sget_fc+0xfe/0xb80
[ 1504.469149]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1504.469168]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1504.469185]  get_tree_nodev+0x28/0x190
[ 1504.469205]  vfs_get_tree+0x93/0x340
[ 1504.469221]  path_mount+0x720/0x2130
[ 1504.469243]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1504.469268]  ? __pfx_path_mount+0x10/0x10
[ 1504.469290]  ? putname.part.0+0x11b/0x160
[ 1504.469312]  ? getname_flags.part.0+0x1c6/0x540
[ 1504.469339]  ? putname.part.0+0x11b/0x160
[ 1504.469368]  __x64_sys_mount+0x293/0x310
[ 1504.469387]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1504.469422]  do_syscall_64+0xbf/0x390
[ 1504.469443]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1504.469457] RIP: 0033:0x7efe1268304a
[ 1504.469468] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1504.469481] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1504.469493] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe1268304a
[ 1504.469501] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1504.469509] RBP: 00007efe0fbf7040 R08: 00007efe0fbf7040 R09: 0000000020000000
[ 1504.469517] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1504.469524] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1504.469559]  </TASK>
06:16:10 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 44)

06:16:10 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 46)

06:16:10 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x2000, 0x40000}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
pipe(&(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x0, 0x0, 0xf4, 0x8c, 0x0, 0x1, 0x50840, 0x7, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x0, @perf_bp={&(0x7f0000000080), 0x6}, 0x2, 0x4, 0x7, 0x1, 0x8, 0xffffffc1, 0x3, 0x0, 0x6, 0x0, 0xf28}, 0xffffffffffffffff, 0x0, r0, 0xb)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r1, 0x400448e0, 0x0)

06:16:10 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_disconn_complete={{0x5, 0x4}, {0x7f, 0xc8, 0x3}}}, 0x7)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x6, 0x1, 0xa73, 0xfb}}}, 0xa)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xeb66, 0xf780000000000000, &(0x7f00000001c0)=0x1)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_EVENT_PKT={0x4, @HCI_EV_VENDOR={{0xff, 0x3a}, "90474137e84b5f38d8a0473025aadc1b4da3615ae23ba96d897fcda59e2e4d2fd3cd461829f25fdc498dc68d5a08f25a764b4c3e97a55aa5ba14"}}, 0x3d)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000140)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x6000, @fd=r0, 0x400, 0xfffffffffffffe36, 0x2}, 0x3)
syz_emit_vhci(&(0x7f0000000180)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x0, 0x10}, @l2cap_cid_le_signaling={{0xc}, @l2cap_conn_param_update_req={{0x12, 0x40, 0x8}, {0x5, 0x1000, 0x2, 0x18de}}}}, 0x15)
syz_emit_vhci(&(0x7f0000000200)=@HCI_EVENT_PKT={0x4, @hci_ev_num_comp_pkts={{0x13, 0x25}, {0x9, [{0xc8, 0x3}, {0xc8, 0x8}, {0xc8}, {0xc9}, {0xc9, 0x7}, {0xc8, 0xe006}, {0xc8, 0x81}, {0xc8, 0x800}, {0xc9, 0x8}]}}}, 0x28)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:16:10 executing program 6:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r1, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x2000000}])
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r4 = fsmount(0xffffffffffffffff, 0x1, 0x4)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r5, 0x0, 0x0)
io_submit(r1, 0x4, &(0x7f00000003c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x6, 0x7, r3, &(0x7f00000000c0)="6bc49e31516b61c073e336fbb47fd64c6e1e9cf305957521c63a430b83168e0ad68008878d42c565d3c222188c204ad2ff48d0b09932", 0x36, 0x3, 0x0, 0x1, r4}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x2, 0x4, r0, &(0x7f0000000200)="22919a7d6cc1ec1a8d82a562c3ea6cad2c233716b0ce4210369e91e17d74f500d40d8dcd7b69dd803f2638568778ed8f0fa058dcd330c817dc9e6f807388d076a89ebb96f544a06d880cf4c48ccecbe413da2e2ee4b50df93a1b377a1ad492195515d9c6a46bef69e34ffec097cedeef385e9a66d7e2d401c260e467cd8b476e361e5b4b6b265516c6baa273ea2ebab51bf45046c67fdc7dc6b5f7771483", 0x9e, 0x7, 0x0, 0x2}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x7, 0x6, r0, &(0x7f0000000580)="745eb07cae5e5707c9ecfc571933a4ebdf048c53c97d2fcea55c24d9dbabe44d6b6ddb177c745e449e4fcdc8e242ca5e4f6bc643a79be24f9e0fa44603267a584314e78a73506d6ec6deda6accb91e1bc0c671734457d791edf491e04abdd333710e809d83bf5de6993c541acb0d8eec0832782ad2931fd540a5101da6560df369ecb892396a1a60a15cf2fb262af3b638cd4228da9bef5551a7b49fd1fddd8103a864024b0a6f922c61c175064656643c479a88c7a010e2f93306d59e14f852d294bdaceb96c2226c2a1795df3d64e30751f849afaf931d2678ee2cba0bdd8d132023ee71", 0xe5, 0x10001, 0x0, 0x0, r5}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x4137, r0, &(0x7f0000000680)="c734f1179b6421cf150f1641b51312d8da66ec2e62633c5fc15bcd6fb5e131fa32f522223f1fa7bdbafae6ef6cfedf81a826bdbefc23527e869b3a651426e914c9db73cd004d786edbdc23eb7bd88dd35fbd35e944f195c36ad40f457619219578c0ebe6eb0f72e96d7d908e0e42f3c3716540665692d8aa116f798cf4b9a5e0cd95e25dd534bcca5d8d1abaef61b5f7710c232f672e11d83c2f1fd56c027ad588853c6b86d5efaba917d1b324496278cdf0383603f442a41db4952f43c3e8df8b04f6d7102bfd83e62b10b4af", 0xcd, 0x8, 0x0, 0x3}])
syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))

06:16:10 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
socketpair(0x2b, 0x2, 0x8, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$EXT4_IOC_SWAP_BOOT(r1, 0x6611)
r4 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xffffffffffffffff, 0x3, &(0x7f0000000000)=0xff)
ioctl$sock_bt_hci(r0, 0x800448f0, &(0x7f0000000100)="614a778b7c149bbab1a8186838c4a6e37b191a0c302e5a3a60c5a21e05cd597708807bfb346764e96557b342d30a0c60370877c9609e7af721a1461db726276ca473897f4cee47ccf1e854847aba31229bf56d59e53e0b7ce6e1b6ef07443ad11cd2592c43918458b2ca8daad2d2437b17d85d5e01ada6923b2d239110d20b6ad6fbfc1c753f4bf45228dbe7dba14e1d78ac0834129207e2e4a37dee4bf179ceb33de7e69d2f0961cc2b4994efd3270a0d42beae1fbd7119ad099f3b23030a8178b9765bbb6e283e68f73a8f7f21c8d2581c27117dd8b7a54d81a3d32584eaacc74c275954b1b61b8c")
ioctl$HCIINQUIRY(r4, 0x800448f0, &(0x7f00000000c0)={0x3, 0x3, "8e2dc9", 0x1, 0x31})
getdents(r4, &(0x7f0000000040)=""/32, 0x20)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x4, 0x8000000009b, &(0x7f0000000080)=0x1)

[ 1504.678961] FAULT_INJECTION: forcing a failure.
[ 1504.678961] name failslab, interval 1, probability 0, space 0, times 0
[ 1504.679940] CPU: 0 UID: 0 PID: 29358 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1504.679957] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1504.679965] Call Trace:
[ 1504.679970]  <TASK>
[ 1504.679976]  dump_stack_lvl+0xfa/0x120
[ 1504.679998]  should_fail_ex+0x4d7/0x5e0
[ 1504.680022]  should_failslab+0xc2/0x120
[ 1504.680042]  __kmalloc_cache_noprof+0x81/0x6b0
[ 1504.680067]  ? alloc_super+0x53/0xb20
[ 1504.680092]  ? alloc_super+0x53/0xb20
[ 1504.680104]  alloc_super+0x53/0xb20
[ 1504.680118]  ? lock_release+0xc8/0x290
[ 1504.680146]  sget_fc+0xfe/0xb80
[ 1504.680163]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1504.680181]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1504.680197]  get_tree_nodev+0x28/0x190
[ 1504.680215]  vfs_get_tree+0x93/0x340
[ 1504.680230]  path_mount+0x720/0x2130
[ 1504.680251]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1504.680274]  ? __pfx_path_mount+0x10/0x10
[ 1504.680295]  ? putname.part.0+0x11b/0x160
[ 1504.680317]  ? getname_flags.part.0+0x1c6/0x540
[ 1504.680345]  ? putname.part.0+0x11b/0x160
[ 1504.680371]  __x64_sys_mount+0x293/0x310
[ 1504.680389]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1504.680421]  do_syscall_64+0xbf/0x390
[ 1504.680441]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1504.680455] RIP: 0033:0x7f13ca8cc04a
[ 1504.680465] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1504.680477] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1504.680489] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8cc04a
[ 1504.680496] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1504.680503] RBP: 00007f13c7e40040 R08: 00007f13c7e40040 R09: 0000000020000000
[ 1504.680510] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1504.680517] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1504.680550]  </TASK>
06:16:10 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f0000000140)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x1, 0x65}, @l2cap_cid_signaling={{0x61}, [@l2cap_conn_rsp={{0x3, 0x7, 0x8}, {0x200, 0xffff, 0x401, 0x3}}, @l2cap_create_chan_req={{0xc, 0x0, 0x5}, {0x8, 0x7, 0xce}}, @l2cap_conf_req={{0x4, 0x7, 0x22}, {0xffff, 0x8, [@l2cap_conf_rfc={0x4, 0x9, {0x3, 0xf7, 0x6, 0x3f, 0x8001, 0x7ff}}, @l2cap_conf_mtu={0x1, 0x2, 0x4a1}, @l2cap_conf_flushto={0x2, 0x2, 0x400}, @l2cap_conf_rfc={0x4, 0x9, {0x4, 0xf8, 0x5, 0x7, 0x8, 0xa61}}]}}, @l2cap_conn_rsp={{0x3, 0x7, 0x8}, {0xe8, 0x2, 0x4, 0xd4}}, @l2cap_cmd_rej_unk={{0x1, 0x9, 0x2}, {0x82c}}, @l2cap_create_chan_rsp={{0xd, 0x7, 0x8}, {0x40, 0x7f, 0xfc00, 0x9}}, @l2cap_move_chan_cfm={{0x10, 0x3f, 0x4}, {0x7, 0x9}}]}}, 0x6a)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:16:10 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
r1 = openat2(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x200080, 0x22, 0x2}, 0x18)
r2 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f0000000180)={0x5, 0x0, &(0x7f0000000140)=[r2]}, 0x1)
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='mpol=p\x00\x00\x00\x00\x00\x00\x00\a'])
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

[ 1504.721049] FAULT_INJECTION: forcing a failure.
[ 1504.721049] name failslab, interval 1, probability 0, space 0, times 0
[ 1504.722771] CPU: 1 UID: 0 PID: 29360 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1504.722801] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1504.722814] Call Trace:
[ 1504.722822]  <TASK>
[ 1504.722831]  dump_stack_lvl+0xfa/0x120
[ 1504.722861]  should_fail_ex+0x4d7/0x5e0
[ 1504.722890]  should_failslab+0xc2/0x120
[ 1504.722920]  __kmalloc_noprof+0xcd/0x680
[ 1504.722952]  ? down_write_nested+0x11d/0x1f0
[ 1504.722987]  ? __pfx_down_write_nested+0x10/0x10
[ 1504.723019]  ? security_sb_alloc+0xe3/0x140
[ 1504.723051]  security_sb_alloc+0xe3/0x140
[ 1504.723075]  alloc_super+0x1e9/0xb20
[ 1504.723099]  ? lock_release+0xc8/0x290
[ 1504.723136]  sget_fc+0xfe/0xb80
[ 1504.723160]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1504.723185]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1504.723211]  get_tree_nodev+0x28/0x190
[ 1504.723238]  vfs_get_tree+0x93/0x340
[ 1504.723259]  path_mount+0x720/0x2130
[ 1504.723290]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1504.723323]  ? __pfx_path_mount+0x10/0x10
[ 1504.723354]  ? putname.part.0+0x11b/0x160
[ 1504.723389]  ? getname_flags.part.0+0x1c6/0x540
[ 1504.723426]  ? putname.part.0+0x11b/0x160
[ 1504.723470]  __x64_sys_mount+0x293/0x310
[ 1504.723514]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1504.723555]  do_syscall_64+0xbf/0x390
[ 1504.723585]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1504.723607] RIP: 0033:0x7efe1268304a
[ 1504.723624] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1504.723644] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1504.723665] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe1268304a
[ 1504.723680] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1504.723701] RBP: 00007efe0fbf7040 R08: 00007efe0fbf7040 R09: 0000000020000000
[ 1504.723715] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1504.723728] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1504.723760]  </TASK>
[ 1504.737200] tmpfs: Bad value for 'mpol'
06:16:10 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 45)

06:16:10 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000600)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x0, 0x189}, @l2cap_cid_signaling={{0x185}, [@l2cap_move_chan_req={{0xe, 0x6, 0x3}, {0x1a19, 0x20}}, @l2cap_info_rsp={{0xb, 0x3f, 0x101}, {0x6, 0x8, "12083a3fc25eb410a31e0f939aeec0edb29847629421d7994a24f6acba158e9e2b47db13ec8752a5a12efdf3a7752f821ae8ab2d911b29267c8db879dd116290d6f899dc562aa67ec9fd56be5d15567b7e3fcb9df674e161bd81059ea9ee6f3ebbfa2b4a7de562c3cb817ca544c6f2b41ae87bb13a4c58244ffa9f9779222f4893f81e3297b3f103fbfbdb1226430a3258d7a5587016a25f9fa1e10556fa578ba4acb53f44248380df07b2c6c9dc8e2a5950fb89888e7bf4f19afd5c5ee3274e101b27935c1a78e02c8e2e262eb9602445f54734f69498abcd7caad0559f9bf19dcaf4461bc81c67be8627b3b5506cb333bdf8f52d39d0f9144ee2e218"}}, @l2cap_move_chan_rsp={{0xf, 0x1, 0x4}, {0x5, 0x6}}, @l2cap_conn_req={{0x2, 0x7f, 0x4}, {0x5, 0x6}}, @l2cap_move_chan_req={{0xe, 0x5, 0x3}, {0xff, 0x9}}, @l2cap_conf_req={{0x4, 0x4, 0x4a}, {0xff, 0x7, [@l2cap_conf_mtu={0x1, 0x2, 0x5}, @l2cap_conf_mtu={0x1, 0x2, 0x7}, @l2cap_conf_mtu={0x1, 0x2, 0x2}, @l2cap_conf_efs={0x6, 0x10, {0x5b, 0x0, 0x8, 0x10000, 0x0, 0x5}}, @l2cap_conf_flushto={0x2, 0x2, 0xfdce}, @l2cap_conf_flushto={0x2, 0x2, 0x401}, @l2cap_conf_fcs={0x5, 0x1}, @l2cap_conf_rfc={0x4, 0x9, {0x2, 0x8, 0x7f, 0x7, 0x100, 0x9}}, @l2cap_conf_efs={0x6, 0x10, {0x2, 0x0, 0x1, 0x4, 0x7, 0x2fc}}]}}, @l2cap_conn_rsp={{0x3, 0x1, 0x8}, {0x1, 0x7, 0xfff8, 0x9}}, @l2cap_move_chan_cfm={{0x10, 0x8, 0x4}, {0x0, 0x2ae}}]}}, 0x18e)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:16:10 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:16:10 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 47)

06:16:10 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40d94ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:16:10 executing program 3:
openat$bsg(0xffffffffffffff9c, &(0x7f00000000c0), 0x840, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x101042, 0x0)
r0 = syz_mount_image$iso9660(&(0x7f00000004c0), &(0x7f0000000140)='\x00', 0x5, 0x5, &(0x7f0000000440)=[{&(0x7f0000000180)="6f0093e3a7c71b96dee18b766aba840b985bf8bcc1477ac6be3ef20d0c343e45c46a8028bbe54bc14c38e8c3e3c0091060a16cce42cec3c8d1a3da8fa44d25f51730a75872d4a8b85b40e85c83b2afa38e9e26e53d2c5df067e1d48d7fec72507f798ddc6c42015498af08f398301cde0059857dff959b31d842dd7552f53d7f0b16f5649564cea9a6c4cf6fc3318ce80a8f68b7f7f10dfdb3ee66a6b7fab1a6e1936e0787cd7e51ebca8ed95f680921566d5ab3034eda865b60b1bc8983551a33c2b177e4bd4d69bd90c098943938ab077712c5ee4461122092c172731a2448e104bc0ba3a253e13f9bb36fb8ca9e26b1b556", 0xf3, 0x4}, {&(0x7f0000000280)="7244de86355d0f7be6b6de2350973f66972fb21ce2946c03c7414b839d6dd45de9999a815df8fbdfc2db6b2fbf06", 0x2e, 0x3}, {&(0x7f00000002c0)="9ba993ab5811be28f4e47132e7532783c78713d9bee517eaf92c783972db400d99207b57bd116904c81815433e9f846ec0b61121399b200b080148d5f64998f011c845", 0x43, 0x2}, {&(0x7f0000000340)="4d29adee4141bee77e461cdb40eb58f64061a79de41a7146298d29e2", 0x1c, 0x100}, {&(0x7f0000000380)="45d75608f7555de19cea523f02ab42a02e879081d40a3f0938c86e4b643e7f74dbda7184ebfe8ec8483b428540987eb182cf5adf62e75edb00e67b5eb57b8a31ae3781162bf244bd457d8b9216c5789d3b67803de31ac0a99b97dcd7125bde7cfb9c2c981dd78f8f134241977016e6d8f33be295f651bd046078d1391d2e01c5e3c6083f03b8a4bcd5317f1f83c2b404d835bef05ba538e57fb4fb2396d7993ce39df836858c3d00a594f2", 0xab, 0x3}], 0x100001, &(0x7f0000000600)={[{}, {@overriderock}, {@dmode={'dmode', 0x3d, 0x3}}, {@unhide}], [{@euid_lt}, {@fowner_lt={'fowner<', 0xee01}}, {@dont_measure}, {@permit_directio}]})
getdents(r0, &(0x7f0000000100)=""/23, 0x17)
setxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file0\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file0\x00', 0x8, 0x0)

06:16:10 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_user_confirm_req={{0x33, 0xa}, {@none, 0xeaa}}}, 0xd)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:16:10 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 48)

06:16:10 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="9a6d8ad1cf7e482676c5131584e140ac312c00d60efcf61ea2a3fcfa7aebc3ed4ffcd5c1c075faa6027eb87b"])
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:16:10 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 46)

[ 1505.071003] tmpfs: Unknown parameter '�m���~H&v���@�1'
[ 1505.156646] FAULT_INJECTION: forcing a failure.
[ 1505.156646] name failslab, interval 1, probability 0, space 0, times 0
[ 1505.157624] CPU: 0 UID: 0 PID: 29636 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1505.157642] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1505.157650] Call Trace:
[ 1505.157656]  <TASK>
[ 1505.157662]  dump_stack_lvl+0xfa/0x120
[ 1505.157690]  should_fail_ex+0x4d7/0x5e0
[ 1505.157715]  should_failslab+0xc2/0x120
[ 1505.157736]  __kmalloc_noprof+0xcd/0x680
[ 1505.157757]  ? down_write_nested+0x11d/0x1f0
[ 1505.157781]  ? __pfx_down_write_nested+0x10/0x10
[ 1505.157800]  ? security_sb_alloc+0xe3/0x140
[ 1505.157825]  security_sb_alloc+0xe3/0x140
[ 1505.157842]  alloc_super+0x1e9/0xb20
[ 1505.157859]  ? lock_release+0xc8/0x290
[ 1505.157888]  sget_fc+0xfe/0xb80
[ 1505.157906]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1505.157925]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1505.157941]  get_tree_nodev+0x28/0x190
[ 1505.157962]  vfs_get_tree+0x93/0x340
[ 1505.157978]  path_mount+0x720/0x2130
[ 1505.157999]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1505.158024]  ? __pfx_path_mount+0x10/0x10
[ 1505.158046]  ? putname.part.0+0x11b/0x160
[ 1505.158068]  ? getname_flags.part.0+0x1c6/0x540
[ 1505.158094]  ? putname.part.0+0x11b/0x160
[ 1505.158123]  __x64_sys_mount+0x293/0x310
[ 1505.158142]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1505.158177]  do_syscall_64+0xbf/0x390
[ 1505.158198]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1505.158215] RIP: 0033:0x7f13ca8cc04a
[ 1505.158227] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1505.158241] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1505.158254] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8cc04a
[ 1505.158262] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1505.158270] RBP: 00007f13c7e40040 R08: 00007f13c7e40040 R09: 0000000020000000
[ 1505.158279] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1505.158286] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1505.158322]  </TASK>
06:16:20 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
pwritev(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f00000005c0)="a9ff060caf407c55cd7ebac78ccfec590ca69663d16220f2972f8e0ed4cab2df90104602c06d2118abe89a7a308c5a1fb8d07642a2387ea351f5455516c4d355b620855e0363cd7f70a0190f06432bae165becc87b41b728b5781905273d7a7bca1342db8ed169dd34492463e4787a6a783016d63ea34831f9c86acd06377655ae76fc3641c08bf984165dbb6c37ee8b74da64dafb4bd86a445c3250c5b55f10d2eca5c58c41ddeff7fa88e9ef3cff5e9d08e2ccb7981fd441aa9ac9b2514b49b7277ecb93be074f4a7e1b6003338462d62e59037bd1975fa34e627962951d2933f73eaab50fea1a0d2215d57ed14da95bbe2b41f86fce70232b713f81b8ff5004f5f3136c5b34b5ab2c3066e106c9eded71843ef39046a420ea2e167188dbbb797ff633b40eec30780c1b82e6f20d6a1709a58b73bd4e99d8fe4f7a305e0892155af6d904e0a0498337dd09c8cd98033ec46a71edd96dc02c89d074a7620bca3c220ff96f9b55ffbee70ab326115f28d5347c29f5fdcc4a379b2c3adc08e6b023a54a25cf2592d691e3da213a506e7647cd9fdf99a294f1a998bd34a67069e57cb15d26a6a9469f17b7c8734aa0772eb28a54b144a5a7efcb5e656383402206024655dda350c43e46288f4ef4664e4b9547ff601e17ff6fea69c8037199e964967c3ec4487040526143aab9af3b1fb9d49f8dc2119a72575eafda8c11a2b8b7af7d41504188e902ad4a3df6de341f3b51851663030fd5110c5fa195c39e5c73c8e09f59104e44dc5504637596ec982bf9f398d988be1e6e844107ce447824e29f152242c66813e35e79a7dc9a5e0009893ce4227f81e1b9e4c25a967dd6bc420344d119b1692e3b3ee7515c4493bc1771d286e05b8f8dec2e4df6de7dd8f0f0391c363c9716157832d2165cc737279f8199e8ed5d4dc8e4cbd738f1e50ea52596cc2ba34267220592c2a7c378d11f80416979d8675ed1fc1731bcefb0c41c4241f566e283ae82dc39efc249dbfeab9a36181d9380eb81be06b0f596856bbbfcc1927e4121aa1084854824343a60245e3efb573a1020db85af94936f6e0e4cf1a67a641a03ef8a6a51e698cac8100155c0924af9e8615c2bad4813ef482a7dd662cf50aa210b5f208f28c0a4c8480133a122e31b2ba8aee82ab77ec50ab415cb22379d4de972d82c909917859f91217fa0ca561ab295d8360ed0b9299499ae04ff7c4f517eb3368de614283c9c47c4a9b48782c4aaf80d4f256cfec2e5204e359767053aef47c006f84acfdcd18a4308f9dfa7a9f9e5b0ee76814c46bbcfc93cf97772eccdfe964c1ca9e101be7e11e3ea013e197cb0274f8f63374f25839c5ba35062e973bd5d90e321e4e20110edf276bd1e5be050f8ba77662a9f51c2aece40813eedb913c113a1e1d22fe6f4e203c9617117e4b59cba1c427dcba5a446a1109b21fde357bff23c7807dd10e63dfe7cfa2ba9bfabde55c9b6491c0beb17039c156fed49ad9fa2533d9608569675131e622f6fc1217a498a582b323eb2ac97afe0e72c8b6cfa0f2bd4712d01296de96bb0faafe85cc937db6b2628285749d1fce21a98a39c9786804bc6985db4d4ff8a15e0536153c543ed87a9ecdaf9ba8c8a53e19313efd4635389e194af7d4b48292f418df80eb64447ff181455f66de21e1c226d110dc80f671e5de6a4bcd95278de9af26dafb77b0e76405fd87bc11428bc1af082abeb6536e0c07ce2e29b0d2e2931be7801aa8bddd90062bbf200270eacfab572f6c82b8d8dc2f1d679613068286e9c3a81f78deadad3b83d8c1a79d0f504b47f06bb2f7dc405f59cc425870a8a74895bb553d724f968b8a22d287ef4e2ddae58428718458c00251ab6854e1cbaa9efd8ca6ba65348d31b73129337a59ca35019d2a5ff91af8c66936311ea92061af84c67f2aaa4bf44e03c4d1b1463cfcbfd9e72c61b1e7335ef3929ad096346db03f9ffc745ce943b0fc2db8a37cedbbf015ec074556bad2b7234db2d5baf6e6e0d3bc1d7ff1bd14fec48c4496e80c67d2b00d13a47de5e85b8a677760ead7537d503ea44d7df2047f28053c1d8cfc83018a5a33c9d8f37b2dda69d25759baa80c4e890fa11d234a2a59c31183275336321053907a2d5adb6d2edfffbfa07b656f49b23e43facd9d37ec1a0b65ba7da143b9ad1cd1337cbdc91364f70047a0e0e8164a6564a92b5142b783820c8d86c73e746b84537f909dc69c88f1f9f3c133ebeff50fdfe7e6f2b52e7c985c5cf5ba762039add0d882678ba1055165c9916b38806b68cc2420e7a320ada042186b304fd4f0c592e22ab9c55c6794c980e8f798aa97cc890d1678f41da512d4a1fd33425b098a21b82649c92a538efa899fe4a8022d90affad96e06925e072dc3b969afa7936d102d38cff5016b6aeb51f7a756588c90815b20587ae10ef4872f0c80dda719a70c522a6b8a5a655524bedb01c916c6be7292439238dd66029afc87d3e93b3bcf44e9ab4c95123e87a4161b6c15b2fbc7e4ea2eec20bc85ae219172923680164324b5d09c0783a9af32f3942cd81ea524cdb8a772bb50df86398c094fe912c4f0c8c2a5231f60e13454ef1092aebe8f0442311fa6b985bc9b72e4b37c9b1b4c77b8a8c416102cb48f9edee3ef7e2e4fa28c8e75bdeb6472acfe6529dca338fc2e50987480417f630620eabfb3d5fb2a3e37d288a643f82eff8407aec3ed1cd30950d1cd28da9f85fa04a04c8c30cef1c3ff664568010a4386f95453d4f6452c8d89bae3afd74cd36cb05e3558ee7616be075c1186d3b9d31ca1285ea7813d74fe52689e8f4c1d8bdf9acb9cccc06da38e03f595eb57a81318c2126adb17b52e0c052d750ac586804bcd91e378a79558bbc101fe9a012166d56fa07dfe2c22c69035dad28a668823e688f8e4eff2652453b126ba5fc40cbfb73c2f86a5a722527efdc123d54d152326dff434159e7222760dec0cdf8ce282646bb82552a3024f0931ad1c7cc599757c4bee4a22c64d59806286460bf23a282a4a1c8027991b3b10e5f94c4ed1505b82f49f5601e2fd9e50d78be9b737c4f16f83a7b1ee38318f8dbdd8604f42dcea28e3554b9aa3d22ca2f137d472474737d2570a5ac2bc6a7cd29c71cdc119166ba9508abf8c5551adf8b1baa286c074ed15852b9e753def3bb9a03215e6e33b5eacad9a1fe752190a0dfb68e1829ce1205081880eef17c9f7c5462a4f6f05ab270da251f712ed4545ce06de9b8bad138dbe1f76fb83104af268e8f9d1f3ab7c8c42375757d446a8b357fb56234d6b757cbb159589b2970c1c30a5eb8244ba2961e47617314fbc6de0d50141636ca2b327ce1367c81d50da31675fb938a1f1cb7a367a87143b059eca23e360993d395b37970dce8080a2dc807e3643224d8fabe95b1dee3958464e3ff8d99d6bf79fa0d6950f0def3f14b7ee67138caf09281909565ea43a50acc745d1cecd7f29c50f786d0da6c1d6b5e049e55bb55df49efbd6c6b13ae9c8e0fc1cf961122fa9258bb35a1e7a6762b541800e81363af3f6338b0df034df6470582d738c28e859ef023ad2b44c6dfd0425125aefb891bc2212eb24f0ce143fae099df73b8b92407959322051f626ed5819d2df88ea8e62c870803e1c44dfea093708f9b50a80a5bd7e993d6a860ed911cb9705b089d56f6af7550786b2524a203a9a20264bd6d9fccd4223f6d0e248f4da79e5f2865c38e332fee55006d07fa2a99602795e4349c35890d9d6f875405ddc3f0ffeb5eb0fb56d31c09ff2ae72f5c7304194f0a2e65a4f63158a9483d08aa8bd3dca0d62a90cb2c7a68943237db1373dfc43205c2bfbba8d750e73f6ed62fbc0878edb4a34b34a7bb44b47c988140f70bc6b91c1402ec72620e3316282e41c1cf2e2ad60f109811eb7e9648c5a605392578a7aed72c8f7a30eb5b22307a60fe5db4bfc782b26d92b2e27ffe701df20d81392c42ad90359f5323f5b80c09a2aec3a68f94cab56d4f282bb11828c4f0602848a3b714ee7b5860559aaca0dd934e0a93bdaf173e10c2b36d78a7d50e21bc9827ea21c72508b47d69f85916a14280fd04a65aadc7523daf475fde3cf9e4aa870c49e02094c70f10e5c5b89e0baa5127efc4b41eeb65faad8312edcbbe911343a56220356753228576619b5457f11f7e62d27455d1fbc23d92cbbe4403e6b7dce8f2d6a156c3470eb0e51608457f2ae8db58bc25df765e0f7fc22bf0c8c3d2fa3e81808838ffad18972cbc86c64a48db70f8def40fc1812340f1c99b8c12414e6904e94f091d0161db5c8a391125ebab5d43984159bc25df1b2e012dfceebe1a4a8cb263d3aaf3638c4f9c69cf2190633d8e0b8c9d4ea20a67d191461cca7144d4c98a272371a3f010d228447cdcf1493bab52f777272c3864a391f4a6606b87cd22424d0761beedf83358771860476a94b006e3e853bb048a4a3b54f73a21f3b5becb62425a7443cfaaceb4be9611a216b5300da79ccbf0d533c458327c3aed7798ce0ff6d4f9d155e3007ee778026f4b43b916e5dca49af09b863e57019321e31f3f1322a61d02aaa1f04e92aa8517044db565d486b19d0e1ded1133dedf527dc08c595b6984fc7f061631ce8cb3d2e69d317cde0c1cb717c214ece33a4e622b7a26439905f2dacd882ed14518e61dee3f2f7a1b36986af60e94654d8404b0dd630658fc019376c75b9cd75cb8f63608ff2ffe977a65371709e81daac62d561c59a30e790fb0b03e7ef9c088de9aa06fabd89abf345d22875897cf4ab60169f1ea827e87f257179387d30b54a4be204794a5f5ba9a13a16cf6a4756926e28097d65e971988a7def9425745f6a6fdc8824a8981cf9283a0f5e7d292a51ebf5945cdc91f8800fd218b81d3a1ec8087cdaa27af0c20b8876649fcb90e9fa4112a596d0adf1f99590d934ab22781d7fe97c83dcd06656055656189dee9323c329261e56d4a2ce3979762c7bcf9bb8406cf1632df77be5516080f6cd2d5c2e1cf583407d399d001929219b2166cdd02b9b1349fd0f83f5b4385a58bcc32b8fdf5ce10c5e1863d6344484f0c16dae4786de0089a88e5ce5b111338f24b659a2fb335b8898768fd4592fd64d48faf68f2a29d4ffa4eb2cffb33f1a2071986d3c92c03a558fae2b7c196387f1292a8f436615eac8a2bdb3bacd1734595b4cffa12bf08acf9f8789faefea0f008607497f9891f0fa263fbe6bb930fb08b89730f68ead2910d72adf3738393721e2c4f6e9767fb0498c54146b43961c41c767a02570754efed74b76edea67f9aa273d16fe70fa5db6050f332db9ee358cf9faa62a3cbb456939f1061daa424102f3e9c8043de484792f215e7f7d46cca2720ee75f5717e67e541d64bb8276beb0feaba4ec5501b9cee1eb875759c832e9ff16e6d70249cd073b2f29e5c5eee2695d95fdd3e14fa1cc62ab50cef0052663c1d49b9c3caeaa095f4e34e5357901a4f231af14e0199d2ea06667519fdaac078c073e9b654cd17763ee7b8c2d50079d1d95f9eb9e71b43d5d315184f2b8d471477e02df9e63fc1b2e228dccf2298cee26c1188f149c708dcf790f205e515a9d9260a3bc450a678b2b1dd0b976cd18da94b1152aa09597e6aa731e150950aeb09ed7605700059e687164c339ecbcde89728ca1ec0784fe994e32f52817f12763f17ddf75167a67c39f7697bdaba9726af149650606b4effdf156fa2e57b990ce2c1e4bb409c241610b17a16e4185fee9ec90c6ffcc31ca517f1618ed31e7068a51d8a5f5ff0aa88a6cd3d52cf832fcde0", 0x1000}, {&(0x7f0000000140)="6c08ecda9e7a1853f3c2bf78057f0b9b0fd076df8a115799a386631a2335d9cdbf92e11d7f0db239645b67fcec25e6fbc0a636a1a683d66707ac165dd7e49d75a367896ce86e", 0x46}, {&(0x7f00000015c0)="487b8b4603925d9388f7e1255b11785c987a995dee5c589ad9efda4a98b184eee25b8b1a4707403b2601508f45f5d685034aea39888efcdd62a0a1c76581d83e880ed9a72f1edb7eaeaeb2784c5ff27889141c7eb2e1ac67cfade3126251f9051211629d6723dddec92448e10d83dd5022701bd6b3aed680707749e035dd250ee96a23b02324fe3b33fd5b718c08e32578edb83931307b233ba1bcdb52f82f5046dd7c6418cb647750b30a1acf60403452b912db768c716e04cb0ad8990019f0b3dbff6c8a281511215e807aaedbf3f718d2efb6a1004e7a581708d2a0f84f6d10508a3a12abce3f3dfac65e55596b60d04776e7a773ac4cdb4224", 0xfb}, {&(0x7f00000016c0)="4c048bdab54e45520d9a3f38fc1fda0ddaa1e96f1164a6e1d0728da4be0bda680079afffb7b7a7a72023857985ce2de604db7efdabae34385542d5f9eb56f6ba0fd330c4c3abac724551aa7a17dfaf1e44ad3e02dfb307ced8c29af184868e64af1d05d028945edfda93a69160c53a3f201c9ee0f3ceaeef1426a6d1004072ff89c366cb4941e0ee732726e929fbbd407492df77146fc175ce0895b16703a36e58783064f7a5af37a17c7c2128d3278697fa1d2e74a42f368bdcc63a47ed4921e2bf47c8f82ab86eddd9158105024214dad388d98b1403db88805f203d96e951c06e9125b5b19b5c40eb9e6e28ba4db6dd67cdfeef534781", 0xf8}], 0x4, 0x2, 0x9)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:16:20 executing program 6:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r1, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x2000000}])
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r4 = fsmount(0xffffffffffffffff, 0x1, 0x4)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r5, 0x0, 0x0)
io_submit(r1, 0x4, &(0x7f00000003c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x6, 0x7, r3, &(0x7f00000000c0)="6bc49e31516b61c073e336fbb47fd64c6e1e9cf305957521c63a430b83168e0ad68008878d42c565d3c222188c204ad2ff48d0b09932", 0x36, 0x3, 0x0, 0x1, r4}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x2, 0x4, r0, &(0x7f0000000200)="22919a7d6cc1ec1a8d82a562c3ea6cad2c233716b0ce4210369e91e17d74f500d40d8dcd7b69dd803f2638568778ed8f0fa058dcd330c817dc9e6f807388d076a89ebb96f544a06d880cf4c48ccecbe413da2e2ee4b50df93a1b377a1ad492195515d9c6a46bef69e34ffec097cedeef385e9a66d7e2d401c260e467cd8b476e361e5b4b6b265516c6baa273ea2ebab51bf45046c67fdc7dc6b5f7771483", 0x9e, 0x7, 0x0, 0x2}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x7, 0x6, r0, &(0x7f0000000580)="745eb07cae5e5707c9ecfc571933a4ebdf048c53c97d2fcea55c24d9dbabe44d6b6ddb177c745e449e4fcdc8e242ca5e4f6bc643a79be24f9e0fa44603267a584314e78a73506d6ec6deda6accb91e1bc0c671734457d791edf491e04abdd333710e809d83bf5de6993c541acb0d8eec0832782ad2931fd540a5101da6560df369ecb892396a1a60a15cf2fb262af3b638cd4228da9bef5551a7b49fd1fddd8103a864024b0a6f922c61c175064656643c479a88c7a010e2f93306d59e14f852d294bdaceb96c2226c2a1795df3d64e30751f849afaf931d2678ee2cba0bdd8d132023ee71", 0xe5, 0x10001, 0x0, 0x0, r5}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x4137, r0, &(0x7f0000000680)="c734f1179b6421cf150f1641b51312d8da66ec2e62633c5fc15bcd6fb5e131fa32f522223f1fa7bdbafae6ef6cfedf81a826bdbefc23527e869b3a651426e914c9db73cd004d786edbdc23eb7bd88dd35fbd35e944f195c36ad40f457619219578c0ebe6eb0f72e96d7d908e0e42f3c3716540665692d8aa116f798cf4b9a5e0cd95e25dd534bcca5d8d1abaef61b5f7710c232f672e11d83c2f1fd56c027ad588853c6b86d5efaba917d1b324496278cdf0383603f442a41db4952f43c3e8df8b04f6d7102bfd83e62b10b4af", 0xcd, 0x8, 0x0, 0x3}])
syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))

06:16:20 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="02c81014000300000017030c000104a7060400ff0001000600"], 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:16:20 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
fstat(r0, &(0x7f00000000c0))
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:16:20 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 47)

06:16:20 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 49)

06:16:20 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x3, 0x0, 0x0, 0x4002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xd48}}, 0x0, 0xfffffffffffffffc, 0xffffffffffffffff, 0x2)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448e0, 0x0)

06:16:20 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x50200, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xffff, 0x5, &(0x7f0000000080))
syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r0)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:16:20 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 48)

[ 1514.545303] tmpfs: Bad value for 'mpol'
06:16:20 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 49)

06:16:20 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000480)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x3, 0x3, 0x1044}, @l2cap_cid_signaling={{0x1040}, [@l2cap_cmd_rej_unk={{0x1, 0x7, 0x2}, {0x9}}, @l2cap_conn_rsp={{0x3, 0x7, 0x8}, {0x3, 0x401, 0x1, 0xb51f}}, @l2cap_info_rsp={{0xb, 0x36, 0x1004}, {0x5, 0x7fff, "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"}}, @l2cap_create_chan_rsp={{0xd, 0x87, 0x8}, {0x8, 0x400, 0xfff7, 0x8}}, @l2cap_cmd_rej_unk={{0x1, 0x80, 0x2}, {0x4}}, @l2cap_info_req={{0xa, 0x8, 0x2}, {0x7ff}}, @l2cap_move_chan_rsp={{0xf, 0x4, 0x4}, {0x4, 0x2}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x81, 0x2}, {0x4}}]}}, 0x1049)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
syz_emit_vhci(&(0x7f0000000100)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2, 0x91}, @l2cap_cid_signaling={{0x8d}, [@l2cap_move_chan_cfm_rsp={{0x11, 0x3, 0x2}, {0x1}}, @l2cap_conf_req={{0x4, 0x81, 0x29}, {0x0, 0x2, [@l2cap_conf_rfc={0x4, 0x9, {0x4, 0xff, 0x1f, 0x7, 0x8}}, @l2cap_conf_fcs={0x5, 0x1, 0x1}, @l2cap_conf_rfc={0x4, 0x9, {0x4, 0x5, 0x1f, 0x1d87, 0x2, 0x4}}, @l2cap_conf_flushto={0x2, 0x2, 0x4}, @l2cap_conf_flushto={0x2, 0x2, 0x9}, @l2cap_conf_flushto={0x2, 0x2, 0x4}]}}, @l2cap_disconn_req={{0x6, 0x45, 0x4}, {0x2, 0x8}}, @l2cap_conn_req={{0x2, 0x3f, 0x4}, {0x2, 0x23}}, @l2cap_conf_rsp={{0x5, 0x1, 0x2a}, {0x1, 0x9, 0x1000, [@l2cap_conf_fcs={0x5, 0x1}, @l2cap_conf_efs={0x6, 0x10, {0x3f, 0x1, 0x5, 0xfffffeff, 0x80000000, 0x101}}, @l2cap_conf_rfc={0x4, 0x9, {0x4, 0x3f, 0x7, 0x6, 0xed, 0x5}}, @l2cap_conf_ews={0x7, 0x2, 0x5}]}}, @l2cap_create_chan_rsp={{0xd, 0x7f, 0x8}, {0x1, 0x3, 0x5, 0x1}}, @l2cap_conn_req={{0x2, 0x98, 0x4}, {0x401, 0x4}}, @l2cap_move_chan_rsp={{0xf, 0x40, 0x4}, {0x20, 0x2898}}]}}, 0x96)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2c}, "3f554a3344956750df052fad67713cf316693b9fa3174468149563e49f26e2a70bc5c3ef42d882ac73623681"}, 0x30)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:16:20 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 50)

06:16:20 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:16:20 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat(r0, &(0x7f0000000080)='./file0\x00', 0xe01, 0x0)
r2 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001340)={0x2, 0x80, 0x0, 0x8, 0x0, 0x77, 0x0, 0x200, 0x211, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext={0x2, 0x4}, 0xa28, 0x2, 0x4, 0x4, 0x3637, 0x2a1be888, 0x3, 0x0, 0x2, 0x0, 0xe3}, 0x0, 0x8, r0, 0x8)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001180)='/proc/partitions\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000001100)={0x0, 0x80, 0x0, 0x5, 0x7f, 0xff, 0x0, 0x20, 0x5c404, 0xa54ef8f375934029, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x4, @perf_bp={&(0x7f00000010c0)}, 0x20, 0x8000, 0x2, 0x3, 0x9, 0x7, 0x9, 0x0, 0x4, 0x0, 0xffffffff}, 0xffffffffffffffff, 0xd, r3, 0xb)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r1, 0x50009418, &(0x7f00000000c0)={{r2}, 0x0, 0x4, @unused=[0x100, 0x8, 0x6, 0x68b2], @name="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"})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
r4 = accept$packet(r1, &(0x7f0000001280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f00000012c0)=0x14)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000001300)={'batadv_slave_0\x00'})
pread64(r2, &(0x7f00000011c0)=""/83, 0x53, 0x1f)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x6, 0x1, &(0x7f0000001240))

06:16:20 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 50)

06:16:20 executing program 6:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r1, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x2000000}])
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r4 = fsmount(0xffffffffffffffff, 0x1, 0x4)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r5, 0x0, 0x0)
io_submit(r1, 0x4, &(0x7f00000003c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x6, 0x7, r3, &(0x7f00000000c0)="6bc49e31516b61c073e336fbb47fd64c6e1e9cf305957521c63a430b83168e0ad68008878d42c565d3c222188c204ad2ff48d0b09932", 0x36, 0x3, 0x0, 0x1, r4}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x2, 0x4, r0, &(0x7f0000000200)="22919a7d6cc1ec1a8d82a562c3ea6cad2c233716b0ce4210369e91e17d74f500d40d8dcd7b69dd803f2638568778ed8f0fa058dcd330c817dc9e6f807388d076a89ebb96f544a06d880cf4c48ccecbe413da2e2ee4b50df93a1b377a1ad492195515d9c6a46bef69e34ffec097cedeef385e9a66d7e2d401c260e467cd8b476e361e5b4b6b265516c6baa273ea2ebab51bf45046c67fdc7dc6b5f7771483", 0x9e, 0x7, 0x0, 0x2}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x7, 0x6, r0, &(0x7f0000000580)="745eb07cae5e5707c9ecfc571933a4ebdf048c53c97d2fcea55c24d9dbabe44d6b6ddb177c745e449e4fcdc8e242ca5e4f6bc643a79be24f9e0fa44603267a584314e78a73506d6ec6deda6accb91e1bc0c671734457d791edf491e04abdd333710e809d83bf5de6993c541acb0d8eec0832782ad2931fd540a5101da6560df369ecb892396a1a60a15cf2fb262af3b638cd4228da9bef5551a7b49fd1fddd8103a864024b0a6f922c61c175064656643c479a88c7a010e2f93306d59e14f852d294bdaceb96c2226c2a1795df3d64e30751f849afaf931d2678ee2cba0bdd8d132023ee71", 0xe5, 0x10001, 0x0, 0x0, r5}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x4137, r0, &(0x7f0000000680)="c734f1179b6421cf150f1641b51312d8da66ec2e62633c5fc15bcd6fb5e131fa32f522223f1fa7bdbafae6ef6cfedf81a826bdbefc23527e869b3a651426e914c9db73cd004d786edbdc23eb7bd88dd35fbd35e944f195c36ad40f457619219578c0ebe6eb0f72e96d7d908e0e42f3c3716540665692d8aa116f798cf4b9a5e0cd95e25dd534bcca5d8d1abaef61b5f7710c232f672e11d83c2f1fd56c027ad588853c6b86d5efaba917d1b324496278cdf0383603f442a41db4952f43c3e8df8b04f6d7102bfd83e62b10b4af", 0xcd, 0x8, 0x0, 0x3}])

[ 1514.855627] FAULT_INJECTION: forcing a failure.
[ 1514.855627] name failslab, interval 1, probability 0, space 0, times 0
06:16:20 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448e0, 0x0)
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x206000, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r2, &(0x7f0000000140)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
perf_event_open$cgroup(&(0x7f0000000080)={0x1, 0x80, 0x7, 0x4, 0x4, 0x1, 0x0, 0x1, 0x8a, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x2, @perf_config_ext={0x7fffffff, 0x5bd608d1}, 0x2000, 0x7f, 0x80000000, 0x4, 0x9, 0x81, 0x1, 0x0, 0x1, 0x0, 0x1}, 0xffffffffffffffff, 0xd, r1, 0x1)
write$bt_hci(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0xa)

[ 1514.857442] CPU: 1 UID: 0 PID: 29910 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1514.857474] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1514.857488] Call Trace:
[ 1514.857495]  <TASK>
[ 1514.857504]  dump_stack_lvl+0xfa/0x120
[ 1514.857535]  should_fail_ex+0x4d7/0x5e0
[ 1514.857564]  should_failslab+0xc2/0x120
[ 1514.857596]  __kmalloc_cache_noprof+0x81/0x6b0
[ 1514.857631]  ? do_raw_spin_lock+0x123/0x260
[ 1514.857672]  ? shrinker_alloc+0xad/0xad0
[ 1514.857722]  ? shrinker_alloc+0xad/0xad0
[ 1514.857755]  shrinker_alloc+0xad/0xad0
[ 1514.857789]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 1514.857826]  ? __create_object+0x59/0x80
[ 1514.857862]  ? pcpu_obj_full_size+0x3c/0x90
[ 1514.857889]  ? pcpu_alloc_noprof+0x12d/0x1160
06:16:20 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @inquiry_info_with_rssi_and_pscan_mode={{0x22, 0x10}, {0x1, [{@none, 0x6, 0x5, 0xef, "6eeed4", 0x5, 0xff}]}}}, 0x13)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000140)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x1, 0x10}, @l2cap_cid_le_signaling={{0xc}, @l2cap_conn_param_update_req={{0x12, 0xdd, 0x8}, {0x1, 0x6, 0x3f}}}}, 0x15)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
openat2(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)={0x20101, 0x8, 0x10}, 0x18)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

[ 1514.857919]  ? __pfx_shrinker_alloc+0x10/0x10
[ 1514.857956]  ? lockdep_init_map_type+0x4b/0x240
[ 1514.857990]  ? __raw_spin_lock_init+0x3a/0x110
[ 1514.858033]  alloc_super+0x7ef/0xb20
[ 1514.858068]  sget_fc+0xfe/0xb80
[ 1514.858094]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1514.858121]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1514.858147]  get_tree_nodev+0x28/0x190
[ 1514.858176]  vfs_get_tree+0x93/0x340
[ 1514.858198]  path_mount+0x720/0x2130
[ 1514.858230]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1514.858266]  ? __pfx_path_mount+0x10/0x10
[ 1514.858298]  ? putname.part.0+0x11b/0x160
[ 1514.858332]  ? getname_flags.part.0+0x1c6/0x540
[ 1514.858372]  ? putname.part.0+0x11b/0x160
[ 1514.858411]  __x64_sys_mount+0x293/0x310
[ 1514.858441]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1514.858483]  do_syscall_64+0xbf/0x390
[ 1514.858511]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1514.858535] RIP: 0033:0x7efe1268304a
[ 1514.858552] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1514.858574] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1514.858596] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe1268304a
[ 1514.858611] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1514.858625] RBP: 00007efe0fbf7040 R08: 00007efe0fbf7040 R09: 0000000020000000
[ 1514.858639] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1514.858653] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1514.858686]  </TASK>
06:16:29 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pread64(r0, &(0x7f00000000c0)=""/48, 0x30, 0x8001)
r1 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:16:29 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="02c8101400100005ba9306c1000104a7060400ff0001000600"], 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000040)={0x29, 0xfffffbff, 0xffffff87, "438700000013382194d7d85c29f0898a980b9d8018032b6e041a000054658440599b467e0000000000"})

06:16:29 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = getpgrp(0xffffffffffffffff)
r2 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0xa, 0x80, 0x2, 0x2, 0x9, 0x8, 0x0, 0x7, 0x4008, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3f, 0x4, @perf_bp={&(0x7f0000000080), 0xf}, 0x86, 0xffffffffffffabbc, 0xfff, 0x8, 0xc5b4, 0x8, 0x3ff, 0x0, 0x9, 0x0, 0x4d8}, r1, 0xffffffffffffffff, r2, 0x8)
ioctl$sock_bt_hci(r0, 0x400448e0, 0x0)

06:16:29 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_open_dev$sg(&(0x7f0000000080), 0x20, 0x180)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xb0}, "911a321094a15a656cf84e49dfa5984cfa8e541e70f22f5e602b8518659bdd5043695ac29ab891291436b393f4c8b93a205f9b55eea646e58f9db2b6864a5ea33d93aefb57fe648f6a8acda4348f40528985455a60a8e4c81e1097ecd784f9c8ae540d16eee4921eb5acfa6302a790390e1b212607daf99c078faeeb225cae490faa6485dbe99de1fa892565e3983e89f911d518f623439d1f1747446b006c988a4f3be05058f7a4a9e89da7c13b09d7"}, 0xb4)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:16:29 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000480)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x3, 0x3c}, @l2cap_cid_signaling={{0x38}, [@l2cap_move_chan_req={{0xe, 0x0, 0x3}, {0x8, 0xc7}}, @l2cap_conf_req={{0x4, 0x0, 0x17}, {0x3, 0xffff, [@l2cap_conf_mtu={0x1, 0x2}, @l2cap_conf_ews={0x7, 0x2, 0xc0}, @l2cap_conf_fcs={0x5, 0x1}, @l2cap_conf_mtu={0x1, 0x2, 0x9}, @l2cap_conf_ews={0x7, 0x2}]}}, @l2cap_info_req={{0xa, 0xfb, 0x2}, {0x2}}, @l2cap_disconn_req={{0x6, 0x3, 0x4}, {0x1, 0x3f}}, @l2cap_disconn_req={{0x6, 0x2, 0x4}, {0x8, 0x8}}]}}, 0x41)
clock_gettime(0x0, &(0x7f00000001c0)={<r1=>0x0, <r2=>0x0})
select(0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x0, <r3=>r2/1000+60000})
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYRESOCT=r2, @ANYRESHEX, @ANYRES32=r1, @ANYRESOCT=r2, @ANYRES32, @ANYRES32=r0, @ANYRES32=r3, @ANYRES64=r3], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r4 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r4, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r4, &(0x7f0000000100)={0x9})

06:16:29 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 51)

06:16:29 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 51)

06:16:29 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x2000000}])
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
fsmount(0xffffffffffffffff, 0x1, 0x4)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r3, 0x0, 0x0)

[ 1524.130058] FAULT_INJECTION: forcing a failure.
[ 1524.130058] name failslab, interval 1, probability 0, space 0, times 0
[ 1524.131003] CPU: 0 UID: 0 PID: 30067 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1524.131019] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1524.131027] Call Trace:
[ 1524.131031]  <TASK>
[ 1524.131037]  dump_stack_lvl+0xfa/0x120
[ 1524.131059]  should_fail_ex+0x4d7/0x5e0
[ 1524.131081]  should_failslab+0xc2/0x120
[ 1524.131101]  __kmalloc_cache_noprof+0x81/0x6b0
[ 1524.131120]  ? do_raw_spin_lock+0x123/0x260
[ 1524.131144]  ? shrinker_alloc+0xad/0xad0
[ 1524.131173]  ? shrinker_alloc+0xad/0xad0
[ 1524.131190]  shrinker_alloc+0xad/0xad0
[ 1524.131210]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 1524.131231]  ? __create_object+0x59/0x80
[ 1524.131252]  ? pcpu_obj_full_size+0x3c/0x90
[ 1524.131271]  ? pcpu_alloc_noprof+0x12d/0x1160
[ 1524.131290]  ? __pfx_shrinker_alloc+0x10/0x10
[ 1524.131312]  ? lockdep_init_map_type+0x4b/0x240
[ 1524.131331]  ? __raw_spin_lock_init+0x3a/0x110
[ 1524.131361]  alloc_super+0x7ef/0xb20
[ 1524.131389]  sget_fc+0xfe/0xb80
[ 1524.131405]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1524.131423]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1524.131437]  get_tree_nodev+0x28/0x190
[ 1524.131456]  vfs_get_tree+0x93/0x340
[ 1524.131471]  path_mount+0x720/0x2130
[ 1524.131491]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1524.131513]  ? __pfx_path_mount+0x10/0x10
[ 1524.131534]  ? putname.part.0+0x11b/0x160
[ 1524.131555]  ? getname_flags.part.0+0x1c6/0x540
[ 1524.131579]  ? putname.part.0+0x11b/0x160
[ 1524.131606]  __x64_sys_mount+0x293/0x310
[ 1524.131624]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1524.131656]  do_syscall_64+0xbf/0x390
[ 1524.131675]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1524.131692] RIP: 0033:0x7f13ca8cc04a
[ 1524.131702] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1524.131713] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1524.131724] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8cc04a
[ 1524.131732] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1524.131739] RBP: 00007f13c7e40040 R08: 00007f13c7e40040 R09: 0000000020000000
[ 1524.131746] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1524.131753] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1524.131786]  </TASK>
06:16:29 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 52)

[ 1524.211110] tmpfs: Bad value for 'mpol'
[ 1524.224892] FAULT_INJECTION: forcing a failure.
[ 1524.224892] name failslab, interval 1, probability 0, space 0, times 0
[ 1524.226024] CPU: 0 UID: 0 PID: 30080 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1524.226042] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1524.226049] Call Trace:
[ 1524.226054]  <TASK>
[ 1524.226060]  dump_stack_lvl+0xfa/0x120
[ 1524.226082]  should_fail_ex+0x4d7/0x5e0
[ 1524.226105]  should_failslab+0xc2/0x120
[ 1524.226125]  __kmalloc_noprof+0xcd/0x680
[ 1524.226145]  ? __pfx_shrinker_alloc+0x10/0x10
[ 1524.226170]  ? __list_lru_init+0xeb/0x4a0
[ 1524.226185]  ? lockdep_init_map_type+0x4b/0x240
[ 1524.226215]  __list_lru_init+0xeb/0x4a0
[ 1524.226235]  alloc_super+0x8e6/0xb20
[ 1524.226266]  sget_fc+0xfe/0xb80
[ 1524.226283]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1524.226302]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1524.226317]  get_tree_nodev+0x28/0x190
[ 1524.226337]  vfs_get_tree+0x93/0x340
[ 1524.226353]  path_mount+0x720/0x2130
[ 1524.226374]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1524.226398]  ? __pfx_path_mount+0x10/0x10
[ 1524.226420]  ? putname.part.0+0x11b/0x160
[ 1524.226442]  ? getname_flags.part.0+0x1c6/0x540
[ 1524.226468]  ? putname.part.0+0x11b/0x160
[ 1524.226497]  __x64_sys_mount+0x293/0x310
[ 1524.226516]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1524.226551]  do_syscall_64+0xbf/0x390
[ 1524.226572]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1524.226585] RIP: 0033:0x7efe1268304a
[ 1524.226596] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1524.226608] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1524.226620] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe1268304a
[ 1524.226628] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1524.226636] RBP: 00007efe0fbf7040 R08: 00007efe0fbf7040 R09: 0000000020000000
[ 1524.226644] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1524.226651] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1524.226691]  </TASK>
06:16:29 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 52)

06:16:29 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x2000000}])
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
fsmount(0xffffffffffffffff, 0x1, 0x4)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')

[ 1524.283475] FAULT_INJECTION: forcing a failure.
[ 1524.283475] name failslab, interval 1, probability 0, space 0, times 0
[ 1524.284518] CPU: 0 UID: 0 PID: 30095 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1524.284534] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1524.284541] Call Trace:
[ 1524.284546]  <TASK>
[ 1524.284551]  dump_stack_lvl+0xfa/0x120
[ 1524.284569]  should_fail_ex+0x4d7/0x5e0
[ 1524.284590]  should_failslab+0xc2/0x120
[ 1524.284609]  __kmalloc_noprof+0xcd/0x680
[ 1524.284627]  ? __pfx_shrinker_alloc+0x10/0x10
[ 1524.284649]  ? __list_lru_init+0xeb/0x4a0
[ 1524.284661]  ? lockdep_init_map_type+0x4b/0x240
[ 1524.284691]  __list_lru_init+0xeb/0x4a0
[ 1524.284710]  alloc_super+0x8e6/0xb20
[ 1524.284738]  sget_fc+0xfe/0xb80
[ 1524.284755]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1524.284772]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1524.284787]  get_tree_nodev+0x28/0x190
[ 1524.284805]  vfs_get_tree+0x93/0x340
[ 1524.284820]  path_mount+0x720/0x2130
[ 1524.284840]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1524.284862]  ? __pfx_path_mount+0x10/0x10
[ 1524.284883]  ? putname.part.0+0x11b/0x160
[ 1524.284903]  ? getname_flags.part.0+0x1c6/0x540
[ 1524.284927]  ? putname.part.0+0x11b/0x160
[ 1524.284954]  __x64_sys_mount+0x293/0x310
[ 1524.284972]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1524.285005]  do_syscall_64+0xbf/0x390
[ 1524.285024]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1524.285036] RIP: 0033:0x7f13ca8cc04a
[ 1524.285046] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1524.285057] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1524.285068] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8cc04a
[ 1524.285076] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1524.285083] RBP: 00007f13c7e40040 R08: 00007f13c7e40040 R09: 0000000020000000
[ 1524.285090] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1524.285097] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1524.285130]  </TASK>
06:16:38 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 53)

06:16:38 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x40, 0x41c}}}, 0x42)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x21}, @l2cap_cid_signaling={{0x1d}, [@l2cap_move_chan_req={{0xe, 0x5, 0x3}, {0xfffb, 0x1}}, @l2cap_disconn_rsp={{0x7, 0x1, 0x4}, {0xc00}}, @l2cap_disconn_rsp={{0x7, 0x3f, 0x4}, {0xfff, 0x7}}, @l2cap_cmd_rej_unk={{0x1, 0x9, 0x2}, {0x7}}]}}, 0x26)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000180)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x1, 0x30}, @l2cap_cid_signaling={{0x2c}, [@l2cap_move_chan_cfm_rsp={{0x11, 0x75, 0x2}, {0x101}}, @l2cap_create_chan_req={{0xc, 0x7, 0x5}, {0x989, 0x1, 0x9a}}, @l2cap_cmd_rej_unk={{0x1, 0x8c, 0x2}, {0x1}}, @l2cap_conf_req={{0x4, 0xff, 0x13}, {0xff, 0xd9a, [@l2cap_conf_mtu={0x1, 0x2, 0x4}, @l2cap_conf_rfc={0x4, 0x9, {0x2, 0x40, 0xff, 0x4af, 0x8, 0x1ff}}]}}]}}, 0x35)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000140)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x0, 0x30}, @l2cap_cid_signaling={{0x2c}, [@l2cap_move_chan_req={{0xe, 0x2, 0x3}, {0x9, 0x81}}, @l2cap_move_chan_cfm={{0x10, 0x0, 0x4}, {0x0, 0x9194}}, @l2cap_disconn_req={{0x6, 0x0, 0x4}}, @l2cap_cmd_rej_unk={{0x1, 0x91, 0x2}, {0x3f}}, @l2cap_disconn_req={{0x6, 0x1, 0x4}, {0x3, 0x401}}, @l2cap_move_chan_req={{0xe, 0x4b, 0x3}, {0x3, 0x2}}]}}, 0x35)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)=ANY=[@ANYBLOB="2a000000ffffffff85ffffff4391f9956513e2382194c4d8f87c9c1eafe9b0048018032b6e0400"/54])
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:16:38 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x792a, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x22}, &(0x7f0000bd4000/0x4000)=nil, &(0x7f0000d6d000/0x2000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)=<r1=>0x0)
wait4(r1, &(0x7f00000000c0), 0x20000000, 0x0)

06:16:38 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 53)

06:16:38 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x2000000}])
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
fsmount(0xffffffffffffffff, 0x1, 0x4)

06:16:38 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448e0, 0x0)
r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x204200, 0x0)
ioctl$sock_bt_hci(r1, 0xc0000008, &(0x7f00000000c0)="ccc99e6e16bd3a0d6f8368d4116686d82f1f1eac4c2523111ae10dde1295ac85ae5e699aba7c91c4fffcc234106d6f3e5b071cace5605e0ff50342bffb8f4b1c019a8acf4ba241a22e314121c747b424971bf914bbe591679f8b68af747e56e3ae4bad64ee3e8fac3dfdcef94dacf287e29159429820ae91816920b858af1bcc8432d82bb46aedb290e2a244bcba16849bb3f50f56ac621e4b630345389a0b3db55987b52ef93cbd5ea8420b1c00be85fcd7f31942e309f081f75490c946f7cfdfa602030c1ad7f607a4de2d9e1b6df64857c9fc6ad4929712af0692902700fe8c3da6af389e5c0a")

06:16:38 executing program 3:
newfstatat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x400010000000, 0x0, &(0x7f0000000000)=0x1)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:16:38 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000400)={'team_slave_0\x00', <r1=>0x0})
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x34, 0x0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x2, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}]}, 0x34}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(0xffffffffffffffff, 0x89f7, &(0x7f0000000480)={'ip6_vti0\x00', &(0x7f0000000100)={'sit0\x00', r1, 0x4, 0x81, 0x20, 0x4, 0xb6805d3079dd09cb, @remote, @dev={0xfe, 0x80, '\x00', 0x3b}, 0x8, 0x8, 0x4, 0x3}})
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040f0481000408036cc1c4441db5762f09d784ce098b1cdc5a8a7c22"], 0x7)
r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e3e006d40f44ecf7770235540cb73eb565de076f0696fc8ae901899bb90f39e9190e029b88b55faf6b2c4fc65b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1c"], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r2, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000018001010ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES16], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="03c9002f0494d67c4b98805ae0d9e0ddfbcbc1d6458c76141f63ecd18e0761190f3f762acbca53d59e612d207b614de46cc46c"], 0x33)
r3 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:16:38 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000005c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x0, 0x10b}, @l2cap_cid_signaling={{0x107}, [@l2cap_move_chan_rsp={{0xf, 0x7b, 0x4}, {0x6, 0x8}}, @l2cap_info_rsp={{0xb, 0x81, 0xec}, {0x2, 0x5, "efdd7cd900ff798b2fec2af19883593e603426a0fc14911a72e99662f43499b7f428afbb4515e03bb68aae3a139ea110fd970b1218093b85e32b4335c2df20eacad008b88c658cad5f6cb2d1fc46eb68cda475d7cabb059532ecf9217132f78d97fc5167f9363b793d27ebc27862018c1d8e501e6ed622e5a638673471aa8397d15c896af9855890a4e7f933f5edaa7ca965050d9a10944a45812f03c41bb32bcdf43520acf6c683e2c249405c86d10c786a1627497bd08986d36fff63f70d3bfed065ebbc4cdd7d6a943addbc777504b4eeab43576e66ef392c8313821cf6393766b0764a40bb67"}}, @l2cap_move_chan_req={{0xe, 0x3, 0x3}, {0x8000, 0x20}}, @l2cap_move_chan_cfm={{0x10, 0x1, 0x4}, {0x8, 0x3}}]}}, 0x110)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000700)=ANY=[@ANYBLOB="02c850140010ec040017030c000104a7060400ff0001000600821ff315b38a959681be3843f176380ca070fbd1ce4b70fc4e3ffc02c986d58e3efc5808103b2834940740ce3ed700a98bd58006b9e6a4289a16dd5c036a5f8dcf7fc71423b57c28318af40cc873f9af582851d310ae8606cc88eeb9a5e1e3d61b776fcde06d5b9a40c51e24e7aa8c090c3019efb559a0a9b7692e1d651c8de82f55239f6998cb01628bf4516f539b11dc1ec6e9f985327c70122d11ecca37e0f3ac5140abf07cff2a055dfcf4cf33d97b"], 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
syz_emit_vhci(&(0x7f0000000480)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x1, 0xe3}, @l2cap_cid_signaling={{0xdf}, [@l2cap_info_req={{0xa, 0x1f, 0x2}, {0x7}}, @l2cap_conf_req={{0x4, 0x3a, 0x16}, {0x4, 0x1, [@l2cap_conf_efs={0x6, 0x10, {0x7, 0x0, 0x1, 0x9, 0x3, 0x9}}]}}, @l2cap_conf_req={{0x4, 0x0, 0x60}, {0x1f, 0x400, [@l2cap_conf_rfc={0x4, 0x9, {0x4, 0x80, 0x67, 0xe128, 0x6, 0x40}}, @l2cap_conf_flushto={0x2, 0x2, 0x4}, @l2cap_conf_flushto={0x2, 0x2, 0x7ff}, @l2cap_conf_efs={0x6, 0x10, {0x7, 0x1, 0x100, 0x20, 0xff, 0x4}}, @l2cap_conf_rfc={0x4, 0x9, {0x2, 0x9, 0x3, 0x5, 0x3, 0x8001}}, @l2cap_conf_efs={0x6, 0x10, {0x9, 0x2, 0xdd, 0x624c, 0x40, 0x7fffffff}}, @l2cap_conf_efs={0x6, 0x10, {0x8d, 0x2, 0x1000, 0x80, 0x55, 0x7fff800}}, @l2cap_conf_flushto={0x2, 0x2, 0x7f}, @l2cap_conf_mtu={0x1, 0x2}]}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x7, 0x2}, {0x7}}, @l2cap_cmd_rej_unk={{0x1, 0x6, 0x2}, {0x1}}, @l2cap_move_chan_cfm={{0x10, 0x2, 0x4}, {0x2, 0x7fff}}, @l2cap_move_chan_req={{0xe, 0x6, 0x3}, {0x7, 0x9}}, @l2cap_info_req={{0xa, 0x3, 0x2}}, @l2cap_info_rsp={{0xb, 0x6, 0x36}, {0x7ff, 0x31f0, "024d834aecbea04c7775c3c226c2d288bbc83be8737972e8459572b94bf4310189d27bf0a2b72097b4b317d96997c8696ef0"}}]}}, 0xe8)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x2, 0x4, &(0x7f0000000140)=0x1)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x2, 0x80, &(0x7f0000000040)=0x1)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f00000001c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x1, 0x12}, @l2cap_cid_le_signaling={{0xe}, @l2cap_le_conn_req={{0x14, 0x2, 0xa}, {0x4, 0x8, 0xfff8, 0x3, 0x401}}}}, 0x17)

[ 1533.344615] tmpfs: Bad value for 'mpol'
06:16:38 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 54)

06:16:38 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000480)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x2, 0xb9}, @l2cap_cid_signaling={{0xb5}, [@l2cap_disconn_req={{0x6, 0x1, 0x4}, {0x4, 0x5}}, @l2cap_move_chan_cfm={{0x10, 0x3, 0x4}, {0x5, 0x4000}}, @l2cap_move_chan_rsp={{0xf, 0x2, 0x4}, {0xc000, 0x2}}, @l2cap_create_chan_rsp={{0xd, 0x3f, 0x8}, {0x7, 0x5, 0xa674, 0x7}}, @l2cap_conf_req={{0x4, 0x3f, 0x45}, {0x9, 0x5, [@l2cap_conf_ews={0x7, 0x2, 0xaf28}, @l2cap_conf_fcs={0x5, 0x1, 0x1}, @l2cap_conf_ews={0x7, 0x2}, @l2cap_conf_fcs={0x5, 0x1, 0x1}, @l2cap_conf_efs={0x6, 0x10, {0xf, 0x1, 0x6, 0x3ff, 0x10000, 0x5dbf}}, @l2cap_conf_rfc={0x4, 0x9, {0x4, 0x3f, 0x8, 0x7fff, 0x7e, 0xe372}}, @l2cap_conf_efs={0x6, 0x10, {0x4, 0x0, 0x0, 0xffff, 0x1, 0x3}}, @l2cap_conf_flushto={0x2, 0x2, 0x1}]}}, @l2cap_create_chan_req={{0xc, 0x5, 0x5}, {0x400, 0x5, 0x2}}, @l2cap_conf_rsp={{0x5, 0x2, 0x27}, {0x8, 0xc1, 0x7fff, [@l2cap_conf_flushto={0x2, 0x2, 0x9}, @l2cap_conf_rfc={0x4, 0x9, {0x0, 0xfa, 0x7f, 0x3, 0x8000, 0xfc14}}, @l2cap_conf_mtu={0x1, 0x2, 0xf337}, @l2cap_conf_fcs={0x5, 0x1}, @l2cap_conf_rfc={0x4, 0x9, {0x1, 0x1f, 0x5, 0x7, 0x3c, 0x9}}]}}, @l2cap_move_chan_rsp={{0xf, 0x1, 0x4}, {0x0, 0x4}}, @l2cap_conn_rsp={{0x3, 0x3, 0x8}, {0x0, 0xff81, 0x3, 0xfffc}}]}}, 0xbe)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f00000001c0)=ANY=[@ANYRES32], 0xf)
syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x1, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_cmd_rej_unk={{0x1, 0x8, 0x2}, {0x9}}}}, 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
syz_emit_vhci(&(0x7f0000000180)=@HCI_EVENT_PKT={0x4, @hci_ev_user_passkey_notify={{0x3b, 0xa}, {@any, 0xc4e9}}}, 0xd)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000100)=ANY=[@ANYBLOB="2a000000ffffffff85ff67a60c7cd4e9fab741dceeffff4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00000000000000000000000000020051f55e4005e34156a49864b693eb23b37857ab0a754e98d74d7895"])

06:16:38 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000080)=ANY=[@ANYBLOB="210000000100000018000000", @ANYRES32=<r1=>0xffffffffffffffff, @ANYBLOB="030000000000000000"])
getdents(r1, &(0x7f0000000040)=""/27, 0x1b)

06:16:39 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 54)

06:16:39 executing program 3:
openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))

06:16:39 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_auth_complete={{0x6, 0x3}, {0x3, 0xc9}}}, 0x6)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r2=>r0, {0x0, 0xffffffffffffffff}}, './file0\x00'})
dup2(0xffffffffffffffff, r2)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:16:39 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="02c81014001000050017030c000104a7060400ff0001000200"], 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x1a, 0x100000000, &(0x7f0000000100))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

[ 1533.476263] FAULT_INJECTION: forcing a failure.
[ 1533.476263] name failslab, interval 1, probability 0, space 0, times 0
[ 1533.478042] CPU: 1 UID: 0 PID: 30401 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1533.478073] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1533.478086] Call Trace:
[ 1533.478094]  <TASK>
[ 1533.478103]  dump_stack_lvl+0xfa/0x120
[ 1533.478134]  should_fail_ex+0x4d7/0x5e0
[ 1533.478165]  should_failslab+0xc2/0x120
[ 1533.478196]  __kmalloc_noprof+0xcd/0x680
[ 1533.478233]  ? lockdep_init_map_type+0x4b/0x240
[ 1533.478265]  ? __list_lru_init+0xeb/0x4a0
[ 1533.478296]  __list_lru_init+0xeb/0x4a0
[ 1533.478324]  alloc_super+0x92f/0xb20
[ 1533.478360]  sget_fc+0xfe/0xb80
[ 1533.478385]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1533.478412]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1533.478439]  get_tree_nodev+0x28/0x190
[ 1533.478467]  vfs_get_tree+0x93/0x340
[ 1533.478491]  path_mount+0x720/0x2130
[ 1533.478522]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1533.478557]  ? __pfx_path_mount+0x10/0x10
[ 1533.478589]  ? putname.part.0+0x11b/0x160
[ 1533.478624]  ? getname_flags.part.0+0x1c6/0x540
[ 1533.478663]  ? putname.part.0+0x11b/0x160
[ 1533.478709]  __x64_sys_mount+0x293/0x310
[ 1533.478740]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1533.478782]  do_syscall_64+0xbf/0x390
[ 1533.478812]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1533.478835] RIP: 0033:0x7f13ca8cc04a
[ 1533.478853] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1533.478875] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1533.478897] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8cc04a
[ 1533.478911] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1533.478925] RBP: 00007f13c7e40040 R08: 00007f13c7e40040 R09: 0000000020000000
[ 1533.478939] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1533.478953] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1533.478988]  </TASK>
[ 1533.497872] FAULT_INJECTION: forcing a failure.
[ 1533.497872] name failslab, interval 1, probability 0, space 0, times 0
[ 1533.504720] CPU: 0 UID: 0 PID: 30411 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1533.504736] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1533.504743] Call Trace:
[ 1533.504747]  <TASK>
[ 1533.504753]  dump_stack_lvl+0xfa/0x120
[ 1533.504770]  should_fail_ex+0x4d7/0x5e0
[ 1533.504792]  should_failslab+0xc2/0x120
[ 1533.504810]  __kmalloc_noprof+0xcd/0x680
[ 1533.504832]  ? lockdep_init_map_type+0x4b/0x240
[ 1533.504849]  ? __list_lru_init+0xeb/0x4a0
[ 1533.504871]  __list_lru_init+0xeb/0x4a0
[ 1533.504891]  alloc_super+0x92f/0xb20
[ 1533.504917]  sget_fc+0xfe/0xb80
[ 1533.504934]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1533.504951]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1533.504965]  get_tree_nodev+0x28/0x190
[ 1533.504984]  vfs_get_tree+0x93/0x340
[ 1533.504999]  path_mount+0x720/0x2130
[ 1533.505019]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1533.505040]  ? __pfx_path_mount+0x10/0x10
[ 1533.505061]  ? putname.part.0+0x11b/0x160
[ 1533.505081]  ? getname_flags.part.0+0x1c6/0x540
[ 1533.505105]  ? putname.part.0+0x11b/0x160
[ 1533.505132]  __x64_sys_mount+0x293/0x310
[ 1533.505150]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1533.505183]  do_syscall_64+0xbf/0x390
[ 1533.505201]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1533.505213] RIP: 0033:0x7efe1268304a
[ 1533.505223] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1533.505234] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1533.505245] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe1268304a
[ 1533.505252] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1533.505259] RBP: 00007efe0fbf7040 R08: 00007efe0fbf7040 R09: 0000000020000000
[ 1533.505266] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1533.505273] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1533.505306]  </TASK>
06:16:39 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 55)

06:16:39 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x4, 0x0, &(0x7f0000000080)=0x1)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:16:48 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448e0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r1=>r0, {0xee00, 0xffffffffffffffff}}, './file0\x00'})
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r1, 0x40089413, &(0x7f00000000c0)=0x7)

06:16:48 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT={0xff, 0x42}, 0x2)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x0, 0x18}, @l2cap_cid_le_signaling={{0x14}, @l2cap_ecred_reconf_req={{0x19, 0x8, 0x10}, {0x9, 0x4, [0x9, 0x81, 0x401, 0x5, 0x3f, 0x8]}}}}, 0x1d)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
syz_emit_vhci(&(0x7f0000000480)=@HCI_ACLDATA_PKT={0x2, {0x1, 0x2, 0x1, 0xbe}, @l2cap_cid_signaling={{0xba}, [@l2cap_conf_req={{0x4, 0x0, 0x3e}, {0x6, 0x8401, [@l2cap_conf_rfc={0x4, 0x9, {0x3, 0x7, 0x4, 0x0, 0x8, 0x1ff}}, @l2cap_conf_fcs={0x5, 0x1}, @l2cap_conf_fcs={0x5, 0x1}, @l2cap_conf_flushto={0x2, 0x2, 0xe029}, @l2cap_conf_flushto={0x2, 0x2, 0x9}, @l2cap_conf_flushto={0x2, 0x2, 0xff}, @l2cap_conf_rfc={0x4, 0x9, {0x2, 0x81, 0x81, 0x3, 0x7, 0x4}}, @l2cap_conf_efs={0x6, 0x10, {0x9, 0x2, 0x7, 0x0, 0x4, 0x10000}}]}}, @l2cap_move_chan_cfm={{0x10, 0x3, 0x4}, {0x36d, 0xffff}}, @l2cap_conn_req={{0x2, 0x0, 0x4}, {0x6e7a, 0x7}}, @l2cap_conf_req={{0x4, 0xe8, 0x21}, {0x7, 0x3, [@l2cap_conf_efs={0x6, 0x10, {0x81, 0x1, 0xff, 0xffffffff, 0x8, 0x9313}}, @l2cap_conf_rfc={0x4, 0x9, {0x1, 0x6, 0x3f, 0x7, 0x401, 0x6}}]}}, @l2cap_move_chan_cfm={{0x10, 0xff, 0x4}, {0x4, 0x5}}, @l2cap_disconn_rsp={{0x7, 0x81, 0x4}, {0x9, 0x7}}, @l2cap_move_chan_req={{0xe, 0x1, 0x3}, {0x0, 0xff}}, @l2cap_conf_rsp={{0x5, 0x81, 0x28}, {0x3, 0xb301, 0x3, [@l2cap_conf_mtu={0x1, 0x2, 0xf349}, @l2cap_conf_flushto={0x2, 0x2, 0x3ff}, @l2cap_conf_flushto={0x2, 0x2, 0xb98f}, @l2cap_conf_rfc={0x4, 0x9, {0x1, 0x6, 0x8, 0xffff, 0x3ff, 0x4}}, @l2cap_conf_rfc={0x4, 0x9, {0x0, 0xad, 0x7, 0xbb, 0x1, 0x7fff}}]}}]}}, 0xc3)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:16:48 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0xfffffffffffffffc, &(0x7f0000000000)=0x42)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:16:48 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 55)

06:16:48 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 56)

06:16:48 executing program 4:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f000089e000/0x4000)=nil, &(0x7f0000000500), &(0x7f0000000540))
perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x40, 0x7, 0x1, 0x81, 0x0, 0x81, 0x42580, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x5, 0x2, @perf_bp={&(0x7f00000000c0), 0xa}, 0x200, 0x6, 0x8, 0x6, 0x200, 0x101, 0x1, 0x0, 0x4d, 0x0, 0xa841}, 0xffffffffffffffff, 0xf, r0, 0x0)
ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="6d706f6c3d4ad71cd0f6d8680936"])
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:16:48 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:16:48 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x2000000}])
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

[ 1542.824812] FAULT_INJECTION: forcing a failure.
[ 1542.824812] name failslab, interval 1, probability 0, space 0, times 0
[ 1542.825784] CPU: 1 UID: 0 PID: 30613 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1542.825800] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1542.825808] Call Trace:
[ 1542.825812]  <TASK>
[ 1542.825817]  dump_stack_lvl+0xfa/0x120
[ 1542.825835]  should_fail_ex+0x4d7/0x5e0
[ 1542.825851]  should_failslab+0xc2/0x120
[ 1542.825869]  __kmalloc_cache_noprof+0x81/0x6b0
[ 1542.825890]  ? shmem_fill_super+0xca/0xf40
[ 1542.825908]  ? shmem_fill_super+0xca/0xf40
[ 1542.825921]  shmem_fill_super+0xca/0xf40
[ 1542.825937]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1542.825950]  ? sget_fc+0x766/0xb80
[ 1542.825965]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1542.825979]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1542.825992]  get_tree_nodev+0xdc/0x190
[ 1542.826007]  vfs_get_tree+0x93/0x340
[ 1542.826018]  path_mount+0x720/0x2130
[ 1542.826035]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1542.826054]  ? __pfx_path_mount+0x10/0x10
[ 1542.826071]  ? putname.part.0+0x11b/0x160
[ 1542.826090]  ? getname_flags.part.0+0x1c6/0x540
[ 1542.826110]  ? putname.part.0+0x11b/0x160
[ 1542.826130]  __x64_sys_mount+0x293/0x310
[ 1542.826146]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1542.826168]  do_syscall_64+0xbf/0x390
[ 1542.826185]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1542.826197] RIP: 0033:0x7efe1268304a
[ 1542.826206] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1542.826218] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1542.826230] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe1268304a
[ 1542.826239] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1542.826247] RBP: 00007efe0fbf7040 R08: 00007efe0fbf7040 R09: 0000000020000000
[ 1542.826256] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1542.826263] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1542.826280]  </TASK>
[ 1542.836974] tmpfs: Bad value for 'mpol'
06:16:48 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="7e740c009f8d002c26300261e33c3065f695d06fe3de71860e8c50509aae505f0000"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:16:48 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 57)

06:16:48 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x2000000}])
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

06:16:56 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 58)

06:16:56 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fsmount(r0, 0x0, 0x80)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:16:56 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
close(r0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r1, 0x400448e0, 0x0)

06:16:56 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000100)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x1, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_cmd_rej_unk={{0x1, 0x1, 0x2}, {0x401}}}}, 0xf)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x1, &(0x7f0000000180))
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f0000000140)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x32}, "f8ef8a034e8b1dd33ec19493cf653919fc66e08dde5c74a3c9e395cf0e1b59883d54ba3b4ab7085f06858a1a2771579fb730"}, 0x36)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:16:56 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 56)

06:16:56 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x2000000}])

06:16:56 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e4e060070235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11e79a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/83], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_stack_internal={{0xfd, 0x96}, {0x3, "63032ea7057df3af44150c975add573df24e5cb8c594fdeb3a720c462e81bfba9dfd30155a0ade12fd1426b011cd7ed76b40e6103d85116c739f97cd4a3e3cfdada063594df10e61361b317bfb8467bff17bfa22e10358569237b91a7452186401811152fa5b60ff5020a942f77d8c0b549f83e6528b58a454e00501fe6f865fad96f0b0ca45ec1a65bd390a1443b0e74de3223c"}}}, 0x99)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:16:56 executing program 4:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000000)={0x3, 0x80, 0xea, 0x0, 0x0, 0x9, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x2000}, 0x0, 0x0, r0, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = fork()
sendmsg$AUDIT_SET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x38, 0x3e9, 0x0, 0x70bd28, 0x25dfdbfe, {0x18, 0x0, 0x2, r2, 0x8, 0x6, 0x10000, 0x8, 0x0, 0x6}, ["", "", "", ""]}, 0x38}, 0x1, 0x0, 0x0, 0x8010}, 0x4040000)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r3=>r1, {0x8}}, './file0\x00'})
perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0x20, 0x7, 0x3f, 0x40, 0x0, 0x8, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f00000000c0), 0x4}, 0x198c6, 0x2, 0x2, 0x3, 0x9, 0x9, 0x8, 0x0, 0x7, 0x0, 0xfffffffffffffffd}, r2, 0x0, r3, 0x12)
r4 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r4, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='mrol=prefer:,\x00'])
r5 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x80, 0x3f, 0x47, 0x1, 0x0, 0x4, 0x4080, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2aa1a6bf, 0x2, @perf_config_ext={0x0, 0x7fe5}, 0x1000, 0x400, 0xe1ab, 0x8, 0x5, 0xa1, 0x0, 0x0, 0x3, 0x0, 0x1}, r2, 0xd, r5, 0x8)
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:16:56 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x9, 0x7fff, &(0x7f0000000080)=0x1)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x2, 0x137}, @l2cap_cid_signaling={{0x133}, [@l2cap_info_rsp={{0xb, 0x7f, 0xca}, {0x1, 0x1f, "1951e9e0a382df728ffce74409ae3e6bd2f91f8b51682e94c66c26db117fe0e1c044536bf4e16f55e9c5a0b93748b16bc071c163b532ccbc1e288960e07aa05959ff6bcf8233744b100a3c76d577a0f2c683b03169f628713128c394022f6c944ee23c2aea0db24b15d8338fc88c7aef78bdcfa2fd09784302529a76f8badb60f757eadf78f01d74fbb22380e510779f8589e71f0c214bb331fa18a14523dfa8ddfbbb6b338d483e56468da52604c8121255582b57b9ceab0f67764a4e2bd91f10b7e3bf64dd"}}, @l2cap_move_chan_req={{0xe, 0x0, 0x3}, {0xdfd5, 0xda}}, @l2cap_cmd_rej_unk={{0x1, 0x3, 0x2}, {0x4}}, @l2cap_conn_req={{0x2, 0xff, 0x4}, {0x6, 0x1000}}, @l2cap_conf_req={{0x4, 0x8, 0x14}, {0x9, 0x8, [@l2cap_conf_flushto={0x2, 0x2, 0x7}, @l2cap_conf_ews={0x7, 0x2, 0x1f}, @l2cap_conf_mtu={0x1, 0x2, 0x6}, @l2cap_conf_mtu={0x1, 0x2, 0x101}]}}, @l2cap_move_chan_cfm={{0x10, 0x81, 0x4}, {0x2, 0x42}}, @l2cap_conn_req={{0x2, 0x3, 0x4}, {0x7, 0x3ff}}, @l2cap_conf_rsp={{0x5, 0x70, 0x1c}, {0xffff, 0x4a73, 0x3f, [@l2cap_conf_flushto={0x2, 0x2, 0x1000}, @l2cap_conf_efs={0x6, 0x10, {0xcd, 0x2, 0x9, 0xff, 0x9, 0x4}}]}}, @l2cap_move_chan_cfm={{0x10, 0x6, 0x4}, {0xfffb, 0xfff9}}]}}, 0x13c)

[ 1551.249842] FAULT_INJECTION: forcing a failure.
[ 1551.249842] name failslab, interval 1, probability 0, space 0, times 0
[ 1551.251363] CPU: 0 UID: 0 PID: 30813 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1551.251386] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1551.251396] Call Trace:
[ 1551.251402]  <TASK>
[ 1551.251410]  dump_stack_lvl+0xfa/0x120
[ 1551.251438]  should_fail_ex+0x4d7/0x5e0
[ 1551.251469]  should_failslab+0xc2/0x120
[ 1551.251496]  __kmalloc_cache_noprof+0x81/0x6b0
[ 1551.251532]  ? shmem_fill_super+0xca/0xf40
[ 1551.251568]  ? shmem_fill_super+0xca/0xf40
[ 1551.251588]  shmem_fill_super+0xca/0xf40
[ 1551.251619]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1551.251641]  ? sget_fc+0x766/0xb80
[ 1551.251667]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1551.251698]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1551.251718]  get_tree_nodev+0xdc/0x190
[ 1551.251749]  vfs_get_tree+0x93/0x340
[ 1551.251771]  path_mount+0x720/0x2130
[ 1551.251800]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1551.251832]  ? __pfx_path_mount+0x10/0x10
[ 1551.251862]  ? putname.part.0+0x11b/0x160
[ 1551.251892]  ? getname_flags.part.0+0x1c6/0x540
[ 1551.251927]  ? putname.part.0+0x11b/0x160
[ 1551.251967]  __x64_sys_mount+0x293/0x310
[ 1551.251993]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1551.252041]  do_syscall_64+0xbf/0x390
[ 1551.252068]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1551.252087] RIP: 0033:0x7f13ca8cc04a
[ 1551.252101] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1551.252116] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1551.252133] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8cc04a
[ 1551.252144] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1551.252154] RBP: 00007f13c7e40040 R08: 00007f13c7e40040 R09: 0000000020000000
[ 1551.252165] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1551.252175] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1551.252222]  </TASK>
06:16:56 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x1, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x1, 0x26}, @l2cap_cid_signaling={{0x22}, [@l2cap_conf_rsp={{0x5, 0x7, 0xe}, {0x80, 0x56a2, 0x101, [@l2cap_conf_ews={0x7, 0x2, 0x9}, @l2cap_conf_ews={0x7, 0x2, 0x113}]}}, @l2cap_move_chan_cfm={{0x10, 0x0, 0x4}, {0x3f, 0x40}}, @l2cap_move_chan_cfm={{0x10, 0x0, 0x4}, {0xffff, 0x8}}]}}, 0x2b)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
clock_gettime(0x0, &(0x7f00000001c0)={0x0, <r1=>0x0})
select(0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x0, r1/1000+60000})
clock_gettime(0x0, &(0x7f00000001c0)={0x0, <r2=>0x0})
select(0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x0, <r3=>r2/1000+60000})
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYRES32=r1, @ANYRES32, @ANYRESDEC, @ANYRES32=r3], 0xffffffd5)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="03c9002f0485d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"], 0x33)
r4 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r4, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:17:08 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xffffffffffffffbb)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_disconn_logical_link_complete={{0x46, 0x4}, {0x81, 0xc8, 0x3}}}, 0x7)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:17:08 executing program 7:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r0}, './file0\x00'})
bind$bt_hci(r2, &(0x7f00000000c0)={0x1f, 0x3, 0x3}, 0x6)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r1, 0x400448e0, 0x0)

06:17:08 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 57)

06:17:08 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x2, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x8, &(0x7f0000000340))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x7b, 0x5, 0x0, 0x2, 0x0, 0x0, 0x42022, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ptrace(0xffffffffffffffff, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='ramfs\x00', 0x0, 0x0)
r1 = syz_mount_image$tmpfs(&(0x7f0000000380), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x2080030, &(0x7f0000000040)=ANY=[])
symlinkat(&(0x7f0000000040)='./file0/file0\x00', r1, &(0x7f0000000200)='./file0\x00')
readlink(&(0x7f00000001c0)='./file0/file0\x00', &(0x7f0000000240)=""/207, 0xcf)
syz_mount_image$tmpfs(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
lchown(&(0x7f0000000080)='./file0/file0\x00', 0xee01, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)

06:17:08 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 59)

06:17:08 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x62, 0xd2, 0xfd, 0x7f, 0x0, 0x400, 0x14324, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x4bf, 0x0, @perf_config_ext={0x3ff, 0x6}, 0x90, 0x6, 0x80000000, 0x9, 0x10001, 0x9a, 0x5d55, 0x0, 0x7, 0x0, 0x86}, 0xffffffffffffffff, 0x10, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:17:08 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x2000000}])

[ 1563.070244] tmpfs: Bad value for 'mpol'
06:17:08 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x2000000}])

[ 1563.178454] FAULT_INJECTION: forcing a failure.
[ 1563.178454] name failslab, interval 1, probability 0, space 0, times 0
[ 1563.180969] CPU: 1 UID: 0 PID: 31029 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1563.181017] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1563.181036] Call Trace:
[ 1563.181047]  <TASK>
[ 1563.181059]  dump_stack_lvl+0xfa/0x120
[ 1563.181102]  should_fail_ex+0x4d7/0x5e0
[ 1563.181142]  ? shmem_alloc_inode+0x27/0x50
[ 1563.181171]  should_failslab+0xc2/0x120
[ 1563.181213]  kmem_cache_alloc_lru_noprof+0x84/0x690
[ 1563.181266]  ? _get_random_bytes.part.0+0x152/0x1b0
[ 1563.181319]  ? shmem_alloc_inode+0x27/0x50
[ 1563.181349]  ? __shmem_get_inode+0x7e4/0xe80
[ 1563.181384]  shmem_alloc_inode+0x27/0x50
[ 1563.181411]  ? __pfx_shmem_alloc_inode+0x10/0x10
[ 1563.181443]  alloc_inode+0x67/0x250
[ 1563.181495]  new_inode+0x1e/0x160
[ 1563.181552]  __shmem_get_inode+0x17c/0xe80
[ 1563.181606]  shmem_fill_super+0x784/0xf40
[ 1563.181657]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1563.181781]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1563.181823]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1563.181864]  get_tree_nodev+0xdc/0x190
[ 1563.181909]  vfs_get_tree+0x93/0x340
[ 1563.181944]  path_mount+0x720/0x2130
[ 1563.181993]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1563.182049]  ? __pfx_path_mount+0x10/0x10
[ 1563.182098]  ? putname.part.0+0x11b/0x160
[ 1563.182148]  ? getname_flags.part.0+0x1c6/0x540
[ 1563.182208]  ? putname.part.0+0x11b/0x160
[ 1563.182270]  __x64_sys_mount+0x293/0x310
[ 1563.182317]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1563.182384]  do_syscall_64+0xbf/0x390
[ 1563.182431]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1563.182467] RIP: 0033:0x7efe1268304a
[ 1563.182492] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1563.182525] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1563.182557] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe1268304a
[ 1563.182579] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1563.182600] RBP: 00007efe0fbf7040 R08: 00007efe0fbf7040 R09: 0000000020000000
[ 1563.182622] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1563.182643] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1563.182698]  </TASK>
06:17:08 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x85, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbb07005c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb9003000000b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
ioctl$AUTOFS_IOC_SETTIMEOUT(r0, 0x80049367, &(0x7f0000000040)=0x6)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:17:08 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 58)

06:17:08 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r2, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_key_refresh_complete={{0x30, 0x3}, {0x6, 0xc9}}}, 0x6)

06:17:08 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 60)

06:17:08 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x2000000}])

06:17:09 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000a35000/0x3000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:17:09 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
syz_emit_vhci(&(0x7f0000000140)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x7e}, "4d4820c3f05b8b7841f4b2b631e40d7989ee2c2cf49c455e107fd23d1c88ca0c25942c2e18439b76e6c587da0d9db44b981a228f40d5d4129672dea3171b9db17f22dc56f87f8e5600fb352d7456dc32eabf0657a105caa9ac7a446c968728d233ecfb741b9fe851b73e00bad2eaa695ff90a7201eada2d46130116971f7"}, 0x82)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
syz_emit_vhci(&(0x7f0000000400)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x3, 0x12}, @l2cap_cid_le_signaling={{0xe}, @l2cap_le_conn_rsp={{0x15, 0x7, 0xa}, {0x3, 0x6, 0xd, 0x40, 0x46a}}}}, 0x17)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x0, 0xb}, @l2cap_cid_signaling={{0x7}, [@l2cap_move_chan_req={{0xe, 0xd4, 0x3}, {0x7f}}]}}, 0x10)
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:17:09 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 59)

06:17:09 executing program 7:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r2 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
kcmp(0xffffffffffffffff, 0x0, 0x1, r0, r2)
ioctl$sock_bt_hci(r1, 0x400448e0, 0x0)

06:17:09 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_pin_code_req={{0x16, 0x6}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}}}, 0x9)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:17:09 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 61)

06:17:09 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(0x0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x2000000}])

[ 1563.591446] tmpfs: Bad value for 'mpol'
[ 1563.600131] FAULT_INJECTION: forcing a failure.
[ 1563.600131] name failslab, interval 1, probability 0, space 0, times 0
[ 1563.602212] CPU: 1 UID: 0 PID: 31252 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1563.602245] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1563.602259] Call Trace:
[ 1563.602267]  <TASK>
[ 1563.602276]  dump_stack_lvl+0xfa/0x120
[ 1563.602308]  should_fail_ex+0x4d7/0x5e0
[ 1563.602339]  ? shmem_alloc_inode+0x27/0x50
[ 1563.602363]  should_failslab+0xc2/0x120
[ 1563.602396]  kmem_cache_alloc_lru_noprof+0x84/0x690
[ 1563.602435]  ? _get_random_bytes.part.0+0x152/0x1b0
[ 1563.602476]  ? shmem_alloc_inode+0x27/0x50
[ 1563.602498]  ? __shmem_get_inode+0x7e4/0xe80
[ 1563.602522]  shmem_alloc_inode+0x27/0x50
[ 1563.602545]  ? __pfx_shmem_alloc_inode+0x10/0x10
[ 1563.602567]  alloc_inode+0x67/0x250
[ 1563.602605]  new_inode+0x1e/0x160
[ 1563.602644]  __shmem_get_inode+0x17c/0xe80
[ 1563.602681]  shmem_fill_super+0x784/0xf40
[ 1563.602722]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1563.602756]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1563.602785]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1563.602812]  get_tree_nodev+0xdc/0x190
[ 1563.602843]  vfs_get_tree+0x93/0x340
[ 1563.602867]  path_mount+0x720/0x2130
[ 1563.602901]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1563.602938]  ? __pfx_path_mount+0x10/0x10
[ 1563.602973]  ? putname.part.0+0x11b/0x160
[ 1563.603010]  ? getname_flags.part.0+0x1c6/0x540
[ 1563.603052]  ? putname.part.0+0x11b/0x160
[ 1563.603094]  __x64_sys_mount+0x293/0x310
[ 1563.603126]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1563.603171]  do_syscall_64+0xbf/0x390
[ 1563.603202]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1563.603227] RIP: 0033:0x7f13ca8cc04a
[ 1563.603246] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1563.603269] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1563.603292] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8cc04a
[ 1563.603308] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1563.603323] RBP: 00007f13c7e40040 R08: 00007f13c7e40040 R09: 0000000020000000
[ 1563.603338] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1563.603353] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1563.603388]  </TASK>
[ 1563.700449] FAULT_INJECTION: forcing a failure.
[ 1563.700449] name failslab, interval 1, probability 0, space 0, times 0
[ 1563.702488] CPU: 1 UID: 0 PID: 31300 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1563.702520] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1563.702533] Call Trace:
[ 1563.702542]  <TASK>
[ 1563.702551]  dump_stack_lvl+0xfa/0x120
[ 1563.702581]  should_fail_ex+0x4d7/0x5e0
[ 1563.702612]  should_failslab+0xc2/0x120
[ 1563.702644]  __kmalloc_noprof+0xcd/0x680
[ 1563.702680]  ? __lock_acquire+0x694/0x1b70
[ 1563.702718]  ? memcg_list_lru_alloc+0x4da/0x760
[ 1563.702752]  memcg_list_lru_alloc+0x4da/0x760
[ 1563.702790]  ? __pfx_memcg_list_lru_alloc+0x10/0x10
[ 1563.702829]  ? get_mem_cgroup_from_objcg+0xf8/0x430
[ 1563.702868]  __memcg_slab_post_alloc_hook+0x130/0x9e0
[ 1563.702897]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 1563.702934]  ? __create_object+0x59/0x80
[ 1563.702973]  kmem_cache_alloc_lru_noprof+0x512/0x690
[ 1563.703008]  ? _get_random_bytes.part.0+0x152/0x1b0
[ 1563.703047]  ? shmem_alloc_inode+0x27/0x50
[ 1563.703068]  ? __shmem_get_inode+0x7e4/0xe80
[ 1563.703090]  shmem_alloc_inode+0x27/0x50
[ 1563.703111]  ? __pfx_shmem_alloc_inode+0x10/0x10
[ 1563.703132]  alloc_inode+0x67/0x250
[ 1563.703168]  new_inode+0x1e/0x160
[ 1563.703204]  __shmem_get_inode+0x17c/0xe80
[ 1563.703238]  shmem_fill_super+0x784/0xf40
[ 1563.703269]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1563.703300]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1563.703327]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1563.703352]  get_tree_nodev+0xdc/0x190
[ 1563.703381]  vfs_get_tree+0x93/0x340
[ 1563.703404]  path_mount+0x720/0x2130
[ 1563.703436]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1563.703471]  ? __pfx_path_mount+0x10/0x10
[ 1563.703503]  ? putname.part.0+0x11b/0x160
[ 1563.703537]  ? getname_flags.part.0+0x1c6/0x540
[ 1563.703576]  ? putname.part.0+0x11b/0x160
[ 1563.703615]  __x64_sys_mount+0x293/0x310
[ 1563.703645]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1563.703687]  do_syscall_64+0xbf/0x390
[ 1563.703716]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1563.703740] RIP: 0033:0x7efe1268304a
[ 1563.703758] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1563.703779] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1563.703801] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe1268304a
[ 1563.703816] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1563.703830] RBP: 00007efe0fbf7040 R08: 00007efe0fbf7040 R09: 0000000020000000
[ 1563.703844] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1563.703857] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1563.703891]  </TASK>
06:17:19 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000400)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x1, 0xc}, @l2cap_cid_le_signaling={{}, @l2cap_ecred_conn_req={{}, {0xc00, 0xfc00, 0x5, 0x801, [0x3, 0x8, 0x7, 0x0, 0x4, 0x0, 0x45, 0x1000]}}}}, 0x11)
syz_emit_vhci(&(0x7f0000000140)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x0, 0xb2}, @l2cap_cid_signaling={{0xae}, [@l2cap_conf_req={{0x4, 0xfd, 0x33}, {0x5, 0x6, [@l2cap_conf_ews={0x7, 0x2, 0x5}, @l2cap_conf_efs={0x6, 0x10, {0x9, 0x2, 0xa, 0x5, 0x0, 0x1ff}}, @l2cap_conf_fcs={0x5, 0x1, 0x1}, @l2cap_conf_efs={0x6, 0x10, {0x5, 0x2, 0x7, 0x6, 0x101, 0x3}}, @l2cap_conf_mtu={0x1, 0x2, 0x6}]}}, @l2cap_info_rsp={{0xb, 0x8f, 0x73}, {0x6, 0x7ff, "f22037d12521ffd652d8f308f1708ed897a65273b4f35311726aecb9a38dfb174f28c9111459d496d2cdb6ca08fa4c3e775aa705fe33de8a10dd44d6434042ff63df54a73050a5af423667c5fbb636c335761b66571a5c1da9fb7d9c805fa2f06f6ed68f727f4d4523f39183000b8e"}}]}}, 0xb7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3f, 0x6e8, &(0x7f0000000040)=0x1)

06:17:19 executing program 7:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0x3f}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
fcntl$getownex(r0, 0x10, &(0x7f0000000180)={0x0, <r2=>0x0})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, {0x1}}, './file0\x00'})
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x9, 0x9, 0x3, 0x55, 0x0, 0x3, 0x4000, 0x4, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x100, 0x1, @perf_config_ext={0x2}, 0x10, 0x9, 0x1, 0x5, 0x7968, 0x7fffffff, 0x8001, 0x0, 0x7, 0x0, 0x3c82}, r2, 0x8, r3, 0xb)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x4}, 0x6)
perf_event_open(&(0x7f0000000240)={0x3, 0x80, 0x7, 0x0, 0xba, 0x36, 0x0, 0x3, 0x40080, 0x8, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x11, 0x2, @perf_config_ext={0x2, 0xfffffffffffffffd}, 0x8, 0x8000, 0x1e5, 0x2, 0x2, 0x10000, 0x4, 0x0, 0x8000, 0x0, 0x2}, r2, 0xc, 0xffffffffffffffff, 0x9)
ioctl$sock_bt_hci(r1, 0x400448e0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r4=>r1, {0x8000}}, './file0\x00'})
bind$bt_hci(r4, &(0x7f00000000c0)={0x1f, 0x1, 0xff7f2264d05c53cd}, 0x6)
creat(&(0x7f0000000200)='./file0\x00', 0x4)

06:17:19 executing program 4:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="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"/302])
r2 = getpid()
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0x1, 0x6, 0x7, 0xf4, 0x0, 0x100000000, 0x80020, 0x9, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x100, 0x1, @perf_config_ext={0x6, 0x3}, 0x1180, 0x5, 0x96ce, 0x1, 0x9, 0x6, 0x0, 0x0, 0x2}, r2, 0xf, r0, 0x2)
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:17:19 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_sniff_subrate={{0x2e, 0xb}, {0x8, 0xc8, 0x70e, 0xfff, 0x9c14, 0x7}}}, 0xe)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0x1, 0x34}, "1c224811bfa903160b3af266766512b31fe325299dac40fee8a2c2f933617ca5e749750249c14839a432e53fc663ee4928c37595"}, 0x38)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f0000000180)=@HCI_EVENT_PKT={0x4, @hci_ev_le_meta={{0x3e, 0x26}, @hci_ev_le_advertising_info={{}, {0x1, [{0x4, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x1a, "ab1d2dd8207de509a82ea3b3b0cb7a5028bb9b0a39a19dc0f8c8", 0x3f}]}}}}, 0x29)
syz_emit_vhci(&(0x7f0000000480)=ANY=[@ANYBLOB="03c9002f0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46cc7234664f1a5f94413562fb898338ae25e310287cc8dc745e6b1e51021996a5002c77feb49b5e103063d5ab28a2dba259b5a93ef3e5af736875a340cb60200000000000000a29de0da46f965f85934b1d07f9c3e4681d609f3a81c71532b4c8789b8a55c86f3a64088667b0e2ba607b31d5e3650990ae2e859e1afbdc98503ef0c40ba4ea223f542c7053de2427b56eb2db0e7a9da4db7932314aff5b305ba0fa0dc2703326675aa2830924ff03beaeee096664d5bccb90c3cfa177fbda6e2185fff8c973f9f0dde498b8a469c3e9c20aca127c366b6bc2ed16ee5a61a5e88450ab8dbc54c081fcebd6e524904757be9f30ef33339c8a191e9b44d7402080000002d3a9ac485"], 0x33)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_role_change={{0x12, 0x8}, {0xd7, @any, 0x1}}}, 0xb)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @inquiry_info={{0x2, 0x2b}, {0x3, [{@none, 0x7, 0x2, 0x0, "2ff672", 0x9}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x80, 0x5, 0xe8, "13c627", 0xde97}, {@any, 0xd6, 0x7, 0x5, "e4e8ae", 0x8001}]}}}, 0x2e)
r1 = syz_open_dev$sg(&(0x7f00000000c0), 0x1db, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:17:19 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(0x0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x2000000}])

06:17:19 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 60)

06:17:19 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 62)

[ 1573.629118] tmpfs: Unknown parameter '<�{<H'
06:17:19 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000140)=ANY=[@ANYBLOB="2a000000ffffffff85ffffff4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a0000000000000000000000000000001d6cf12154db2c03b1141426a6d65d4945a0fe7f0fe8bd415353c419784fb141fa20b33d6c25bed024553f51acba113a950f999704a044a308208c8dbebea603c82abbfb0451f28a58d08c0f0ffbda6937e4310eb1fd7af0d211954e637cd1e89b465f30cc733e40256b032ee65a"])
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:17:19 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x5, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x1f}, @l2cap_cid_signaling={{0x1b}, [@l2cap_move_chan_cfm={{0x10, 0x20, 0x4}, {0x8, 0xff}}, @l2cap_create_chan_rsp={{0xd, 0x1f, 0x8}, {0xa4b1, 0x8, 0x7, 0x6}}, @l2cap_move_chan_req={{0xe, 0x8, 0x3}, {0x4, 0x1f}}]}}, 0x24)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076bd0bf0696fc8ae901899bb90f39e9190b003e9e4cbae11c8e59ed7f3b57521c5d80fdc4c248dbc73be336b0e1cb200000000000000000001"], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)=ANY=[@ANYBLOB="2a800000ffffffff85ffffff4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/54])

06:17:19 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 63)

06:17:19 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(0x0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x2000000}])

06:17:19 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 61)

[ 1573.749318] FAULT_INJECTION: forcing a failure.
[ 1573.749318] name failslab, interval 1, probability 0, space 0, times 0
[ 1573.750420] CPU: 1 UID: 0 PID: 31623 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1573.750436] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1573.750444] Call Trace:
[ 1573.750448]  <TASK>
[ 1573.750452]  dump_stack_lvl+0xfa/0x120
[ 1573.750471]  should_fail_ex+0x4d7/0x5e0
[ 1573.750488]  should_failslab+0xc2/0x120
[ 1573.750506]  __kmalloc_noprof+0xcd/0x680
[ 1573.750525]  ? __lock_acquire+0x694/0x1b70
[ 1573.750541]  ? memcg_list_lru_alloc+0x4da/0x760
[ 1573.750559]  memcg_list_lru_alloc+0x4da/0x760
[ 1573.750578]  ? __pfx_memcg_list_lru_alloc+0x10/0x10
[ 1573.750598]  ? get_mem_cgroup_from_objcg+0xf8/0x430
[ 1573.750619]  __memcg_slab_post_alloc_hook+0x130/0x9e0
[ 1573.750633]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 1573.750653]  ? __create_object+0x59/0x80
[ 1573.750673]  kmem_cache_alloc_lru_noprof+0x512/0x690
[ 1573.750696]  ? _get_random_bytes.part.0+0x152/0x1b0
[ 1573.750716]  ? shmem_alloc_inode+0x27/0x50
[ 1573.750728]  ? __shmem_get_inode+0x7e4/0xe80
[ 1573.750739]  shmem_alloc_inode+0x27/0x50
[ 1573.750750]  ? __pfx_shmem_alloc_inode+0x10/0x10
[ 1573.750761]  alloc_inode+0x67/0x250
[ 1573.750780]  new_inode+0x1e/0x160
[ 1573.750798]  __shmem_get_inode+0x17c/0xe80
[ 1573.750815]  shmem_fill_super+0x784/0xf40
[ 1573.750831]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1573.750847]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1573.750861]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1573.750875]  get_tree_nodev+0xdc/0x190
[ 1573.750890]  vfs_get_tree+0x93/0x340
[ 1573.750901]  path_mount+0x720/0x2130
[ 1573.750918]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1573.750936]  ? __pfx_path_mount+0x10/0x10
[ 1573.750952]  ? putname.part.0+0x11b/0x160
[ 1573.750970]  ? getname_flags.part.0+0x1c6/0x540
[ 1573.750990]  ? putname.part.0+0x11b/0x160
[ 1573.751010]  __x64_sys_mount+0x293/0x310
[ 1573.751025]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1573.751046]  do_syscall_64+0xbf/0x390
[ 1573.751061]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1573.751074] RIP: 0033:0x7f13ca8cc04a
[ 1573.751083] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1573.751094] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1573.751106] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8cc04a
[ 1573.751113] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1573.751121] RBP: 00007f13c7e40040 R08: 00007f13c7e40040 R09: 0000000020000000
[ 1573.751128] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1573.751135] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1573.751152]  </TASK>
06:17:19 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="83a0b596088b5a5c291d0a01700b9c408ce35f5c994a6a8e63a97c014b20c1f65876f6699f5149f63d321e0000ffffff0bffffde9cef0bfd79"], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)

06:17:19 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 64)

06:17:27 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x2000000}])

06:17:27 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 65)

06:17:27 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 62)

06:17:27 executing program 7:
r0 = perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0xe9, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x6, 0x1}, 0x0, 0x0, 0x0, 0x9, 0x0, 0x1ff, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000140)={'batadv_slave_0\x00'})
ioctl$sock_bt_hci(r1, 0x400448e0, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r2, 0x0, 0x0)
openat(r2, &(0x7f0000000180)='./file0\x00', 0x40100, 0x38)
setsockopt$bt_hci_HCI_DATA_DIR(r1, 0x0, 0x1, &(0x7f0000001b00)=0x400, 0x4)
ioctl$F2FS_IOC_RESIZE_FS(r0, 0x4008f510, &(0x7f0000000080)=0x563)
recvmmsg(r1, &(0x7f0000001a00)=[{{&(0x7f00000000c0)=@pppol2tp={0x18, 0x1, {0x0, <r3=>0xffffffffffffffff, {0x2, 0x0, @dev}}}, 0x80, &(0x7f0000000440), 0x0, &(0x7f0000000480)=""/4096, 0x1000}, 0x3520}, {{&(0x7f0000001480)=@ax25={{0x3, @null}, [@default, @bcast, @null, @netrom, @default, @default, @default, @null]}, 0x80, &(0x7f0000001880)=[{&(0x7f0000001500)=""/126, 0x7e}, {&(0x7f0000001580)=""/127, 0x7f}, {&(0x7f0000001600)=""/156, 0x9c}, {&(0x7f00000016c0)=""/18, 0x12}, {&(0x7f0000001700)=""/204, 0xcc}, {&(0x7f0000001800)=""/79, 0x4f}], 0x6, &(0x7f0000001900)=""/193, 0xc1}, 0x3}], 0x2, 0x100, &(0x7f0000001a80)={0x77359400})
write$bt_hci(r3, &(0x7f0000001ac0)={0x1, @create_conn={{0x405, 0xd}, {@any, 0x1000, 0x0, 0xc, 0x9, 0x2}}}, 0x11)

06:17:27 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x5}, @hci_rp_read_inq_rsp_tx_power={{0x7}, {0x1}}}}, 0x8)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f00000001c0)=ANY=[@ANYBLOB="02c8102002d2d4f6cabcae355e796de1f2a21e00000010000000"], 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000400)=ANY=[@ANYBLOB="8dc2e6ccb700ff0000e4ffff0c0000000100000000"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x4a8042, 0x0)
syz_emit_vhci(&(0x7f0000000180)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r1, 0x800c6613, &(0x7f0000000100)=@v1={0x0, @aes256, 0x0, @desc2})
r2 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000340)=ANY=[@ANYRES32])
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x0, 0x84}, @l2cap_cid_signaling={{0x80}, [@l2cap_conf_rsp={{0x5, 0x2, 0xa}, {0x7, 0x5, 0x40, [@l2cap_conf_mtu={0x1, 0x2, 0x100}]}}, @l2cap_cmd_rej_unk={{0x1, 0x3f, 0x2}, {0xd73}}, @l2cap_conf_rsp={{0x5, 0x40, 0x1f}, {0x800, 0x20, 0x2, [@l2cap_conf_fcs={0x5, 0x1}, @l2cap_conf_efs={0x6, 0x10, {0x0, 0x1, 0x7fff, 0xc000, 0x5, 0x4}}, @l2cap_conf_ews={0x7, 0x2, 0x6}]}}, @l2cap_cmd_rej_unk={{0x1, 0x5, 0x2}, {0x7}}, @l2cap_conf_rsp={{0x5, 0x41, 0x37}, {0x8, 0x6, 0x1f, [@l2cap_conf_flushto={0x2, 0x2, 0x8}, @l2cap_conf_efs={0x6, 0x10, {0x0, 0x7bc1c752f86f83ad, 0xffff, 0x0, 0x9, 0xf28}}, @l2cap_conf_rfc={0x4, 0x9, {0x4, 0xec, 0x44, 0x5582, 0x9, 0x1}}, @l2cap_conf_ews={0x7, 0x2, 0x8000}, @l2cap_conf_flushto={0x2, 0x2, 0x9}, @l2cap_conf_flushto={0x2, 0x2, 0x200}, @l2cap_conf_flushto={0x2, 0x2, 0x3}]}}, @l2cap_disconn_rsp={{0x7, 0x2, 0x4}, {0x200, 0x200}}]}}, 0x89)

06:17:27 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6d723a2c000290f6c260071096f6d4348f44a1aec447a976d5adfb88804751d25366a8edbd71e4c14e3a385ce5779b5c8b4f2e2cfd1baff323a0303c97dadc6fb3adcfca7fca967cae6e75cf39dc3919f18898d7ccf5ede5156cafd458cae8604df671f3d1f8ff7af00d3d030efb9478b2e68999659256db913ad7da0219414d1bf3bbfc8211369d4cc8c3652db1cb7f6fd2ea6ee064eccde1464ffb837e74add5018d7d26a03a4a4fe7a5575dff1f1ea548c8aad1b65a0c47d222e49f4446d8c3cc79516765f9af70e2c9dd1856a4a4"])
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/mdstat\x00', 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x400, &(0x7f0000000280)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@nodevmap}, {@afid={'afid', 0x3d, 0x1}}, {@noextend}], [{@smackfsroot}]}})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:17:27 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_EVENT_PKT={0x4, @hci_ev_link_key_req={{0x17, 0x6}, {@none}}}, 0x9)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f0000000140)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x1}, @l2cap_cid_signaling={{}, [@l2cap_move_chan_req={{0xe, 0xdd}, {0x117, 0x4}}, @l2cap_info_req={{0xa, 0x3}, {0x4}}, @l2cap_create_chan_rsp={{0xd, 0x6}, {0x6, 0x4, 0x0, 0x7}}]}}, 0xa)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="2a000000ffffffff4391f94542eb18ef72f3956513e2382194d7d8f87c9c1eafe9b000"/61])
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

[ 1582.045572] FAULT_INJECTION: forcing a failure.
[ 1582.045572] name failslab, interval 1, probability 0, space 0, times 0
[ 1582.047819] CPU: 0 UID: 0 PID: 31723 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1582.047850] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1582.047864] Call Trace:
[ 1582.047873]  <TASK>
[ 1582.047883]  dump_stack_lvl+0xfa/0x120
[ 1582.047919]  should_fail_ex+0x4d7/0x5e0
[ 1582.047958]  ? security_inode_alloc+0x3e/0x130
[ 1582.047984]  should_failslab+0xc2/0x120
[ 1582.048019]  kmem_cache_alloc_noprof+0x80/0x690
[ 1582.048058]  ? __pfx_map_id_range_down+0x10/0x10
[ 1582.048091]  ? __create_object+0x59/0x80
[ 1582.048149]  ? security_inode_alloc+0x3e/0x130
[ 1582.048176]  security_inode_alloc+0x3e/0x130
[ 1582.048211]  inode_init_always_gfp+0xc94/0xff0
[ 1582.048259]  alloc_inode+0x8d/0x250
[ 1582.048299]  new_inode+0x1e/0x160
[ 1582.048345]  __shmem_get_inode+0x17c/0xe80
[ 1582.048400]  shmem_fill_super+0x784/0xf40
[ 1582.048443]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1582.048485]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1582.048520]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1582.048548]  get_tree_nodev+0xdc/0x190
[ 1582.048585]  vfs_get_tree+0x93/0x340
[ 1582.048615]  path_mount+0x720/0x2130
[ 1582.048653]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1582.048704]  ? __pfx_path_mount+0x10/0x10
[ 1582.048746]  ? putname.part.0+0x11b/0x160
[ 1582.048786]  ? getname_flags.part.0+0x1c6/0x540
[ 1582.048835]  ? putname.part.0+0x11b/0x160
[ 1582.048888]  __x64_sys_mount+0x293/0x310
[ 1582.048924]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1582.048989]  do_syscall_64+0xbf/0x390
[ 1582.049026]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1582.049051] RIP: 0033:0x7efe1268304a
[ 1582.049070] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1582.049092] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1582.049114] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe1268304a
[ 1582.049129] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1582.049143] RBP: 00007efe0fbf7040 R08: 00007efe0fbf7040 R09: 0000000020000000
[ 1582.049157] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1582.049171] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1582.049236]  </TASK>
06:17:27 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 63)

06:17:27 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="02c81014001000050017030c000104a7060400ff0001000600d10b524dca02bf2d110feed9557d50725dd07258e972695f6be109945e3078d2a798069c01bc00233db1de3d23899de43e9cbabecffaa3f96ea3accd43b65e4aa34634d43053b153c39465bb"], 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

[ 1582.141918] tmpfs: Unknown parameter 'mr:'
[ 1582.152309] 9pnet_fd: Insufficient options for proto=fd
06:17:27 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x2000000}])

06:17:27 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_host_features={{0x3d, 0xe}, {@none, "4f1a1be739950905"}}}, 0x11)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:17:27 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 64)

06:17:27 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x5, 0x7ff, &(0x7f0000000040)=0x1)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:17:27 executing program 7:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
flistxattr(r0, &(0x7f0000000080)=""/252, 0xfc)
ioctl$sock_bt_hci(r1, 0x400448e0, 0x0)

06:17:27 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 66)

06:17:27 executing program 6:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x2000000}])

06:17:27 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
syz_emit_vhci(&(0x7f0000000100)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x8e}, "f7f34898df20bdf9d797325b060c4aa334efec85603a8d0cb03022fa7d9321f5b873e9607658592e841871b8e18ed77f18803673dacae726bc6f4d9452b10f08dc908fdbb260b4c625d205bfdffbb2c3e81815b8b7cd93002cf592ab7c993f4ca20d89cf889fa1048ae8c3ef45bc87b367dda400e6fa52c3c9366801141e64bf63e4bb749a2b873907cd593c9231"}, 0x92)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_disconn_logical_link_complete={{0x46, 0x4}, {0x5, 0xc9, 0x2}}}, 0x7)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
fchdir(r1)
r2 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="6eb76fc0da10d9c685ff14576e09ffff4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a0000000000b8962497b8b8cc2447ca000000000000"])

06:17:27 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 65)

06:17:36 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @inquiry_info_with_rssi={{0x22, 0xf}, {0x1, [{@any, 0x20, 0x3f, "b1e954", 0x4, 0xe3}]}}}, 0x12)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x6, &(0x7f0000000140)=0x1)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:17:36 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 66)

06:17:36 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
fcntl$notify(r0, 0x402, 0x20)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r1, 0x400448e0, 0x0)

06:17:36 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x1, 0x12}, @l2cap_cid_le_signaling={{0xe}, @l2cap_le_conn_rsp={{0x15, 0x3, 0xa}, {0x0, 0x81, 0x8, 0x200, 0x4}}}}, 0x17)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
syz_emit_vhci(&(0x7f0000000100)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x58}, "31c8561793def7fd0ce1e975d58c88e9a27a07aee8e4f4ffa638c07918a410855420f6f29c3d47e6d4c6ca93d6a1550f34c451451b9029761b711a1fc46884e1c6891a5349a81cec64885994f0f46e976e8ffd2ca3127444"}, 0x5c)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:17:36 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 67)

06:17:36 executing program 6:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x2000000}])

06:17:36 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
r2 = fork()
sendmsg$AUDIT_SET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x38, 0x3e9, 0x0, 0x70bd28, 0x25dfdbfe, {0x18, 0x0, 0x2, r2, 0x8, 0x6, 0x10000, 0x8, 0x0, 0x6}, ["", "", "", ""]}, 0x38}, 0x1, 0x0, 0x0, 0x8010}, 0x4040000)
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x3, 0x1, 0x8, 0x7, 0x0, 0x6, 0xa0000, 0x4, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, @perf_config_ext={0x0, 0x401}, 0x10144, 0x5, 0x4, 0x8, 0x3ff, 0x3f, 0x5, 0x0, 0x10001, 0x0, 0x16}, r2, 0xc, r0, 0x19)
ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

[ 1590.675582] FAULT_INJECTION: forcing a failure.
[ 1590.675582] name failslab, interval 1, probability 0, space 0, times 0
[ 1590.676542] CPU: 0 UID: 0 PID: 32073 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1590.676558] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1590.676565] Call Trace:
[ 1590.676570]  <TASK>
[ 1590.676575]  dump_stack_lvl+0xfa/0x120
[ 1590.676596]  should_fail_ex+0x4d7/0x5e0
[ 1590.676617]  ? __d_alloc+0x31/0xa10
[ 1590.676632]  should_failslab+0xc2/0x120
[ 1590.676652]  kmem_cache_alloc_lru_noprof+0x84/0x690
[ 1590.676671]  ? __raw_spin_lock_init+0x3a/0x110
[ 1590.676712]  ? __d_alloc+0x31/0xa10
[ 1590.676725]  __d_alloc+0x31/0xa10
[ 1590.676750]  d_make_root+0x42/0x90
[ 1590.676767]  shmem_fill_super+0x864/0xf40
[ 1590.676790]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1590.676811]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1590.676830]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1590.676844]  get_tree_nodev+0xdc/0x190
[ 1590.676863]  vfs_get_tree+0x93/0x340
[ 1590.676878]  path_mount+0x720/0x2130
[ 1590.676898]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1590.676921]  ? __pfx_path_mount+0x10/0x10
[ 1590.676942]  ? putname.part.0+0x11b/0x160
[ 1590.676962]  ? getname_flags.part.0+0x1c6/0x540
[ 1590.676986]  ? putname.part.0+0x11b/0x160
[ 1590.677013]  __x64_sys_mount+0x293/0x310
[ 1590.677031]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1590.677064]  do_syscall_64+0xbf/0x390
[ 1590.677083]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1590.677096] RIP: 0033:0x7efe1268304a
[ 1590.677106] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1590.677117] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1590.677129] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe1268304a
[ 1590.677136] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1590.677143] RBP: 00007efe0fbf7040 R08: 00007efe0fbf7040 R09: 0000000020000000
[ 1590.677150] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1590.677157] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1590.677190]  </TASK>
06:17:36 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB='\x00\t\x00@\x00\x00\x00'], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x1, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_ecred_reconf_rsp={{0x1a, 0x5, 0x2}, {0x9}}}}, 0xf)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYRES32=r0, @ANYRESOCT=r0, @ANYRES64=0x0], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
syz_emit_vhci(&(0x7f0000000140)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x0, 0x57}, @l2cap_cid_signaling={{0x53}, [@l2cap_disconn_req={{0x6, 0x2, 0x4}, {0x18ca, 0x7}}, @l2cap_conf_req={{0x4, 0x81, 0x37}, {0x2, 0x1, [@l2cap_conf_mtu={0x1, 0x2}, @l2cap_conf_efs={0x6, 0x10, {0x9, 0x2, 0x8000, 0x8, 0x6, 0x6}}, @l2cap_conf_efs={0x6, 0x10, {0x40, 0x2, 0x931, 0x5, 0x332, 0x2}}, @l2cap_conf_rfc={0x4, 0x9, {0x4, 0x6, 0x0, 0x3, 0x5}}]}}, @l2cap_conn_req={{0x2, 0x1, 0x4}, {0x8000, 0xc5b5}}, @l2cap_conn_req={{0x2, 0x1e, 0x4}, {0x289, 0x8}}]}}, 0x5c)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:17:36 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 67)

06:17:36 executing program 6:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x2000000}])

06:17:36 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
syz_emit_vhci(&(0x7f0000000100)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xef}, "cbe3a3dfd8bce61834a78c25e2968ebb706af5c1dce64a164cf08ba6f9c7fe0e41451472aacebedb0be98affd4e29250cf4ee80e8d5f5e39a5e28c72796c656a330b167cb0691f23eb72216c4645b1086d991360e6722de967e2b706e90f70d8eb17431b16adbb87a1ac0eba31449d01d6759429d2f3a46d68616917f32982cb69a9c56e7645803b40fd40505be029a29b35152be1163166e28b91480b79ed91b8fabb4ece57b7ae6266b2a96c23fd8a13eeac0f9ac559318a49b90800df43304717d42a9d543685e26ba94c606cc50b82d5989e514a794f95ff8c04adca7a3fde8630f9c0a78aaafad5aa51d877b3"}, 0xf3)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

[ 1590.800357] FAULT_INJECTION: forcing a failure.
[ 1590.800357] name failslab, interval 1, probability 0, space 0, times 0
[ 1590.801560] CPU: 0 UID: 0 PID: 32159 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1590.801577] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1590.801584] Call Trace:
[ 1590.801589]  <TASK>
[ 1590.801594]  dump_stack_lvl+0xfa/0x120
[ 1590.801615]  should_fail_ex+0x4d7/0x5e0
[ 1590.801636]  ? __d_alloc+0x31/0xa10
[ 1590.801652]  should_failslab+0xc2/0x120
[ 1590.801674]  kmem_cache_alloc_lru_noprof+0x84/0x690
[ 1590.801700]  ? __raw_spin_lock_init+0x3a/0x110
[ 1590.801737]  ? __d_alloc+0x31/0xa10
[ 1590.801750]  __d_alloc+0x31/0xa10
[ 1590.801776]  d_make_root+0x42/0x90
[ 1590.801793]  shmem_fill_super+0x864/0xf40
[ 1590.801816]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1590.801838]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1590.801856]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1590.801870]  get_tree_nodev+0xdc/0x190
[ 1590.801889]  vfs_get_tree+0x93/0x340
[ 1590.801904]  path_mount+0x720/0x2130
[ 1590.801924]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1590.801947]  ? __pfx_path_mount+0x10/0x10
[ 1590.801968]  ? putname.part.0+0x11b/0x160
[ 1590.801989]  ? getname_flags.part.0+0x1c6/0x540
[ 1590.802026]  ? putname.part.0+0x11b/0x160
[ 1590.802063]  __x64_sys_mount+0x293/0x310
[ 1590.802088]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1590.802124]  do_syscall_64+0xbf/0x390
[ 1590.802143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1590.802155] RIP: 0033:0x7f13ca8cc04a
[ 1590.802166] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1590.802177] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1590.802189] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8cc04a
[ 1590.802197] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1590.802204] RBP: 00007f13c7e40040 R08: 00007f13c7e40040 R09: 0000000020000000
[ 1590.802212] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1590.802219] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1590.802252]  </TASK>
06:17:36 executing program 6:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x2000000}])

06:17:36 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 68)

06:17:36 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="0101"], 0xb)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448e1, 0x0)

06:17:36 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 68)

06:17:45 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 69)

06:17:45 executing program 7:
semctl$SEM_INFO(0x0, 0x4, 0x13, &(0x7f0000000080)=""/85)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448e0, 0x0)

06:17:45 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc6c248dbc73be336b0e1cb200000000008000000000"], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r0, 0x0, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r1, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff, {0xffffffff}}, './file0\x00'})
getdents64(r2, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x0, 0x24}, @l2cap_cid_le_signaling={{0x20}, @l2cap_ecred_conn_rsp={{0x18, 0x5, 0x1c}, {0x9, 0x5c1f, 0x3, 0x3, [0xff, 0x8000, 0x6, 0x5, 0xe24, 0x7fff, 0x0, 0xff00, 0x800, 0xfd]}}}}, 0x29)
r3 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:17:45 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 69)

06:17:45 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f00000005c0)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x3, 0x1, 0x10c}, @l2cap_cid_signaling={{0x108}, [@l2cap_move_chan_cfm={{0x10, 0xc0, 0x4}, {0x8, 0xfa1f}}, @l2cap_move_chan_cfm={{0x10, 0x1, 0x4}, {0x2, 0xaa5}}, @l2cap_info_rsp={{0xb, 0x2a, 0xa0}, {0x1ff, 0x3, "adf4137f90b4c50f3000dbb59ae05ccef83b649a610c94315134e1d02e69af2361f92bd90a25aebd7a7eb06dfc41d8477d9a00643a27719a630ef4f6c480e97da5bcfad4ede505cd31608370b8d0f9bcc9a2f971afb365cac225a82c7a158c0103d96643438a1f2111b1078ba36a9558c1bd3697c5de755a69f73093d4caabe19738496142e4d4048386b59f1ef9fe7276dbab05f125e12dd6384a8a"}}, @l2cap_move_chan_rsp={{0xf, 0x4, 0x4}, {0x3, 0x9}}, @l2cap_move_chan_cfm={{0x10, 0x2, 0x4}, {0xfffb, 0x9}}, @l2cap_conf_req={{0x4, 0x9d, 0x25}, {0xfeff, 0x8, [@l2cap_conf_mtu={0x1, 0x2, 0x3}, @l2cap_conf_fcs={0x5, 0x1}, @l2cap_conf_rfc={0x4, 0x9, {0x0, 0x50, 0x40, 0x5, 0x3de8, 0x5}}, @l2cap_conf_ews={0x7, 0x2, 0xd}, @l2cap_conf_rfc={0x4, 0x9, {0x4, 0x0, 0x6, 0x5, 0x401, 0x3}}]}}, @l2cap_conn_rsp={{0x3, 0x79, 0x8}, {0x4, 0x7, 0x9, 0x9}}, @l2cap_create_chan_req={{0xc, 0xfc, 0x5}, {0x8, 0x36, 0x3f}}, @l2cap_info_req={{0xa, 0x7, 0x2}, {0x2}}]}}, 0x111)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000480)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xec}, "aef1d34c6f5c30add74f5fb7e2811b895817d3f0e1b415f5b0bfdea073004a4d80d4afbfe45686b671ed27271f5a8b8e5f6b86f84facdbbef92048b7ccbe1d563d0df8754d95d2e7fad0f6663b4c8e6f2176309b2936a1e01a3bb04c8866369afc041b327abf1876e5847f3368a7c3ab7b27cae8298723b41671e59388f480d5163eca996c802c5a270bdcab0c04dfff654ad72a573a8d09d66d6572c20e2e0ac3cde382377d222e99e4af2fb2e4dbf5084b2ca3e6fa3df5dfb72c03043cf2f20c89f433afba0b22a0fa5ebac16af71c58fbdc830867f5630d1a52da88cd181f7b0a548b6a6dda9c3aee6697"}, 0xf0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000140)={'\x00', 0x400, 0x8, 0x9, 0x7})
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:17:45 executing program 6:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x2000000}])

06:17:45 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r0, 0x0, 0x0)
r1 = syz_io_uring_setup(0xbd, &(0x7f0000000480)={0x0, 0xe3ac, 0x4, 0x10002, 0x1e, 0x0, r0}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000637000/0x4000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:17:45 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000006c280)={0x5, [{}, {0x0, <r1=>0x0}], 0x7, "fc96b3979d826d"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f000006d280)={0x0, ""/256, 0x0, <r2=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f000006d480)={0x0, ""/256, 0x0, <r3=>0x0})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f000006d680)={<r4=>0x0, 0x0, "94935646b691dec8abdd962b351948c6b143f95ffded676837084eb8348b5e8fc68932fa2546bd2007f8f6e3c6089fd512eae7e3ef106be62a0154e23883b33139b2c283cf58568e582a296572fa9e7b7d51666d37bb6b78cebdf9480119251acaa7248a766e8411a683eafac4821737ce6a780fa04d5d4e51d47f8840d5ce11ecb2dd25ddf15a96c7e5d976d19bf3f6b60df4d133c6872edde76dbb876ba888a2fbd96a7ccdb350270de2d2ec6100dfcc9a4c0756ad4eebd11d1b2ad15c44135163e2e82a1eaeca7b97f8b9aa3d1486eef083d76e24799cca6e6efe0321dbf34c72137d72764cc47d33e3da03f22bbb26620343137dedfa209745ae5c5cd3f8", "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"})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f000006e680)={{<r5=>0x0, 0x4, 0x0, 0x5, 0x10001, 0x0, 0x100000001, 0x7f, 0x1, 0x0, 0x1, 0x0, 0x8, 0x0, 0x7ff}, 0x30, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f000006e740)={{<r6=>0x0, 0x1, 0x962b, 0x3, 0x1ff, 0x80000001, 0x40, 0x7fffffff, 0x1, 0xb5, 0x20, 0xd38, 0x0, 0x7, 0x1}})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f000006f740)={<r7=>0x0, 0x0, "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", "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"})
ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000070740)={{<r8=>0x0, 0x57d0, 0x6, 0x3, 0x1, 0x2, 0x3, 0x0, 0x7, 0x3, 0x4, 0x39c23b32, 0x77, 0x1000, 0xffffffffffffffcf}})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000071740)={0x6, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r9=>0x0}], 0x6, "13ce3996a04965"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000072740)={0x0, ""/256, 0x0, <r10=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000072940)={0x100000000, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r11=>0x0}], 0x4, "1f05b51aac0893"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000073940)={0x0, <r12=>0x0, "c4dcf1671e74a307e66448ef69a0e9f99fd3a0b3a9b6e6d173ccfc07483465db91a534740578a31dd1ce69d92330132542a269532f67ef7c299d811c9e3c406bae6b00b64171d3e59a595adbddbfb04d47e63485cb09e698a9f1f9d96740b172fe32b97e2ea6eef4dcf35e59cdfa501b2934f5dde01f451f4ef431befae3a24474e6e31fc598d7d8a8ea3b84704649aee13278328b8a18c350c45ebb88685fb4cd62b9a732c0e9f0a2bc90c246476002411d6a32622a64335092836fba3ccb2cea08102a9bf427de262bd8ef1d56f2c0030359cedaedae69d2cab6d37e86c796b39bcfcf082b1398adb4f9828108e5adb1a01c677f8a539eaa2a2e5e302f6f9d", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000074940)={0x0, ""/256, 0x0, <r13=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000074b40)={0x0, ""/256, <r14=>0x0})
[ 1599.479971] FAULT_INJECTION: forcing a failure.
[ 1599.479971] name failslab, interval 1, probability 0, space 0, times 0
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000074d40)={<r15=>0x0, 0x0, "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", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000075d40)={0x0, ""/256, 0x0, <r16=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000075f40)={0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r1}, {}, {0x0, r2}, {}, {}, {0x0, r3}, {0x0, r4}, {}, {}, {r5}, {}, {r6}, {0x0, r7}, {r8}, {}, {0x0, r9}, {0x0, r10}, {0x0, r11}, {r12}, {}, {}, {0x0, r13}, {r14, r15}, {0x0, r16}], 0xac, "29c6e27232261e"})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

[ 1599.481394] CPU: 1 UID: 0 PID: 32404 Comm: syz-executor.2 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1599.481416] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1599.481426] Call Trace:
[ 1599.481432]  <TASK>
[ 1599.481438]  dump_stack_lvl+0xfa/0x120
[ 1599.481462]  should_fail_ex+0x4d7/0x5e0
[ 1599.481485]  should_failslab+0xc2/0x120
[ 1599.481509]  __kmalloc_noprof+0xcd/0x680
[ 1599.481535]  ? __lock_acquire+0x694/0x1b70
[ 1599.481558]  ? memcg_list_lru_alloc+0x4da/0x760
[ 1599.481582]  memcg_list_lru_alloc+0x4da/0x760
[ 1599.481609]  ? __pfx_memcg_list_lru_alloc+0x10/0x10
[ 1599.481636]  ? get_mem_cgroup_from_objcg+0xf8/0x430
[ 1599.481665]  __memcg_slab_post_alloc_hook+0x130/0x9e0
[ 1599.481691]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 1599.481718]  ? __create_object+0x59/0x80
[ 1599.481746]  kmem_cache_alloc_lru_noprof+0x512/0x690
[ 1599.481771]  ? __raw_spin_lock_init+0x3a/0x110
[ 1599.481805]  ? __d_alloc+0x31/0xa10
[ 1599.481826]  __d_alloc+0x31/0xa10
[ 1599.481851]  d_make_root+0x42/0x90
[ 1599.481873]  shmem_fill_super+0x864/0xf40
[ 1599.481896]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1599.481918]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1599.481938]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1599.481956]  get_tree_nodev+0xdc/0x190
[ 1599.481976]  vfs_get_tree+0x93/0x340
[ 1599.481992]  path_mount+0x720/0x2130
[ 1599.482015]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1599.482041]  ? __pfx_path_mount+0x10/0x10
[ 1599.482064]  ? putname.part.0+0x11b/0x160
[ 1599.482089]  ? getname_flags.part.0+0x1c6/0x540
[ 1599.482129]  ? putname.part.0+0x11b/0x160
[ 1599.482156]  __x64_sys_mount+0x293/0x310
[ 1599.482178]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1599.482208]  do_syscall_64+0xbf/0x390
[ 1599.482229]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1599.482246] RIP: 0033:0x7f13ca8cc04a
[ 1599.482259] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1599.482274] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1599.482290] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8cc04a
[ 1599.482301] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1599.482311] RBP: 00007f13c7e40040 R08: 00007f13c7e40040 R09: 0000000020000000
[ 1599.482321] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1599.482331] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1599.482355]  </TASK>
[ 1599.531087] tmpfs: Bad value for 'mpol'
[ 1599.564095] FAULT_INJECTION: forcing a failure.
[ 1599.564095] name failslab, interval 1, probability 0, space 0, times 0
[ 1599.566133] CPU: 0 UID: 0 PID: 32413 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1599.566166] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1599.566180] Call Trace:
[ 1599.566190]  <TASK>
[ 1599.566200]  dump_stack_lvl+0xfa/0x120
[ 1599.566238]  should_fail_ex+0x4d7/0x5e0
[ 1599.566282]  should_failslab+0xc2/0x120
[ 1599.566320]  __kmalloc_noprof+0xcd/0x680
[ 1599.566366]  ? __lock_acquire+0x694/0x1b70
[ 1599.566398]  ? memcg_list_lru_alloc+0x4da/0x760
[ 1599.566447]  memcg_list_lru_alloc+0x4da/0x760
[ 1599.566507]  ? __pfx_memcg_list_lru_alloc+0x10/0x10
[ 1599.566570]  ? get_mem_cgroup_from_objcg+0xf8/0x430
[ 1599.566626]  __memcg_slab_post_alloc_hook+0x130/0x9e0
[ 1599.566663]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 1599.566713]  ? __create_object+0x59/0x80
[ 1599.566763]  kmem_cache_alloc_lru_noprof+0x512/0x690
[ 1599.566801]  ? __raw_spin_lock_init+0x3a/0x110
[ 1599.566873]  ? __d_alloc+0x31/0xa10
[ 1599.566902]  __d_alloc+0x31/0xa10
[ 1599.566954]  d_make_root+0x42/0x90
[ 1599.566990]  shmem_fill_super+0x864/0xf40
[ 1599.567036]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1599.567080]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1599.567117]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1599.567145]  get_tree_nodev+0xdc/0x190
06:17:45 executing program 6:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x2000000}])

[ 1599.567186]  vfs_get_tree+0x93/0x340
[ 1599.567219]  path_mount+0x720/0x2130
[ 1599.567259]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1599.567304]  ? __pfx_path_mount+0x10/0x10
[ 1599.567348]  ? putname.part.0+0x11b/0x160
[ 1599.567389]  ? getname_flags.part.0+0x1c6/0x540
[ 1599.567439]  ? putname.part.0+0x11b/0x160
[ 1599.567494]  __x64_sys_mount+0x293/0x310
[ 1599.567532]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1599.567600]  do_syscall_64+0xbf/0x390
[ 1599.567637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1599.567663] RIP: 0033:0x7efe1268304a
[ 1599.567683] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1599.567705] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1599.567728] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe1268304a
[ 1599.567744] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1599.567759] RBP: 00007efe0fbf7040 R08: 00007efe0fbf7040 R09: 0000000020000000
[ 1599.567774] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1599.567788] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1599.567858]  </TASK>
06:17:45 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000100)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x2, 0x2e}, @l2cap_cid_signaling={{0x2a}, [@l2cap_cmd_rej_unk={{0x1, 0x9, 0x2}}, @l2cap_info_req={{0xa, 0x7f, 0x2}, {0x8}}, @l2cap_info_req={{0xa, 0x0, 0x2}, {0x1}}, @l2cap_disconn_req={{0x6, 0x20, 0x4}, {0x3, 0x3}}, @l2cap_disconn_req={{0x6, 0x5, 0x4}, {0xffbb, 0xde10}}, @l2cap_disconn_req={{0x6, 0x1, 0x4}, {0x7b98, 0xe8e2}}]}}, 0x33)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_num_comp_pkts={{0x13, 0xd}, {0x3, [{0xc8, 0xd5}, {0xc9, 0x4}, {0xc8, 0x8}]}}}, 0x10)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:17:45 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 70)

06:17:45 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000040)=0x1)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r2=>r0, {0x8001}}, './file0\x00'})
fchownat(r2, &(0x7f0000000180)='./file0\x00', 0xffffffffffffffff, 0xee01, 0x2d8c1e816ee7349a)

06:17:45 executing program 6:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x2000000}])

06:17:45 executing program 4:
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x80000001}}, './file0/file0\x00'})
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20, 0x5, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x200}, 0x1c)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00'])
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:17:45 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x8402, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xffffffff, 0x0, &(0x7f0000000000)=0xa)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)
pwritev2(0xffffffffffffffff, &(0x7f0000000780)=[{&(0x7f0000000080)="ebf6e4b47a2de4c0cbaf7900404672b429c04e744f5ddbb1d41b0d4d4ff45ec96c8417fda99ce27e72cbf5bf64aed437df8eb0d0fe5da2d014bdb1dec8e0128933d895b341ea5a00596d02f93c1d2f36f6a934a995bfb28e245608e500d05aba08af18c144da71595edc5b1e01e62923ae3b224b271620b0ed1365d87f74014b7235f13a7bff732f9b2f62372f6a54f9032e7b1a8b7ea3a917a4bfd87f84224aa535c7daffdcce9e417d20ba9b733140353c0e4ae54b6fd71d022e223618f13ae6926d944440d2d61d7a17aff10a587da6", 0xd1}, {&(0x7f0000000180)="c5d3f1742846368ae04f3b13e155fdca4fc74a2554b07cb9894374026de3797a19923876ffebc1e022172a8b27c3d9f8b1a44dce7077c3eeff38ef63cc87c0c34493f48fcd0959957af6", 0x4a}, {&(0x7f0000000200)="d1dd146a67cb353c93c944834d55b5dcbad7f4e03c6ab40ee6b9da0fb85f1f83dccf5620f7e22ca5fd2a2931f0564e4021c39c25b06eda71f20bd786b0e0eb3a55819712566c6c92eee3586cbc0b39e3acff43221ddcf77d1015dc31bbddcfbd41aeb9f9b3f9c2912f5960a82d1489e6ed65ea32e5342cba116ad834e0a969c0ef40515b0d3f44bc284a6eac7a744285ba23b919721efde5ee316453", 0x9c}, {&(0x7f00000002c0)="d976666f7a0fb5b42fe651a7a40e38dc493a69af7ab44bbe2194b55da3ecc7847052e21d9b64133374bba530d671edc3329ba62b69ed910909969924efd6342621b719e606976bf942d36440bb4c9947e21a53ee8e5f20f6e39a3ea561325e0ef843d7937c2b0ef2ccd415d15ff321dee081230f6529ffb56dc6e66fa0d0640ea353b6e08e40d1dd77eb75632d149d45474e5ab5fdb24a483a891f49", 0x9c}, {&(0x7f0000000380)="424424d63dc90a70398aeaf34c1ef86509ac89cad0f4ee0840879f3b324cca8678befbaaa8df049b4ec373d0798a05f3bd5d6e11ac179c830e80430e2241bbb648617ba0a6d58ce68d9abd0ba6f563169f13f598d6110e9b649bc50e4b3e07347df29d7c67948bcb7cd9400c324b7c35d0d7fbc28d859bbfa2c895bfd01ca55aab123b75e5aeede4e7ed83cbe4c8f8e5cbb2eb6d6e9b3f0e2ad7349425b4f9bc92f9fa75a607388cd2862a503497211669623002ff31756f88fb71f59b58ad8780d9", 0xc2}, {&(0x7f0000000480)="2f60363e70fa4930b0b9af057a3e8e9d676ea03638025ff5209b060233de4c73d7af4e5466e98070b215d2d2f11ccdcf73c6b6d1c838cb977a589fc50821460b5a4a81babffd771e8239ac8ec904e81ad1be993e42e3806d43e15701db899d3438c02445d351e4bf7fa280633296f08ae449b8aa357c4edf32ea25769a2dc432a4fac9280baa6c4013980af6692517c65643665780a695", 0x97}, {&(0x7f0000000540)="4f51f5948cab2c7d7a2e527e1d7b084a411829f1e19e847083498cee1d3ded294cf21185b5bc417f5d51d222f568fd302f40987725a7cae31a9ef9575cffc57162a6baf33dc87bdb83cb5322a2409f293c414d1cb48f18253571c0b78fa346b9bdefe0c89f7d0ee62a9e6f4c1999aa918ad0bb42ff294c7b1f57d22557ed1c773d1f575d5c29017ba114f2dd3336670d5e399eda09b66068b858eaff0d7046e73bf4890b02d367debff9a42c7886e3139f81e05c10d56b7a406454fda2d850e047a4d1a1976546dfb0651257b4e06164c03783fe99", 0xd5}, {&(0x7f0000000640)="75910bbac08590e4b023b6e9767fcbb6272f96aadf7bf4cf306cc4f4e2c1e5ee4203b12af4b689d5da4e1b3f63e0d0c77df14273f3b38abc", 0x38}, {&(0x7f0000000680)="bf65819935bd02cd8eb06a468fc2ff14d399c1a320bf47bc5c68a743e1e6a9612332cd58c48dde95e1443723b47990bc391efb34b070b55c05fe5162dc11759b53c94ed6173f1e90626ee048d4a62edfca83481be4a20eb2cdeada207b8995eba3562518ce89f3342e1d353f043c9c0b3027ae1730620cdb9e0a20e60243f00bc5cbf8680fa579488603e82f23a05734138010eeed3b3f833b34a5915d519d258b0a3449d667ba6b99c7d1346b9478d18ff33f35a2b8b15e9e2d539100e5c2e35f3efed3e615e967714dd47b6867f315d07170b3ac8ddb7b8c2a", 0xda}], 0x9, 0x0, 0x48, 0x9)

06:17:45 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 70)

06:17:45 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448e0, 0x0)
r1 = inotify_init1(0x0)
writev(r1, &(0x7f0000000280)=[{&(0x7f00000002c0)="00000000009952dfc2c7d58d4e744c73efbce7d52a4dd8c5a59755affd856bf49e599b4a0bb3cdc2a53b91183c5580ba57fa71674072ce42ea8e63eed47dcf79777b54076e4a8e91d2d5f871", 0x4c}, {&(0x7f00000000c0)="d1d25f00d4daf108fd73ef7e91b1f95aac919fb75aaa420f833c1dac9af50f0f89a8f8508cfbf3b8c62d75e6b94eea01e6980a6f28a5cc04c4ac82fb8d5e2a766c3ae38ba451dca7ab00b7126058e5d7288e45aa351905d4edeb2a873968b18631bb5514e0c2161e9cf393ed1f3385c4bcf038f63cf27404555726749abeeb146b1d0d0596549cf7f4326252f596fef7dfb2ac25e112d8d1b8794f44be9d44dcabc261f4982ee3edc24cc5aa81b3c18728", 0xb1}, {&(0x7f0000000180)="e0a743845d01bdf92dafde809ba25715c7db935cd199487e5e80cb6670c15ca7c181506e121a371e54df100433d92bbb817b7d9009d0353efaa534494087d9a92db1c0c74d591245dac17b23f6b6fa4af2157965c79c6110b108e68609dcb28f40eb76e43c5a470ddc185ee0ec9c07ba6ca8158ba8c578db7bc48eca7b35352e43b19dbba03368478a4ded77e4c23a261e7c02a3f8bcdb47d276ff33fe7039368c159dfe99d4bb48670f6aabcc81e48d0797c6a995c8aaf75da6d4ea487b156767f3d891563a9d4068ba0d18e418125e99eabd48d54c0413abdf8f50efa8a4dbf51ab60aae79b06bf25126939e0b9bbe99139f62e858441c06151b9a8c", 0xfd}], 0x3)

06:17:45 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="040f0481000408c859c1b0713c4019010fb5a70d81e21963bac2dfc5af7cd562c345ed700190597793e48779792fa1a51245328f7d7a79c876f93e24bc73ca0ab94599bced5d0582fbc00891eec9b0dd53e9b5f7aad83bc1aab7040490241ddee1c68cafce9edfb6012fbd53ce3d1ab2b9c1631ee2e8431f4a23ed0eda8e7510477268fc365736a119666238cba3557c26ebc7015cd7e238d4"], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x11}, "c3bf885e448674ece202d659b3a05b3f98"}, 0x15)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:17:45 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 71)

06:17:55 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$cgroup_subtree(r0, &(0x7f0000000080), 0x2, 0x0)
dup3(r1, r0, 0x80000)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:17:55 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="02c81014001000050017030c000104a7060400ff0011000600"], 0x19)
syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2, 0xc}, @l2cap_cid_signaling={{0x8}, [@l2cap_disconn_rsp={{0x7, 0x0, 0x4}, {0x662, 0x5}}]}}, 0x11)
syz_emit_vhci(&(0x7f0000000480)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xbc}, "222ad8cda20a7bebcbf92e5dacf1045c56782c364737345376c2fa32fe876bff3e1ae06fa2a21219c9b51c2be4e5bc1059af396479ce77a95de09e9b98f071eed5b065cc615423aeff20a9a1c43d06add3b96e972ac7098d2799b7131241d7ee5b30e26f6d71a15e48f53412f952b096bf714fe5783ba597f8dade60797e7dd73ebd28b2584c4a5517caa8d20904aef3d0ba021d9ae5cb9ae8f5e2dacf1583333d80737eaabe9d9e43567e2792e8802778e0f5e5f1470dd4460423fd"}, 0xc0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r0, 0xf504, 0x0)
syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_ACLDATA_PKT={0x2, {0x0, 0x2, 0x0, 0x18}, @l2cap_cid_signaling={{0x14}, [@l2cap_move_chan_rsp={{0xf, 0x1, 0x4}, {0x72d, 0x1}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x4, 0x2}, {0x8001}}, @l2cap_cmd_rej_unk={{0x1, 0x7, 0x2}, {0x9}}]}}, 0x1d)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0xaa, 0x4000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3, 0x9, &(0x7f0000000140))

06:17:55 executing program 4:
prctl$PR_SET_SECCOMP(0x34, 0x2, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
fork()
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, {0x800}}, './file0\x00'})
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0xc1, 0xa8, 0x1c, 0x9, 0x0, 0x8, 0x8404, 0x8, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x2, 0x4, @perf_bp={&(0x7f00000000c0), 0x2}, 0x422, 0x9, 0x200, 0x2, 0x5, 0x7c86, 0x5, 0x0, 0x7ff, 0x0, 0x4}, 0xffffffffffffffff, 0x1, r1, 0x0)
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)

06:17:55 executing program 6:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x2000000}])

06:17:55 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
syz_emit_vhci(&(0x7f0000000140)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x2, 0x4d}, @l2cap_cid_signaling={{0x49}, [@l2cap_info_req={{0xa, 0xff, 0x2}, {0x7fff}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x4a, 0x2}, {0xffff}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x1, 0x2}, {0x2}}, @l2cap_info_req={{0xa, 0x0, 0x2}, {0x80}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x3, 0x2}, {0x3ff}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x1d, 0x2}, {0x80}}, @l2cap_conn_req={{0x2, 0x1f, 0x4}, {0x81, 0x1000}}, @l2cap_create_chan_req={{0xc, 0x7, 0x5}, {0xf7f7, 0x6, 0x81}}, @l2cap_move_chan_rsp={{0xf, 0x4, 0x4}, {0x9, 0x8}}, @l2cap_create_chan_rsp={{0xd, 0x0, 0x8}, {0x4, 0x9, 0x6e1, 0x7}}]}}, 0x52)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYRESHEX=r0], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:17:55 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 72)

06:17:55 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 71)

06:17:55 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000080)="dcec11434267fe083cd34bdb80ce56fe08270604e3f6574e7dfdc416507105c3e4de89c97f51bc72899e220e04aee2813b7dac1f35ddd3076e09327632ec01b39835a81e1e14ff6f0c26fccf201f17208b077ecc6c84d062e8f44500890408fbe0f6ed83cdf4e71d18a4a8908e88ed59a1d6c81a034fa88b935a8902690f918a5ba839662b5f5dc628eca8bbf615aeed1b03274c112cd48d0a27433d2cd2cda3f026a2799365112cf8326f68f274fe")
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r1, 0x400448c9, 0x0)

[ 1610.230434] tmpfs: Bad value for 'mpol'
[ 1610.235167] FAULT_INJECTION: forcing a failure.
[ 1610.235167] name failslab, interval 1, probability 0, space 0, times 0
[ 1610.236918] CPU: 1 UID: 0 PID: 32924 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1610.236951] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1610.236964] Call Trace:
[ 1610.236973]  <TASK>
[ 1610.236982]  dump_stack_lvl+0xfa/0x120
[ 1610.237014]  should_fail_ex+0x4d7/0x5e0
[ 1610.237046]  should_failslab+0xc2/0x120
[ 1610.237079]  __kmalloc_noprof+0xcd/0x680
[ 1610.237118]  ? __lock_acquire+0x694/0x1b70
[ 1610.237150]  ? memcg_list_lru_alloc+0x4da/0x760
[ 1610.237186]  memcg_list_lru_alloc+0x4da/0x760
[ 1610.237226]  ? __pfx_memcg_list_lru_alloc+0x10/0x10
[ 1610.237267]  ? get_mem_cgroup_from_objcg+0xf8/0x430
[ 1610.237309]  __memcg_slab_post_alloc_hook+0x130/0x9e0
[ 1610.237339]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 1610.237379]  ? __create_object+0x59/0x80
[ 1610.237421]  kmem_cache_alloc_lru_noprof+0x512/0x690
** 1 printk messages dropped **
[ 1610.237509]  ? __d_alloc+0x31/0xa10
[ 1610.237540]  __d_alloc+0x31/0xa10
[ 1610.237577]  d_make_root+0x42/0x90
[ 1610.237610]  shmem_fill_super+0x864/0xf40
[ 1610.237644]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1610.237678]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1610.237715]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1610.237742]  get_tree_nodev+0xdc/0x190
[ 1610.237773]  vfs_get_tree+0x93/0x340
[ 1610.237798]  path_mount+0x720/0x2130
[ 1610.237831]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1610.237868]  ? __pfx_path_mount+0x10/0x10
[ 1610.237903]  ? putname.part.0+0x11b/0x160
[ 1610.237940]  ? getname_flags.part.0+0x1c6/0x540
[ 1610.237982]  ? putname.part.0+0x11b/0x160
[ 1610.238024]  __x64_sys_mount+0x293/0x310
[ 1610.238057]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1610.238101]  do_syscall_64+0xbf/0x390
[ 1610.238133]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1610.238159] RIP: 0033:0x7efe1268304a
[ 1610.238178] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1610.238202] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1610.238226] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe1268304a
[ 1610.238254] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1610.238270] RBP: 00007efe0fbf7040 R08: 00007efe0fbf7040 R09: 0000000020000000
[ 1610.238285] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1610.238301] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1610.238339]  </TASK>
[ 1610.250875] ------------[ cut here ]------------
[ 1610.250928] WARNING: kernel/printk/printk_ringbuffer.c:1278 at get_data+0x364/0x400, CPU#1: syz-executor.5/32924
[ 1610.250976] Modules linked in:
[ 1610.251009] CPU: 1 UID: 0 PID: 32924 Comm: syz-executor.5 Not tainted 6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1610.251037] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1610.251050] RIP: 0010:get_data+0x364/0x400
[ 1610.251081] Code: e8 83 e0 07 83 c0 03 38 d0 0f 8c be fe ff ff 84 d2 0f 84 b6 fe ff ff 48 89 ef e8 37 89 5b 00 e9 a9 fe ff ff e8 fd b6 1e 00 90 <0f> 0b 90 45 31 e4 e9 3b ff ff ff e8 ec b6 1e 00 90 0f 0b 90 45 31
[ 1610.251103] RSP: 0018:ffff88806cf08720 EFLAGS: 00010046
[ 1610.251122] RAX: 0000000000010000 RBX: ffff88806cf08838 RCX: ffffffff81555256
[ 1610.251138] RDX: ffff88803c6a8000 RSI: ffffffff81555423 RDI: 0000000000000006
[ 1610.251154] RBP: ffff88806cf08800 R08: 0000000000000000 R09: 0000000000000000
[ 1610.251168] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff85d30690
[ 1610.251183] R13: 00003fffffffffff R14: 0000000000000000 R15: 0000000000000000
[ 1610.251201] FS:  00007efe0fbf7700(0000) GS:ffff8880e54f4000(0000) knlGS:0000000000000000
[ 1610.251223] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1610.251239] CR2: 00007fc18a3f7c28 CR3: 00000000072e7000 CR4: 0000000000350ef0
[ 1610.251254] Call Trace:
[ 1610.251262]  <IRQ>
[ 1610.251278]  _prb_read_valid+0x2f3/0x830
[ 1610.251324]  ? __pfx__prb_read_valid+0x10/0x10
[ 1610.251360]  ? perf_trace_lock_acquire+0xc9/0x700
[ 1610.251392]  ? __asan_memcpy+0x3d/0x60
[ 1610.251424]  ? __lock_acquire+0xc65/0x1b70
[ 1610.251463]  prb_read_valid+0x78/0xa0
[ 1610.251496]  ? __pfx_prb_read_valid+0x10/0x10
[ 1610.251531]  ? io_serial_in+0x10/0x80
[ 1610.251559]  printk_get_next_message+0x10b/0x570
[ 1610.251588]  ? __pfx_printk_get_next_message+0x10/0x10
[ 1610.251614]  ? __lock_acquire+0x694/0x1b70
[ 1610.251660]  ? lock_acquire+0x15e/0x2f0
[ 1610.251690]  ? console_flush_one_record+0x100/0xb20
[ 1610.251722]  ? lock_is_held_type+0x9e/0x120
[ 1610.251750]  console_flush_one_record+0x64f/0xb20
[ 1610.251783]  ? __pfx_console_flush_one_record+0x10/0x10
[ 1610.251813]  ? __lock_acquire+0x694/0x1b70
[ 1610.251851]  ? do_raw_spin_lock+0x123/0x260
[ 1610.251893]  __console_flush_and_unlock+0xb1/0x1d0
[ 1610.251918]  ? __pfx___console_flush_and_unlock+0x10/0x10
[ 1610.251944]  ? do_raw_spin_unlock+0x53/0x220
[ 1610.251968]  ? is_printk_cpu_sync_owner+0x32/0x40
[ 1610.251996]  ? is_printk_legacy_deferred+0x67/0x80
[ 1610.252027]  wake_up_klogd_work_func+0x17c/0x1e0
[ 1610.252053]  ? __pfx_wake_up_klogd_work_func+0x10/0x10
[ 1610.252080]  ? lock_is_held_type+0x9e/0x120
[ 1610.252110]  irq_work_single+0x128/0x260
[ 1610.252149]  irq_work_run_list+0x91/0xc0
[ 1610.252185]  update_process_times+0x12f/0x210
[ 1610.252214]  tick_nohz_handler+0x414/0x6d0
[ 1610.252241]  ? do_raw_spin_unlock+0x53/0x220
[ 1610.252261]  ? __pfx_tick_nohz_handler+0x10/0x10
[ 1610.252293]  __hrtimer_run_queues+0x60f/0xac0
[ 1610.252333]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 1610.252358]  ? ktime_get_update_offsets_now+0x252/0x3c0
[ 1610.252405]  hrtimer_interrupt+0x369/0x830
[ 1610.252448]  __sysvec_apic_timer_interrupt+0xbb/0x330
[ 1610.252482]  sysvec_apic_timer_interrupt+0x6b/0x80
[ 1610.252518]  </IRQ>
[ 1610.252525]  <TASK>
[ 1610.252535]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1610.252560] RIP: 0010:dump_stack_lvl+0x115/0x120
[ 1610.252582] Code: fc ff ff 4c 89 e2 31 f6 31 ff e8 86 97 72 fc e8 81 8e 9c fc 48 89 ee 31 ff e8 87 58 bc fc e8 22 5d bc fc e8 cd b9 c4 fc fb 5b <5d> 41 5c e9 13 5d bc fc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90
[ 1610.252604] RSP: 0018:ffff88804848f8c0 EFLAGS: 00000206
[ 1610.252622] RAX: 000000000000026f RBX: ffffffff85f036e0 RCX: 0000000000000040
[ 1610.252638] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff84b7ae03
[ 1610.252653] RBP: 0000000000000200 R08: 0000000000000001 R09: 0000000000000001
[ 1610.252667] R10: ffffffff86646857 R11: 0000000000000001 R12: ffffffff855191e0
[ 1610.252682] R13: ffffffff85f036f0 R14: 0000000000000000 R15: 0000000000000000
[ 1610.252710]  ? dump_stack_lvl+0x113/0x120
[ 1610.252738]  should_fail_ex+0x4d7/0x5e0
[ 1610.252766]  should_failslab+0xc2/0x120
[ 1610.252796]  __kmalloc_noprof+0xcd/0x680
[ 1610.252831]  ? __lock_acquire+0x694/0x1b70
[ 1610.252859]  ? memcg_list_lru_alloc+0x4da/0x760
[ 1610.252892]  memcg_list_lru_alloc+0x4da/0x760
[ 1610.252930]  ? __pfx_memcg_list_lru_alloc+0x10/0x10
[ 1610.252969]  ? get_mem_cgroup_from_objcg+0xf8/0x430
[ 1610.253008]  __memcg_slab_post_alloc_hook+0x130/0x9e0
[ 1610.253036]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 1610.253072]  ? __create_object+0x59/0x80
[ 1610.253109]  kmem_cache_alloc_lru_noprof+0x512/0x690
[ 1610.253144]  ? __raw_spin_lock_init+0x3a/0x110
[ 1610.253191]  ? __d_alloc+0x31/0xa10
[ 1610.253217]  __d_alloc+0x31/0xa10
[ 1610.253252]  d_make_root+0x42/0x90
[ 1610.253283]  shmem_fill_super+0x864/0xf40
[ 1610.253314]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1610.253346]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1610.253372]  ? __pfx_shmem_fill_super+0x10/0x10
[ 1610.253398]  get_tree_nodev+0xdc/0x190
[ 1610.253427]  vfs_get_tree+0x93/0x340
[ 1610.253451]  path_mount+0x720/0x2130
[ 1610.253481]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1610.253515]  ? __pfx_path_mount+0x10/0x10
[ 1610.253547]  ? putname.part.0+0x11b/0x160
[ 1610.253581]  ? getname_flags.part.0+0x1c6/0x540
[ 1610.253619]  ? putname.part.0+0x11b/0x160
[ 1610.253658]  __x64_sys_mount+0x293/0x310
[ 1610.253689]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1610.253731]  do_syscall_64+0xbf/0x390
[ 1610.253759]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1610.253782] RIP: 0033:0x7efe1268304a
[ 1610.253799] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1610.253820] RSP: 002b:00007efe0fbf6fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1610.253843] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efe1268304a
[ 1610.253858] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1610.253873] RBP: 00007efe0fbf7040 R08: 00007efe0fbf7040 R09: 0000000020000000
[ 1610.253889] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1610.253903] R13: 0000000020000080 R14: 00007efe0fbf7000 R15: 00000000200001c0
[ 1610.253938]  </TASK>
[ 1610.253947] irq event stamp: 624
[ 1610.253955] hardirqs last  enabled at (623): [<ffffffff84b7ae03>] dump_stack_lvl+0x113/0x120
[ 1610.253981] hardirqs last disabled at (624): [<ffffffff84c4c4df>] sysvec_apic_timer_interrupt+0xf/0x80
[ 1610.254021] softirqs last  enabled at (506): [<ffffffff813bc05c>] handle_softirqs+0x50c/0x770
[ 1610.254049] softirqs last disabled at (483): [<ffffffff813bc3f4>] __irq_exit_rcu+0xc4/0x100
[ 1610.254077] ---[ end trace 0000000000000000 ]---
06:17:56 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d0000000000fe3a0f"], 0x9)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_simple_pair_complete={{0x36, 0x7}, {0xc2}}}, 0xa)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:17:56 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x1, &(0x7f0000000080))
getdents(r0, &(0x7f0000000040)=""/32, 0x20)

06:17:56 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x5f)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x11}, "1ddabe223ddea8182e537a38dd35511dc6"}, 0x15)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
syz_emit_vhci(&(0x7f0000000100)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xfb}, "136b965ae3483afd70df8e6f13db8acf9cadc1345b5f4d38120b5228ce8849e8d6e4d97fb223d7c312709d835cb7bbc9a8572fd2bd39a3b22c743378b2c70a1149360872a99b72c8e9e3205cc0a2bf7f4cd5a6f0891c0f714f3dfa24657cdd616e89f68b4c53c25a7ff9ae2affb0917afbb138131adabd701f67a5fedefe2b88497dd11df7895ee8baba78a238b9d91e557753b4ee160badf80de9d2da94cbd99de95dbdc2c5a46cc7d2809aac9a0263e64c368ee4f091594b0aa900b7d86818996ff21d619fe653eb5fe5813a2c85514583015946bacc697038ac264997718867cb5cddbaaf17c8f7422504e3878274670f2b8c00e6d9010f9bc6"}, 0xff)

06:17:56 executing program 6:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x2000000}])

06:17:56 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 73)

06:17:56 executing program 7:
r0 = perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0xe9, 0x0, 0x8, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xc, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r1, 0x400448e0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r0, {0x2}}, './file0\x00'})
ioctl$FS_IOC_MEASURE_VERITY(r2, 0xc0046686, &(0x7f00000000c0)={0x3, 0x44, "5910e6bc2670c93d18a629dfd30b7055b6a46581411eacdd15128d50a1b5f915a20cc0a955f093ec11de2f65f0617ca8ed02852294c21d5126c437229f116fc068a3b4d3"})

06:17:56 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 72)

[ 1610.666667] FAULT_INJECTION: forcing a failure.
[ 1610.666667] name failslab, interval 1, probability 0, space 0, times 0
[ 1610.668679] CPU: 1 UID: 0 PID: 33097 Comm: syz-executor.2 Tainted: G        W           6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1610.668725] Tainted: [W]=WARN
[ 1610.668732] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1610.668746] Call Trace:
[ 1610.668754]  <TASK>
[ 1610.668763]  dump_stack_lvl+0xfa/0x120
[ 1610.668796]  should_fail_ex+0x4d7/0x5e0
[ 1610.668826]  ? alloc_vfsmnt+0x23/0x6e0
[ 1610.668859]  should_failslab+0xc2/0x120
[ 1610.668892]  kmem_cache_alloc_noprof+0x80/0x690
[ 1610.668931]  ? lock_release+0xc8/0x290
[ 1610.668972]  ? alloc_vfsmnt+0x23/0x6e0
[ 1610.669003]  alloc_vfsmnt+0x23/0x6e0
[ 1610.669039]  path_mount+0x1b6d/0x2130
[ 1610.669072]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1610.669108]  ? __pfx_path_mount+0x10/0x10
[ 1610.669145]  ? putname.part.0+0x11b/0x160
[ 1610.669182]  ? getname_flags.part.0+0x1c6/0x540
[ 1610.669223]  ? putname.part.0+0x11b/0x160
[ 1610.669264]  __x64_sys_mount+0x293/0x310
[ 1610.669297]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1610.669340]  do_syscall_64+0xbf/0x390
[ 1610.669372]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1610.669397] RIP: 0033:0x7f13ca8cc04a
[ 1610.669416] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1610.669439] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1610.669463] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8cc04a
[ 1610.669480] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1610.669495] RBP: 00007f13c7e40040 R08: 00007f13c7e40040 R09: 0000000020000000
[ 1610.669510] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1610.669525] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1610.669560]  </TASK>
06:18:05 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:18:05 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000140)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x1d}, @l2cap_cid_signaling={{0x19}, [@l2cap_move_chan_req={{0xe, 0x45, 0x3}, {0x8}}, @l2cap_info_req={{0xa, 0x7f, 0x2}, {0x2}}, @l2cap_create_chan_rsp={{0xd, 0x4, 0x8}, {0x1ff, 0x0, 0x8, 0x3}}]}}, 0x22)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0xffffffffffffff54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00c60007000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})
ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r0, 0x80089419, &(0x7f0000000180))
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_oob_data_request={{0x35, 0x6}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}}}, 0x9)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:18:05 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
getdents(r0, &(0x7f0000000040)=""/32, 0x20)
r1 = syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x1, 0x5, &(0x7f00000032c0)=[{&(0x7f0000000100)="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", 0x1000, 0x6987}, {&(0x7f0000001100)="01c946f6517a55511dbbc2a5ce0de35a05547a79598e366029842aa44ee5f7a9f40da923ee4aaf0815549d9b090bd40756fb1e22e5c2aac3b818a25ff8fe8af3d6ebc78a6195f4b46c168305737a5faf6ad205015c89a81646efa84bb5a721437d787c06bed248f13e408fdbc34f69d65f88c003600a36e9b37a2018971044ac610de7f44cdd4c4ea63dc488be6b86bb8b98eba98e98679b19d4786dd74f999b14c54de4ec30c322be976a", 0xab, 0x2}, {&(0x7f00000011c0)="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", 0x1000, 0x147b}, {&(0x7f00000021c0)="b2c592a99e2f2f48d465635f30c4bcd429995ae8ee2e9d639b3d9ebfbe70579d6f4f6335debed3e3b69055a38398ca57fc3f22e7d3eea9d4cae2997f9ba778f65491907b81f59430f1959234daf7aa454997d5362d18283723cc8d8d906fa041cc959310cea722feb9a534ab3a011949d4512f0f5e4771f33bf2473bc5a7dcfe839cbb29580c43d5c8bc2786e90fef1c7736032afe8f5edf7d435eca03a5661770f573dda0db5cb1316d8b23a5b5d3bf7d00815e894a597bb26bfa1849adbea10bfa4aa0", 0xc4, 0x7}, {&(0x7f00000022c0)="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", 0x1000, 0x6}], 0x40800, &(0x7f0000003340)={[{@nodots}, {@dots}, {@dots}, {@fat=@nfs}, {@fat=@codepage={'codepage', 0x3d, '857'}}], [{@smackfshat={'smackfshat', 0x3d, 'i(@{*'}}, {@dont_measure}]})
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r2, 0x0, 0x0)
r3 = openat$cgroup_ro(r0, &(0x7f0000003440)='blkio.throttle.io_serviced\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r2, 0xc0189378, &(0x7f0000003480)={{0x1, 0x1, 0x18, r1, {r3}}, './file0\x00'})
ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r1, 0xc080661a, &(0x7f00000033c0)={@desc={0x1, 0x0, @desc4}})

06:18:05 executing program 7:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r1, 0x400448e0, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r2, 0x0, 0x0)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x4281c2, 0x0)
r4 = syz_open_procfs$userns(0x0, &(0x7f0000004a00))
r5 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)
r6 = open(&(0x7f0000004c00)='./file0\x00', 0x420803, 0x60)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r7, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r9 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
write$P9_RCLUNK(r9, 0x0, 0x0)
io_submit(0x0, 0x8, &(0x7f0000004e40)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x7, 0x7ff, r0, &(0x7f0000000080)="142ce8555cf1cab09f24e059de46d658d41bcc40ce6100abe273a7c3ec07e65d7e0c29a3c47bbd80390dd23d333a2e1733339f4459d902ade6ef47567d546e89dad8e9d6ddaadb53e6e6629eae2d37d18925cdedf1fbdd1fbf158cd9dbed0cdc30385a48c4b3c31a2f6ba43bed67d9", 0x6f, 0x40, 0x0, 0x1, r2}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x7, 0x2, r0, &(0x7f0000000140), 0x0, 0x7a}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x6, 0x8, r3, &(0x7f0000000200)="e74f341fa1aaaf5e226c6e773d377075e3b1c59b36e2599a87a4acb2bea3c28cb08f6a2c83a3f1629e1a272f90b7fdd3cce31563398a34e4386b93d9511937eebf7ae56ae461f7cb19d8a6e51405969ed9904d686433ff5d2fe3813bd5227d4dc31620663f17ca6fa8df808ce51ee2ab2e1a0b04901f240dfbab810e5bfdb83637eeea8dafb94722351e20dccc308e8d133bc0aebe13", 0x96, 0x22, 0x0, 0x2}, &(0x7f0000004ac0)={0x0, 0x0, 0x0, 0x7, 0x6, r4, &(0x7f0000004a40)="5a693a475f0f179c4216d87727f5354f0a8674c04100e44af45b486ce4382b3d35bc51f672c6d770cc44a7574d71fbd0de94cf96c94973b6921938b162f1a92c381c1a49a429da7247040ed1c8b5e454659a0bacb5102c6757626480148d66052ad6d9bfc5714e1453a32bf930a0c6216e04f09274", 0x75, 0x100000001}, &(0x7f0000004b80)={0x0, 0x0, 0x0, 0x0, 0x5, r5, &(0x7f0000004b00)="d81c524849ec10445f4ccd70f90af7e5ba50b2c891a60459572e1108300f1bc8701f51de89877b7b2bd203fe95ed4e48369af0d64dfe24f352c97b290cc6239cd696d3de910eb8156c77e12db470e55b5f4342318399c528abacbc5fab66768721a459f66142575e83d190c85c65ba29886031c9c156abb5b05be51b732f", 0x7e, 0x9, 0x0, 0x3}, &(0x7f0000004c40)={0x0, 0x0, 0x0, 0x8, 0x6, r0, &(0x7f0000004bc0)="02f053fcbc35eb9628ac728a0875780dae35ceda87ed85f9d0e1878c85a74d75e9", 0x21, 0x10000, 0x0, 0x1, r6}, &(0x7f0000004d80)={0x0, 0x0, 0x0, 0x3, 0x8001, r7, &(0x7f0000004c80)="9e151f0933c6a796b9d21c7dfa18359e697fa6543c90660f338e5a319dcec6313c04dcb02d9afdaea086a383f97f68c025bdc19e969e53dce78a8ba0b9103126ef61a867d953ce22d9d667a4de1d9ca4d17b7cf8147046d6e0c957d93bf676b8e469ea4238bf7d287615c47ef1768e0d1869bbb710bca25d6e58d9d83c018f100f3d86cc5a9f7c5eb16966bea0ca2f718ebdfdede02812374a3ea04af6f8da13ba7b7d9f11d21614a01809c3fe007e711b5e4645ccf16509bc17734bb5b4663e3df9b788c50bf8bb4f3a", 0xca, 0x10001, 0x0, 0x1}, &(0x7f0000004e00)={0x0, 0x0, 0x0, 0x0, 0x2, r8, &(0x7f0000004dc0), 0x0, 0x76, 0x0, 0x3, r9}])

06:18:05 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 73)

06:18:05 executing program 6:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x2000000}])

06:18:05 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 74)

06:18:05 executing program 4:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0xb9, &(0x7f0000000480)={0x0, 0xc686, 0x9d5eee0eb989d8ad, 0x2, 0x1e}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000a9d000/0x3000)=nil, &(0x7f0000000500), &(0x7f0000000540))
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@mpol={'mpol', 0x3d, {'prefer'}}}]})
r1 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
r2 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
splice(r1, &(0x7f00000000c0), r2, &(0x7f0000000100)=0x3f, 0x8, 0x0)
fork()
wait4(0x0, &(0x7f0000000300), 0x1, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r3, 0x4008941a, &(0x7f0000000180))

[ 1619.747562] FAULT_INJECTION: forcing a failure.
[ 1619.747562] name failslab, interval 1, probability 0, space 0, times 0
[ 1619.748542] CPU: 0 UID: 0 PID: 33208 Comm: syz-executor.2 Tainted: G        W           6.18.0-rc2-next-20251024 #1 PREEMPT(voluntary) 
[ 1619.748562] Tainted: [W]=WARN
[ 1619.748566] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1619.748573] Call Trace:
[ 1619.748578]  <TASK>
[ 1619.748584]  dump_stack_lvl+0xfa/0x120
[ 1619.748606]  should_fail_ex+0x4d7/0x5e0
[ 1619.748628]  ? alloc_vfsmnt+0x23/0x6e0
[ 1619.748645]  should_failslab+0xc2/0x120
[ 1619.748664]  kmem_cache_alloc_noprof+0x80/0x690
[ 1619.748691]  ? lock_release+0xc8/0x290
[ 1619.748724]  ? alloc_vfsmnt+0x23/0x6e0
[ 1619.748739]  alloc_vfsmnt+0x23/0x6e0
[ 1619.748761]  path_mount+0x1b6d/0x2130
[ 1619.748780]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 1619.748804]  ? __pfx_path_mount+0x10/0x10
[ 1619.748825]  ? putname.part.0+0x11b/0x160
[ 1619.748845]  ? getname_flags.part.0+0x1c6/0x540
[ 1619.748870]  ? putname.part.0+0x11b/0x160
[ 1619.748896]  __x64_sys_mount+0x293/0x310
[ 1619.748915]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1619.748948]  do_syscall_64+0xbf/0x390
[ 1619.748967]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1619.748981] RIP: 0033:0x7f13ca8cc04a
[ 1619.748991] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1619.749003] RSP: 002b:00007f13c7e3ffa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[ 1619.749015] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f13ca8cc04a
[ 1619.749023] RDX: 0000000020000000 RSI: 0000000020000080 RDI: 0000000000000000
[ 1619.749031] RBP: 00007f13c7e40040 R08: 00007f13c7e40040 R09: 0000000020000000
[ 1619.749039] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000000
[ 1619.749047] R13: 0000000020000080 R14: 00007f13c7e40000 R15: 00000000200001c0
[ 1619.749081]  </TASK>
06:18:05 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x6, &(0x7f0000000040)=0x1)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0xffffff85, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a00"/42})

06:18:05 executing program 6:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
io_submit(r0, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x2000000}])

06:18:05 executing program 5:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 74)

[ 1619.864266] tmpfs: Bad value for 'mpol'
06:18:05 executing program 2:
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)) (fail_nth: 75)

06:18:05 executing program 0:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x81, 0x0, 0x804}}}, 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x2, 0x10}, @l2cap_cid_signaling={{0xc}, [@l2cap_conn_rsp={{0x3, 0x1, 0x8}, {0x0, 0x51e4, 0x18, 0x5}}]}}, 0x15)
syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_req={{0x17, 0x3, 0xc}, {0x401, 0x6a7, 0x4, 0xff, [0x1, 0x6]}}}}, 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "0494d67c4b98805ae0d9e0ddfbcbc1d645db42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"}, 0x33)
r1 = syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000140)=ANY=[@ANYBLOB="2a000000ffffffff85ff3d9959435cae63d3c1db0ddcc2f1ffff4391f901000000382194d7d8f87c9c1eafe9b0068018032b6e041a00"/68])
syz_emit_vhci(&(0x7f0000000140)=ANY=[], 0xf)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x9})

06:18:05 executing program 7:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000140)={0x7, &(0x7f0000000100)=[{0x300, 0x1, 0xc1, 0xe33}, {0xffff, 0x5, 0x0, 0xb450}, {0x5, 0x8, 0x20, 0xff}, {0x4, 0x8, 0x1, 0x6}, {0x9, 0x2, 0xf3, 0x4}, {0x8000, 0x77, 0x3, 0x6}, {0x3e5, 0x4, 0x20, 0x3ff}]})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000180)={0x40000000})
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/reboot', 0x1a100, 0x20)
ioctl$sock_bt_hci(r0, 0x400448e0, 0x0)

06:18:05 executing program 1:
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYRESHEX=0x0], 0x82)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="02c85022001e0001000f030000f305001107020007000000042a47001708"], 0x27)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="1075eb9c2004d5"], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="02c8101435100017030c000104a7060400ff00010006000000"], 0x19)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="030000502bbbe9325c2f4825ed4e2e796d40f44ecf7770235540cb73eb566be076f0696fc8ae901899bb90f39e9190b003e9e4cbae11c89a05bab2b57521c5d80fdc4c248dbc73be336b0e1cb200"/87], 0x54)
syz_emit_vhci(&(0x7f0000000500)=ANY=[@ANYBLOB="02c8a00c00080005000701040000f88100eaf4acaf2a930239302eed3175cab552281796cb66b178bb581eef36052ba8915905a0de1e6bd06c90aa6b000000"], 0x11)
syz_emit_vhci(&(0x7f0000000040)=ANY=[], 0x19)
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
getdents64(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000240)=ANY=[@ANYBLOB="8d00000000000000ff"], 0x9)
sendmsg$IPVS_CMD_GET_INFO(r0, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000540)={0x94, 0x0, 0x1, 0x70bd2e, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x4c7c}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}, @IPVS_CMD_ATTR_DAEMON={0x4c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e21}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @remote}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x6}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'batadv_slave_1\x00'}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e24}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'gre0\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xee5}]}, 0x94}, 0x1, 0x0, 0x0, 0x1}, 0x1)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB], 0xf)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="03c9002f0494d67c4b98805ae0d9e0ddfbcbc1d645ed42a5736dda56a84961190f3f762acbca53d59e612d207b614de46cc46c"], 0x33)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)={0x40000, 0x44, 0x10}, 0x18)
syz_open_dev$sg(&(0x7f0000000380), 0x1fb, 0x2000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000340)={0x2a, 0xffffffff, 0x9, "4391f9956513e2382194d7d8f87c9c1eafe9b0048018032b6e041a000000000000000000000000000400"})

06:18:05 executing program 3:
prctl$PR_GET_CHILD_SUBREAPER(0x25)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000))
clock_gettime(0x0, &(0x7f0000003f80)={<r1=>0x0, <r2=>0x0})
clock_gettime(0x0, &(0x7f00000001c0)={0x0, <r3=>0x0})
select(0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x0, r3/1000+60000})
recvmmsg$unix(r0, &(0x7f0000003dc0)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f0000000400)=[{&(0x7f0000000140)=""/27, 0x1b}, {&(0x7f0000000180)=""/27, 0x1b}, {&(0x7f00000001c0)=""/109, 0x6d}, {&(0x7f0000000240)=""/152, 0x98}, {&(0x7f0000000300)=""/92, 0x5c}, {&(0x7f0000000380)=""/103, 0x67}], 0x6, &(0x7f0000000480)=[@rights={{0x2c, 0x1, 0x1, [<r4=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r5=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x30}}, {{&(0x7f00000004c0), 0x6e, &(0x7f0000000980)=[{&(0x7f0000003b00)=""/17, 0x11}, {&(0x7f0000000580)=""/232, 0xe8}, {&(0x7f0000000680)=""/210, 0xd2}, {&(0x7f0000000780)=""/12, 0xc}, {&(0x7f00000007c0)=""/83, 0x53}, {&(0x7f0000000840)=""/65, 0x41}, {&(0x7f00000008c0)=""/192, 0xc0}], 0x7, &(0x7f0000000dc0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="38000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="200000000000000228f6b8f251bf544d19", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32], 0xa0}}, {{&(0x7f0000000ac0)=@abs, 0x6e, &(0x7f0000000d80)=[{&(0x7f0000000b40)=""/144, 0x90}, {&(0x7f0000000c00)=""/68, 0x44}, {&(0x7f0000000c80)=""/78, 0x4e}, {&(0x7f0000000d00)=""/74, 0x4a}], 0x4, &(0x7f0000004780)=ANY=[@ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES16=r3, @ANYBLOB="d41ea2547896bb452f1c60c289946eebcae4b5a1d889e7a3859ad1aa4367c2e6a94461333b660ae250d27cb33fa77a0e0445721ea44a926f6a9ab8b16869c101ee7dd5e30e79145070", @ANYRES32, @ANYRES32, @ANYBLOB="20000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c0000000000000001000000020000009a5278d4801ad3a9529c081a12c6eba34077c8748190be4ac50c22a031cfcb6bbca7fde8512d242084292fe9d49abfa674713dfcbb7374618d2ba30c29069a472a35b929fcf547d24a5f98c269b6ff296778dd50", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0x110}}, {{&(0x7f0000000f00), 0x6e, &(0x7f0000002400)=[{&(0x7f0000000f80)=""/89, 0x59}, {&(0x7f0000001000)=""/99, 0x63}, {&(0x7f0000001080)=""/11, 0xb}, {&(0x7f00000010c0)=""/135, 0x87}, {&(0x7f0000001180)=""/129, 0x81}, {&(0x7f0000001240)=""/206, 0xce}, {&(0x7f0000001340)=""/4096, 0x1000}, {&(0x7f0000002340)=""/174, 0xae}], 0x8}}, {{&(0x7f0000002480)=@abs, 0x6e, &(0x7f0000003980)=[{&(0x7f0000002500)=""/249, 0xf9}, {&(0x7f0000002600)=""/178, 0xb2}, {&(0x7f00000026c0)=""/32, 0x20}, {&(0x7f0000002700)=""/85, 0x55}, {&(0x7f0000002780)=""/69, 0x45}, {&(0x7f0000002800)=""/51, 0x33}, {&(0x7f0000002840)=""/125, 0x7d}, {&(0x7f00000028c0)=""/4096, 0x1000}, {&(0x7f00000038c0)=""/159, 0x9f}], 0x9, &(0x7f0000003a40)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}}, {{&(0x7f0000003a80), 0x6e, &(0x7f0000003b00), 0x0, &(0x7f0000003b40)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x68}}, {{&(0x7f0000003bc0)=@abs, 0x6e, &(0x7f0000003cc0)=[{&(0x7f0000003c40)=""/114, 0x72}], 0x1, &(0x7f0000003d00)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, <r6=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, <r7=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xa8}}], 0x7, 0x100, &(0x7f0000003fc0)={r1, r2+10000000})
setsockopt$inet_MCAST_MSFILTER(r7, 0x0, 0x30, &(0x7f0000004000)={0x2, {{0x2, 0x4e23, @multicast2}}, 0x1, 0x7, [{{0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}}, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x23}}}, {{0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}}, {{0x2, 0x4e24, @private=0xa010102}}, {{0x2, 0x4e24, @remote}}, {{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x26}}}, {{0x2, 0x4e22, @empty}}]}, 0x410)
getdents(r0, &(0x7f0000000040)=""/32, 0x20)
write$binfmt_script(r5, &(0x7f00000045c0)={'#! ', './file0', [{0x20, '@:@:}*{-+'}, {0x20, 'sched\x00'}, {}, {0x20, '\'*!'}, {0x20, ']!#:X\\]}'}, {0x20, 'w:[['}], 0xa, "0f6fa3ac8b724d114ead7090dbd439cd77eac8cb91f822927a50302d79068669d9d25d70f4ad9630e0a6320f58f7a32047cf0794dd4cabee4ac70dabf6beefa52bb5"}, 0x71)
r10 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00')
fchdir(r4)
write$P9_RCLUNK(r10, 0x0, 0x0)
getdents64(r8, &(0x7f0000000a00)=""/57, 0x39)
pread64(r9, &(0x7f0000000a80)=""/59, 0x3b, 0x37a7)
r11 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
close_range(r11, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_SEND(r9, 0x40489426, &(0x7f0000000e80)={{r11}, 0x6, &(0x7f0000000a40)=[0xf45, 0x6, 0x2, 0x9, 0x1ff, 0x10001], 0x6, 0x2, [0x4, 0x6, 0x8, 0x357]})
setsockopt$inet_group_source_req(r6, 0x0, 0x2c, &(0x7f0000004640)={0x1, {{0x2, 0x4e21, @local}}, {{0x2, 0x4e24, @private=0xa010102}}}, 0x108)
mknodat(r10, &(0x7f0000000080)='./file0\x00', 0x40, 0xf5a7)


VM DIAGNOSIS:
06:17:56  Registers:
info registers vcpu 0
RAX=0000000000000000 RBX=ffff88806cf3c6c0 RCX=ffffffff8168a4ec RDX=ffff8880486a1b80
RSI=ffffffff8168a4c6 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff88803e8ef6f8
R8 =0000000000000001 R9 =0000000000000001 R10=0000000000000001 R11=1ffff1100d9c6bb1
R12=ffffed100d9e78d9 R13=ffff88806cf3c6c8 R14=0000000000000001 R15=dffffc0000000000
RIP=ffffffff8168a4c8 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e53f4000 00000000 00000000
LDT=0000 fffffe6300000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fb3e3128d58 CR3=000000001da13000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff82904a85 RDI=ffffffff8890d660 RBP=ffffffff8890d620 RSP=ffff88806cf089a0
R8 =0000000000000000 R9 =ffffed10013d7046 R10=0000000000000000 R11=0000000000000001
R12=0000000000000005 R13=0000000000000010 R14=ffffffff8890d620 R15=ffffffff82904a70
RIP=ffffffff82904add RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007efe0fbf7700 00000000 00000000
GS =0000 ffff8880e54f4000 00000000 00000000
LDT=0000 fffffe6a00000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fc18a3f7c28 CR3=00000000072e7000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff
XMM02=ffffffffffffffffffffffffffffffff XMM03=ffffffffffffffffffffffffffffffff
XMM04=ffffffffffffffffffffffffffffffff XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000