1080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{&(0x7f0000001680)=@nl, 0x80, &(0x7f0000001780)=[{&(0x7f0000001700)=""/75, 0x4b}], 0x1, &(0x7f00000017c0)=""/4096, 0x1000}, 0x9}, {{&(0x7f00000027c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @remote}}}, 0x80, &(0x7f0000002d00)=[{&(0x7f0000002840)=""/71, 0x47}, {0xfffffffffffffffe}, {&(0x7f0000002940)=""/227, 0xe3}, {&(0x7f0000002a40)=""/197, 0xc5}, {&(0x7f0000002b40)=""/199, 0xc7}, {&(0x7f0000002c40)=""/144, 0x90}], 0x6}, 0x2}], 0x5, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:56:52 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, 0x0, 0x0)
r1 = dup(r0)
connect$bt_l2cap(r1, &(0x7f0000000280)={0x1f, 0x0, @none, 0x8}, 0xe)

16:56:52 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xea, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4b78, 0x0, @perf_config_ext={0x4}, 0x0, 0x4000000000000, 0xfffffc00, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xa, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:56:52 executing program 7:
r0 = socket$inet(0x2, 0x6, 0x7bcf)
sendto$inet(r0, &(0x7f0000000040)="60dac1ff3c967f2c9a7c2c832c000000", 0x10, 0x14, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1}}, 0x10)

16:56:52 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)

16:56:52 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(0xffffffffffffffff, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{&(0x7f0000001680)=@nl, 0x80, &(0x7f0000001780)=[{&(0x7f0000001700)=""/75, 0x4b}], 0x1, &(0x7f00000017c0)=""/4096, 0x1000}, 0x9}, {{&(0x7f00000027c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @remote}}}, 0x80, &(0x7f0000002d00)=[{&(0x7f0000002840)=""/71, 0x47}, {0xfffffffffffffffe}, {&(0x7f0000002940)=""/227, 0xe3}, {&(0x7f0000002a40)=""/197, 0xc5}, {&(0x7f0000002b40)=""/199, 0xc7}, {&(0x7f0000002c40)=""/144, 0x90}], 0x6}, 0x2}], 0x5, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

[ 2738.388654] Bluetooth: hci0: Opcode 0x0c03 failed: -4
16:57:01 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, 0x0, 0x0, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:57:01 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r1 = dup(0xffffffffffffffff)
connect$bt_l2cap(r1, &(0x7f0000000280)={0x1f, 0x0, @none, 0x8}, 0xe)

16:57:01 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = open_tree(r0, &(0x7f0000000040)='./file0\x00', 0x80000)
ioctl$sock_bt_hci(r1, 0xc0000036, &(0x7f0000000840)="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")
recvmmsg(r1, &(0x7f0000000680)=[{{&(0x7f0000000500)=@generic, 0x80, &(0x7f0000000300)=[{&(0x7f0000000100)=""/107, 0x6b}, {&(0x7f0000000180)=""/125, 0x7d}, {&(0x7f0000000200)=""/102, 0x66}, {&(0x7f0000000280)=""/48, 0x21}, {&(0x7f00000002c0)=""/9}, {&(0x7f0000001080)=""/4096, 0x1000}], 0x6, &(0x7f0000000380)=""/24, 0x18}, 0x1}, {{0x0, 0x0, &(0x7f00000003c0), 0x0, &(0x7f0000000400)=""/102, 0x66}, 0x400}, {{&(0x7f0000000480)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @remote}}}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000780)=""/153, 0x99}], 0x1, &(0x7f0000000600)=""/68, 0x44}, 0x8}], 0x3, 0x2102, &(0x7f0000000740)={0x77359400})
r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000003c0), 0xa500, 0x0)
r3 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r3, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f0000000580)={{0x1, 0x1, 0x18, r3, {0x7ff}}, './file0\x00'})
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r4, 0x800448f0, &(0x7f0000001040)={0x4, 0x3ef9, "88fe0b", 0x2})
recvfrom(r0, &(0x7f0000000940)=""/251, 0xfb, 0x40012100, &(0x7f0000000080)=@generic={0x8, "5f36aa1c2758f8297dcc1240666a060cab13c895cc7535779562f6b3554168eb0ee24cf9b99ee4bd78f380dbbacbf018215beddb2ef6b05db411dfc81d85171150512372fba487c8e9f31983e98ac542aa6a11e244bc17fc3a60cc62b18f2d3e754fbbe43a6e561ecc9f7f48b43704cac7889706ea50dc464521347f09a4"}, 0x80)

16:57:01 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

16:57:01 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0xea, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x1}, 0x0, 0x1, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$HCIINQUIRY(r2, 0x800448f0, &(0x7f0000000080)={0x0, 0x5, 'TWy', 0x6, 0x9})

16:57:01 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x2a0c, 0x4)
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000700)={{{@in6=@private1, @in6=@mcast2}}, {{@in6=@mcast2}, 0x0, @in6=@private2}}, &(0x7f0000000800)=0xe8)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10)
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$inet_group_source_req(r2, 0x0, 0x2f, &(0x7f00000005c0)={0x8, {{0x2, 0x4e20, @local}}, {{0x2, 0x4e21, @multicast2}}}, 0x108)
recvmsg(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000080)=""/62, 0x3e}, {&(0x7f0000000100)=""/177, 0xb1}, {&(0x7f0000000200)=""/142, 0x8e}, {&(0x7f00000002c0)=""/47, 0x2f}, {&(0x7f0000000300)=""/132, 0x84}, {&(0x7f00000003c0)=""/123, 0x7b}, {&(0x7f0000000440)=""/27, 0x1b}], 0x7, &(0x7f0000000500)=""/72, 0x48}, 0x21)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
socket$inet(0x2, 0xa, 0x3)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

16:57:01 executing program 0:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

16:57:01 executing program 3:
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:57:01 executing program 3:
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:57:01 executing program 3:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:57:01 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, 0x0, 0x0, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:57:01 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000000)="60da704f68c5e56c69e5e0972b04000000ccc8bdd666736ab270344002faaef1a90efb2c64ec044418d70bcf9734e55969dc89adb8a59f74acaf64aa8d", 0x3d, 0x4004b00, &(0x7f00000000c0)={0x2, 0x0, @loopback}, 0x10)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$ARPT_SO_GET_REVISION_TARGET(r1, 0x0, 0x63, &(0x7f0000000040)={'HL\x00'}, &(0x7f0000000080)=0x1e)

16:57:01 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r1 = dup(0xffffffffffffffff)
connect$bt_l2cap(r1, &(0x7f0000000280)={0x1f, 0x0, @none, 0x8}, 0xe)

16:57:01 executing program 3:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:57:01 executing program 5:
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(0xffffffffffffffff, 0xc02c5341, &(0x7f0000000080))
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$ptys(0xc, 0x3, 0x1)
sendfile(r1, 0xffffffffffffffff, &(0x7f0000000100)=0x4, 0x7fff)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:57:01 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, 0x0, 0x0, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:57:01 executing program 3:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:57:01 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r1 = dup(0xffffffffffffffff)
connect$bt_l2cap(r1, &(0x7f0000000280)={0x1f, 0x0, @none, 0x8}, 0xe)

[ 2747.315157] Bluetooth: hci4: Opcode 0x0401 failed: -4
[ 2747.352157] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 2748.543445] Bluetooth: hci4: command 0x0406 tx timeout
16:57:11 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448c9, 0x0)

16:57:11 executing program 7:
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
shmat(r0, &(0x7f0000ffb000/0x3000)=nil, 0x2000)
r1 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

16:57:11 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x2, @remote}, 0x10)

16:57:11 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
dup(r0)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000280)={0x1f, 0x0, @none, 0x8}, 0xe)

16:57:11 executing program 5:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r1 = dup(r0)
setsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
sendmsg$BATADV_CMD_GET_GATEWAYS(r1, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, 0x0, 0x200, 0x3, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x80000}, 0x851)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r2, 0x400448cb, 0x0)
ioctl$HCIINQUIRY(r2, 0x800448f0, &(0x7f0000000080)={0x0, 0x1, "8b8876", 0x2, 0x92})

16:57:11 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f00000010c0)=ANY=[@ANYBLOB="016de9fbbc1f", @ANYRES32, @ANYRES16=r0], 0x6)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
shutdown(r0, 0x0)
ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, &(0x7f0000001080)={'ipvlan0\x00', 0x4f8})
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000001100)={0x2, &(0x7f0000001040)=[{0x7, 0x3, 0x1, 0x1}, {0x0, 0x0, 0x7b, 0xfac}]})
close(r1)

16:57:11 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{&(0x7f0000001680)=@nl, 0x80, &(0x7f0000001780)=[{&(0x7f0000001700)=""/75, 0x4b}], 0x1, &(0x7f00000017c0)=""/4096, 0x1000}, 0x9}], 0x4, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:57:11 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, 0x0, 0x0)

16:57:11 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
dup(r0)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000280)={0x1f, 0x0, @none, 0x8}, 0xe)

16:57:11 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448c9, 0x0)

16:57:11 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, 0x0, 0x0)

16:57:11 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, 0x0, 0x0)

16:57:11 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x0, 0x2}, 0x6)

16:57:11 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{&(0x7f0000001680)=@nl, 0x80, &(0x7f0000001780)=[{&(0x7f0000001700)=""/75, 0x4b}], 0x1, &(0x7f00000017c0)=""/4096, 0x1000}, 0x9}], 0x4, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:57:11 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x0, 0x2}, 0x6)

16:57:11 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r1 = fcntl$dupfd(r0, 0x406, r0)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @local}, 0x10)

[ 2756.966053] Bluetooth: hci0: Opcode 0x0401 failed: -4
16:57:21 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x4, @remote}, 0x10)

16:57:21 executing program 0:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448c9, 0x0)

16:57:21 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, &(0x7f0000001040)={0x4, 0x0, "4f51e0", 0xff, 0x1f})
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
bind$bt_hci(r2, &(0x7f0000001080)={0x1f, 0x2, 0x2}, 0x6)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:57:21 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r2 = dup(r1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r3, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
recvmmsg(r3, &(0x7f0000000700)=[{{&(0x7f00000000c0)=@l2, 0x80, &(0x7f00000001c0), 0x0, &(0x7f0000000200)=""/90, 0x5a}, 0x4}, {{&(0x7f0000000280)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000300)=""/220, 0xdc}], 0x1, &(0x7f0000000440)=""/38, 0x26}, 0x6}, {{&(0x7f0000000480)=@phonet, 0x80, &(0x7f0000000680)=[{&(0x7f0000000500)=""/99, 0x63}, {&(0x7f0000000580)=""/218, 0xda}], 0x2, &(0x7f00000006c0)=""/61, 0x3d}, 0x8001}], 0x3, 0x2000, &(0x7f00000007c0))
bind$bt_hci(0xffffffffffffffff, &(0x7f00000008c0)={0x1f, 0x4, 0x3}, 0x6)
r4 = getpgrp(0x0)
sched_setaffinity(r4, 0x8, &(0x7f00000000c0)=0xfffffffffffffffd)
perf_event_open(&(0x7f0000000840)={0x0, 0x80, 0x8, 0xff, 0x8, 0x40, 0x0, 0x8575, 0x8004, 0xc, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x9, 0x1, @perf_bp={&(0x7f0000000800), 0x1}, 0x4006, 0x8f8, 0x0, 0x1b1cf88247111f00, 0x24a70e9e, 0x3, 0x0, 0x0, 0xe5, 0x0, 0x4}, r4, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r5 = open(&(0x7f0000000980)='./file0\x00', 0x82400, 0x26)
perf_event_open(&(0x7f0000000900)={0x2, 0x80, 0x40, 0x1, 0xe2, 0x8, 0x0, 0xded9, 0x20, 0x6, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x0, @perf_config_ext={0x0, 0x8}, 0x16280, 0xdc7, 0x5, 0x8, 0x4e, 0x1ff, 0x5ac, 0x0, 0x3, 0x0, 0xfff}, 0x0, 0x1, r5, 0xa)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0x4, 0x1}, 0x6)

16:57:21 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x0, 0x2}, 0x6)

16:57:21 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
dup(r0)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000280)={0x1f, 0x0, @none, 0x8}, 0xe)

16:57:21 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{&(0x7f0000001680)=@nl, 0x80, &(0x7f0000001780)=[{&(0x7f0000001700)=""/75, 0x4b}], 0x1, &(0x7f00000017c0)=""/4096, 0x1000}, 0x9}], 0x4, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:57:21 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x16}}, 0x10)
ioctl$SIOCGSTAMPNS(r0, 0x8907, &(0x7f0000000000))

16:57:21 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r1 = dup(r0)
connect$bt_l2cap(r1, 0x0, 0x0)

16:57:21 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)

16:57:21 executing program 0:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x0, 0x0)

16:57:21 executing program 7:
r0 = socket$inet(0x2, 0x6, 0xff)
r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x200c02, 0x0)
getsockopt$inet_buf(r1, 0x0, 0x29, &(0x7f0000000100)=""/39, &(0x7f0000000140)=0x27)
setsockopt$inet_int(r0, 0x0, 0x2, &(0x7f0000000000)=0x3, 0x4)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

16:57:21 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
r1 = open(&(0x7f0000000080)='./file0\x00', 0x10480, 0x100)
sendto(r1, &(0x7f00000000c0)="4aed7ee60130c0f5701c3a889d95", 0xe, 0x80, &(0x7f0000000100)=@nfc={0x27, 0x0, 0xfffffffd, 0x4}, 0x80)

16:57:21 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{&(0x7f0000001680)=@nl, 0x80, &(0x7f0000001780)=[{&(0x7f0000001700)=""/75, 0x4b}], 0x1, &(0x7f00000017c0)=""/4096, 0x1000}, 0x9}, {{0x0, 0x0, &(0x7f0000002d00)=[{&(0x7f0000002840)=""/71, 0x47}, {0xfffffffffffffffe}, {&(0x7f0000002940)=""/227, 0xe3}, {&(0x7f0000002a40)=""/197, 0xc5}, {&(0x7f0000002b40)=""/199, 0xc7}, {&(0x7f0000002c40)=""/144, 0x90}], 0x6}, 0x2}], 0x5, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:57:22 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r1 = dup(r0)
connect$bt_l2cap(r1, 0x0, 0x0)

16:57:31 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)

16:57:31 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cc, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
dup2(r1, r0)
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r3 = dup(r2)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
bind$bt_hci(r3, &(0x7f0000000080)={0x1f, 0x4}, 0x6)

16:57:31 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x8, @remote}, 0x10)

16:57:31 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
getsockopt$inet_buf(r0, 0x0, 0x2d, &(0x7f0000000100)=""/62, &(0x7f0000000140)=0x3e)
fsetxattr$security_ima(r0, &(0x7f0000000000), &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x16, 0x3)

16:57:31 executing program 0:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x0, 0x0)

16:57:31 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{&(0x7f0000001680)=@nl, 0x80, &(0x7f0000001780)=[{&(0x7f0000001700)=""/75, 0x4b}], 0x1, &(0x7f00000017c0)=""/4096, 0x1000}, 0x9}, {{0x0, 0x0, &(0x7f0000002d00)=[{&(0x7f0000002840)=""/71, 0x47}, {0xfffffffffffffffe}, {&(0x7f0000002940)=""/227, 0xe3}, {&(0x7f0000002a40)=""/197, 0xc5}, {&(0x7f0000002b40)=""/199, 0xc7}, {&(0x7f0000002c40)=""/144, 0x90}], 0x6}, 0x2}], 0x5, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:57:31 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r1 = dup(r0)
connect$bt_l2cap(r1, 0x0, 0x0)

16:57:31 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:57:31 executing program 5:
mlock(&(0x7f0000ffb000/0x4000)=nil, 0x4000)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
mlock2(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x1)
socketpair(0xb, 0x0, 0x80000000, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bind$bt_hci(r1, &(0x7f00000000c0)={0x1f, 0x1}, 0x6)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$getownex(r0, 0x10, &(0x7f0000000180)={0x0, <r2=>0x0})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000001c0)=ANY=[@ANYRES32=r1])
perf_event_open(&(0x7f0000000100)={0x706390a333bbd0af, 0x80, 0x1, 0x0, 0xfc, 0x7, 0x0, 0x3ff, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x937c, 0x2, @perf_config_ext={0x8000, 0x5}, 0x40000, 0xffffffffffffffe0, 0x0, 0x3, 0x5, 0x8, 0x927f, 0x0, 0x800, 0x0, 0x800}, r2, 0xd, 0xffffffffffffffff, 0x3)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:57:31 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r1 = dup(r0)
connect$bt_l2cap(r1, &(0x7f0000000280)={0x1f, 0x0, @none}, 0xe)

16:57:31 executing program 0:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x0, 0x0)

16:57:31 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)

16:57:31 executing program 7:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_MGMT_C_REMOVEDEF(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000240)={&(0x7f0000000080)={0x30, 0x0, 0x8, 0x70bd25, 0x25dfdbfd, {}, [@NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @broadcast}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}, 0x30}, 0x1, 0x0, 0x0, 0x8c2}, 0x40010)
r1 = socket$inet(0x2, 0x80003, 0xff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wpan1\x00', <r2=>0x0})
sendmsg$NL802154_CMD_SET_LBT_MODE(r0, &(0x7f00000003c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000380)={&(0x7f0000000180)={0x40, 0x0, 0x200, 0x70bd27, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}]}, 0x40}, 0x1, 0x0, 0x0, 0x20008000}, 0x8040800)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
recvfrom(r1, &(0x7f00000002c0)=""/175, 0xaf, 0x142, &(0x7f00000001c0)=@caif=@rfm={0x25, 0xedec, "1bddbe43ee94b35fd7da043ac01f686b"}, 0x80)

16:57:31 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000001540)=[{{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000040)=""/4096, 0x1000}, {&(0x7f0000001300)=""/63, 0x3f}, {&(0x7f00000015c0)=""/184, 0xb8}, {&(0x7f0000001680)=""/251, 0xfb}], 0x4}}, {{&(0x7f0000001040)=@in6={0xa, 0x0, 0x0, @private1}, 0x80, &(0x7f00000014c0)=[{&(0x7f0000001180)=""/192, 0xc0}, {&(0x7f0000001240)=""/184, 0xb8}, {&(0x7f00000010c0)=""/110, 0x6e}, {&(0x7f0000001300)}, {&(0x7f0000001340)=""/206, 0xce}, {&(0x7f0000001440)=""/69, 0x45}], 0x6}, 0x4}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$SIOCGSTAMP(r0, 0x8906, &(0x7f0000001140))

16:57:31 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{&(0x7f0000001680)=@nl, 0x80, &(0x7f0000001780)=[{&(0x7f0000001700)=""/75, 0x4b}], 0x1, &(0x7f00000017c0)=""/4096, 0x1000}, 0x9}, {{0x0, 0x0, 0x0}, 0x2}], 0x5, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:57:39 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

16:57:39 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000b40)=[{{&(0x7f0000000100), 0x6e, &(0x7f0000000080)=[{}], 0x1, &(0x7f0000000180)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, <r1=>0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x100}}, {{&(0x7f0000000280)=@abs, 0x6e, &(0x7f00000004c0)=[{&(0x7f0000000300)=""/111, 0x6f}, {&(0x7f0000000380)}, {&(0x7f00000003c0)=""/60, 0x3c}, {&(0x7f0000000400)=""/184, 0xb8}], 0x4, &(0x7f0000000500)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x100}}, {{&(0x7f0000000600)=@abs, 0x6e, &(0x7f0000000a40)=[{&(0x7f0000000680)=""/153, 0x99}, {&(0x7f0000000740)=""/68, 0x44}, {&(0x7f00000007c0)=""/93, 0x5d}, {&(0x7f0000000840)=""/41, 0x29}, {&(0x7f0000000880)=""/225, 0xe1}, {&(0x7f0000000980)=""/148, 0x94}], 0x6, &(0x7f0000000ac0)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0x80}}], 0x3, 0x2000, &(0x7f0000000c00))
setsockopt$inet_MCAST_LEAVE_GROUP(r1, 0x0, 0x2d, &(0x7f0000000c40)={0x8, {{0x2, 0x4e23, @rand_addr=0x64010102}}}, 0x88)

16:57:39 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0xb, @remote}, 0x10)

16:57:39 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_group_source_req(r0, 0x0, 0x2f, &(0x7f0000000080)={0x1, {{0x2, 0x4e20, @multicast2}}, {{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x30}}}}, 0x108)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r2, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r3 = dup(r2)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
sendmsg$NL80211_CMD_DEL_STATION(r3, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x28, 0x0, 0x2, 0x70bd25, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_STA_VLAN={0x8}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x28}, 0x1, 0x0, 0x0, 0x90}, 0x840)
ioctl$sock_bt_hci(r1, 0x400448cb, 0x0)

16:57:39 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000001100)={0x1f, 0x0, 0x2}, 0x6)
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000001040), 0x10b400, 0x0)
write$binfmt_script(r1, &(0x7f0000001080)={'#! ', './file0', [{}, {0x20, '{,'}], 0xa, "531cf699af87e2c2b629fec9ce6b99856fea54ab0a8f9e6f560b13d03c8fc814faa614e5e74e5e80593e1862a638737302bdd918b08a53e7772eaa4d5d5c3d4477f42882876f4e7384f48fc9e8a10b0730423e739fba80b0cd62fe1f8a9befb046cb00cea2293f28ed7bc9cf71b8d8"}, 0x7e)
ioctl$CDROMRESUME(r1, 0x5302)
r2 = dup3(r1, r1, 0x80000)
ioctl$sock_bt_hci(r2, 0x800448d4, &(0x7f0000001240)="139b4bec3d721c391ecf873861ee4feb9d6ff91974ce75fb0009b0482f365cc13171d47876")
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:57:39 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)={0x1, @le_set_event_mask={{0x2001, 0x8}, {"b703fab87a581532"}}}, 0xc)

16:57:39 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{&(0x7f0000001680)=@nl, 0x80, &(0x7f0000001780)=[{&(0x7f0000001700)=""/75, 0x4b}], 0x1, &(0x7f00000017c0)=""/4096, 0x1000}, 0x9}, {{0x0, 0x0, 0x0}, 0x2}], 0x5, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:57:39 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)
kexec_load(0x2, 0x3, &(0x7f00000001c0)=[{&(0x7f0000000080)="e771bfe738aad60c8dc39b28b240a76e03e4cf379e44ba1bdf646976262ab864a3c5c130a699efb2cd9d3444a09fc34aee528c8ae3965a8565e3457d8534b2533171d7d9c01d", 0x46, 0x40, 0x2}, {&(0x7f0000000000)="cef94e3ebd", 0x5, 0x200, 0x4}, {&(0x7f0000000240)="5ace672c48fadc1f705f64c17a2a7433b65064d7785fab7115bf45a0f6a842f42b5a42c67f870b781b1c477bddfa6f99dca84dc40e1d59018693cb869539dbd914fa63ca49ec7d332510514b0c7bfbdc954b72b6fa6ad49cdc3106118d17f664006181d50765d7866fad0e4cdf49519b0c0c3a8394b135f7c8e2c31ab5a2abf5ea3898a59888d587019363935f5b7ae365a4ece199b4cb", 0x97, 0x2589}], 0x140000)

16:57:39 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000180)=0x27)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x20, 0x0, 0x0, 0x0, 0x0, 0x47550, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xffffffffffffffff}, 0x198, 0x0, 0x0, 0x2}, r1, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:57:39 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @multicast2}, 0x10)

16:57:39 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)
kexec_load(0x2, 0x3, &(0x7f00000001c0)=[{&(0x7f0000000080)="e771bfe738aad60c8dc39b28b240a76e03e4cf379e44ba1bdf646976262ab864a3c5c130a699efb2cd9d3444a09fc34aee528c8ae3965a8565e3457d8534b2533171d7d9c01d", 0x46, 0x40, 0x2}, {&(0x7f0000000000)="cef94e3ebd", 0x5, 0x200, 0x4}, {&(0x7f0000000240)="5ace672c48fadc1f705f64c17a2a7433b65064d7785fab7115bf45a0f6a842f42b5a42c67f870b781b1c477bddfa6f99dca84dc40e1d59018693cb869539dbd914fa63ca49ec7d332510514b0c7bfbdc954b72b6fa6ad49cdc3106118d17f664006181d50765d7866fad0e4cdf49519b0c0c3a8394b135f7c8e2c31ab5a2abf5ea3898a59888d587019363935f5b7ae365a4ece199b4cb", 0x97, 0x2589}], 0x140000)

16:57:39 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{&(0x7f0000001680)=@nl, 0x80, &(0x7f0000001780)=[{&(0x7f0000001700)=""/75, 0x4b}], 0x1, &(0x7f00000017c0)=""/4096, 0x1000}, 0x9}, {{0x0, 0x0, 0x0}, 0x2}], 0x5, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:57:39 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0xffffffffffffffff}, 0x6)

16:57:39 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000001080)={0x1f, 0x2, 0x4}, 0x6)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
r1 = socket$nl_audit(0x10, 0x3, 0x9)
recvfrom(r1, &(0x7f0000001040)=""/26, 0x1a, 0x10000, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:57:39 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000000)="6f247d61aa2051004f83cad4c682", 0xe, 0x20000800, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f0000000100)={0x0, "b122b9c72ee645e9a26a7e64d458875d"})
r1 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

16:57:39 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)
kexec_load(0x2, 0x3, &(0x7f00000001c0)=[{&(0x7f0000000080)="e771bfe738aad60c8dc39b28b240a76e03e4cf379e44ba1bdf646976262ab864a3c5c130a699efb2cd9d3444a09fc34aee528c8ae3965a8565e3457d8534b2533171d7d9c01d", 0x46, 0x40, 0x2}, {&(0x7f0000000000)="cef94e3ebd", 0x5, 0x200, 0x4}, {&(0x7f0000000240)="5ace672c48fadc1f705f64c17a2a7433b65064d7785fab7115bf45a0f6a842f42b5a42c67f870b781b1c477bddfa6f99dca84dc40e1d59018693cb869539dbd914fa63ca49ec7d332510514b0c7bfbdc954b72b6fa6ad49cdc3106118d17f664006181d50765d7866fad0e4cdf49519b0c0c3a8394b135f7c8e2c31ab5a2abf5ea3898a59888d587019363935f5b7ae365a4ece199b4cb", 0x97, 0x2589}], 0x140000)

[ 2785.184898] Bluetooth: hci0: Opcode 0x0c03 failed: -4
16:57:50 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

16:57:50 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_group_source_req(r0, 0x0, 0x2f, &(0x7f0000000080)={0x1, {{0x2, 0x4e20, @multicast2}}, {{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x30}}}}, 0x108)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r2, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r3 = dup(r2)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
sendmsg$NL80211_CMD_DEL_STATION(r3, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x28, 0x0, 0x2, 0x70bd25, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_STA_VLAN={0x8}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x28}, 0x1, 0x0, 0x0, 0x90}, 0x840)
ioctl$sock_bt_hci(r1, 0x400448cb, 0x0)

16:57:50 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000040)="6a9af19d7a", 0x5, 0x40, &(0x7f0000000000)={0x2, 0x0, @rand_addr=0x64010101}, 0x10)
sendto$inet(r0, &(0x7f0000000080)="c545dc5eaa62c28e314cf29f3aedb100f0d7acfafea65a290bc7de31301a0758274483f202c76eb1d92924fc12707fd44bafebc9f8bb5a018a0d8424a2f46607ffff6f327294e5925493a0d05b431464d8", 0x51, 0x20000041, &(0x7f0000000100)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x39}}, 0x10)

16:57:50 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{&(0x7f0000001680)=@nl, 0x80, &(0x7f0000001780)=[{&(0x7f0000001700)=""/75, 0x4b}], 0x1, &(0x7f00000017c0)=""/4096, 0x1000}, 0x9}, {{0x0, 0x0, &(0x7f0000002d00)=[{&(0x7f0000002840)=""/71, 0x47}, {0xfffffffffffffffe}, {&(0x7f0000002940)=""/227, 0xe3}, {&(0x7f0000002a40)=""/197, 0xc5}, {&(0x7f0000002b40)=""/199, 0xc7}], 0x5}, 0x2}], 0x5, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:57:50 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r1, &(0x7f0000001040)={0x1, @le_remove_cig={{0x2065, 0x1}, {0x5}}}, 0x5)

16:57:50 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0xe, @remote}, 0x10)

16:57:50 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0xffffffffffffffff}, 0x6)

16:57:50 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = signalfd4(r0, &(0x7f0000000080)={[0x8]}, 0x8, 0x80000)
ioctl$sock_bt_hci(r1, 0x800448d7, 0x0)

16:57:50 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0xffffffffffffffff}, 0x6)

16:57:50 executing program 0:
kexec_load(0x0, 0x0, 0x0, 0x0)

16:57:50 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000100)="60da7056a506ccc8bd2563073c967f6a9af19d7a5d885b0d4e25e4a816daf65d9609e13e6028a0b73e6613ff3d3c85e3f1da8dfdd903138f83c2a54ff2d56deeffa86a0c529cf3279dcf85a5c60ddfda0d6f63dd001e4ce1a318e2e1a25578b28e88b23baee477eb5421a31c1a885adb0d1376700b4782443b1c36d503bd43780b", 0x81, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
getsockopt$ARPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x63, &(0x7f0000000000)={'IDLETIMER\x00'}, &(0x7f0000000080)=0x1e)
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$IP_VS_SO_SET_ZERO(r1, 0x0, 0x48f, &(0x7f0000000040)={0x73, @remote, 0x4e23, 0x4, 'fo\x00', 0x8, 0x5, 0x5}, 0x2c)

16:57:50 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{&(0x7f0000001680)=@nl, 0x80, &(0x7f0000001780)=[{&(0x7f0000001700)=""/75, 0x4b}], 0x1, &(0x7f00000017c0)=""/4096, 0x1000}, 0x9}, {{0x0, 0x0, &(0x7f0000002d00)=[{&(0x7f0000002840)=""/71, 0x47}, {0xfffffffffffffffe}, {&(0x7f0000002940)=""/227, 0xe3}, {&(0x7f0000002a40)=""/197, 0xc5}], 0x4}, 0x2}], 0x5, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:57:50 executing program 2:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

16:57:50 executing program 5:
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r0=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f0000000140)={0x24, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r0}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x8, 0x11d, 0x0, 0x1, [{0x2}]}]}, 0x24}}, 0x0)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000180)=0x27)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r2, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r3 = dup(r2)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(0xffffffffffffffff, &(0x7f0000001580)={&(0x7f0000001480)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000001540)={&(0x7f00000014c0)={0x64, 0x0, 0x3a1, 0x70bd2d, 0x25dfdbfc, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x80000001, 0x2c}}}}, [@NL80211_ATTR_WDEV={0xc, 0x99, {0x0, 0x71}}, @NL80211_ATTR_PID={0x8, 0x52, 0xffffffffffffffff}, @NL80211_ATTR_PID={0x8, 0x52, r1}, @NL80211_ATTR_NETNS_FD={0x8, 0xdb, r3}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x65}, @NL80211_ATTR_PID={0x8}]}, 0x64}, 0x1, 0x0, 0x0, 0x20044004}, 0x40)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r5 = fcntl$dupfd(r4, 0x0, 0xffffffffffffffff)
ioctl$sock_bt_hci(r5, 0x0, &(0x7f0000000100)="fe09f44ba7d6196f5eed0f1359fc")
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cpuset.effective_mems\x00', 0x0, 0x0)
sendmsg$AUDIT_TTY_GET(r5, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x10, 0x3f8, 0x60a, 0x70bd2b, 0x25dfdbfb, "", ["", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x1}, 0x20040011)
bind$bt_hci(r6, &(0x7f00000000c0)={0x1f, 0x2, 0x3}, 0x6)
r7 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000140), 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$AUDIT_USER_TTY(r6, &(0x7f0000001340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000001300)={&(0x7f00000002c0)={0x1010, 0x464, 0x200, 0x70bd27, 0x25dfdbff, "37e4f752f7ebbad9b01f669477056d5e70cf9cfa918e8785adc7e0e21d09491ce42acdc0eafaa377aa35605c447c2e984a2ac2d36d4f12a45874a3013b0b399e7ff872e319ce6b007f36e456387303055a2254924ba1c74bddcf3e8615a26d658ddd843e3aa83a90363f7f9fe78f65da33f2c8822ea242fd12f17f15aa566c2d23d45687984434e72db580e2aa161771f1f124cd0151ea123b5547b7cc3e3be149c3e15ef8213a4c0b46b2e81a133e2f6d361caa74904863ce794540197514e28a0f01bc0a13492dc077b70a5510acfd0d9d7894683837f42fa10998acce1be44120dc42c7b17610d2f738f1dcae5c9a78867bc13c794699f24f7b4429a983558c9d1d66937fbf91cbd6d61a7b47a830cdab3c9b6f013e9e00a4e58df06bb810f4b0d1820985019b80dfe649a761d18e5547d5732b624654aced249080485902cc0948aa159aae6828e6c182cbc5350e98229cfbf3ab466157d4387483e67f11abb555ee6f91c34ff3ada644c743b0840072e24f5c27de583aefb2e794bc94788a6c820eb2d5689105f332db63be0da0ebc104a4c11cbbfebe75ca951563fe74ebfd7ae3632bea0e458b26bc2e2ba6c246e62578a8026c2bb0fcb3ea4028124823b8ddf3c3e4ef3672e1d342618ea8fdc073e0de40f6577f06e14b95230f8b914bafaa77fbc6348fe24af564419d92e0da124dfbcbbb3817878298249cbfb36d82c7a55cdb178f1813bf9117bc10dbe6aef7394f3e33f825bd8a20e9274430b9ce4fdd0b90910b7f708ccb1a0f798f2bfdd1e8c96ab733d7b54e7a0bfd3afd4fd05730c195945a80198c5da9bed61d95918a5e1d0c09687a6413694790a8756df28f7593e7ae84f680be69af79f144f0e047b0e77cf6167117d48fc34d106095afce33cc49009e888d9a4cf664c355dea34d40ef5dc579c105a9f56ee69c5c8c995da41d732c1d3b35a2cc0309196858973f8fc6852a76c7dd83123b5e9c9034a0cb255f20e392a26b2f9c9a7aa603453bec3b0b9606e10227f2f67e98cdbccbd117fa792374de843487c4f5ac3a807d83707cabc8e5d970e42a01c2a27d7fdba4bc71451c0608435e3a6ab337daef20a39f711aed237b5e925900ab8dd1f266f5afb443628860b99d759576f9d3413d5647e44543c7863b20792477e82a5dd14bda14b07ae0c705ceee4056b95ad476d54b196d3bdc2d4ccf94d18753412baa32aef0f19dcc9b34503a2de58e39d943182f2be495254d859b664b591a320138a0b2cab96d7d929650fe1e36251f9fb6dc85415e2f8f544a76b22bcc3fbdc521e8ebf8558a0b2da2a8c72bc1331baaf5af355898c8b98d740f6d1750e9882b130eec2dfe57487a6a7484c8da7f0e2191a6821a8187ff3ccc921d1730570e1e8db2bdfaede1fe97e7f65ace593ca66ea78dd5bbbb96de739cfaff1cda59aaaf6b7afd54dfd7b2f31efb0ae630ed4940c5c2c93419488931b8401125aadc492313d9819335fedc59ed3f669b613935ceb3d9d68ef43ab907679be80bb88585658ded00bedf0c7856698516dd66157a0b38e399d6e06cb2f84f876712dc166cc7573d7ba7f485cbf4410c61ac8e972f27daa26bfe2f2496f159bf7124552abef3a893f53abb76a0a4bd1166805bd3a95dff0a897b3570a05548e4ca091b71236f6f0d0d47d7f389106ed7d45ce9a35d5357ac4609045ff28692b5110ebc6aa9889d8424c93f474daf0d32791d90412e790b5bbed3a9f56db9913e044816eadfa3d15fd94f64812588ca67de147bf3adedc2daf2ad57b35bc09d90ebc8b4f69933070532f32fe7b319a93fc70226f3c20246aa0ac3d90a4d79d1a10e4644cd7e7de091e72955fdda2b9ce8dcac9f50df8e5eff148d293be0de81e036e4332ff5019fcad350b169183e3cee5fdeb7f30502e9fe69ac86c4e5e83b9387d880e49456b0f454def3e775f65789f21a4ab7058d6bf7af9695180029879a0c0c3a5f8a951d8956af60b8854f8fce54e81d296bfc49ef773b7e82fcdbc53736dd6986307ba9d91f3af61538a524362520c275459944ba277b83b321d5e003a85baf2bcf0885069c38a7d0fa27d7cce3f79cf643eda0ccb0095f6594d24b747ed337c342671abe2677402787030a905d3a6d358a958056a1387ef3d670fe7c92aa5439b9ced5aed2483763e0fd6864bcacfcd0a18ee23d5dcbbce8752729175617ecae1ed61132d8091b2284b7ee556ae8c553ee0f2463ab69b15439a7bdbaff0d04ae6f6d411cf9026e28d2c8d4dcae9020da9e9d8e75868fe690dcb4393b0b393761a2717ce753498339b803e44579b8c6c924591879286e277c182d3769ae9df693da1867ec8be4957172ee69ee366e466f2d3d6ef3174ae91abfeceb77da0d6da28ef9e94aad5647f6d96561db159df2e391685e42b000a6a90e872d8b4801372f3d9dd6c0621b004ea862e141b036f2de53a9aaf104cc5c3dc254e749f138215be9eb8196076b7fff0a52e4b1f4d9a6e1204172a43a5be8e17dcfe8d49978ab90a5f9a38e9e792b07034547d3d87c4eb28c107a1cb8d7a72ae973b37a737916a6593f1307079d1209988359a334e7581b282a31cf0682fe88dc16f6f29d80d2a5f6c06ffdb20febd6dd030f9cce7b00b19c324834c951b5c9e87059bfa46387b90da6a2c169b57799aa86f4003e312df964e81b87ab2d53d1b38aa5f28cbe86444605eb00a37d6b01a8b51613164eeed62239177b79b41f754ff3cf9fd2699e3c71cc084243c9b40159fbdb4a56910173a578f753f7341b2cdf14f9e9b49581873a415db221a3e71ba066111fa693b83cbca8948657f733017830fdee4eea957d74703300a16584e28d51223c310e628d5833dbf8d286ed7cdbd08a1b8f5d5fd75cca1b92de30712186a1060df55beef12aeab3ca09212c4cdde448f02e87a71dba121717545fa7a252c14097710f6f5a93fa0cc3106603a7dce3f7d8766cab9b8342e8574746a9868be6a6532d0bb65c3b771710363003c247dc7fa24723b4ba8071e01b7c01b596c751d5156ca1332848efe3008c259eecc0d39e4b172be04bcf751bf490c64fd888a1df0fda521175546a68976a54d2a4a9666f15201afc5d436356117ee8ddf23e23d07e2ff3443cd9ff428ed2295991b69237e6848ef3a3e4225f4b9c7b6ed430c35a72a27a5fa6e153bb8521481fff49d7cfc0bd9c2693542395206aec68a5f0e11e335c945ac3bae2634b4b8a8044cf78c9fd499eb1f186417d894f197dc7e13dab9fb88241f140bb0ccb9284da7fa9b42c4f0e2c8b2b8f01aa16e60a70d5afbf25f8272166fac764031ce4b19d69f6390a31d0936b58461490142e8f660dfac094ecb11d4eccddf6e623b32f28275674bb40ccd99b5b56de05b589613807078faf571e95d540cafb8e98f2242c9f097acc488f83478d685bf6ea9d9e2f366f1a77d23370460876014521768f4e2bef7e947d90adf70835c4681aa7552bafa7b9023e9121cc98908b971f6234b1c66397e374e1b6ad51e27cc1ab4449c30317ab927518b187588c00a90b78ef4c215ed5b5e63028bfa6abcc545f038c4ac7b55febe50eab7349cd6b9f0fd48a61b899c080f19dfbd0cb8fc325a714ff8cda40aac31f8f4a1156697e9475bd6b465cdbda275f353a097b329d6e2d6e7a9f7ae6bad4d2e2c76847d42487010d190ce805acae74e3bd9eda6bfa65a58269932aba19753b403220c38b210d639a1c0b42de84db234a11f4aa96f988c5532451aec85d81b09bbacbc5450aa90fd7b6ae15eb5080dddfc6b38f52e212e2f89ac77e604a123d58fededa87741e0751a1460b1967f2ee3fde0cca4b5f598c682016da1296d2c188470a337f4cd49f4aaa18738c275b496145db4c0a70a7142117cb781738ad501515dff540c67c4dd1e23583d7b5f6aaa1f8fd57cea8f43ad1c7c8d4c33ee59038419d14111363beb4d530f42d24750c000b09b7ac237d1ef7b27ca0db693eb0e4e138aacbd252f7d16d90436d779147ad82eef678c9c931f02c407720354dcada94e1eacfee228f768e7ae952b57a916f095bbd6b6944f1ed76bffdca24e00b083d8059bdce45b02f02ad62a28416bfdaf123a60409aa5d7c18e3ed80892494a58b023465a2c41b492ea4fa62f4ac90dd26e65ac6f0208f19478b5dd51149a7ff46c17af356fef7939503beb76a7be2d0c35624ef18884c97b7af40ccae53a40b8daae9c032820cbc90476d4fcdd69e9a24a2601185025e0183b21f023b7e7ade3685a647990999394db6d5f3e3803cd45da2475037b11aec0119a59e4e882a1be801745913c96ac920f3b75357bb763d3049d3d87a2e0a14e085d8ad3062062dcca499424443df52a978df37bfde1f6791321b268c7e96409471a8eeffeda9f935db7bf621d441203c4d9e4dd51b7ef3993a8cb6234d261bc0562f483d9a893de25229290a78197b4f2e59bd4a157e06d909101ce27659b0bcddee0d65a3a509ec478d24997e68c8c374bec8a7e959ceaf0735d2d4d03395e9a88ab536c78e58466ebb7e4ef22ea92630910a83852c659e202c7458fb806027bfbed72da6bb14f086e246fd7b2369a3f98dc4a7d19db6003840e348f7d6300e3f10cad07e725866eae86abb94d914af989d7082195e4092c5d8885a7b023300cb161f0521d83ab2382abc6e3e02bb320d320c913dc80827b24cd3b2a0328be0fa054d251944bd4863c91fac1979b52c5312ff0879c34b0918af0aea5964f71e219017e510f434468673e1a2d94f797618485ee5aa8fa2f78da923ea5ca508e81111dd326654c091ad4ca019e102fb4cb48453be499b944699ff4ca62970cbf8ef0ac3fbfbfa5f3e83d5e26eda47c741ff4a669ead5128f8e2c056eeca6e94093a94f41672c3eeb099d624f46347c20fd2fa3f30c83797b404da24c23fe0a56923fab6ea8e8e6ae5f7defbb9092b830e896242eeec80ac38978bebf15af83b4d907916e83b7729b9359ee3a7634004d408a20576615c983fc0b1d98b4aae21a00d6daeb92a19a4020cb92f87510f9737be83819ae7f29c91d7274244bbd5ba6a72d9e05f364855b311727e56be5dc3d34d49d223c3b46860a8754f210b1afc674c554d7e8258fad1af5f48148393b2adf315749821e451d78ed6aa92bdc551921cb697e60fc577a36ce6bded5526c5fca0646999a8a3850a6485c6ce24f5e2812462b4b6c4776738e0dc4490867b1944d727caa11b628b9259aa6161051bdb38eaed4a5448a7860373d8e22a2febabe2a7876a1094665c293c4ff9721b7e07183f1b38dab9051aeadd2de59ddcbb30d4c2e045cc69946773f614c17113bae760fc97c8e694f66cf4c5bc256a5923bcb00c592100420a2731ee0772b4dbf92aac5fbed9cc05baa207fa3fffcbbaf4d5523217f133e68fb7c52e80122a07b23657f696b12756fce322731d25be682578b3f73780b2fdec498ef3f4ba762cef6b02e3181a51951c1a53491330e4fb1fca9404bcd867dcc3eac0aa38bac316b7937ec4131a96715c9689014a45e99578f85ec52848d4af18ec29f03f985e20e106c001ed8983de66ebe8d38432df47d9223593236b2d7a10807fe7ebc69df57d993bd5ef0cda964fa812063b4d3bb07e91f48148d2f4e3eb9f14ad97c33ecf38d4bcf485bad06554f70a75dd69db7416cabc9c93d981754e4bb4e92ad40e0ea8b320df85dc40c6c8d3eb49d9829bb9dafce6aa62367637bcef4eb51baaefd9ee2cf645006f93c331bac00713fcd5fb9e09fca79eefa1049d6ea6e11f013eac", ["", "", ""]}, 0x1010}, 0x1, 0x0, 0x0, 0x24040821}, 0x4000)
ioctl$sock_bt_hci(r4, 0x400448cb, 0x0)
bind$bt_hci(r5, &(0x7f0000001440)={0x1f, 0x3, 0x3}, 0x6)
perf_event_open(&(0x7f00000013c0)={0x2, 0x80, 0x3f, 0x1, 0x8, 0x4, 0x0, 0x100000000, 0x400, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x859, 0x2, @perf_bp={&(0x7f0000001380)}, 0x8108, 0x800, 0x200, 0x0, 0x6, 0x5, 0x9, 0x0, 0x10001, 0x0, 0x4}, 0x0, 0x6, r7, 0x0)

16:57:50 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000001080)={{0x1, 0x1, 0x18, <r1=>r0, {0x2}}, './file0\x00'})
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:57:50 executing program 0:
kexec_load(0x0, 0x0, 0x0, 0x0)

16:57:50 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_group_source_req(r0, 0x0, 0x2f, &(0x7f0000000080)={0x1, {{0x2, 0x4e20, @multicast2}}, {{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x30}}}}, 0x108)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r2, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r3 = dup(r2)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
sendmsg$NL80211_CMD_DEL_STATION(r3, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x28, 0x0, 0x2, 0x70bd25, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_STA_VLAN={0x8}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x28}, 0x1, 0x0, 0x0, 0x90}, 0x840)
ioctl$sock_bt_hci(r1, 0x400448cb, 0x0)

16:57:50 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x8904, 0x0)

16:57:50 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
sendto$inet(r0, &(0x7f0000000000)="366afbe4304714b67eb7337d11c50565e6c10f31d1a8ba4c53740d597c2395a08223a8a3c850987fb2453cb4a12993cf4256067c4e04c6f58cb9b64596", 0x3d, 0x20000040, 0x0, 0x0)

16:57:59 executing program 0:
kexec_load(0x0, 0x0, 0x0, 0x0)

16:57:59 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{&(0x7f0000001680)=@nl, 0x80, &(0x7f0000001780)=[{&(0x7f0000001700)=""/75, 0x4b}], 0x1, &(0x7f00000017c0)=""/4096, 0x1000}, 0x9}, {{0x0, 0x0, &(0x7f0000002d00)=[{&(0x7f0000002840)=""/71, 0x47}, {0xfffffffffffffffe}, {&(0x7f0000002940)=""/227, 0xe3}], 0x3}, 0x2}], 0x5, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:57:59 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$bt_hci_HCI_TIME_STAMP(r0, 0x0, 0x3, &(0x7f0000000080)=0x8, 0x4)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:57:59 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x8902, 0x0)

16:57:59 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x8904, 0x0)

16:57:59 executing program 7:
socket$inet(0x2, 0x80003, 0xff)
r0 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xaf}}, 0x10)

16:57:59 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x13, @remote}, 0x10)

16:57:59 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
bind$bt_hci(r0, &(0x7f0000001080)={0x1f, 0x4, 0x1}, 0x6)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001040)=0x1, 0x4)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
r3 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r3, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
ioctl$sock_netdev_private(r3, 0x89f5, &(0x7f0000001180)="adf4aa256b32b976cb75a22951e65656656a6d9115ad9b4a232305d0eaf103000c3ec3b2f6c6e2a2a58430134bc8159c48c7cb6b6181ae0c17a53edea4a148ea716cbac93a00aecf32fac0328e8a5c5ae31c69e69a2058f7e9c5ae8d86e6963f3f14fc7181dc5602ea24251c9042a81fda775c4fe3adf4087e4bc31a7a9405139fcd8c53fa13100da6a4d427000712c452c631029638d871aaaf9a3ecf2ac4e9436f3944c4f5fb1e006decf8119f02eef7a373502de06b7f0b9cc12c")

16:57:59 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x8902, 0x0)

16:57:59 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$IP_VS_SO_SET_DELDEST(r1, 0x0, 0x488, &(0x7f0000000100)={{0x9, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x4e24, 0x3, 'none\x00', 0x10, 0xfffffffd, 0x80}, {@multicast1, 0x4e24, 0x2, 0x5, 0x9, 0x9}}, 0x44)

16:57:59 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xaa0, 0x1, &(0x7f0000000140)=[{&(0x7f0000000100)="437664b7534d090638360b99bcdbed91e5676bea636815418fdb6f50f77e8e5660078f7ab32d446d6efeeb9b705afe1f35822559d56dc0686394f73cda", 0x3d, 0x2}], 0x160020, &(0x7f0000000180)={[{@iocharset={'iocharset', 0x3d, 'cp869'}}, {@rodir}, {@shortname_lower}, {@uni_xlateno}, {@uni_xlateno}], [{@euid_lt}, {@obj_role={'obj_role', 0x3d, '-\'@%}'}}, {@mask={'mask', 0x3d, '^MAY_READ'}}, {@uid_gt={'uid>', 0xee01}}, {@appraise_type}, {@fsname={'fsname', 0x3d, '{-'}}, {@fsmagic={'fsmagic', 0x3d, 0x7fffffff}}, {@uid_eq}, {@defcontext={'defcontext', 0x3d, 'sysadm_u'}}, {@fowner_gt}]})
r3 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r3, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r4 = open$dir(&(0x7f00000002c0)='./file0\x00', 0x404100, 0x18)
r5 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r5, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r6 = openat$vcs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
r7 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r7, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r7, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
ioctl$FIDEDUPERANGE(r2, 0xc0189436, &(0x7f0000000400)={0x8, 0x81, 0x9, 0x0, 0x0, [{{r3}, 0x1}, {{r1}, 0x8}, {{r1}, 0x9}, {{r0}, 0x3}, {{r4}, 0xb304}, {{r5}, 0x2c}, {{r6}, 0xae8}, {{r1}, 0x39}, {{r7}, 0x800}]})
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:57:59 executing program 0:
kexec_load(0x0, 0x0, &(0x7f0000000040), 0x0)

[ 2804.536274] loop5: detected capacity change from 0 to 5
[ 2804.563031] loop5: detected capacity change from 0 to 5
16:57:59 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x8, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:57:59 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r4=>0x0})
sendto$packet(r2, 0x0, 0x608, 0x0, &(0x7f0000000040)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @dev}, 0x14)
sendmmsg$sock(r1, &(0x7f0000000240)=[{{&(0x7f0000000100)=@xdp={0x2c, 0x0, r4, 0x32}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000180)="fa06e20e5db26cd50e73b5a219a05414e348eb7834f5130386649d264774c41c83f51573b28837c0cabd800043a7757fa6f86f1a1cd7b3b25ef59d44fbaec3bf983fdb3962df44bd7ee5cb5634", 0x4d}, {&(0x7f0000000000)="11f60c257278a312be7e7528294362762a1e59aafd8bd7a98a377ea5cb8710735ac9", 0x22}], 0x2, &(0x7f0000000200)=[@mark={{0x14, 0x1, 0x24, 0x800}}], 0x18}}], 0x1, 0x40)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

16:57:59 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0xea, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$sock_bt_hci(r2, 0x400448e6, &(0x7f0000000080)="412402f45590e480c7838056b4902f")

16:57:59 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
r1 = accept$inet(r0, &(0x7f0000000000)={0x2, 0x0, @loopback}, &(0x7f0000000080)=0x10)
sendto$inet(r1, &(0x7f0000000100)="f18ca14b18f17ac98044032094bd57fe0f0b95909b8cdc50a87590a97e1732eeab025fc0b7cc934dd7c3675895f2cf183d15c75d62ef0cd831516b232972be2f347a4904e707feea097e36e3a9", 0x4d, 0x8011, &(0x7f0000000180)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x3, @multicast1}, 0x10)

16:57:59 executing program 0:
kexec_load(0x0, 0x0, &(0x7f0000000040), 0x0)

16:57:59 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{&(0x7f0000001680)=@nl, 0x80, &(0x7f0000001780)=[{&(0x7f0000001700)=""/75, 0x4b}], 0x1, &(0x7f00000017c0)=""/4096, 0x1000}, 0x9}, {{0x0, 0x0, &(0x7f0000002d00)=[{&(0x7f0000002840)=""/71, 0x47}, {0xfffffffffffffffe}], 0x2}, 0x2}], 0x5, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:57:59 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:57:59 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xaa0, 0x1, &(0x7f0000000140)=[{&(0x7f0000000100)="437664b7534d090638360b99bcdbed91e5676bea636815418fdb6f50f77e8e5660078f7ab32d446d6efeeb9b705afe1f35822559d56dc0686394f73cda", 0x3d, 0x2}], 0x160020, &(0x7f0000000180)={[{@iocharset={'iocharset', 0x3d, 'cp869'}}, {@rodir}, {@shortname_lower}, {@uni_xlateno}, {@uni_xlateno}], [{@euid_lt}, {@obj_role={'obj_role', 0x3d, '-\'@%}'}}, {@mask={'mask', 0x3d, '^MAY_READ'}}, {@uid_gt={'uid>', 0xee01}}, {@appraise_type}, {@fsname={'fsname', 0x3d, '{-'}}, {@fsmagic={'fsmagic', 0x3d, 0x7fffffff}}, {@uid_eq}, {@defcontext={'defcontext', 0x3d, 'sysadm_u'}}, {@fowner_gt}]})
r3 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r3, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r4 = open$dir(&(0x7f00000002c0)='./file0\x00', 0x404100, 0x18)
r5 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r5, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r6 = openat$vcs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
r7 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r7, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r7, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
ioctl$FIDEDUPERANGE(r2, 0xc0189436, &(0x7f0000000400)={0x8, 0x81, 0x9, 0x0, 0x0, [{{r3}, 0x1}, {{r1}, 0x8}, {{r1}, 0x9}, {{r0}, 0x3}, {{r4}, 0xb304}, {{r5}, 0x2c}, {{r6}, 0xae8}, {{r1}, 0x39}, {{r7}, 0x800}]})
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

[ 2804.824769] loop2: detected capacity change from 0 to 5
16:58:08 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0) (fail_nth: 1)

16:58:08 executing program 0:
kexec_load(0x0, 0x0, &(0x7f0000000040), 0x0)

16:58:08 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000100)="60da7056a593ccc8bd2563073c967f6a9af19d7a2f85c70ec30fbabd50c8b23d985df68c9943283b03636771905013cce38bd679c136cae946b31e554615e34b2c2dd2ec6fb65f8620101f96aa062b1c2ce86fdaa0881fd831ed7d6b3263dd578602ead6b11673d064f36edb28c65f9d54139df84678bb619c38797fc13da3a83b092fdcbb9e8a90f4", 0x89, 0x20048b41, &(0x7f00000000c0)={0x2, 0x800, @rand_addr=0x64010101}, 0x10)

16:58:08 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x2, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:58:08 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x3f, 0x8, 0xf8, 0x81, 0x0, 0x3, 0x26442bb44852f244, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0xffff, 0x4, @perf_config_ext={0x80, 0x9}, 0x14010, 0x619, 0x3, 0x5, 0x5, 0x6, 0x84d, 0x0, 0x5, 0x0, 0x9e}, 0xffffffffffffffff, 0x9, r2, 0x8)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:58:08 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{&(0x7f0000001680)=@nl, 0x80, &(0x7f0000001780)=[{&(0x7f0000001700)=""/75, 0x4b}], 0x1, &(0x7f00000017c0)=""/4096, 0x1000}, 0x9}, {{0x0, 0x0, &(0x7f0000002d00)=[{&(0x7f0000002840)=""/71, 0x47}], 0x1}, 0x2}], 0x5, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:58:08 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x14, @remote}, 0x10)

16:58:08 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000001100)={&(0x7f0000001040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000010c0)={&(0x7f0000001080)={0x24, 0x0, 0x8, 0x70bd2d, 0x25dfdbfc, {}, [@GTPA_FLOW={0x6, 0x6, 0x4}, @GTPA_VERSION={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x28085}, 0x20040044)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

[ 2813.694004] FAULT_INJECTION: forcing a failure.
[ 2813.694004] name failslab, interval 1, probability 0, space 0, times 0
[ 2813.695650] CPU: 1 UID: 0 PID: 19354 Comm: syz-executor.3 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2813.695678] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2813.695690] Call Trace:
[ 2813.695697]  <TASK>
[ 2813.695705]  dump_stack_lvl+0xfa/0x120
[ 2813.695751]  should_fail_ex+0x4d7/0x5e0
[ 2813.695777]  ? avc_has_perm_noaudit+0x59/0x3d0
[ 2813.695801]  should_failslab+0xc2/0x120
[ 2813.695833]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 2813.695859]  ? __alloc_skb+0x2ab/0x370
[ 2813.695892]  ? __alloc_skb+0x2ab/0x370
[ 2813.695916]  ? cred_has_capability.isra.0+0x1bd/0x2c0
[ 2813.695943]  __alloc_skb+0x2ab/0x370
[ 2813.695969]  ? __pfx___alloc_skb+0x10/0x10
[ 2813.696001]  ? trace_cap_capable+0x156/0x1b0
[ 2813.696032]  create_monitor_ctrl_open+0x16e/0x780
[ 2813.696057]  ? __pfx_create_monitor_ctrl_open+0x10/0x10
[ 2813.696081]  ? security_capable+0x2f/0x90
[ 2813.696113]  hci_sock_ioctl+0x35e/0x810
[ 2813.696137]  ? __pfx_hci_sock_ioctl+0x10/0x10
[ 2813.696159]  ? get_pid_task+0x107/0x250
[ 2813.696184]  ? proc_fail_nth_write+0x97/0x220
[ 2813.696221]  sock_do_ioctl+0xd1/0x240
[ 2813.696253]  ? __pfx_sock_do_ioctl+0x10/0x10
[ 2813.696283]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2813.696306]  ? do_vfs_ioctl+0x125/0x1470
[ 2813.696336]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 2813.696358]  ? ioctl_has_perm.constprop.0.isra.0+0x32e/0x4e0
[ 2813.696385]  ? __mutex_unlock_slowpath+0xe1/0x750
[ 2813.696407]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2813.696440]  sock_ioctl+0x40d/0x630
[ 2813.696462]  ? __pfx_sock_ioctl+0x10/0x10
[ 2813.696482]  ? lock_release+0xc8/0x290
[ 2813.696518]  ? selinux_file_ioctl+0xb9/0x280
[ 2813.696546]  ? __pfx_sock_ioctl+0x10/0x10
[ 2813.696570]  __x64_sys_ioctl+0x18f/0x210
[ 2813.696595]  do_syscall_64+0xbf/0x3f0
[ 2813.696617]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2813.696638] RIP: 0033:0x7f6f36e1eb19
[ 2813.696654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2813.696674] RSP: 002b:00007f6f34394188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2813.696694] RAX: ffffffffffffffda RBX: 00007f6f36f31f60 RCX: 00007f6f36e1eb19
[ 2813.696708] RDX: 0000000000000000 RSI: 00000000400448c9 RDI: 0000000000000004
[ 2813.696720] RBP: 00007f6f343941d0 R08: 0000000000000000 R09: 0000000000000000
[ 2813.696732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2813.696744] R13: 00007ffdb971525f R14: 00007f6f34394300 R15: 0000000000022000
[ 2813.696772]  </TASK>
[ 2814.516232] Bluetooth: hci0: Opcode 0x0c03 failed: -4
16:58:18 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
bind$bt_hci(r2, &(0x7f0000001280)={0x1f, 0x4, 0x1}, 0x6)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
r3 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r3, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
socketpair(0x15, 0x5, 0x4, &(0x7f0000001040)={<r4=>0xffffffffffffffff})
recvfrom(r4, &(0x7f0000001080)=""/91, 0x5b, 0x12000, &(0x7f0000001180)=@l2={0x1f, 0x7, @any, 0xfffd, 0x2}, 0x80)
shutdown(r3, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r5 = openat$bsg(0xffffffffffffff9c, &(0x7f0000001100), 0x200, 0x0)
r6 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000001200)='hugetlb.1GB.rsvd.failcnt\x00', 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r5, 0xc018937d, &(0x7f0000001240)={{0x1, 0x1, 0x18, r6, {0x7}}, './file0\x00'})

16:58:18 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='net/ip6_mr_cache\x00')
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r2, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r3 = dup(r2)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
perf_event_open$cgroup(&(0x7f0000000080)={0x4, 0x80, 0x0, 0xff, 0x8, 0x1f, 0x0, 0x3f, 0x80, 0x4, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x400, 0x2, @perf_config_ext={0x0, 0x800}, 0x8, 0x8001, 0xbe4, 0x1, 0x1, 0x80000000, 0x2702, 0x0, 0x6, 0x0, 0x1}, r1, 0xf, r3, 0xc)

16:58:18 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x22, @remote}, 0x10)

16:58:18 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

16:58:18 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0}], 0x0)

16:58:18 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{&(0x7f0000001680)=@nl, 0x80, &(0x7f0000001780)=[{&(0x7f0000001700)=""/75, 0x4b}], 0x1, &(0x7f00000017c0)=""/4096, 0x1000}, 0x9}, {{0x0, 0x0, &(0x7f0000002d00)=[{&(0x7f0000002840)=""/71, 0x47}], 0x1}, 0x2}], 0x5, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:58:18 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x2, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:58:18 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
getsockopt$ARPT_SO_GET_INFO(r0, 0x0, 0x60, &(0x7f0000000180)={'filter\x00', 0x0, [0x1, 0x8004, 0x5]}, &(0x7f0000000000)=0x44)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

16:58:18 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:58:19 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
sendfile(r0, r2, &(0x7f0000000100)=0x80, 0x1)
setsockopt$inet_int(r1, 0x0, 0xa, &(0x7f0000000080)=0xec, 0x4)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

16:58:19 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{&(0x7f0000001680)=@nl, 0x80, &(0x7f0000001780)=[{&(0x7f0000001700)=""/75, 0x4b}], 0x1, &(0x7f00000017c0)=""/4096, 0x1000}, 0x9}, {{0x0, 0x0, &(0x7f0000002d00)=[{&(0x7f0000002840)=""/71, 0x47}], 0x1}, 0x2}], 0x5, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:58:19 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x2, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:58:19 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x2, 0x0)

16:58:19 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cc, &(0x7f0000000080)="e294c8875d1215efd00559fc5a43af5a026c5108f5bbc44b6803b215fc33171ddaee60445cfa8d97debad308265029cc23ca")
dup2(r1, r1)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
r2 = signalfd(r1, &(0x7f00000000c0)={[0x75]}, 0x8)
r3 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r3, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
ioctl$BTRFS_IOC_SYNC(r3, 0x9408, 0x0)
ioctl$sock_bt_hci(r2, 0x30, &(0x7f0000000100)="799a3584d0cd02739f83ae08c4bfaa5312d8d099a6b235bbed61ef1146cd52c2f43b8639469233028daa2aa013c54fdce0d9a23d03bfc3c363e113a4ecff33ce32f1b22c2a0004394ceac463f022a592470f2a74a6c5f0a32197a9f9b1df0594c74ef1d8c38dcbcac4d0a25e27bcc90dc6119bb755b92947531f2ac6c20c5690d10b43830335e43e91cbfa6094c087e9955dd4b3ab05b064113bb26a18dc9de1610fd793a29326efc48f168b0b5ac849f0a6700ad5b94f7f06c50309ca3a4bb41a7db94793f16d3a76adf703f6373ba78e4c79fe29998563fb349f")

16:58:19 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f0000000000)={0x2, 0x0, @dev}, 0x10)

16:58:19 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{&(0x7f0000001680)=@nl, 0x80, &(0x7f0000001780)=[{&(0x7f0000001700)=""/75, 0x4b}], 0x1, &(0x7f00000017c0)=""/4096, 0x1000}, 0x9}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}, 0x2}], 0x5, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:58:19 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x3}}, 0x10)

16:58:19 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000001040)={0x1f, 0xffffffffffffffff}, 0x6)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001080)=[{&(0x7f0000000040)=""/4081, 0xff1}, {&(0x7f0000001180)=""/4096, 0x1000}], 0x2}}], 0x1, 0x1a0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

[ 2824.208089] warn_alloc: 1 callbacks suppressed
[ 2824.208104] syz-executor.0: page allocation failure: order:0, mode:0x10cc0(GFP_KERNEL|__GFP_NORETRY), nodemask=(null),cpuset=/,mems_allowed=0
[ 2824.209557] CPU: 1 UID: 0 PID: 19382 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2824.209574] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2824.209582] Call Trace:
[ 2824.209587]  <TASK>
[ 2824.209592]  dump_stack_lvl+0xfa/0x120
[ 2824.209610]  warn_alloc+0x211/0x360
[ 2824.209626]  ? __pfx_warn_alloc+0x10/0x10
[ 2824.209644]  ? __pfx___alloc_pages_direct_compact+0x10/0x10
[ 2824.209662]  __alloc_frozen_pages_noprof+0x125e/0x1f20
[ 2824.209676]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2824.209702]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2824.209721]  ? policy_nodemask+0x34c/0x4e0
[ 2824.209736]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2824.209750]  ? policy_nodemask+0xeb/0x4e0
[ 2824.209765]  alloc_pages_mpol+0xed/0x340
[ 2824.209778]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2824.209796]  alloc_pages_noprof+0x9d/0x180
[ 2824.209811]  kimage_alloc_pages+0x70/0x240
[ 2824.209827]  kimage_alloc_control_pages+0x18f/0x970
[ 2824.209845]  ? __pfx_kimage_alloc_control_pages+0x10/0x10
[ 2824.209864]  do_kexec_load+0x417/0x8a0
[ 2824.209880]  ? __pfx_do_kexec_load+0x10/0x10
[ 2824.209896]  ? _copy_from_user+0x5b/0xd0
[ 2824.209915]  __x64_sys_kexec_load+0x1c6/0x230
[ 2824.209932]  do_syscall_64+0xbf/0x3f0
[ 2824.209947]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2824.209960] RIP: 0033:0x7fd597aabb19
[ 2824.209970] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2824.209981] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2824.209993] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2824.210001] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2824.210009] RBP: 00007fd597b05f6d R08: 0000000000000000 R09: 0000000000000000
[ 2824.210017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2824.210024] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2824.210039]  </TASK>
[ 2824.210044] Mem-Info:
[ 2824.226411] active_anon:60 inactive_anon:41767 isolated_anon:0
[ 2824.226411]  active_file:15514 inactive_file:34278 isolated_file:32
[ 2824.226411]  unevictable:0 dirty:150 writeback:6
[ 2824.226411]  slab_reclaimable:5493 slab_unreclaimable:54672
[ 2824.226411]  mapped:81215 shmem:95 pagetables:2800
[ 2824.226411]  sec_pagetables:0 bounce:0
[ 2824.226411]  kernel_misc_reclaimable:0
[ 2824.226411]  free:3175 free_pcp:38 free_cma:0
[ 2824.229810] Node 0 active_anon:240kB inactive_anon:167068kB active_file:62056kB inactive_file:136936kB unevictable:0kB isolated(anon):0kB isolated(file):256kB mapped:324860kB dirty:600kB writeback:24kB shmem:380kB kernel_stack:5920kB pagetables:11200kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 2824.232219] Node 0 DMA free:6328kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:200kB active_file:136kB inactive_file:172kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:124kB local_pcp:0kB free_cma:0kB
[ 2824.234868] lowmem_reserve[]: 0 1600 1600 1600
[ 2824.235255] Node 0 DMA32 free:6372kB boost:12288kB min:17360kB low:18984kB high:20608kB reserved_highatomic:0KB free_highatomic:0KB active_anon:240kB inactive_anon:166876kB active_file:61920kB inactive_file:136764kB unevictable:0kB writepending:624kB zspages:0kB present:2080640kB managed:1638584kB mlocked:0kB bounce:0kB free_pcp:32kB local_pcp:0kB free_cma:0kB
[ 2824.238102] lowmem_reserve[]: 0 0 0 0
[ 2824.238446] Node 0 DMA: 0*4kB 1*8kB (M) 1*16kB (U) 1*32kB (U) 0*64kB 1*128kB (M) 2*256kB (UM) 1*512kB (U) 1*1024kB (M) 0*2048kB 1*4096kB (M) = 6328kB
[ 2824.239895] Node 0 DMA32: 436*4kB (UME) 188*8kB (UME) 82*16kB (UME) 36*32kB (UM) 4*64kB (ME) 2*128kB (M) 1*256kB (U) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 6480kB
[ 2824.241311] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2824.242143] 26799 total pagecache pages
[ 2824.242555] 0 pages in swap cache
[ 2824.242959] Free swap  = 0kB
[ 2824.243209] Total swap = 0kB
[ 2824.243479] 524158 pages RAM
[ 2824.243733] 0 pages HighMem/MovableOnly
[ 2824.244060] 110672 pages reserved
[ 2824.363128] kexec: Could not allocate control_code_buffer
[ 2824.539070] Bluetooth: hci0: Opcode 0x0c03 failed: -4
16:58:19 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x60, @remote}, 0x10)

16:58:19 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x2, 0x0)

16:58:19 executing program 7:
recvmsg(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f00000001c0)=@pppol2tpin6={0x18, 0x1, {0x0, <r0=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @loopback}}}, 0x80, &(0x7f0000001600)=[{&(0x7f0000000240)=""/221, 0xdd}, {&(0x7f0000000340)=""/216, 0xd8}, {&(0x7f0000000440)=""/4096, 0x1000}, {}, {&(0x7f0000001440)=""/138, 0x8a}, {&(0x7f0000001500)=""/209, 0xd1}], 0x6, &(0x7f0000001680)=""/85, 0x55}, 0x400000a0)
sendmsg$IPVS_CMD_GET_SERVICE(r0, &(0x7f0000001840)={&(0x7f0000001700)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001800)={&(0x7f0000001740)={0xa0, 0x0, 0x0, 0x70bd25, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x3}, @IPVS_CMD_ATTR_DEST={0x60, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@rand_addr=0x64010102}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x9}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x4}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x9}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e21}, @IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x1}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0xca}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x8}, @IPVS_DEST_ATTR_TUN_TYPE={0x5}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7}, @IPVS_CMD_ATTR_DEST={0x1c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x101}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0xae4b}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x6}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x8000}, 0x90)
r1 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
recvfrom(r1, &(0x7f0000000100)=""/188, 0xbc, 0x41, 0x0, 0x0)

16:58:19 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{&(0x7f0000001680)=@nl, 0x80, &(0x7f0000001780)=[{&(0x7f0000001700)=""/75, 0x4b}], 0x1, &(0x7f00000017c0)=""/4096, 0x1000}, 0x9}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x5, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:58:19 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
ioctl$sock_inet_SIOCGIFBRDADDR(r1, 0x8919, &(0x7f0000000080)={'ip6erspan0\x00', {0x2, 0x0, @broadcast}})
ioctl$SNAPSHOT_S2RAM(0xffffffffffffffff, 0x330b)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000100)="60da7056a513ccc8a1c6ffffffff000000002011a7ddbd2563073c967f6a9af19d7a", 0x22, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r3 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r3, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
dup2(r2, r3)

16:58:19 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0}], 0x0)

16:58:19 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x4b47, 0x0)

16:58:19 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0x3)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

16:58:19 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000080)="94bef108ec803510917e6998b8d226269df2e37fcb498559c052333d5fadae02ad46af9c22d3bc7fa732ad7d03e8ebd21798ce029964e671b46a82251cc028b5ebc40939200a279bd150d42c4db667216056427438da3cdfd587ccc43c16c6714316773deaa82d12fbe297c9227102c4001e15cd684faaf22620bde90784f4f14a8a7849bba7adaa3cce3aaf6691794ab9299be21419c3c038145f")
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:58:19 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x4, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

[ 2825.249487] kexec: Could not allocate control_code_buffer
16:58:29 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x1f4, @remote}, 0x10)

16:58:29 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x2, 0x0)

16:58:29 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0}], 0x0)

16:58:29 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x4b49, 0x0)

16:58:29 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$HCIINQUIRY(r2, 0x800448f0, &(0x7f0000000080)={0x2, 0x1, "e3db22", 0x1, 0x80})
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
shutdown(r1, 0x0)

16:58:29 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x48300, &(0x7f00000000c0)={0x2, 0x4e22, @remote}, 0x10)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000580)={0x9c, 0x0, &(0x7f00000003c0)=[@register_looper, @transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x31, 0x0, 0x0, 0x70, 0x18, &(0x7f00000002c0)={@ptr={0x70742a85, 0x1, &(0x7f0000000100)=""/144, 0x90, 0x2, 0x2b}, @ptr={0x70742a85, 0x0, &(0x7f00000001c0)=""/218, 0xda, 0x2, 0xd}, @fda={0x66646185, 0x9, 0x10001, 0xf}}, &(0x7f0000000000)={0x0, 0x28, 0x50}}}, @reply_sg={0x40486312, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000340)={@fd={0x66642a85, 0x0, r0}, @fda={0x66646185, 0x1, 0x0, 0x38}, @flat=@weak_handle={0x77682a85, 0x1, 0x2}}, &(0x7f0000000080)={0x0, 0x18, 0x38}}, 0x1000}, @increfs], 0xfc, 0x0, &(0x7f0000000480)="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"})

16:58:29 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{0x0, 0x0, 0x0}}], 0x4, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:58:29 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
recvmsg(r0, &(0x7f0000002680)={&(0x7f0000001040)=@vsock={0x28, 0x0, 0x0, @hyper}, 0x80, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/4096, 0x1000}, {&(0x7f0000002180)=""/246, 0xf6}, {&(0x7f0000002280)=""/198, 0xc6}, {&(0x7f0000002380)=""/239, 0xef}, {&(0x7f0000002480)=""/198, 0xc6}], 0x5, &(0x7f0000002580)=""/215, 0xd7}, 0x2)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000026c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet_SIOCSIFBRDADDR(r1, 0x891a, &(0x7f0000002700)={'veth1_to_bridge\x00', {0x2, 0x0, @dev}})
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:58:29 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/netfilter\x00')
ioctl$HCIINQUIRY(r1, 0x800448f0, &(0x7f00000000c0)={0x1, 0x4, "b4e81d", 0x4, 0x11})
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0xa}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:58:29 executing program 7:
r0 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={0x181, 0x0, 0x12}, 0x18)
r1 = dup2(r0, 0xffffffffffffffff)
listxattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=""/216, 0xd8)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1, 0x10, r0, 0x158d2000)
io_setup(0xfff, &(0x7f0000000040)=<r2=>0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
io_submit(r2, 0x2, &(0x7f00000005c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, r3, 0x0}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0}])
io_submit(r2, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x2, 0x81, r1, &(0x7f0000000240)="6bf1c8e070f478d04d82133dad998fe5bc1df41cc836d732791e3598a923ac1094fac19d7605e9e78c6fffb937324869ed0f95be968d948c3e95f909186620e5e5c65b115acdb9bf5d157ca2648b11744ebe2536d33065d9693b3b9f6fa9a7ab74710eaea4370a25b37b085d2e8fd1857c126fc81bbd9e065fde8a20c8aad680df0c03486e36d9", 0x87, 0x1, 0x0, 0x2}])
r4 = socket$inet(0x2, 0x6, 0x101)
sendto$inet(r4, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

16:58:29 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{0x0, 0x0, 0x0}}], 0x4, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:58:29 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x541b, 0x0)

16:58:29 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000080)=0x2000000)

16:58:29 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)}}], 0x1, 0x10000, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040), &(0x7f0000000080)=0xc)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r2 = syz_mount_image$msdos(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0xff, 0x6, &(0x7f0000002540)=[{&(0x7f0000000200)="c13a3b3c097529c28e439c60a9b33842798050a80cd413d171566763c3923c61b13b2921d907578709ac8e75b3458f918dc1e0c2f946409d75e9d8d1d98177adbd9b365e6c45ab5326c82142702423861e4b0a2838509e9b141be56f2e8c7c087fff13169fc6e17a950384c80c3a8caf41a3503a44a66bcc020dc168d7f439d640d6d5b711ec", 0x86, 0x5ddeea72}, {&(0x7f00000002c0)="6c813527009d2eabe84a447c534ee9acc55299c28e259d4ed841c22d4f941fb4dcb7ff3b9a8056629c92beae9ee19bfd4d4709ddedabc4f89d849b83a4e7a23b30bcc611ddd89689b7fc0909367034b7f9355ce5ae4052e1022c51abc920f2206c0f9a8088dc29b67e60f19c0a790e3bbc2c51332c2fefbf330d327216ad3ef2f205f35e191ab44290b8e12861fb37f1458b7fcd26b27118a92514d43143bd6568bccdc7e1d64f92f9a5aa635d23aa5e30a85f7c1795e04624e693d4", 0xbc, 0xb9}, {&(0x7f0000000380)="324b7116e3b41559a38d1c2652bf16695765e23b69db71156d9f18aae7e8843dcaecbe3c3ab7af3ad6372b95a4560883c0314909f50ff26cfdaed5bd4f95b95553d55149108ab940c03afbc4afc29840ac51d2c23571d6906a26055155bb8767af83bdcf71c4392cd5f3b916df5678ae7fc68742dd8b22c4f7525eab29d0c35895ee3f7fddfcd76e0d39911172d00f85a58fbe15998e48e84654372a6bc8ff2bafc78da9290c2b5f930df6c49f5fa0965db1a255d36f547896a640ee2c345f9cdca566994ee6586058df8b8d893ea1080c4a77a4290b87699d848129656d480107528150d854a1ca1f1814732111db360a2380a2ef9ae9ab", 0xf8, 0x6}, {&(0x7f0000000480)="5cfd8495f7a922c2764a1446adc246fcc3bac08e0d768d674d9c1c0d6dcf5e932a3bc8bc499f2c6dae771fda41cbc1efdcc5d3984db1eefd3fcb63f90b589d9d4921361a21dace906a1aba4a0b1bbbdb64a8799e728b81afdcc6de8506ede81237dbc06db83264fe5399ea261867f48168e2448742987efec6db1796095024fce37b81d349aab4805b9a382834623bbcf5e3ebdad19527d95debc9a5124799d0acb35078085916e296d1f31a8ac42d5625c8", 0xb2, 0x6}, {&(0x7f0000000540)="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", 0x1000, 0x7}, {&(0x7f0000001540)="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", 0x1000, 0x7ff}], 0x80c421, &(0x7f0000002600)={[{}], [{@defcontext={'defcontext', 0x3d, 'user_u'}}]})
ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r2, 0x8040942d, &(0x7f0000002640))
write$binfmt_script(r1, &(0x7f00000000c0)={'#! ', './file0', [{0x20, '\','}, {0x20, ')\\'}, {0x20, '{;:\\*'}, {0x20, '#))'}], 0xa, "b370080e68b07576d91bd826ee42324c9b9638adaaf330c2629952a6403b8849381fe2c934e19f0f372f2f8cf6edd4570db9"}, 0x4d)

16:58:29 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x5421, 0x0)

16:58:29 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{0x0, 0x0, 0x0}}], 0x4, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

[ 2834.690962] loop1: detected capacity change from 0 to 264192
[ 2834.747920] loop1: detected capacity change from 0 to 264192
[ 2835.213952] kexec: Could not allocate control_code_buffer
16:58:39 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x3e8, @remote}, 0x10)

16:58:39 executing program 7:
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000200)={0x0, 0x9, &(0x7f00000001c0)="5c9a5fc7eb2453ff85"})
r1 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

16:58:39 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = clone3(&(0x7f0000000380)={0x100, &(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000180), {0x11}, &(0x7f00000001c0)=""/137, 0x89, &(0x7f0000000280)=""/165, &(0x7f0000000340)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0], 0x4}, 0x58)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r2, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r3 = dup(r2)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000400)={{0x1, 0x1, 0x18, <r4=>0xffffffffffffffff, {0xee00, 0xffffffffffffffff}}, './file0\x00'})
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x20, 0x7d, 0x4, 0x0, 0x3, 0x4148, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7f315097, 0x1, @perf_config_ext={0xbf6, 0x1}, 0x10000, 0x80000001, 0x1d, 0x8, 0x47, 0x3, 0x1ff, 0x0, 0xa4, 0x0, 0x68c}, r1, 0x10, r4, 0x8)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:58:39 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x5450, 0x0)

16:58:39 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{0x0, 0x0, &(0x7f0000002d00)}}], 0x4, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:58:39 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000001180)=""/4096, 0xffffffffffffffd1}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:58:39 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x2, 0x0)

16:58:39 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 1)

16:58:39 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 2)

16:58:39 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448e0, 0x0)

16:58:39 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000001140)=ANY=[@ANYBLOB="0100000001000000f39d3218", @ANYRES32=<r1=>r0, @ANYBLOB="040694eaaec31edbc1840000000000002e2f66696c48a100b4ddc6a366c5fb8239eb10e431da998c92389c6384dff91108df46313d579927bb99fc00405dc084ca982daa4ecc8b7b41597bd5478d2a2b401588e345f24f8470acf7147d506d4c00d0bf11b0a6d07aa734b4f09b52d9c96a054e6e632cc5f1125ece37340399fdb9dbaadec68b4e97dc3dc7242371eb22ad27e7032dbee527e646ffc513c857ef37df7bdbbec061ddc8a89d5bd497069259f63227471213a8233036e183cdd03a8d5c"])
setsockopt$inet_int(r1, 0x0, 0xd, &(0x7f0000001080)=0x8, 0x4)
sendto$inet(r0, &(0x7f0000000000)="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", 0x1000, 0x20000000, &(0x7f0000001000)={0x2, 0x4e20, @private=0xa010100}, 0x10)

16:58:39 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = open(&(0x7f0000000080)='./file0\x00', 0x80600, 0x41)
bind$bt_hci(r1, &(0x7f00000000c0)={0x1f, 0x0, 0x4}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:58:39 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x5451, 0x0)

16:58:39 executing program 1:
ioctl$FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x41009432, &(0x7f0000001040)="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")
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:58:39 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
write$bt_hci(r0, &(0x7f00000010c0)=ANY=[@ANYBLOB="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"], 0x1007)
readv(r1, &(0x7f0000000500)=[{&(0x7f0000000080)=""/40, 0x28}, {&(0x7f00000000c0)=""/236, 0xec}, {&(0x7f00000001c0)=""/6, 0x6}, {&(0x7f0000000200)=""/80, 0x50}, {&(0x7f0000000280)=""/11, 0xb}, {&(0x7f00000002c0)=""/57, 0x39}, {&(0x7f0000000300)=""/175, 0xaf}, {&(0x7f00000003c0)=""/100, 0x64}, {&(0x7f0000000440)=""/183, 0xb7}], 0x9)

16:58:39 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 3)

[ 2844.451281] FAULT_INJECTION: forcing a failure.
[ 2844.451281] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2844.452307] CPU: 0 UID: 0 PID: 19555 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2844.452327] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2844.452337] Call Trace:
[ 2844.452341]  <TASK>
[ 2844.452346]  dump_stack_lvl+0xfa/0x120
[ 2844.452365]  should_fail_ex+0x4d7/0x5e0
[ 2844.452384]  _copy_from_user+0x30/0xd0
[ 2844.452402]  memdup_user+0x7e/0xe0
[ 2844.452414]  __x64_sys_kexec_load+0x195/0x230
[ 2844.452433]  do_syscall_64+0xbf/0x3f0
[ 2844.452446]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2844.452460] RIP: 0033:0x7fd597aabb19
[ 2844.452469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2844.452481] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2844.452492] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2844.452500] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2844.452507] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2844.452515] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2844.452521] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2844.452537]  </TASK>
16:58:48 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0xb00, @remote}, 0x10)

16:58:48 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{0x0, 0x0, &(0x7f0000002d00)}}], 0x4, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:58:48 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 4)

16:58:48 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x5452, 0x0)

16:58:48 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)=""/116, 0x74}, {&(0x7f0000000100)=""/192, 0xc0}], 0x2, &(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32, @ANYRES32=<r1=>0xffffffffffffffff, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001cb964651208fcaa7a00009127191984ff0f01000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32, @ANYRES32=<r2=>0xffffffffffffffff, @ANYRES32, @ANYRES32], 0xc0}, 0x10000)
bind$bt_hci(r1, &(0x7f0000000300)={0x1f, 0x0, 0x3}, 0x6)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x400000, 0x8)
r3 = openat$incfs(r2, &(0x7f0000000040)='.log\x00', 0x30400, 0x100)
faccessat2(r3, &(0x7f0000000380)='./file0\x00', 0x98, 0x0)
syz_open_dev$sg(&(0x7f0000000340), 0x101, 0x4e0401)
ioctl$RTC_EPOCH_READ(r3, 0x8008700d, &(0x7f0000000200))

16:58:48 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r1=>r0, {0x46f}}, './file0\x00'})
bind$bt_hci(r1, &(0x7f00000000c0)={0x1f, 0xffffffffffffffff}, 0x6)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000001180)=""/4096, 0x1000}], 0x1}, 0x7ff}], 0x1, 0x42, 0x0)
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
read(r2, &(0x7f0000000100)=""/167, 0xa7)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:58:48 executing program 7:
r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000240))
ioctl$RTC_AIE_OFF(r0, 0x7002)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
bind$bt_l2cap(r0, &(0x7f0000000300)={0x1f, 0x9, @none, 0x9, 0x1}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r3, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r4 = dup(r3)
setsockopt$bt_BT_DEFER_SETUP(r4, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f00000002c0)={0x1f, 0x6, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x4}, 0x9, 0x2}, 0xe)
getsockopt$bt_BT_POWER(r4, 0x112, 0x9, &(0x7f00000001c0)=0x7f, &(0x7f0000000200)=0x1)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r2, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='\x00\x00@\x00', @ANYRES16=0x0, @ANYBLOB="040028bd7000fcdbdf250900000008000b00ff030000050033000200000005002a0001000000"], 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x8000)
r5 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r5, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

16:58:48 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x2, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

[ 2853.329130] FAULT_INJECTION: forcing a failure.
[ 2853.329130] name failslab, interval 1, probability 0, space 0, times 0
[ 2853.331252] CPU: 1 UID: 0 PID: 19580 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2853.331288] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2853.331303] Call Trace:
[ 2853.331311]  <TASK>
[ 2853.331320]  dump_stack_lvl+0xfa/0x120
[ 2853.331360]  should_fail_ex+0x4d7/0x5e0
[ 2853.331399]  should_failslab+0xc2/0x120
[ 2853.331438]  __kmalloc_cache_noprof+0x81/0x6b0
[ 2853.331469]  ? do_kimage_alloc_init+0x41/0x340
[ 2853.331506]  ? do_kimage_alloc_init+0x41/0x340
[ 2853.331533]  do_kimage_alloc_init+0x41/0x340
[ 2853.331562]  do_kexec_load+0x1fe/0x8a0
[ 2853.331596]  ? __pfx_do_kexec_load+0x10/0x10
[ 2853.331630]  ? _copy_from_user+0x5b/0xd0
[ 2853.331669]  __x64_sys_kexec_load+0x1c6/0x230
[ 2853.331706]  do_syscall_64+0xbf/0x3f0
[ 2853.331734]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2853.331761] RIP: 0033:0x7fd597aabb19
[ 2853.331781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2853.331806] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2853.331831] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2853.331849] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2853.331865] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2853.331881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2853.331896] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2853.331930]  </TASK>
16:58:48 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
close_range(r0, r0, 0x0)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

16:58:48 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
dup2(r0, r1)

16:58:48 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x2, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:58:48 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x5460, 0x0)

16:58:48 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 5)

16:58:48 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{&(0x7f0000001340)=@sco={0x1f, @none}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000013c0)=""/191, 0xbf}, {&(0x7f0000001480)=""/115, 0x73}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f0000001100)=""/21, 0x15}], 0x4, &(0x7f0000001600)=""/113, 0x71}, 0xee}, {{0x0, 0x0, &(0x7f0000002d00)}}], 0x4, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:58:48 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = fork()
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r2, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r3 = dup(r2)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
r4 = perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xa9, 0x5, 0x4, 0x8, 0x0, 0x3, 0x20000, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x2, @perf_bp={&(0x7f0000000080)}, 0x18043, 0x6, 0x200040, 0x2, 0x0, 0x2, 0x2, 0x0, 0x8}, r1, 0x2, r3, 0x8)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000140)={'vxcan0\x00'})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r4, 0x81f8943c, &(0x7f00000001c0))
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r5, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r6 = dup(r5)
setsockopt$bt_BT_DEFER_SETUP(r6, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r6, 0x6, &(0x7f0000000400)={0x40, 0x0, &(0x7f00000003c0)=[r0, r0]}, 0x2)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:58:48 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 6)

[ 2853.529281] FAULT_INJECTION: forcing a failure.
[ 2853.529281] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2853.530452] CPU: 0 UID: 0 PID: 19605 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2853.530470] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2853.530478] Call Trace:
[ 2853.530482]  <TASK>
[ 2853.530487]  dump_stack_lvl+0xfa/0x120
[ 2853.530505]  should_fail_ex+0x4d7/0x5e0
[ 2853.530524]  should_fail_alloc_page+0xe0/0x110
[ 2853.530544]  prepare_alloc_pages+0x1eb/0x550
[ 2853.530565]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2853.530578]  ? kernel_text_address+0x5b/0xc0
[ 2853.530594]  ? lock_acquire+0x15e/0x2f0
[ 2853.530612]  ? unwind_get_return_address+0x59/0xa0
[ 2853.530624]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2853.530644]  ? arch_stack_walk+0x9c/0xf0
[ 2853.530661]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2853.530677]  ? stack_depot_save_flags+0x2c/0xa20
[ 2853.530693]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2853.530707]  ? policy_nodemask+0xeb/0x4e0
[ 2853.530722]  alloc_pages_mpol+0xed/0x340
[ 2853.530735]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2853.530748]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2853.530767]  ? do_raw_spin_lock+0x123/0x260
[ 2853.530780]  alloc_pages_noprof+0x9d/0x180
[ 2853.530794]  kimage_alloc_pages+0x70/0x240
[ 2853.530809]  kimage_alloc_control_pages+0x18f/0x970
[ 2853.530823]  ? __create_object+0x59/0x80
[ 2853.530839]  ? __pfx_kimage_alloc_control_pages+0x10/0x10
[ 2853.530857]  do_kexec_load+0x417/0x8a0
[ 2853.530873]  ? __pfx_do_kexec_load+0x10/0x10
[ 2853.530888]  ? _copy_from_user+0x5b/0xd0
[ 2853.530906]  __x64_sys_kexec_load+0x1c6/0x230
[ 2853.530922]  do_syscall_64+0xbf/0x3f0
[ 2853.530936]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2853.530948] RIP: 0033:0x7fd597aabb19
[ 2853.530958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2853.530969] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2853.530981] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2853.530989] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2853.530997] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2853.531004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2853.531011] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2853.531026]  </TASK>
[ 2853.531031] kexec: Could not allocate control_code_buffer
16:58:57 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x8901, 0x0)

16:58:57 executing program 7:
r0 = socket$inet(0x2, 0x0, 0x4)
sendto$inet(r0, &(0x7f0000000040)="6022de3e0100004a8b399eb759d6767942b374ed", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
getsockopt$IP_VS_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x481, &(0x7f0000000080), &(0x7f0000000100)=0xc)
ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, &(0x7f0000000340)=ANY=[@ANYBLOB="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"])

16:58:57 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x2, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:58:57 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x3, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:58:57 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0xe00, @remote}, 0x10)

16:58:57 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$bt_hci(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="01330c8700081f0800d5f3e2a31221a4065bfd68e1be3fbc4ec5901d2b2204305743992d6ac877c6"], 0xb)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:58:57 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000001040)={0x1f, 0x3, 0x1}, 0x6)

16:58:57 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 7)

[ 2862.243081] FAULT_INJECTION: forcing a failure.
[ 2862.243081] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2862.244157] CPU: 0 UID: 0 PID: 19631 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2862.244174] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2862.244182] Call Trace:
[ 2862.244186]  <TASK>
[ 2862.244191]  dump_stack_lvl+0xfa/0x120
[ 2862.244209]  should_fail_ex+0x4d7/0x5e0
[ 2862.244228]  should_fail_alloc_page+0xe0/0x110
[ 2862.244257]  prepare_alloc_pages+0x1eb/0x550
[ 2862.244277]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2862.244290]  ? kernel_text_address+0x5b/0xc0
[ 2862.244307]  ? lock_acquire+0x15e/0x2f0
[ 2862.244327]  ? unwind_get_return_address+0x59/0xa0
[ 2862.244340]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2862.244360]  ? arch_stack_walk+0x9c/0xf0
[ 2862.244377]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2862.244393]  ? stack_depot_save_flags+0x2c/0xa20
[ 2862.244410]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2862.244425]  ? policy_nodemask+0xeb/0x4e0
[ 2862.244440]  alloc_pages_mpol+0xed/0x340
[ 2862.244453]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2862.244466]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2862.244486]  ? do_raw_spin_lock+0x123/0x260
[ 2862.244498]  alloc_pages_noprof+0x9d/0x180
[ 2862.244512]  kimage_alloc_pages+0x70/0x240
[ 2862.244527]  kimage_alloc_control_pages+0x18f/0x970
[ 2862.244545]  ? __pfx_kimage_alloc_control_pages+0x10/0x10
[ 2862.244563]  do_kexec_load+0x5dc/0x8a0
[ 2862.244578]  ? __pfx_do_kexec_load+0x10/0x10
[ 2862.244593]  ? _copy_from_user+0x5b/0xd0
[ 2862.244612]  __x64_sys_kexec_load+0x1c6/0x230
[ 2862.244628]  do_syscall_64+0xbf/0x3f0
[ 2862.244642]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2862.244654] RIP: 0033:0x7fd597aabb19
[ 2862.244663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2862.244674] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2862.244686] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2862.244694] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2862.244701] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2862.244707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2862.244715] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2862.244730]  </TASK>
[ 2862.261639] kexec: Could not allocate swap buffer
16:58:57 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(0xffffffffffffffff, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x2, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:58:57 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 8)

16:58:57 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

[ 2862.356749] FAULT_INJECTION: forcing a failure.
[ 2862.356749] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2862.357792] CPU: 0 UID: 0 PID: 19647 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2862.357809] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2862.357817] Call Trace:
[ 2862.357821]  <TASK>
[ 2862.357825]  dump_stack_lvl+0xfa/0x120
[ 2862.357843]  should_fail_ex+0x4d7/0x5e0
[ 2862.357861]  should_fail_alloc_page+0xe0/0x110
[ 2862.357882]  prepare_alloc_pages+0x1eb/0x550
[ 2862.357899]  ? get_page_from_freelist+0x501/0x2600
[ 2862.357913]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2862.357925]  ? kasan_unpoison+0x27/0x60
[ 2862.357942]  ? get_page_from_freelist+0x91c/0x2600
[ 2862.357958]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2862.357971]  ? should_fail_alloc_page+0xe8/0x110
[ 2862.357991]  ? trace_mm_page_alloc+0xfc/0x150
[ 2862.358007]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2862.358019]  ? kernel_text_address+0x5b/0xc0
[ 2862.358036]  ? lock_acquire+0x15e/0x2f0
[ 2862.358053]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2862.358068]  ? policy_nodemask+0xeb/0x4e0
[ 2862.358083]  alloc_pages_mpol+0xed/0x340
[ 2862.358096]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2862.358113]  alloc_pages_noprof+0x9d/0x180
[ 2862.358127]  kimage_alloc_pages+0x70/0x240
[ 2862.358143]  kimage_alloc_control_pages+0x18f/0x970
[ 2862.358156]  ? policy_nodemask+0xeb/0x4e0
[ 2862.358171]  ? alloc_pages_mpol+0x154/0x340
[ 2862.358183]  ? __pfx_kimage_alloc_control_pages+0x10/0x10
[ 2862.358198]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2862.358217]  ? do_raw_spin_lock+0x123/0x260
[ 2862.358230]  machine_kexec_prepare+0x1ff/0x1f30
[ 2862.358248]  ? __pfx_machine_kexec_prepare+0x10/0x10
[ 2862.358262]  ? __pfx_alloc_pgt_page+0x10/0x10
[ 2862.358281]  do_kexec_load+0x673/0x8a0
[ 2862.358296]  ? __pfx_do_kexec_load+0x10/0x10
[ 2862.358311]  ? _copy_from_user+0x5b/0xd0
[ 2862.358334]  __x64_sys_kexec_load+0x1c6/0x230
[ 2862.358350]  do_syscall_64+0xbf/0x3f0
[ 2862.358364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2862.358377] RIP: 0033:0x7fd597aabb19
[ 2862.358386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2862.358398] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2862.358409] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2862.358417] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2862.358424] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2862.358432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2862.358439] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2862.358454]  </TASK>
16:59:07 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x8902, 0x0)

16:59:07 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(0xffffffffffffffff, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x2, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:59:07 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x1300, @remote}, 0x10)

16:59:07 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmsg$unix(0xffffffffffffffff, &(0x7f00000013c0)={0x0, 0x0, &(0x7f00000012c0)=[{&(0x7f0000001040)=""/189, 0xbd}, {&(0x7f0000001100)=""/17, 0x11}, {&(0x7f0000001180)=""/190, 0xbe}, {&(0x7f0000001240)=""/69, 0x45}], 0x4, &(0x7f0000001300)=[@cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r1=>0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb8}, 0x1)
getsockopt$bt_BT_SNDMTU(r1, 0x112, 0xc, &(0x7f0000001400)=0x5, &(0x7f0000001440)=0x2)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

16:59:07 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 9)

16:59:07 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'rose0\x00'})
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000080)="81305b6d499d626b907f6712fab9341408d87bfd123b63210de9d6939c342d8001fc356417db22aab046e3df6905965fde35394bf7e0b7b01d11aa1b1fb57d21493031113cf4ed9d34fb9a67a85243c18c3ff2a7a9ef14508fc9e4f8c07319479e24ea2d51872fb22e6dae444c8545b1254f153f600d9306f718c816798c575a6b82de2d9da4e75d7fc3c502c7fd8ac4aee2c39ba0655da9543cce30a23f5975304734dd21298704336aade7")
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:59:07 executing program 7:
r0 = socket$inet(0x2, 0x1, 0xff)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

16:59:07 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{0x0, 0x0, 0x0}}], 0x3, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

[ 2872.703418] FAULT_INJECTION: forcing a failure.
[ 2872.703418] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2872.704992] CPU: 1 UID: 0 PID: 19674 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2872.705014] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2872.705024] Call Trace:
[ 2872.705030]  <TASK>
[ 2872.705036]  dump_stack_lvl+0xfa/0x120
[ 2872.705058]  should_fail_ex+0x4d7/0x5e0
[ 2872.705082]  should_fail_alloc_page+0xe0/0x110
[ 2872.705109]  prepare_alloc_pages+0x1eb/0x550
[ 2872.705131]  ? __kasan_unpoison_pages+0x2f/0x40
[ 2872.705156]  ? get_page_from_freelist+0x91c/0x2600
[ 2872.705174]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2872.705196]  ? should_fail_alloc_page+0xe8/0x110
[ 2872.705224]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2872.705240]  ? trace_mm_page_alloc+0xfc/0x150
[ 2872.705263]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2872.705282]  ? get_page_from_freelist+0x91c/0x2600
[ 2872.705303]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2872.705321]  ? policy_nodemask+0xeb/0x4e0
[ 2872.705347]  alloc_pages_mpol+0xed/0x340
[ 2872.705365]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2872.705389]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2872.705404]  ? kernel_text_address+0x5b/0xc0
[ 2872.705426]  ? lock_acquire+0x15e/0x2f0
[ 2872.705451]  alloc_pages_noprof+0x9d/0x180
[ 2872.705470]  kimage_alloc_pages+0x70/0x240
[ 2872.705491]  kimage_alloc_control_pages+0x18f/0x970
[ 2872.705515]  ? __pfx_kimage_alloc_control_pages+0x10/0x10
[ 2872.705537]  ? arch_kexec_post_alloc_pages+0x9/0x10
[ 2872.705555]  ? kimage_alloc_pages+0x18d/0x240
[ 2872.705574]  ? __pfx_alloc_pgt_page+0x10/0x10
[ 2872.705590]  alloc_pgt_page+0x18/0xb0
[ 2872.705606]  ident_p4d_init+0x156/0x360
[ 2872.705629]  kernel_ident_mapping_init+0x2f3/0x540
[ 2872.705655]  machine_kexec_prepare+0x459/0x1f30
[ 2872.705678]  ? __pfx_machine_kexec_prepare+0x10/0x10
[ 2872.705698]  ? __pfx_alloc_pgt_page+0x10/0x10
[ 2872.705724]  do_kexec_load+0x673/0x8a0
[ 2872.705744]  ? __pfx_do_kexec_load+0x10/0x10
[ 2872.705766]  ? _copy_from_user+0x5b/0xd0
[ 2872.705790]  __x64_sys_kexec_load+0x1c6/0x230
[ 2872.705813]  do_syscall_64+0xbf/0x3f0
[ 2872.705831]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2872.705848] RIP: 0033:0x7fd597aabb19
[ 2872.705860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2872.705876] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2872.705892] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2872.705903] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2872.705913] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2872.705923] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2872.705932] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2872.705953]  </TASK>
16:59:07 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x8903, 0x0)

16:59:08 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(0xffffffffffffffff, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x2, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:59:08 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 10)

16:59:08 executing program 1:
setsockopt$sock_void(0xffffffffffffffff, 0x1, 0x16, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r3, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
dup(r3)
setsockopt$bt_BT_RCVMTU(r3, 0x112, 0xd, &(0x7f00000010c0)=0x3ff, 0x2)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$HCIINQUIRY(r2, 0x800448f0, &(0x7f0000001100)={0x0, 0x952, "498a09", 0x6, 0x40})
r4 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000001040), 0x561400, 0x0)
ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000001080)=0x8000)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x3)

16:59:08 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{0x0, 0x0, 0x0}}], 0x3, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

[ 2872.936557] FAULT_INJECTION: forcing a failure.
[ 2872.936557] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2872.938316] CPU: 0 UID: 0 PID: 19698 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2872.938352] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2872.938365] Call Trace:
[ 2872.938373]  <TASK>
[ 2872.938382]  dump_stack_lvl+0xfa/0x120
[ 2872.938411]  should_fail_ex+0x4d7/0x5e0
[ 2872.938443]  should_fail_alloc_page+0xe0/0x110
[ 2872.938479]  prepare_alloc_pages+0x1eb/0x550
[ 2872.938514]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2872.938542]  ? trace_mm_page_alloc+0xfc/0x150
[ 2872.938574]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2872.938598]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2872.938623]  ? should_fail_alloc_page+0xe8/0x110
[ 2872.938660]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2872.938681]  ? trace_mm_page_alloc+0xfc/0x150
[ 2872.938712]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2872.938735]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2872.938760]  ? policy_nodemask+0xeb/0x4e0
[ 2872.938787]  alloc_pages_mpol+0xed/0x340
[ 2872.938811]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2872.938834]  ? policy_nodemask+0xeb/0x4e0
[ 2872.938863]  alloc_pages_noprof+0x9d/0x180
[ 2872.938889]  kimage_alloc_pages+0x70/0x240
[ 2872.938916]  ? __pfx_alloc_pgt_page+0x10/0x10
[ 2872.938938]  kimage_alloc_control_pages+0x18f/0x970
[ 2872.938963]  ? alloc_pages_noprof+0xb7/0x180
[ 2872.938992]  ? __pfx_kimage_alloc_control_pages+0x10/0x10
[ 2872.939016]  ? kimage_alloc_control_pages+0x49a/0x970
[ 2872.939049]  ? __pfx_alloc_pgt_page+0x10/0x10
[ 2872.939073]  alloc_pgt_page+0x18/0xb0
[ 2872.939095]  ident_pud_init+0x1f9/0x450
[ 2872.939128]  ident_p4d_init+0x178/0x360
[ 2872.939158]  kernel_ident_mapping_init+0x2f3/0x540
[ 2872.939192]  machine_kexec_prepare+0x459/0x1f30
[ 2872.939224]  ? __pfx_machine_kexec_prepare+0x10/0x10
[ 2872.939250]  ? __pfx_alloc_pgt_page+0x10/0x10
[ 2872.939285]  do_kexec_load+0x673/0x8a0
[ 2872.939312]  ? __pfx_do_kexec_load+0x10/0x10
[ 2872.939340]  ? _copy_from_user+0x5b/0xd0
[ 2872.939373]  __x64_sys_kexec_load+0x1c6/0x230
[ 2872.939403]  do_syscall_64+0xbf/0x3f0
[ 2872.939427]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2872.939449] RIP: 0033:0x7fd597aabb19
[ 2872.939466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2872.939487] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2872.939508] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2872.939522] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2872.939535] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2872.939548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2872.939560] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2872.939589]  </TASK>
16:59:17 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sysvipc/shm\x00', 0x0, 0x0)
ioctl$sock_bt_hci(r1, 0x800448d5, &(0x7f0000000100)="7eb5d1a9c69d3db4148206af716a9125c7689c3aaa8ffbb23f07cf49bae4d269288f055d9207a1830776e41490dbad5d809a9ee81a1ca5518b9aba78892e070e29a6dbc28696d60f2244d46c36a6398b785a3988ec54ed239060b63c511eda790c4b5253fc044c5bb2f63da1c9a55efe5efd9a44258a5fe68e61a4d8f082be5ab634a7d836ede97e588774a793320aa128346741a7f144a9ce22d9910635606b7b29a45f51935acf65ad0bb752bd8930142a6995f53a49ae3125c73a83a64dc5163917c59c801d7943881abba452e02c4a9c6a265d12a0e90195e91cb7e49ba7dcece97f644260ad6fefe83777c8ed5c1917fd7a52939f7a")
ioctl$EXT4_IOC_CHECKPOINT(r0, 0x4004662b, &(0x7f0000000080)=0x5)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:59:17 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:59:17 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000001040)={'veth1_to_hsr\x00'})
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:59:17 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x1400, @remote}, 0x10)

16:59:17 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 11)

16:59:17 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{0x0, 0x0, 0x0}}], 0x3, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:59:17 executing program 7:
r0 = socket$inet(0x2, 0xa, 0xff)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x509ec0, 0x0)
sendto$inet(r1, &(0x7f0000000100)="285dda60574bcc2e481245a7aeaf8e7cf4e13f522c733dec6735e8e9beac0bb7725264b17ba87d6b974196b208ba040d4d576d26c26414612eeede8e5a6faea5f88a35ed5be11d2ca0adf937e414c73071e3a134bae4fa082311bb0ba0e9dd04998d622603d35a69fb9395a1c0aab367b7600fc50ce70c8a3b9f49f6e9b9f7ca529cae4db54da17e", 0x88, 0x4000000, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2}}, 0x10)
r2 = signalfd(0xffffffffffffffff, &(0x7f0000000200)={[0xfff]}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000240)={{0x1, 0x1, 0x18, r0, {0xa4e}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000b40)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {}, {0x0, @usage, <r3=>0x0}})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x50009418, &(0x7f0000000f40)={{}, 0x0, 0x8, @unused=[0x4, 0x85, 0xffff, 0x9], @devid=r3})

16:59:17 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x8904, 0x0)

16:59:17 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x8906, 0x0)

[ 2882.774744] FAULT_INJECTION: forcing a failure.
[ 2882.774744] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2882.776795] CPU: 0 UID: 0 PID: 19724 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2882.776823] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2882.776835] Call Trace:
[ 2882.776841]  <TASK>
[ 2882.776848]  dump_stack_lvl+0xfa/0x120
[ 2882.776874]  should_fail_ex+0x4d7/0x5e0
[ 2882.776903]  should_fail_alloc_page+0xe0/0x110
[ 2882.776934]  prepare_alloc_pages+0x1eb/0x550
[ 2882.776961]  ? policy_nodemask+0xeb/0x4e0
[ 2882.776985]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2882.777008]  ? __lock_acquire+0xc65/0x1b70
[ 2882.777039]  ? __pfx_alloc_pgt_page+0x10/0x10
[ 2882.777059]  ? kimage_alloc_control_pages+0x49a/0x970
[ 2882.777084]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2882.777105]  ? lock_acquire+0x15e/0x2f0
[ 2882.777130]  ? find_next_iomem_res+0x56/0x560
[ 2882.777157]  ? lock_release+0xc8/0x290
[ 2882.777184]  ? do_raw_read_unlock+0x44/0xe0
[ 2882.777201]  ? _raw_read_unlock+0x1e/0x40
[ 2882.777229]  ? find_next_iomem_res+0x385/0x560
[ 2882.777250]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2882.777272]  ? policy_nodemask+0xeb/0x4e0
[ 2882.777295]  alloc_pages_mpol+0xed/0x340
[ 2882.777315]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2882.777350]  alloc_pages_noprof+0x9d/0x180
[ 2882.777373]  get_zeroed_page_noprof+0x18/0xb0
[ 2882.777397]  machine_kexec_prepare+0x17f1/0x1f30
[ 2882.777425]  ? __pfx_machine_kexec_prepare+0x10/0x10
[ 2882.777447]  ? __pfx_alloc_pgt_page+0x10/0x10
[ 2882.777478]  do_kexec_load+0x673/0x8a0
[ 2882.777502]  ? __pfx_do_kexec_load+0x10/0x10
[ 2882.777527]  ? _copy_from_user+0x5b/0xd0
[ 2882.777556]  __x64_sys_kexec_load+0x1c6/0x230
[ 2882.777582]  do_syscall_64+0xbf/0x3f0
[ 2882.777603]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2882.777623] RIP: 0033:0x7fd597aabb19
[ 2882.777638] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2882.777656] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2882.777675] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2882.777688] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2882.777699] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2882.777711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2882.777722] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2882.777746]  </TASK>
16:59:18 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:59:18 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{0x0, 0x0, &(0x7f0000002d00)}}], 0x3, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:59:18 executing program 5:
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
shmctl$IPC_RMID(r0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r1, 0x400448cb, 0x0)

16:59:18 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000100)="39fab857911b07d369bc014fd7265b6d6b1398b0616506ccf488a61e13e65d5f97c491c151a93320505bee82068c60e1c2d8ce2ea4c58891bb271adfcb305e0f08df97d99818b2242244f8ec02a7d82707d23a6c66e98ae4ea6e91eaebef922acc1213f59454f6bd8b05fa3c5d1d2fcee7618c87e3d63539b0ae7d67fbc69422051e53f9594f6308099bc6c91b5b1ea6e3bc5493d0a24ad3ca8e909f93197fb7da0f01daaa08714b985292dba277b615f1a8c2a0a8c1cfb2a9ecc576c64b8bd0cdb1fdde54e516df42eec757b6d9b00c60454bcf006fe6eb787de79252b283e06c945d25e3ed0e6deb22cf8e8c57fa", 0xef, 0x44, &(0x7f0000000000)={0x2, 0x4e22, @multicast2}, 0x10)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

16:59:18 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 12)

[ 2882.986099] FAULT_INJECTION: forcing a failure.
[ 2882.986099] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2882.987469] CPU: 0 UID: 0 PID: 19747 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2882.987492] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2882.987503] Call Trace:
[ 2882.987508]  <TASK>
[ 2882.987515]  dump_stack_lvl+0xfa/0x120
[ 2882.987537]  should_fail_ex+0x4d7/0x5e0
[ 2882.987562]  should_fail_alloc_page+0xe0/0x110
[ 2882.987590]  prepare_alloc_pages+0x1eb/0x550
[ 2882.987613]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2882.987644]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2882.987664]  ? __lock_acquire+0xc65/0x1b70
[ 2882.987689]  ? trace_irq_enable.constprop.0+0x41/0x100
[ 2882.987718]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2882.987735]  ? lock_acquire+0x15e/0x2f0
[ 2882.987756]  ? find_next_iomem_res+0x56/0x560
[ 2882.987780]  ? lock_release+0xc8/0x290
[ 2882.987804]  ? do_raw_read_unlock+0x44/0xe0
[ 2882.987819]  ? _raw_read_unlock+0x1e/0x40
[ 2882.987843]  ? find_next_iomem_res+0x385/0x560
[ 2882.987861]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2882.987880]  ? policy_nodemask+0xeb/0x4e0
[ 2882.987902]  alloc_pages_mpol+0xed/0x340
[ 2882.987920]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2882.987944]  alloc_pages_noprof+0x9d/0x180
[ 2882.987964]  get_zeroed_page_noprof+0x18/0xb0
[ 2882.987985]  machine_kexec_prepare+0x167f/0x1f30
[ 2882.988011]  ? __pfx_machine_kexec_prepare+0x10/0x10
[ 2882.988030]  ? __pfx_alloc_pgt_page+0x10/0x10
[ 2882.988057]  do_kexec_load+0x673/0x8a0
[ 2882.988079]  ? __pfx_do_kexec_load+0x10/0x10
[ 2882.988100]  ? _copy_from_user+0x5b/0xd0
[ 2882.988126]  __x64_sys_kexec_load+0x1c6/0x230
[ 2882.988149]  do_syscall_64+0xbf/0x3f0
[ 2882.988167]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2882.988185] RIP: 0033:0x7fd597aabb19
[ 2882.988197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2882.988214] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2882.988230] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2882.988242] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2882.988252] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2882.988262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2882.988272] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2882.988293]  </TASK>
16:59:26 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:59:26 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x8907, 0x0)

16:59:26 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x2200, @remote}, 0x10)

16:59:26 executing program 5:
ioctl$IOC_PR_RESERVE(0xffffffffffffffff, 0x401070c9, &(0x7f0000000080)={0x8, 0xfffffffb, 0x1})
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x9, 0x621ac, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
pidfd_getfd(r2, r0, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:59:26 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{0x0, 0x0, &(0x7f0000002d00)}}], 0x3, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:59:26 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 13)

16:59:26 executing program 7:
prctl$PR_SVE_GET_VL(0x33, 0x8924)
sendto$inet(0xffffffffffffffff, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

16:59:26 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {<r1=>r0}}, './file0\x00'})
bind$bt_hci(r1, &(0x7f0000000f00)={0x1f, 0x1, 0x3}, 0x6)
recvmmsg(r0, &(0x7f0000000e80)=[{{&(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @broadcast}}}, 0x80, &(0x7f00000005c0)=[{&(0x7f00000000c0)}, {&(0x7f0000000100)=""/209, 0xd1}, {&(0x7f0000000200)=""/175, 0xaf}, {&(0x7f00000002c0)=""/193, 0xc1}, {&(0x7f00000003c0)=""/219, 0xdb}, {&(0x7f00000004c0)=""/194, 0xc2}], 0x6, &(0x7f0000000640)=""/121, 0x79}}, {{&(0x7f00000006c0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, 0x80, &(0x7f0000000d40)=[{&(0x7f0000000740)=""/243, 0xf3}, {&(0x7f0000000840)=""/31, 0x1f}, {&(0x7f0000000880)=""/97, 0x61}, {&(0x7f0000000900)=""/93, 0x5d}, {&(0x7f0000000980)=""/165, 0xa5}, {&(0x7f0000000a40)=""/238, 0xee}, {&(0x7f0000000b40)=""/205, 0xcd}, {&(0x7f0000000c40)=""/189, 0xbd}, {&(0x7f0000000d00)=""/6, 0x6}], 0x9, &(0x7f0000000e00)=""/98, 0x62}, 0x4c6}], 0x2, 0x1, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:59:26 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x8912, 0x0)

[ 2891.705165] FAULT_INJECTION: forcing a failure.
[ 2891.705165] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2891.706615] CPU: 0 UID: 0 PID: 19768 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2891.706638] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2891.706648] Call Trace:
[ 2891.706653]  <TASK>
[ 2891.706659]  dump_stack_lvl+0xfa/0x120
[ 2891.706682]  should_fail_ex+0x4d7/0x5e0
[ 2891.706708]  should_fail_alloc_page+0xe0/0x110
[ 2891.706735]  prepare_alloc_pages+0x1eb/0x550
[ 2891.706758]  ? policy_nodemask+0xeb/0x4e0
[ 2891.706779]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2891.706799]  ? __lock_acquire+0xc65/0x1b70
[ 2891.706827]  ? __pfx_alloc_pgt_page+0x10/0x10
[ 2891.706845]  ? kimage_alloc_control_pages+0x49a/0x970
[ 2891.706867]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2891.706884]  ? lock_acquire+0x15e/0x2f0
[ 2891.706905]  ? find_next_iomem_res+0x56/0x560
[ 2891.706929]  ? lock_release+0xc8/0x290
[ 2891.706952]  ? do_raw_read_unlock+0x44/0xe0
[ 2891.706967]  ? _raw_read_unlock+0x1e/0x40
[ 2891.706991]  ? find_next_iomem_res+0x385/0x560
[ 2891.707009]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2891.707028]  ? policy_nodemask+0xeb/0x4e0
[ 2891.707048]  alloc_pages_mpol+0xed/0x340
[ 2891.707066]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2891.707090]  alloc_pages_noprof+0x9d/0x180
[ 2891.707109]  get_zeroed_page_noprof+0x18/0xb0
[ 2891.707131]  machine_kexec_prepare+0x13cf/0x1f30
[ 2891.707155]  ? __pfx_machine_kexec_prepare+0x10/0x10
[ 2891.707174]  ? __pfx_alloc_pgt_page+0x10/0x10
[ 2891.707200]  do_kexec_load+0x673/0x8a0
[ 2891.707222]  ? __pfx_do_kexec_load+0x10/0x10
[ 2891.707243]  ? _copy_from_user+0x5b/0xd0
[ 2891.707268]  __x64_sys_kexec_load+0x1c6/0x230
[ 2891.707290]  do_syscall_64+0xbf/0x3f0
[ 2891.707308]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2891.707332] RIP: 0033:0x7fd597aabb19
[ 2891.707344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2891.707360] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2891.707379] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2891.707390] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2891.707400] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2891.707410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2891.707419] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2891.707441]  </TASK>
16:59:26 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r2 = socket$inet(0x2, 0xa, 0x0)
setsockopt$inet_MCAST_MSFILTER(r2, 0x0, 0x30, &(0x7f0000000200)={0x0, {{0x2, 0x4e21, @loopback}}, 0x2, 0xa, [{{0x2, 0x4e23, @multicast2}}, {{0x2, 0x4e20, @private=0xa010100}}, {{0x2, 0x4e21, @multicast1}}, {{0x2, 0x4e22, @remote}}, {{0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x3a}}}, {{0x2, 0x4e22, @multicast1}}, {{0x2, 0x4e24, @loopback}}, {{0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}}, {{0x2, 0x4e23, @rand_addr=0x64010100}}, {{0x2, 0x4e23, @private=0xa010102}}]}, 0x590)
setsockopt$inet_int(r1, 0x0, 0x15, &(0x7f0000000080), 0x4)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$inet_mtu(r0, 0x0, 0xa, &(0x7f0000000000), 0x4)

16:59:27 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)}}], 0x1, 0x0, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
ioctl$HCIINQUIRY(r0, 0x800448f0, &(0x7f0000000040)={0xffffffffffffffff, 0x9, "219a1d", 0x34, 0x4})
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
bind$bt_hci(r2, &(0x7f0000001040)={0x1f, 0x4, 0x1}, 0x6)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r3, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r4 = dup(r3)
setsockopt$bt_BT_DEFER_SETUP(r4, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
recvmmsg$unix(r4, &(0x7f0000003000)=[{{&(0x7f0000000080), 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000100)}, {&(0x7f0000000140)=""/30, 0x1e}], 0x2, &(0x7f0000000200)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xf0}}, {{&(0x7f0000000300), 0x6e, &(0x7f0000000840)=[{&(0x7f0000000380)=""/28, 0x1c}, {&(0x7f00000003c0)=""/158, 0x9e}, {&(0x7f0000000480)=""/93, 0x5d}, {&(0x7f0000000500)=""/152, 0x98}, {&(0x7f00000005c0)=""/234, 0xea}, {&(0x7f00000006c0)=""/131, 0x83}, {&(0x7f0000000780)=""/168, 0xa8}], 0x7, &(0x7f00000008c0)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x90}}, {{0x0, 0x0, &(0x7f0000000d40)=[{&(0x7f0000000980)=""/29, 0x1d}, {&(0x7f00000009c0)=""/241, 0xf1}, {&(0x7f0000000ac0)=""/238, 0xee}, {&(0x7f0000000bc0)=""/141, 0x8d}, {&(0x7f0000000c80)=""/129, 0x81}], 0x5, &(0x7f0000000dc0)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}}, {{&(0x7f0000000e00)=@abs, 0x6e, &(0x7f0000001140)=[{&(0x7f0000000e80)=""/87, 0x57}, {&(0x7f0000000f00)=""/86, 0x56}, {&(0x7f0000000f80)=""/131, 0x83}, {&(0x7f00000010c0)=""/90, 0x5a}], 0x4, &(0x7f0000001180)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xf8}}, {{&(0x7f0000001280), 0x6e, &(0x7f00000026c0)=[{&(0x7f0000001300)=""/21, 0x15}, {&(0x7f0000001340)=""/196, 0xc4}, {&(0x7f0000001440)=""/141, 0x8d}, {&(0x7f0000001500)=""/235, 0xeb}, {&(0x7f0000001600)=""/4096, 0x1000}, {&(0x7f0000002600)=""/141, 0x8d}], 0x6, &(0x7f0000002740)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x40}}, {{0x0, 0x0, &(0x7f0000002c80)=[{&(0x7f0000002780)=""/52, 0x34}, {&(0x7f00000027c0)=""/173, 0xad}, {&(0x7f0000002880)=""/153, 0x99}, {&(0x7f0000002940)=""/200, 0xc8}, {&(0x7f0000002a40)=""/163, 0xa3}, {&(0x7f0000002b00)=""/210, 0xd2}, {&(0x7f0000002c00)=""/123, 0x7b}, {&(0x7f0000003280)=""/4096, 0x1000}], 0x8, &(0x7f0000002d00)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000002d40)=@abs, 0x6e, &(0x7f0000002f80)=[{&(0x7f0000002dc0)=""/195, 0xc3}, {&(0x7f0000002ec0)=""/17, 0x11}, {&(0x7f0000002f00)=""/26, 0x1a}, {&(0x7f0000002f40)=""/33, 0x21}, {&(0x7f0000004280)=""/4096, 0x1000}], 0x5}}], 0x7, 0x40002000, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x2, 0x3}, 0x6)

16:59:27 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/249, 0xf9}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f0000001280)=""/172, 0xac}], 0x3}, 0x3}, {{0x0, 0x0, &(0x7f0000002d00)}}], 0x3, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:59:27 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240), 0x0, 0x2, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:59:27 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x8940, 0x0)

16:59:27 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8a000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x1}, 0x0, 0x10, 0x0, 0x0, 0x200000000, 0x3, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40042409, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000240)={{0x1, 0x1, 0x18, <r2=>r1}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r3=>r1, {0x2c83e847}}, './file0\x00'})
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r3)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r4, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
connect$bt_l2cap(r4, &(0x7f0000000200)={0x1f, 0x1, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x2, 0x1}, 0xe)
r5 = dup(r4)
setsockopt$bt_BT_DEFER_SETUP(r5, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0x1, 0x2, 0x1f, 0xff, 0x0, 0x8, 0x21008, 0xb, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x6, 0x1, @perf_config_ext={0x0, 0xd0df}, 0x4400, 0x3, 0x20, 0x2, 0x1, 0x5, 0x6, 0x0, 0xf25, 0x0, 0x1}, 0xffffffffffffffff, 0x7, r5, 0x1)
r6 = creat(&(0x7f00000000c0)='./file0\x00', 0xccc8697f90a72dc0)
r7 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r6, 0xc018937b, &(0x7f0000000140)={{0x1, 0x1, 0x18, r7, {0xee01}}, './file0\x00'})
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:59:27 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 14)

16:59:27 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
r1 = syz_open_dev$vcsu(&(0x7f0000000280), 0x2, 0x410102)
pread64(r1, &(0x7f0000000100)=""/34, 0x22, 0xa3bb)
read(r1, &(0x7f0000000180)=""/188, 0xbc)
setsockopt$inet_int(r1, 0x0, 0x2, &(0x7f0000000140)=0xfffffe00, 0x4)
sendto$inet(r0, &(0x7f0000000040)="60da800000000000000063077f6a7a0000", 0x11, 0x20000b00, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r2, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r3 = dup(r2)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
openat$cgroup_ro(r3, &(0x7f00000002c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)=ANY=[@ANYBLOB="010008000100d01ead080000", @ANYRES32=r0, @ANYBLOB="03000000004000002e2f66696c653000"])
setsockopt$inet_int(r0, 0x0, 0x7, &(0x7f0000000240)=0x101, 0x4)

[ 2891.948352] FAULT_INJECTION: forcing a failure.
[ 2891.948352] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2891.949367] CPU: 0 UID: 0 PID: 19801 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2891.949383] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2891.949391] Call Trace:
[ 2891.949396]  <TASK>
[ 2891.949401]  dump_stack_lvl+0xfa/0x120
[ 2891.949418]  should_fail_ex+0x4d7/0x5e0
[ 2891.949437]  should_fail_alloc_page+0xe0/0x110
[ 2891.949458]  prepare_alloc_pages+0x1eb/0x550
[ 2891.949478]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2891.949492]  ? _vm_unmap_aliases+0x55b/0x7c0
[ 2891.949507]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2891.949520]  ? __pfx_cpa_flush+0x10/0x10
[ 2891.949537]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2891.949552]  ? pgprot2cachemode+0x9a/0x130
[ 2891.949567]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2891.949584]  ? __pfx_change_page_attr_set_clr+0x10/0x10
[ 2891.949602]  ? do_raw_read_unlock+0x44/0xe0
[ 2891.949615]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2891.949629]  ? policy_nodemask+0xeb/0x4e0
[ 2891.949644]  alloc_pages_mpol+0xed/0x340
[ 2891.949657]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2891.949675]  alloc_pages_noprof+0x9d/0x180
[ 2891.949688]  kimage_alloc_pages+0x70/0x240
[ 2891.949704]  kimage_alloc_page+0x14e/0x7e0
[ 2891.949722]  kimage_add_entry+0x12b/0x380
[ 2891.949734]  ? __pfx_alloc_pgt_page+0x10/0x10
[ 2891.949749]  kimage_load_segment+0x3c1/0xc90
[ 2891.949767]  do_kexec_load+0x6bd/0x8a0
[ 2891.949782]  ? __pfx_do_kexec_load+0x10/0x10
[ 2891.949797]  ? _copy_from_user+0x5b/0xd0
[ 2891.949815]  __x64_sys_kexec_load+0x1c6/0x230
[ 2891.949831]  do_syscall_64+0xbf/0x3f0
[ 2891.949845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2891.949858] RIP: 0033:0x7fd597aabb19
[ 2891.949867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2891.949879] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2891.949891] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2891.949899] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2891.949907] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2891.949914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2891.949921] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2891.949936]  </TASK>
16:59:27 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 15)

[ 2892.058185] FAULT_INJECTION: forcing a failure.
[ 2892.058185] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2892.060052] CPU: 1 UID: 0 PID: 19809 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2892.060083] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2892.060096] Call Trace:
[ 2892.060104]  <TASK>
[ 2892.060114]  dump_stack_lvl+0xfa/0x120
[ 2892.060143]  should_fail_ex+0x4d7/0x5e0
[ 2892.060177]  should_fail_alloc_page+0xe0/0x110
[ 2892.060216]  prepare_alloc_pages+0x1eb/0x550
[ 2892.060248]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2892.060272]  ? _vm_unmap_aliases+0x55b/0x7c0
[ 2892.060305]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2892.060336]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2892.060366]  ? pgprot2cachemode+0x9a/0x130
[ 2892.060393]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2892.060423]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2892.060459]  ? do_raw_read_unlock+0x44/0xe0
[ 2892.060483]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2892.060510]  ? policy_nodemask+0xeb/0x4e0
[ 2892.060536]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2892.060573]  ? policy_nodemask+0xeb/0x4e0
[ 2892.060602]  alloc_pages_mpol+0xed/0x340
[ 2892.060628]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2892.060655]  ? alloc_pages_noprof+0xb7/0x180
[ 2892.060685]  alloc_pages_noprof+0x9d/0x180
[ 2892.060713]  kimage_alloc_pages+0x70/0x240
[ 2892.060743]  kimage_alloc_page+0x14e/0x7e0
[ 2892.060777]  kimage_load_segment+0x424/0xc90
[ 2892.060813]  do_kexec_load+0x6bd/0x8a0
[ 2892.060842]  ? __pfx_do_kexec_load+0x10/0x10
[ 2892.060873]  ? _copy_from_user+0x5b/0xd0
[ 2892.060907]  __x64_sys_kexec_load+0x1c6/0x230
[ 2892.060940]  do_syscall_64+0xbf/0x3f0
[ 2892.060965]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2892.060988] RIP: 0033:0x7fd597aabb19
[ 2892.061005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2892.061027] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2892.061050] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2892.061066] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2892.061079] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2892.061093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2892.061106] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2892.061136]  </TASK>
16:59:27 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000140)=ANY=[@ANYBLOB="0100000201001000a03601000000000030701eed2a000000", @ANYRES32=<r1=>r0, @ANYBLOB="05000000000000002e2f66696c653000"])
bind$bt_hci(r1, &(0x7f0000000100)={0x1f, 0x3, 0x4}, 0x6)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r2, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r3 = dup(r2)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$HCIINQUIRY(r3, 0x800448f0, &(0x7f0000000080)={0xffffffffffffffff, 0x1, "5d7ef6", 0xff, 0xd6})

16:59:27 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x6000, @remote}, 0x10)

16:59:27 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x8941, 0x0)

16:59:27 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:59:27 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240), 0x0, 0x2, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:59:27 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 16)

16:59:27 executing program 7:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
r1 = dup(r0)
setsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0xf, &(0x7f0000000000)=0x4, 0x4)
ioctl$CDROMPLAYMSF(r1, 0x5303, &(0x7f0000000080)={0x72, 0x2, 0x9, 0x0, 0x5, 0x7f})
r2 = socket$inet(0x2, 0x5, 0x103)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb04, &(0x7f00000000c0)={0x2, 0x0, @loopback}, 0x10)
fcntl$setstatus(r2, 0x4, 0x40000)

[ 2892.584483] FAULT_INJECTION: forcing a failure.
[ 2892.584483] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2892.586610] CPU: 1 UID: 0 PID: 19824 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2892.586646] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2892.586662] Call Trace:
[ 2892.586670]  <TASK>
[ 2892.586680]  dump_stack_lvl+0xfa/0x120
[ 2892.586712]  should_fail_ex+0x4d7/0x5e0
[ 2892.586750]  should_fail_alloc_page+0xe0/0x110
[ 2892.586792]  prepare_alloc_pages+0x1eb/0x550
[ 2892.586828]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2892.586860]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2892.586887]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2892.586921]  ? pgprot2cachemode+0x9a/0x130
[ 2892.586953]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2892.586986]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2892.587021]  ? do_raw_read_unlock+0x44/0xe0
[ 2892.587046]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2892.587076]  ? policy_nodemask+0xeb/0x4e0
[ 2892.587105]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2892.587132]  ? policy_nodemask+0xeb/0x4e0
[ 2892.587163]  alloc_pages_mpol+0xed/0x340
[ 2892.587192]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2892.587222]  ? alloc_pages_noprof+0xb7/0x180
[ 2892.587255]  alloc_pages_noprof+0x9d/0x180
[ 2892.587285]  kimage_alloc_pages+0x70/0x240
[ 2892.587317]  kimage_alloc_page+0x14e/0x7e0
[ 2892.587363]  kimage_load_segment+0x424/0xc90
[ 2892.587402]  do_kexec_load+0x6bd/0x8a0
[ 2892.587435]  ? __pfx_do_kexec_load+0x10/0x10
[ 2892.587468]  ? _copy_from_user+0x5b/0xd0
[ 2892.587507]  __x64_sys_kexec_load+0x1c6/0x230
[ 2892.587542]  do_syscall_64+0xbf/0x3f0
[ 2892.587570]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2892.587595] RIP: 0033:0x7fd597aabb19
[ 2892.587614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2892.587638] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2892.587663] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2892.587680] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2892.587695] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2892.587711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2892.587726] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2892.587759]  </TASK>
16:59:27 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240), 0x0, 0x2, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:59:37 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt(r1, 0x0, 0x25, &(0x7f0000000100), 0x0)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r2 = openat2(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x42080, 0x2, 0x10}, 0x18)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000340)={'syztnl2\x00', &(0x7f0000000240)={'syztnl2\x00', <r4=>0x0, 0x1, 0x7, 0x79911b49, 0x3, {{0x36, 0x4, 0x1, 0x6, 0xd8, 0x64, 0x0, 0xcd, 0x29, 0x0, @dev={0xac, 0x14, 0x14, 0x1f}, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@ssrr={0x89, 0x3, 0x7a}, @lsrr={0x83, 0x7, 0xb8, [@multicast1]}, @generic={0x7, 0x11, "feaeb64762e3823902de13fc31d145"}, @timestamp_addr={0x44, 0x4c, 0x4f, 0x1, 0x0, [{@empty, 0xa7}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x2}, {@local, 0x2}, {@multicast1, 0x4}, {@loopback, 0x8}, {@broadcast}, {@local, 0x800}, {@local, 0x4}, {@rand_addr=0x64010101, 0xf53}]}, @cipso={0x86, 0x32, 0x3, [{0x2, 0xe, "b8af7e38b144068d6cf26381"}, {0x7, 0x6, "de2c8f3a"}, {0x6, 0x9, "ac85b59c85b5ec"}, {0x6, 0xf, "af20a48ebfb4bb9a9fa9de3103"}]}, @ssrr={0x89, 0x27, 0x3c, [@loopback, @dev={0xac, 0x14, 0x14, 0xe}, @local, @dev={0xac, 0x14, 0x14, 0x41}, @multicast1, @broadcast, @multicast1, @local, @empty]}, @noop]}}}}})
sendmsg$ETHTOOL_MSG_EEE_SET(r2, &(0x7f0000000440)={&(0x7f0000000180), 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x48, r3, 0x20, 0x70bd26, 0x25dfdbfd, {}, [@ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_EEE_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0x48}}, 0x20008000)
r5 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r5, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$inet_mreq(r5, 0x0, 0x20, &(0x7f0000000000)={@empty, @remote}, 0x8)
setsockopt$inet_int(r0, 0x0, 0x2, &(0x7f0000000080), 0x4)

16:59:37 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000001040)={0x1f, 0x1}, 0x6)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:59:37 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x19, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:59:37 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 17)

16:59:37 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0xe803, @remote}, 0x10)

16:59:37 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:59:37 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x894c, 0x0)

16:59:37 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

[ 2902.528422] FAULT_INJECTION: forcing a failure.
[ 2902.528422] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2902.530585] CPU: 0 UID: 0 PID: 19850 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2902.530620] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2902.530636] Call Trace:
[ 2902.530645]  <TASK>
[ 2902.530655]  dump_stack_lvl+0xfa/0x120
[ 2902.530687]  should_fail_ex+0x4d7/0x5e0
[ 2902.530726]  should_fail_alloc_page+0xe0/0x110
[ 2902.530769]  prepare_alloc_pages+0x1eb/0x550
[ 2902.530804]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2902.530836]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2902.530865]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2902.530900]  ? pgprot2cachemode+0x9a/0x130
[ 2902.530931]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2902.530965]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2902.531001]  ? do_raw_read_unlock+0x44/0xe0
[ 2902.531027]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2902.531057]  ? policy_nodemask+0xeb/0x4e0
[ 2902.531086]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2902.531114]  ? policy_nodemask+0xeb/0x4e0
[ 2902.531146]  alloc_pages_mpol+0xed/0x340
[ 2902.531175]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2902.531206]  ? alloc_pages_noprof+0xb7/0x180
[ 2902.531240]  alloc_pages_noprof+0x9d/0x180
[ 2902.531271]  kimage_alloc_pages+0x70/0x240
[ 2902.531305]  kimage_alloc_page+0x14e/0x7e0
[ 2902.531352]  kimage_load_segment+0x424/0xc90
[ 2902.531392]  do_kexec_load+0x6bd/0x8a0
[ 2902.531426]  ? __pfx_do_kexec_load+0x10/0x10
[ 2902.531460]  ? _copy_from_user+0x5b/0xd0
[ 2902.531499]  __x64_sys_kexec_load+0x1c6/0x230
[ 2902.531535]  do_syscall_64+0xbf/0x3f0
[ 2902.531564]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2902.531590] RIP: 0033:0x7fd597aabb19
[ 2902.531609] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2902.531634] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2902.531659] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2902.531676] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2902.531692] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2902.531707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2902.531722] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2902.531756]  </TASK>
16:59:37 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x8982, 0x0)

16:59:37 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$HCIINQUIRY(r0, 0x800448f0, &(0x7f0000000100)={0x2, 0x4, "e192d7", 0xc9})
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0x4, 0x2}, 0x6)
bind$bt_hci(r0, &(0x7f00000000c0)={0x1f, 0x0, 0x2}, 0x6)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:59:37 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:59:37 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 18)

16:59:37 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x8983, 0x0)

16:59:37 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

[ 2902.826126] FAULT_INJECTION: forcing a failure.
[ 2902.826126] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2902.828167] CPU: 0 UID: 0 PID: 19887 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2902.828200] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2902.828214] Call Trace:
[ 2902.828222]  <TASK>
[ 2902.828231]  dump_stack_lvl+0xfa/0x120
[ 2902.828262]  should_fail_ex+0x4d7/0x5e0
[ 2902.828298]  should_fail_alloc_page+0xe0/0x110
[ 2902.828345]  prepare_alloc_pages+0x1eb/0x550
[ 2902.828378]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2902.828409]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2902.828436]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2902.828468]  ? pgprot2cachemode+0x9a/0x130
[ 2902.828498]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2902.828529]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2902.828563]  ? do_raw_read_unlock+0x44/0xe0
[ 2902.828588]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2902.828616]  ? policy_nodemask+0xeb/0x4e0
[ 2902.828643]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2902.828670]  ? policy_nodemask+0xeb/0x4e0
[ 2902.828711]  alloc_pages_mpol+0xed/0x340
[ 2902.828738]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2902.828767]  ? alloc_pages_noprof+0xb7/0x180
[ 2902.828799]  alloc_pages_noprof+0x9d/0x180
[ 2902.828829]  kimage_alloc_pages+0x70/0x240
[ 2902.828860]  kimage_alloc_page+0x14e/0x7e0
[ 2902.828896]  kimage_load_segment+0x424/0xc90
[ 2902.828933]  do_kexec_load+0x6bd/0x8a0
[ 2902.828964]  ? __pfx_do_kexec_load+0x10/0x10
[ 2902.828996]  ? _copy_from_user+0x5b/0xd0
[ 2902.829033]  __x64_sys_kexec_load+0x1c6/0x230
[ 2902.829067]  do_syscall_64+0xbf/0x3f0
[ 2902.829094]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2902.829119] RIP: 0033:0x7fd597aabb19
[ 2902.829138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2902.829160] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2902.829184] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2902.829200] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2902.829215] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2902.829229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2902.829243] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2902.829275]  </TASK>
16:59:38 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:59:38 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448dd, &(0x7f0000000080)="fd4b6f3c400beb8f59ab9a464026eefc34fa992f045143892ed0d914c55ea34f2470d8fd2d7b92ac40e32239c86d736a2f09e0958601578980be76bb87cd970b926c3f92f984b2293b673aa0671658ff2f21b091eb09e2125fb7a901923ab5fc87f5")
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140), 0x4041, 0x0)
write$bt_hci(r1, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x8)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/bus/input/handlers\x00', 0x0, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
pipe2(&(0x7f0000000180)={<r2=>0xffffffffffffffff}, 0x84000)
write$bt_hci(r2, &(0x7f00000001c0)={0x1, @le_set_scan_enable={{0x200c, 0x2}, {0x81}}}, 0x6)
r3 = accept4$packet(r2, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000240)=0x14, 0x800)
recvmmsg(r3, &(0x7f0000000a00)=[{{&(0x7f0000000280)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, 0x80, &(0x7f0000000540)=[{&(0x7f0000000300)=""/31, 0x1f}, {&(0x7f0000000340)=""/234, 0xea}, {&(0x7f0000000440)=""/212, 0xd4}], 0x3, &(0x7f0000000580)=""/72, 0x48}, 0x8}, {{&(0x7f0000000600)=@hci, 0x80, &(0x7f0000000900)=[{&(0x7f0000000680)=""/90, 0x5a}, {&(0x7f0000000700)=""/41, 0x29}, {&(0x7f0000000740)=""/142, 0x8e}, {&(0x7f0000000800)=""/93, 0x5d}, {&(0x7f0000000880)=""/43, 0x2b}, {&(0x7f00000008c0)=""/53, 0x35}], 0x6, &(0x7f0000000980)=""/122, 0x7a}, 0x3}], 0x2, 0x40, &(0x7f0000000a80))

16:59:47 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x89a0, 0x0)

16:59:47 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0xf401, @remote}, 0x10)

16:59:47 executing program 1:
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x2, 0x3}, 0x6)
recvmmsg(0xffffffffffffffff, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000001180)=""/4105, 0x1009}], 0x10000000000000a1}}], 0x36, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:59:47 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:59:47 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 19)

16:59:47 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:59:47 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(0xffffffffffffffff, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
syz_mount_image$nfs4(&(0x7f0000001ac0), &(0x7f0000001b00)='./file0\x00', 0x8000, 0x5, &(0x7f0000001e80)=[{&(0x7f0000001b40)="e25c6ab970aa8d110da3828316009760379054da9e1f0b8ef7528b6a9d4d4e14449a5235e10911c723ef2f95f5b79489c4870219f8269b34192c0cb4a760125e36e868f8649b0a0b543f66a14e3da2040ca5f3780e43602d965572e7a113e36cc540c5ab67b813e0f5f9d9c9abf8ba87bc8e019b27750d12bfb3356353df0bdd28dda6c046b42bac5fda6c5a9e6e78b0134b99a6afda453ed1372c497eb09807a1fa18d3f6e9cbbb998a97", 0xab, 0x5}, {&(0x7f0000001c00)="dc5190a43cf38646b1b0e4f66ce7cf21a27645632b4c9b09be8df77e6fb77cc6bae2da67f196110f020f875cb14dbd26f2ee20edcdafa197b1680a4b0d0025920c28d5c4fba1c944fb7046c71f7779454d5d280a2a29632bda32ed7d4e838a388feeecf88aad86e58cf634a2fc8a707de86a3d64f05fa536b236c84c1e7c964dcfaf3189ebd84aad31a88a0a118de3b6baf98f9dbc923b89c80d7d9f35320b00a274b79866a37973762ad655f3d2394dd40a9e905240bc5f318fa844", 0xbc, 0x1}, {&(0x7f0000001cc0)="ba7687542bdd931b803c63d358f5a4187a2bed8b53cd9a7cc062b098a6984e5caeef0ecd6ac2021df1cea3ceb06cdacfae1c0c9d24313dd31ecbaecb8ff538b8db997aa3cee6886496cc5727332923b357d99468fb1fbd0f5a86c08bc4d6cc6e9c64612ba426d05ffdbb1beb577eb9f97eaa198d8d99d154dd378423d427dae06fc097503b0461569ec7be16f4537c5fc7eb13a2b62119f76696d7f9fca434e873e05f190c5e", 0xa6, 0xffffffff}, {&(0x7f0000001d80), 0x0, 0x5}, {&(0x7f0000001dc0)="c9db5eea28beb2400092bd90c17cd756b047a6ff08b23ece79978fd6c8289e3440c1aee3d1cca8dbc48ab9c9a0bf101bdc83b74a188e76b9121e44a97346fbf78d2b6db62b628d28732aa91e499247cacfddf75999ddda747267b782997784c0d24bb00900ebd572eecbb3ae4519980874fa8e1f9999009ffdea66b9434d340b103fc0f6db49c2297b1d2fdbb362100bd251b68a90ee913a5df0ccbb8f737c9891801f1d88e528cf5199c06a98489d5f739c", 0xb2, 0x1}], 0x2224004, &(0x7f0000001f00)={[{}], [{@func={'func', 0x3d, 'CREDS_CHECK'}}, {@subj_type={'subj_type', 0x3d, '#'}}, {@subj_type={'subj_type', 0x3d, '&['}}, {@smackfshat={'smackfshat', 0x3d, '{^@\''}}, {@smackfshat={'smackfshat', 0x3d, '/'}}, {@measure}]})
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r3 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r3, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
open_tree(0xffffffffffffff9c, &(0x7f0000001f80)='./file0\x00', 0x0)
r4 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r4, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

16:59:47 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f0000000000)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x2d}}, 0x10)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000000080)={0x6, {{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x33}}}}, 0x88)

16:59:47 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000340)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r3=>r1, @ANYBLOB="4dc7f03b35f0ab8e"])
setsockopt$inet_int(r3, 0x0, 0x32, &(0x7f0000000380)=0xd33, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r4, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r5 = dup(r4)
setsockopt$bt_BT_DEFER_SETUP(r5, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
io_submit(0x0, 0x3, &(0x7f0000000300)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x7, 0x101, r0, &(0x7f0000000100)="a7d90dce1580374515239525cb1db75be4f05500a8cf9778fc79ebe626f4bc424b2e9bbc0983e9adf9374eb5324b74b4c781faca36ed1caf4cf4e1288a32358a8c73ba49988e82cd84c5a581168e9465e920a79448d6009119120fc0845a777e61be9391b421bf", 0x67, 0x2, 0x0, 0x2}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x9, r1, &(0x7f0000000180)="5dab15ccbf2b8926697ea87c453d574b66217df55bfb782454609ddbb78949e135931bee681ce7598f8c812ef8106332c9a8868fce3658c6e0c760c8f64b2e208cee4d73b9e7f7ca42a1ae5d784e4efb907d8938cc00620a932f7b075719e007433f9a588158d35c7d1d2db026a2b36afe17b3f76e1797a9421abb99ed0ac45a3278d9e0b39c60dfe7f573b8bf8899776033bb73f9351111a2ad5656f6e782018f9018685598d00aa95b2099702ba7c4fb0b54d4be3cba57ffcf8eee8f17", 0xbe, 0x6d}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xc6a6, r2, &(0x7f0000000240)="820ee0155c813e6418c1bb9370ffb0a40454771c8c7bcdc596761fd4250d89cc2b9004b371f1e932aaa6aa8b707a419352626aef765ee3287fdd2aee9415166acd2977", 0x43, 0x5, 0x0, 0x1, r5}])
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @rand_addr=0x64010101}, 0x10)

[ 2912.320925] FAULT_INJECTION: forcing a failure.
[ 2912.320925] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2912.322112] CPU: 0 UID: 0 PID: 19927 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2912.322129] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2912.322137] Call Trace:
[ 2912.322142]  <TASK>
[ 2912.322147]  dump_stack_lvl+0xfa/0x120
[ 2912.322166]  should_fail_ex+0x4d7/0x5e0
[ 2912.322185]  should_fail_alloc_page+0xe0/0x110
[ 2912.322207]  prepare_alloc_pages+0x1eb/0x550
[ 2912.322224]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2912.322240]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2912.322253]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2912.322270]  ? pgprot2cachemode+0x9a/0x130
[ 2912.322286]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2912.322302]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2912.322319]  ? do_raw_read_unlock+0x44/0xe0
[ 2912.322336]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2912.322351]  ? policy_nodemask+0xeb/0x4e0
[ 2912.322365]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2912.322379]  ? policy_nodemask+0xeb/0x4e0
[ 2912.322394]  alloc_pages_mpol+0xed/0x340
[ 2912.322407]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2912.322422]  ? alloc_pages_noprof+0xb7/0x180
[ 2912.322438]  alloc_pages_noprof+0x9d/0x180
[ 2912.322453]  kimage_alloc_pages+0x70/0x240
[ 2912.322468]  kimage_alloc_page+0x14e/0x7e0
[ 2912.322487]  kimage_load_segment+0x424/0xc90
[ 2912.322505]  do_kexec_load+0x6bd/0x8a0
[ 2912.322521]  ? __pfx_do_kexec_load+0x10/0x10
[ 2912.322541]  ? _copy_from_user+0x5b/0xd0
[ 2912.322561]  __x64_sys_kexec_load+0x1c6/0x230
[ 2912.322578]  do_syscall_64+0xbf/0x3f0
[ 2912.322593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2912.322606] RIP: 0033:0x7fd597aabb19
[ 2912.322616] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2912.322628] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2912.322640] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2912.322648] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2912.322656] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2912.322663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2912.322670] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2912.322686]  </TASK>
[ 2912.324396] loop5: detected capacity change from 0 to 264192
16:59:47 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f0000002d00)}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:59:47 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 20)

16:59:47 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x400}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448c9, &(0x7f0000001040)="93bc0cb34c806bfd0712ab3dd78802835e0142df185332f0eb1156")
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r4 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r4, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f0000001640)={{0x1, 0x1, 0x18, r0, {<r5=>r2}}, './file0\x00'})
getsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, &(0x7f00000018c0)=0x1, &(0x7f0000001900)=0x4)
clone3(&(0x7f0000001840)={0x10190180, &(0x7f0000001680), &(0x7f00000016c0), &(0x7f0000001700), {0x1e}, &(0x7f0000001740)=""/114, 0x72, &(0x7f00000017c0)=""/4, &(0x7f0000001800)=[0x0], 0x1, {r5}}, 0x58)
ioctl$VFAT_IOCTL_READDIR_SHORT(r3, 0x82307202, &(0x7f0000001280)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
recvfrom(0xffffffffffffffff, &(0x7f00000014c0)=""/218, 0xda, 0x62, &(0x7f00000015c0)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80)
recvfrom(r3, &(0x7f0000001180)=""/249, 0xf9, 0x2000, &(0x7f00000010c0)=@l2={0x1f, 0x7ff, @none, 0x8}, 0x80)
socket$inet_icmp_raw(0x2, 0x3, 0x1)

[ 2912.456253] loop5: detected capacity change from 0 to 264192
16:59:47 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:59:47 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
recvfrom(r0, &(0x7f0000000100)=""/192, 0xc0, 0x140, &(0x7f00000001c0)=@ll={0x11, 0x19, 0x0, 0x1, 0x22, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, 0x80)

16:59:47 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f0000002d00)}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

[ 2912.513809] FAULT_INJECTION: forcing a failure.
[ 2912.513809] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2912.514812] CPU: 0 UID: 0 PID: 19943 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2912.514829] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2912.514839] Call Trace:
[ 2912.514844]  <TASK>
[ 2912.514849]  dump_stack_lvl+0xfa/0x120
[ 2912.514867]  should_fail_ex+0x4d7/0x5e0
[ 2912.514886]  should_fail_alloc_page+0xe0/0x110
[ 2912.514906]  prepare_alloc_pages+0x1eb/0x550
[ 2912.514923]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2912.514938]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2912.514950]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2912.514966]  ? pgprot2cachemode+0x9a/0x130
[ 2912.514981]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2912.514996]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2912.515012]  ? do_raw_read_unlock+0x44/0xe0
[ 2912.515024]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2912.515039]  ? policy_nodemask+0xeb/0x4e0
[ 2912.515053]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2912.515065]  ? policy_nodemask+0xeb/0x4e0
[ 2912.515079]  alloc_pages_mpol+0xed/0x340
[ 2912.515092]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2912.515106]  ? alloc_pages_noprof+0xb7/0x180
[ 2912.515121]  alloc_pages_noprof+0x9d/0x180
[ 2912.515135]  kimage_alloc_pages+0x70/0x240
[ 2912.515151]  kimage_alloc_page+0x14e/0x7e0
[ 2912.515169]  kimage_load_segment+0x424/0xc90
[ 2912.515186]  do_kexec_load+0x6bd/0x8a0
[ 2912.515201]  ? __pfx_do_kexec_load+0x10/0x10
[ 2912.515216]  ? _copy_from_user+0x5b/0xd0
[ 2912.515234]  __x64_sys_kexec_load+0x1c6/0x230
[ 2912.515250]  do_syscall_64+0xbf/0x3f0
[ 2912.515264]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2912.515276] RIP: 0033:0x7fd597aabb19
[ 2912.515286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2912.515297] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2912.515309] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2912.515317] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2912.515324] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2912.515331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2912.515338] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2912.515353]  </TASK>
16:59:57 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x89a3, 0x0)

16:59:57 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 21)

16:59:57 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:59:57 executing program 1:
ioctl$RFKILL_IOCTL_NOINPUT(0xffffffffffffffff, 0x5201)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x800448d4, &(0x7f0000001040)="80153a23b5e45dfc20000d42d1785aa2da2d53bc19c58ce7cb304eb1b8cfce2b864246c75033c2ad7bfebbb794edc6cf99fbe3a15ec5bc83efd9c55ab266db14dfc33a3eac47d9841f8e43ec6e8fb7f752fb339e40e9a196278a072545376a4bc5e84a507318228dfd89fe034dbeb984fe29cc1fcf1b2f2dcf6a4c7fe87df46dd599f2c7c665c2e12844cea47a5ca306b695d9c0a84d170d61363516537a2e9e6bf1fb8b096983bbad1eb6afdb94beaee317c006aaf7b55f5e1c75")
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

16:59:57 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$inet_mreq(r0, 0x0, 0x20, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback}, 0x8)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r1, 0x8982, &(0x7f0000000000))
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

16:59:57 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f0000002d00)}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

16:59:57 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote={0xac, 0x13}}, 0x10)

16:59:57 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r2, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r3 = dup(r2)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0xff, 0x8, 0xff, 0x7, 0x0, 0x89a, 0x0, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0xe7, 0x4, @perf_config_ext={0x5, 0x2}, 0x12080, 0xfff, 0x0, 0xc4d7ab86a38ff246, 0x5, 0x8, 0x18db, 0x0, 0x7, 0x0, 0x3f}, 0xffffffffffffffff, 0x3, r3, 0x2)
perf_event_open(&(0x7f0000000080)={0x3, 0x80, 0x8, 0x1, 0x3f, 0x80, 0x0, 0x8, 0x80020, 0xd, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3f, 0x2, @perf_config_ext={0x15, 0xd72e}, 0x44004, 0x0, 0x2955, 0x2, 0x2, 0xffffff4b, 0x1, 0x0, 0xfffffff9, 0x0, 0xfffffffffffffffe}, 0x0, 0xd, r1, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

[ 2922.230094] FAULT_INJECTION: forcing a failure.
[ 2922.230094] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2922.232363] CPU: 0 UID: 0 PID: 19979 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2922.232406] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2922.232422] Call Trace:
[ 2922.232432]  <TASK>
[ 2922.232442]  dump_stack_lvl+0xfa/0x120
[ 2922.232477]  should_fail_ex+0x4d7/0x5e0
[ 2922.232516]  should_fail_alloc_page+0xe0/0x110
[ 2922.232561]  prepare_alloc_pages+0x1eb/0x550
[ 2922.232598]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2922.232632]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2922.232661]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2922.232697]  ? pgprot2cachemode+0x9a/0x130
[ 2922.232730]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2922.232765]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2922.232803]  ? do_raw_read_unlock+0x44/0xe0
[ 2922.232830]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2922.232861]  ? policy_nodemask+0xeb/0x4e0
[ 2922.232907]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2922.232937]  ? policy_nodemask+0xeb/0x4e0
[ 2922.232970]  alloc_pages_mpol+0xed/0x340
[ 2922.233001]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2922.233033]  ? alloc_pages_noprof+0xb7/0x180
[ 2922.233069]  alloc_pages_noprof+0x9d/0x180
[ 2922.233101]  kimage_alloc_pages+0x70/0x240
[ 2922.233135]  kimage_alloc_page+0x14e/0x7e0
[ 2922.233176]  kimage_load_segment+0x424/0xc90
[ 2922.233217]  do_kexec_load+0x6bd/0x8a0
[ 2922.233251]  ? __pfx_do_kexec_load+0x10/0x10
[ 2922.233287]  ? _copy_from_user+0x5b/0xd0
[ 2922.233334]  __x64_sys_kexec_load+0x1c6/0x230
[ 2922.233372]  do_syscall_64+0xbf/0x3f0
[ 2922.233402]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2922.233429] RIP: 0033:0x7fd597aabb19
[ 2922.233450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2922.233476] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2922.233503] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2922.233521] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2922.233537] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2922.233553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2922.233569] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2922.233605]  </TASK>
16:59:57 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
setsockopt$bt_hci_HCI_DATA_DIR(r2, 0x0, 0x1, &(0x7f0000000080)=0x3, 0x4)

16:59:57 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
r1 = io_uring_setup(0x4806, &(0x7f0000000140)={0x0, 0x749c, 0x20, 0x0, 0x392})
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r1, 0xf502, 0x0)
r2 = getpgrp(0x0)
sched_setaffinity(r2, 0x8, &(0x7f00000000c0)=0xfffffffffffffffd)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r3=>r0}, './file0\x00'})
perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0xbc, 0x3f, 0xff, 0x0, 0x0, 0xeb, 0xce004, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x5117, 0x1, @perf_config_ext={0x2, 0x9}, 0x12000, 0x7, 0x5, 0x1, 0x4, 0x16c, 0x3, 0x0, 0x2, 0x0, 0x8}, r2, 0xb, r3, 0x1)

16:59:57 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000001080)={0x1f, 0x2, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)={0x1, @le_set_adv_set_rand_addr={{0x2035, 0x7}, {0x8f, @none}}}, 0xb)

16:59:57 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:00:07 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:00:07 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 22)

17:00:07 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448ca, 0x0)

17:00:07 executing program 7:
ioctl$sock_inet_SIOCGIFDSTADDR(0xffffffffffffffff, 0x8917, &(0x7f0000000000)={'wlan0\x00', {0x2, 0x0, @loopback}})
r0 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000080)={'ip6erspan0\x00', {0x2, 0x0, @multicast2}})
r1 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x16}}, 0x10)

17:00:07 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
bind$bt_hci(r2, &(0x7f00000000c0)={0x1f, 0x2, 0x4}, 0x6)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4443, 0x0, 0x0, 0x10, 0x7fff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
setsockopt$bt_hci_HCI_DATA_DIR(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000080)=0xffff, 0x4)

17:00:07 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote={0xac, 0x14, 0x13}}, 0x10)

17:00:07 executing program 1:
stat(&(0x7f0000001680)='./file0\x00', &(0x7f00000016c0)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
syz_mount_image$msdos(&(0x7f0000001040), &(0x7f0000001080)='./file0\x00', 0x1, 0x9, &(0x7f0000001580)=[{&(0x7f00000010c0)="aa65c1308074f2c10340b1c5b6510f1bd6", 0x11, 0x7}, {&(0x7f0000001100)="ceefbf03232726b10a490aac620def6917d5d8ef50b1383c6076", 0x1a}, {&(0x7f0000001180)="d5b857892273040548b30a3df0b44164619027c8956b8da5019d83640334e365c9e16d35a39e156e7064e5bfbdca87dd1053c26c1671e9c8fd87533c56993fda58a50848e7c3384a89488857c182cf73e5f9", 0x52, 0x400}, {&(0x7f0000001200)="94a8f6771fba868491d6bf19e060078552184d822ee1261d8c7a5a65156bb41402aeea634fe71e7b61cbfb62170e8b3ac42c1552bd9a5d52562e1f6541148ceb518e739dcbea65d07e518e376ccbbb537ab18d1209f9c5b0cd7950b1f162c776ccaf6897879b1c2d7ddbf8eb6da8ea23834e735b74f669d34b9c", 0x7a, 0x7}, {&(0x7f0000001280)="4eebd6c7a25a1913b4ff463a6fe7deee7478aadbe66e060f1e8ef839f47ad4862e91e86a4a03356c0b324e77842c7e7b7b58cd0594a631b22cfca157c262799725bce49015195ff5f31cadd46c51d045127e329f1d5dce34053d9af90fce29a142aca34c38c3b99d81f6342306a9ce2cc0752783c7c734bf3f39bf6be9c9322aede90dd6982a31474a3cc5a6b8a0559d22a580762307453d16d4e9e6ff2f22b57fe8b8ceaecaa311f94ff458dc311ad6e4d72e32f4617b1f6782913cd7b6d951d18d4b88d3eed881f59a1160cd1ef56e0d3c92537ac6f98f2d35a6", 0xdb, 0x5}, {&(0x7f0000001380)="a987ad0117ad91f82e0a9246aa309d95", 0x10, 0x1ff}, {&(0x7f00000013c0)="211cec94c22a24aca9801c2c851b06f8dd7d3b6717cb0db82160298e47999b9775f36c0b2caa51401f0ab114f47470db40aca8d802959e91293c8e44c238c0727c2713bdb6b7efe36f2f71c10c2c3da70718f2e2ee89e7bf2541dbcfb1050ff21be69af3aef92c", 0x67, 0x8}, {&(0x7f0000001440)="b647e303bc313691acc3792527136ad6bd56abbd242907f8b7c7fd3b1f515633443f081ff30722de2f4d6e66c0f3c6b3d8e1c6433b0559d1050b4957903ce9dc2b425a4ae5efe07f06c5c8217136b982e318f1df306d717023b2", 0x5a, 0x6}, {&(0x7f00000014c0)="cc1a845f0e9ad4a0003181b1ed4f5e51023e9e47b39d65855b4cdaff58d04f461506fef8c8cb565c3f8baeca8e9107f60e99bfa748591a01e5bf614293ad98e83075ac56b0c0d77de14707d3735ba580480c69688df68b68d8a38631a7e0d6d007633147e6bdbabd5b3ae4bb7f8d4526623d082375886a2d252d456a0c1fba242d1b664b970b2a1263dad803bd5e320ddcaf37dfcd31d960ae62805aee84b14c", 0xa0, 0x3}], 0x42006, &(0x7f0000001740)={[{@fat=@umask={'umask', 0x3d, 0x1}}, {@fat=@allow_utime={'allow_utime', 0x3d, 0x7fff}}, {@nodots}, {@nodots}, {@dots}, {@dots}], [{@euid_lt={'euid<', r0}}]})
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r1, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

17:00:07 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

17:00:07 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

[ 2932.344682] FAULT_INJECTION: forcing a failure.
[ 2932.344682] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2932.346935] CPU: 1 UID: 0 PID: 20024 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2932.346969] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2932.346984] Call Trace:
[ 2932.346992]  <TASK>
[ 2932.347001]  dump_stack_lvl+0xfa/0x120
[ 2932.347032]  should_fail_ex+0x4d7/0x5e0
[ 2932.347068]  should_fail_alloc_page+0xe0/0x110
[ 2932.347109]  prepare_alloc_pages+0x1eb/0x550
[ 2932.347142]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2932.347172]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2932.347198]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2932.347231]  ? pgprot2cachemode+0x9a/0x130
[ 2932.347261]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2932.347292]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2932.347334]  ? do_raw_read_unlock+0x44/0xe0
[ 2932.347358]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2932.347387]  ? policy_nodemask+0xeb/0x4e0
[ 2932.347414]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2932.347440]  ? policy_nodemask+0xeb/0x4e0
[ 2932.347470]  alloc_pages_mpol+0xed/0x340
[ 2932.347497]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2932.347526]  ? alloc_pages_noprof+0xb7/0x180
[ 2932.347558]  alloc_pages_noprof+0x9d/0x180
[ 2932.347586]  kimage_alloc_pages+0x70/0x240
[ 2932.347617]  kimage_alloc_page+0x14e/0x7e0
[ 2932.347654]  kimage_load_segment+0x424/0xc90
[ 2932.347690]  do_kexec_load+0x6bd/0x8a0
[ 2932.347722]  ? __pfx_do_kexec_load+0x10/0x10
[ 2932.347753]  ? _copy_from_user+0x5b/0xd0
[ 2932.347790]  __x64_sys_kexec_load+0x1c6/0x230
[ 2932.347824]  do_syscall_64+0xbf/0x3f0
[ 2932.347851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2932.347876] RIP: 0033:0x7fd597aabb19
[ 2932.347894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2932.347917] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2932.347941] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
17:00:07 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cc, 0x0)

[ 2932.347957] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2932.347972] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2932.347986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2932.348001] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2932.348033]  </TASK>
[ 2932.386006] loop1: detected capacity change from 0 to 4
17:00:07 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

[ 2932.458867] loop1: detected capacity change from 0 to 4
17:00:07 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448dc, 0x0)

17:00:07 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_complete(0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r1)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f00000000c0)={"46684140f91ecbe0c4ff6895c6edb559", 0x0, 0x0, {0x4, 0x9}, {0x100000001, 0x2ecf}, 0x1f, [0x0, 0x5, 0xfffffffffffffff7, 0x8af, 0x6, 0x3, 0x3, 0x7f, 0x101, 0x7fffffff, 0x100000001, 0x6, 0xffff, 0x2, 0x0, 0xfffffffffffff000]})
r2 = inotify_init1(0x80000)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000080)=0x2000000)

17:00:07 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448dd, 0x0)

17:00:07 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
socketpair$unix(0x1, 0x7, 0x0, &(0x7f0000001040))

17:00:07 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000), 0x0)

17:00:07 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:00:07 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 23)

17:00:07 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448e4, 0x0)

17:00:07 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
r2 = socket$inet(0x2, 0x80003, 0xff)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
r4 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r4)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
recvmsg$unix(r1, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000100)=""/24, 0x18}, {&(0x7f0000000140)=""/48, 0x30}, {&(0x7f0000000200)=""/55, 0x37}, {&(0x7f0000000380)=""/109, 0x6d}, {&(0x7f00000004c0)=""/165, 0xa5}, {&(0x7f0000001600)=""/4112, 0x1010}, {&(0x7f0000000180)=""/61, 0x3d}, {&(0x7f0000001340)=""/197, 0xc5}], 0x8, &(0x7f0000000680)=ANY=[@ANYBLOB="1c000000000000bbe8593251951e0001", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000002c000000000000000100000001000000bf89e46f99d76183c9c02a71964673bc1c6e830bc60b28", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRESHEX=r2, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRESOCT=r0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x160725fc72e0a8dd}, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

[ 2932.682621] FAULT_INJECTION: forcing a failure.
[ 2932.682621] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2932.684444] CPU: 1 UID: 0 PID: 20070 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2932.684476] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2932.684489] Call Trace:
[ 2932.684497]  <TASK>
[ 2932.684506]  dump_stack_lvl+0xfa/0x120
[ 2932.684536]  should_fail_ex+0x4d7/0x5e0
[ 2932.684571]  should_fail_alloc_page+0xe0/0x110
[ 2932.684609]  prepare_alloc_pages+0x1eb/0x550
[ 2932.684641]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2932.684670]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2932.684695]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2932.684725]  ? pgprot2cachemode+0x9a/0x130
[ 2932.684753]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
17:00:07 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448e6, 0x0)

[ 2932.684783]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2932.684815]  ? do_raw_read_unlock+0x44/0xe0
[ 2932.684838]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2932.684864]  ? policy_nodemask+0xeb/0x4e0
[ 2932.684890]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2932.684915]  ? policy_nodemask+0xeb/0x4e0
[ 2932.684943]  alloc_pages_mpol+0xed/0x340
[ 2932.684969]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2932.684996]  ? alloc_pages_noprof+0xb7/0x180
[ 2932.685040]  alloc_pages_noprof+0x9d/0x180
[ 2932.685067]  kimage_alloc_pages+0x70/0x240
[ 2932.685096]  kimage_alloc_page+0x14e/0x7e0
[ 2932.685131]  kimage_load_segment+0x424/0xc90
[ 2932.685165]  do_kexec_load+0x6bd/0x8a0
[ 2932.685195]  ? __pfx_do_kexec_load+0x10/0x10
[ 2932.685225]  ? _copy_from_user+0x5b/0xd0
[ 2932.685260]  __x64_sys_kexec_load+0x1c6/0x230
[ 2932.685291]  do_syscall_64+0xbf/0x3f0
[ 2932.685318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2932.685347] RIP: 0033:0x7fd597aabb19
[ 2932.685365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2932.685386] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2932.685408] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2932.685423] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2932.685437] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2932.685451] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2932.685464] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2932.685493]  </TASK>
17:00:15 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0xf)

17:00:15 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000040)="60da70faff93ccc857af6aaef1", 0xd, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r1 = accept4$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, &(0x7f0000000080)=0x10, 0x800)
sendto$inet(r1, &(0x7f0000000100)="ff4c19d24c5e6e634250e8c8ec28ced04589f4828e74fca37d2be4d35cc498207ed5ba2b7ba74d3450d1eeb961748b079979d15948dee1a8d572019a5c8f9b0955f73bff2c1f11a5f7df9786f9041cade189481300c88cfed76293137b812cad360e0d41c47c92a74635a7733c57ddbfcb7e8d1bad990eda6a54f5b45988f77e4bada536", 0x84, 0x8000, &(0x7f00000001c0)={0x2, 0x4e23, @private=0xa010102}, 0x10)

17:00:15 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448ca, &(0x7f00000000c0)="8beb1eacf14395fa136be46574732350b6d86dd3b31fd7ccc246fa270167b54322f80ff3d57f8cdb5d57a78068fc45b2522750ce359b3401219a0ab12c181b7c13826839f1d8489b9204d2dba66050997ffdc86a0a7be42d932b4c2f4f64fb26277555fcc7")
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, 0x2, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e4, 0x0)

17:00:15 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000010c0), 0x101000, 0x0)
ioctl$AUTOFS_IOC_EXPIRE_MULTI(r1, 0x40049366, &(0x7f0000001100)=0x4)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
bind$bt_l2cap(r2, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r3 = dup(r2)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
bind$bt_hci(r3, &(0x7f0000001040)={0x1f, 0x3, 0x2}, 0x6)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

17:00:15 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448e7, 0x0)

17:00:15 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:00:15 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 24)

17:00:15 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)
bind$bt_hci(r0, 0x0, 0x0)

17:00:15 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x40049409, 0x0)

[ 2940.505117] FAULT_INJECTION: forcing a failure.
[ 2940.505117] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2940.506962] CPU: 1 UID: 0 PID: 20100 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2940.506994] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2940.507007] Call Trace:
[ 2940.507014]  <TASK>
[ 2940.507023]  dump_stack_lvl+0xfa/0x120
[ 2940.507052]  should_fail_ex+0x4d7/0x5e0
[ 2940.507086]  should_fail_alloc_page+0xe0/0x110
[ 2940.507124]  prepare_alloc_pages+0x1eb/0x550
[ 2940.507155]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2940.507184]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2940.507209]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2940.507240]  ? pgprot2cachemode+0x9a/0x130
[ 2940.507268]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2940.507298]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2940.507337]  ? do_raw_read_unlock+0x44/0xe0
[ 2940.507360]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2940.507386]  ? policy_nodemask+0xeb/0x4e0
[ 2940.507412]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2940.507437]  ? policy_nodemask+0xeb/0x4e0
[ 2940.507466]  alloc_pages_mpol+0xed/0x340
[ 2940.507492]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2940.507520]  ? alloc_pages_noprof+0xb7/0x180
[ 2940.507550]  alloc_pages_noprof+0x9d/0x180
[ 2940.507577]  kimage_alloc_pages+0x70/0x240
[ 2940.507607]  kimage_alloc_page+0x14e/0x7e0
[ 2940.507641]  kimage_load_segment+0x424/0xc90
[ 2940.507676]  do_kexec_load+0x6bd/0x8a0
[ 2940.507705]  ? __pfx_do_kexec_load+0x10/0x10
[ 2940.507735]  ? _copy_from_user+0x5b/0xd0
[ 2940.507770]  __x64_sys_kexec_load+0x1c6/0x230
[ 2940.507802]  do_syscall_64+0xbf/0x3f0
[ 2940.507828]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2940.507851] RIP: 0033:0x7fd597aabb19
[ 2940.507868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2940.507891] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2940.507914] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2940.507929] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2940.507944] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2940.507958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2940.507971] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2940.508001]  </TASK>
17:00:15 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0)=0x1, 0x4)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000000)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x10000, 0x0, 0x3, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000000)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x10000, 0x0, 0x3, 0x2}, 0x20)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r2 = socket$inet_icmp(0x2, 0x2, 0x1)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r3=>r2, {0x6}}, './file0\x00'})
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000240)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xa000, 0x2, 0x1, 0x1, 0x401, 0x4}, 0x20)
getsockopt$sock_int(r2, 0x1, 0x27, &(0x7f0000000100), &(0x7f0000000140)=0x4)
recvfrom$inet(0xffffffffffffffff, &(0x7f0000000000)=""/5, 0x5, 0x2000, &(0x7f0000000080)={0x2, 0x4e22, @multicast1}, 0x10)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000180)=0x1, 0x4)

17:00:15 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4091, 0xffb}], 0x1}, 0x4000}], 0x1, 0x0, 0x0)
recvmsg(r0, &(0x7f0000001100)={&(0x7f0000001040)=@isdn, 0x80, &(0x7f00000010c0)=[{&(0x7f0000001180)=""/230, 0xe6}, {&(0x7f0000001280)=""/132, 0x84}], 0x2, &(0x7f0000001340)=""/124, 0x7c}, 0x40010041)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f00000013c0))
r2 = dup3(r1, r1, 0x80000)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001600)={'lo\x00'})
r3 = socket$inet(0x2, 0x80003, 0xff)
recvmsg(r2, &(0x7f00000015c0)={0x0, 0x0, &(0x7f0000001540)=[{&(0x7f0000001440)=""/222, 0xde}], 0x1, &(0x7f0000001580)=""/43, 0x2b}, 0x10000)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r3, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
shutdown(r3, 0x1)
setsockopt$inet_mreqsrc(r2, 0x0, 0x27, &(0x7f0000001400)={@dev={0xac, 0x14, 0x14, 0x3b}, @initdev={0xac, 0x1e, 0x1, 0x0}, @empty}, 0xc)

17:00:15 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x40086602, 0x0)

17:00:15 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x5, 0x5, 0x2, 0x0, 0x8, 0x800, 0x4, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x7ff, 0x1, @perf_config_ext={0x8cb7, 0x8}, 0x10400, 0x7, 0x5, 0x4, 0x3, 0x5, 0x7ff, 0x0, 0xdd, 0x0, 0x3}, 0xffffffffffffffff, 0x7, r2, 0xb)

17:00:15 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreqsrc(r2, 0x0, 0x27, &(0x7f0000000080)={@private=0xa010100, @private=0xa010100, @remote}, 0xc)
r3 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
ioctl$LOOP_SET_STATUS(r1, 0x4c02, &(0x7f0000000a00)={0x0, {}, 0x0, {}, 0xd37a, 0x6, 0x4, 0x9, "cd44abaf2d8244bb4521f2b3093869e7a96ba91650e3c9e2989e629b5f57993903709964d15c5965c4d13f0689930c3365701d6ba8a50e58422883d15fdb8557", "8da92ce822c35340b6abdd1f1e2eaaffdb80f88181102d6dfd042fe06280341c", [0x9, 0xba]})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
sendto$inet(r3, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$inet_MCAST_JOIN_GROUP(r3, 0x0, 0x2a, &(0x7f0000000100)={0x81, {{0x2, 0x4e23, @private=0xa010100}}}, 0x88)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x8000b00, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10)
ioctl$sock_inet_SIOCDARP(r4, 0x8953, &(0x7f0000000980)={{0x2, 0x4e23, @multicast1}, {0x1, @broadcast}, 0x20, {0x2, 0x4e23, @empty}, 'veth0_to_batadv\x00'})
r5 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r5, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
sendmsg$inet(r5, &(0x7f0000000940)={&(0x7f0000000200)={0x2, 0x4e23, @private=0xa010101}, 0x10, &(0x7f0000000680)=[{&(0x7f0000000240)}, {&(0x7f0000000280)="d337a60e81d0eb083f63c8966b2253e8f1f1d9c89dd0c37f7b4e3a8034466ac846c1440d865005abbf9cc9e9d9d3d29d822b4ab26d21f1dcbbd50f78757b28a7227713a2b704b38d526b46e4db0333f6835a65111535453655fe373440eefc997be6f1bf8a1ff71cdb383151a19f2812de91d3bbb5ef3d009c484fca8dec15ae37fb48bdf4f907be4f459f48bbff86c8284beac14e399d0f33aa6efd91ab6e48e682819b701ce33d7f0fd3abb7c364", 0xaf}, {&(0x7f0000000340)="07d3721b69af57efe936ae53f075188f1c0d6bb7a44be5f7c405c778ecb72193428a101f95ca3881cd8aa1bd394f2853072d5ab0bffcf71ed8d14d9845f02c6cae3903de3a62451143e91a986502cf179a4f84a7d318d731e672973589d10cc5e552258019d2b6a226cd509fc057e837b96e3e108d1c74a030a75cc44764bb2c026641df089c3d6ceeb00e2bddc2f724b1202c12155d15172621adb06acef470738e07ea7422e0c1f83c4ace80046be10dad4dae1bb8ca2d281e26d41a4d2d944e28e7c80b32e786f85eac7da503b7fa99aebea61a7b0bdf4cd97f7e6d1757e980ff3d3698f17fd56a33b40c9675fc", 0xef}, {&(0x7f0000000440)="905f1c6947b22590d9296b178af0c42f97ef3546eb416fbce4bf697e1b515dd25b90eadcd15fb00a446205d6ea30ef1b113e3ce8f03600bd3d72f19bc2993e61e223c4f2848de921680f52eb0b4efd5f46033c1f18ddc0559757c705f3cb751b7ba49dea821a50ca6b94a5f493670905ce3284c1236a308d2663a9b4e4a817fd994b77e3094b446e9bdc50ffbdc848f4776950c915c78c591a17235beeffc31e0ed36a76ab272e50310b52a745c256d41bcc55535b564c274a2b603e069b7ff45ff3f2b485a857635f9eb771f644aaab7d102e970705ae5c64919c600e72a1d578ed74caceb06fd1327e1a272e01ad06d0af82d5501a", 0xf6}, {&(0x7f0000000540)="a725908f6b8b3704f0c3eb5cc6b94537e8021ad06207b82bd69671687fe7657ed6c2e6fd7caf4f4e8e0b117e1d93115c0cd2470fef0d12c29990872421293df659103cd233eee31518fc8c2e907fbcbcc33b19e6ac", 0x55}, {&(0x7f00000005c0)="8032f79df28a7accd757386e8dea6d7b2a40bc2fec887718fbbc45f4fb9ee736e553f5da6b50ff1d5b09be84af7574bc727d69b9e870f806121bcb482632271c2e16b065d7d6e62cd52b7853c5f5a3a5366647e8ee98daf1600750c89c39c7fd4936b087ee1048e9960e21bee011db7cefe52d8442c9e35cd3fd6c03eceda47578c5a856ac76a8021ff69fa8afb3e8bb0a2da23738ac0b21acf657", 0x9b}], 0x6, &(0x7f0000000700)=[@ip_ttl={{0x14}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @multicast1, @multicast1}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @broadcast}}}, @ip_retopts={{0xa8, 0x0, 0x7, {[@ssrr={0x89, 0x1b, 0x8d, [@rand_addr=0x64010100, @empty, @broadcast, @multicast2, @empty, @multicast1]}, @noop, @timestamp={0x44, 0x8, 0x52, 0x0, 0x8, [0x5]}, @ssrr={0x89, 0x13, 0xa2, [@broadcast, @multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}, @local]}, @timestamp_prespec={0x44, 0x14, 0x8, 0x3, 0x5, [{@local, 0x9}, {@empty, 0xffff}]}, @timestamp={0x44, 0x20, 0xbb, 0x0, 0x2, [0x9, 0x7, 0xc13, 0x3ff, 0x0, 0x20, 0x7fffffff]}, @ssrr={0x89, 0x23, 0xfe, [@loopback, @private=0xa010101, @rand_addr=0x64010102, @empty, @dev={0xac, 0x14, 0x14, 0xc}, @empty, @empty, @loopback]}, @rr={0x7, 0x7, 0xdd, [@empty]}]}}}, @ip_retopts={{0xa0, 0x0, 0x7, {[@generic={0x86, 0xd, "efec5ccff49a1b1284531f"}, @cipso={0x86, 0x17, 0x2, [{0x2, 0x7, "224508e557"}, {0x6, 0xa, "d9650d928a50b787"}]}, @timestamp_prespec={0x44, 0x14, 0x2b, 0x3, 0xc, [{@local}, {@rand_addr=0x64010101}]}, @rr={0x7, 0x13, 0xf4, [@empty, @broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}, @private=0xa010101]}, @lsrr={0x83, 0x1f, 0xc7, [@rand_addr=0x64010100, @dev={0xac, 0x14, 0x14, 0x1a}, @broadcast, @private=0xa010102, @local, @multicast2, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @cipso={0x86, 0x8, 0x2, [{0x6, 0x2}]}, @rr={0x7, 0x7, 0xf7, [@multicast1]}, @lsrr={0x83, 0x17, 0xa2, [@local, @local, @dev={0xac, 0x14, 0x14, 0x12}, @loopback, @initdev={0xac, 0x1e, 0x0, 0x0}]}]}}}, @ip_retopts={{0x44, 0x0, 0x7, {[@ssrr={0x89, 0x1b, 0x9b, [@multicast2, @dev={0xac, 0x14, 0x14, 0x34}, @rand_addr=0x64010102, @broadcast, @private=0xa010101, @broadcast]}, @generic={0x7, 0x8, "a2528a6a6af1"}, @timestamp={0x44, 0x10, 0xcb, 0x0, 0x1, [0x5, 0x7, 0x8]}]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x6}}], 0x218}, 0x1)

17:00:15 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 25)

[ 2940.657119] FAULT_INJECTION: forcing a failure.
[ 2940.657119] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2940.658174] CPU: 0 UID: 0 PID: 20120 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2940.658190] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2940.658197] Call Trace:
[ 2940.658202]  <TASK>
[ 2940.658206]  dump_stack_lvl+0xfa/0x120
[ 2940.658225]  should_fail_ex+0x4d7/0x5e0
[ 2940.658246]  should_fail_alloc_page+0xe0/0x110
[ 2940.658272]  prepare_alloc_pages+0x1eb/0x550
[ 2940.658290]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2940.658306]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2940.658327]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2940.658345]  ? pgprot2cachemode+0x9a/0x130
[ 2940.658362]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2940.658384]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2940.658405]  ? do_raw_read_unlock+0x44/0xe0
[ 2940.658420]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2940.658436]  ? policy_nodemask+0xeb/0x4e0
[ 2940.658457]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2940.658474]  ? policy_nodemask+0xeb/0x4e0
[ 2940.658492]  alloc_pages_mpol+0xed/0x340
[ 2940.658508]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2940.658532]  ? alloc_pages_noprof+0xb7/0x180
[ 2940.658553]  alloc_pages_noprof+0x9d/0x180
[ 2940.658571]  kimage_alloc_pages+0x70/0x240
[ 2940.658593]  kimage_alloc_page+0x14e/0x7e0
[ 2940.658613]  kimage_load_segment+0x424/0xc90
[ 2940.658635]  do_kexec_load+0x6bd/0x8a0
[ 2940.658659]  ? __pfx_do_kexec_load+0x10/0x10
[ 2940.658679]  ? _copy_from_user+0x5b/0xd0
[ 2940.658703]  __x64_sys_kexec_load+0x1c6/0x230
[ 2940.658726]  do_syscall_64+0xbf/0x3f0
[ 2940.658743]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2940.658757] RIP: 0033:0x7fd597aabb19
[ 2940.658768] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2940.658780] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2940.658794] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2940.658802] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2940.658809] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2940.658816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2940.658823] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2940.658839]  </TASK>
17:00:15 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
write$bt_hci(r0, &(0x7f0000000040)={0x1, @le_set_ext_adv_data={{0x2037, 0x23}, {0x2, 0x81, 0x4, 0x17, "e042f22ec73aa25fd5ad04077ac85740758711609d8a0db56f3651224d72df"}}}, 0x27)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100), 0x208180, 0x0)
fsetxattr$trusted_overlay_redirect(r1, &(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x8, 0x2)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x100)
setsockopt$bt_hci_HCI_TIME_STAMP(r0, 0x0, 0x3, &(0x7f0000000000)=0x4, 0x4)

17:00:25 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:00:25 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
io_setup(0x200, &(0x7f0000000000))
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000540), 0xe0400, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f0000000840)=@abs, 0x6e, &(0x7f0000000a80)=[{&(0x7f00000008c0)=""/191, 0xbf}, {&(0x7f0000000980)=""/17, 0x11}, {&(0x7f00000009c0)=""/116, 0x74}, {&(0x7f0000000a40)=""/48, 0x30}], 0x4, &(0x7f0000000ac0)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x38}, 0x10020)
io_setup(0x10000, &(0x7f0000000100)=<r4=>0x0)
io_submit(r4, 0x7, &(0x7f0000000b80)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0xffff, 0xffffffffffffffff, &(0x7f0000000bc0)="08188b23e7262dcedc04ec189a397bb1361d8018b3cf611cca692c66c2b3a1cbf3ea92814c7d7a4079a2260ec967291771847ddf031e9bc121f5480578d818dc569868087aa4b752a5ef85424eb0fe284758274b8ef1f052e25f286ff9f46110074eed4a3a9e29c15cf7d74d480e56e8c28d1339b12a2356a1123183db6bcda5b926f1aed2fbf345f3cb3f8de014ffd34bf9f39638", 0x95, 0x80000001, 0x0, 0x1}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x2, 0x401, r0, &(0x7f0000000200)="81f1225088ff0a7418dee5ec64b9713727623c0c10f7779e6831372d1b827e56a83641a40f2e41fa130fac4fe6f9aafcf66da8c7c8f3627c17b0b0c6751305fb132bbfbe6a811c4917173ab0245b3952632c9ba7d7ea766a1564382787fc00ebbe60aa8619567f2b96b26e4fcd18ae7274a775a6edf699dee2ca98e6265ad5d4928d0c6a2cbee2d4f3df609e9a7e1a0528347496571300eb693d037bfc1101977232ee7881609895e3b6d7e1af60bde4b99e83b4fe5eda127d0bcb70e2ec69ed687a161f53d3b66e9eacf79baa65aa4ad301ff006e5d7ad9790fea0772b62865cdad0327c39bbe0d66838c5398cd19301590e6977606bcd433a9", 0xfa, 0x1, 0x0, 0x2}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x5, 0x6, r1, &(0x7f0000000340)="a865959bc9dc2e462f2575bd45323cd417f6e20343ee29099e08c43c7882c66945933fd9c31c9f91901d2a95212578f495ec41518b779a48ee505bc92a9e7e9e79a6d3fee5cac3a9e4f5759ec3d9641c87c3c5abe4746573ed9794af2c4346ffdc323aecaef9b35cf475c4d3885d", 0x6e, 0x100, 0x0, 0x2}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x3ff, r0, &(0x7f0000000400)="14f76a2c99f8ee7a1f1d8f92165bc7feea560e3b298fd34d1122648621fc7aaf85526552bb82e54c126b5285ce0af1c9b615c735774c82b347fc117abb2637b79f07402b54f2d2c8d2aaf8c39a14c0f093a217bab3f2c8aa29b77a26ef3dd85a7758d62632efb22edefe0a75130f87be701f53677c22d9ced455869d7819dd0110dace4e260eab3192d69899f66a7b17e30bd23feda57c95c14759354ce95829c1694ea4e98af35fd8a422467421ee175d84e641211c1c2c866b794b0218c3d4fb9840722c5469d2ae52283160a60f", 0xcf, 0x1000, 0x0, 0x1}, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x7, 0x7ff, r2, &(0x7f0000000580)="de48308a810f1cf6056151c2053f3ee6f69f03558aed9f57aac025b3e6405a0f16a271344773510cedda8c6dc43c8890e801bd3f19987633663178d9b8cafa82a088b193410db7c9c703aebf7c67c0150501dca5395d20141a57ce04e4d3c7374ff54af706e6abd8cbbc52daa6982252ef43a493f3631514201972b54dc872356cdc4daf7f81a935c968f17202a226e199cf2a4c6045207730057e71a403cf704f30da5c422092ef89fba281518da34664d4a3b622153813fe30c959a254a1208810741a06db71e8a9ac726ec8c3f0c439b415aab6542e3693e01775c4b5c4a80c20082ff79e6b2b99285a3c", 0xec, 0x7}, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x7, 0x8, r0, &(0x7f00000006c0)="00679c44b0d9a878e52e4f50738e3067b44a09a4ff15aeb67b03126f53d716840eee2705928171cb6ce920727c30ea41fc82c0339d4e4c28bfbe8ce86e3130098dade1eae3b699bbde13c99698f2de2d3afb31e8e59240d5d82fbfff5b0f18cfc8306e263dbc5425e04e77bca25a9cb289ccf7ea360ed7a9b08aeb09040ada0b40e6c95b1c2aec7174ff29d5741c7903715471087461b50d166317753be7e5ff530ecba0e87fa460e1db29e8a806008e32d2c0", 0xb3, 0x7ff, 0x0, 0x3}, &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x2, 0x9, r0, &(0x7f00000007c0)="333f08a8458654985cd1c4f8db3a4dc1ae0eee6a756eac198191ca033d4ba0b03f47960b2fcba270c594e77acc9591cfb4e6336e09828574086a3a4b96d90b081ff44d44d6b1eec9b107d994a22982840e2b5af100ccd70809d4189c77ed300c83a131bd", 0x64, 0x1f, 0x0, 0x2, r3}])
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:00:25 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 26)

17:00:25 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x40087602, 0x0)

17:00:25 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r2, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r3 = dup(0xffffffffffffffff)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
perf_event_open$cgroup(&(0x7f0000000080)={0x3, 0x80, 0x9, 0x1, 0x8, 0x3, 0x0, 0x1, 0x480, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x7, 0x1, @perf_bp={&(0x7f0000000040), 0x2}, 0x4a018, 0x10000, 0x10000, 0x5, 0x80, 0x7fffffff, 0xfffb, 0x0, 0x3, 0x0, 0xfffffffffffffff9}, r3, 0x6, 0xffffffffffffffff, 0xe)
ioctl$sock_bt_hci(r3, 0x400448e4, &(0x7f00000001c0)="0a04d76a5c674edbc0f51672a2a6600b3cd8db6b3620fbe2fd6442aaf2584421054ac7c3cbce820afd3f0f8b2038826b3674cf1c93ac71c534c7406cc2e88d8cea5fba63736745adb2f424b5c286750eeeed7596969b9bb0f49788dae8787231a862ed13dda9447964458a8808f43bd76324853530dd44fa9033734368574f12ddb23cbb3a85febb2da0a51651e0104cdc6437e9469766c23dbf")
ioctl$F2FS_IOC_FLUSH_DEVICE(r1, 0x4008f50a, &(0x7f0000000000)={0x8c, 0x2})
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

17:00:25 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
sendto$inet(r1, &(0x7f0000000100)="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", 0x1000, 0x40000, 0x0, 0x0)

17:00:25 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_DATA_DIR(r0, 0x0, 0x1, &(0x7f0000001040)=0x2, 0x4)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

17:00:25 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)
bind$bt_hci(r0, 0x0, 0x0)

[ 2950.693697] FAULT_INJECTION: forcing a failure.
[ 2950.693697] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2950.695280] CPU: 0 UID: 0 PID: 20155 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2950.695305] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2950.695316] Call Trace:
[ 2950.695328]  <TASK>
[ 2950.695335]  dump_stack_lvl+0xfa/0x120
[ 2950.695361]  should_fail_ex+0x4d7/0x5e0
[ 2950.695389]  should_fail_alloc_page+0xe0/0x110
[ 2950.695420]  prepare_alloc_pages+0x1eb/0x550
[ 2950.695445]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2950.695468]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2950.695488]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2950.695513]  ? pgprot2cachemode+0x9a/0x130
[ 2950.695536]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2950.695559]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2950.695585]  ? do_raw_read_unlock+0x44/0xe0
[ 2950.695607]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2950.695630]  ? policy_nodemask+0xeb/0x4e0
[ 2950.695651]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2950.695671]  ? policy_nodemask+0xeb/0x4e0
[ 2950.695693]  alloc_pages_mpol+0xed/0x340
[ 2950.695714]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2950.695735]  ? alloc_pages_noprof+0xb7/0x180
[ 2950.695759]  alloc_pages_noprof+0x9d/0x180
[ 2950.695781]  kimage_alloc_pages+0x70/0x240
[ 2950.695805]  kimage_alloc_page+0x14e/0x7e0
[ 2950.695832]  kimage_load_segment+0x424/0xc90
[ 2950.695860]  do_kexec_load+0x6bd/0x8a0
[ 2950.695884]  ? __pfx_do_kexec_load+0x10/0x10
[ 2950.695908]  ? _copy_from_user+0x5b/0xd0
[ 2950.695936]  __x64_sys_kexec_load+0x1c6/0x230
[ 2950.695961]  do_syscall_64+0xbf/0x3f0
[ 2950.695982]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2950.696001] RIP: 0033:0x7fd597aabb19
[ 2950.696015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2950.696032] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2950.696050] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2950.696063] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2950.696074] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2950.696084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2950.696095] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2950.696119]  </TASK>
17:00:25 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000100)="e501a5996c1a367e9854571258609ed78b82cc28e51ecb9e9ce80c536faa08d97a3486578eaeb2eaf19efb20a22fb5451667911e436c182014a2da0e0cefb3669febcc55762796c609e0058eeddf7a74f014036c4a68e579a4f31aa8054f9a2018097537108ba4b177eae15f73b6e858ba931bd1a55318b3a1e93177a26adee482c55a37dea2b03fa5bc48a3b186e1c72344dc66da07171ba1095c4b10cccdcebf7555c3c0934db450f832de5c440da72dce160d9bdbe7ea50e8b3cea355ca7f45cd414951a8bd271ebb30ec10afa1eb421928532c28f7c081aa9acde8e2babc3f4ad7192c76f9842020f4b2dffb020d58b1", 0xf2, 0x20000001, &(0x7f0000000000)={0x2, 0x4e21, @remote}, 0x10)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x44000b80, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

17:00:25 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x401c5820, 0x0)

17:00:26 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 27)

17:00:26 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$sock_bt_hci(r2, 0x800448f0, &(0x7f0000000080)="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")
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

17:00:26 executing program 7:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r1 = dup(r0)
setsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
execveat(r1, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180)=[&(0x7f0000000080)='})[:-\xc2(*!\x00', &(0x7f0000000100)='\x00', &(0x7f0000000140)='\x00'], &(0x7f0000000340)=[&(0x7f00000001c0)='*+{&.%[{{\xfd)$[\x00', &(0x7f0000000200)=')\x00', &(0x7f0000000240)='\x00', &(0x7f0000000280)='[\x00', &(0x7f00000002c0)='/&[\x00', &(0x7f0000000300)='\x00'], 0x100)
r2 = socket$inet(0x2, 0x80000, 0x103)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

[ 2950.865036] FAULT_INJECTION: forcing a failure.
[ 2950.865036] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2950.866431] CPU: 0 UID: 0 PID: 20171 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2950.866453] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2950.866463] Call Trace:
[ 2950.866469]  <TASK>
[ 2950.866475]  dump_stack_lvl+0xfa/0x120
[ 2950.866499]  should_fail_ex+0x4d7/0x5e0
[ 2950.866524]  should_fail_alloc_page+0xe0/0x110
[ 2950.866553]  prepare_alloc_pages+0x1eb/0x550
[ 2950.866576]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2950.866597]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2950.866615]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2950.866638]  ? pgprot2cachemode+0x9a/0x130
[ 2950.866658]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2950.866679]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2950.866702]  ? do_raw_read_unlock+0x44/0xe0
[ 2950.866719]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2950.866739]  ? policy_nodemask+0xeb/0x4e0
[ 2950.866758]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2950.866775]  ? policy_nodemask+0xeb/0x4e0
[ 2950.866795]  alloc_pages_mpol+0xed/0x340
[ 2950.866814]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2950.866833]  ? alloc_pages_noprof+0xb7/0x180
[ 2950.866855]  alloc_pages_noprof+0x9d/0x180
[ 2950.866875]  kimage_alloc_pages+0x70/0x240
[ 2950.866896]  kimage_alloc_page+0x14e/0x7e0
[ 2950.866921]  kimage_load_segment+0x424/0xc90
[ 2950.866946]  do_kexec_load+0x6bd/0x8a0
[ 2950.866967]  ? __pfx_do_kexec_load+0x10/0x10
[ 2950.866989]  ? _copy_from_user+0x5b/0xd0
[ 2950.867015]  __x64_sys_kexec_load+0x1c6/0x230
[ 2950.867037]  do_syscall_64+0xbf/0x3f0
[ 2950.867057]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2950.867074] RIP: 0033:0x7fd597aabb19
[ 2950.867087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2950.867103] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2950.867120] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2950.867131] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2950.867141] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2950.867151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2950.867161] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2950.867182]  </TASK>
17:00:26 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000001040)={0x1f, 0x4, 0x2}, 0x6)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r3=>0x0})
sendto$packet(r1, 0x0, 0x608, 0x0, &(0x7f0000000040)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @dev}, 0x14)
recvfrom(r0, &(0x7f0000001080)=""/118, 0x76, 0x40000000, &(0x7f0000001180)=@xdp={0x2c, 0x2, r3, 0x19}, 0x80)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

17:00:26 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 28)

[ 2950.973369] FAULT_INJECTION: forcing a failure.
[ 2950.973369] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2950.975205] CPU: 0 UID: 0 PID: 20183 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2950.975227] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2950.975236] Call Trace:
[ 2950.975242]  <TASK>
[ 2950.975247]  dump_stack_lvl+0xfa/0x120
[ 2950.975270]  should_fail_ex+0x4d7/0x5e0
[ 2950.975294]  should_fail_alloc_page+0xe0/0x110
[ 2950.975319]  prepare_alloc_pages+0x1eb/0x550
[ 2950.975346]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2950.975365]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2950.975382]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2950.975402]  ? pgprot2cachemode+0x9a/0x130
[ 2950.975421]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2950.975441]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2950.975462]  ? do_raw_read_unlock+0x44/0xe0
[ 2950.975477]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2950.975495]  ? policy_nodemask+0xeb/0x4e0
[ 2950.975513]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2950.975529]  ? policy_nodemask+0xeb/0x4e0
[ 2950.975548]  alloc_pages_mpol+0xed/0x340
[ 2950.975565]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2950.975584]  ? alloc_pages_noprof+0xb7/0x180
[ 2950.975604]  alloc_pages_noprof+0x9d/0x180
[ 2950.975622]  kimage_alloc_pages+0x70/0x240
[ 2950.975642]  kimage_alloc_page+0x14e/0x7e0
[ 2950.975665]  kimage_load_segment+0x424/0xc90
[ 2950.975688]  do_kexec_load+0x6bd/0x8a0
[ 2950.975707]  ? __pfx_do_kexec_load+0x10/0x10
[ 2950.975727]  ? _copy_from_user+0x5b/0xd0
[ 2950.975751]  __x64_sys_kexec_load+0x1c6/0x230
[ 2950.975772]  do_syscall_64+0xbf/0x3f0
[ 2950.975790]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2950.975806] RIP: 0033:0x7fd597aabb19
[ 2950.975818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2950.975833] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2950.975848] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2950.975858] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2950.975867] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2950.975877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2950.975885] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2950.975905]  </TASK>
17:00:26 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x4020940d, 0x0)

17:00:34 executing program 5:
openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x80042, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e4, &(0x7f0000000140)="fc0a4881f5729c602cb952c6b86e64c03a0ce10ac765d8706da2cb4772489ac1d724b75b8c897f733a275eb86ffb8582d9eccffe29732faa5c00d5385047947a21ccd03c08af156857314a5c5009859262285652b23e1753f35b6fb90463ff3ce06d09d437551f2550541fe5d595afbe142ba499ff0d61824e2e3a28cb17e51ab1b59e57ea494d9dbc810dbcb42da2fa028169a034c7ee76a6241dd0451eedcc9c7e4cdef3710ade404dbfd239be9bcb5433549858241ef3cab0cd41650d9a87814096db40af1b52f2fbe67021924148404a309711b1bd3e6a06c2e4660cffc2c3b90f351b1e01c8")
r1 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x1f, 0x0, 0xff, 0x20, 0x0, 0x9, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8000, 0x4, @perf_bp={&(0x7f0000000080), 0x2}, 0x44a44, 0x5, 0x2, 0x1, 0xffffffffffff8001, 0x6, 0x5, 0x0, 0x4, 0x0, 0x5}, 0x0, 0x8, r1, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, &(0x7f0000000240)={0xffffffffffffffff, 0xb1, "007acd", 0x2, 0xdd})
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

17:00:34 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x800448d2, 0x0)

17:00:34 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000001040)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

17:00:34 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 29)

17:00:34 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
r2 = accept(r1, &(0x7f0000000740)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @broadcast}}}, &(0x7f0000000080)=0x80)
sendmsg$inet(r2, &(0x7f0000000a80)={&(0x7f00000007c0)={0x2, 0x4e24, @local}, 0x10, &(0x7f0000000a00)=[{&(0x7f0000000800)="102aa676a4f36762ba913faf5c3e3114bc4be3ce06d729735aacbd4f374f84c1b87aca5abdaf447b88da3c4d8429c8137862a9c2e9480eda7f9febc0373f3d80e23f5d6f78ab74b4307c969ed5cd6ef7fcda3420eb43f3fee9472a16a36d7d038a4d5a69daba595ac59f372043e31048493abe707f35823741124843778d8920900d3794fca94663b1c2a1b012c60351c9607b0a22222f4014162ba17e4749c5d772b6fffa3f33c1806b8ad573f8a06cc4db098575b607b132a1fabaf65079d82562b0", 0xc3}, {&(0x7f0000000900)="ef778fcdada3c9b3585185fbfb1b1bca827ef5814cf9ed06f312a4167cd2db4cbf9ed34d2fe356ebec936da2335070c39f24e5edc8da9af00d6eba521eb0c321559de6868e113dcb384b42e15c51472e3ed55e775d57cb46ffb01c9f38ad99bfe229cec71fb635d7e461f45df782a7bd83ce445f469fd085a9084de6ae9b564d2c1ff6848ed2fef6426f679aa3d4b87b1988ef9a37b5e01e2166825567d6b8c6c743d1299df2620d87a295a4a82b9b645da736e81ec45ef0aa18938a0b69f0ccbdca22e24181a2ce04153e6c0964a4cb8fd968ab7efcd2f3fdd97ad783f09c519cf398", 0xe3}], 0x2, &(0x7f0000000a40)=[@ip_ttl={{0x14, 0x0, 0x2, 0x6}}, @ip_ttl={{0x14, 0x0, 0x2, 0x10001}}], 0x30}, 0x80)
openat2(0xffffffffffffffff, &(0x7f0000000680)='./file0\x00', &(0x7f00000006c0)={0x210200, 0x0, 0x2}, 0x18)
bind$inet(r1, &(0x7f0000000700)={0x2, 0x4e20, @remote}, 0x10)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
r4 = socket$inet(0x2, 0x80003, 0xff)
r5 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r5, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
write(r5, &(0x7f0000000ac0)="61db36f9401451a411056b37b33a107992f2fca2dd9c92eba69a12a5368f861d3579da66e4f8ce8c2473e8be57b7e68ec6fb6992a59786a6fc14ce4278d984c8452382750b0a3f23b98c063a336e3babb4b0d394fa9b4c358c4e4fafa2028e064d47a875767b3d58735071708d06260b7f5b3895b586bd134ec8acda88c69efe11974c28ce25afb19bff788e5aea0e3ca5386ed1faa658a44b31b4bf464bf4085b2fcee391efbfa4d2178d4e7dfa0c634b071b853e35d7b9fc4572a3415520ad43ec9e910c37fb1f846e54bf0d2d56b3a5053966569e0a526789e8c52047b1e4763f2695a20a8c6afd28e090300142123dba95754ecc", 0xf6)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r4, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0xffff, @dev}, 0x10)
setsockopt$EBT_SO_SET_ENTRIES(r4, 0x0, 0x80, &(0x7f0000000600)=@nat={'nat\x00', 0x19, 0x3, 0x3ba, [0x20000240, 0x0, 0x0, 0x20000270, 0x200004f4], 0x0, &(0x7f0000000200), &(0x7f0000000240)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{0x3, 0x8, 0xf6, 'team_slave_0\x00', 'veth0_to_hsr\x00', 'wg1\x00', 'vxcan1\x00', @remote, [0xff, 0xff, 0xff], @random="dfaaad8eb51f", [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], 0x12e, 0x12e, 0x166, [@nfacct={{'nfacct\x00', 0x0, 0x28}, {{'syz1\x00', 0x3}}}, @stp={{'stp\x00', 0x0, 0x48}, {{0x3f, {0x7, 0x40, 0x6, @multicast, [0x0, 0xff, 0xff, 0xff, 0x0, 0xff], 0x4, 0x5, 0x0, 0x7, @empty, [0xff, 0xff, 0x0, 0xff, 0xff, 0xff], 0x4e20, 0x4e23, 0x8, 0x0, 0x0, 0xfff9, 0x4, 0xf5, 0x40, 0x5}, 0x280, 0x2}}}], [], @arpreply={'arpreply\x00', 0x10, {{@dev={'\xaa\xaa\xaa\xaa\xaa', 0x1b}, 0xfffffffffffffffe}}}}, {0x9, 0x0, 0x11, 'dummy0\x00', 'veth0_virt_wifi\x00', 'veth1\x00', 'veth1_vlan\x00', @remote, [0xff, 0x0, 0x0, 0xff, 0x0, 0xff], @remote, [0xff, 0x0, 0x0, 0xff, 0xff, 0xff], 0x9e, 0x9e, 0xee, [@cgroup0={{'cgroup\x00', 0x0, 0x8}, {{0x9}}}], [], @common=@LED={'LED\x00', 0x28, {{'syz0\x00', 0x0, 0x6, {0x7}}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffe, 0x1, [{0x9, 0x21, 0x60, 'veth0_to_hsr\x00', 'hsr0\x00', 'ip6erspan0\x00', 'veth1\x00', @multicast, [0xff, 0xff], @link_local, [0xff, 0xff, 0xff, 0xff, 0xff], 0x6e, 0x9e, 0xd6, [], [@common=@CONNSECMARK={'CONNSECMARK\x00', 0x8, {{0x1}}}], @arpreply={'arpreply\x00', 0x10, {{@dev={'\xaa\xaa\xaa\xaa\xaa', 0x18}, 0xfffffffffffffffe}}}}]}]}, 0x432)
setsockopt$inet_MCAST_LEAVE_GROUP(r3, 0x0, 0x2d, &(0x7f0000000100)={0x9, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x37}}}}, 0x88)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$sock_void(r1, 0x1, 0x3f, 0x0, 0x0)

17:00:34 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)
bind$bt_hci(r0, 0x0, 0x0)

17:00:34 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:00:34 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0x1)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
r1 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
sendto$inet(r1, &(0x7f0000000100)="338c748316247614945a6af693719bee6be53430b5edd07f3bc78049371022211e75b9ab6e28f6870abf307ec957b8ea443a01f40e3c5c14d18cc746cbfcc3953946eecbdeb755d998813df5a95fdbb1df7d6d7578580e01386e29f7df2bb6dda6c9d3eaaf42bca9783187162dacb5d6bf3cf99769a7cceea7277ccf6c978b1b3ae49d4c258784e213ff170ef538918d9ad61f3cff2ecadc8e1bddeafa916a3f8209b6b9822acf", 0xa7, 0x4, &(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x1f, @dev={0xac, 0x14, 0x14, 0x25}}, 0x10)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:00:34 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r1 = signalfd(r0, &(0x7f0000000000)={[0x7]}, 0x8)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000100)={{{@in6=@ipv4={'\x00', '\xff\xff', @broadcast}, @in=@multicast1, 0x4e20, 0x9, 0x4e22, 0x2, 0xa, 0x0, 0xa0, 0x3c, 0x0, 0xee01}, {0x401, 0x5, 0x101, 0x1, 0xfffffffffffffffb, 0x7, 0x3, 0x9}, {0x0, 0x8000000000000000, 0x37b2, 0x1}, 0x0, 0x6e6bbc, 0x0, 0x1, 0x1, 0x3}, {{@in6=@local, 0x4d3, 0x6c}, 0xa, @in6=@remote, 0x3504, 0x2, 0x2, 0x20, 0x48e9bf9c, 0x77b, 0x4}}, 0xe8)

[ 2959.513543] FAULT_INJECTION: forcing a failure.
[ 2959.513543] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2959.515355] CPU: 1 UID: 0 PID: 20221 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2959.515385] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2959.515398] Call Trace:
[ 2959.515406]  <TASK>
[ 2959.515414]  dump_stack_lvl+0xfa/0x120
[ 2959.515443]  should_fail_ex+0x4d7/0x5e0
[ 2959.515475]  should_fail_alloc_page+0xe0/0x110
[ 2959.515511]  prepare_alloc_pages+0x1eb/0x550
[ 2959.515540]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2959.515567]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2959.515591]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2959.515619]  ? pgprot2cachemode+0x9a/0x130
[ 2959.515645]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2959.515673]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2959.515702]  ? do_raw_read_unlock+0x44/0xe0
[ 2959.515723]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2959.515748]  ? policy_nodemask+0xeb/0x4e0
[ 2959.515773]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2959.515796]  ? policy_nodemask+0xeb/0x4e0
[ 2959.515822]  alloc_pages_mpol+0xed/0x340
[ 2959.515847]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2959.515872]  ? alloc_pages_noprof+0xb7/0x180
[ 2959.515900]  alloc_pages_noprof+0x9d/0x180
[ 2959.515926]  kimage_alloc_pages+0x70/0x240
[ 2959.515954]  kimage_alloc_page+0x14e/0x7e0
[ 2959.515986]  kimage_load_segment+0x424/0xc90
[ 2959.516019]  do_kexec_load+0x6bd/0x8a0
[ 2959.516046]  ? __pfx_do_kexec_load+0x10/0x10
[ 2959.516075]  ? _copy_from_user+0x5b/0xd0
[ 2959.516107]  __x64_sys_kexec_load+0x1c6/0x230
[ 2959.516137]  do_syscall_64+0xbf/0x3f0
[ 2959.516161]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2959.516183] RIP: 0033:0x7fd597aabb19
17:00:34 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x800448d3, 0x0)

[ 2959.516200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2959.516221] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2959.516243] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2959.516257] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2959.516270] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2959.516283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2959.516295] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2959.516330]  </TASK>
17:00:44 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
ioctl$sock_inet_SIOCDELRT(r1, 0x890c, &(0x7f0000000500)={0x0, {0x2, 0x4e24, @local}, {0x2, 0x4e20, @remote}, {0x2, 0x4e21, @loopback}, 0x20, 0x0, 0x0, 0x0, 0x760d, &(0x7f00000004c0)='syzkaller1\x00', 0x80000000, 0x9, 0x101})
r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x11000, 0x0)
r3 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r3, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r4 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r4, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r5 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r5, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
sendmsg$inet(r5, &(0x7f00000007c0)={&(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10, &(0x7f0000000700)=[{&(0x7f00000005c0)="9db264ce81a0daa60edb4253881bbd0eb72e29270b0948d4ea0e16a69f7fba520f31a6e2b52e1febbc0dcad2250d02d2cd01b990a3a5b128b312fb74bdb6ad3b3ec56cda65ff042a171908d0e9881a88ce3e85e4799a1374892b80078f66a744958fa24f25f2568660e558cb225721d75ed9", 0x72}, {&(0x7f0000000640)="db9d16208a6ef95ca87e50c486bea0aedb7ed6135cb76d9d3158372cd2c8e8e6987e9dd5d0c4d8ccd05e820fb9637befa1d5bad2bec782a9813fb49df74710b14c875f6593d2c345ea2bb9069e3e8d424f5684e2d09b1e85be619d8ee9f58379a0c7fce19a5cab423aabb567182c72bfd980970b87c42bd9f78a885c214acceb8593eb67cb8b41e21d154aeac0fdabc4ea5b2b3df8faf87153e919c7b4d759fece67aa29e9d2d69d804f0886ca11ae1e", 0xb0}], 0x2, &(0x7f0000000740)=ANY=[@ANYBLOB="1c0000010000000a00000002000027bca27567d5d59d", @ANYRES32=0x0, @ANYBLOB="ac1414aa7f000001000000002400000000000000000000000700000089072a7f00000189036e070782ffffffff00000000000000140000000000000000000000020000006f5b000000000000"], 0x60}, 0x40)
recvfrom(r2, &(0x7f0000000580)=""/43, 0x2b, 0x80022000, &(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, r1, {0x2, 0x4e20, @multicast1}, 0x1, 0x4, 0x3, 0x1}}, 0x80)
r6 = accept$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @multicast2}, &(0x7f0000000200)=0x10)
recvmsg(r6, &(0x7f0000000480)={&(0x7f0000000240)=@ethernet={0x0, @remote}, 0x80, &(0x7f00000003c0)=[{&(0x7f00000002c0)=""/238, 0xee}], 0x1, &(0x7f0000000400)=""/83, 0x53}, 0x10)

17:00:44 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)
r2 = getpgrp(0x0)
r3 = signalfd(r1, &(0x7f0000000240)={[0x9]}, 0x8)
bind$bt_hci(r3, &(0x7f0000000280)={0x1f, 0x1, 0x4}, 0x6)
sched_setaffinity(r2, 0x8, &(0x7f00000000c0)=0xfffffffffffffffd)
dup(r1)
r4 = perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0x9, 0x9, 0x6, 0x0, 0x0, 0x4, 0x180, 0xb, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x4000, 0x4, @perf_bp={&(0x7f00000000c0), 0x9}, 0x8000, 0xffffffffffffff78, 0x3, 0x9, 0x4, 0x1ff, 0x4, 0x0, 0x8be, 0x0, 0x81}, r2, 0xf, 0xffffffffffffffff, 0x4)
r5 = getpgrp(0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000180)=0x27)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x35, 0x3a, 0x0, 0x80, 0x0, 0x2, 0x20020, 0x14, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x9, 0x2, @perf_bp={&(0x7f0000000200), 0x5}, 0x1, 0x4b, 0x8, 0x5, 0x80000001, 0x9, 0x100, 0x0, 0x3, 0x0, 0x5}, r5, 0xc, r4, 0x9)

17:00:44 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, 0x0, 0x0)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:00:44 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x0, 0x2}, 0x6)

17:00:44 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 30)

17:00:44 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
write$bt_hci(r0, &(0x7f00000015c0)={0x1, @le_set_data_len={{0x2022, 0x6}, {0xc8, 0x8, 0x2}}}, 0xa)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
recvmmsg(r0, &(0x7f0000002900)=[{{&(0x7f0000001040)=@pppol2tpv3, 0x80, &(0x7f0000001100)=[{&(0x7f00000010c0)=""/25, 0x19}], 0x1}, 0x7fffffff}, {{&(0x7f0000001180)=@in6={0xa, 0x0, 0x0, @empty}, 0x80, &(0x7f00000013c0)=[{&(0x7f0000001200)=""/94, 0x5e}, {&(0x7f0000001280)=""/29, 0x1d}, {&(0x7f00000012c0)=""/26, 0x1a}, {&(0x7f0000001300)=""/140, 0x8c}], 0x4, &(0x7f0000001400)=""/155, 0x9b}, 0x2}, {{&(0x7f00000014c0)=@rc={0x1f, @fixed}, 0x80, &(0x7f0000002880)=[{&(0x7f0000001540)=""/73, 0x49}, {&(0x7f00000015c0)}, {&(0x7f0000001600)=""/206, 0xce}, {&(0x7f0000001700)=""/87, 0x57}, {&(0x7f0000001780)=""/4096, 0x1000}, {&(0x7f0000002780)=""/204, 0xcc}], 0x6, &(0x7f0000003280)=""/4096, 0x1000}, 0xb9b}], 0x3, 0x2002, 0x0)

17:00:44 executing program 6:
poll(&(0x7f0000000080)=[{}], 0x1, 0xf8c6)
sendto$inet(0xffffffffffffffff, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:00:44 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x800448d4, 0x0)

[ 2969.026115] FAULT_INJECTION: forcing a failure.
[ 2969.026115] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2969.027208] CPU: 0 UID: 0 PID: 20247 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2969.027225] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2969.027232] Call Trace:
[ 2969.027236]  <TASK>
[ 2969.027241]  dump_stack_lvl+0xfa/0x120
[ 2969.027259]  should_fail_ex+0x4d7/0x5e0
[ 2969.027277]  should_fail_alloc_page+0xe0/0x110
[ 2969.027298]  prepare_alloc_pages+0x1eb/0x550
[ 2969.027314]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2969.027332]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2969.027344]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2969.027360]  ? pgprot2cachemode+0x9a/0x130
[ 2969.027376]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2969.027390]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2969.027406]  ? do_raw_read_unlock+0x44/0xe0
[ 2969.027419]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2969.027433]  ? policy_nodemask+0xeb/0x4e0
[ 2969.027446]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2969.027459]  ? policy_nodemask+0xeb/0x4e0
[ 2969.027473]  alloc_pages_mpol+0xed/0x340
[ 2969.027486]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2969.027499]  ? alloc_pages_noprof+0xb7/0x180
[ 2969.027514]  alloc_pages_noprof+0x9d/0x180
[ 2969.027528]  kimage_alloc_pages+0x70/0x240
[ 2969.027543]  kimage_alloc_page+0x14e/0x7e0
[ 2969.027560]  kimage_load_segment+0x424/0xc90
[ 2969.027578]  do_kexec_load+0x6bd/0x8a0
[ 2969.027593]  ? __pfx_do_kexec_load+0x10/0x10
[ 2969.027608]  ? _copy_from_user+0x5b/0xd0
[ 2969.027626]  __x64_sys_kexec_load+0x1c6/0x230
[ 2969.027642]  do_syscall_64+0xbf/0x3f0
[ 2969.027655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2969.027668] RIP: 0033:0x7fd597aabb19
[ 2969.027677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2969.027688] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2969.027699] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2969.027707] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2969.027714] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2969.027721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2969.027728] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2969.027743]  </TASK>
17:00:44 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 31)

17:00:44 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000100)="60da3056218861ab36a593ccc8bd2591073ce3967f6a9af1254c154aa03bb95aaf9559b30983ab13421d4294b4dbe1511111af465e67579f5240047c503cb63c08e2101e19cfc132671f675dc124417fb5e449de66add02b2c12164f848e1def33fdb0047daa918b00b29ee38796251bceaaefb1157c9326cdb3488bd300569cafaa34226e396190be7c9ae52147a380e7cd64fbf2640095ea48d7beb4de89a197fac37f", 0xa4, 0x24004b40, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10)

17:00:44 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x800448d5, 0x0)

[ 2969.119739] FAULT_INJECTION: forcing a failure.
[ 2969.119739] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2969.120836] CPU: 0 UID: 0 PID: 20264 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2969.120853] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2969.120860] Call Trace:
[ 2969.120864]  <TASK>
[ 2969.120868]  dump_stack_lvl+0xfa/0x120
[ 2969.120885]  should_fail_ex+0x4d7/0x5e0
[ 2969.120904]  should_fail_alloc_page+0xe0/0x110
[ 2969.120924]  prepare_alloc_pages+0x1eb/0x550
[ 2969.120940]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2969.120955]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2969.120967]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2969.120983]  ? pgprot2cachemode+0x9a/0x130
[ 2969.120998]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2969.121013]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2969.121030]  ? do_raw_read_unlock+0x44/0xe0
[ 2969.121042]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2969.121056]  ? policy_nodemask+0xeb/0x4e0
[ 2969.121070]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2969.121082]  ? policy_nodemask+0xeb/0x4e0
[ 2969.121096]  alloc_pages_mpol+0xed/0x340
[ 2969.121109]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2969.121123]  ? alloc_pages_noprof+0xb7/0x180
[ 2969.121138]  alloc_pages_noprof+0x9d/0x180
[ 2969.121152]  kimage_alloc_pages+0x70/0x240
[ 2969.121167]  kimage_alloc_page+0x14e/0x7e0
[ 2969.121185]  kimage_load_segment+0x424/0xc90
[ 2969.121202]  do_kexec_load+0x6bd/0x8a0
[ 2969.121217]  ? __pfx_do_kexec_load+0x10/0x10
[ 2969.121232]  ? _copy_from_user+0x5b/0xd0
[ 2969.121251]  __x64_sys_kexec_load+0x1c6/0x230
[ 2969.121267]  do_syscall_64+0xbf/0x3f0
[ 2969.121280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2969.121293] RIP: 0033:0x7fd597aabb19
[ 2969.121302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2969.121313] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2969.121329] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2969.121337] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2969.121344] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2969.121350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2969.121357] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2969.121373]  </TASK>
17:00:44 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x800448d7, 0x0)

17:00:44 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
r2 = socket$inet(0x2, 0x80003, 0xff)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
r4 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r4)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
recvmsg$unix(r1, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000100)=""/24, 0x18}, {&(0x7f0000000140)=""/48, 0x30}, {&(0x7f0000000200)=""/55, 0x37}, {&(0x7f0000000380)=""/109, 0x6d}, {&(0x7f00000004c0)=""/165, 0xa5}, {&(0x7f0000001600)=""/4112, 0x1010}, {&(0x7f0000000180)=""/61, 0x3d}, {&(0x7f0000001340)=""/197, 0xc5}], 0x8, &(0x7f0000000680)=ANY=[@ANYBLOB="1c000000000000bbe8593251951e0001", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000002c000000000000000100000001000000bf89e46f99d76183c9c02a71964673bc1c6e830bc60b28", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRESHEX=r2, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRESOCT=r0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x160725fc72e0a8dd}, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

17:00:44 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 32)

[ 2969.210667] FAULT_INJECTION: forcing a failure.
[ 2969.210667] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2969.211705] CPU: 0 UID: 0 PID: 20274 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2969.211722] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2969.211729] Call Trace:
[ 2969.211733]  <TASK>
[ 2969.211738]  dump_stack_lvl+0xfa/0x120
[ 2969.211756]  should_fail_ex+0x4d7/0x5e0
[ 2969.211774]  should_fail_alloc_page+0xe0/0x110
[ 2969.211795]  prepare_alloc_pages+0x1eb/0x550
[ 2969.211811]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2969.211826]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2969.211839]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2969.211855]  ? pgprot2cachemode+0x9a/0x130
[ 2969.211870]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2969.211885]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2969.211901]  ? do_raw_read_unlock+0x44/0xe0
[ 2969.211914]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2969.211928]  ? policy_nodemask+0xeb/0x4e0
[ 2969.211942]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2969.211954]  ? policy_nodemask+0xeb/0x4e0
[ 2969.211968]  alloc_pages_mpol+0xed/0x340
[ 2969.211981]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2969.211995]  ? alloc_pages_noprof+0xb7/0x180
[ 2969.212010]  alloc_pages_noprof+0x9d/0x180
[ 2969.212024]  kimage_alloc_pages+0x70/0x240
[ 2969.212039]  kimage_alloc_page+0x14e/0x7e0
[ 2969.212056]  kimage_load_segment+0x424/0xc90
[ 2969.212074]  do_kexec_load+0x6bd/0x8a0
[ 2969.212089]  ? __pfx_do_kexec_load+0x10/0x10
[ 2969.212104]  ? _copy_from_user+0x5b/0xd0
[ 2969.212122]  __x64_sys_kexec_load+0x1c6/0x230
[ 2969.212138]  do_syscall_64+0xbf/0x3f0
[ 2969.212152]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2969.212164] RIP: 0033:0x7fd597aabb19
[ 2969.212173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2969.212184] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2969.212196] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2969.212204] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
17:00:44 executing program 7:
r0 = socket$inet(0x2, 0x80000, 0xff)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1a}}, 0x10)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

[ 2969.212210] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2969.212217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2969.212224] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2969.212239]  </TASK>
17:00:44 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f00000010c0)={'ip6gre0\x00', &(0x7f0000001040)={'syztnl0\x00', <r3=>0x0, 0x4, 0xb, 0x0, 0x63, 0x0, @private0, @local, 0x721, 0x0, 0x9, 0x1}})
ioctl$sock_inet6_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000001100)={@mcast2, 0x2b, r3})
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xfffe, 0x4}, 0x50)

17:00:44 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 33)

[ 2969.285970] FAULT_INJECTION: forcing a failure.
[ 2969.285970] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2969.286993] CPU: 0 UID: 0 PID: 20282 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2969.287009] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2969.287017] Call Trace:
[ 2969.287021]  <TASK>
[ 2969.287026]  dump_stack_lvl+0xfa/0x120
[ 2969.287042]  should_fail_ex+0x4d7/0x5e0
[ 2969.287060]  should_fail_alloc_page+0xe0/0x110
[ 2969.287080]  prepare_alloc_pages+0x1eb/0x550
[ 2969.287097]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2969.287112]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2969.287125]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2969.287141]  ? pgprot2cachemode+0x9a/0x130
[ 2969.287156]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2969.287171]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2969.287187]  ? do_raw_read_unlock+0x44/0xe0
[ 2969.287199]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2969.287213]  ? policy_nodemask+0xeb/0x4e0
[ 2969.287227]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2969.287239]  ? policy_nodemask+0xeb/0x4e0
[ 2969.287253]  alloc_pages_mpol+0xed/0x340
[ 2969.287266]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2969.287280]  ? alloc_pages_noprof+0xb7/0x180
[ 2969.287295]  alloc_pages_noprof+0x9d/0x180
[ 2969.287309]  kimage_alloc_pages+0x70/0x240
[ 2969.287329]  kimage_alloc_page+0x14e/0x7e0
[ 2969.287346]  kimage_load_segment+0x424/0xc90
[ 2969.287364]  do_kexec_load+0x6bd/0x8a0
[ 2969.287379]  ? __pfx_do_kexec_load+0x10/0x10
[ 2969.287394]  ? _copy_from_user+0x5b/0xd0
[ 2969.287412]  __x64_sys_kexec_load+0x1c6/0x230
[ 2969.287428]  do_syscall_64+0xbf/0x3f0
[ 2969.287440]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2969.287452] RIP: 0033:0x7fd597aabb19
[ 2969.287462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2969.287473] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2969.287484] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2969.287492] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2969.287499] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2969.287505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2969.287512] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2969.287527]  </TASK>
17:00:44 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 34)

[ 2969.368032] FAULT_INJECTION: forcing a failure.
[ 2969.368032] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2969.369142] CPU: 0 UID: 0 PID: 20288 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2969.369158] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2969.369166] Call Trace:
[ 2969.369170]  <TASK>
[ 2969.369175]  dump_stack_lvl+0xfa/0x120
[ 2969.369191]  should_fail_ex+0x4d7/0x5e0
[ 2969.369209]  should_fail_alloc_page+0xe0/0x110
[ 2969.369229]  prepare_alloc_pages+0x1eb/0x550
[ 2969.369246]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2969.369261]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2969.369273]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2969.369289]  ? pgprot2cachemode+0x9a/0x130
[ 2969.369304]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2969.369323]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2969.369339]  ? do_raw_read_unlock+0x44/0xe0
[ 2969.369352]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2969.369369]  ? policy_nodemask+0xeb/0x4e0
[ 2969.369383]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2969.369396]  ? policy_nodemask+0xeb/0x4e0
[ 2969.369410]  alloc_pages_mpol+0xed/0x340
[ 2969.369423]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2969.369449]  ? alloc_pages_noprof+0xb7/0x180
[ 2969.369465]  alloc_pages_noprof+0x9d/0x180
[ 2969.369478]  kimage_alloc_pages+0x70/0x240
[ 2969.369494]  kimage_alloc_page+0x14e/0x7e0
[ 2969.369511]  kimage_load_segment+0x424/0xc90
[ 2969.369529]  do_kexec_load+0x6bd/0x8a0
[ 2969.369544]  ? __pfx_do_kexec_load+0x10/0x10
[ 2969.369559]  ? _copy_from_user+0x5b/0xd0
[ 2969.369576]  __x64_sys_kexec_load+0x1c6/0x230
[ 2969.369593]  do_syscall_64+0xbf/0x3f0
[ 2969.369606]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2969.369618] RIP: 0033:0x7fd597aabb19
[ 2969.369628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2969.369639] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2969.369650] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2969.369658] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2969.369665] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2969.369672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2969.369679] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2969.369694]  </TASK>
17:00:45 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
r2 = socket$inet(0x2, 0x80003, 0xff)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
r4 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r4)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
recvmsg$unix(r1, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000100)=""/24, 0x18}, {&(0x7f0000000140)=""/48, 0x30}, {&(0x7f0000000200)=""/55, 0x37}, {&(0x7f0000000380)=""/109, 0x6d}, {&(0x7f00000004c0)=""/165, 0xa5}, {&(0x7f0000001600)=""/4112, 0x1010}, {&(0x7f0000000180)=""/61, 0x3d}, {&(0x7f0000001340)=""/197, 0xc5}], 0x8, &(0x7f0000000680)=ANY=[@ANYBLOB="1c000000000000bbe8593251951e0001", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000002c000000000000000100000001000000bf89e46f99d76183c9c02a71964673bc1c6e830bc60b28", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRESHEX=r2, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRESOCT=r0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x160725fc72e0a8dd}, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

17:00:45 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0xb00, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$inet_int(r1, 0x0, 0x14, &(0x7f0000000000)=0x7, 0x4)

17:00:45 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, 0x0, 0x0)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:00:45 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 35)

[ 2969.908676] FAULT_INJECTION: forcing a failure.
[ 2969.908676] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2969.910876] CPU: 1 UID: 0 PID: 20299 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2969.910913] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2969.910928] Call Trace:
[ 2969.910938]  <TASK>
[ 2969.910948]  dump_stack_lvl+0xfa/0x120
[ 2969.910981]  should_fail_ex+0x4d7/0x5e0
[ 2969.911021]  should_fail_alloc_page+0xe0/0x110
[ 2969.911065]  prepare_alloc_pages+0x1eb/0x550
[ 2969.911101]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2969.911134]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2969.911163]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2969.911199]  ? pgprot2cachemode+0x9a/0x130
[ 2969.911230]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2969.911265]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2969.911302]  ? do_raw_read_unlock+0x44/0xe0
[ 2969.911336]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2969.911367]  ? policy_nodemask+0xeb/0x4e0
[ 2969.911396]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2969.911425]  ? policy_nodemask+0xeb/0x4e0
[ 2969.911457]  alloc_pages_mpol+0xed/0x340
[ 2969.911487]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2969.911518]  ? alloc_pages_noprof+0xb7/0x180
[ 2969.911553]  alloc_pages_noprof+0x9d/0x180
[ 2969.911585]  kimage_alloc_pages+0x70/0x240
[ 2969.911619]  kimage_alloc_page+0x14e/0x7e0
[ 2969.911659]  kimage_load_segment+0x424/0xc90
[ 2969.911700]  do_kexec_load+0x6bd/0x8a0
[ 2969.911735]  ? __pfx_do_kexec_load+0x10/0x10
[ 2969.911770]  ? _copy_from_user+0x5b/0xd0
[ 2969.911809]  __x64_sys_kexec_load+0x1c6/0x230
[ 2969.911847]  do_syscall_64+0xbf/0x3f0
[ 2969.911876]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2969.911903] RIP: 0033:0x7fd597aabb19
[ 2969.911924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2969.911950] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2969.911976] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2969.911994] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2969.912010] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2969.912026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2969.912041] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2969.912077]  </TASK>
17:00:54 executing program 1:
ioctl$TCGETS2(0xffffffffffffffff, 0x802c542a, &(0x7f0000001080))
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000001040)=0x220, 0x4)
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
poll(&(0x7f00000010c0)=[{r2, 0x489}], 0x1, 0x50)

17:00:54 executing program 6:
r0 = socket$inet(0x2, 0xc181910db16d2772, 0x81)
sendto$inet(r0, &(0x7f0000000000)="42c9c2045125c4e015fa0144f2c9c7a141a00d", 0x13, 0x40, &(0x7f0000000100)={0x2, 0x4e22, @multicast1}, 0x10)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:00:54 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x0, 0x2}, 0x6)

17:00:54 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x800448f0, 0x0)

17:00:54 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448ca, 0x0)

17:00:54 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
r2 = socket$inet(0x2, 0x80003, 0xff)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
r4 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r4)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
recvmsg$unix(r1, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000100)=""/24, 0x18}, {&(0x7f0000000140)=""/48, 0x30}, {&(0x7f0000000200)=""/55, 0x37}, {&(0x7f0000000380)=""/109, 0x6d}, {&(0x7f00000004c0)=""/165, 0xa5}, {&(0x7f0000001600)=""/4112, 0x1010}, {&(0x7f0000000180)=""/61, 0x3d}, {&(0x7f0000001340)=""/197, 0xc5}], 0x8, &(0x7f0000000680)=ANY=[@ANYBLOB="1c000000000000bbe8593251951e0001", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000002c000000000000000100000001000000bf89e46f99d76183c9c02a71964673bc1c6e830bc60b28", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRESHEX=r2, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRESOCT=r0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x160725fc72e0a8dd}, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

17:00:54 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, 0x0, 0x0)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:00:54 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 36)

[ 2979.164048] FAULT_INJECTION: forcing a failure.
[ 2979.164048] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2979.165593] CPU: 0 UID: 0 PID: 20319 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2979.165616] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2979.165626] Call Trace:
[ 2979.165632]  <TASK>
[ 2979.165638]  dump_stack_lvl+0xfa/0x120
[ 2979.165661]  should_fail_ex+0x4d7/0x5e0
[ 2979.165686]  should_fail_alloc_page+0xe0/0x110
[ 2979.165715]  prepare_alloc_pages+0x1eb/0x550
[ 2979.165737]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2979.165759]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2979.165778]  ? pgprot2cachemode+0x9a/0x130
[ 2979.165799]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2979.165821]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2979.165844]  ? do_raw_read_unlock+0x44/0xe0
[ 2979.165861]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2979.165881]  ? policy_nodemask+0xeb/0x4e0
[ 2979.165900]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2979.165918]  ? policy_nodemask+0xeb/0x4e0
[ 2979.165938]  alloc_pages_mpol+0xed/0x340
[ 2979.165956]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2979.165976]  ? alloc_pages_noprof+0xb7/0x180
[ 2979.165998]  alloc_pages_noprof+0x9d/0x180
[ 2979.166018]  kimage_alloc_pages+0x70/0x240
[ 2979.166040]  kimage_alloc_page+0x14e/0x7e0
[ 2979.166065]  kimage_load_segment+0x424/0xc90
[ 2979.166090]  do_kexec_load+0x6bd/0x8a0
[ 2979.166112]  ? __pfx_do_kexec_load+0x10/0x10
[ 2979.166133]  ? _copy_from_user+0x5b/0xd0
[ 2979.166159]  __x64_sys_kexec_load+0x1c6/0x230
[ 2979.166182]  do_syscall_64+0xbf/0x3f0
[ 2979.166201]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2979.166218] RIP: 0033:0x7fd597aabb19
[ 2979.166231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2979.166248] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2979.166265] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2979.166278] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2979.166288] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2979.166298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2979.166308] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2979.166335]  </TASK>
17:00:54 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 37)

17:00:54 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 1)

[ 2979.250828] FAULT_INJECTION: forcing a failure.
[ 2979.250828] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2979.252266] CPU: 0 UID: 0 PID: 20330 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2979.252288] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2979.252297] Call Trace:
[ 2979.252302]  <TASK>
[ 2979.252308]  dump_stack_lvl+0xfa/0x120
[ 2979.252334]  should_fail_ex+0x4d7/0x5e0
[ 2979.252358]  should_fail_alloc_page+0xe0/0x110
[ 2979.252385]  prepare_alloc_pages+0x1eb/0x550
[ 2979.252406]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2979.252426]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2979.252442]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2979.252464]  ? pgprot2cachemode+0x9a/0x130
[ 2979.252484]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2979.252504]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2979.252528]  ? do_raw_read_unlock+0x44/0xe0
[ 2979.252544]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2979.252561]  ? policy_nodemask+0xeb/0x4e0
[ 2979.252579]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2979.252596]  ? policy_nodemask+0xeb/0x4e0
[ 2979.252614]  alloc_pages_mpol+0xed/0x340
[ 2979.252631]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2979.252650]  ? alloc_pages_noprof+0xb7/0x180
[ 2979.252670]  alloc_pages_noprof+0x9d/0x180
[ 2979.252689]  kimage_alloc_pages+0x70/0x240
[ 2979.252709]  kimage_alloc_page+0x14e/0x7e0
[ 2979.252732]  kimage_load_segment+0x424/0xc90
[ 2979.252756]  do_kexec_load+0x6bd/0x8a0
[ 2979.252775]  ? __pfx_do_kexec_load+0x10/0x10
[ 2979.252796]  ? _copy_from_user+0x5b/0xd0
[ 2979.252819]  __x64_sys_kexec_load+0x1c6/0x230
[ 2979.252840]  do_syscall_64+0xbf/0x3f0
[ 2979.252858]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2979.252874] RIP: 0033:0x7fd597aabb19
[ 2979.252886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2979.252902] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2979.252917] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2979.252927] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2979.252937] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2979.252946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2979.252955] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2979.252975]  </TASK>
17:00:54 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x80086601, 0x0)

17:00:54 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
r2 = socket$inet(0x2, 0x80003, 0xff)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
r4 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r4)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
recvmsg$unix(r1, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000100)=""/24, 0x18}, {&(0x7f0000000140)=""/48, 0x30}, {&(0x7f0000000200)=""/55, 0x37}, {&(0x7f0000000380)=""/109, 0x6d}, {&(0x7f00000004c0)=""/165, 0xa5}, {&(0x7f0000001600)=""/4112, 0x1010}, {&(0x7f0000000180)=""/61, 0x3d}, {&(0x7f0000001340)=""/197, 0xc5}], 0x8, &(0x7f0000000680)=ANY=[@ANYBLOB="1c000000000000bbe8593251951e0001", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000002c000000000000000100000001000000bf89e46f99d76183c9c02a71964673bc1c6e830bc60b28", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRESHEX=r2, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRESOCT=r0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x160725fc72e0a8dd}, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

[ 2979.331463] FAULT_INJECTION: forcing a failure.
[ 2979.331463] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2979.333503] CPU: 1 UID: 0 PID: 20334 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2979.333538] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2979.333553] Call Trace:
[ 2979.333562]  <TASK>
[ 2979.333586]  dump_stack_lvl+0xfa/0x120
[ 2979.333620]  should_fail_ex+0x4d7/0x5e0
[ 2979.333657]  _copy_from_user+0x30/0xd0
[ 2979.333693]  move_addr_to_kernel.part.0+0x40/0x120
[ 2979.333724]  __sys_bind+0x14b/0x2b0
[ 2979.333753]  ? __pfx___sys_bind+0x10/0x10
[ 2979.333788]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2979.333827]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2979.333865]  ? ksys_write+0x1a3/0x240
[ 2979.333901]  ? __pfx_ksys_write+0x10/0x10
[ 2979.333941]  __x64_sys_bind+0x73/0xb0
[ 2979.333970]  do_syscall_64+0xbf/0x3f0
[ 2979.333998]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2979.334024] RIP: 0033:0x7fbfee694b19
[ 2979.334044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2979.334068] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 2979.334093] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 2979.334110] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 2979.334125] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2979.334140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2979.334155] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 2979.334188]  </TASK>
17:00:54 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 38)

[ 2979.423248] FAULT_INJECTION: forcing a failure.
[ 2979.423248] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2979.424491] CPU: 0 UID: 0 PID: 20341 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2979.424511] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2979.424520] Call Trace:
[ 2979.424525]  <TASK>
[ 2979.424530]  dump_stack_lvl+0xfa/0x120
[ 2979.424550]  should_fail_ex+0x4d7/0x5e0
[ 2979.424571]  should_fail_alloc_page+0xe0/0x110
[ 2979.424595]  prepare_alloc_pages+0x1eb/0x550
[ 2979.424618]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2979.424638]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2979.424661]  ? lock_acquire+0x15e/0x2f0
[ 2979.424682]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2979.424702]  ? finish_task_switch.isra.0+0x206/0x840
[ 2979.424720]  ? trace_sched_exit_tp+0xbf/0x100
[ 2979.424734]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2979.424750]  ? policy_nodemask+0xeb/0x4e0
[ 2979.424767]  alloc_pages_mpol+0xed/0x340
[ 2979.424782]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2979.424798]  ? alloc_pages_noprof+0xb7/0x180
[ 2979.424816]  alloc_pages_noprof+0x9d/0x180
[ 2979.424832]  kimage_alloc_pages+0x70/0x240
[ 2979.424850]  kimage_alloc_page+0x14e/0x7e0
[ 2979.424871]  kimage_load_segment+0x424/0xc90
[ 2979.424891]  do_kexec_load+0x6bd/0x8a0
[ 2979.424909]  ? __pfx_do_kexec_load+0x10/0x10
[ 2979.424926]  ? _copy_from_user+0x5b/0xd0
[ 2979.424948]  __x64_sys_kexec_load+0x1c6/0x230
[ 2979.424967]  do_syscall_64+0xbf/0x3f0
[ 2979.424983]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2979.424997] RIP: 0033:0x7fd597aabb19
[ 2979.425007] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2979.425021] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2979.425035] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2979.425044] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2979.425053] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2979.425061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2979.425069] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2979.425087]  </TASK>
17:01:04 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
close(r0)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:01:04 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x0, 0x2}, 0x6)

17:01:04 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
r2 = socket$inet(0x2, 0x80003, 0xff)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
r4 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r4)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
recvmsg$unix(r1, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000100)=""/24, 0x18}, {&(0x7f0000000140)=""/48, 0x30}, {&(0x7f0000000200)=""/55, 0x37}, {&(0x7f0000000380)=""/109, 0x6d}, {&(0x7f00000004c0)=""/165, 0xa5}, {&(0x7f0000001600)=""/4112, 0x1010}, {&(0x7f0000000180)=""/61, 0x3d}, {&(0x7f0000001340)=""/197, 0xc5}], 0x8, &(0x7f0000000680)=ANY=[@ANYBLOB="1c000000000000bbe8593251951e0001", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000002c000000000000000100000001000000bf89e46f99d76183c9c02a71964673bc1c6e830bc60b28", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRESHEX=r2, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRESOCT=r0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x160725fc72e0a8dd}, 0x0)

17:01:04 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 2)

17:01:04 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x80087601, 0x0)

17:01:04 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 39)

17:01:04 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x0, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:01:04 executing program 1:
recvmmsg(0xffffffffffffffff, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
r0 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r3=>0x0})
sendto$packet(r1, 0x0, 0x608, 0x0, &(0x7f0000000040)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @dev}, 0x14)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(0xffffffffffffffff, 0x89f4, &(0x7f00000067c0)={'ip6tnl0\x00', &(0x7f0000006740)={'sit0\x00', <r4=>0x0, 0x2f, 0x8, 0x26, 0x5, 0x0, @loopback, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x20, 0x7800, 0x5, 0x3}})
getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000006800)={{{@in, @in6=@ipv4={""/10, ""/2, @dev}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in6=@local}, 0x0, @in6=@mcast2}}, &(0x7f0000006900)=0xe8)
sendmsg$inet(r0, &(0x7f0000006a40)={&(0x7f0000006600)={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000006700)=[{&(0x7f0000006640)="10bfbddec830be9441767ee34d90ec4529fd331d79d558b131bc5cbf6175d370972b165ab859c43808e7659e998213e32c6cf9732a4d7175a7946df9e029ad2821ed18ece61f03794c35b033d49aa3678e9c0966da007235117a8f44ddfe4f100b75cf3404a00be2421981b1b9588c3eb31afc6cb6849e46216d59c29ce5c1533c154ab9e40b73f0b645", 0x8a}], 0x1, &(0x7f0000006940)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x401}}, @ip_ttl={{0x14, 0x0, 0x2, 0xffffffff}}, @ip_ttl={{0x14, 0x0, 0x2, 0x2}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @dev={0xac, 0x14, 0x14, 0x1a}, @private=0xa010102}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @broadcast, @dev={0xac, 0x14, 0x14, 0x2e}}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @dev={0xac, 0x14, 0x14, 0x42}, @empty}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x101}}, @ip_retopts={{0x30, 0x0, 0x7, {[@timestamp={0x44, 0x20, 0xda, 0x0, 0x4, [0xff, 0x0, 0x8, 0x1, 0x9, 0x4, 0x0]}]}}}], 0xf0}, 0x48003)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000006b00)={'syztnl0\x00', &(0x7f0000006a80)={'ip6tnl0\x00', r3, 0x2f, 0x32, 0x9b, 0x8, 0x12, @loopback, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x7, 0x8000, 0x9, 0x7}})
clock_gettime(0x0, &(0x7f0000006280)={<r6=>0x0, <r7=>0x0})
recvmmsg(r0, &(0x7f0000003140)=[{{&(0x7f0000001080)=@pptp={0x18, 0x2, {0x0, @initdev}}, 0x80, &(0x7f0000001100)=[{&(0x7f0000000000)=""/41, 0x29}, {&(0x7f0000001180)=""/220, 0xdc}], 0x2, &(0x7f0000001280)=""/4096, 0x1000}, 0x7ff}, {{&(0x7f0000002280)=@pptp, 0x80, &(0x7f0000002600)=[{&(0x7f0000002300)=""/30, 0x1e}, {&(0x7f0000003280)=""/4096, 0x1000}, {&(0x7f0000002340)=""/1, 0x1}, {&(0x7f0000004280)=""/4096, 0x1000}, {&(0x7f0000002380)=""/8, 0x8}, {&(0x7f00000023c0)=""/44, 0x2c}, {&(0x7f0000002400)=""/45, 0x2d}, {&(0x7f0000002440)=""/152, 0x98}, {&(0x7f0000002500)=""/203, 0xcb}], 0x9, &(0x7f00000026c0)=""/132, 0x84}, 0x9}, {{&(0x7f0000002780)=@nfc, 0x80, &(0x7f00000029c0)=[{&(0x7f0000002800)=""/121, 0x79}, {&(0x7f0000002880)=""/31, 0x1f}, {&(0x7f00000028c0)=""/36, 0x24}, {&(0x7f0000006540)=""/146, 0x92}], 0x4, &(0x7f0000002a00)=""/84, 0x54}, 0x7}, {{&(0x7f0000002a80)=@ethernet, 0x80, &(0x7f0000002fc0)=[{&(0x7f0000002b00)=""/45, 0x2d}, {&(0x7f0000002b40)=""/171, 0xab}, {&(0x7f0000006500)=""/49, 0x31}, {&(0x7f0000002c40)=""/244, 0xf4}, {&(0x7f0000002d40)=""/98, 0x62}, {&(0x7f0000002dc0)=""/208, 0xd0}, {&(0x7f0000005280)=""/4096, 0x1000}, {&(0x7f0000002ec0)=""/248, 0xf8}], 0x8, &(0x7f0000003040)=""/252, 0xfc}, 0xd88}], 0x4, 0x40002000, &(0x7f00000062c0)={r6, r7+10000000})
bind$bt_hci(0xffffffffffffffff, &(0x7f0000001040)={0x1f, 0xfffe, 0x2}, 0x6)
getsockopt$EBT_SO_GET_INIT_ENTRIES(r0, 0x0, 0x83, &(0x7f0000006440)={'filter\x00', 0x0, 0x3, 0xb2, [0x20, 0x0, 0x1000, 0x4, 0x1, 0xfffffffffffffc00], 0x5, &(0x7f0000006300)=[{}, {}, {}, {}, {}], &(0x7f0000006380)=""/178}, &(0x7f00000064c0)=0x78)
io_setup(0xfff, &(0x7f0000000040)=<r8=>0x0)
r9 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
io_submit(r8, 0x2, &(0x7f00000005c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, r9, 0x0}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, r9, 0x0}])
io_pgetevents(r8, 0xffffffffa7ab4648, 0x3, &(0x7f0000002900)=[{}, {}, {}], 0x0, &(0x7f0000002c00)={&(0x7f0000006b40)={[0x6]}, 0x8})

[ 2989.429696] FAULT_INJECTION: forcing a failure.
[ 2989.429696] name failslab, interval 1, probability 0, space 0, times 0
[ 2989.432024] CPU: 1 UID: 0 PID: 20349 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2989.432059] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2989.432075] Call Trace:
[ 2989.432084]  <TASK>
[ 2989.432094]  dump_stack_lvl+0xfa/0x120
[ 2989.432127]  should_fail_ex+0x4d7/0x5e0
[ 2989.432165]  should_failslab+0xc2/0x120
[ 2989.432205]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 2989.432235]  ? lock_acquire+0x15e/0x2f0
[ 2989.432271]  ? avc_has_perm_noaudit+0x59/0x3d0
[ 2989.432296]  ? __alloc_skb+0x2ab/0x370
[ 2989.432346]  ? __alloc_skb+0x2ab/0x370
[ 2989.432376]  __alloc_skb+0x2ab/0x370
[ 2989.432410]  ? __pfx___alloc_skb+0x10/0x10
[ 2989.432443]  ? __pfx_vsnprintf+0x10/0x10
[ 2989.432484]  ? cred_has_capability.isra.0+0x1bd/0x2c0
[ 2989.432520]  ? __pfx_cred_has_capability.isra.0+0x10/0x10
[ 2989.432561]  send_monitor_note+0xdc/0x4e0
[ 2989.432592]  ? __pfx_send_monitor_note+0x10/0x10
[ 2989.432618]  ? trace_cap_capable+0x156/0x1b0
[ 2989.432657]  ? cap_capable+0x9c/0x240
[ 2989.432703]  hci_sock_bind+0x94d/0x1470
[ 2989.432735]  ? __pfx_hci_sock_bind+0x10/0x10
[ 2989.432775]  __sys_bind+0x1dd/0x2b0
[ 2989.432806]  ? __pfx___sys_bind+0x10/0x10
[ 2989.432843]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2989.432881]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2989.432921]  ? ksys_write+0x1a3/0x240
[ 2989.432957]  ? __pfx_ksys_write+0x10/0x10
[ 2989.433000]  __x64_sys_bind+0x73/0xb0
[ 2989.433029]  do_syscall_64+0xbf/0x3f0
[ 2989.433057]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2989.433084] RIP: 0033:0x7fbfee694b19
[ 2989.433104] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2989.433129] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 2989.433154] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 2989.433171] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 2989.433187] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2989.433203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2989.433218] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 2989.433253]  </TASK>
[ 2989.484707] FAULT_INJECTION: forcing a failure.
[ 2989.484707] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2989.486284] CPU: 0 UID: 0 PID: 20359 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2989.486309] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2989.486326] Call Trace:
[ 2989.486332]  <TASK>
[ 2989.486338]  dump_stack_lvl+0xfa/0x120
[ 2989.486364]  should_fail_ex+0x4d7/0x5e0
[ 2989.486392]  should_fail_alloc_page+0xe0/0x110
[ 2989.486422]  prepare_alloc_pages+0x1eb/0x550
[ 2989.486446]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2989.486469]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2989.486488]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2989.486512]  ? pgprot2cachemode+0x9a/0x130
[ 2989.486535]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2989.486558]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2989.486583]  ? do_raw_read_unlock+0x44/0xe0
[ 2989.486601]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2989.486623]  ? policy_nodemask+0xeb/0x4e0
[ 2989.486644]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2989.486663]  ? policy_nodemask+0xeb/0x4e0
[ 2989.486684]  alloc_pages_mpol+0xed/0x340
[ 2989.486704]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2989.486726]  ? alloc_pages_noprof+0xb7/0x180
[ 2989.486749]  alloc_pages_noprof+0x9d/0x180
[ 2989.486770]  kimage_alloc_pages+0x70/0x240
[ 2989.486793]  kimage_alloc_page+0x14e/0x7e0
[ 2989.486820]  kimage_load_segment+0x424/0xc90
[ 2989.486847]  do_kexec_load+0x6bd/0x8a0
[ 2989.486870]  ? __pfx_do_kexec_load+0x10/0x10
[ 2989.486893]  ? _copy_from_user+0x5b/0xd0
[ 2989.486921]  __x64_sys_kexec_load+0x1c6/0x230
[ 2989.486946]  do_syscall_64+0xbf/0x3f0
[ 2989.486967]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2989.486986] RIP: 0033:0x7fd597aabb19
[ 2989.487000] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2989.487017] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2989.487035] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2989.487047] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2989.487058] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2989.487069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2989.487080] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2989.487103]  </TASK>
17:01:04 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
r1 = socket$inet(0x2, 0x80003, 0xff)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r3)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

17:01:13 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 3)

17:01:13 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 40)

17:01:13 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x0, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:01:13 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)

17:01:13 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x80108906, 0x0)

17:01:13 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001300)='/proc/slabinfo\x00', 0x0, 0x0)
r4 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r4, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r5 = openat(0xffffffffffffffff, &(0x7f0000001540)='./file0\x00', 0x80, 0xa3)
r6 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r6, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r6, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r7 = openat$bsg(0xffffffffffffff9c, &(0x7f0000001740), 0x240400, 0x0)
io_submit(0x0, 0x8, &(0x7f00000017c0)=[&(0x7f0000001100)={0x0, 0x0, 0x0, 0x2, 0x762, r0, &(0x7f0000000100)="10025f7ddafce9aab1743aca5a00a8871f5aced58730c82ffd14b592afd744a8873de7ab0f6dc3da1e1e454be648c1b1d5cfe1686014b49541c749e5150300b8d99ab39fc024b63c3b85d136f50758191ad8d37225ed80c9d0cc3b2536091933988bd2e46821d5f71dc39bb1430784f24d01818910f5bc36f5a4cb7e6f6da11fe866779ad5a6528cdb59e53289b214b46cb046dba1fe31ccdf1e84e84f884559617dbc417d3ba58aa8d90d1aa2de604fc23ba312f877f978f122a5ffa89544385515eae517fb4c7bb7185d17b9c7f83d12266d148b406fb9ad12f96feec3ff1e1e2dcd2d531f9f8793117f3557bab0bd56fbc1934fd82063d46dcebfa050314a3ff020fc512d0f1c9ca3a49e1d1470f9e8c5d91eb9d39452527d62e2f1d6cf151eab7608ba247dedb782f6c991c6e63ae019cb82822eaac208e9fad467c433bc433f0f647116cd37c011b622b9a851cd504b977233df55463a1f89bc5358268e6094407a74b16507a56b49f0dbca515d6fa410fe4cadc91bb663cda165074c91cae8fa077b992a56d341097df5b2bf1d032ba0045d34c30ed8743d1ef57ff8b288773a820bcf5bd123cd882e9f5331ebaade00e8f3f9679a7a066e30a92f2e515d1423bb668d67a554bab0482312155c7714f36e43455dc83bfe1aad65b66a4b9afb389ded5725c517e6374939e995a0322c1d9450c7a403811959f3a0140a5072fd0e035c11dc7288984ee4b9a19524140691629d5ebc30f3aa9d3b1791cfde7cb816179964444937f0df5e9b44f9394d12b8a7dc63003a9353587385a5bd064a94eb362d6caa0a908f1b210ed2d86cff99c76a89df70b432e6fc447d84e462d0afc8716e1c8a06ba74e9e3bcfcdf46e82f6ac7ab3ce0631b5bfdf8c82072d89a574f1f6c0f87e739fbaeb4e927b82161ab505a1b302f6c1d1c261f81f56b99b8b6cb60281370fe93aaab33264e99128b5cea5f6f8c992c9e5ff3be38b986c9767cc2680ac9f0845d15b7b1382d217b53df9e34b022c45c4a20391fb6c531fec2eeafc81495d239212130a3607a6ad6fbe0d7d99b1e2304e39cce86d27f43f71dee6d9bcff5514cdd8e33fbd20064cd8c160f077a5689ce942e98f779fedaea39ffeca85eeada734951c256030fcfe105e9cda157081ef25b3160cd219b6218661a3f0cc77ceb934c1389b02d356314010b273a0e4dcf7e785e4ebb723f1c185d1f96189799fc0d58d6841959ed7dcc27a9ce8144026edc841d57dbba8c11fef15e3724ec282a97e511258fbeae5a53f165d9d24e17d28fd134d016781ce3fb617110c270e967ef7dd43fe0c7d3c3bbe45028fe407d5aaa1d1d66fe8b4cdcfaa7cbd65e10d5933e98e750ce888917f56d877b0e15d3e4a6e72ab61db885beeb644de619cddb79979e539e2fd175e3342a63f20dfcd7a3abae5f3f2623582df34e3662e2a9f7f047d16cca6ed9036aedd51dd66194378fcc524bbfdc2a0052c1e2b0d17694e2fbde894477bb098f5b52ff2c6d2feebbb3157163fe270c6d5b69dd3d86baf97cce36d9927a99b7b73b944584ae8fd46b7f6cada50729c43886d511100f844cebc05816c742085d0863311eee81347754caefb8f5129bab28cbf9853ec068e6894ba6cc637cf21fb4c65e10aa061488ed62beeb3d84aa357cb5a5e7dc9c063ef921621fec56dee85089e29529db9aa2e19e9ad67a18bc64ac35936bacc1971aca84151f070023fa6b92c5291193829bf138af9a96df18effb61b24cbda7e71e9cba1da296dea04471a72097b5a8024afd4896b3c47220253c0e9bebf5c31a206cd5375559936575bc6ab8503895d16f42238ea6c42a032860cde16a9886e12a85bbede10afdf80a4c7ca6a180e48199593e46ffc3642d813b8d1e40aff581c4c0f5d536a2075ea277445749b41722d91d81b2d2a8194d19faae5983b21f7e8526b75dfbe0a0d92a280512eb21178adbd6b95587aebebc0638f29d300a97df1e51c713407a4c15ab7a0ad1e352e01871047ba7d82d319e8e82cc2c7950b7cd917381aed175edb2df9890b7b00f16aa540e7799c16da8c81d0468e6012b4173349feff6705a9471a9e2785d3c3a2e069a89a6093276e3bbaf0c69842461367faac6891dc0bf259ec74a4f5218258ff5fef12c8c5172ac57bc286d0891a87819ecb2edc56af2a43af4e8f8f3ec14f303987a17f354bb581eb251b611842797a6a70381bc75f693b38c40553b68e5a79bb40e2ca3179827b67dc838e1f38799b25d12f0dd999ef236a3646fb78133bcf259676ba33576c82ab7cf6b928dab97c019c964521e9d16f35084e884765a13b4b515f20aa9bbbdcbda7deae7c2bc98ac6cd6b4429afe6ac84b628af2ca9d39859bd16639773fa2598307e3e70f6a0dd9953f3a553a53c6e855c91611b128df8b3810e02e54d99eb2ea666da2c7bf94629515678d60047506d0813587d58360b8c7fe8ea7ec83f6409a75dcfe9bfda21490e62f736caf69026f756b792e2a76be6d0d84755b45695b1a7cef362fb42cceee20534b78a85194a7460b02316c431bfa8b4cc34083af09e62a7c64a0aeab0dce1d8f37fb55de53894417e02318a93298dfb21b52550f82afedf2a2f80fccc5386f2ccf3af6386c2825e9d0979c8ae4b0a5a8a4a10cbf1772b2005bac444edc5f2f9ec0fdc8dc3de72188bbca227d06033d570b1749a03f531e65531cfd3b3d397102d314a6b3c71857238b68a73e3105ab1cb406fe2cec03d980cba1bf1ffd4690a79ddb7e9e44d1c75e2d9b268ce6f616f10dfd53a0e0e304229ac4d0a665b1f06edb0ff5b2c9daef7959c3df4a6f394f6aef3c1fc17c3ec31e65926d627e0a8e11cf213898a2bba546bf517b1614180c8d08a09e4df7853ca2e4c9e5f80732eebc56ea49f749f3ab349f46465f80dd66b915b921706f99102c0d2e73df77baea81bd1dd5f558ec5f87b99eceb446967526c2adde108e5ff3c83c41599854f922fd72db78f3d6ccfe400bc88805cbb665fb7e42e74df595952d7a780fb576969d6b13974646b3006ba5ec6f9f48e7577622f37c55e68e8f9d330de362c9240a84facd01aafd2c80a959ce38c398ef4c66151a6c3c5d31905038171302599b43f688b653f834cf50739001fe5db17865b133dc13a3a955143c59ebd833e7a6af5a690faa1447f164cc8999f4d8855c7aa3fb1796ccc08c46c5d73b165c8cb646ee9205eda7e70cdec8b5e803cbf2fd5070c7880fc4911ba99f8c56295e55ac535261c75b6786a3c19b4e530da9713018121c102f89fbe1b0614dfb5fdaa9f59544f41a192e2741f0cf9801908e2ca77548916e40141590cdc85d23b741e3452cc6e9937116e18004cb6cf766b71805617e9758b845d30e53bb356fbff456f4eb0ab17426937bf53ba0985fe7bc2ab001e261ab9646502cdd7ccf469a1bad1704e7ad1d485ba870d2a77e56258c956103bca04c22102dad1a724c52de0589d15e78354f10a4a985567a20d0b39de60941ec9a2ac2130fa78151ce3c464d3a11a7047230a4f0e190779cf8240e563aeae4076680594b539b0fca1fa5962f16bfcd7d7710be4a94d9e369503fe3558d916163a298041a93ebe55e9457a822c9398ef70ea307ad0862e307cc287cb6444bc345605e1bfb476aa8e3361224b30f222186ee2b06e252d6d129ba11dba94ae2440033303adaab65050f352a6ff30d36368718b3a6d9b6d1351488ae9ecd55fb51bacf8a31bf0e66bca6b036dd5ebf4af31ed582a1af8fc6ba875b7cb51e75345aa51f6a959603150667aec7d2c733e59a839f7f818c9e3c8b65356d144f61448c2ba95bfb59e908639be3c0afbde08e84012f7cc516e7f9ab5a7d14dae4d040375af677365e993f1b84f499e068137ca7ac00317108c60f12273e3ddc8e349288c9f7ef868b7e702eaaa9db86d87a446fded5672b5677d445699957692f1f6225e297e34d1b7b252a1c8163413cf1d188ea19f69039e9e45e766093b55a9a2eebc2d32146b0031c9f3df3a55b645cf4a62d550a7263ecac36317d2aeba9108ac61c9d84f8c76f989ba965d16d676090d0d70521d722e78a2ebbf838f662f15da6fe10277738f45f70c16ab10df47aa94eb2822af1b863cf020af9bde04e8fd75d0f2e050b9d903f280783bb575f130a784ebf3899bcd8f3e49e693e56fe6ea92e2cf1df93971c6c05e988ecaff8948e0b75bf1b72dcd9edd4d0924978c8c2420c1b59e7c198243bb5e1ca3d0931d9bc4ae8ce1c0bb253d4e0b3e3dc560a18155e08589777c135a48ce26dd8598aa6387936e73f4b2ffb5117ac00ce681b3a7e01102af7785803924691bb785df3017edb5b32a887f6a1d29f4bec3401284632be2214dc09a0e06b352cb3a6e0ef6b42325df3771227407ab9986102fb954f40fc0caeae55c6fefc7655d7145a0168dd073d2c5bce8da05302ece84827fbf9c1f3736f093b6b0dcde9c212a05abf9b7f55b5a117d5809ad8673ceae76852403deeae119e2539220bb3381d1e71f070b05d4b3b35e75e736168e3195f65a141580bac7ffa134522de0319c9d8316335a53046df98b8496851818d9827ba04f3e549dafff0db8043959484076fa83712b560e29efb96515fdec3115d805c7e653461695363b30ec75a3c8e7bb6a489f0b398fe88d92316fec109c1508228bbce32642391e39834375fecfb6cb08c48aabe7f308cef0d6052afecc4a5965c2d3338d8d1d368062136bd5694e4cc9c14a4eedebe5385e4d0b0f393736a8f351482f30c294d790390986f256274e8da75dabf1ed174d904cd9a43650fac41437a648ec09f2179774ab2ca6f844f2a8518cc81ac0d690042254f6b434956c7faf5ee864128d7e8c8d89d3a155ae1464cc446e76a43b9830112e6583d316208c7817a36cdfbd034fc56f60e0acdb487c6c532112f11ce571cfacf5199fb51bf3a22c1dca3406e57d0ada9d812ec3fa51b35ad4298cb04f1a93e5045a08e41e8bd380e70c58fe7a998279087e647ccb5df6f89de8221a2ec208c02acf9a5cdd1b412331edf8add1b713f8204ab92aeff7abd49d9a8233f04c072220b307e44e4784e8bb7dad9184e88329c0890b702aec836e97d21a7eede1b5af516713a703ad7b52a03f63655cb471a753cd6004cc319db4dfc29f36998a8fee1b01b2531dc0414f3dbcf49c8ed32085fe1d421870a3445f83fe9f347a970191d52155cb85052cc4b8aa4c0e973a123908497f7f036b7663720e434a0e910095256d2775cdcdb9b0442f418f10f4a000f5cad1545bd0a305f8274f9579ec19ca9f9faf316db82c08725849f1a09c229c8b914ab9bac7ed5a21691445843d86b851015fdd4a7f75b729cf1a9692a2bcb4a037dbdacb2d82ee86cbb01c4ce070b89f96a00a6325620c8948b021bb531426a05c5c27efe35e9b76364bf229665d990049143b969046ea292b4a8141a850307b79037eded1c8b04eb9978d4af9fe8115f19ee375e2d2e6a4be7740aa2ede3b432a4ecf014c4c768c2017f1078e146dc7ffe2683747ee80db11fbbd602cde05ecdab88d6bd25afd2730b5c39d64d85b74ca67ab7e437677dd111bc5c4ecaa6d774e6fa295565f7ba2949f846ce43511723f70286254a395a434a31ada379a87877b9465f3752b55a231368f2f6dce443746c5a5689376ebe20219573cee97467197e4a1e9bf44f423333ee9f5d2f11950c026a7396a16c5ce33f682c201c75a59b6bf643206c3e42dddfaa2d6b3d11248734e0c673345265b6678b36c025fe1a94c71f876d", 0x1000, 0xff}, &(0x7f00000011c0)={0x0, 0x0, 0x0, 0x7, 0x4, r1, &(0x7f0000001140)="a572eed0e005e7a99b013e3065df00c1c768c151662729cde1a3fd1a74518f306c914c0c6f6d4b5e8a58d23f77246d514627913c6f669414eeab5742bff1d3c99588cad45163782c7bf6d6b32d643ac19877b511cad7ec620c240d87324a795c22", 0x61, 0x7, 0x0, 0x1}, &(0x7f0000001280)={0x0, 0x0, 0x0, 0x3, 0x9, r0, &(0x7f0000001200)="2e70d67ce0f4948aa19e6225e9654e2bf1b03b3b8e146d12b65e820428ce492b51ef50a069d3fdcaf3291489ba2fe58553e89941588152a011fada31073d19d896f5d54df06f35317230c250530b09eb14ad5a81bde1478832cbc5935f59be3732ed05503d8ed94c10", 0x69, 0x31e}, &(0x7f0000001340)={0x0, 0x0, 0x0, 0x6, 0x0, r2, &(0x7f00000012c0), 0x0, 0x7a64, 0x0, 0x0, r3}, &(0x7f0000001400)={0x0, 0x0, 0x0, 0x7, 0x6, r4, &(0x7f0000001380)="9d90bed6f5eea86135ef3758fec9f607ddc5ef5aa8fe7ad502ae5ca2ad2a36ca176504fce3c6dcc38cbcdf3c8028cb0e88ef2d04dcdec63795b60720169dbf0ddee6cd70392c2747cea335778c641f2d7aa6bd56cb3b2e017d90d1e7c13fc86f367702feb515336acc00ff42ef80b9", 0x6f, 0x5}, &(0x7f0000001580)={0x0, 0x0, 0x0, 0x6, 0x8000, 0xffffffffffffffff, &(0x7f0000001440)="0946c0c2b5c38a4d9e0e3d8701bca145c02ce5780a5f104698e1f4325c4a5c8a47a3ccb0739c5f6118bc5143fc3b3b304aa698ad6d53d167b3cb44749ef12a7b7630579ca3d7af3efa2b9a0b22cbfb667b9840ef765a5e560a511695086fdba7f79e3a6554df83c323fde885da697ee5d74b7997ab12495850b0d552658d2b50488844be548b3616f34a41eb15f571bd8b1d830babb07cbd2b7d136f23a538fe9b306a480ca42ec534874a0a74391b6382a81a08c68e70b69537b2e464bc1a97ec22aff457402a24", 0xc8, 0xe6, 0x0, 0x1, r5}, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x2, 0x6, r0, &(0x7f00000015c0)="16f762e3a2b5054fd518", 0xa, 0x46dd, 0x0, 0x1}, &(0x7f0000001780)={0x0, 0x0, 0x0, 0x5, 0x5, r6, &(0x7f0000001640)="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", 0xfd, 0x4, 0x0, 0x5, r7}])
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:01:13 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
r1 = socket$inet(0x2, 0x80003, 0xff)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r3)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)

17:01:13 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
bind$bt_hci(r0, &(0x7f0000001040)={0x1f, 0x3, 0x2}, 0x6)

17:01:13 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x80108907, 0x0)

[ 2998.070035] FAULT_INJECTION: forcing a failure.
[ 2998.070035] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2998.071054] CPU: 0 UID: 0 PID: 20392 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2998.071070] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2998.071078] Call Trace:
[ 2998.071083]  <TASK>
[ 2998.071087]  dump_stack_lvl+0xfa/0x120
[ 2998.071105]  should_fail_ex+0x4d7/0x5e0
[ 2998.071123]  should_fail_alloc_page+0xe0/0x110
[ 2998.071144]  prepare_alloc_pages+0x1eb/0x550
[ 2998.071161]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2998.071175]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2998.071188]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2998.071204]  ? pgprot2cachemode+0x9a/0x130
[ 2998.071219]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2998.071234]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2998.071254]  ? do_raw_read_unlock+0x44/0xe0
[ 2998.071266]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2998.071281]  ? policy_nodemask+0xeb/0x4e0
[ 2998.071295]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2998.071307]  ? policy_nodemask+0xeb/0x4e0
[ 2998.071321]  alloc_pages_mpol+0xed/0x340
[ 2998.071334]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2998.071348]  ? alloc_pages_noprof+0xb7/0x180
[ 2998.071363]  alloc_pages_noprof+0x9d/0x180
[ 2998.071377]  kimage_alloc_pages+0x70/0x240
[ 2998.071392]  kimage_alloc_page+0x14e/0x7e0
[ 2998.071410]  kimage_load_segment+0x424/0xc90
[ 2998.071427]  do_kexec_load+0x6bd/0x8a0
[ 2998.071442]  ? __pfx_do_kexec_load+0x10/0x10
[ 2998.071458]  ? _copy_from_user+0x5b/0xd0
[ 2998.071476]  __x64_sys_kexec_load+0x1c6/0x230
[ 2998.071492]  do_syscall_64+0xbf/0x3f0
[ 2998.071506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2998.071518] RIP: 0033:0x7fd597aabb19
[ 2998.071528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2998.071539] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2998.071551] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2998.071559] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2998.071566] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2998.071572] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2998.071579] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2998.071594]  </TASK>
17:01:13 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 4)

17:01:13 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r2)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)

17:01:13 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 41)

17:01:13 executing program 1:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r1, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f0000000140)={0x24, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x8, 0x11d, 0x0, 0x1, [{0x4}]}]}, 0x24}}, 0x0)
r4 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r4, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
ioctl$BTRFS_IOC_INO_LOOKUP(r4, 0xd0009412, &(0x7f00000012c0)={0x0, 0xb6})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f00000011c0)={&(0x7f0000001040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001180)={&(0x7f0000001200)=ANY=[@ANYBLOB="88000000", @ANYRES16=r0, @ANYBLOB="000228bd7000fedbdf253800000008000300", @ANYRES32=0x0, @ANYBLOB="0c005800790000000000e5b1cac3c87149aa7b11f2a44fe000000c00580079000000000100000c00000000000000440600000c0058002f000000000000000c00580044000000000000000c00580025000000000000c001709dfa635da558000c0058005f000000100000000c0058045c000000000000000c0058"], 0x88}, 0x1, 0x0, 0x0, 0x20000002}, 0x20000000)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r5, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r5, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r6, &(0x7f0000000180)={0x1f, 0x0, @fixed, 0x0, 0x2}, 0xe)
r7 = dup(r6)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000002340)={&(0x7f00000010c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001100)={&(0x7f00000022c0)={0x44, r0, 0x400, 0x70bd27, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x71}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x80}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x75}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x22}]}, 0x44}}, 0x10000000)
setsockopt$bt_BT_DEFER_SETUP(r7, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
write$bt_hci(r7, &(0x7f0000001080)={0x1, @auth_requested={{0x411, 0x2}, {0xc8}}}, 0x6)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000002380)={'bond_slave_0\x00'})

17:01:13 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x80111500, 0x0)

[ 2998.293581] FAULT_INJECTION: forcing a failure.
[ 2998.293581] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2998.294596] CPU: 0 UID: 0 PID: 20405 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 2998.294615] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2998.294623] Call Trace:
[ 2998.294628]  <TASK>
[ 2998.294634]  dump_stack_lvl+0xfa/0x120
[ 2998.294655]  should_fail_ex+0x4d7/0x5e0
[ 2998.294674]  should_fail_alloc_page+0xe0/0x110
[ 2998.294703]  prepare_alloc_pages+0x1eb/0x550
[ 2998.294728]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 2998.294744]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2998.294758]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 2998.294776]  ? pgprot2cachemode+0x9a/0x130
[ 2998.294792]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2998.294808]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2998.294825]  ? do_raw_read_unlock+0x44/0xe0
[ 2998.294838]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2998.294853]  ? policy_nodemask+0xeb/0x4e0
[ 2998.294868]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2998.294881]  ? policy_nodemask+0xeb/0x4e0
[ 2998.294896]  alloc_pages_mpol+0xed/0x340
[ 2998.294910]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2998.294924]  ? alloc_pages_noprof+0xb7/0x180
[ 2998.294940]  alloc_pages_noprof+0x9d/0x180
[ 2998.294954]  kimage_alloc_pages+0x70/0x240
[ 2998.294972]  kimage_alloc_page+0x14e/0x7e0
[ 2998.294990]  kimage_load_segment+0x424/0xc90
[ 2998.295008]  do_kexec_load+0x6bd/0x8a0
[ 2998.295024]  ? __pfx_do_kexec_load+0x10/0x10
[ 2998.295041]  ? _copy_from_user+0x5b/0xd0
[ 2998.295060]  __x64_sys_kexec_load+0x1c6/0x230
[ 2998.295077]  do_syscall_64+0xbf/0x3f0
[ 2998.295092]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2998.295105] RIP: 0033:0x7fd597aabb19
[ 2998.295115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2998.295127] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 2998.295139] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 2998.295148] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 2998.295155] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 2998.295162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2998.295169] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 2998.295185]  </TASK>
17:01:13 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 5)

17:01:22 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x801c581f, 0x0)

17:01:22 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:01:22 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x0, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:01:22 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000100)="90343c3fc04fd9ff4c203e0c222344c3246302c1fda91c489f897ff2965f0cc14fdeae99d2527bf4d06979ad9bcc4f71d5ea1738a8a3231a889b29e1e9c4d3ded7133d23", 0x44, 0x80, 0x0, 0x0)
r1 = openat$incfs(0xffffffffffffffff, &(0x7f0000000000)='.pending_reads\x00', 0x101100, 0x10e)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
poll(&(0x7f0000000080)=[{r2, 0x280}], 0x2000000000000196, 0xf8c6)
ioctl$CDROMREADCOOKED(r1, 0x5315, &(0x7f0000000180))
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
r3 = open(&(0x7f0000000c00)='./file0\x00', 0x200, 0x9)
ioctl$CDROMREADRAW(r3, 0x5314, &(0x7f0000000c40)={0x0, 0x7f, 0x24, 0x9, 0x3, 0x26})

17:01:22 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 6)

17:01:22 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240), 0x64, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

17:01:22 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)

17:01:22 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 42)

[ 3006.960952] FAULT_INJECTION: forcing a failure.
[ 3006.960952] name failslab, interval 1, probability 0, space 0, times 0
[ 3006.961967] CPU: 0 UID: 0 PID: 20427 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3006.961983] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3006.961991] Call Trace:
[ 3006.961995]  <TASK>
[ 3006.962000]  dump_stack_lvl+0xfa/0x120
[ 3006.962017]  should_fail_ex+0x4d7/0x5e0
[ 3006.962035]  should_failslab+0xc2/0x120
[ 3006.962054]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3006.962068]  ? lock_is_held_type+0x9e/0x120
[ 3006.962087]  ? __alloc_skb+0x2ab/0x370
[ 3006.962107]  ? __alloc_skb+0x2ab/0x370
[ 3006.962121]  __alloc_skb+0x2ab/0x370
[ 3006.962136]  ? __pfx___alloc_skb+0x10/0x10
[ 3006.962151]  ? __pfx_vsnprintf+0x10/0x10
[ 3006.962168]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3006.962188]  ? read_tsc+0x9/0x20
[ 3006.962203]  ? ktime_get_with_offset+0x1c6/0x2f0
[ 3006.962225]  send_monitor_note+0xdc/0x4e0
[ 3006.962240]  ? __pfx_send_monitor_note+0x10/0x10
[ 3006.962252]  ? trace_cap_capable+0x156/0x1b0
[ 3006.962270]  ? cap_capable+0x9c/0x240
[ 3006.962291]  hci_sock_bind+0x966/0x1470
[ 3006.962305]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3006.962328]  __sys_bind+0x1dd/0x2b0
[ 3006.962342]  ? __pfx___sys_bind+0x10/0x10
[ 3006.962358]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3006.962377]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3006.962395]  ? ksys_write+0x1a3/0x240
[ 3006.962412]  ? __pfx_ksys_write+0x10/0x10
[ 3006.962431]  __x64_sys_bind+0x73/0xb0
[ 3006.962444]  do_syscall_64+0xbf/0x3f0
[ 3006.962457]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3006.962469] RIP: 0033:0x7fbfee694b19
[ 3006.962478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3006.962489] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3006.962501] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3006.962509] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3006.962516] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3006.962523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3006.962529] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3006.962545]  </TASK>
[ 3007.005772] FAULT_INJECTION: forcing a failure.
[ 3007.005772] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3007.006780] CPU: 0 UID: 0 PID: 20432 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3007.006797] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3007.006805] Call Trace:
[ 3007.006809]  <TASK>
[ 3007.006814]  dump_stack_lvl+0xfa/0x120
[ 3007.006829]  should_fail_ex+0x4d7/0x5e0
[ 3007.006850]  should_fail_alloc_page+0xe0/0x110
[ 3007.006870]  prepare_alloc_pages+0x1eb/0x550
[ 3007.006886]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3007.006901]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3007.006914]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3007.006930]  ? pgprot2cachemode+0x9a/0x130
[ 3007.006945]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3007.006960]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3007.006977]  ? do_raw_read_unlock+0x44/0xe0
[ 3007.006989]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3007.007003]  ? policy_nodemask+0xeb/0x4e0
[ 3007.007017]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3007.007030]  ? policy_nodemask+0xeb/0x4e0
[ 3007.007044]  alloc_pages_mpol+0xed/0x340
[ 3007.007057]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3007.007071]  ? alloc_pages_noprof+0xb7/0x180
[ 3007.007086]  alloc_pages_noprof+0x9d/0x180
[ 3007.007100]  kimage_alloc_pages+0x70/0x240
[ 3007.007115]  kimage_alloc_page+0x14e/0x7e0
[ 3007.007132]  kimage_load_segment+0x424/0xc90
[ 3007.007150]  do_kexec_load+0x6bd/0x8a0
[ 3007.007165]  ? __pfx_do_kexec_load+0x10/0x10
[ 3007.007180]  ? _copy_from_user+0x5b/0xd0
[ 3007.007198]  __x64_sys_kexec_load+0x1c6/0x230
[ 3007.007214]  do_syscall_64+0xbf/0x3f0
[ 3007.007227]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3007.007239] RIP: 0033:0x7fd597aabb19
[ 3007.007247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3007.007259] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3007.007270] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3007.007278] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3007.007285] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3007.007292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3007.007299] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3007.007314]  </TASK>
17:01:22 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 7)

17:01:22 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x80811501, 0x0)

17:01:22 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 8)

17:01:22 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
r1 = accept4$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @loopback}, &(0x7f0000000100)=0x10, 0x80800)
r2 = openat2(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)={0x40, 0x20, 0x28}, 0x18)
r3 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = inotify_init()
r5 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r5, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
ppoll(&(0x7f0000000280)=[{r1, 0x2}, {r2}, {r3, 0x1400}, {r4, 0x80}, {r5, 0x4308}], 0x5, &(0x7f00000002c0)={0x77359400}, &(0x7f0000000300)={[0x7fffffff]}, 0x8)
r6 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r6, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r6, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$inet_MCAST_LEAVE_GROUP(r6, 0x0, 0x2d, &(0x7f0000000140)={0xd, {{0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, 0x88)

17:01:22 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 43)

17:01:22 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)

[ 3007.142138] FAULT_INJECTION: forcing a failure.
[ 3007.142138] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3007.143143] CPU: 0 UID: 0 PID: 20451 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3007.143159] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3007.143167] Call Trace:
[ 3007.143171]  <TASK>
[ 3007.143176]  dump_stack_lvl+0xfa/0x120
[ 3007.143195]  should_fail_ex+0x4d7/0x5e0
[ 3007.143214]  should_fail_alloc_page+0xe0/0x110
[ 3007.143235]  prepare_alloc_pages+0x1eb/0x550
[ 3007.143251]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3007.143266]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3007.143279]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3007.143295]  ? pgprot2cachemode+0x9a/0x130
[ 3007.143310]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3007.143329]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3007.143345]  ? do_raw_read_unlock+0x44/0xe0
[ 3007.143358]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3007.143372]  ? policy_nodemask+0xeb/0x4e0
[ 3007.143386]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3007.143398]  ? policy_nodemask+0xeb/0x4e0
[ 3007.143412]  alloc_pages_mpol+0xed/0x340
[ 3007.143426]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3007.143439]  ? alloc_pages_noprof+0xb7/0x180
[ 3007.143454]  alloc_pages_noprof+0x9d/0x180
[ 3007.143468]  kimage_alloc_pages+0x70/0x240
[ 3007.143484]  kimage_alloc_page+0x14e/0x7e0
[ 3007.143501]  kimage_load_segment+0x424/0xc90
[ 3007.143519]  do_kexec_load+0x6bd/0x8a0
[ 3007.143534]  ? __pfx_do_kexec_load+0x10/0x10
[ 3007.143549]  ? _copy_from_user+0x5b/0xd0
[ 3007.143567]  __x64_sys_kexec_load+0x1c6/0x230
[ 3007.143583]  do_syscall_64+0xbf/0x3f0
[ 3007.143597]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3007.143609] RIP: 0033:0x7fd597aabb19
[ 3007.143618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3007.143630] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3007.143641] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3007.143649] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3007.143655] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3007.143662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3007.143669] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3007.143685]  </TASK>
17:01:22 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 44)

17:01:22 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 9)

17:01:22 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0xc0045878, 0x0)

[ 3007.247795] FAULT_INJECTION: forcing a failure.
[ 3007.247795] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3007.248896] CPU: 0 UID: 0 PID: 20462 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3007.248914] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3007.248921] Call Trace:
[ 3007.248926]  <TASK>
[ 3007.248931]  dump_stack_lvl+0xfa/0x120
[ 3007.248949]  should_fail_ex+0x4d7/0x5e0
[ 3007.248968]  should_fail_alloc_page+0xe0/0x110
[ 3007.248988]  prepare_alloc_pages+0x1eb/0x550
[ 3007.249004]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3007.249019]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3007.249032]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3007.249048]  ? pgprot2cachemode+0x9a/0x130
[ 3007.249063]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3007.249078]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3007.249094]  ? do_raw_read_unlock+0x44/0xe0
[ 3007.249107]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3007.249121]  ? policy_nodemask+0xeb/0x4e0
[ 3007.249135]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3007.249147]  ? policy_nodemask+0xeb/0x4e0
[ 3007.249161]  alloc_pages_mpol+0xed/0x340
[ 3007.249174]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3007.249188]  ? alloc_pages_noprof+0xb7/0x180
[ 3007.249203]  alloc_pages_noprof+0x9d/0x180
[ 3007.249217]  kimage_alloc_pages+0x70/0x240
[ 3007.249232]  kimage_alloc_page+0x14e/0x7e0
[ 3007.249249]  kimage_load_segment+0x424/0xc90
[ 3007.249267]  do_kexec_load+0x6bd/0x8a0
[ 3007.249281]  ? __pfx_do_kexec_load+0x10/0x10
[ 3007.249297]  ? _copy_from_user+0x5b/0xd0
[ 3007.249315]  __x64_sys_kexec_load+0x1c6/0x230
[ 3007.249335]  do_syscall_64+0xbf/0x3f0
[ 3007.249349]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3007.249361] RIP: 0033:0x7fd597aabb19
[ 3007.249370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3007.249382] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3007.249393] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3007.249401] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3007.249408] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3007.249415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3007.249422] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3007.249437]  </TASK>
17:01:23 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:01:23 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 45)

17:01:23 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0xc0045878, 0x0)

17:01:23 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)

[ 3007.864687] FAULT_INJECTION: forcing a failure.
[ 3007.864687] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3007.866126] CPU: 0 UID: 0 PID: 20475 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3007.866146] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3007.866156] Call Trace:
[ 3007.866161]  <TASK>
[ 3007.866166]  dump_stack_lvl+0xfa/0x120
[ 3007.866187]  should_fail_ex+0x4d7/0x5e0
[ 3007.866209]  should_fail_alloc_page+0xe0/0x110
[ 3007.866233]  prepare_alloc_pages+0x1eb/0x550
[ 3007.866253]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3007.866271]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3007.866286]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3007.866306]  ? pgprot2cachemode+0x9a/0x130
[ 3007.866329]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3007.866348]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3007.866371]  ? do_raw_read_unlock+0x44/0xe0
[ 3007.866386]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3007.866403]  ? policy_nodemask+0xeb/0x4e0
[ 3007.866420]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3007.866435]  ? policy_nodemask+0xeb/0x4e0
[ 3007.866452]  alloc_pages_mpol+0xed/0x340
[ 3007.866468]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3007.866485]  ? alloc_pages_noprof+0xb7/0x180
[ 3007.866503]  alloc_pages_noprof+0x9d/0x180
[ 3007.866520]  kimage_alloc_pages+0x70/0x240
[ 3007.866539]  kimage_alloc_page+0x14e/0x7e0
[ 3007.866560]  kimage_load_segment+0x424/0xc90
[ 3007.866581]  do_kexec_load+0x6bd/0x8a0
[ 3007.866599]  ? __pfx_do_kexec_load+0x10/0x10
[ 3007.866618]  ? _copy_from_user+0x5b/0xd0
[ 3007.866641]  __x64_sys_kexec_load+0x1c6/0x230
[ 3007.866660]  do_syscall_64+0xbf/0x3f0
[ 3007.866677]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3007.866691] RIP: 0033:0x7fd597aabb19
17:01:23 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 10)

[ 3007.866703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3007.866717] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3007.866731] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3007.866741] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3007.866750] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3007.866758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3007.866767] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3007.866786]  </TASK>
17:01:23 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)

17:01:23 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0xc0189436, 0x0)

17:01:23 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
write$bt_hci(r2, &(0x7f0000001040)={0x1, @le_set_ext_adv_data={{0x2037, 0x23}, {0xff, 0xff, 0xfc, 0x1, "d86e1681e541d4dcbfc28cada3daf0c055f88d29ca49e3655a561657450da9"}}}, 0x27)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

17:01:23 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 46)

[ 3007.962741] FAULT_INJECTION: forcing a failure.
[ 3007.962741] name failslab, interval 1, probability 0, space 0, times 0
[ 3007.964536] CPU: 1 UID: 0 PID: 20478 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3007.964565] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3007.964579] Call Trace:
[ 3007.964586]  <TASK>
[ 3007.964594]  dump_stack_lvl+0xfa/0x120
[ 3007.964624]  should_fail_ex+0x4d7/0x5e0
[ 3007.964653]  ? __sock_queue_rcv_skb+0x550/0xc50
[ 3007.964691]  should_failslab+0xc2/0x120
[ 3007.964725]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3007.964753]  ? __alloc_skb+0x2ab/0x370
[ 3007.964780]  ? __lock_acquire+0xc65/0x1b70
[ 3007.964815]  ? __alloc_skb+0x2ab/0x370
[ 3007.964841]  __alloc_skb+0x2ab/0x370
[ 3007.964869]  ? __pfx___alloc_skb+0x10/0x10
[ 3007.964898]  ? lock_acquire+0x15e/0x2f0
[ 3007.964926]  ? hci_sock_bind+0x972/0x1470
[ 3007.964960]  create_monitor_event+0x3d7/0x930
[ 3007.964988]  hci_sock_bind+0xb22/0x1470
[ 3007.965014]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3007.965048]  __sys_bind+0x1dd/0x2b0
[ 3007.965074]  ? __pfx___sys_bind+0x10/0x10
[ 3007.965104]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3007.965138]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3007.965171]  ? ksys_write+0x1a3/0x240
[ 3007.965203]  ? __pfx_ksys_write+0x10/0x10
[ 3007.965239]  __x64_sys_bind+0x73/0xb0
[ 3007.965264]  do_syscall_64+0xbf/0x3f0
[ 3007.965289]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3007.965311] RIP: 0033:0x7fbfee694b19
[ 3007.965336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3007.965357] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3007.965379] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3007.965394] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3007.965407] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3007.965420] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3007.965433] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3007.965462]  </TASK>
[ 3007.996237] FAULT_INJECTION: forcing a failure.
[ 3007.996237] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3007.997628] CPU: 0 UID: 0 PID: 20482 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3007.997667] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3007.997684] Call Trace:
[ 3007.997693]  <TASK>
[ 3007.997701]  dump_stack_lvl+0xfa/0x120
[ 3007.997726]  should_fail_ex+0x4d7/0x5e0
[ 3007.997764]  should_fail_alloc_page+0xe0/0x110
[ 3007.997815]  prepare_alloc_pages+0x1eb/0x550
[ 3007.997865]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3007.997905]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3007.997973]  ? lock_acquire+0x15e/0x2f0
[ 3007.998017]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3007.998049]  ? finish_task_switch.isra.0+0x206/0x840
[ 3007.998083]  ? trace_sched_exit_tp+0xbf/0x100
[ 3007.998116]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3007.998149]  ? policy_nodemask+0xeb/0x4e0
[ 3007.998183]  alloc_pages_mpol+0xed/0x340
[ 3007.998218]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3007.998258]  ? alloc_pages_noprof+0xb7/0x180
[ 3007.998294]  alloc_pages_noprof+0x9d/0x180
[ 3007.998330]  kimage_alloc_pages+0x70/0x240
[ 3007.998366]  kimage_alloc_page+0x14e/0x7e0
[ 3007.998411]  kimage_load_segment+0x424/0xc90
[ 3007.998457]  do_kexec_load+0x6bd/0x8a0
[ 3007.998497]  ? __pfx_do_kexec_load+0x10/0x10
[ 3007.998537]  ? _copy_from_user+0x5b/0xd0
[ 3007.998583]  __x64_sys_kexec_load+0x1c6/0x230
[ 3007.998626]  do_syscall_64+0xbf/0x3f0
[ 3007.998656]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3007.998683] RIP: 0033:0x7fd597aabb19
[ 3007.998702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3007.998733] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3007.998759] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3007.998781] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3007.998797] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3007.998818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3007.998838] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3007.998877]  </TASK>
17:01:23 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)

17:01:33 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0xc020660b, 0x0)

17:01:33 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0)
recvfrom(r1, &(0x7f0000000100)=""/212, 0xd4, 0x40000100, 0x0, 0x0)

17:01:33 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 47)

17:01:33 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:01:33 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 11)

17:01:33 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)

17:01:33 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000001040)='net/stat\x00')
ioctl$FICLONE(r0, 0x40049409, 0xffffffffffffffff)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r1, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1}, 0xcb57}], 0x1, 0x0, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000001080)={0x1, @accept_phy_link={{0x436, 0x43}, {0xc9, 0x81, 0x40, "8a6be42e7ed584b95c354d3e9e58181107093f266e5f83965932f7108ad9529fe267816b881cd8a4134f6f46130c2fa5694b21caf1790aef9d98cc12e8ae9d1e"}}}, 0x47)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xdb7f, 0x2}, 0x6)

17:01:33 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

[ 3018.400031] FAULT_INJECTION: forcing a failure.
[ 3018.400031] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3018.401869] CPU: 0 UID: 0 PID: 20510 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3018.401899] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3018.401912] Call Trace:
[ 3018.401920]  <TASK>
[ 3018.401928]  dump_stack_lvl+0xfa/0x120
[ 3018.401956]  should_fail_ex+0x4d7/0x5e0
[ 3018.401990]  should_fail_alloc_page+0xe0/0x110
[ 3018.402025]  prepare_alloc_pages+0x1eb/0x550
[ 3018.402062]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3018.402109]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3018.402146]  ? lock_acquire+0x15e/0x2f0
[ 3018.402178]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3018.402210]  ? finish_task_switch.isra.0+0x206/0x840
[ 3018.402238]  ? trace_sched_exit_tp+0xbf/0x100
[ 3018.402261]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3018.402285]  ? policy_nodemask+0xeb/0x4e0
[ 3018.402313]  alloc_pages_mpol+0xed/0x340
[ 3018.402343]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3018.402369]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 3018.402405]  alloc_pages_noprof+0x9d/0x180
[ 3018.402431]  kimage_alloc_pages+0x70/0x240
[ 3018.402459]  kimage_alloc_page+0x14e/0x7e0
[ 3018.402491]  kimage_load_segment+0x424/0xc90
[ 3018.402524]  do_kexec_load+0x6bd/0x8a0
[ 3018.402552]  ? __pfx_do_kexec_load+0x10/0x10
[ 3018.402581]  ? _copy_from_user+0x5b/0xd0
[ 3018.402613]  __x64_sys_kexec_load+0x1c6/0x230
[ 3018.402643]  do_syscall_64+0xbf/0x3f0
[ 3018.402668]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3018.402690] RIP: 0033:0x7fd597aabb19
[ 3018.402707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3018.402728] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3018.402749] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3018.402764] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3018.402777] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3018.402791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3018.402804] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3018.402832]  </TASK>
17:01:44 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:01:44 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
ioctl$sock_bt_hci(r0, 0x800448d3, &(0x7f0000000080)="39a3f788405ad3baa4cd19d23da388fd1daa2abbcb1c84a679eff0ff2d4b4284c4525974e2f4804e08f284b0470869b5b884200260e8f99cc78f0bb08fd953b3b46d01f5ac4005c14872b2f642c4585a63f18f2d0bf2d39adbc4a6082423b96b9a5713d16bc067")

17:01:44 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
recvmmsg(r2, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000080)}}], 0x1, 0x0, 0x0)
r3 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r3, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
recvfrom(r3, &(0x7f0000001040)=""/173, 0xad, 0x12160, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

17:01:44 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
ppoll(&(0x7f0000000000)=[{r0, 0x4044}, {r0, 0x2008}, {0xffffffffffffffff, 0x104}], 0x3, &(0x7f0000000100)={0x0, 0x3938700}, &(0x7f0000000140)={[0x4]}, 0x8)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:01:44 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:01:44 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 48)

17:01:44 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 12)

17:01:44 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

[ 3028.963264] FAULT_INJECTION: forcing a failure.
[ 3028.963264] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3028.965199] CPU: 1 UID: 0 PID: 20528 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3028.965230] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3028.965242] Call Trace:
[ 3028.965249]  <TASK>
[ 3028.965257]  dump_stack_lvl+0xfa/0x120
[ 3028.965285]  should_fail_ex+0x4d7/0x5e0
[ 3028.965316]  should_fail_alloc_page+0xe0/0x110
[ 3028.965359]  prepare_alloc_pages+0x1eb/0x550
[ 3028.965394]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3028.965426]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3028.965461]  ? lock_acquire+0x15e/0x2f0
[ 3028.965492]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3028.965524]  ? finish_task_switch.isra.0+0x206/0x840
[ 3028.965552]  ? trace_sched_exit_tp+0xbf/0x100
[ 3028.965574]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3028.965598]  ? policy_nodemask+0xeb/0x4e0
[ 3028.965625]  alloc_pages_mpol+0xed/0x340
[ 3028.965648]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3028.965674]  ? alloc_pages_noprof+0xb7/0x180
[ 3028.965702]  alloc_pages_noprof+0x9d/0x180
[ 3028.965727]  kimage_alloc_pages+0x70/0x240
[ 3028.965754]  kimage_alloc_page+0x14e/0x7e0
[ 3028.965786]  kimage_load_segment+0x424/0xc90
[ 3028.965819]  do_kexec_load+0x6bd/0x8a0
[ 3028.965847]  ? __pfx_do_kexec_load+0x10/0x10
[ 3028.965875]  ? _copy_from_user+0x5b/0xd0
[ 3028.965908]  __x64_sys_kexec_load+0x1c6/0x230
[ 3028.965938]  do_syscall_64+0xbf/0x3f0
[ 3028.965962]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3028.965984] RIP: 0033:0x7fd597aabb19
[ 3028.966001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3028.966022] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3028.966043] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3028.966058] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3028.966071] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3028.966084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3028.966097] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3028.966125]  </TASK>
17:01:44 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:01:44 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 49)

[ 3029.147110] FAULT_INJECTION: forcing a failure.
[ 3029.147110] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3029.148916] CPU: 0 UID: 0 PID: 20547 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3029.148948] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3029.148961] Call Trace:
[ 3029.148969]  <TASK>
[ 3029.148978]  dump_stack_lvl+0xfa/0x120
[ 3029.149008]  should_fail_ex+0x4d7/0x5e0
[ 3029.149042]  should_fail_alloc_page+0xe0/0x110
[ 3029.149083]  prepare_alloc_pages+0x1eb/0x550
[ 3029.149117]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3029.149149]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3029.149176]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3029.149206]  ? pgprot2cachemode+0x9a/0x130
[ 3029.149240]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3029.149268]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3029.149299]  ? do_raw_read_unlock+0x44/0xe0
[ 3029.149331]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3029.149359]  ? policy_nodemask+0xeb/0x4e0
[ 3029.149386]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3029.149417]  ? policy_nodemask+0xeb/0x4e0
[ 3029.149445]  alloc_pages_mpol+0xed/0x340
[ 3029.149477]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3029.149510]  ? alloc_pages_noprof+0xb7/0x180
[ 3029.149542]  alloc_pages_noprof+0x9d/0x180
[ 3029.149575]  kimage_alloc_pages+0x70/0x240
[ 3029.149606]  kimage_alloc_page+0x14e/0x7e0
[ 3029.149639]  kimage_load_segment+0x424/0xc90
[ 3029.149676]  do_kexec_load+0x6bd/0x8a0
[ 3029.149705]  ? __pfx_do_kexec_load+0x10/0x10
[ 3029.149735]  ? _copy_from_user+0x5b/0xd0
[ 3029.149774]  __x64_sys_kexec_load+0x1c6/0x230
[ 3029.149807]  do_syscall_64+0xbf/0x3f0
[ 3029.149834]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3029.149858] RIP: 0033:0x7fd597aabb19
[ 3029.149875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3029.149898] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3029.149919] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3029.149936] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3029.149949] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3029.149963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3029.149976] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3029.150004]  </TASK>
[ 3029.834199] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3029.838392] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:01:53 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 50)

17:01:53 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f0000001140)}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
bind$bt_hci(r0, &(0x7f0000001100)={0x1f, 0x1, 0x4}, 0x6)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000001080)=0x8, 0x4)
ioctl$sock_bt_hci(r2, 0x400448cb, &(0x7f0000001040)="dd5f458a5ccc04ff8072ac3a9fb6ac10876d2aeb73d4a06dc12edcef6d4d2f9c708d712a76645fac3cdc9c029d648038f28fe8d6dca7cbfd4f189e8bb0102b6a212c19a3a0c51d69e980711337b3f40e7e1e396883aa405860d43d1cc9b049dbdd03e74d709657b05a90a3722ed4ce0202e066fc4124ec3fb5ef10872c8662c1e547588f6032f15823f5731b6663a168690285")

17:01:53 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:01:53 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
recvfrom(r0, &(0x7f0000000100)=""/70, 0x46, 0x12000, &(0x7f0000000180)=@pppoe={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xb}, 'hsr0\x00'}}, 0x80)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc5bd2563073c967f6a9af19d7a", 0x14, 0x20000800, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:01:53 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_LIST(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x60, 0x0, 0x200, 0x70bd28, 0x25dfdbfc, {}, [@NLBL_CIPSOV4_A_TAGLST={0x44, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x2}, {0x5}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x7}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x60}, 0x1, 0x0, 0x0, 0x4004004}, 0x4)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r1, 0x400448c9, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r2, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r3 = dup(r2)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$sock_bt_hci(r3, 0x0, &(0x7f00000001c0)="ba29004cf8d5f0948db42d0f04e4da0c40fecad2e09270abf257473b41fa16f69fb8391dba43b926c05fea36cba16c49a5dfd16e0dc23007298e11677d3dd3238c4b9080639d509a4182df7c4af1f91e89778bf7f8f9c5c46528ef91e772667adc432b577e6ca08f145ae69698075584916d83f8b7f9427e3409e1fe059145ffb467229e76fca446568678bc538e3de1e50d65f8")

17:01:53 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(0xffffffffffffffff, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:01:53 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 13)

17:01:53 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 3038.780281] FAULT_INJECTION: forcing a failure.
[ 3038.780281] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3038.782435] CPU: 1 UID: 0 PID: 20563 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3038.782470] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3038.782486] Call Trace:
[ 3038.782494]  <TASK>
[ 3038.782504]  dump_stack_lvl+0xfa/0x120
[ 3038.782537]  should_fail_ex+0x4d7/0x5e0
[ 3038.782575]  should_fail_alloc_page+0xe0/0x110
[ 3038.782619]  prepare_alloc_pages+0x1eb/0x550
[ 3038.782654]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3038.782687]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3038.782714]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3038.782749]  ? pgprot2cachemode+0x9a/0x130
[ 3038.782780]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3038.782813]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3038.782850]  ? do_raw_read_unlock+0x44/0xe0
[ 3038.782876]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3038.782906]  ? policy_nodemask+0xeb/0x4e0
17:01:54 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)

[ 3038.782935]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3038.782963]  ? policy_nodemask+0xeb/0x4e0
[ 3038.782994]  alloc_pages_mpol+0xed/0x340
[ 3038.783023]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3038.783054]  ? alloc_pages_noprof+0xb7/0x180
[ 3038.783088]  alloc_pages_noprof+0x9d/0x180
[ 3038.783119]  kimage_alloc_pages+0x70/0x240
[ 3038.783152]  kimage_alloc_page+0x14e/0x7e0
[ 3038.783191]  kimage_load_segment+0x424/0xc90
[ 3038.783231]  do_kexec_load+0x6bd/0x8a0
[ 3038.783264]  ? __pfx_do_kexec_load+0x10/0x10
[ 3038.783298]  ? _copy_from_user+0x5b/0xd0
[ 3038.783345]  __x64_sys_kexec_load+0x1c6/0x230
[ 3038.783381]  do_syscall_64+0xbf/0x3f0
[ 3038.783410]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3038.783437] RIP: 0033:0x7fd597aabb19
[ 3038.783457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3038.783482] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3038.783507] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3038.783525] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3038.783540] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3038.783555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3038.783570] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3038.783604]  </TASK>
17:01:54 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)

17:01:54 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 14)

17:01:54 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(0xffffffffffffffff, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:01:54 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 51)

17:01:54 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 3038.923024] FAULT_INJECTION: forcing a failure.
[ 3038.923024] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3038.924107] CPU: 0 UID: 0 PID: 20585 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3038.924124] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3038.924131] Call Trace:
[ 3038.924136]  <TASK>
[ 3038.924140]  dump_stack_lvl+0xfa/0x120
[ 3038.924160]  should_fail_ex+0x4d7/0x5e0
[ 3038.924179]  should_fail_alloc_page+0xe0/0x110
[ 3038.924199]  prepare_alloc_pages+0x1eb/0x550
[ 3038.924216]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3038.924232]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3038.924244]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3038.924261]  ? pgprot2cachemode+0x9a/0x130
[ 3038.924277]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3038.924292]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3038.924307]  ? do_raw_read_unlock+0x44/0xe0
[ 3038.924325]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3038.924340]  ? policy_nodemask+0xeb/0x4e0
[ 3038.924355]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3038.924367]  ? policy_nodemask+0xeb/0x4e0
17:01:54 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)

[ 3038.924382]  alloc_pages_mpol+0xed/0x340
[ 3038.924394]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3038.924408]  ? alloc_pages_noprof+0xb7/0x180
[ 3038.924424]  alloc_pages_noprof+0x9d/0x180
[ 3038.924437]  kimage_alloc_pages+0x70/0x240
[ 3038.924453]  kimage_alloc_page+0x14e/0x7e0
[ 3038.924471]  kimage_load_segment+0x424/0xc90
[ 3038.924488]  do_kexec_load+0x6bd/0x8a0
[ 3038.924503]  ? __pfx_do_kexec_load+0x10/0x10
[ 3038.924518]  ? _copy_from_user+0x5b/0xd0
[ 3038.924537]  __x64_sys_kexec_load+0x1c6/0x230
[ 3038.924553]  do_syscall_64+0xbf/0x3f0
[ 3038.924567]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3038.924579] RIP: 0033:0x7fd597aabb19
[ 3038.924589] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3038.924600] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3038.924612] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3038.924620] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3038.924627] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3038.924634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
17:01:54 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 52)

[ 3038.924641] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3038.924656]  </TASK>
[ 3038.928533] FAULT_INJECTION: forcing a failure.
[ 3038.928533] name failslab, interval 1, probability 0, space 0, times 0
[ 3038.962495] CPU: 1 UID: 0 PID: 20584 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3038.962529] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3038.962543] Call Trace:
[ 3038.962551]  <TASK>
[ 3038.962560]  dump_stack_lvl+0xfa/0x120
[ 3038.962587]  should_fail_ex+0x4d7/0x5e0
[ 3038.962621]  should_failslab+0xc2/0x120
[ 3038.962656]  kmem_cache_alloc_node_noprof+0x87/0x6b0
17:01:54 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 3038.962685]  ? sock_def_readable+0x1bf/0x5b0
[ 3038.962715]  ? __alloc_skb+0x2ab/0x370
[ 3038.962744]  ? lock_is_held_type+0x9e/0x120
[ 3038.962784]  ? __alloc_skb+0x2ab/0x370
[ 3038.962811]  __alloc_skb+0x2ab/0x370
[ 3038.962841]  ? __pfx___alloc_skb+0x10/0x10
[ 3038.962871]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3038.962897]  ? sock_queue_rcv_skb_reason+0xd8/0x190
[ 3038.962932]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3038.962972]  create_monitor_event+0x692/0x930
[ 3038.963003]  hci_sock_bind+0xa19/0x1470
[ 3038.963032]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3038.963069]  __sys_bind+0x1dd/0x2b0
[ 3038.963097]  ? __pfx___sys_bind+0x10/0x10
[ 3038.963129]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3038.963165]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3038.963201]  ? ksys_write+0x1a3/0x240
[ 3038.963233]  ? __pfx_ksys_write+0x10/0x10
[ 3038.963271]  __x64_sys_bind+0x73/0xb0
[ 3038.963298]  do_syscall_64+0xbf/0x3f0
[ 3038.963330]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3038.963353] RIP: 0033:0x7fbfee694b19
[ 3038.963370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3038.963393] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3038.963415] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3038.963430] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3038.963444] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3038.963458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3038.963471] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3038.963503]  </TASK>
17:01:54 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(0xffffffffffffffff, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

[ 3039.032531] FAULT_INJECTION: forcing a failure.
[ 3039.032531] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3039.033671] CPU: 0 UID: 0 PID: 20592 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3039.033689] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3039.033697] Call Trace:
[ 3039.033701]  <TASK>
[ 3039.033705]  dump_stack_lvl+0xfa/0x120
[ 3039.033725]  should_fail_ex+0x4d7/0x5e0
[ 3039.033744]  should_fail_alloc_page+0xe0/0x110
[ 3039.033766]  prepare_alloc_pages+0x1eb/0x550
[ 3039.033783]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3039.033798]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3039.033810]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3039.033827]  ? pgprot2cachemode+0x9a/0x130
[ 3039.033843]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3039.033858]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3039.033874]  ? do_raw_read_unlock+0x44/0xe0
[ 3039.033887]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3039.033902]  ? policy_nodemask+0xeb/0x4e0
[ 3039.033917]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3039.033929]  ? policy_nodemask+0xeb/0x4e0
[ 3039.033944]  alloc_pages_mpol+0xed/0x340
[ 3039.033957]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3039.033971]  ? alloc_pages_noprof+0xb7/0x180
[ 3039.033986]  alloc_pages_noprof+0x9d/0x180
[ 3039.034000]  kimage_alloc_pages+0x70/0x240
[ 3039.034016]  kimage_alloc_page+0x14e/0x7e0
[ 3039.034033]  kimage_load_segment+0x424/0xc90
[ 3039.034051]  do_kexec_load+0x6bd/0x8a0
[ 3039.034067]  ? __pfx_do_kexec_load+0x10/0x10
[ 3039.034082]  ? _copy_from_user+0x5b/0xd0
[ 3039.034101]  __x64_sys_kexec_load+0x1c6/0x230
[ 3039.034119]  do_syscall_64+0xbf/0x3f0
[ 3039.034136]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3039.034151] RIP: 0033:0x7fd597aabb19
[ 3039.034161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3039.034173] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3039.034186] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3039.034194] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3039.034202] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3039.034209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3039.034218] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3039.034234]  </TASK>
[ 3039.681942] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3039.687895] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:02:04 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 53)

17:02:04 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:02:04 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 15)

17:02:04 executing program 3:
r0 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
accept$inet(r0, &(0x7f0000000080)={0x2, 0x0, @multicast2}, &(0x7f00000000c0)=0x10)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3, 0x800000008}, 0x0, 0x0, 0xffffffffffffffff, 0x3)
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
setsockopt$inet_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000100), 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
getpeername(r2, &(0x7f0000000200)=@l2tp={0x2, 0x0, @private}, &(0x7f0000000180)=0x80)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000280)=ANY=[@ANYBLOB="fe5470a8595b848717dfbe62db9cc06621bdfa180c80f966bbec4ba6c570acf87acbf6b3f3a54f59f99d13391b9368dc1aa0c7cbfced0e830100b851de7818a54548bc192a39fe1778c987e95d8d4ea215e41db9d302acc28212d5458eb11fe3602f7d2679e2a2ab1c41db51770ecacae4f415800558191bf65050df2e16e5d1cb343729a082b8aa4eb2d3b9f36e28cafba63653feeb8a9288b0d2ff220cf9977acb8be154551c0c1f8447544eb3d216f8154172ff460823dcba7ff45bebcf22", @ANYRES32=<r3=>r0, @ANYBLOB='\t\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
setsockopt$inet_int(r3, 0x0, 0x31, &(0x7f0000000140)=0xf134, 0x4)
ioctl$sock_bt_hci(r1, 0x400448c9, 0x0)

17:02:04 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000000)="60da701df893ccc8bd073c967f6a9af19d7a", 0x12, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:02:04 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:02:04 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)

17:02:04 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

[ 3048.904148] FAULT_INJECTION: forcing a failure.
[ 3048.904148] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3048.905255] CPU: 0 UID: 0 PID: 20616 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3048.905273] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3048.905282] Call Trace:
[ 3048.905287]  <TASK>
[ 3048.905292]  dump_stack_lvl+0xfa/0x120
[ 3048.905312]  should_fail_ex+0x4d7/0x5e0
[ 3048.905336]  should_fail_alloc_page+0xe0/0x110
[ 3048.905359]  prepare_alloc_pages+0x1eb/0x550
[ 3048.905382]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3048.905401]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3048.905423]  ? lock_acquire+0x15e/0x2f0
[ 3048.905444]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3048.905462]  ? finish_task_switch.isra.0+0x206/0x840
[ 3048.905480]  ? trace_sched_exit_tp+0xbf/0x100
[ 3048.905494]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3048.905509]  ? policy_nodemask+0xeb/0x4e0
[ 3048.905526]  alloc_pages_mpol+0xed/0x340
[ 3048.905540]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3048.905555]  ? alloc_pages_noprof+0xb7/0x180
[ 3048.905572]  alloc_pages_noprof+0x9d/0x180
[ 3048.905587]  kimage_alloc_pages+0x70/0x240
[ 3048.905604]  kimage_alloc_page+0x14e/0x7e0
[ 3048.905622]  kimage_load_segment+0x424/0xc90
[ 3048.905642]  do_kexec_load+0x6bd/0x8a0
[ 3048.905658]  ? __pfx_do_kexec_load+0x10/0x10
[ 3048.905675]  ? _copy_from_user+0x5b/0xd0
[ 3048.905695]  __x64_sys_kexec_load+0x1c6/0x230
[ 3048.905712]  do_syscall_64+0xbf/0x3f0
[ 3048.905727]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3048.905741] RIP: 0033:0x7fd597aabb19
[ 3048.905752] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3048.905765] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3048.905778] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3048.905786] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3048.905794] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3048.905803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3048.905811] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3048.905827]  </TASK>
17:02:04 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)

17:02:04 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 54)

17:02:04 executing program 5:
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 3048.993947] FAULT_INJECTION: forcing a failure.
[ 3048.993947] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3048.995039] CPU: 0 UID: 0 PID: 20625 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3048.995056] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3048.995065] Call Trace:
[ 3048.995069]  <TASK>
[ 3048.995074]  dump_stack_lvl+0xfa/0x120
[ 3048.995093]  should_fail_ex+0x4d7/0x5e0
[ 3048.995113]  should_fail_alloc_page+0xe0/0x110
[ 3048.995134]  prepare_alloc_pages+0x1eb/0x550
[ 3048.995151]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3048.995167]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3048.995180]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3048.995197]  ? pgprot2cachemode+0x9a/0x130
[ 3048.995213]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3048.995228]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3048.995244]  ? do_raw_read_unlock+0x44/0xe0
[ 3048.995257]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3048.995272]  ? policy_nodemask+0xeb/0x4e0
[ 3048.995286]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3048.995299]  ? policy_nodemask+0xeb/0x4e0
[ 3048.995313]  alloc_pages_mpol+0xed/0x340
[ 3048.995331]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3048.995345]  ? alloc_pages_noprof+0xb7/0x180
[ 3048.995360]  alloc_pages_noprof+0x9d/0x180
[ 3048.995374]  kimage_alloc_pages+0x70/0x240
[ 3048.995391]  kimage_alloc_page+0x14e/0x7e0
[ 3048.995408]  kimage_load_segment+0x424/0xc90
[ 3048.995426]  do_kexec_load+0x6bd/0x8a0
[ 3048.995441]  ? __pfx_do_kexec_load+0x10/0x10
[ 3048.995457]  ? _copy_from_user+0x5b/0xd0
[ 3048.995475]  __x64_sys_kexec_load+0x1c6/0x230
[ 3048.995492]  do_syscall_64+0xbf/0x3f0
[ 3048.995506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3048.995519] RIP: 0033:0x7fd597aabb19
[ 3048.995529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3048.995542] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3048.995553] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3048.995562] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3048.995570] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3048.995578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3048.995585] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3048.995601]  </TASK>
17:02:04 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)

17:02:04 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 16)

17:02:04 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)

17:02:04 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

[ 3049.760969] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:02:13 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 17)

17:02:13 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 55)

17:02:13 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x6}}, 0x0, 0x0, r0, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

17:02:13 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:02:13 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:02:13 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r2)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)

17:02:13 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
fcntl$setownex(r0, 0xf, &(0x7f0000000000))
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$inet_MCAST_MSFILTER(r1, 0x0, 0x30, &(0x7f0000000200)={0x5, {{0x2, 0x4e20, @multicast2}}, 0x1, 0x6, [{{0x2, 0x4e21, @remote}}, {{0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x18}}}, {{0x2, 0x4e23, @loopback}}, {{0x2, 0x4e23, @rand_addr=0x64010101}}, {{0x2, 0x4e21, @multicast2}}, {{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x2e}}}]}, 0x390)
r2 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r2}], 0x1, 0xf8c6)
sendto$inet(r2, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:02:13 executing program 5:
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 3058.041362] FAULT_INJECTION: forcing a failure.
[ 3058.041362] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3058.043467] CPU: 1 UID: 0 PID: 20653 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3058.043503] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3058.043519] Call Trace:
[ 3058.043529]  <TASK>
[ 3058.043539]  dump_stack_lvl+0xfa/0x120
[ 3058.043573]  should_fail_ex+0x4d7/0x5e0
[ 3058.043612]  should_fail_alloc_page+0xe0/0x110
[ 3058.043656]  prepare_alloc_pages+0x1eb/0x550
[ 3058.043693]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3058.043725]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3058.043754]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3058.043789]  ? pgprot2cachemode+0x9a/0x130
[ 3058.043822]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3058.043856]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3058.043893]  ? do_raw_read_unlock+0x44/0xe0
[ 3058.043919]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3058.043949]  ? policy_nodemask+0xeb/0x4e0
[ 3058.043981]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3058.044010]  ? policy_nodemask+0xeb/0x4e0
[ 3058.044042]  alloc_pages_mpol+0xed/0x340
[ 3058.044072]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3058.044103]  ? alloc_pages_noprof+0xb7/0x180
[ 3058.044138]  alloc_pages_noprof+0x9d/0x180
[ 3058.044169]  kimage_alloc_pages+0x70/0x240
[ 3058.044203]  kimage_alloc_page+0x14e/0x7e0
[ 3058.044243]  kimage_load_segment+0x424/0xc90
[ 3058.044283]  do_kexec_load+0x6bd/0x8a0
[ 3058.044325]  ? __pfx_do_kexec_load+0x10/0x10
[ 3058.044360]  ? _copy_from_user+0x5b/0xd0
[ 3058.044400]  __x64_sys_kexec_load+0x1c6/0x230
[ 3058.044436]  do_syscall_64+0xbf/0x3f0
[ 3058.044466]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3058.044493] RIP: 0033:0x7fd597aabb19
[ 3058.044513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3058.044538] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3058.044564] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3058.044583] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3058.044599] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3058.044615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3058.044631] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3058.044666]  </TASK>
17:02:13 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 18)

17:02:13 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:02:13 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r2)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)

[ 3058.108778] FAULT_INJECTION: forcing a failure.
[ 3058.108778] name failslab, interval 1, probability 0, space 0, times 0
[ 3058.109814] CPU: 0 UID: 0 PID: 20665 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3058.109831] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3058.109839] Call Trace:
[ 3058.109843]  <TASK>
[ 3058.109848]  dump_stack_lvl+0xfa/0x120
[ 3058.109866]  should_fail_ex+0x4d7/0x5e0
[ 3058.109885]  should_failslab+0xc2/0x120
[ 3058.109904]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3058.109919]  ? sock_def_readable+0x1bf/0x5b0
[ 3058.109937]  ? __alloc_skb+0x2ab/0x370
[ 3058.109952]  ? lock_is_held_type+0x9e/0x120
[ 3058.109973]  ? __alloc_skb+0x2ab/0x370
[ 3058.109987]  __alloc_skb+0x2ab/0x370
[ 3058.110002]  ? __pfx___alloc_skb+0x10/0x10
[ 3058.110017]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3058.110031]  ? sock_queue_rcv_skb_reason+0xd8/0x190
[ 3058.110049]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3058.110070]  create_monitor_event+0x65/0x930
[ 3058.110086]  hci_sock_bind+0xab2/0x1470
[ 3058.110101]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3058.110119]  __sys_bind+0x1dd/0x2b0
[ 3058.110134]  ? __pfx___sys_bind+0x10/0x10
[ 3058.110151]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3058.110169]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3058.110187]  ? ksys_write+0x1a3/0x240
[ 3058.110205]  ? __pfx_ksys_write+0x10/0x10
[ 3058.110224]  __x64_sys_bind+0x73/0xb0
[ 3058.110238]  do_syscall_64+0xbf/0x3f0
[ 3058.110251]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3058.110264] RIP: 0033:0x7fbfee694b19
[ 3058.110273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3058.110285] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3058.110297] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3058.110305] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3058.110313] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3058.110324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3058.110331] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3058.110347]  </TASK>
17:02:13 executing program 5:
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:02:13 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 56)

17:02:13 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r2)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)

17:02:13 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)

[ 3058.216756] FAULT_INJECTION: forcing a failure.
[ 3058.216756] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3058.217900] CPU: 0 UID: 0 PID: 20675 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3058.217916] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3058.217924] Call Trace:
[ 3058.217929]  <TASK>
[ 3058.217933]  dump_stack_lvl+0xfa/0x120
[ 3058.217951]  should_fail_ex+0x4d7/0x5e0
[ 3058.217970]  should_fail_alloc_page+0xe0/0x110
[ 3058.217991]  prepare_alloc_pages+0x1eb/0x550
[ 3058.218007]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3058.218022]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3058.218035]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3058.218051]  ? pgprot2cachemode+0x9a/0x130
[ 3058.218066]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3058.218081]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3058.218098]  ? do_raw_read_unlock+0x44/0xe0
[ 3058.218110]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3058.218125]  ? policy_nodemask+0xeb/0x4e0
[ 3058.218139]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3058.218151]  ? policy_nodemask+0xeb/0x4e0
[ 3058.218166]  alloc_pages_mpol+0xed/0x340
[ 3058.218179]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3058.218193]  ? alloc_pages_noprof+0xb7/0x180
[ 3058.218208]  alloc_pages_noprof+0x9d/0x180
[ 3058.218222]  kimage_alloc_pages+0x70/0x240
[ 3058.218237]  kimage_alloc_page+0x14e/0x7e0
[ 3058.218255]  kimage_load_segment+0x424/0xc90
[ 3058.218273]  do_kexec_load+0x6bd/0x8a0
[ 3058.218288]  ? __pfx_do_kexec_load+0x10/0x10
[ 3058.218304]  ? _copy_from_user+0x5b/0xd0
[ 3058.218326]  __x64_sys_kexec_load+0x1c6/0x230
[ 3058.218342]  do_syscall_64+0xbf/0x3f0
[ 3058.218356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3058.218369] RIP: 0033:0x7fd597aabb19
[ 3058.218378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3058.218389] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3058.218402] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3058.218410] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3058.218418] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3058.218425] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3058.218433] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3058.218448]  </TASK>
[ 3058.990244] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3058.992667] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:02:23 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6) (fail_nth: 1)

17:02:23 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
ioctl$CDROMREADMODE2(r2, 0x530c, &(0x7f00000001c0)={0xff, 0xff, 0x4, 0x0, 0x1d, 0x1b})
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0x3}, 0x6)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

17:02:23 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:02:23 executing program 5:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:02:23 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)

17:02:23 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 19)

17:02:23 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$inet_int(r0, 0x0, 0x32, &(0x7f0000000180)=0x8cc, 0x4)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x204000, 0x0)
setsockopt$inet_mreq(r1, 0x0, 0x20, &(0x7f0000000200)={@dev={0xac, 0x14, 0x14, 0x13}, @empty}, 0x8)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
getsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f0000000100), &(0x7f0000000140)=0x4)

17:02:23 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 57)

[ 3068.506982] FAULT_INJECTION: forcing a failure.
[ 3068.506982] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3068.508197] CPU: 0 UID: 0 PID: 20693 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3068.508218] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3068.508227] Call Trace:
[ 3068.508233]  <TASK>
[ 3068.508239]  dump_stack_lvl+0xfa/0x120
[ 3068.508260]  should_fail_ex+0x4d7/0x5e0
[ 3068.508282]  should_fail_alloc_page+0xe0/0x110
[ 3068.508308]  prepare_alloc_pages+0x1eb/0x550
[ 3068.508332]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3068.508351]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3068.508366]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3068.508386]  ? pgprot2cachemode+0x9a/0x130
[ 3068.508404]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3068.508423]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3068.508443]  ? do_raw_read_unlock+0x44/0xe0
[ 3068.508458]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3068.508476]  ? policy_nodemask+0xeb/0x4e0
[ 3068.508493]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3068.508508]  ? policy_nodemask+0xeb/0x4e0
[ 3068.508526]  alloc_pages_mpol+0xed/0x340
[ 3068.508542]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3068.508559]  ? alloc_pages_noprof+0xb7/0x180
[ 3068.508578]  alloc_pages_noprof+0x9d/0x180
[ 3068.508595]  kimage_alloc_pages+0x70/0x240
[ 3068.508615]  kimage_alloc_page+0x14e/0x7e0
[ 3068.508636]  kimage_load_segment+0x424/0xc90
[ 3068.508659]  do_kexec_load+0x6bd/0x8a0
[ 3068.508680]  ? __pfx_do_kexec_load+0x10/0x10
[ 3068.508698]  ? _copy_from_user+0x5b/0xd0
[ 3068.508720]  __x64_sys_kexec_load+0x1c6/0x230
[ 3068.508740]  do_syscall_64+0xbf/0x3f0
[ 3068.508757]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3068.508772] RIP: 0033:0x7fd597aabb19
[ 3068.508784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3068.508799] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3068.508813] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3068.508823] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3068.508832] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3068.508841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3068.508850] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3068.508869]  </TASK>
[ 3068.559949] FAULT_INJECTION: forcing a failure.
[ 3068.559949] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3068.561901] CPU: 1 UID: 0 PID: 20684 Comm: syz-executor.1 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3068.561934] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3068.561949] Call Trace:
[ 3068.561958]  <TASK>
[ 3068.561967]  dump_stack_lvl+0xfa/0x120
[ 3068.562000]  should_fail_ex+0x4d7/0x5e0
[ 3068.562036]  _copy_to_user+0x32/0xd0
[ 3068.562071]  simple_read_from_buffer+0xe0/0x180
[ 3068.562106]  proc_fail_nth_read+0x18a/0x240
[ 3068.562145]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 3068.562183]  ? security_file_permission+0x22/0x90
[ 3068.562223]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 3068.562261]  vfs_read+0x1eb/0xc70
[ 3068.562300]  ? __pfx_vfs_read+0x10/0x10
[ 3068.562341]  ? lock_release+0xc8/0x290
[ 3068.562381]  ? __fget_files+0x20d/0x3b0
[ 3068.562423]  ksys_read+0x121/0x240
[ 3068.562456]  ? __pfx_ksys_read+0x10/0x10
[ 3068.562498]  do_syscall_64+0xbf/0x3f0
[ 3068.562526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3068.562550] RIP: 0033:0x7ff362fb069c
[ 3068.562569] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 3068.562593] RSP: 002b:00007ff360573170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 3068.562616] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00007ff362fb069c
[ 3068.562633] RDX: 000000000000000f RSI: 00007ff3605731e0 RDI: 0000000000000003
[ 3068.562648] RBP: 00007ff3605731d0 R08: 0000000000000000 R09: 0000000000000000
[ 3068.562663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3068.562677] R13: 00007fff571b4e4f R14: 00007ff360573300 R15: 0000000000022000
[ 3068.562710]  </TASK>
17:02:23 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)

17:02:23 executing program 5:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:02:23 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 20)

17:02:23 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)

17:02:23 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 21)

17:02:23 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 58)

17:02:23 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)

[ 3068.723048] FAULT_INJECTION: forcing a failure.
[ 3068.723048] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3068.725298] CPU: 1 UID: 0 PID: 20714 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3068.725339] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3068.725354] Call Trace:
[ 3068.725362]  <TASK>
[ 3068.725372]  dump_stack_lvl+0xfa/0x120
[ 3068.725403]  should_fail_ex+0x4d7/0x5e0
[ 3068.725439]  should_fail_alloc_page+0xe0/0x110
[ 3068.725479]  prepare_alloc_pages+0x1eb/0x550
[ 3068.725513]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3068.725544]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3068.725570]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3068.725604]  ? pgprot2cachemode+0x9a/0x130
[ 3068.725633]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
17:02:23 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 22)

[ 3068.725665]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3068.725699]  ? do_raw_read_unlock+0x44/0xe0
[ 3068.725724]  ? __sanitizer_cov_trace_switch+0x54/0x90
17:02:23 executing program 5:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 3068.725753]  ? policy_nodemask+0xeb/0x4e0
[ 3068.725781]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3068.725807]  ? policy_nodemask+0xeb/0x4e0
[ 3068.725837]  alloc_pages_mpol+0xed/0x340
[ 3068.725864]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3068.725893]  ? alloc_pages_noprof+0xb7/0x180
[ 3068.725926]  alloc_pages_noprof+0x9d/0x180
[ 3068.725955]  kimage_alloc_pages+0x70/0x240
[ 3068.725986]  kimage_alloc_page+0x14e/0x7e0
[ 3068.726022]  kimage_load_segment+0x424/0xc90
[ 3068.726060]  do_kexec_load+0x6bd/0x8a0
[ 3068.726091]  ? __pfx_do_kexec_load+0x10/0x10
[ 3068.726124]  ? _copy_from_user+0x5b/0xd0
[ 3068.726160]  __x64_sys_kexec_load+0x1c6/0x230
[ 3068.726195]  do_syscall_64+0xbf/0x3f0
[ 3068.726222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3068.726247] RIP: 0033:0x7fd597aabb19
[ 3068.726266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3068.726290] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3068.726314] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3068.726331] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3068.726346] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3068.726361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3068.726376] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3068.726409]  </TASK>
[ 3068.805373] FAULT_INJECTION: forcing a failure.
[ 3068.805373] name failslab, interval 1, probability 0, space 0, times 0
[ 3068.807103] CPU: 1 UID: 0 PID: 20718 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3068.807136] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3068.807150] Call Trace:
[ 3068.807158]  <TASK>
[ 3068.807167]  dump_stack_lvl+0xfa/0x120
[ 3068.807199]  should_fail_ex+0x4d7/0x5e0
[ 3068.807235]  should_failslab+0xc2/0x120
[ 3068.807274]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3068.807303]  ? sock_def_readable+0x1bf/0x5b0
[ 3068.807341]  ? __alloc_skb+0x2ab/0x370
[ 3068.807371]  ? lock_is_held_type+0x9e/0x120
[ 3068.807412]  ? __alloc_skb+0x2ab/0x370
[ 3068.807439]  __alloc_skb+0x2ab/0x370
[ 3068.807470]  ? __pfx___alloc_skb+0x10/0x10
[ 3068.807500]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3068.807527]  ? sock_queue_rcv_skb_reason+0xd8/0x190
[ 3068.807563]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3068.807604]  create_monitor_event+0x3d7/0x930
[ 3068.807635]  hci_sock_bind+0xb22/0x1470
[ 3068.807664]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3068.807701]  __sys_bind+0x1dd/0x2b0
[ 3068.807729]  ? __pfx___sys_bind+0x10/0x10
[ 3068.807762]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3068.807797]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3068.807834]  ? ksys_write+0x1a3/0x240
[ 3068.807867]  ? __pfx_ksys_write+0x10/0x10
[ 3068.807906]  __x64_sys_bind+0x73/0xb0
[ 3068.807933]  do_syscall_64+0xbf/0x3f0
[ 3068.807959]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3068.807983] RIP: 0033:0x7fbfee694b19
[ 3068.808001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3068.808024] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3068.808047] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3068.808063] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3068.808077] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3068.808092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3068.808107] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3068.808139]  </TASK>
[ 3069.398269] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3069.400198] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:02:33 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000000100)={{<r1=>0x0, 0x8000, 0x8, 0x7, 0xc812, 0x8000, 0x7f, 0x0, 0x401, 0x7, 0x6, 0x3, 0x8, 0x7, 0x6}})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f0000001100)={{r1, 0x7fffffff, 0x1, 0xff, 0x6, 0x5, 0x0, 0x0, 0x7, 0xcb9, 0xa06, 0x9, 0x3, 0x7ff, 0x400}, 0x48, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:02:33 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:02:33 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 59)

17:02:33 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)

17:02:33 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x3)

17:02:33 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 23)

17:02:33 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:02:33 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
accept$inet(r2, &(0x7f0000000080)={0x2, 0x0, @empty}, &(0x7f0000000100)=0x10)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xc, 0x11, r1, 0x27c93000)

17:02:33 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x80120, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)

[ 3077.984793] FAULT_INJECTION: forcing a failure.
[ 3077.984793] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3077.985892] CPU: 0 UID: 0 PID: 20744 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3077.985909] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3077.985916] Call Trace:
[ 3077.985920]  <TASK>
[ 3077.985925]  dump_stack_lvl+0xfa/0x120
[ 3077.985943]  should_fail_ex+0x4d7/0x5e0
[ 3077.985962]  should_fail_alloc_page+0xe0/0x110
[ 3077.985983]  prepare_alloc_pages+0x1eb/0x550
[ 3077.985999]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3077.986014]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3077.986027]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3077.986043]  ? pgprot2cachemode+0x9a/0x130
[ 3077.986058]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3077.986073]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3077.986089]  ? do_raw_read_unlock+0x44/0xe0
[ 3077.986102]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3077.986117]  ? policy_nodemask+0xeb/0x4e0
[ 3077.986131]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3077.986143]  ? policy_nodemask+0xeb/0x4e0
[ 3077.986158]  alloc_pages_mpol+0xed/0x340
[ 3077.986171]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3077.986185]  ? alloc_pages_noprof+0xb7/0x180
[ 3077.986200]  alloc_pages_noprof+0x9d/0x180
[ 3077.986214]  kimage_alloc_pages+0x70/0x240
[ 3077.986230]  kimage_alloc_page+0x14e/0x7e0
[ 3077.986247]  kimage_load_segment+0x424/0xc90
[ 3077.986265]  do_kexec_load+0x6bd/0x8a0
[ 3077.986280]  ? __pfx_do_kexec_load+0x10/0x10
[ 3077.986296]  ? _copy_from_user+0x5b/0xd0
[ 3077.986318]  __x64_sys_kexec_load+0x1c6/0x230
[ 3077.986335]  do_syscall_64+0xbf/0x3f0
[ 3077.986349]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3077.986362] RIP: 0033:0x7fd597aabb19
[ 3077.986374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3077.986385] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3077.986398] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3077.986406] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3077.986413] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3077.986420] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3077.986427] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3077.986443]  </TASK>
17:02:33 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:02:33 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:02:33 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 60)

17:02:33 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:02:33 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 24)

17:02:33 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:02:33 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 3078.167494] FAULT_INJECTION: forcing a failure.
[ 3078.167494] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3078.169394] CPU: 1 UID: 0 PID: 20764 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3078.169427] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3078.169441] Call Trace:
[ 3078.169450]  <TASK>
[ 3078.169459]  dump_stack_lvl+0xfa/0x120
[ 3078.169490]  should_fail_ex+0x4d7/0x5e0
[ 3078.169524]  should_fail_alloc_page+0xe0/0x110
[ 3078.169564]  prepare_alloc_pages+0x1eb/0x550
[ 3078.169596]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3078.169626]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3078.169651]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3078.169683]  ? pgprot2cachemode+0x9a/0x130
[ 3078.169712]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3078.169742]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3078.169774]  ? do_raw_read_unlock+0x44/0xe0
[ 3078.169797]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3078.169825]  ? policy_nodemask+0xeb/0x4e0
[ 3078.169852]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3078.169877]  ? policy_nodemask+0xeb/0x4e0
[ 3078.169908]  alloc_pages_mpol+0xed/0x340
[ 3078.169935]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3078.169963]  ? alloc_pages_noprof+0xb7/0x180
[ 3078.169994]  alloc_pages_noprof+0x9d/0x180
[ 3078.170022]  kimage_alloc_pages+0x70/0x240
[ 3078.170052]  kimage_alloc_page+0x14e/0x7e0
[ 3078.170087]  kimage_load_segment+0x424/0xc90
[ 3078.170123]  do_kexec_load+0x6bd/0x8a0
[ 3078.170153]  ? __pfx_do_kexec_load+0x10/0x10
[ 3078.170184]  ? _copy_from_user+0x5b/0xd0
[ 3078.170219]  __x64_sys_kexec_load+0x1c6/0x230
[ 3078.170251]  do_syscall_64+0xbf/0x3f0
[ 3078.170278]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3078.170302] RIP: 0033:0x7fd597aabb19
[ 3078.170327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3078.170350] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3078.170373] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3078.170389] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3078.170404] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3078.170418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3078.170433] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3078.170464]  </TASK>
[ 3078.855900] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3078.857283] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:02:41 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 25)

17:02:41 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080), 0x6)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:02:41 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x404)

17:02:41 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:02:41 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x100}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
setsockopt$bt_hci_HCI_TIME_STAMP(r2, 0x0, 0x3, &(0x7f0000000080)=0x2, 0x4)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

17:02:41 executing program 6:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, <r1=>0x0}, &(0x7f0000000040)=0x5)
setuid(r1)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000280)=<r2=>0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000000)={0x0, <r4=>0x0}, &(0x7f0000000040)=0x5)
setuid(r4)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000000)={0x0, <r6=>0x0}, &(0x7f0000000040)=0x5)
setuid(r6)
r7 = getgid()
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000085c0)={0x0, 0x0, <r8=>0x0}, &(0x7f0000008600)=0xc)
setxattr$system_posix_acl(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000480)={{}, {}, [], {}, [{0x8, 0x0, r8}]}, 0x2c, 0x0)
getresgid(&(0x7f0000000400)=<r9=>0x0, &(0x7f0000000440), &(0x7f0000000480))
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000180)='system.posix_acl_default\x00', &(0x7f00000004c0)=ANY=[@ANYBLOB="02000000010001000000000002000200", @ANYRES32=0x0, @ANYBLOB="02000000", @ANYRES32=0xee01, @ANYBLOB="02000000", @ANYRES32=r1, @ANYBLOB="02000400", @ANYRES32=r2, @ANYBLOB="02000600", @ANYRES32=r4, @ANYBLOB="02000000", @ANYRES32=r6, @ANYBLOB="02000500", @ANYRES32=0x0, @ANYBLOB="06000400000000e20800c200", @ANYRES32=0xee01, @ANYBLOB="08000100", @ANYRES32=0xee01, @ANYBLOB="08000100", @ANYRES32=0xee01, @ANYBLOB='\b\x00\a\x00', @ANYRES32=0x0, @ANYBLOB="08000400", @ANYRES32=r7, @ANYBLOB="08000200", @ANYRES32=r8, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=r9, @ANYBLOB="10000500000000002000040000000000"], 0x94, 0x2)
r10 = socket$inet(0x2, 0x6, 0xff)
poll(&(0x7f0000000080)=[{r10}], 0x1, 0xf8c6)
sendto$inet(r10, &(0x7f0000000000)="8110743cb23f8079112532113ff3d0d3b093a34ffa02b337a780b16ef62e3f0aaef562a465d457bb6038bfb89f2f0e54", 0x30, 0x4004, &(0x7f0000000100)={0x2, 0x4e23, @private=0xa010102}, 0x10)
accept$inet(r10, 0x0, &(0x7f0000000140))
sendto$inet(r10, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:02:41 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 61)

17:02:41 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

[ 3086.574245] FAULT_INJECTION: forcing a failure.
[ 3086.574245] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3086.575294] CPU: 1 UID: 0 PID: 20780 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3086.575311] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3086.575323] Call Trace:
[ 3086.575327]  <TASK>
[ 3086.575333]  dump_stack_lvl+0xfa/0x120
[ 3086.575351]  should_fail_ex+0x4d7/0x5e0
[ 3086.575370]  should_fail_alloc_page+0xe0/0x110
[ 3086.575391]  prepare_alloc_pages+0x1eb/0x550
[ 3086.575408]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3086.575423]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3086.575436]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3086.575453]  ? pgprot2cachemode+0x9a/0x130
[ 3086.575468]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3086.575483]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3086.575499]  ? do_raw_read_unlock+0x44/0xe0
[ 3086.575512]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3086.575526]  ? policy_nodemask+0xeb/0x4e0
[ 3086.575540]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3086.575553]  ? policy_nodemask+0xeb/0x4e0
[ 3086.575567]  alloc_pages_mpol+0xed/0x340
[ 3086.575581]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3086.575595]  ? alloc_pages_noprof+0xb7/0x180
[ 3086.575610]  alloc_pages_noprof+0x9d/0x180
[ 3086.575624]  kimage_alloc_pages+0x70/0x240
[ 3086.575640]  kimage_alloc_page+0x14e/0x7e0
[ 3086.575657]  kimage_load_segment+0x424/0xc90
[ 3086.575675]  do_kexec_load+0x6bd/0x8a0
[ 3086.575690]  ? __pfx_do_kexec_load+0x10/0x10
[ 3086.575706]  ? _copy_from_user+0x5b/0xd0
[ 3086.575725]  __x64_sys_kexec_load+0x1c6/0x230
[ 3086.575744]  do_syscall_64+0xbf/0x3f0
[ 3086.575759]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3086.575772] RIP: 0033:0x7fd597aabb19
[ 3086.575782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3086.575794] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3086.575806] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3086.575814] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3086.575821] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3086.575829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3086.575836] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3086.575851]  </TASK>
17:02:41 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(0xffffffffffffffff, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:02:41 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(0xffffffffffffffff, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:02:41 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 62)

[ 3086.673564] FAULT_INJECTION: forcing a failure.
[ 3086.673564] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3086.674698] CPU: 1 UID: 0 PID: 20794 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3086.674715] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3086.674723] Call Trace:
[ 3086.674727]  <TASK>
[ 3086.674732]  dump_stack_lvl+0xfa/0x120
[ 3086.674750]  should_fail_ex+0x4d7/0x5e0
[ 3086.674769]  should_fail_alloc_page+0xe0/0x110
[ 3086.674789]  prepare_alloc_pages+0x1eb/0x550
[ 3086.674806]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3086.674821]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3086.674834]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3086.674851]  ? pgprot2cachemode+0x9a/0x130
[ 3086.674866]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3086.674881]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3086.674897]  ? do_raw_read_unlock+0x44/0xe0
[ 3086.674910]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3086.674925]  ? policy_nodemask+0xeb/0x4e0
[ 3086.674939]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3086.674952]  ? policy_nodemask+0xeb/0x4e0
[ 3086.674966]  alloc_pages_mpol+0xed/0x340
[ 3086.674979]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3086.675006]  ? alloc_pages_noprof+0xb7/0x180
[ 3086.675021]  alloc_pages_noprof+0x9d/0x180
[ 3086.675035]  kimage_alloc_pages+0x70/0x240
[ 3086.675051]  kimage_alloc_page+0x14e/0x7e0
[ 3086.675068]  kimage_load_segment+0x424/0xc90
[ 3086.675086]  do_kexec_load+0x6bd/0x8a0
[ 3086.675101]  ? __pfx_do_kexec_load+0x10/0x10
[ 3086.675117]  ? _copy_from_user+0x5b/0xd0
[ 3086.675135]  __x64_sys_kexec_load+0x1c6/0x230
[ 3086.675151]  do_syscall_64+0xbf/0x3f0
[ 3086.675166]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3086.675178] RIP: 0033:0x7fd597aabb19
[ 3086.675188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3086.675199] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3086.675212] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3086.675220] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
17:02:41 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080), 0x6)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 3086.675227] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3086.675234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3086.675241] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3086.675257]  </TASK>
17:02:41 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 26)

17:02:41 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:02:41 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x7ffffffff000)

17:02:41 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 63)

[ 3086.769499] FAULT_INJECTION: forcing a failure.
[ 3086.769499] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3086.770610] CPU: 1 UID: 0 PID: 20799 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3086.770627] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3086.770635] Call Trace:
[ 3086.770640]  <TASK>
[ 3086.770645]  dump_stack_lvl+0xfa/0x120
[ 3086.770663]  should_fail_ex+0x4d7/0x5e0
[ 3086.770682]  should_fail_alloc_page+0xe0/0x110
[ 3086.770703]  prepare_alloc_pages+0x1eb/0x550
[ 3086.770719]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3086.770735]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3086.770747]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3086.770763]  ? pgprot2cachemode+0x9a/0x130
[ 3086.770778]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3086.770793]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3086.770810]  ? do_raw_read_unlock+0x44/0xe0
[ 3086.770822]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3086.770837]  ? policy_nodemask+0xeb/0x4e0
[ 3086.770850]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3086.770863]  ? policy_nodemask+0xeb/0x4e0
[ 3086.770878]  alloc_pages_mpol+0xed/0x340
[ 3086.770891]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3086.770905]  ? alloc_pages_noprof+0xb7/0x180
[ 3086.770920]  alloc_pages_noprof+0x9d/0x180
[ 3086.770934]  kimage_alloc_pages+0x70/0x240
[ 3086.770950]  kimage_alloc_page+0x14e/0x7e0
[ 3086.770967]  kimage_load_segment+0x424/0xc90
[ 3086.770985]  do_kexec_load+0x6bd/0x8a0
[ 3086.771010]  ? __pfx_do_kexec_load+0x10/0x10
[ 3086.771026]  ? _copy_from_user+0x5b/0xd0
[ 3086.771044]  __x64_sys_kexec_load+0x1c6/0x230
[ 3086.771060]  do_syscall_64+0xbf/0x3f0
[ 3086.771075]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3086.771088] RIP: 0033:0x7fd597aabb19
[ 3086.771097] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3086.771109] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3086.771121] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3086.771129] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3086.771136] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3086.771143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3086.771150] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3086.771166]  </TASK>
17:02:42 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 64)

[ 3086.819538] FAULT_INJECTION: forcing a failure.
[ 3086.819538] name failslab, interval 1, probability 0, space 0, times 0
[ 3086.821200] CPU: 0 UID: 0 PID: 20804 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3086.821231] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3086.821245] Call Trace:
[ 3086.821253]  <TASK>
[ 3086.821261]  dump_stack_lvl+0xfa/0x120
[ 3086.821289]  should_fail_ex+0x4d7/0x5e0
[ 3086.821329]  should_failslab+0xc2/0x120
[ 3086.821364]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3086.821390]  ? sock_def_readable+0x1bf/0x5b0
[ 3086.821419]  ? __alloc_skb+0x2ab/0x370
[ 3086.821446]  ? lock_is_held_type+0x9e/0x120
[ 3086.821483]  ? __alloc_skb+0x2ab/0x370
[ 3086.821509]  __alloc_skb+0x2ab/0x370
[ 3086.821538]  ? __pfx___alloc_skb+0x10/0x10
[ 3086.821566]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3086.821591]  ? sock_queue_rcv_skb_reason+0xd8/0x190
[ 3086.821624]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3086.821662]  create_monitor_event+0x692/0x930
[ 3086.821692]  hci_sock_bind+0xa19/0x1470
[ 3086.821719]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3086.821753]  __sys_bind+0x1dd/0x2b0
[ 3086.821780]  ? __pfx___sys_bind+0x10/0x10
[ 3086.821810]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3086.821844]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3086.821878]  ? ksys_write+0x1a3/0x240
[ 3086.821909]  ? __pfx_ksys_write+0x10/0x10
[ 3086.821945]  __x64_sys_bind+0x73/0xb0
[ 3086.821970]  do_syscall_64+0xbf/0x3f0
[ 3086.821994]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3086.822017] RIP: 0033:0x7fbfee694b19
[ 3086.822034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3086.822055] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3086.822077] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3086.822092] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3086.822105] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3086.822118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3086.822131] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3086.822160]  </TASK>
17:02:42 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(0xffffffffffffffff, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

[ 3086.902289] FAULT_INJECTION: forcing a failure.
[ 3086.902289] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3086.904156] CPU: 0 UID: 0 PID: 20813 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3086.904186] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3086.904199] Call Trace:
[ 3086.904207]  <TASK>
17:02:42 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(0xffffffffffffffff, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

[ 3086.904215]  dump_stack_lvl+0xfa/0x120
[ 3086.904244]  should_fail_ex+0x4d7/0x5e0
[ 3086.904275]  should_fail_alloc_page+0xe0/0x110
[ 3086.904312]  prepare_alloc_pages+0x1eb/0x550
[ 3086.904348]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3086.904376]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3086.904399]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3086.904428]  ? pgprot2cachemode+0x9a/0x130
[ 3086.904455]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3086.904483]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3086.904514]  ? do_raw_read_unlock+0x44/0xe0
[ 3086.904536]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3086.904561]  ? policy_nodemask+0xeb/0x4e0
[ 3086.904586]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3086.904610]  ? policy_nodemask+0xeb/0x4e0
[ 3086.904636]  alloc_pages_mpol+0xed/0x340
[ 3086.904661]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3086.904687]  ? alloc_pages_noprof+0xb7/0x180
[ 3086.904716]  alloc_pages_noprof+0x9d/0x180
[ 3086.904742]  kimage_alloc_pages+0x70/0x240
[ 3086.904770]  kimage_alloc_page+0x14e/0x7e0
[ 3086.904802]  kimage_load_segment+0x424/0xc90
[ 3086.904835]  do_kexec_load+0x6bd/0x8a0
[ 3086.904864]  ? __pfx_do_kexec_load+0x10/0x10
[ 3086.904893]  ? _copy_from_user+0x5b/0xd0
[ 3086.904926]  __x64_sys_kexec_load+0x1c6/0x230
[ 3086.904956]  do_syscall_64+0xbf/0x3f0
[ 3086.904981]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3086.905003] RIP: 0033:0x7fd597aabb19
[ 3086.905020] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3086.905042] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3086.905063] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3086.905078] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3086.905091] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3086.905104] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3086.905117] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3086.905146]  </TASK>
17:02:42 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080), 0x6)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 3087.469548] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3087.471079] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:02:51 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x100000000000, 0x0, 0x0, 0x4000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

17:02:51 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(0xffffffffffffffff, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:02:51 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$inet_mtu(r0, 0x0, 0xa, &(0x7f0000000100)=0x3, 0x4)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @rand_addr=0x64010100}, 0x10)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:02:51 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
socketpair(0x11, 0x80000, 0x80, &(0x7f0000000cc0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_bt_hci(r1, 0x800448d3, &(0x7f0000000d00)="c5805eabccf09216bcc4b853e0ba51b3fea3bf15f5c8adb6ec45e20f51ea710fe895494eb86e3bd941e277e0dd8e91aaf8c334d7a2de5c6a4dd91eed5a49810c68e1146bd24274b15fad0eef715bf212f2956501e0bc6243a907600644ba55f2cc3e876be02b85372654b4f0ae2b1a96c187c33e47cfda42cdaaf4e63ab5ff6e4eee9928ddb7e405a5055e74df5f5dbf4b0fe4adbcc655fef9e318c11bfa7caf4981a1e2141fd31f80c19805cf8e5256437fb962930a854c1291b8605c2409cb91c9e7c9337a3181d19a38cdb91dbf61ab1f850759787dddcad7")
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000740)={'wg0\x00', <r2=>0x0})
ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f0000000b00)={0x0, @l2={0x1f, 0xbf, @none, 0x5}, @can={0x1d, <r3=>0x0}, @isdn={0x22, 0x8d, 0x0, 0x3, 0x7}, 0xa6c5, 0x0, 0x0, 0x0, 0x8000, &(0x7f0000000ac0)='veth0\x00', 0x8, 0x8, 0x3})
sendmmsg$inet(r0, &(0x7f0000000bc0)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000040)="b06e4c21f30ddd3673923de55da690af924ecc4dc26ed268907f8081625cac4e1bdbb935cdf7c068db0c7285cc34a8e10f0f4db912e0cedd12105996ce2ead743944336f00acc1a1d41bf264d7a87b6e18514765603d14efec86d45109aba101641e", 0x62}, {&(0x7f00000000c0)="cccb052628994e971bf78b64dae5cf19e396349dcca4f102ff4be9347b0de10b9489c10d2010e931a80eb0312218333c09ad0987", 0x34}, {&(0x7f0000000100)="b2656345e867391afb9a44e00eb15adb04535672cacf7ccbb948328c2f7fdf5aae7de4000884a0d5d3093531dbcfb0efe5afd6d728cb7ed6c2ea1907626d343166d3af843a55dc1f17969f29ec5d706f575a5039755986b2f7d2eb980afa785f75f5c2e2435284543498ac795e952b6910ec582adfd838406e9b0dd3e2db8342652d93cc8a5cae6919e37af6171305b07b2e91d1d114", 0x96}], 0x3, &(0x7f0000000200)=[@ip_ttl={{0x14, 0x0, 0x2, 0x80000000}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}, @ip_ttl={{0x14, 0x0, 0x2, 0x3}}, @ip_ttl={{0x14, 0x0, 0x2, 0xe9}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @rand_addr=0x64010100}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x200}}], 0x98}}, {{&(0x7f00000002c0)={0x2, 0x4e20, @broadcast}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000300)="c312800aaad77e932902cf77167c6544acc1f679272870f50280be956e1bc48e1b1cf7ecf893e48a9e6a3d8c218f6663d8793a7bb2da8ff55fa240e2ea049d9b348cd3c9e58d01a701a26f10557f8df7246a5fa5d320a577186664711bbb53cae288546b43525a2f3d0faa1544952f1f9ec81cefafdecb89172d3f28ac83b1ee19988090e89f945b96104049fc850c14b8b733f09a5aaa50ce19b8565f", 0x9d}, {&(0x7f00000003c0)="9d01afffee7e83188e814b2932dd535a2a8a77385c00f92968de5777b58d9b1f5bbb36afe12218b7eea1379f62859cb1cc3999d648cad17130627cc4083152d55e59b3c0deafb406741003e4bab782eab75ad65e40619777838ded56fa863bb0cb6786d097cb8c43f0d792d36d7eaf005e2bed8d7d2fa3b23b0a11dfc5d08e46128ad307d3bef79fa377b903c9de1b714fbdf012de5d6b8d050c828fd486efa377c766c05003e43a9760065f69a93969663ab2fb6233251d9e8c0649f62498708e58072b49c522a5c3019ae07ffcc7e854a395757c2d83033eee41cc2e77d238cca84f801a459030ec5d15a762c77f4b32faa731eac3", 0xf6}], 0x2}}, {{&(0x7f0000000500)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x37}}, 0x10, &(0x7f0000000700)=[{&(0x7f0000000540)="f12ccedc7eb0dd6433ee66a917a808a03e7332ede46d8e67ccd9ed18ac54d5a432bf85a7941f507a730827169026157c6f9d6544934fa740c73313a6ce485d65ea82d8b748ec48bfa15e9fefdc1cfa251df88b3db1e183c7c40b4f184905639f1f2bc17e99d54746bad4c1a8a7af278f585b9f158bbc6c45690c4fefaea687ef875086f66afffd59a5f219", 0x8b}, {&(0x7f0000000600)="a7b740d41bc06d4bb04f48e90d3abb07167fed99c8deb0ea37476db28f144f417147fd7be7445dd3e0c64e206e041dc65c69453184d22f53baba2425829709fb448ae3054b8f8e0961b7226d7c7b625b94daaab20724025baa3befd32c3fffacff63b3d706c48cbfec6ba48a211a2f8f54c062bfa6e9bbd3766c218e99413cf84aff6d79813a1fd10b0da142987bedadd7", 0x91}, {&(0x7f00000006c0)="8f229cc33817", 0x6}], 0x3, &(0x7f0000000780)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010100}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x81}}, @ip_retopts={{0x28, 0x0, 0x7, {[@lsrr={0x83, 0x7, 0x6d, [@remote]}, @rr={0x7, 0xf, 0x74, [@multicast1, @local, @private=0xa010100]}, @noop]}}}, @ip_retopts={{0x98, 0x0, 0x7, {[@lsrr={0x83, 0x7, 0x11, [@initdev={0xac, 0x1e, 0x0, 0x0}]}, @timestamp_prespec={0x44, 0x1c, 0x42, 0x3, 0x0, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0x1}, {@private=0xa010101, 0x2}, {@loopback, 0xb93}]}, @ssrr={0x89, 0xb, 0xa9, [@dev={0xac, 0x14, 0x14, 0x40}, @multicast2]}, @end, @timestamp_prespec={0x44, 0x14, 0xda, 0x3, 0x3, [{@loopback, 0x7}, {@dev={0xac, 0x14, 0x14, 0x2c}, 0x9}]}, @timestamp={0x44, 0x1c, 0xc4, 0x0, 0x4, [0x2, 0xed, 0x80000000, 0x100, 0x90000, 0xcac]}, @lsrr={0x83, 0xf, 0x77, [@multicast1, @broadcast, @loopback]}, @noop, @noop, @rr={0x7, 0x17, 0xc6, [@private=0xa010102, @empty, @private=0xa010102, @broadcast, @rand_addr=0x64010102]}]}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x4}}, @ip_retopts={{0xa0, 0x0, 0x7, {[@timestamp_addr={0x44, 0x34, 0xe3, 0x1, 0x5, [{@remote, 0x9}, {@empty, 0x3}, {@broadcast, 0xdc}, {@dev={0xac, 0x14, 0x14, 0x1e}, 0x8}, {@rand_addr=0x64010101, 0x3f}, {@remote, 0x400}]}, @lsrr={0x83, 0x1f, 0xb8, [@rand_addr=0x64010101, @multicast1, @empty, @multicast2, @rand_addr=0x64010101, @rand_addr=0x64010100, @multicast2]}, @ssrr={0x89, 0x17, 0x5e, [@private=0xa010100, @rand_addr=0x64010102, @remote, @remote, @remote]}, @timestamp={0x44, 0x24, 0xd4, 0x0, 0x5, [0x7fff, 0x8e81, 0x3ff, 0x8, 0x1e65, 0xffffffff, 0x0, 0x3]}, @end]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x8}}], 0x1c8}}, {{&(0x7f0000000980)={0x2, 0x4e23, @multicast2}, 0x10, &(0x7f0000000a80)=[{&(0x7f00000009c0)="bd6df7d38cf725ed3b1b40b1ba337605c4a2379ea09cff1804777bc80ae7c03e3f29c2fd0b586be71d423c301b0f6c78f16328fc7cff30ebbe7b2580348de78c9bb6481662c9589d3f17afc7203e21aa3b809b010ce7819492cce6e82fb86e4a5399b557a43117693f98a19e", 0x6c}, {&(0x7f0000000a40)="2066399f8195112a455d47e551ce85b2bb4adde34717b375bffea635fdf379de8caa48ce10fe3f13a47f26770c37c88b8bed7cd9fabe720e3631c64996eabc", 0x3f}], 0x2, &(0x7f0000000b80)=[@ip_tos_int={{0x14}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @local, @broadcast}}}], 0x38}}], 0x4, 0x48000)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)

17:02:51 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 65)

17:02:51 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:02:51 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:02:51 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 27)

17:02:51 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:02:51 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(0xffffffffffffffff, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

[ 3095.908047] FAULT_INJECTION: forcing a failure.
[ 3095.908047] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3095.909949] CPU: 1 UID: 0 PID: 20844 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3095.909981] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3095.909996] Call Trace:
[ 3095.910004]  <TASK>
[ 3095.910013]  dump_stack_lvl+0xfa/0x120
[ 3095.910043]  should_fail_ex+0x4d7/0x5e0
[ 3095.910078]  should_fail_alloc_page+0xe0/0x110
[ 3095.910117]  prepare_alloc_pages+0x1eb/0x550
[ 3095.910149]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3095.910179]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3095.910204]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3095.910235]  ? pgprot2cachemode+0x9a/0x130
[ 3095.910263]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3095.910293]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3095.910333]  ? do_raw_read_unlock+0x44/0xe0
[ 3095.910357]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3095.910385]  ? policy_nodemask+0xeb/0x4e0
[ 3095.910411]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3095.910437]  ? policy_nodemask+0xeb/0x4e0
[ 3095.910465]  alloc_pages_mpol+0xed/0x340
[ 3095.910492]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3095.910520]  ? alloc_pages_noprof+0xb7/0x180
[ 3095.910551]  alloc_pages_noprof+0x9d/0x180
[ 3095.910579]  kimage_alloc_pages+0x70/0x240
[ 3095.910609]  kimage_alloc_page+0x14e/0x7e0
[ 3095.910644]  kimage_load_segment+0x424/0xc90
[ 3095.910679]  do_kexec_load+0x6bd/0x8a0
[ 3095.910710]  ? __pfx_do_kexec_load+0x10/0x10
[ 3095.910740]  ? _copy_from_user+0x5b/0xd0
[ 3095.910776]  __x64_sys_kexec_load+0x1c6/0x230
[ 3095.910808]  do_syscall_64+0xbf/0x3f0
[ 3095.910835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3095.910859] RIP: 0033:0x7fd597aabb19
[ 3095.910877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3095.910900] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3095.910923] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3095.910938] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3095.910953] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3095.910967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3095.910981] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3095.911012]  </TASK>
17:02:51 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:02:51 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:02:51 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 28)

[ 3096.769726] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3096.771895] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:03:00 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0xffffffffffffffff, 0x1}, 0x6)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

17:03:00 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, 0x0, 0x0, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:03:00 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r0, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
getsockopt$inet_buf(r0, 0x0, 0x25, &(0x7f00000000c0)=""/222, &(0x7f0000000040)=0xde)
r1 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r1}], 0x1, 0xf8c6)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f0000000000)={0x0, 0x5, r1, 0x40, 0x80000})

17:03:00 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:03:00 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 66)

17:03:00 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
write$bt_hci(r2, &(0x7f0000000040)={0x1, @add_sco={{0x407, 0x4}, {0xc9, 0x727}}}, 0x8)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)

17:03:00 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 29)

17:03:00 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 3105.688264] FAULT_INJECTION: forcing a failure.
[ 3105.688264] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3105.690236] CPU: 1 UID: 0 PID: 20872 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3105.690267] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3105.690280] Call Trace:
[ 3105.690289]  <TASK>
[ 3105.690298]  dump_stack_lvl+0xfa/0x120
[ 3105.690336]  should_fail_ex+0x4d7/0x5e0
[ 3105.690368]  should_fail_alloc_page+0xe0/0x110
[ 3105.690404]  prepare_alloc_pages+0x1eb/0x550
[ 3105.690434]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3105.690461]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3105.690484]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3105.690514]  ? pgprot2cachemode+0x9a/0x130
[ 3105.690541]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3105.690569]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3105.690600]  ? do_raw_read_unlock+0x44/0xe0
[ 3105.690622]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3105.690647]  ? policy_nodemask+0xeb/0x4e0
[ 3105.690672]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3105.690696]  ? policy_nodemask+0xeb/0x4e0
[ 3105.690723]  alloc_pages_mpol+0xed/0x340
[ 3105.690747]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3105.690773]  ? alloc_pages_noprof+0xb7/0x180
[ 3105.690802]  alloc_pages_noprof+0x9d/0x180
[ 3105.690828]  kimage_alloc_pages+0x70/0x240
[ 3105.690856]  kimage_alloc_page+0x14e/0x7e0
[ 3105.690888]  kimage_load_segment+0x424/0xc90
[ 3105.690922]  do_kexec_load+0x6bd/0x8a0
[ 3105.690950]  ? __pfx_do_kexec_load+0x10/0x10
[ 3105.690978]  ? _copy_from_user+0x5b/0xd0
[ 3105.691011]  __x64_sys_kexec_load+0x1c6/0x230
[ 3105.691041]  do_syscall_64+0xbf/0x3f0
[ 3105.691066]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3105.691088] RIP: 0033:0x7fd597aabb19
[ 3105.691105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3105.691126] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3105.691148] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3105.691163] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3105.691176] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3105.691190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3105.691203] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3105.691231]  </TASK>
17:03:01 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, 0x0, 0x0, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:03:01 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 30)

17:03:01 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:03:01 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:03:01 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:03:01 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 67)

[ 3105.926391] FAULT_INJECTION: forcing a failure.
[ 3105.926391] name failslab, interval 1, probability 0, space 0, times 0
[ 3105.928180] CPU: 0 UID: 0 PID: 20895 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3105.928213] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3105.928227] Call Trace:
[ 3105.928236]  <TASK>
[ 3105.928245]  dump_stack_lvl+0xfa/0x120
[ 3105.928275]  should_fail_ex+0x4d7/0x5e0
[ 3105.928310]  should_failslab+0xc2/0x120
[ 3105.928354]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3105.928383]  ? sock_def_readable+0x1bf/0x5b0
[ 3105.928414]  ? __alloc_skb+0x2ab/0x370
[ 3105.928443]  ? lock_is_held_type+0x9e/0x120
[ 3105.928483]  ? __alloc_skb+0x2ab/0x370
[ 3105.928511]  __alloc_skb+0x2ab/0x370
[ 3105.928541]  ? __pfx___alloc_skb+0x10/0x10
[ 3105.928571]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3105.928598]  ? sock_queue_rcv_skb_reason+0xd8/0x190
[ 3105.928633]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3105.928674]  create_monitor_event+0x65/0x930
[ 3105.928705]  hci_sock_bind+0xab2/0x1470
[ 3105.928734]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3105.928771]  __sys_bind+0x1dd/0x2b0
[ 3105.928799]  ? __pfx___sys_bind+0x10/0x10
[ 3105.928832]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3105.928867]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3105.928903]  ? ksys_write+0x1a3/0x240
[ 3105.928936]  ? __pfx_ksys_write+0x10/0x10
[ 3105.928975]  __x64_sys_bind+0x73/0xb0
[ 3105.929002]  do_syscall_64+0xbf/0x3f0
[ 3105.929028]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3105.929052] RIP: 0033:0x7fbfee694b19
[ 3105.929070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3105.929093] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3105.929116] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3105.929133] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3105.929147] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3105.929162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3105.929176] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3105.929208]  </TASK>
17:03:01 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, 0x0, 0x0, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:03:01 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$binfmt_misc(r0, &(0x7f0000000100)={'syz0', "8a7aa1a5c89fefc674b3d85906ca4d54828c74b8a820a508a714992038a0352dd0c457aba4c5ec6c02047a5cb0845f1a3dbad9fe952938027df6211a36898ecafc36a2fc68fa21b2c067c45605f45663409e77da3fe092bdea73c8a86f69ead5484dabd7e5b7f98358531d46a78b8190029c90140fb3b1171c5e0b228649b326667e46ab023ce2bd171860fca508f426bf2fd00b425df9dbeecab106bf742659c74d3a47b6bed95e33d324b156ff4c3f0092dcebbbbb"}, 0xba)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448df, &(0x7f0000000040)="49161fce877bfe12971bba0d16246ac2becf7bda4319247ffded68b522fd810f6ae35b1e80c92b999f6fa48a87eb7d838503b5ce3391938ae71e745841f54e4cedc83bc31d69cb41a0131cd2e854a22c3a035b0810f7c81c127891deb8dfb1fed06b4e85f40f883e776b9e835cdc744f80a74026f32f6e054ea336b37c6a26d3a4c829af17d89a77a0f28c7f62dc16815cbe7643ae84fffa")
write$bt_hci(r0, 0x0, 0x6)

[ 3106.058294] FAULT_INJECTION: forcing a failure.
[ 3106.058294] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3106.061446] CPU: 1 UID: 0 PID: 20901 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3106.061478] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3106.061494] Call Trace:
[ 3106.061501]  <TASK>
[ 3106.061512]  dump_stack_lvl+0xfa/0x120
[ 3106.061542]  should_fail_ex+0x4d7/0x5e0
[ 3106.061574]  should_fail_alloc_page+0xe0/0x110
[ 3106.061611]  prepare_alloc_pages+0x1eb/0x550
[ 3106.061640]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3106.061668]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3106.061691]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3106.061721]  ? pgprot2cachemode+0x9a/0x130
[ 3106.061748]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3106.061776]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3106.061807]  ? do_raw_read_unlock+0x44/0xe0
[ 3106.061829]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3106.061855]  ? policy_nodemask+0xeb/0x4e0
[ 3106.061880]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3106.061903]  ? policy_nodemask+0xeb/0x4e0
[ 3106.061930]  alloc_pages_mpol+0xed/0x340
[ 3106.061954]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3106.061980]  ? alloc_pages_noprof+0xb7/0x180
[ 3106.062009]  alloc_pages_noprof+0x9d/0x180
[ 3106.062035]  kimage_alloc_pages+0x70/0x240
[ 3106.062063]  kimage_alloc_page+0x14e/0x7e0
[ 3106.062096]  kimage_load_segment+0x424/0xc90
[ 3106.062129]  do_kexec_load+0x6bd/0x8a0
[ 3106.062157]  ? __pfx_do_kexec_load+0x10/0x10
[ 3106.062186]  ? _copy_from_user+0x5b/0xd0
[ 3106.062219]  __x64_sys_kexec_load+0x1c6/0x230
[ 3106.062249]  do_syscall_64+0xbf/0x3f0
[ 3106.062274]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3106.062296] RIP: 0033:0x7fd597aabb19
[ 3106.062314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3106.062343] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3106.062364] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3106.062379] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3106.062393] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3106.062406] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3106.062419] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3106.062448]  </TASK>
[ 3106.579217] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3106.580952] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:03:11 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:03:11 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
r1 = syz_io_uring_complete(0x0)
accept$inet(r1, &(0x7f0000000180), &(0x7f00000001c0)=0x10)
getsockopt$IPT_SO_GET_INFO(r0, 0x0, 0x40, &(0x7f0000000100)={'mangle\x00', 0x0, [0x8001, 0x80, 0x101, 0x4, 0x81]}, &(0x7f0000000000)=0x54)
sendto$inet(r0, &(0x7f0000000280)="60da701df893ccc8bd25633c967f6a9af19d7a5c58570d3719d5cc5cd897cb7bd0ee8844fb64e50763ab37caded7e71e9963b3320ae95c9ca30a48f9d3f273d0738fcc667b93be8c2af8e1", 0x4b, 0x84, &(0x7f00000000c0)={0x2, 0xfffc, @local}, 0x10)

17:03:11 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='blkio.bfq.io_service_time\x00', 0x0, 0x0)
bind$bt_hci(r1, &(0x7f00000000c0)={0x1f, 0xffffffffffffffff, 0x4}, 0x6)
openat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x400, 0x102)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
ioctl$int_out(r2, 0xa8c6, &(0x7f0000000140))

17:03:11 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 31)

17:03:11 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:03:11 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 68)

17:03:11 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:03:11 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
shutdown(r1, 0x0)
sendmsg$sock(r1, &(0x7f0000002d40)={0x0, 0x0, &(0x7f0000002cc0)=[{&(0x7f0000003e00)="178954e193b959abb0e0af71a849f3f239d1fe5fd61b4dea02e025934c5857c3fc0aa282840496f9a458c6031d2a55c715d5096c777e925ca9d8829e9da0f45a89e7164ca969c543f6c1902485377e1a6628da95449c1b5c51bdd4eb9fb5051a54bff4b969214d58226d2442a6cd62c7a1d34b5bca0352", 0x77}], 0x1, &(0x7f0000003e80)=[@mark={{0x14, 0x1, 0x24, 0x2}}, @timestamping={{0x14, 0x1, 0x25, 0x3}}, @txtime={{0x18, 0x1, 0x3d, 0x8}}, @txtime={{0x18, 0x1, 0x3d, 0x1}}, @txtime={{0x18, 0x1, 0x3d, 0x8}}, @txtime={{0x18, 0x1, 0x3d, 0x1}}, @mark={{0x14, 0x1, 0x24, 0x7}}, @mark={{0x14, 0x1, 0x24, 0x9}}], 0xc0}, 0x4048004)
write$bt_hci(r0, 0x0, 0x6)

[ 3116.694099] FAULT_INJECTION: forcing a failure.
[ 3116.694099] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3116.696173] CPU: 1 UID: 0 PID: 20925 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3116.696206] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3116.696220] Call Trace:
[ 3116.696229]  <TASK>
[ 3116.696238]  dump_stack_lvl+0xfa/0x120
[ 3116.696267]  should_fail_ex+0x4d7/0x5e0
[ 3116.696301]  should_fail_alloc_page+0xe0/0x110
[ 3116.696346]  prepare_alloc_pages+0x1eb/0x550
[ 3116.696378]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3116.696408]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3116.696433]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3116.696464]  ? pgprot2cachemode+0x9a/0x130
[ 3116.696493]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3116.696523]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3116.696555]  ? do_raw_read_unlock+0x44/0xe0
[ 3116.696579]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3116.696607]  ? policy_nodemask+0xeb/0x4e0
[ 3116.696633]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3116.696659]  ? policy_nodemask+0xeb/0x4e0
[ 3116.696687]  alloc_pages_mpol+0xed/0x340
[ 3116.696713]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3116.696741]  ? alloc_pages_noprof+0xb7/0x180
[ 3116.696772]  alloc_pages_noprof+0x9d/0x180
[ 3116.696800]  kimage_alloc_pages+0x70/0x240
[ 3116.696830]  kimage_alloc_page+0x14e/0x7e0
[ 3116.696864]  kimage_load_segment+0x424/0xc90
[ 3116.696901]  do_kexec_load+0x6bd/0x8a0
[ 3116.696931]  ? __pfx_do_kexec_load+0x10/0x10
[ 3116.696962]  ? _copy_from_user+0x5b/0xd0
[ 3116.696998]  __x64_sys_kexec_load+0x1c6/0x230
[ 3116.697031]  do_syscall_64+0xbf/0x3f0
[ 3116.697057]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3116.697081] RIP: 0033:0x7fd597aabb19
[ 3116.697100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3116.697123] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3116.697146] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3116.697162] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3116.697177] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3116.697191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3116.697206] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3116.697237]  </TASK>
17:03:11 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 32)

17:03:12 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:03:12 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:03:12 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 69)

17:03:12 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x800448d7, &(0x7f0000000140)="4650bacd20a1ded8a47440f17cc44e695be276c3dee62db44c659352edcacf00667a28cc818a54349d671be6b684344dcca5b5265f126234fadf220a2de227d8214a21ea61e526955691b4a6cf5ef457fa898fc6be3d2391d497f38e615cb141c70dea9c22a517123ff6750b8ab73db798b5204b6a013cd9ca107ea84700641a3e9692187843afe121d7daface188153e9871eb99ec0e57e218347200228a51726402e7d2f1b0b0a7ca5d09bfc96fc1fe31e1e6b5f1d39c764bbf8a39bd037dc122da677")
ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000000c0)="01cf1fc3f7a9e8d419b368da282187d617234b5dc8886ef69956460ce8aea3a89d16216b3c50626ea675aa59489d253ffeb44ce7295f14d9ce32781982dd0c6715f3a109b063c8f230743709b43eabd82833436819500a5e440dfa9aab4a7862129a6b6044af1b790ba61b4eba4982addf018c2d9cfda17f67f24e9f")
write$bt_hci(r0, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)
write$bt_hci(r0, 0x0, 0x6)

17:03:12 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 33)

[ 3116.922811] FAULT_INJECTION: forcing a failure.
[ 3116.922811] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3116.924838] CPU: 1 UID: 0 PID: 20943 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3116.924871] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3116.924885] Call Trace:
[ 3116.924893]  <TASK>
[ 3116.924902]  dump_stack_lvl+0xfa/0x120
[ 3116.924932]  should_fail_ex+0x4d7/0x5e0
[ 3116.924967]  should_fail_alloc_page+0xe0/0x110
[ 3116.925005]  prepare_alloc_pages+0x1eb/0x550
[ 3116.925037]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3116.925067]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3116.925092]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3116.925124]  ? pgprot2cachemode+0x9a/0x130
[ 3116.925153]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3116.925183]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3116.925216]  ? do_raw_read_unlock+0x44/0xe0
[ 3116.925240]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3116.925273]  ? policy_nodemask+0xeb/0x4e0
[ 3116.925299]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3116.925331]  ? policy_nodemask+0xeb/0x4e0
[ 3116.925360]  alloc_pages_mpol+0xed/0x340
[ 3116.925385]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3116.925414]  ? alloc_pages_noprof+0xb7/0x180
[ 3116.925444]  alloc_pages_noprof+0x9d/0x180
[ 3116.925473]  kimage_alloc_pages+0x70/0x240
[ 3116.925503]  kimage_alloc_page+0x14e/0x7e0
[ 3116.925538]  kimage_load_segment+0x424/0xc90
[ 3116.925574]  do_kexec_load+0x6bd/0x8a0
[ 3116.925605]  ? __pfx_do_kexec_load+0x10/0x10
[ 3116.925636]  ? _copy_from_user+0x5b/0xd0
[ 3116.925671]  __x64_sys_kexec_load+0x1c6/0x230
[ 3116.925704]  do_syscall_64+0xbf/0x3f0
[ 3116.925730]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3116.925754] RIP: 0033:0x7fd597aabb19
[ 3116.925773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3116.925796] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3116.925819] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3116.925835] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3116.925849] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3116.925864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3116.925878] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3116.925909]  </TASK>
17:03:12 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6) (fail_nth: 1)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:03:12 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:03:12 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 34)

[ 3117.103313] FAULT_INJECTION: forcing a failure.
[ 3117.103313] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3117.105370] CPU: 1 UID: 0 PID: 20954 Comm: syz-executor.5 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3117.105403] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3117.105417] Call Trace:
[ 3117.105425]  <TASK>
[ 3117.105434]  dump_stack_lvl+0xfa/0x120
[ 3117.105464]  should_fail_ex+0x4d7/0x5e0
[ 3117.105499]  _copy_from_user+0x30/0xd0
[ 3117.105531]  move_addr_to_kernel.part.0+0x40/0x120
[ 3117.105561]  __sys_bind+0x14b/0x2b0
[ 3117.105588]  ? __pfx___sys_bind+0x10/0x10
[ 3117.105621]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3117.105657]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3117.105693]  ? ksys_write+0x1a3/0x240
[ 3117.105727]  ? __pfx_ksys_write+0x10/0x10
[ 3117.105766]  __x64_sys_bind+0x73/0xb0
[ 3117.105793]  do_syscall_64+0xbf/0x3f0
[ 3117.105819]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3117.105844] RIP: 0033:0x7f418a25ab19
[ 3117.105863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3117.105886] RSP: 002b:00007f41877d0188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3117.105909] RAX: ffffffffffffffda RBX: 00007f418a36df60 RCX: 00007f418a25ab19
[ 3117.105926] RDX: 0000000000000006 RSI: 0000000020000080 RDI: 0000000000000004
[ 3117.105940] RBP: 00007f41877d01d0 R08: 0000000000000000 R09: 0000000000000000
[ 3117.105955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3117.105970] R13: 00007ffc686eda3f R14: 00007f41877d0300 R15: 0000000000022000
[ 3117.106001]  </TASK>
[ 3117.133973] FAULT_INJECTION: forcing a failure.
[ 3117.133973] name failslab, interval 1, probability 0, space 0, times 0
[ 3117.135805] CPU: 0 UID: 0 PID: 20955 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3117.135837] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3117.135851] Call Trace:
[ 3117.135859]  <TASK>
[ 3117.135868]  dump_stack_lvl+0xfa/0x120
[ 3117.135899]  should_fail_ex+0x4d7/0x5e0
[ 3117.135934]  should_failslab+0xc2/0x120
[ 3117.135971]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3117.135999]  ? sock_def_readable+0x1bf/0x5b0
[ 3117.136030]  ? __alloc_skb+0x2ab/0x370
[ 3117.136059]  ? lock_is_held_type+0x9e/0x120
[ 3117.136099]  ? __alloc_skb+0x2ab/0x370
[ 3117.136127]  __alloc_skb+0x2ab/0x370
[ 3117.136157]  ? __pfx___alloc_skb+0x10/0x10
[ 3117.136188]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3117.136214]  ? sock_queue_rcv_skb_reason+0xd8/0x190
[ 3117.136251]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3117.136291]  create_monitor_event+0x3d7/0x930
[ 3117.136330]  hci_sock_bind+0xb22/0x1470
[ 3117.136358]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3117.136396]  __sys_bind+0x1dd/0x2b0
[ 3117.136424]  ? __pfx___sys_bind+0x10/0x10
[ 3117.136457]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3117.136492]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3117.136529]  ? ksys_write+0x1a3/0x240
[ 3117.136562]  ? __pfx_ksys_write+0x10/0x10
[ 3117.136601]  __x64_sys_bind+0x73/0xb0
[ 3117.136628]  do_syscall_64+0xbf/0x3f0
[ 3117.136654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3117.136679] RIP: 0033:0x7fbfee694b19
[ 3117.136697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3117.136720] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3117.136743] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3117.136759] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3117.136774] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3117.136789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3117.136803] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3117.136835]  </TASK>
[ 3117.531462] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3117.533282] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:03:22 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80), 0x0, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:03:22 executing program 6:
r0 = getpgid(0xffffffffffffffff)
ptrace$poke(0x5, r0, &(0x7f0000000000), 0x0)
r1 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r1}], 0x1, 0xf8c6)
sendto$inet(r1, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(0xffffffffffffffff, 0xc04c5349, &(0x7f0000000100)={0x3, 0x7f, 0x2})

17:03:22 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:03:22 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 35)

17:03:22 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0x80, 0x1f, 0x3, 0xf, 0x0, 0xfffffffffffffff7, 0x60000, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x20, 0x2, @perf_bp={&(0x7f0000000080), 0xa}, 0x2440, 0x9, 0x800, 0x0, 0xfffffffffffffffe, 0x7, 0x0, 0x0, 0xfffffffc, 0x0, 0xd75}, 0x0, 0x6, r1, 0x2)
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
ioctl$VFAT_IOCTL_READDIR_BOTH(r2, 0x82307201, &(0x7f00000002c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
perf_event_open(&(0x7f0000000200)={0x5, 0x80, 0x5, 0x80, 0x4, 0x8, 0x0, 0x6, 0x2, 0x8, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x80000000, 0x1, @perf_bp={&(0x7f00000001c0), 0x11}, 0x5100a, 0x9, 0x3f, 0x3, 0x400, 0x62, 0x3, 0x0, 0x80, 0x0, 0x4}, 0x0, 0x0, r1, 0x0)
r3 = open(&(0x7f0000000140)='./file0\x00', 0x12801, 0x71)
openat$sr(0xffffffffffffff9c, &(0x7f0000000280), 0x103140, 0x0)
ioctl$HCIINQUIRY(r3, 0x800448f0, &(0x7f0000000180)={0xffffffffffffffff, 0x3f9a, "828f13", 0x81, 0xa1})

17:03:22 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 70)

17:03:22 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
getsockopt$sock_linger(r2, 0x1, 0xd, &(0x7f0000000040), &(0x7f00000001c0)=0x8)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r3 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
write$bt_hci(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="01760cffd8ef077094dd7593ad2a15876fc83962f64eb0d8a1e858079755f3779e6a48c194cb8ddfae700b0030fb3a050e08c0fd1931664a2991d99d2a35c23d5be3493d57d1946868b3ccd18f74ae49ddc322ae7dd210b5f065b3ac43ccddd992f20d2b4b170c000000000000a8a5187f0a4a24a7c19cc0c0142832f00bc1b9068d9d851ade07180ea626d2a93eae7fa9f030fe58193245da95c018decd154136bdbe8de8823f787e6961afb471ccf2bc372ed1884e01c3180534c322d148690fcf290396e283e632125ea141b1f1a3196390151d32f7b04a83774c40cf2d1016bffff81644af50a61f0368df7adfd9f8567500"/259], 0x103)
write$bt_hci(r0, 0x0, 0x6)

17:03:22 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6) (fail_nth: 2)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 3127.475594] FAULT_INJECTION: forcing a failure.
[ 3127.475594] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3127.478538] CPU: 0 UID: 0 PID: 20974 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3127.478568] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3127.478582] Call Trace:
[ 3127.478590]  <TASK>
[ 3127.478598]  dump_stack_lvl+0xfa/0x120
[ 3127.478628]  should_fail_ex+0x4d7/0x5e0
[ 3127.478661]  should_fail_alloc_page+0xe0/0x110
[ 3127.478697]  prepare_alloc_pages+0x1eb/0x550
[ 3127.478727]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3127.478754]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3127.478777]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3127.478806]  ? pgprot2cachemode+0x9a/0x130
[ 3127.478834]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3127.478862]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3127.478892]  ? do_raw_read_unlock+0x44/0xe0
[ 3127.478914]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3127.478940]  ? policy_nodemask+0xeb/0x4e0
[ 3127.478965]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3127.478989]  ? policy_nodemask+0xeb/0x4e0
[ 3127.479015]  alloc_pages_mpol+0xed/0x340
[ 3127.479039]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3127.479065]  ? alloc_pages_noprof+0xb7/0x180
[ 3127.479094]  alloc_pages_noprof+0x9d/0x180
[ 3127.479120]  kimage_alloc_pages+0x70/0x240
[ 3127.479148]  kimage_alloc_page+0x14e/0x7e0
[ 3127.479180]  kimage_load_segment+0x424/0xc90
[ 3127.479214]  do_kexec_load+0x6bd/0x8a0
[ 3127.479241]  ? __pfx_do_kexec_load+0x10/0x10
[ 3127.479270]  ? _copy_from_user+0x5b/0xd0
[ 3127.479303]  __x64_sys_kexec_load+0x1c6/0x230
[ 3127.479341]  do_syscall_64+0xbf/0x3f0
[ 3127.479366]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3127.479389] RIP: 0033:0x7fd597aabb19
[ 3127.479406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3127.479427] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3127.479449] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3127.479464] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3127.479478] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3127.479491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3127.479505] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3127.479546]  </TASK>
[ 3127.481109] FAULT_INJECTION: forcing a failure.
[ 3127.481109] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3127.519055] CPU: 1 UID: 0 PID: 20977 Comm: syz-executor.5 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3127.519090] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3127.519105] Call Trace:
[ 3127.519113]  <TASK>
[ 3127.519122]  dump_stack_lvl+0xfa/0x120
[ 3127.519153]  should_fail_ex+0x4d7/0x5e0
[ 3127.519188]  _copy_to_user+0x32/0xd0
[ 3127.519221]  simple_read_from_buffer+0xe0/0x180
[ 3127.519252]  proc_fail_nth_read+0x18a/0x240
[ 3127.519288]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 3127.519334]  ? security_file_permission+0x22/0x90
[ 3127.519371]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 3127.519405]  vfs_read+0x1eb/0xc70
[ 3127.519442]  ? __pfx_vfs_read+0x10/0x10
[ 3127.519473]  ? lock_release+0xc8/0x290
[ 3127.519509]  ? __fget_files+0x20d/0x3b0
[ 3127.519563]  ksys_read+0x121/0x240
[ 3127.519592]  ? __pfx_ksys_read+0x10/0x10
[ 3127.519631]  do_syscall_64+0xbf/0x3f0
[ 3127.519657]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3127.519683] RIP: 0033:0x7f418a20d69c
[ 3127.519708] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 3127.519740] RSP: 002b:00007f41877d0170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 3127.519763] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00007f418a20d69c
[ 3127.519779] RDX: 000000000000000f RSI: 00007f41877d01e0 RDI: 0000000000000003
[ 3127.519793] RBP: 00007f41877d01d0 R08: 0000000000000000 R09: 0000000000000000
[ 3127.519807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3127.519821] R13: 00007ffc686eda3f R14: 00007f41877d0300 R15: 0000000000022000
[ 3127.519851]  </TASK>
17:03:22 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 36)

17:03:22 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:03:22 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80), 0x0, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:03:22 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:03:22 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 71)

17:03:22 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0xffffffffffffffff}}, './file0\x00'})
bind$bt_hci(r1, &(0x7f0000000080)={0x1f, 0x1, 0x2}, 0x6)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x40010022, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r2, 0x8982, &(0x7f0000000100))
write$bt_hci(r0, 0x0, 0x6)
r3 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
io_setup(0xfff, &(0x7f0000000040)=<r4=>0x0)
r5 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
io_submit(r4, 0x2, &(0x7f00000005c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, r5, 0x0}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x0}])
r6 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r6, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r6, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
io_submit(r4, 0x1, &(0x7f0000000240)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x1ff, r6, &(0x7f0000000140)="370eaaca4e79e31a34055773af7bdfe587a36f78d6de19fdb1ccdf13fba1dae3f8db7f588b4844ce2c63eda4c99c164f64d7238d91f0be7eb66243b67a90b6b18f3667", 0x43, 0x80000000, 0x0, 0x3}])
sendto$inet(r3, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x37}}, 0x10)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r3, 0x8982, &(0x7f00000000c0)={0x8, 'gre0\x00', {'bond_slave_1\x00'}, 0x14f})
ioctl$sock_bt_hci(r1, 0x0, &(0x7f00000002c0)="1e571eecc010cb0ab74b87185c52659872c680e9ffc34919ab219db87889f3fc46484f481de9be44647bb0962ddf32eb24cc8a793a94b9b9e5e17b3ffc5f87f5b570dcb50679417cf81df314a1269eaa5486cb9bcaeddd05810ba1e0592afab336b42e67181aca7a9632ce3c15df6fc719d39b70ccbeec6f8ef559a803c15affec5bdb260fdc")

[ 3127.754130] FAULT_INJECTION: forcing a failure.
[ 3127.754130] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3127.756219] CPU: 1 UID: 0 PID: 20995 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3127.756250] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3127.756264] Call Trace:
[ 3127.756272]  <TASK>
[ 3127.756280]  dump_stack_lvl+0xfa/0x120
[ 3127.756309]  should_fail_ex+0x4d7/0x5e0
[ 3127.756351]  should_fail_alloc_page+0xe0/0x110
[ 3127.756392]  prepare_alloc_pages+0x1eb/0x550
[ 3127.756427]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3127.756455]  ? pick_next_task_fair+0xa3/0x2430
[ 3127.756498]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3127.756535]  ? trace_sched_exit_tp+0xbf/0x100
[ 3127.756559]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3127.756584]  ? policy_nodemask+0xeb/0x4e0
[ 3127.756612]  alloc_pages_mpol+0xed/0x340
[ 3127.756636]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3127.756662]  ? alloc_pages_noprof+0xb7/0x180
17:03:22 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80), 0x0, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

[ 3127.756698]  alloc_pages_noprof+0x9d/0x180
[ 3127.756739]  kimage_alloc_pages+0x70/0x240
[ 3127.756782]  kimage_alloc_page+0x14e/0x7e0
[ 3127.756819]  kimage_load_segment+0x424/0xc90
[ 3127.756853]  do_kexec_load+0x6bd/0x8a0
[ 3127.756881]  ? __pfx_do_kexec_load+0x10/0x10
[ 3127.756909]  ? _copy_from_user+0x5b/0xd0
[ 3127.756942]  __x64_sys_kexec_load+0x1c6/0x230
[ 3127.756973]  do_syscall_64+0xbf/0x3f0
[ 3127.756998]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3127.757021] RIP: 0033:0x7fd597aabb19
[ 3127.757039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3127.757061] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3127.757083] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3127.757098] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3127.757111] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3127.757124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3127.757137] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3127.757166]  </TASK>
[ 3128.354508] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3128.355866] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:03:31 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:03:31 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffffffffffffffff, 0x1}, 0x6)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x10001}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

17:03:31 executing program 6:
r0 = socket$inet(0x2, 0x0, 0x5)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
write$binfmt_script(r1, &(0x7f0000000100)={'#! ', './file0', [{0x20, '[#@-\'&'}, {}], 0xa, "6c08bf89ea00d2847f4ce71da862e7415653cb28ea8ef7371478b5e27393b4c7c62c79deab551963271324b089dceb9de8d1bf296eea78f580fd1a405b7c75"}, 0x52)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:03:31 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 37)

17:03:31 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:03:31 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x0, 0x3}, 0x6)
write$bt_hci(r0, 0x0, 0x6)

17:03:31 executing program 4:
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r0 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r0)

17:03:31 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 72)

[ 3136.686735] FAULT_INJECTION: forcing a failure.
[ 3136.686735] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3136.688645] CPU: 1 UID: 0 PID: 21023 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3136.688678] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3136.688692] Call Trace:
[ 3136.688701]  <TASK>
[ 3136.688710]  dump_stack_lvl+0xfa/0x120
[ 3136.688741]  should_fail_ex+0x4d7/0x5e0
[ 3136.688777]  should_fail_alloc_page+0xe0/0x110
[ 3136.688816]  prepare_alloc_pages+0x1eb/0x550
[ 3136.688854]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3136.688889]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3136.688927]  ? lock_acquire+0x15e/0x2f0
[ 3136.688962]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3136.688997]  ? finish_task_switch.isra.0+0x206/0x840
[ 3136.689028]  ? trace_sched_exit_tp+0xbf/0x100
[ 3136.689052]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3136.689079]  ? policy_nodemask+0xeb/0x4e0
[ 3136.689108]  alloc_pages_mpol+0xed/0x340
[ 3136.689135]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3136.689170]  alloc_pages_noprof+0x9d/0x180
[ 3136.689199]  kimage_alloc_pages+0x70/0x240
[ 3136.689229]  kimage_alloc_page+0x14e/0x7e0
[ 3136.689264]  kimage_load_segment+0x424/0xc90
[ 3136.689300]  do_kexec_load+0x6bd/0x8a0
[ 3136.689338]  ? __pfx_do_kexec_load+0x10/0x10
[ 3136.689369]  ? _copy_from_user+0x5b/0xd0
[ 3136.689404]  __x64_sys_kexec_load+0x1c6/0x230
[ 3136.689437]  do_syscall_64+0xbf/0x3f0
[ 3136.689463]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3136.689487] RIP: 0033:0x7fd597aabb19
[ 3136.689506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3136.689529] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3136.689552] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3136.689568] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3136.689583] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3136.689597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3136.689612] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3136.689642]  </TASK>
17:03:31 executing program 4:
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r0 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r0)

17:03:31 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x2, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:03:31 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x3, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:03:32 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 38)

17:03:32 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 73)

[ 3136.831406] FAULT_INJECTION: forcing a failure.
[ 3136.831406] name failslab, interval 1, probability 0, space 0, times 0
[ 3136.832436] CPU: 0 UID: 0 PID: 21042 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3136.832453] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3136.832461] Call Trace:
[ 3136.832465]  <TASK>
[ 3136.832470]  dump_stack_lvl+0xfa/0x120
[ 3136.832489]  should_fail_ex+0x4d7/0x5e0
[ 3136.832508]  should_failslab+0xc2/0x120
[ 3136.832527]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3136.832542]  ? sock_def_readable+0x1bf/0x5b0
[ 3136.832559]  ? __alloc_skb+0x2ab/0x370
[ 3136.832575]  ? lock_is_held_type+0x9e/0x120
[ 3136.832596]  ? __alloc_skb+0x2ab/0x370
[ 3136.832610]  __alloc_skb+0x2ab/0x370
[ 3136.832625]  ? __pfx___alloc_skb+0x10/0x10
[ 3136.832640]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3136.832655]  ? sock_queue_rcv_skb_reason+0xd8/0x190
[ 3136.832673]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3136.832693]  create_monitor_event+0x692/0x930
[ 3136.832710]  hci_sock_bind+0xa19/0x1470
[ 3136.832725]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3136.832744]  __sys_bind+0x1dd/0x2b0
[ 3136.832759]  ? __pfx___sys_bind+0x10/0x10
[ 3136.832775]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3136.832793]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3136.832812]  ? ksys_write+0x1a3/0x240
[ 3136.832830]  ? __pfx_ksys_write+0x10/0x10
[ 3136.832849]  __x64_sys_bind+0x73/0xb0
[ 3136.832863]  do_syscall_64+0xbf/0x3f0
[ 3136.832876]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3136.832889] RIP: 0033:0x7fbfee694b19
[ 3136.832898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3136.832910] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3136.832923] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3136.832931] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3136.832939] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3136.832946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3136.832953] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3136.832969]  </TASK>
17:03:32 executing program 4:
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r0 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r0)

17:03:32 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000c80)='memory.swap.current\x00', 0x0, 0x0)
ioctl$HCIINQUIRY(r1, 0x800448f0, &(0x7f0000000cc0)={0x2, 0x1, "d9863a", 0x3, 0x8})
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r2 = signalfd(r0, &(0x7f0000002a80)={[0x3]}, 0x8)
pipe(&(0x7f00000000c0))
write$bt_hci(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="015b2c800885eda24fc59791f11fed8ec19c0b0f274342d142c103ad7ddc31e327ab5367986dab4b1523efd25040e361014b26b4d17ebc8a19f2b48f9a43ef579286a6878b89e067de5710feab677ac122155e63a566"], 0x5)
write$bt_hci(r0, 0x0, 0x6)

17:03:32 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 39)

[ 3136.901360] FAULT_INJECTION: forcing a failure.
[ 3136.901360] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3136.902527] CPU: 0 UID: 0 PID: 21045 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3136.902544] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3136.902552] Call Trace:
[ 3136.902556]  <TASK>
[ 3136.902561]  dump_stack_lvl+0xfa/0x120
[ 3136.902580]  should_fail_ex+0x4d7/0x5e0
[ 3136.902598]  should_fail_alloc_page+0xe0/0x110
[ 3136.902618]  prepare_alloc_pages+0x1eb/0x550
[ 3136.902635]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3136.902650]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3136.902662]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3136.902679]  ? pgprot2cachemode+0x9a/0x130
[ 3136.902694]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3136.902709]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3136.902725]  ? do_raw_read_unlock+0x44/0xe0
[ 3136.902738]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3136.902753]  ? policy_nodemask+0xeb/0x4e0
[ 3136.902767]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3136.902779]  ? policy_nodemask+0xeb/0x4e0
[ 3136.902793]  alloc_pages_mpol+0xed/0x340
[ 3136.902806]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3136.902820]  ? alloc_pages_noprof+0xb7/0x180
[ 3136.902836]  alloc_pages_noprof+0x9d/0x180
[ 3136.902850]  kimage_alloc_pages+0x70/0x240
[ 3136.902865]  kimage_alloc_page+0x14e/0x7e0
[ 3136.902882]  kimage_load_segment+0x424/0xc90
[ 3136.902900]  do_kexec_load+0x6bd/0x8a0
[ 3136.902915]  ? __pfx_do_kexec_load+0x10/0x10
[ 3136.902930]  ? _copy_from_user+0x5b/0xd0
[ 3136.902949]  __x64_sys_kexec_load+0x1c6/0x230
[ 3136.902965]  do_syscall_64+0xbf/0x3f0
[ 3136.902979]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3136.902992] RIP: 0033:0x7fd597aabb19
[ 3136.903001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3136.903013] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3136.903025] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3136.903034] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3136.903041] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3136.903048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3136.903055] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3136.903070]  </TASK>
17:03:32 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x4, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 3137.541295] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:03:40 executing program 4:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r0 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r0)

17:03:40 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
fcntl$setstatus(r1, 0x4, 0x44000)

17:03:40 executing program 6:
r0 = fsmount(0xffffffffffffffff, 0x0, 0x87)
sendmsg$NL80211_CMD_UPDATE_FT_IES(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x24, 0x0, 0x831, 0x70bd27, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_MDID={0x6, 0xb1, 0x8}, @NL80211_ATTR_MDID={0x6, 0xb1, 0x80}]}, 0x24}, 0x1, 0x0, 0x0, 0x11}, 0x8830)
r1 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r1}], 0x1, 0xf8c6)
sendto$inet(r1, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:03:40 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 40)

17:03:40 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f00000006c0)=[{{&(0x7f0000000040)=@pppol2tpin6={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private0}}}, 0x80, &(0x7f00000002c0)=[{&(0x7f00000000c0)=""/44, 0x2c}, {&(0x7f0000000100)=""/130, 0x82}, {&(0x7f00000001c0)=""/213, 0xd5}], 0x3}, 0x8}, {{&(0x7f0000000340)=@nfc, 0x80, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/253, 0xfd}, {&(0x7f00000004c0)=""/97, 0x61}, {&(0x7f0000000540)=""/212, 0xd4}], 0x3, &(0x7f0000000680)=""/41, 0x29}, 0x9}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)
r2 = accept$packet(r1, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000740)=0x14)
recvmmsg(r2, &(0x7f0000003600)=[{{&(0x7f0000000780)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, 0x80, &(0x7f0000000d40)=[{&(0x7f0000000800)=""/182, 0xb6}, {&(0x7f00000008c0)=""/73, 0x49}, {&(0x7f0000000940)=""/218, 0xda}, {&(0x7f0000000a40)=""/109, 0x6d}, {&(0x7f0000000ac0)=""/249, 0xf9}, {&(0x7f0000000bc0)=""/187, 0xbb}, {&(0x7f0000000c80)=""/89, 0x59}, {&(0x7f0000000d00)=""/41, 0x29}], 0x8, &(0x7f0000000dc0)=""/4096, 0x1000}, 0x3f}, {{&(0x7f0000001dc0)=@l2={0x1f, 0x0, @fixed}, 0x80, &(0x7f0000002000)=[{&(0x7f0000001e40)=""/131, 0x83}, {&(0x7f0000001f00)=""/197, 0xc5}], 0x2}, 0xfffffffb}, {{&(0x7f0000002040)=@l2tp6={0xa, 0x0, 0x0, @loopback}, 0x80, &(0x7f0000002200)=[{&(0x7f00000020c0)=""/58, 0x3a}, {&(0x7f0000002100)=""/176, 0xb0}, {&(0x7f00000021c0)=""/10, 0xa}], 0x3, &(0x7f0000002240)}, 0x80000000}, {{0x0, 0x0, &(0x7f0000003580)=[{&(0x7f0000002280)=""/35, 0x23}, {&(0x7f00000022c0)=""/4096, 0x1000}, {&(0x7f00000032c0)=""/255, 0xff}, {&(0x7f00000033c0)=""/45, 0x2d}, {&(0x7f0000003400)=""/249, 0xf9}, {&(0x7f0000003500)=""/124, 0x7c}], 0x6}, 0x1}], 0x4, 0x2002, &(0x7f0000003700)={0x0, 0x989680})

17:03:40 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:03:40 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x5, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:03:40 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 74)

[ 3145.364029] FAULT_INJECTION: forcing a failure.
[ 3145.364029] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3145.366413] CPU: 1 UID: 0 PID: 21067 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3145.366449] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3145.366465] Call Trace:
[ 3145.366474]  <TASK>
[ 3145.366485]  dump_stack_lvl+0xfa/0x120
[ 3145.366518]  should_fail_ex+0x4d7/0x5e0
[ 3145.366556]  should_fail_alloc_page+0xe0/0x110
[ 3145.366599]  prepare_alloc_pages+0x1eb/0x550
[ 3145.366642]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3145.366681]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3145.366724]  ? lock_acquire+0x15e/0x2f0
[ 3145.366761]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3145.366800]  ? finish_task_switch.isra.0+0x206/0x840
[ 3145.366835]  ? trace_sched_exit_tp+0xbf/0x100
[ 3145.366862]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3145.366893]  ? policy_nodemask+0xeb/0x4e0
[ 3145.366926]  alloc_pages_mpol+0xed/0x340
[ 3145.366955]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3145.366987]  ? alloc_pages_noprof+0xb7/0x180
[ 3145.367021]  alloc_pages_noprof+0x9d/0x180
[ 3145.367053]  kimage_alloc_pages+0x70/0x240
[ 3145.367086]  kimage_alloc_page+0x14e/0x7e0
[ 3145.367125]  kimage_load_segment+0x424/0xc90
[ 3145.367165]  do_kexec_load+0x6bd/0x8a0
[ 3145.367199]  ? __pfx_do_kexec_load+0x10/0x10
[ 3145.367234]  ? _copy_from_user+0x5b/0xd0
[ 3145.367273]  __x64_sys_kexec_load+0x1c6/0x230
[ 3145.367310]  do_syscall_64+0xbf/0x3f0
[ 3145.367348]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3145.367375] RIP: 0033:0x7fd597aabb19
[ 3145.367395] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3145.367421] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3145.367447] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3145.367465] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3145.367481] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3145.367497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3145.367513] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3145.367547]  </TASK>
17:03:40 executing program 4:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r0 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r0)

17:03:40 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x6, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:03:40 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 41)

17:03:40 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 75)

17:03:40 executing program 1:
r0 = socket(0x1f, 0x2, 0x9)
recvmsg$unix(r0, &(0x7f0000000240)={&(0x7f0000000040)=@abs, 0x6e, &(0x7f0000000180)=[{&(0x7f00000000c0)=""/26, 0xfffffffffffffc87}, {&(0x7f0000000100)=""/73, 0x49}], 0x2, &(0x7f00000001c0)=[@cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x50}, 0x2)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r1, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xfffc, 0x2}, 0x6)
write$bt_hci(r1, 0x0, 0x6)

[ 3145.526275] FAULT_INJECTION: forcing a failure.
[ 3145.526275] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3145.527463] CPU: 0 UID: 0 PID: 21094 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3145.527481] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3145.527489] Call Trace:
[ 3145.527494]  <TASK>
[ 3145.527498]  dump_stack_lvl+0xfa/0x120
[ 3145.527516]  should_fail_ex+0x4d7/0x5e0
[ 3145.527535]  should_fail_alloc_page+0xe0/0x110
[ 3145.527556]  prepare_alloc_pages+0x1eb/0x550
[ 3145.527573]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3145.527588]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3145.527601]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3145.527617]  ? pgprot2cachemode+0x9a/0x130
[ 3145.527632]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3145.527647]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3145.527663]  ? do_raw_read_unlock+0x44/0xe0
[ 3145.527676]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3145.527691]  ? policy_nodemask+0xeb/0x4e0
[ 3145.527705]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3145.527718]  ? policy_nodemask+0xeb/0x4e0
[ 3145.527732]  alloc_pages_mpol+0xed/0x340
[ 3145.527745]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3145.527769]  ? alloc_pages_noprof+0xb7/0x180
[ 3145.527785]  alloc_pages_noprof+0x9d/0x180
[ 3145.527799]  kimage_alloc_pages+0x70/0x240
[ 3145.527814]  kimage_alloc_page+0x14e/0x7e0
[ 3145.527832]  kimage_load_segment+0x424/0xc90
[ 3145.527850]  do_kexec_load+0x6bd/0x8a0
[ 3145.527865]  ? __pfx_do_kexec_load+0x10/0x10
[ 3145.527880]  ? _copy_from_user+0x5b/0xd0
[ 3145.527899]  __x64_sys_kexec_load+0x1c6/0x230
[ 3145.527915]  do_syscall_64+0xbf/0x3f0
[ 3145.527929]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3145.527942] RIP: 0033:0x7fd597aabb19
[ 3145.527951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3145.527963] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3145.527975] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3145.527984] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3145.527991] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3145.527998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3145.528005] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3145.528021]  </TASK>
17:03:40 executing program 4:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r0 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r0)

[ 3146.316752] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3146.318250] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:03:49 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x7, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:03:49 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 76)

17:03:49 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

17:03:49 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0xf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
r2 = getpgrp(0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r3=>r0, {0xc1e, 0x2f}}, './file0\x00'})
ioctl$sock_bt_hci(r3, 0x400448e2, &(0x7f0000000180)="09b3c2e5f8b2a11874cfba9094460f61d353f5213dd9e95e2872a889eb0f9a6d598c306ddd861af618e50a8bddb851c36be3876024c29946014679750f8841099787f315f57d9f7f1aed66b164f52ade1ab5de6c34dfae4b25df6ab34112a98613ab8d05a93e81e2301e27d4cd711a5bf85671b9e2c4a2479742aa3f25eed7438530ef0192dbf94690fe07d42ce5f944")
sched_setaffinity(r2, 0x8, &(0x7f00000000c0)=0xfffffffffffffffd)
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0x8, 0x1f, 0x3f, 0x0, 0x0, 0x3, 0x400, 0x9, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0xffffffff, 0x4, @perf_config_ext={0x100, 0x1}, 0x10d84, 0x9, 0x329dde69, 0x0, 0x5, 0x3, 0x2, 0x0, 0x8fad, 0x0, 0x6}, r2, 0xf, r1, 0xb)

17:03:49 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:03:49 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff}, 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:03:49 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
setsockopt$inet_mreq(r0, 0x0, 0x0, &(0x7f0000000000)={@multicast2, @remote}, 0x8)

17:03:49 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 42)

[ 3154.767931] FAULT_INJECTION: forcing a failure.
[ 3154.767931] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3154.769025] CPU: 0 UID: 0 PID: 21116 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3154.769042] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3154.769049] Call Trace:
[ 3154.769054]  <TASK>
[ 3154.769059]  dump_stack_lvl+0xfa/0x120
[ 3154.769077]  should_fail_ex+0x4d7/0x5e0
[ 3154.769096]  should_fail_alloc_page+0xe0/0x110
[ 3154.769116]  prepare_alloc_pages+0x1eb/0x550
[ 3154.769133]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3154.769148]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3154.769161]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3154.769178]  ? pgprot2cachemode+0x9a/0x130
[ 3154.769193]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3154.769208]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3154.769224]  ? do_raw_read_unlock+0x44/0xe0
[ 3154.769237]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3154.769252]  ? policy_nodemask+0xeb/0x4e0
[ 3154.769266]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3154.769279]  ? policy_nodemask+0xeb/0x4e0
[ 3154.769293]  alloc_pages_mpol+0xed/0x340
[ 3154.769306]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3154.769325]  ? alloc_pages_noprof+0xb7/0x180
[ 3154.769341]  alloc_pages_noprof+0x9d/0x180
[ 3154.769357]  kimage_alloc_pages+0x70/0x240
[ 3154.769373]  kimage_alloc_page+0x14e/0x7e0
[ 3154.769390]  kimage_load_segment+0x424/0xc90
[ 3154.769408]  do_kexec_load+0x6bd/0x8a0
[ 3154.769423]  ? __pfx_do_kexec_load+0x10/0x10
[ 3154.769439]  ? _copy_from_user+0x5b/0xd0
[ 3154.769457]  __x64_sys_kexec_load+0x1c6/0x230
[ 3154.769473]  do_syscall_64+0xbf/0x3f0
[ 3154.769487]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3154.769500] RIP: 0033:0x7fd597aabb19
[ 3154.769509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3154.769521] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3154.769533] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3154.769541] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3154.769548] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3154.769555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3154.769562] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3154.769578]  </TASK>
[ 3154.806368] FAULT_INJECTION: forcing a failure.
[ 3154.806368] name failslab, interval 1, probability 0, space 0, times 0
17:03:50 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

[ 3154.807307] CPU: 0 UID: 0 PID: 21123 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3154.807326] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3154.807333] Call Trace:
[ 3154.807338]  <TASK>
[ 3154.807343]  dump_stack_lvl+0xfa/0x120
[ 3154.807359]  should_fail_ex+0x4d7/0x5e0
[ 3154.807378]  should_failslab+0xc2/0x120
[ 3154.807397]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3154.807412]  ? sock_def_readable+0x1bf/0x5b0
[ 3154.807429]  ? __alloc_skb+0x2ab/0x370
[ 3154.807444]  ? lock_is_held_type+0x9e/0x120
[ 3154.807466]  ? __alloc_skb+0x2ab/0x370
[ 3154.807480]  __alloc_skb+0x2ab/0x370
[ 3154.807495]  ? __pfx___alloc_skb+0x10/0x10
[ 3154.807510]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3154.807524]  ? sock_queue_rcv_skb_reason+0xd8/0x190
[ 3154.807542]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3154.807562]  create_monitor_event+0x65/0x930
[ 3154.807579]  hci_sock_bind+0xab2/0x1470
[ 3154.807594]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3154.807613]  __sys_bind+0x1dd/0x2b0
[ 3154.807627]  ? __pfx___sys_bind+0x10/0x10
[ 3154.807644]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3154.807663]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3154.807681]  ? ksys_write+0x1a3/0x240
[ 3154.807699]  ? __pfx_ksys_write+0x10/0x10
[ 3154.807718]  __x64_sys_bind+0x73/0xb0
[ 3154.807732]  do_syscall_64+0xbf/0x3f0
[ 3154.807745]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3154.807758] RIP: 0033:0x7fbfee694b19
[ 3154.807767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3154.807779] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3154.807791] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3154.807799] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3154.807806] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3154.807813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3154.807820] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3154.807836]  </TASK>
17:03:50 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 77)

17:03:50 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$HCIINQUIRY(r0, 0x800448f0, &(0x7f0000000040)={0xffffffffffffffff, 0x9, "2b57b7", 0x9, 0x8})
write$bt_hci(r0, 0x0, 0x6)

17:03:50 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 43)

17:03:50 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x300, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 3154.896180] FAULT_INJECTION: forcing a failure.
[ 3154.896180] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3154.898046] CPU: 1 UID: 0 PID: 21132 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3154.898078] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3154.898092] Call Trace:
[ 3154.898101]  <TASK>
[ 3154.898110]  dump_stack_lvl+0xfa/0x120
[ 3154.898141]  should_fail_ex+0x4d7/0x5e0
[ 3154.898176]  should_fail_alloc_page+0xe0/0x110
[ 3154.898215]  prepare_alloc_pages+0x1eb/0x550
[ 3154.898253]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3154.898288]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3154.898332]  ? lock_acquire+0x15e/0x2f0
[ 3154.898367]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3154.898401]  ? finish_task_switch.isra.0+0x206/0x840
[ 3154.898432]  ? trace_sched_exit_tp+0xbf/0x100
[ 3154.898456]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3154.898483]  ? policy_nodemask+0xeb/0x4e0
[ 3154.898512]  alloc_pages_mpol+0xed/0x340
[ 3154.898539]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3154.898567]  ? alloc_pages_noprof+0xb7/0x180
[ 3154.898598]  alloc_pages_noprof+0x9d/0x180
[ 3154.898626]  kimage_alloc_pages+0x70/0x240
[ 3154.898656]  kimage_alloc_page+0x14e/0x7e0
[ 3154.898691]  kimage_load_segment+0x424/0xc90
[ 3154.898727]  do_kexec_load+0x6bd/0x8a0
[ 3154.898757]  ? __pfx_do_kexec_load+0x10/0x10
[ 3154.898787]  ? _copy_from_user+0x5b/0xd0
[ 3154.898823]  __x64_sys_kexec_load+0x1c6/0x230
[ 3154.898855]  do_syscall_64+0xbf/0x3f0
[ 3154.898882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3154.898906] RIP: 0033:0x7fd597aabb19
[ 3154.898925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3154.898949] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3154.898972] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3154.898988] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3154.899003] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3154.899017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3154.899031] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3154.899062]  </TASK>
17:03:50 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x500, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:03:50 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:03:50 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 78)

17:03:50 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
ioctl$HCIINQUIRY(r0, 0x800448f0, &(0x7f0000000040)={0xffffffffffffffff, 0x7, "78cc58", 0x3, 0x20})
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00'})
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r2, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r3 = dup(r2)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r3, 0xc0189377, &(0x7f0000000140)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x80000001, 0xffff0000}}, './file0\x00'})
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
recvfrom(r1, &(0x7f00000000c0)=""/66, 0x42, 0x100, 0x0, 0x0)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r4, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r5 = dup(r4)
setsockopt$bt_BT_DEFER_SETUP(r5, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
io_submit(0x0, 0x8, &(0x7f0000000880)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x7, 0xffffffffffffffff, &(0x7f0000000240)="e892b944a7273e3252ef7c1c6ae85b081ffee9296cd34688a17b649574adba936ab07d71fb86fb4904a5", 0x2a, 0x7fff, 0x0, 0x7}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x8, 0x1f, 0xffffffffffffffff, &(0x7f00000002c0)="106e23520ed0b5b477bcaf38fa2762e95a9e854159179eddbbd96f462dad43d383156575f3c09d931f42c05e97a7670913b61a11d13ee552578ebcc5820719ec18deed4d98e8d7ee3f0edd", 0x4b, 0x9, 0x0, 0x1, r3}, &(0x7f0000000400)={0x0, 0x0, 0x0, 0xa4bb634f619deb51, 0x9, 0xffffffffffffffff, &(0x7f00000003c0)='\'', 0x1, 0x8, 0x0, 0x3, r3}, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x3ff, 0xffffffffffffffff, &(0x7f0000000440)="22f3ff982129f45dcedc4ac325c7434e3eabb84998ffc8dbb2fc26635603d068ab89cdbb4fa38b7998e3ff72923bae73fdfdd49a887d4478b34c6494068b00e6a15afe2dceffedcac08e536206eb5a4fd20868918f772255e9102880dcb26fb978f9ff3a999323c21ae0364f48ece20f24f55c790917ecea7f651cc2b5f6b6a50c5e8faa398b9c1a2f0e0b8c907be2f19b57a8d36ba22d045dbf1aff5083a3bf841acfabfaaf3e450a4ddc39", 0xac, 0xff, 0x0, 0x1}, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x1, 0x5, 0xffffffffffffffff, &(0x7f0000000580)="c0f9cd709a834db30b2bc4e1521e60f8a2f614048a089d8a78e1965188a9fc6a95ea940206da5ab2a2e67a8e910a43a80fc7721a5596a2d2891392b205fe7bc76324dc6db60961048b0343ca489c9b6c05152570c661e103c7befccfc95935a8e745ff1da21700b9c0095ebbcff5ff551137abdeb2917ee59413f7ae555e9a1d42a81812fc0cdb35b0f8560c3d543a16cb4ff8929a1730a78c6a6e3dcc15042bb05eb30acce42f2d4b50e14a569f", 0xae, 0x2, 0x0, 0x2}, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x3, r0, &(0x7f00000006c0), 0x0, 0x7, 0x0, 0x2}, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x7, 0x3, 0xffffffffffffffff, &(0x7f00000010c0)="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", 0x1000, 0x80000000000007, 0x0, 0x2}, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x2, 0xff, 0xffffffffffffffff, &(0x7f00000007c0)="7b0f505282e0cba71b94f9bcdccb3102dcf8fea84d5d4e4efc772df55262baac56e64062e39f0b91d72118cf543054deaf4d046ec08963329cbda771d326a1d56ff7389da27467e15ecdd6f0632ae7a09893c7342a491a7c", 0x58, 0x7fffffff, 0x0, 0x2, r5}])

17:03:50 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 44)

[ 3155.037692] FAULT_INJECTION: forcing a failure.
[ 3155.037692] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3155.039752] CPU: 1 UID: 0 PID: 21149 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3155.039786] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3155.039802] Call Trace:
[ 3155.039810]  <TASK>
[ 3155.039820]  dump_stack_lvl+0xfa/0x120
[ 3155.039850]  should_fail_ex+0x4d7/0x5e0
[ 3155.039896]  should_fail_alloc_page+0xe0/0x110
[ 3155.039934]  prepare_alloc_pages+0x1eb/0x550
[ 3155.039973]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3155.040007]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3155.040045]  ? lock_acquire+0x15e/0x2f0
[ 3155.040079]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3155.040113]  ? finish_task_switch.isra.0+0x294/0x840
[ 3155.040144]  ? trace_sched_exit_tp+0xbf/0x100
[ 3155.040168]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3155.040194]  ? policy_nodemask+0xeb/0x4e0
[ 3155.040224]  alloc_pages_mpol+0xed/0x340
[ 3155.040250]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3155.040274]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 3155.040324]  alloc_pages_noprof+0x9d/0x180
[ 3155.040352]  kimage_alloc_pages+0x70/0x240
[ 3155.040382]  kimage_alloc_page+0x14e/0x7e0
[ 3155.040416]  kimage_load_segment+0x424/0xc90
[ 3155.040452]  do_kexec_load+0x6bd/0x8a0
[ 3155.040482]  ? __pfx_do_kexec_load+0x10/0x10
[ 3155.040513]  ? _copy_from_user+0x5b/0xd0
[ 3155.040549]  __x64_sys_kexec_load+0x1c6/0x230
[ 3155.040581]  do_syscall_64+0xbf/0x3f0
[ 3155.040608]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3155.040632] RIP: 0033:0x7fd597aabb19
[ 3155.040650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3155.040674] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3155.040697] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3155.040713] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3155.040728] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3155.040743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3155.040757] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3155.040788]  </TASK>
17:03:50 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080), 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

[ 3155.682648] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3155.684306] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:03:59 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 79)

17:03:59 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080), 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:03:59 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x600, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:03:59 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, 0x0, 0x0)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:03:59 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 45)

17:03:59 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
io_setup(0x7, &(0x7f0000000000))
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
sendto$inet(0xffffffffffffffff, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
r3 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r3, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r4 = syz_open_dev$vcsa(&(0x7f00000011c0), 0x82, 0x109000)
r5 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r5, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r6 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r6, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r6, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
io_submit(0x0, 0x4, &(0x7f0000001380)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x55, 0xffffffffffffffff, &(0x7f0000000100)="53822434ef630eb7e9b3d2076ea58ab3bb7d3f902f8606d916ab7bfbb0d1ae53696dedafaa09115e1de72f517c3022899f15b0f559b68601a83a4ca3d48d02e0da96be4cfab36b15aad6e741aed8f07af954a2a58747423274", 0x59, 0x5, 0x0, 0x1, r2}, &(0x7f0000001200)={0x0, 0x0, 0x0, 0x7, 0x8001, r3, &(0x7f00000001c0)="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", 0x1000, 0x5, 0x0, 0x2, r4}, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x0, 0x7, r5, &(0x7f0000001240)="9134e53dc08beae9fe7e886287c63381a2e52c1527593e3288c11cf880c165eb019d3e1aa45c19050668a43765f8cfe918c39f550c242b207a5e38ba93adf1d43c927172e0fc2fe60f9e265f96a85710be249e250f2e9d45b4d7316cb32e65b4", 0x60, 0x1f, 0x0, 0x3}, &(0x7f0000001340)={0x0, 0x0, 0x0, 0x5, 0x6, r6, &(0x7f0000001300)="b7187cb41db19303b5364c1f08de39bf508363e43e1a2d503f05a65ad03d", 0x1e, 0x0, 0x0, 0x2}])

17:03:59 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xea, 0x0, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x3}, 0x160, 0x0, 0x0, 0x0, 0x7, 0x0, 0xfffe}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
getsockopt$SO_COOKIE(r1, 0x1, 0x39, &(0x7f0000000040), &(0x7f0000000100)=0x8)

17:03:59 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r1 = dup(r0)
setsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000040)={<r2=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f0000000380)={r2, 0x0, 0xffffffffffffffff, 0x200})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000080)={r2, 0x2, 0xffffffffffffffff, 0xfff})
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r3, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r3, 0x0, 0x6)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r4, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r5 = dup(r4)
setsockopt$bt_BT_DEFER_SETUP(r5, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
bind$bt_hci(r5, &(0x7f0000000040)={0x1f, 0x3, 0x3}, 0x6)

[ 3164.268924] FAULT_INJECTION: forcing a failure.
[ 3164.268924] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3164.271273] CPU: 0 UID: 0 PID: 21182 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3164.271322] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3164.271340] Call Trace:
[ 3164.271350]  <TASK>
[ 3164.271362]  dump_stack_lvl+0xfa/0x120
[ 3164.271399]  should_fail_ex+0x4d7/0x5e0
[ 3164.271444]  should_fail_alloc_page+0xe0/0x110
[ 3164.271492]  prepare_alloc_pages+0x1eb/0x550
[ 3164.271545]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3164.271588]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3164.271640]  ? lock_acquire+0x15e/0x2f0
[ 3164.271683]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3164.271732]  ? finish_task_switch.isra.0+0x206/0x840
[ 3164.271778]  ? trace_sched_exit_tp+0xbf/0x100
[ 3164.271815]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3164.271854]  ? policy_nodemask+0xeb/0x4e0
[ 3164.271900]  alloc_pages_mpol+0xed/0x340
[ 3164.271939]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3164.271983]  ? __pfx___sanitizer_cov_trace_pc+0x10/0x10
[ 3164.272042]  alloc_pages_noprof+0x9d/0x180
[ 3164.272084]  kimage_alloc_pages+0x70/0x240
[ 3164.272129]  kimage_alloc_page+0x14e/0x7e0
[ 3164.272183]  kimage_load_segment+0x424/0xc90
[ 3164.272238]  do_kexec_load+0x6bd/0x8a0
[ 3164.272285]  ? __pfx_do_kexec_load+0x10/0x10
[ 3164.272333]  ? _copy_from_user+0x5b/0xd0
[ 3164.272387]  __x64_sys_kexec_load+0x1c6/0x230
[ 3164.272438]  do_syscall_64+0xbf/0x3f0
[ 3164.272478]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3164.272513] RIP: 0033:0x7fd597aabb19
[ 3164.272536] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3164.272568] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3164.272598] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3164.272626] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3164.272644] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3164.272663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3164.272684] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3164.272732]  </TASK>
17:03:59 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 46)

17:03:59 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080), 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:03:59 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 80)

17:03:59 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x700, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 3164.399115] FAULT_INJECTION: forcing a failure.
[ 3164.399115] name failslab, interval 1, probability 0, space 0, times 0
[ 3164.400916] CPU: 1 UID: 0 PID: 21191 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3164.400947] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3164.400960] Call Trace:
[ 3164.400968]  <TASK>
[ 3164.400976]  dump_stack_lvl+0xfa/0x120
[ 3164.401006]  should_fail_ex+0x4d7/0x5e0
[ 3164.401039]  should_failslab+0xc2/0x120
[ 3164.401073]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3164.401101]  ? sock_def_readable+0x1bf/0x5b0
[ 3164.401130]  ? __alloc_skb+0x2ab/0x370
[ 3164.401157]  ? lock_is_held_type+0x9e/0x120
[ 3164.401195]  ? __alloc_skb+0x2ab/0x370
[ 3164.401221]  __alloc_skb+0x2ab/0x370
[ 3164.401249]  ? __pfx___alloc_skb+0x10/0x10
[ 3164.401276]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3164.401302]  ? sock_queue_rcv_skb_reason+0xd8/0x190
[ 3164.401343]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3164.401380]  create_monitor_event+0x3d7/0x930
[ 3164.401410]  hci_sock_bind+0xb22/0x1470
[ 3164.401439]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3164.401476]  __sys_bind+0x1dd/0x2b0
[ 3164.401503]  ? __pfx___sys_bind+0x10/0x10
[ 3164.401534]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3164.401567]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3164.401601]  ? ksys_write+0x1a3/0x240
[ 3164.401632]  ? __pfx_ksys_write+0x10/0x10
[ 3164.401669]  __x64_sys_bind+0x73/0xb0
[ 3164.401694]  do_syscall_64+0xbf/0x3f0
[ 3164.401718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3164.401741] RIP: 0033:0x7fbfee694b19
[ 3164.401758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3164.401780] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3164.401802] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3164.401817] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3164.401830] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3164.401844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3164.401857] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3164.401887]  </TASK>
[ 3164.457860] FAULT_INJECTION: forcing a failure.
[ 3164.457860] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3164.460060] CPU: 0 UID: 0 PID: 21194 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3164.460091] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3164.460105] Call Trace:
[ 3164.460113]  <TASK>
[ 3164.460122]  dump_stack_lvl+0xfa/0x120
[ 3164.460152]  should_fail_ex+0x4d7/0x5e0
[ 3164.460187]  should_fail_alloc_page+0xe0/0x110
[ 3164.460224]  prepare_alloc_pages+0x1eb/0x550
[ 3164.460255]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3164.460284]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3164.460307]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3164.460347]  ? pgprot2cachemode+0x9a/0x130
[ 3164.460375]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3164.460404]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3164.460434]  ? do_raw_read_unlock+0x44/0xe0
[ 3164.460457]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3164.460484]  ? policy_nodemask+0xeb/0x4e0
[ 3164.460509]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3164.460534]  ? policy_nodemask+0xeb/0x4e0
[ 3164.460560]  alloc_pages_mpol+0xed/0x340
[ 3164.460584]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3164.460611]  ? alloc_pages_noprof+0xb7/0x180
[ 3164.460652]  alloc_pages_noprof+0x9d/0x180
[ 3164.460693]  kimage_alloc_pages+0x70/0x240
[ 3164.460733]  kimage_alloc_page+0x14e/0x7e0
[ 3164.460766]  kimage_load_segment+0x424/0xc90
[ 3164.460799]  do_kexec_load+0x6bd/0x8a0
[ 3164.460827]  ? __pfx_do_kexec_load+0x10/0x10
[ 3164.460856]  ? _copy_from_user+0x5b/0xd0
[ 3164.460890]  __x64_sys_kexec_load+0x1c6/0x230
[ 3164.460921]  do_syscall_64+0xbf/0x3f0
[ 3164.460946]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3164.460970] RIP: 0033:0x7fd597aabb19
[ 3164.460988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3164.461010] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3164.461032] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3164.461050] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3164.461064] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3164.461078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3164.461092] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3164.461121]  </TASK>
17:03:59 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 47)

17:03:59 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
open(&(0x7f0000000040)='./file0\x00', 0x222400, 0x1e0)
write$bt_hci(r0, 0x0, 0x6)

17:03:59 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x2}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 3165.151451] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3165.153218] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:04:08 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 48)

17:04:08 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 81)

17:04:08 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x40}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffc01}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448e2, 0x0)
write$bt_hci(r0, &(0x7f0000000080)={0x1, @set_cpb={{0x441, 0xb}, {0x0, 0x4, 0xab, 0x4, 0x5, 0xbd2, 0x4}}}, 0xf)

17:04:08 executing program 6:
r0 = accept(0xffffffffffffffff, &(0x7f0000000100)=@l2tp6={0xa, 0x0, 0x0, @remote}, &(0x7f0000000000)=0x80)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_DISABLE_BEARER(r0, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x2c, r1, 0x4, 0x70bd26, 0x25dfdbfd, {{}, {}, {0x10, 0x13, @l2={'eth', 0x3a, 'ip6gre0\x00'}}}, [""]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x40080)
r2 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r2}], 0x1, 0xf8c6)
sendto$inet(r2, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:04:08 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x4}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:04:08 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
recvmmsg(r1, &(0x7f0000002900), 0x2, 0x10020, &(0x7f00000006c0))

17:04:08 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, 0x0, 0x0)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:04:08 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

[ 3173.566676] FAULT_INJECTION: forcing a failure.
[ 3173.566676] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3173.568607] CPU: 0 UID: 0 PID: 21216 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3173.568638] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3173.568651] Call Trace:
[ 3173.568658]  <TASK>
[ 3173.568667]  dump_stack_lvl+0xfa/0x120
[ 3173.568695]  should_fail_ex+0x4d7/0x5e0
[ 3173.568727]  should_fail_alloc_page+0xe0/0x110
[ 3173.568764]  prepare_alloc_pages+0x1eb/0x550
[ 3173.568793]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3173.568821]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3173.568844]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3173.568873]  ? pgprot2cachemode+0x9a/0x130
[ 3173.568899]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3173.568928]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3173.568958]  ? do_raw_read_unlock+0x44/0xe0
[ 3173.568981]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3173.569006]  ? policy_nodemask+0xeb/0x4e0
[ 3173.569031]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3173.569055]  ? policy_nodemask+0xeb/0x4e0
[ 3173.569082]  alloc_pages_mpol+0xed/0x340
[ 3173.569106]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3173.569132]  ? alloc_pages_noprof+0xb7/0x180
[ 3173.569161]  alloc_pages_noprof+0x9d/0x180
[ 3173.569188]  kimage_alloc_pages+0x70/0x240
[ 3173.569216]  kimage_alloc_page+0x14e/0x7e0
[ 3173.569248]  kimage_load_segment+0x424/0xc90
[ 3173.569282]  do_kexec_load+0x6bd/0x8a0
[ 3173.569310]  ? __pfx_do_kexec_load+0x10/0x10
[ 3173.569346]  ? _copy_from_user+0x5b/0xd0
[ 3173.569379]  __x64_sys_kexec_load+0x1c6/0x230
[ 3173.569410]  do_syscall_64+0xbf/0x3f0
[ 3173.569435]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3173.569457] RIP: 0033:0x7fd597aabb19
[ 3173.569474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3173.569496] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3173.569517] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3173.569532] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3173.569546] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3173.569559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3173.569573] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3173.569601]  </TASK>
17:04:08 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x109000, 0x0)
perf_event_open(0x0, 0x0, 0x400000000002, r1, 0x2)

17:04:08 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 49)

17:04:08 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 82)

17:04:08 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r1=>r0, {0x1}}, './file0\x00'})
ioctl$HCIINQUIRY(r1, 0x800448f0, &(0x7f00000000c0)={0x0, 0x2, "5ab976", 0x8, 0x1})

17:04:08 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

[ 3173.812237] FAULT_INJECTION: forcing a failure.
[ 3173.812237] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3173.814045] CPU: 0 UID: 0 PID: 21242 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3173.814076] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3173.814090] Call Trace:
[ 3173.814098]  <TASK>
[ 3173.814107]  dump_stack_lvl+0xfa/0x120
[ 3173.814135]  should_fail_ex+0x4d7/0x5e0
[ 3173.814168]  should_fail_alloc_page+0xe0/0x110
[ 3173.814204]  prepare_alloc_pages+0x1eb/0x550
[ 3173.814234]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3173.814262]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3173.814285]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3173.814321]  ? pgprot2cachemode+0x9a/0x130
[ 3173.814349]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3173.814377]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3173.814407]  ? do_raw_read_unlock+0x44/0xe0
[ 3173.814429]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3173.814454]  ? policy_nodemask+0xeb/0x4e0
[ 3173.814479]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3173.814503]  ? policy_nodemask+0xeb/0x4e0
[ 3173.814529]  alloc_pages_mpol+0xed/0x340
[ 3173.814554]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3173.814580]  ? alloc_pages_noprof+0xb7/0x180
[ 3173.814608]  alloc_pages_noprof+0x9d/0x180
[ 3173.814634]  kimage_alloc_pages+0x70/0x240
[ 3173.814662]  kimage_alloc_page+0x14e/0x7e0
[ 3173.814695]  kimage_load_segment+0x424/0xc90
[ 3173.814728]  do_kexec_load+0x6bd/0x8a0
[ 3173.814757]  ? __pfx_do_kexec_load+0x10/0x10
[ 3173.814786]  ? _copy_from_user+0x5b/0xd0
[ 3173.814819]  __x64_sys_kexec_load+0x1c6/0x230
[ 3173.814849]  do_syscall_64+0xbf/0x3f0
[ 3173.814874]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3173.814896] RIP: 0033:0x7fd597aabb19
[ 3173.814914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3173.814935] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3173.814957] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3173.814972] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3173.814985] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3173.814999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3173.815011] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3173.815040]  </TASK>
17:04:09 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = signalfd4(r0, &(0x7f0000000000)={[0x80]}, 0x8, 0x80000)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x6)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:04:09 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 50)

17:04:09 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:04:09 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 83)

17:04:09 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
write(r2, &(0x7f0000000d00)="e045bf542f66dd907a74c4778e03e870f741fc7ab2ab30944ca0c823d1a9cf607e4a68ceda75e7fa6d34ff2760d84ba5826ff52f4e9e2a83d930ce0e17464d4d5ddeb8b21ecdbc7d62e07c84bff67f00fe0317437b0bba3f0e2a4d78c30f79797cebc6377494c0640d0238a5935e2268c369ff05ec6a559522d98949243e74f02ec51f0cbed3836d61a62d8cb7859d4f1ce312680565577bc2284a4c67669e262953db7a5ffa8ac1b98e824c803d200f49fb77aacc46178fdae28dbb4ec003386dffdc7ee5c1082d6760360ccbc182a497f89489172e8fe7c2ad912cfabb13c05f5d0a", 0xe3)
r3 = dup(r1)
clock_gettime(0x0, &(0x7f0000000b00)={<r4=>0x0, <r5=>0x0})
r6 = accept$unix(r3, &(0x7f0000000b80)=@abs, &(0x7f0000000040)=0x6e)
recvmmsg$unix(r6, &(0x7f0000000a40)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f0000000400)=[{&(0x7f0000000040)}, {&(0x7f00000001c0)=""/70, 0x46}, {&(0x7f0000000240)=""/126, 0x7e}, {&(0x7f00000002c0)=""/100, 0x64}, {&(0x7f0000000340)=""/187, 0xbb}, {&(0x7f0000000140)=""/39, 0x27}], 0x6, &(0x7f0000000c00)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [<r7=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc8}}, {{&(0x7f0000000540)=@abs, 0x6e, &(0x7f0000000680)=[{&(0x7f00000005c0)=""/173, 0xad}], 0x1, &(0x7f00000006c0)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r8=>0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0xe0}}, {{&(0x7f00000007c0), 0x6e, &(0x7f00000009c0)=[{&(0x7f0000000840)=""/146, 0x92}, {&(0x7f0000000900)=""/139, 0x8b}], 0x2, &(0x7f0000000a00)}}], 0x3, 0x40000060, &(0x7f0000000b40)={r4, r5+60000000})
setsockopt$bt_BT_DEFER_SETUP(r8, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
setsockopt$bt_hci_HCI_DATA_DIR(r3, 0x0, 0x1, &(0x7f0000000000)=0x1f, 0x4)
mq_timedsend(r7, &(0x7f0000000480)="011eacf636fe65b2ecbd3de7e090d1aecfc2c114ba7e62811e02cc2456be66059fd80be3c985d538e3525f7b7d8e22674aee49351533d0d78ea8e709c6b7a4447cfbfdd82bcc0718552b42356357b425976521cfe4499c2611e6854ebf516625fc558298a946216f4e44f6", 0x6b, 0x100000001, &(0x7f0000000500)={0x77359400})

[ 3173.989408] FAULT_INJECTION: forcing a failure.
[ 3173.989408] name failslab, interval 1, probability 0, space 0, times 0
[ 3173.991073] CPU: 0 UID: 0 PID: 21254 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3173.991103] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3173.991116] Call Trace:
[ 3173.991124]  <TASK>
[ 3173.991133]  dump_stack_lvl+0xfa/0x120
[ 3173.991162]  should_fail_ex+0x4d7/0x5e0
[ 3173.991195]  should_failslab+0xc2/0x120
[ 3173.991230]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3173.991256]  ? sock_def_readable+0x1bf/0x5b0
[ 3173.991286]  ? __alloc_skb+0x2ab/0x370
[ 3173.991320]  ? lock_is_held_type+0x9e/0x120
[ 3173.991358]  ? __alloc_skb+0x2ab/0x370
[ 3173.991384]  __alloc_skb+0x2ab/0x370
[ 3173.991412]  ? __pfx___alloc_skb+0x10/0x10
[ 3173.991441]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3173.991467]  ? sock_queue_rcv_skb_reason+0xd8/0x190
[ 3173.991500]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3173.991538]  create_monitor_event+0x692/0x930
[ 3173.991568]  hci_sock_bind+0xa19/0x1470
[ 3173.991594]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3173.991629]  __sys_bind+0x1dd/0x2b0
[ 3173.991656]  ? __pfx___sys_bind+0x10/0x10
[ 3173.991687]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3173.991720]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3173.991754]  ? ksys_write+0x1a3/0x240
[ 3173.991785]  ? __pfx_ksys_write+0x10/0x10
[ 3173.991821]  __x64_sys_bind+0x73/0xb0
[ 3173.991847]  do_syscall_64+0xbf/0x3f0
[ 3173.991871]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3173.991894] RIP: 0033:0x7fbfee694b19
[ 3173.991911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3173.991931] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3173.991953] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3173.991968] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3173.991981] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3173.991994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3173.992007] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3173.992037]  </TASK>
[ 3174.048026] FAULT_INJECTION: forcing a failure.
[ 3174.048026] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3174.049923] CPU: 1 UID: 0 PID: 21260 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3174.049954] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3174.049968] Call Trace:
[ 3174.049977]  <TASK>
[ 3174.049985]  dump_stack_lvl+0xfa/0x120
[ 3174.050016]  should_fail_ex+0x4d7/0x5e0
[ 3174.050049]  should_fail_alloc_page+0xe0/0x110
[ 3174.050087]  prepare_alloc_pages+0x1eb/0x550
[ 3174.050117]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3174.050146]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3174.050169]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3174.050200]  ? pgprot2cachemode+0x9a/0x130
[ 3174.050228]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3174.050257]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3174.050287]  ? do_raw_read_unlock+0x44/0xe0
[ 3174.050317]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3174.050344]  ? policy_nodemask+0xeb/0x4e0
[ 3174.050369]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3174.050393]  ? policy_nodemask+0xeb/0x4e0
[ 3174.050419]  alloc_pages_mpol+0xed/0x340
[ 3174.050443]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3174.050469]  ? alloc_pages_noprof+0xb7/0x180
[ 3174.050498]  alloc_pages_noprof+0x9d/0x180
[ 3174.050524]  kimage_alloc_pages+0x70/0x240
[ 3174.050552]  kimage_alloc_page+0x14e/0x7e0
[ 3174.050585]  kimage_load_segment+0x424/0xc90
[ 3174.050618]  do_kexec_load+0x6bd/0x8a0
[ 3174.050646]  ? __pfx_do_kexec_load+0x10/0x10
[ 3174.050675]  ? _copy_from_user+0x5b/0xd0
[ 3174.050708]  __x64_sys_kexec_load+0x1c6/0x230
[ 3174.050738]  do_syscall_64+0xbf/0x3f0
[ 3174.050763]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3174.050786] RIP: 0033:0x7fd597aabb19
[ 3174.050804] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3174.050826] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3174.050848] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3174.050863] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3174.050877] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3174.050891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3174.050904] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3174.050933]  </TASK>
17:04:09 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:04:09 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:04:09 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 51)

17:04:09 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 84)

17:04:09 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r2 = accept4$unix(0xffffffffffffffff, &(0x7f00000001c0), &(0x7f0000000140)=0x6e, 0x80000)
ioctl$sock_SIOCOUTQNSD(r2, 0x894b, &(0x7f0000000240))
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
dup(0xffffffffffffffff)
getsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, &(0x7f0000000100), &(0x7f0000000280)=0xc)
r3 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
bind$bt_l2cap(r4, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r5 = dup(r4)
setsockopt$bt_BT_DEFER_SETUP(r5, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
bind$bt_hci(r5, &(0x7f0000000040)={0x1f, 0x4, 0x1}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x4, 0x1}, 0x6)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
r6 = getpgrp(0x0)
sched_setaffinity(r6, 0x8, &(0x7f00000000c0)=0xfffffffffffffffd)
perf_event_open(0x0, r6, 0x8, r3, 0x12)

17:04:09 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, 0x0, 0x0)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:04:09 executing program 6:
r0 = socket$inet(0x2, 0x40000, 0xfffffffb)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:04:09 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x1, 0x4}, 0x6)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000000080)={0x1, @create_logical_link={{0x438, 0x21}, {0xc8, {0x7, 0x7f, 0x7f, 0x10001, 0x6b, 0x3f}, {0xe4, 0x65, 0x7ff, 0x3ff, 0x1, 0x4}}}}, 0x25)
write$bt_hci(r0, 0x0, 0x6)

[ 3174.611620] FAULT_INJECTION: forcing a failure.
[ 3174.611620] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3174.613425] CPU: 1 UID: 0 PID: 21278 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3174.613455] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3174.613469] Call Trace:
[ 3174.613477]  <TASK>
[ 3174.613486]  dump_stack_lvl+0xfa/0x120
[ 3174.613516]  should_fail_ex+0x4d7/0x5e0
[ 3174.613549]  should_fail_alloc_page+0xe0/0x110
[ 3174.613585]  prepare_alloc_pages+0x1eb/0x550
[ 3174.613622]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3174.613655]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3174.613692]  ? lock_acquire+0x15e/0x2f0
[ 3174.613724]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3174.613757]  ? finish_task_switch.isra.0+0x206/0x840
[ 3174.613787]  ? trace_sched_exit_tp+0xbf/0x100
[ 3174.613810]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3174.613835]  ? policy_nodemask+0xeb/0x4e0
[ 3174.613862]  alloc_pages_mpol+0xed/0x340
[ 3174.613887]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3174.613913]  ? alloc_pages_noprof+0xb7/0x180
[ 3174.613942]  alloc_pages_noprof+0x9d/0x180
[ 3174.613968]  kimage_alloc_pages+0x70/0x240
[ 3174.613997]  kimage_alloc_page+0x14e/0x7e0
[ 3174.614030]  kimage_load_segment+0x424/0xc90
[ 3174.614063]  do_kexec_load+0x6bd/0x8a0
[ 3174.614091]  ? __pfx_do_kexec_load+0x10/0x10
[ 3174.614120]  ? _copy_from_user+0x5b/0xd0
[ 3174.614153]  __x64_sys_kexec_load+0x1c6/0x230
[ 3174.614184]  do_syscall_64+0xbf/0x3f0
[ 3174.614209]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3174.614232] RIP: 0033:0x7fd597aabb19
[ 3174.614249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3174.614271] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3174.614292] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3174.614308] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3174.614329] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3174.614343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3174.614356] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3174.614385]  </TASK>
17:04:09 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

[ 3174.736697] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3174.740510] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:04:20 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000), 0x6)
write$bt_hci(r0, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:04:20 executing program 6:
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000100)=ANY=[@ANYBLOB="0100"/12, @ANYRES32=<r0=>0xffffffffffffffff, @ANYBLOB="e4000000000000002e2f66696c653000"])
getsockopt$IPT_SO_GET_REVISION_MATCH(r0, 0x0, 0x42, &(0x7f0000000140)={'HL\x00'}, &(0x7f0000000180)=0x1e)
r1 = socket$inet(0x2, 0x80003, 0xff)
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_FLAG_CMD(r2, 0x8982, &(0x7f0000000000)={0x7, 'wg0\x00', {0x2}, 0x1000})
getsockopt$IPT_SO_GET_REVISION_TARGET(r1, 0x0, 0x43, &(0x7f0000000200)={'TPROXY\x00'}, &(0x7f0000000240)=0x1e)
poll(&(0x7f0000000080)=[{r1}], 0x1, 0xf8c6)
sendto$inet(r1, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:04:20 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 52)

17:04:20 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 85)

17:04:20 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r1 = dup(r0)
setsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$BLKIOMIN(r1, 0x1278, &(0x7f00000000c0))
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f0000000100)=0x2, &(0x7f0000000140)=0x2)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r3, 0x400448c9, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz1\x00', 0x1ff)

17:04:20 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
recvmsg(r1, &(0x7f0000000680)={&(0x7f0000000100)=@alg, 0x80, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/169, 0xa9}, {&(0x7f0000000280)=""/146, 0x92}, {&(0x7f0000000340)=""/219, 0xdb}, {&(0x7f0000000440)=""/62, 0x3e}, {&(0x7f0000000480)=""/158, 0x9e}, {&(0x7f0000000540)=""/33, 0x21}, {&(0x7f0000000580)=""/40, 0x28}], 0x7, &(0x7f0000000640)=""/34, 0x22}, 0x100)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
sendto$inet(0xffffffffffffffff, &(0x7f00000006c0)="bbebf6c9417aab3a2219ef43c07feaca7023718e2d5722", 0x17, 0x800, &(0x7f0000000700)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
bind$bt_l2cap(r3, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r4 = dup(r3)
setsockopt$bt_BT_DEFER_SETUP(r4, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
bind$bt_l2cap(r4, &(0x7f0000000180)={0x1f, 0x0, @any, 0x0, 0x2}, 0xe)
r5 = dup(r2)
write$bt_hci(r0, &(0x7f0000000080)={0x1, @le_ext_create_conn={{0x2043, 0x48}, {0x4, 0x1, 0x6, @none, 0x7, "7d3e8cb59c37689d2d412a731e79fda9454c5a937a8a42ae838f1fd1d8b76289cfda5984f45dc089b81a45b8d7342ac657672e1f1477051be602238aec9c"}}}, 0x4c)
setsockopt$bt_BT_DEFER_SETUP(r5, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$HCIINQUIRY(r5, 0x800448f0, &(0x7f0000000040)={0xffffffffffffffff, 0x1, "1bfa8a", 0x81})
write$bt_hci(r0, 0x0, 0x6)

17:04:20 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:04:20 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x4e, 0x0, 0x6, 0x6, 0x0, 0x10000, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, @perf_config_ext={0x803d, 0x5b}, 0x14, 0xfffffffffffff6da, 0x2, 0x5, 0x0, 0x200, 0x7fff, 0x0, 0x10000, 0x0, 0x7}, 0xffffffffffffffff, 0x9, r1, 0x0)
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
r3 = dup3(r2, r2, 0x0)
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x3f, &(0x7f0000000100)=0x20, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
fstat(r2, &(0x7f0000000140))

[ 3184.924712] FAULT_INJECTION: forcing a failure.
[ 3184.924712] name fail_page_alloc, interval 1, probability 0, space 0, times 0
17:04:20 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 53)

[ 3184.926831] CPU: 1 UID: 0 PID: 21300 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3184.926868] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3184.926884] Call Trace:
[ 3184.926894]  <TASK>
[ 3184.926904]  dump_stack_lvl+0xfa/0x120
[ 3184.926938]  should_fail_ex+0x4d7/0x5e0
[ 3184.926976]  should_fail_alloc_page+0xe0/0x110
[ 3184.927019]  prepare_alloc_pages+0x1eb/0x550
[ 3184.927055]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3184.927088]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3184.927116]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3184.927151]  ? pgprot2cachemode+0x9a/0x130
[ 3184.927183]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3184.927217]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3184.927253]  ? do_raw_read_unlock+0x44/0xe0
[ 3184.927279]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3184.927309]  ? policy_nodemask+0xeb/0x4e0
[ 3184.927346]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3184.927375]  ? policy_nodemask+0xeb/0x4e0
[ 3184.927407]  alloc_pages_mpol+0xed/0x340
[ 3184.927436]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3184.927468]  ? alloc_pages_noprof+0xb7/0x180
[ 3184.927502]  alloc_pages_noprof+0x9d/0x180
[ 3184.927534]  kimage_alloc_pages+0x70/0x240
[ 3184.927567]  kimage_alloc_page+0x14e/0x7e0
[ 3184.927606]  kimage_load_segment+0x424/0xc90
[ 3184.927646]  do_kexec_load+0x6bd/0x8a0
[ 3184.927680]  ? __pfx_do_kexec_load+0x10/0x10
[ 3184.927715]  ? _copy_from_user+0x5b/0xd0
[ 3184.927754]  __x64_sys_kexec_load+0x1c6/0x230
[ 3184.927790]  do_syscall_64+0xbf/0x3f0
[ 3184.927820]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3184.927846] RIP: 0033:0x7fd597aabb19
[ 3184.927866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3184.927893] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3184.927918] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3184.927937] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3184.927953] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3184.927968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3184.927984] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3184.928018]  </TASK>
17:04:20 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 54)

[ 3185.048191] FAULT_INJECTION: forcing a failure.
[ 3185.048191] name failslab, interval 1, probability 0, space 0, times 0
[ 3185.050554] CPU: 0 UID: 0 PID: 21319 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3185.050587] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3185.050602] Call Trace:
[ 3185.050610]  <TASK>
[ 3185.050619]  dump_stack_lvl+0xfa/0x120
[ 3185.050650]  should_fail_ex+0x4d7/0x5e0
[ 3185.050685]  should_failslab+0xc2/0x120
[ 3185.050721]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3185.050750]  ? sock_def_readable+0x1bf/0x5b0
[ 3185.050781]  ? __alloc_skb+0x2ab/0x370
[ 3185.050810]  ? lock_is_held_type+0x9e/0x120
[ 3185.050850]  ? __alloc_skb+0x2ab/0x370
[ 3185.050878]  __alloc_skb+0x2ab/0x370
[ 3185.050909]  ? __pfx___alloc_skb+0x10/0x10
[ 3185.050945]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3185.050972]  ? sock_queue_rcv_skb_reason+0xd8/0x190
[ 3185.051009]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3185.051049]  create_monitor_event+0x65/0x930
[ 3185.051080]  hci_sock_bind+0xab2/0x1470
[ 3185.051109]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3185.051147]  __sys_bind+0x1dd/0x2b0
[ 3185.051175]  ? __pfx___sys_bind+0x10/0x10
[ 3185.051208]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3185.051243]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3185.051280]  ? ksys_write+0x1a3/0x240
[ 3185.051319]  ? __pfx_ksys_write+0x10/0x10
[ 3185.051358]  __x64_sys_bind+0x73/0xb0
[ 3185.051386]  do_syscall_64+0xbf/0x3f0
[ 3185.051412]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3185.051436] RIP: 0033:0x7fbfee694b19
[ 3185.051455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3185.051478] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3185.051502] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3185.051518] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3185.051533] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3185.051547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3185.051561] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3185.051593]  </TASK>
17:04:20 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:04:20 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 86)

[ 3185.175783] FAULT_INJECTION: forcing a failure.
[ 3185.175783] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3185.177920] CPU: 0 UID: 0 PID: 21327 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3185.177952] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3185.177966] Call Trace:
[ 3185.177975]  <TASK>
[ 3185.177985]  dump_stack_lvl+0xfa/0x120
[ 3185.178014]  should_fail_ex+0x4d7/0x5e0
[ 3185.178048]  should_fail_alloc_page+0xe0/0x110
[ 3185.178087]  prepare_alloc_pages+0x1eb/0x550
[ 3185.178118]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3185.178148]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3185.178173]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3185.178204]  ? pgprot2cachemode+0x9a/0x130
[ 3185.178233]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3185.178264]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3185.178296]  ? do_raw_read_unlock+0x44/0xe0
[ 3185.178327]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3185.178355]  ? policy_nodemask+0xeb/0x4e0
[ 3185.178382]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3185.178407]  ? policy_nodemask+0xeb/0x4e0
[ 3185.178436]  alloc_pages_mpol+0xed/0x340
[ 3185.178462]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3185.178490]  ? alloc_pages_noprof+0xb7/0x180
[ 3185.178521]  alloc_pages_noprof+0x9d/0x180
[ 3185.178549]  kimage_alloc_pages+0x70/0x240
[ 3185.178579]  kimage_alloc_page+0x14e/0x7e0
[ 3185.178614]  kimage_load_segment+0x424/0xc90
[ 3185.178649]  do_kexec_load+0x6bd/0x8a0
[ 3185.178680]  ? __pfx_do_kexec_load+0x10/0x10
[ 3185.178711]  ? _copy_from_user+0x5b/0xd0
[ 3185.178747]  __x64_sys_kexec_load+0x1c6/0x230
[ 3185.178779]  do_syscall_64+0xbf/0x3f0
[ 3185.178806]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3185.178830] RIP: 0033:0x7fd597aabb19
[ 3185.178848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3185.178872] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3185.178895] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3185.178911] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3185.178925] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3185.178940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3185.178954] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3185.178985]  </TASK>
17:04:20 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
socketpair(0xb, 0x3, 0x1, &(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_TIOCOUTQ(r3, 0x5411, &(0x7f00000000c0))
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
write$bt_hci(r2, &(0x7f0000000000)={0x1, @read_enc_key_size={{0x1408, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:04:20 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 87)

17:04:20 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 55)

[ 3185.342706] FAULT_INJECTION: forcing a failure.
[ 3185.342706] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3185.344719] CPU: 0 UID: 0 PID: 21336 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3185.344752] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3185.344767] Call Trace:
[ 3185.344775]  <TASK>
[ 3185.344784]  dump_stack_lvl+0xfa/0x120
[ 3185.344815]  should_fail_ex+0x4d7/0x5e0
[ 3185.344849]  should_fail_alloc_page+0xe0/0x110
[ 3185.344887]  prepare_alloc_pages+0x1eb/0x550
[ 3185.344919]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3185.344948]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3185.344974]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3185.345005]  ? pgprot2cachemode+0x9a/0x130
[ 3185.345033]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3185.345064]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3185.345096]  ? do_raw_read_unlock+0x44/0xe0
[ 3185.345120]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3185.345147]  ? policy_nodemask+0xeb/0x4e0
[ 3185.345173]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3185.345198]  ? policy_nodemask+0xeb/0x4e0
[ 3185.345226]  alloc_pages_mpol+0xed/0x340
[ 3185.345252]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3185.345280]  ? alloc_pages_noprof+0xb7/0x180
[ 3185.345318]  alloc_pages_noprof+0x9d/0x180
[ 3185.345346]  kimage_alloc_pages+0x70/0x240
[ 3185.345376]  kimage_alloc_page+0x14e/0x7e0
[ 3185.345411]  kimage_load_segment+0x424/0xc90
[ 3185.345446]  do_kexec_load+0x6bd/0x8a0
[ 3185.345476]  ? __pfx_do_kexec_load+0x10/0x10
[ 3185.345507]  ? _copy_from_user+0x5b/0xd0
[ 3185.345542]  __x64_sys_kexec_load+0x1c6/0x230
[ 3185.345574]  do_syscall_64+0xbf/0x3f0
[ 3185.345601]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3185.345624] RIP: 0033:0x7fd597aabb19
[ 3185.345642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3185.345665] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3185.345688] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3185.345705] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3185.345719] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3185.345733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3185.345748] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3185.345778]  </TASK>
17:04:20 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

[ 3185.864159] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:04:29 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 56)

17:04:29 executing program 6:
r0 = socket$inet6(0xa, 0x4, 0x4)
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x1, 0x4)
r1 = socket$inet(0x2, 0x80003, 0xff)
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
ioctl$sock_SIOCOUTQ(r2, 0x5411, &(0x7f0000000100))
poll(&(0x7f0000000080)=[{r1}], 0x1, 0xf8c6)
getsockopt$IPT_SO_GET_INFO(r2, 0x0, 0x40, &(0x7f0000000140)={'raw\x00', 0x0, [0x3, 0x0, 0x3ff, 0x6, 0x1]}, &(0x7f0000000200)=0x54)
sendto$inet(r1, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:04:29 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r1 = dup(r0)
setsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xffff}}, './file0\x00'})
recvmmsg(0xffffffffffffffff, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(0xffffffffffffffff, 0x0, 0x6)

17:04:29 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 88)

17:04:29 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r1)

17:04:29 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:04:29 executing program 3:
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r0 = dup(0xffffffffffffffff)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
getsockname$inet(r0, &(0x7f0000000200), &(0x7f0000000240)=0x10)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x141000, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [{@fowner_lt}, {@measure}, {@dont_hash}, {@uid_gt={'uid>', 0xee00}}, {@subj_user={'subj_user', 0x3d, '&#+)*:(\\*'}}, {@audit}, {@measure}, {@obj_role={'obj_role', 0x3d, '/.'}}, {@obj_type={'obj_type', 0x3d, '$'}}]}})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r2, 0x400448c9, 0x0)

17:04:29 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000), 0x6)
write$bt_hci(0xffffffffffffffff, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

[ 3194.046978] FAULT_INJECTION: forcing a failure.
[ 3194.046978] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3194.049152] CPU: 0 UID: 0 PID: 21357 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3194.049188] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3194.049204] Call Trace:
[ 3194.049213]  <TASK>
[ 3194.049223]  dump_stack_lvl+0xfa/0x120
[ 3194.049256]  should_fail_ex+0x4d7/0x5e0
[ 3194.049294]  should_fail_alloc_page+0xe0/0x110
[ 3194.049345]  prepare_alloc_pages+0x1eb/0x550
[ 3194.049380]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3194.049414]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3194.049442]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3194.049477]  ? pgprot2cachemode+0x9a/0x130
[ 3194.049508]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3194.049542]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3194.049579]  ? do_raw_read_unlock+0x44/0xe0
[ 3194.049605]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3194.049635]  ? policy_nodemask+0xeb/0x4e0
[ 3194.049665]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3194.049693]  ? policy_nodemask+0xeb/0x4e0
[ 3194.049725]  alloc_pages_mpol+0xed/0x340
[ 3194.049754]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3194.049785]  ? alloc_pages_noprof+0xb7/0x180
[ 3194.049820]  alloc_pages_noprof+0x9d/0x180
[ 3194.049851]  kimage_alloc_pages+0x70/0x240
[ 3194.049884]  kimage_alloc_page+0x14e/0x7e0
[ 3194.049923]  kimage_load_segment+0x424/0xc90
[ 3194.049963]  do_kexec_load+0x6bd/0x8a0
[ 3194.049996]  ? __pfx_do_kexec_load+0x10/0x10
[ 3194.050031]  ? _copy_from_user+0x5b/0xd0
[ 3194.050070]  __x64_sys_kexec_load+0x1c6/0x230
[ 3194.050107]  do_syscall_64+0xbf/0x3f0
[ 3194.050136]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3194.050163] RIP: 0033:0x7fd597aabb19
[ 3194.050183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3194.050209] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3194.050234] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3194.050252] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3194.050268] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3194.050285] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3194.050301] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3194.050335]  </TASK>
17:04:29 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$sock_bt_hci(r2, 0x400448e2, &(0x7f0000000040)="a0eaea61dcd5127ca792b7d74d4986dfcd22c71e15b7376a6378e44758")
write$bt_hci(r0, 0x0, 0x6)

[ 3194.933003] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3194.938820] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:04:39 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000080)={0x4, 0x80, 0x7, 0x80, 0x0, 0x5, 0x0, 0x1, 0x40, 0x5, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x7, 0x1, @perf_config_ext={0x3, 0x1}, 0xc020, 0x7fffffff, 0x5, 0x2, 0x9, 0x0, 0xfdf9, 0x0, 0x5, 0x0, 0xffffffffffff480c}, 0xffffffffffffffff, 0xffffffffffffffff, r1, 0x2)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

17:04:39 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 57)

17:04:39 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:04:39 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$sock_bt_hci(r2, 0x800448d4, &(0x7f0000000040)="b6aecd12bd2d268ef890732053c7078736dde495d322bc9e631ca1dc6d21b93e48506530f1bf8d19881b0540b9ba373debb1b550e6bbb1da99b14326a6b2b5")
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x2, 0xff, 0x7f, 0x29, 0x0, 0x6, 0x80, 0x8, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x3, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x82f9, 0x1, @perf_bp, 0x802, 0x7, 0x6, 0x8, 0x400000000, 0x6, 0x7218, 0x0, 0x0, 0x0, 0xc20}, 0xffffffffffffffff, 0x4, 0xffffffffffffffff, 0x2)

17:04:39 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 89)

17:04:39 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xfffb, 0x2}, 0x6)
r1 = syz_open_dev$vcsa(&(0x7f0000000040), 0x3, 0x3)
ioctl$HCIINQUIRY(0xffffffffffffffff, 0x800448f0, &(0x7f0000000100)={0x2, 0x6, '[(\"', 0x0, 0x3})
ioctl$sock_bt_hci(r1, 0x400448df, &(0x7f0000000080)="66fb9f70fe33b2e446f4c62ee420a099265cdc15dd4f1cb41b37d44e0a2e916a2370211ff0e7586ea0c2cd5c40fdc2948ef77e95e41328d957cff21dbc5b5b222066b893c0bff0d8eef68c7ea32d21001169d27ee1134d2d05d1")
write$bt_hci(r0, 0x0, 0x6)

17:04:39 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000), 0x6)
write$bt_hci(0xffffffffffffffff, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:04:39 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f00000007c0)=@filter={'filter\x00', 0xe, 0x5, 0x6ae, [0x0, 0x20000100, 0x200002be, 0x20000444], 0x0, &(0x7f0000000000), &(0x7f0000000100)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{0x9, 0x13, 0x88f8, 'ip6tnl0\x00', 'rose0\x00', 'wg1\x00', 'veth1_to_bond\x00', @local, [0xff, 0x0, 0x0, 0xa116b29bcb7f1619, 0xff, 0xff], @dev={'\xaa\xaa\xaa\xaa\xaa', 0x35}, [0x0, 0xff, 0x0, 0x0, 0xff], 0x116, 0x116, 0x18e, [@ip6={{'ip6\x00', 0x0, 0x50}, {{@private2, @mcast1, [0xff, 0xffffffff, 0xffffffff, 0xffffffff], [0xffffffff, 0xffffff00, 0xffffff00], 0x0, 0x2b, 0x40, 0x28, 0x4e22, 0x4e24, 0x4e21, 0x4e21}}}, @cpu={{'cpu\x00', 0x0, 0x8}, {{0x5, 0x1}}}], [], @common=@nflog={'nflog\x00', 0x50, {{0x8, 0x1, 0x2, 0x0, 0x0, "cba30765a4572a1f50c8f0d3726785a125d110ea9b64870477e8bc062ef4667b5863267d47728f8f4dbc1b049af5333680664b48d83a4c115f90eb3e760f0cf1"}}}}]}, {0x0, '\x00', 0x1, 0xfffffffffffffffe, 0x1, [{0x5, 0x48, 0x8808, 'veth0_virt_wifi\x00', 'veth1\x00', 'bridge_slave_1\x00', 'geneve1\x00', @random="df409ec31157", [0x0, 0x0, 0xff, 0xff], @remote, [0xff, 0xff, 0xff, 0x0, 0x0, 0xff], 0x6e, 0x106, 0x156, [], [@common=@ERROR={'ERROR\x00', 0x20, {"02103965a5d966ffad785ad962c484fe2cdfeedd77b8d02ac3f80e89eaf0"}}, @common=@log={'log\x00', 0x28, {{0x4, "b61e1431fe4d2cd4c72380586523fa76717c1c7865cc33f3802fe76eeb76", 0xc}}}], @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x6, 'syz0\x00', {0x3ff}}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffe, 0x2, [{0x5, 0x40, 0xfd14, 'macvtap0\x00', 'vxcan1\x00', 'veth1\x00', 'veth1_to_bond\x00', @random="44f442ce9942", [0xff, 0x0, 0x0, 0x0, 0xff], @local, [0xff, 0xff, 0x0, 0xff, 0x0, 0xff], 0xa6, 0xa6, 0xde, [@mac={{'mac\x00', 0x0, 0x10}, {{@multicast}}}], [], @common=@dnat={'dnat\x00', 0x10, {{@broadcast, 0xffffffffffffffff}}}}, {0x11, 0x61, 0x8917, 'team_slave_0\x00', 'ip6tnl0\x00', 'syzkaller1\x00', 'veth1_vlan\x00', @remote, [0xff, 0xff], @broadcast, [0x0, 0x0, 0xff], 0xa6, 0x11e, 0x156, [@mac={{'mac\x00', 0x0, 0x10}, {{@broadcast, 0x1}}}], [@common=@NFLOG={'NFLOG\x00', 0x50, {{0xfffffff9, 0x5f0, 0x7fff, 0x1, 0x0, "ec348bd122bfacfa8f73ceccf2788eb96b7ca0565271f2f306a279e508fabdcb5157c50028f6d46a6ad2c0bdb84d06ebd3c89104ec6c68a2a197ac316214876a"}}}], @common=@mark={'mark\x00', 0x10, {{0xfffffff0, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x4, 0xffffffffffffffff, 0x1, [{0x5, 0x0, 0x5, 'veth1_macvtap\x00', 'bond0\x00', 'erspan0\x00', 'netpci0\x00', @dev={'\xaa\xaa\xaa\xaa\xaa', 0x29}, [0xff, 0xff, 0x0, 0x0, 0xff, 0xff], @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2e}, [0x0, 0x0, 0x0, 0xff, 0x0, 0xff], 0x6e, 0xa6, 0xd6, [], [@common=@dnat={'dnat\x00', 0x10, {{@remote, 0xfffffffffffffffd}}}], @common=@STANDARD={'\x00', 0x8, {0xfffffffffffffffe}}}]}]}, 0x726)

17:04:39 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 58)

[ 3204.237481] FAULT_INJECTION: forcing a failure.
[ 3204.237481] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3204.239699] CPU: 1 UID: 0 PID: 21398 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3204.239736] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3204.239753] Call Trace:
[ 3204.239762]  <TASK>
[ 3204.239772]  dump_stack_lvl+0xfa/0x120
[ 3204.239805]  should_fail_ex+0x4d7/0x5e0
[ 3204.239843]  should_fail_alloc_page+0xe0/0x110
[ 3204.239885]  prepare_alloc_pages+0x1eb/0x550
[ 3204.239920]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3204.239954]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3204.239982]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3204.240017]  ? pgprot2cachemode+0x9a/0x130
[ 3204.240049]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3204.240083]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3204.240119]  ? do_raw_read_unlock+0x44/0xe0
[ 3204.240145]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3204.240175]  ? policy_nodemask+0xeb/0x4e0
[ 3204.240205]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3204.240234]  ? policy_nodemask+0xeb/0x4e0
[ 3204.240266]  alloc_pages_mpol+0xed/0x340
[ 3204.240295]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3204.240336]  ? alloc_pages_noprof+0xb7/0x180
[ 3204.240371]  alloc_pages_noprof+0x9d/0x180
[ 3204.240402]  kimage_alloc_pages+0x70/0x240
[ 3204.240436]  kimage_alloc_page+0x14e/0x7e0
[ 3204.240475]  kimage_load_segment+0x424/0xc90
[ 3204.240528]  do_kexec_load+0x6bd/0x8a0
[ 3204.240562]  ? __pfx_do_kexec_load+0x10/0x10
[ 3204.240597]  ? _copy_from_user+0x5b/0xd0
[ 3204.240636]  __x64_sys_kexec_load+0x1c6/0x230
[ 3204.240673]  do_syscall_64+0xbf/0x3f0
[ 3204.240702]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3204.240729] RIP: 0033:0x7fd597aabb19
[ 3204.240749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3204.240775] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3204.240800] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3204.240819] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3204.240835] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3204.240851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3204.240867] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3204.240901]  </TASK>
[ 3204.257170] FAULT_INJECTION: forcing a failure.
[ 3204.257170] name failslab, interval 1, probability 0, space 0, times 0
[ 3204.267627] CPU: 0 UID: 0 PID: 21403 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3204.267646] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3204.267655] Call Trace:
[ 3204.267660]  <TASK>
[ 3204.267665]  dump_stack_lvl+0xfa/0x120
[ 3204.267685]  should_fail_ex+0x4d7/0x5e0
[ 3204.267706]  should_failslab+0xc2/0x120
[ 3204.267727]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3204.267744]  ? sock_def_readable+0x1bf/0x5b0
[ 3204.267762]  ? __alloc_skb+0x2ab/0x370
[ 3204.267778]  ? lock_is_held_type+0x9e/0x120
[ 3204.267800]  ? __alloc_skb+0x2ab/0x370
[ 3204.267814]  __alloc_skb+0x2ab/0x370
[ 3204.267830]  ? __pfx___alloc_skb+0x10/0x10
[ 3204.267845]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3204.267861]  ? sock_queue_rcv_skb_reason+0xd8/0x190
[ 3204.267880]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3204.267900]  create_monitor_event+0x3d7/0x930
[ 3204.267918]  hci_sock_bind+0xb22/0x1470
[ 3204.267933]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3204.267952]  __sys_bind+0x1dd/0x2b0
[ 3204.267967]  ? __pfx___sys_bind+0x10/0x10
[ 3204.267984]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3204.268003]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3204.268022]  ? ksys_write+0x1a3/0x240
[ 3204.268040]  ? __pfx_ksys_write+0x10/0x10
[ 3204.268060]  __x64_sys_bind+0x73/0xb0
[ 3204.268074]  do_syscall_64+0xbf/0x3f0
[ 3204.268088]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3204.268102] RIP: 0033:0x7fbfee694b19
[ 3204.268111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3204.268123] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3204.268135] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3204.268144] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3204.268151] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3204.268159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3204.268167] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3204.268183]  </TASK>
17:04:39 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
setsockopt$bt_hci_HCI_TIME_STAMP(r0, 0x0, 0x3, &(0x7f0000000000), 0x4)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:04:39 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 59)

17:04:39 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:04:39 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 90)

[ 3204.371614] FAULT_INJECTION: forcing a failure.
[ 3204.371614] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3204.372777] CPU: 0 UID: 0 PID: 21413 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3204.372798] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3204.372806] Call Trace:
[ 3204.372811]  <TASK>
[ 3204.372816]  dump_stack_lvl+0xfa/0x120
[ 3204.372835]  should_fail_ex+0x4d7/0x5e0
[ 3204.372856]  should_fail_alloc_page+0xe0/0x110
[ 3204.372879]  prepare_alloc_pages+0x1eb/0x550
[ 3204.372902]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3204.372920]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3204.372943]  ? lock_acquire+0x15e/0x2f0
[ 3204.372964]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3204.372982]  ? finish_task_switch.isra.0+0x206/0x840
[ 3204.373000]  ? trace_sched_exit_tp+0xbf/0x100
[ 3204.373013]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3204.373029]  ? policy_nodemask+0xeb/0x4e0
[ 3204.373047]  alloc_pages_mpol+0xed/0x340
[ 3204.373062]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3204.373080]  ? __sanitizer_cov_trace_const_cmp4+0x8/0x20
[ 3204.373095]  alloc_pages_noprof+0x9d/0x180
[ 3204.373112]  kimage_alloc_pages+0x70/0x240
[ 3204.373129]  kimage_alloc_page+0x14e/0x7e0
[ 3204.373149]  kimage_load_segment+0x424/0xc90
[ 3204.373168]  do_kexec_load+0x6bd/0x8a0
[ 3204.373187]  ? __pfx_do_kexec_load+0x10/0x10
[ 3204.373204]  ? _copy_from_user+0x5b/0xd0
[ 3204.373223]  __x64_sys_kexec_load+0x1c6/0x230
[ 3204.373242]  do_syscall_64+0xbf/0x3f0
[ 3204.373257]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3204.373270] RIP: 0033:0x7fd597aabb19
[ 3204.373281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3204.373296] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3204.373314] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3204.373326] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3204.373337] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3204.373347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3204.373358] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3204.373377]  </TASK>
17:04:39 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 60)

17:04:39 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 91)

17:04:39 executing program 5:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r1 = dup(r0)
setsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0xf, &(0x7f0000001080)=0x6, 0x4)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0x300, 0x4}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 3204.449037] FAULT_INJECTION: forcing a failure.
[ 3204.449037] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3204.450026] CPU: 0 UID: 0 PID: 21419 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3204.450047] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3204.450056] Call Trace:
[ 3204.450061]  <TASK>
[ 3204.450066]  dump_stack_lvl+0xfa/0x120
[ 3204.450083]  should_fail_ex+0x4d7/0x5e0
[ 3204.450102]  should_fail_alloc_page+0xe0/0x110
[ 3204.450124]  prepare_alloc_pages+0x1eb/0x550
[ 3204.450145]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3204.450164]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3204.450184]  ? lock_acquire+0x15e/0x2f0
[ 3204.450203]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3204.450220]  ? finish_task_switch.isra.0+0x206/0x840
[ 3204.450236]  ? trace_sched_exit_tp+0xbf/0x100
[ 3204.450248]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3204.450262]  ? policy_nodemask+0xeb/0x4e0
[ 3204.450278]  alloc_pages_mpol+0xed/0x340
[ 3204.450291]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3204.450305]  ? alloc_pages_noprof+0xb7/0x180
[ 3204.450321]  alloc_pages_noprof+0x9d/0x180
[ 3204.450335]  kimage_alloc_pages+0x70/0x240
[ 3204.450353]  kimage_alloc_page+0x14e/0x7e0
[ 3204.450374]  kimage_load_segment+0x424/0xc90
[ 3204.450393]  do_kexec_load+0x6bd/0x8a0
[ 3204.450408]  ? __pfx_do_kexec_load+0x10/0x10
[ 3204.450424]  ? _copy_from_user+0x5b/0xd0
[ 3204.450442]  __x64_sys_kexec_load+0x1c6/0x230
[ 3204.450458]  do_syscall_64+0xbf/0x3f0
[ 3204.450472]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3204.450485] RIP: 0033:0x7fd597aabb19
[ 3204.450495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3204.450506] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3204.450518] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3204.450527] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3204.450535] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3204.450542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3204.450550] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3204.450565]  </TASK>
[ 3205.040991] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:04:40 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x404000, 0x180)
getsockopt$IP_VS_SO_GET_VERSION(r1, 0x0, 0x480, &(0x7f00000000c0), &(0x7f0000000100)=0x40)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

17:04:40 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 61)

17:04:40 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 92)

17:04:40 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
r1 = syz_open_dev$mouse(&(0x7f0000000000), 0x400, 0x0)
perf_event_open(0x0, 0x0, 0x0, r1, 0x0)

17:04:40 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:04:40 executing program 1:
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000400)=ANY=[@ANYBLOB="0000000000000000000000d5607e32486c186f17821892b15f016bfba0752a19a2b9a9306420024a002d", @ANYRES32, @ANYRES16, @ANYRES32=<r0=>0x0, @ANYRESOCT=0x0])
getgroups(0x5, &(0x7f0000000380)=[0xee00, 0xffffffffffffffff, 0xee00, 0xffffffffffffffff, r0])
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r1, &(0x7f00000002c0)=[{{&(0x7f0000000040)=@qipcrtr, 0x80, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/218, 0xda}], 0x1, &(0x7f0000000200)=""/160, 0xa0}, 0x1000}], 0x1, 0x2022, 0x0)
r2 = openat$incfs(0xffffffffffffffff, &(0x7f0000000300)='.pending_reads\x00', 0x400200, 0x130)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2, 0x2}, 0x6)
write$bt_hci(r1, 0x0, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)

[ 3205.163277] FAULT_INJECTION: forcing a failure.
[ 3205.163277] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3205.165593] CPU: 1 UID: 0 PID: 21441 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3205.165626] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3205.165640] Call Trace:
[ 3205.165647]  <TASK>
[ 3205.165656]  dump_stack_lvl+0xfa/0x120
[ 3205.165685]  should_fail_ex+0x4d7/0x5e0
[ 3205.165718]  should_fail_alloc_page+0xe0/0x110
[ 3205.165754]  prepare_alloc_pages+0x1eb/0x550
[ 3205.165785]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3205.165813]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3205.165836]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3205.165866]  ? pgprot2cachemode+0x9a/0x130
[ 3205.165893]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3205.165921]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3205.165951]  ? do_raw_read_unlock+0x44/0xe0
[ 3205.165973]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3205.165999]  ? policy_nodemask+0xeb/0x4e0
[ 3205.166024]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3205.166048]  ? policy_nodemask+0xeb/0x4e0
[ 3205.166074]  alloc_pages_mpol+0xed/0x340
[ 3205.166099]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3205.166125]  ? alloc_pages_noprof+0xb7/0x180
[ 3205.166154]  alloc_pages_noprof+0x9d/0x180
[ 3205.166180]  kimage_alloc_pages+0x70/0x240
[ 3205.166208]  kimage_alloc_page+0x14e/0x7e0
[ 3205.166240]  kimage_load_segment+0x424/0xc90
[ 3205.166274]  do_kexec_load+0x6bd/0x8a0
[ 3205.166302]  ? __pfx_do_kexec_load+0x10/0x10
[ 3205.166339]  ? _copy_from_user+0x5b/0xd0
[ 3205.166372]  __x64_sys_kexec_load+0x1c6/0x230
[ 3205.166402]  do_syscall_64+0xbf/0x3f0
[ 3205.166427]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3205.166450] RIP: 0033:0x7fd597aabb19
[ 3205.166467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3205.166487] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3205.166508] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3205.166524] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3205.166537] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3205.166550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3205.166562] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3205.166591]  </TASK>
[ 3206.094926] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3206.096138] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:04:49 executing program 3:
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x2000}, 0x4)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
bind$bt_hci(r0, &(0x7f00000000c0)={0x1f, 0x4, 0x1}, 0x6)

17:04:49 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000100)={<r1=>0x0})
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f0000000000)={r1, 0x1, r2, 0x8})

17:04:49 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 62)

17:04:49 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000), 0x6)
write$bt_hci(0xffffffffffffffff, &(0x7f0000001040)=ANY=[@ANYBLOB="011b2002c8cc"], 0x6)

17:04:49 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)
recvmmsg(0xffffffffffffffff, &(0x7f0000006380)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/203, 0xcb}, {&(0x7f0000000140)=""/70, 0x46}], 0x2}, 0x5}, {{&(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @local}}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000280)=""/108, 0x6c}, {&(0x7f0000000300)=""/81, 0x51}], 0x2, &(0x7f00000003c0)}, 0x3}, {{0x0, 0x0, &(0x7f0000001840)=[{&(0x7f0000000400)=""/4096, 0x1000}, {&(0x7f0000001400)=""/197, 0xc5}, {&(0x7f0000001500)=""/48, 0x30}, {&(0x7f0000001540)=""/76, 0x4c}, {&(0x7f00000015c0)=""/171, 0xab}, {&(0x7f0000001680)=""/163, 0xa3}, {&(0x7f0000001740)=""/54, 0x36}, {&(0x7f0000001780)=""/118, 0x76}, {&(0x7f0000001800)=""/20, 0x14}], 0x9, &(0x7f0000001900)=""/201, 0xc9}, 0x3}, {{&(0x7f0000001a00)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000002b80)=[{&(0x7f0000001a80)=""/97, 0x61}, {&(0x7f0000001b00)=""/45, 0x2d}, {&(0x7f0000001b40)=""/3, 0x3}, {&(0x7f0000001b80)=""/4096, 0x1000}], 0x4, &(0x7f0000002bc0)=""/26, 0x1a}, 0x80}, {{&(0x7f0000002c00)=@nl=@unspec, 0x80, &(0x7f0000002f00)=[{&(0x7f0000002c80)=""/17, 0x11}, {&(0x7f0000002cc0)=""/55, 0x37}, {&(0x7f0000002e00)=""/241, 0xf1}, {&(0x7f0000002d40)=""/61, 0x3d}], 0x4, &(0x7f0000002f40)=""/221, 0xdd}, 0x549a}, {{&(0x7f0000003040)=@tipc, 0x80, &(0x7f0000004180)=[{&(0x7f00000030c0)=""/4096, 0x1000}, {&(0x7f00000040c0)=""/169, 0xa9}], 0x2, &(0x7f00000041c0)=""/253, 0xfd}, 0x7}, {{&(0x7f00000042c0)=@nfc, 0x80, &(0x7f0000004a00)=[{&(0x7f0000004340)=""/173, 0xad}, {&(0x7f0000004400)=""/142, 0x8e}, {&(0x7f00000044c0)=""/97, 0x61}, {&(0x7f0000004540)=""/107, 0x6b}, {&(0x7f00000045c0)=""/167, 0xa7}, {&(0x7f0000004680)=""/209, 0xd1}, {&(0x7f0000004780)=""/230, 0xe6}, {&(0x7f0000004880)=""/227, 0xe3}, {&(0x7f0000004980)=""/25, 0x19}, {&(0x7f00000049c0)}], 0xa, &(0x7f0000004ac0)=""/4096, 0x1000}, 0x3}, {{&(0x7f0000005ac0)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, 0x80, &(0x7f0000005dc0)=[{&(0x7f0000005b40)=""/200, 0xc8}, {&(0x7f0000005c40)=""/50, 0x32}, {&(0x7f0000005c80)=""/48, 0x30}, {&(0x7f0000005cc0)=""/136, 0x88}, {&(0x7f0000005d80)=""/15, 0xf}], 0x5, &(0x7f0000005e40)=""/118, 0x76}, 0xffff}, {{&(0x7f0000005ec0)=@nfc_llcp, 0x80, &(0x7f0000006280)=[{&(0x7f0000005f40)=""/199, 0xc7}, {&(0x7f0000006040)=""/149, 0x95}, {&(0x7f0000006100)=""/53, 0x35}, {&(0x7f0000006140)=""/33, 0x21}, {&(0x7f0000006180)=""/248, 0xf8}], 0x5, &(0x7f0000006300)=""/65, 0x41}, 0x3}], 0x9, 0x40002140, &(0x7f00000065c0))

17:04:49 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
ioctl$sock_bt_hci(r0, 0x80089180, &(0x7f0000000000)="f12123fd3c2023fb68699e63ce8cc792bc2c3172d747e80c4907cf8021b8f267d82f21369120f071e7148a2cbd6281943489e4b6b005abe0858e7f3b747b7d9277b5e12e00e2765a452f0b3270066dbd2aecec3fcce5e58495f4e54b66b765bca3d7")
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:04:49 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 93)

17:04:49 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

[ 3214.086754] FAULT_INJECTION: forcing a failure.
[ 3214.086754] name failslab, interval 1, probability 0, space 0, times 0
[ 3214.087727] CPU: 0 UID: 0 PID: 21457 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3214.087744] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3214.087752] Call Trace:
[ 3214.087758]  <TASK>
[ 3214.087763]  dump_stack_lvl+0xfa/0x120
[ 3214.087782]  should_fail_ex+0x4d7/0x5e0
[ 3214.087802]  should_failslab+0xc2/0x120
[ 3214.087822]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3214.087838]  ? sock_def_readable+0x1bf/0x5b0
[ 3214.087855]  ? __alloc_skb+0x2ab/0x370
[ 3214.087871]  ? lock_is_held_type+0x9e/0x120
[ 3214.087893]  ? __alloc_skb+0x2ab/0x370
[ 3214.087907]  __alloc_skb+0x2ab/0x370
[ 3214.087922]  ? __pfx___alloc_skb+0x10/0x10
[ 3214.087938]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3214.087953]  ? sock_queue_rcv_skb_reason+0xd8/0x190
[ 3214.087972]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3214.087993]  create_monitor_event+0x692/0x930
[ 3214.088010]  hci_sock_bind+0xa19/0x1470
[ 3214.088025]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3214.088043]  __sys_bind+0x1dd/0x2b0
[ 3214.088058]  ? __pfx___sys_bind+0x10/0x10
[ 3214.088076]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3214.088095]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3214.088113]  ? ksys_write+0x1a3/0x240
[ 3214.088131]  ? __pfx_ksys_write+0x10/0x10
[ 3214.088151]  __x64_sys_bind+0x73/0xb0
[ 3214.088165]  do_syscall_64+0xbf/0x3f0
[ 3214.088178]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3214.088191] RIP: 0033:0x7fbfee694b19
[ 3214.088201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3214.088213] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3214.088225] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3214.088234] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3214.088242] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3214.088249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3214.088256] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3214.088273]  </TASK>
[ 3214.109231] FAULT_INJECTION: forcing a failure.
[ 3214.109231] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3214.111537] CPU: 1 UID: 0 PID: 21464 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3214.111572] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3214.111587] Call Trace:
[ 3214.111596]  <TASK>
[ 3214.111606]  dump_stack_lvl+0xfa/0x120
[ 3214.111634]  should_fail_ex+0x4d7/0x5e0
[ 3214.111672]  should_fail_alloc_page+0xe0/0x110
[ 3214.111713]  prepare_alloc_pages+0x1eb/0x550
[ 3214.111749]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3214.111782]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3214.111810]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3214.111845]  ? pgprot2cachemode+0x9a/0x130
[ 3214.111876]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3214.111911]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3214.111947]  ? do_raw_read_unlock+0x44/0xe0
[ 3214.111974]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3214.112004]  ? policy_nodemask+0xeb/0x4e0
[ 3214.112033]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3214.112062]  ? policy_nodemask+0xeb/0x4e0
[ 3214.112094]  alloc_pages_mpol+0xed/0x340
[ 3214.112124]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3214.112155]  ? alloc_pages_noprof+0xb7/0x180
[ 3214.112190]  alloc_pages_noprof+0x9d/0x180
[ 3214.112222]  kimage_alloc_pages+0x70/0x240
[ 3214.112255]  kimage_alloc_page+0x14e/0x7e0
[ 3214.112294]  kimage_load_segment+0x424/0xc90
[ 3214.112343]  do_kexec_load+0x6bd/0x8a0
[ 3214.112377]  ? __pfx_do_kexec_load+0x10/0x10
[ 3214.112411]  ? _copy_from_user+0x5b/0xd0
[ 3214.112450]  __x64_sys_kexec_load+0x1c6/0x230
[ 3214.112487]  do_syscall_64+0xbf/0x3f0
[ 3214.112515]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3214.112541] RIP: 0033:0x7fd597aabb19
[ 3214.112561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3214.112587] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3214.112612] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3214.112642] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3214.112658] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3214.112674] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3214.112690] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3214.112725]  </TASK>
[ 3214.112862] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:04:49 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:04:49 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000000)=[r1, r0], 0x24)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:04:49 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 94)

17:04:49 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 63)

17:04:49 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x74, 0x8, 0x3f, 0x0, 0x0, 0x3ff, 0xd02, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x6f93, 0x0, @perf_bp={&(0x7f0000000080)}, 0x803, 0x556, 0x236d7dc4, 0x9, 0x4, 0x6, 0x9, 0x0, 0x0, 0x0, 0x5}, 0xffffffffffffffff, 0x6, 0xffffffffffffffff, 0x1)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

[ 3214.284081] FAULT_INJECTION: forcing a failure.
[ 3214.284081] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3214.286193] CPU: 1 UID: 0 PID: 21482 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3214.286227] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3214.286241] Call Trace:
[ 3214.286249]  <TASK>
[ 3214.286258]  dump_stack_lvl+0xfa/0x120
[ 3214.286288]  should_fail_ex+0x4d7/0x5e0
[ 3214.286330]  should_fail_alloc_page+0xe0/0x110
[ 3214.286368]  prepare_alloc_pages+0x1eb/0x550
[ 3214.286400]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3214.286429]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3214.286454]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3214.286487]  ? pgprot2cachemode+0x9a/0x130
[ 3214.286515]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3214.286545]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3214.286578]  ? do_raw_read_unlock+0x44/0xe0
[ 3214.286601]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3214.286628]  ? policy_nodemask+0xeb/0x4e0
[ 3214.286655]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3214.286680]  ? policy_nodemask+0xeb/0x4e0
[ 3214.286709]  alloc_pages_mpol+0xed/0x340
[ 3214.286735]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3214.286763]  ? alloc_pages_noprof+0xb7/0x180
[ 3214.286794]  alloc_pages_noprof+0x9d/0x180
[ 3214.286822]  kimage_alloc_pages+0x70/0x240
[ 3214.286852]  kimage_alloc_page+0x14e/0x7e0
[ 3214.286887]  kimage_load_segment+0x424/0xc90
[ 3214.286922]  do_kexec_load+0x6bd/0x8a0
[ 3214.286953]  ? __pfx_do_kexec_load+0x10/0x10
[ 3214.286984]  ? _copy_from_user+0x5b/0xd0
[ 3214.287019]  __x64_sys_kexec_load+0x1c6/0x230
[ 3214.287051]  do_syscall_64+0xbf/0x3f0
[ 3214.287077]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3214.287101] RIP: 0033:0x7fd597aabb19
[ 3214.287119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3214.287142] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3214.287165] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3214.287181] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3214.287196] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3214.287210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3214.287223] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3214.287254]  </TASK>
17:04:58 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0xe, 0xffffffffffffffff, 0xa)
write$bt_hci(r0, &(0x7f0000000000)={0x1, @reject_sync_conn_req={{0x42a, 0x7}, {@none, 0x1}}}, 0xb)

17:04:58 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000), 0x6)
write$bt_hci(r0, 0x0, 0x6)

17:04:58 executing program 6:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
capset(&(0x7f0000001980)={0x20080522}, &(0x7f00000025c0))
ioctl$TIOCSLCKTRMIOS(r0, 0x4b65, 0x0)
r1 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r1}], 0x1, 0xf8c6)
sendto$inet(r1, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:04:58 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:04:58 executing program 3:
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x4a71ea491feb95d9}}, './file0\x00'})
r1 = syz_genetlink_get_family_id$team(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000400)={'syztnl1\x00', &(0x7f0000000380)={'syztnl2\x00', <r2=>0x0, 0x4, 0xf9, 0x3, 0x7, 0x20, @mcast2, @mcast2, 0x8000, 0x8080, 0x7, 0x5}})
socket$packet(0x11, 0x2, 0x300)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r4=>0x0})
r5 = socket$packet(0x11, 0x2, 0x300)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r7=>0x0})
sendto$packet(r5, 0x0, 0x608, 0x0, &(0x7f0000000040)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @dev}, 0x14)
r8 = socket$packet(0x11, 0x2, 0x300)
r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r10=>0x0})
sendto$packet(r8, 0x0, 0x608, 0x0, &(0x7f0000000040)={0x11, 0x0, r10, 0x1, 0x0, 0x6, @dev}, 0x14)
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(0xffffffffffffffff, 0x89f7, &(0x7f00000004c0)={'ip6_vti0\x00', &(0x7f0000000440)={'ip6_vti0\x00', <r11=>0x0, 0x29, 0x36, 0x8, 0x80, 0x67, @remote, @private0, 0x0, 0x8000, 0x5, 0x9}})
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000000980)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000940)={&(0x7f0000000f00)=ANY=[@ANYBLOB="34040000", @ANYRES16=r1, @ANYBLOB="102cbf64a7ec074eecd2ec17225fb4447c75ea0b2a28a1574e29f3db3db58757abe673f3a7033a3a431e906c81828cfda6cc57facc47a547062fb51f927ad6835cd012dc2d67bfb4e7e7b166a2364d0c336bd068fd662d0a7c139463432d273841eb74b23d9336281e4093c55d729bb95f4d41aa3c9d0953c6adf7e890b4a263f6d4b90c316827d647de0dfa028459c689f8bcad86755b126261a3aa53935aba4d2809ee769c6e173aab18a1b0dea4f572fdff7e8e46e797968ae0606720f81690b75c1c264761fabb3dff03223a40", @ANYRES32=r2, @ANYBLOB="b00102803c00010024000100656e61626c65640000000000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="3c000100240001006c625f74785f6d6574686f640000000000000000000000000000000000000000050003000500000009000400686173680000000040000100240001006c625f686173685f737461747300000000000000000000000000000000000000050003000b000000080004000300000008000700000000003800010024000100616374697665706f727400000000000000000000000000000000000000000000050003000300000008000400", @ANYRES32=r4, @ANYBLOB="40000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e000000080004002000000008000600", @ANYRES32=r7, @ANYBLOB="40000100240001007072696f7269747900000000c520500cb600f37723f3e70000000000000000000000000000000000000000050003000e000000080004000800000008000600", @ANYRES32=0x0, @ANYBLOB="3c00010024000100757365725f6c696e6b757000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r10, @ANYBLOB="a401028038000100240001006c625f73746174735f726566726573685f696e74657276616c00000000000000050003000300000008000400200000004c000100240001006270665f686173685f66756e6300000000000000000000000000000000000000050003000b0000001c00040082ff5401000001003f0001a280000000ff0109440000000038000100240001006d636173745f72656a6f696e5f636f756e7400000000000000000000000000000500030003000000080004000400000038000100240001006d636173745f72656a6f696e5f636f756e7400000000000000000000000000000500030003000000080004000100000038000100240001006d636173745f72656a6f696e5f696e74657276616c00000000000000000000000500030003000000080004000000000038000100240001006d636173745f72656a6f696e5f696e74657276616c0000000000000000000000050003000300000008000400020000003c00010024000100656e61626c65640000000000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=r11, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="b400028038000100240001006e6f746966795f70656572735f636f756e7400000000000000000000000000000500030003000000080004000000004038000100240001006d636173745f72656a6f696e5f696e74657276616c00000000000000000000000500030003000000080004000800000040000100240001006c625f706f72745f737461747300000000000000000000000000000000000000050003000b000000080004000002000008000600", @ANYRES32=r4, @ANYBLOB], 0x434}, 0x1, 0x0, 0x0, 0x40014}, 0x8000)
r12 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r12, 0x400448c9, 0x0)

17:04:58 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 95)

17:04:58 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 64)

17:04:58 executing program 1:
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8983, &(0x7f00000001c0)={0x0, 'syzkaller1\x00', {0x7}, 0x3f})
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0, 0xfffffffffffffed9}}, {{0x0, 0x0, &(0x7f0000000180)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0x5, 0x3}}, './file0\x00'})
recvfrom(r1, &(0x7f0000000080)=""/98, 0x62, 0x5, &(0x7f0000000100)=@qipcrtr={0x2a, 0x1, 0x2}, 0x80)
write$bt_hci(r0, 0x0, 0x6)

17:04:58 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$BTRFS_IOC_LOGICAL_INO(r0, 0xc0389424, &(0x7f0000000100)={0x1, 0x38, '\x00', 0x1, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
pipe2(&(0x7f0000000000)={<r1=>0xffffffffffffffff}, 0x80000)
setsockopt$bt_hci_HCI_FILTER(r1, 0x0, 0x2, &(0x7f00000000c0)={0x464a, [0x7, 0x400], 0x6}, 0xfffffe3b)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:04:58 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$getownex(r0, 0x10, &(0x7f0000000000))

[ 3223.621947] FAULT_INJECTION: forcing a failure.
[ 3223.621947] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3223.622972] CPU: 1 UID: 0 PID: 21501 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3223.622990] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3223.622998] Call Trace:
[ 3223.623003]  <TASK>
[ 3223.623007]  dump_stack_lvl+0xfa/0x120
[ 3223.623026]  should_fail_ex+0x4d7/0x5e0
[ 3223.623045]  should_fail_alloc_page+0xe0/0x110
[ 3223.623065]  prepare_alloc_pages+0x1eb/0x550
[ 3223.623083]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3223.623098]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3223.623111]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3223.623128]  ? pgprot2cachemode+0x9a/0x130
[ 3223.623144]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3223.623159]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3223.623176]  ? do_raw_read_unlock+0x44/0xe0
[ 3223.623190]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3223.623204]  ? policy_nodemask+0xeb/0x4e0
[ 3223.623218]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3223.623231]  ? policy_nodemask+0xeb/0x4e0
[ 3223.623246]  alloc_pages_mpol+0xed/0x340
[ 3223.623259]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3223.623273]  ? alloc_pages_noprof+0xb7/0x180
[ 3223.623288]  alloc_pages_noprof+0x9d/0x180
[ 3223.623303]  kimage_alloc_pages+0x70/0x240
[ 3223.623323]  kimage_alloc_page+0x14e/0x7e0
[ 3223.623340]  kimage_load_segment+0x424/0xc90
[ 3223.623358]  do_kexec_load+0x6bd/0x8a0
[ 3223.623374]  ? __pfx_do_kexec_load+0x10/0x10
[ 3223.623389]  ? _copy_from_user+0x5b/0xd0
[ 3223.623408]  __x64_sys_kexec_load+0x1c6/0x230
[ 3223.623424]  do_syscall_64+0xbf/0x3f0
[ 3223.623438]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3223.623451] RIP: 0033:0x7fd597aabb19
[ 3223.623460] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3223.623473] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3223.623484] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3223.623493] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3223.623500] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3223.623507] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3223.623514] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3223.623530]  </TASK>
[ 3224.574107] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3224.575929] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:05:08 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9540, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xfffffffffffffffd}, 0x210, 0x40000000008, 0x4, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x40000000001, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

17:05:08 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:05:08 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
sigaltstack(&(0x7f0000ffd000/0x1000)=nil, 0x0)
madvise(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
r1 = fspick(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f0000000140)={"08b680872891f0bf1b4cb35abfdf6dde", 0x0, <r2=>0x0, {0x4, 0x4}, {0x87, 0x2}, 0x20, [0x8, 0xcd, 0x0, 0x2, 0x7, 0x3f, 0x7, 0x0, 0xfff, 0x80000001, 0x8001, 0x3, 0x2, 0xf804, 0xa49, 0x100]})
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r0, 0x5000943f, &(0x7f0000000240)={{r1}, r2, 0x4, @unused=[0x5be, 0x0, 0x2, 0x3f], @name="08c4bcc1eae21744df247c85c11fbebea505812072af1ffc59737d005f09566c0d2e33785be4d0a69fa0279ad42f8614fb836c3299989d011a1bd0d0806fa4a236df97cb5c0efaf3fe01b2ca6a36a5b012224dc0c781b6c3145aa8de8a0da178033cec6ac88132443c7213d8b635835d81db13c7337cc6b6c072d0ab6c81a40d5147dff85c1393df1b0cc600a4767f133657ea1e919e6205393f9b652a38a3801c6cc6bae174819f5c160ce2deef3d1ff51a00af911780f0b07dfce9035fc01de4b29ee91448b9a3ed45304f3b20c62f18efe2aaa988f2356a7cdb174651b8dac916d280defb36901735abc95e8f1e194de6f38dc4cbfc68dc8e9b0a528d256a8a04560180853073a0c795d5fcbc159803783262e5b17f84b6b6d2cdbab45f1b9bf02e964e99139ee5e3f82f7e5c8125c317465597b28c55f29a8a5dbd1497e9726f98048bf4ced6a85e87b2f12fa3a9e792dbc0a266899b44d6342f13fa86cdbcf7a9bc00aae6164bd68b15fe593612347e41dcd8612f254eeebd91387dd2d20c24c0c9bdad2214e04ed9f4c29151bd79d166e572c7a32150b2e38bdea4372902e9def0db731713819c65d88c32ef240844fdb77afdc034f91cf57ac07bd18dad0f9477bcb8a16ef6756d9ea36f62282cb70778490a75820fe553f5dfbd68e724f8c675abd4f5880a44163274fc99e8c1cffdee97c518cf7d8c8a60dc40b19f316d98f5a1a29b24b6455c237d5b8fa4cac6368db3728a3e2ce17857390d021bab4a9152e40d1d78bbec61c348c95e94e9a3b7e54a0081e35e55fcf86f15bd3c0cb7fda237892a0962fbaba9cdc79c158ff5247905ca0a6250d5f2c325a8c9ac6ea354c6a2b9aa68bfc15bf64ed1b82cd23e181b6b20a63f89c9d6ea1f54c5434168f79dc0a807cec5758991c1bf91ce5578575a615baf3d2fb11e5a646634889d109dc2f36cbaa222027d4ec28455494c50a9a67292362c6e297befe52daaf360f4afc539ac41fca70df4acb044d95268c0d7c8f3836e62e1c721da20477cb3700cb0638bdcea908ed5e6f76b5ed19f3f0f1758140ed92ec8a6aa406b187cb6548889df62186474e5896e6950195fa7ba321c290d21934ca2b22f5f833d79745768af4ad66d1677835d30b377003d1b0a8df43adad74288f49603a81401a328abbb2396e180919918091f5b888d2f0a23ff44c26e33f20698fd05fd37f331271ae6f7a5fe353eaa29e5aaee803b41cd25a1063978223e601f918f15abaeed541c01d567b57fbf8b2382f85547a07a885a87be8e4f4cfef96950d346a658a8043dee7de24e3031579bb664108a07101c1a78d03f287c07ff785732904848511241f50ca95058a88203f93f79491b3fdf72a2d0872668d18feb649f2d298216e577298a947516974fb1bbbce36b7205f585d6f1222a2ffe3b437161c49ca287d4881efff2cb2b225acb2d7e36735a3c84fa523f03dc224d5e91db042fe422a60db64ea9d8e2ae908ac20f51d2cee566a62b5ee0f8554bef255dd7521071e0e86213d103a00fd05f4dcc0ac978a4aeea65f7a8a9ba5bf9500e26a36afb9b392d6077bcf5e5650958a84cf4218259c797fced5173ab1888746a8ba23de4fc8256ed17b6f3ea47959bf94c8055d8df0942d6f7d4e61f6836621de11f7b686b04dd86405829f6187a5660f514f9a00d426e38f9626783ad5892822c8e7a89b953b47ebf6f3f73f8d3e5c7c0d34e8062007524505a1178caf798324cd9e45ecd0e5e8147693f91302e36970574f660ecbb506c5ecf83ecf02453c600d015204aa0faa2052298e58fe5d1203dc0bf2349f1ecd42431c4728402589084461d63631d4e9d78aa1778b01d1ff46b8687b474bd740fcd8e169c5b50117251e3e9721a4b99d7b2dbc16cd43fdc7dfb43cebe6e427f27712a2917aee9ff28f3764b349120643fee80880cd3bf6e3697940cbb14fbe1e79293e50207f956fa5b7b53a4c0d33bee649c9c4a182e00f8c8bb55b5e43a9d617b0bf1cec28a1d8f90502869d98331ed921a6ac7a0f9d07a27007b03f69a0e0186841a98290a81ee5efa1231933f69891ff10765b8eb03bc68d77dfac4fb21d920c5a9b795363404594fe9f92e4f54922526c2c6f78983bbb4452f2bfe4897b90806f88fdd2f289fe8d8ba9cb895bf8d5adbb2d21d217bef7d64e19f285bbc151bd661c16296e44a787051076c9b032ec930db14ca2c855b8ac4bf667ea3fdc04049313ee182ad0b590ab3b0368aa3ec3858228cb2f39fc22d0ec755e41f411eada3feec9cd27a20ef5c086b61f6160745711df543d144ca5571adbe8fcea55e912d84642f201eff119cc4f1ddba0897363b6cc8b198831809ac4e228a2779664d4595f29608535ecf1acbc695cd9cb1327eab019e22d8ea9a59c9cd17c3e828963cd5c6c0f007f61e91fb163d24fa85bd7c6a80a281b2cde37f7d6cf82b3b57da939c1fee2d558e5ea5bb797d1be8389013b0f04d30308185ae27c80271264c670c452afd5aa664db2fad9a2fdcced71132fc100a34901db4e179c8df26ceb9f0c15f5f2ab0a4a77df8ed9af3dcda7b845a495a95475ea51ec6f0b308e1bf5488dba9a60c625fd1356e228d74dd2445297fda626d1719b380506aa06c87f701bbbb4412b006b99f92432e12f5dfc2474146888dd26ef3b8e0af7f525c4dca3a390ae3a1f79b62c91173d510dcde6c1e08a8a634814f158985985038ae52cad6254dd8c818c30ad5fbf31f686d23fe2c410fb16a3172864fa29ed83a0914f40ddc5c965aea9d4acb61e68e5aee7b02d6a91e48a9862e279f8b2a4d10121e0b8c19a37f7279f87c0d4936243d3f331aa0f376ddb54eef251d4ab45aa0b41b7c644481e1727b6bc0c0d1ae17014b345fb866d2d3e624ced5cd655633a4343ddd555c2cca261b8b23ee18c7130d0848afedaaf727174a2e6c0c7efaf2b29614b6fa412d12df91c94cb7f507bf1f025d74e57a4aa2a12f8f1e1316659921d50b962c4b220fb89195b7028b3bec23352b1551dd6e8e62342bf5370473e2576db1f4dd1da308ea24b7b86c2931b6eced607b946b151fadce7df7ec8dd0d953b4d99eac673ae787b72f5a6f94384987c3513f032e48d98bbbb88537e3c2490488ae42accf3ffc4e3cac9375abab0939311f1c3a7ef951d92c2f68a03d0ea41e2993da93042e8378caa42e383b4f1b2bcb1ab642c7856b300bfc1085ba9758ae64b99967e5896873bda24df438157bf06d50ccafe2ef83809453555b199b7b2fc4345df5f53c9894d72bc5f35f606d70c82ec39ad1c6ac6ca7ce59066e95340b38449f8a8047171545a0bccbb23a7470ce7f4d460df21e5f10c14ad2661dd0c29028a9dbf1c075a0fbd6f4f943c4ffc9fda4e3a85e473219ec21b36ce40503cb4904e405133ccdb812d9d3722ff20ed634482d793867fe9d32825dd63219e4bfceacb5047014bb2b102d4f2d5baf5d4e31d81ec82c419d549fd1e2dabffed8b60eba53fbbf735b89917558187a11d53ee34af683f258cdcebc306573242bfd6687fc5a5544629b49758ef87913121f81fc95b1e33cab6205c7e02eb3d18c88ca7e95f1dc8fa04d84f315d10c79da00c6d263e5db7797f39ae644f1f09211508404615ea80b784a6d1ede1fb742a8f669aac70b06143de61fc3fecb501dad717f8ed4bbdc3d5039266423dca23d92d2743e52e493015dfc65056abe067f0dda288b4be391c8ef649acad0821c807d1e1cf6efe110aec5a6996ed0a4595076683306daf93fd4296d4ea51010cb34f7120c14f9f18efd3a5418e77fe5526d22a5a4ebea426fa74a468f667f3a52def238e71c42922f4f12b6ebbb2f416692f5d0335ac7056aeb3bf92fe957d36e15ab220ee1240b30694dd590b586ac5c8c5d6842f0d8281327fb43f186749c8ea5db17eac60390c56a630f69c66d7b8549ed65d35a9b41191d23331934214fc2ec1b134b1cbd982024682b093c794db4cfc2de8875140fb51b73e5304779b99d9b9b4b81a3219cdca25d52769d867f5cc6e6c61ffd855b103597b5b0c3f13706a039d83c9a45168362a881442375a996399641372dd7bac91d6ad1ba07535ef61cfafd477957fac5804b70f9ee202c9cb7fcace35153e5d64d465a7dc433c403babde63162ca74cb068195151cfe177e6068024b50b48372d6155099b8a34a988ce292732338305061c6a95651b051a06fafb4c90fc51e83efc4b2b1c1af28842a91becdd73d7064b21e55e6519cc4b77319776b12c5291e6d3606e86988f9db4e9b349c8a1d52607a25987674e34bcea88a9ae5977c0701da268e2097169ad634a73b96ac79646e5bbb78d2ea17fb0ec1c5d122056fb8589480f2bc7e9592c8c6a401c2d36b98010ee842a160adeddec89902d37dfe77e03e3da6c70495ff926ee568c3b5af6898bb979d7c90f2a50992290356d28b21a523af2d755af48123703a5c139a13b332611004b7fef943f1086c7f02a9d700063ecab98ed80dd76e44ae6657ab5c5afa1333651d7c9084e2b12b3d75051da6b21b3fa7f939f8a0541133dd409e344885cfd27a550477aacaa5660a1dbe07caf93fc6607327d3ccd21e8dccabb8f0d6cc48965d2182650879fa93c5c5a7d17c448d206cfaf76168f8ae86258c6504542659c24eed674fda66fef3401f87cd8cf9aac0b5fef5ae352ac1e171b72829ab56139011494fd87c2ccc05db965eb1e44faa55ea612abe8511b9e3d3b34611a021a56910a7432af11f262fe6f19afb7ebffc52dac816fc3c92bae083c9d60ec3e2444ea66d34801a497fd4b9c35ef7c885bceeb1d19edfb49225a67420146aac460e4eb869efa8a950e54fc2d228a9c9cea547404c31b896df8d53ee222345b4a2639041561457699d550bcd63dc066c8f92c9e4290fb396241b8a68d7ba1ba0085a9d84ca6fe38fdaea536b0b1858fe65efa18c82a8636ec6c5a3ad8475b9cd4a44b0bf4f93547084cfcb711dff9ec62313a21422544769c336e1c4288f1c9c82c6223688f80ee0c861b0d17541e9762a3ca95b0790b1e7674990676458b81dedc0531706af474ea5d975aa817c47ac9b1ac642d2f9785ca6be8bd2b2d3ce15966dff3c3bfeee75f92a314fe67970300e58ab51792f3c0640ba5bcc710eed5bf9e595c84eab62cbe41d54c61b45dd0f9e08d36f3e83ce574ff1bb6b653dc365234034c19ce89aed7657f6c87a8fccc340c6000b37fe817170f4e711963dc0abd7b7e7e9a1fa1e965f788f266c209a26f2df095845eb14ead883bece8312449e28272f46741bb5bd294d1fe03a63dbc1c3b88812dfbff006ff144766051ecb8b5f76f3598b7cec54763344a5565b76bf0b15fe3e985c6bc2b43235221c795a98da5679c090b2d9291bef7356ca4536ceb8c26d1c6f809963f2fc3ff16fa98a6e46fdb6ff607e3a7c8dcd54ae256b22b15db321c73eda7c1a6d33a52163715314f53278e7c53802f1573a83507a835013a2b7dafa339c67e7237f4fbeb5eacd9789d0a798b8c80aa30434fa7b533e9be706ba9a94befce18c8cc68f0cef44f034232f191dbe16fffb2354cc51ca1621120f792b96ec5a6eaba7592baa0f8b30ee68aad7a74e61f0a0989fdbd8ac91bc80a82991b0ff9d36b15140fb58fd7ae47c6a4186768dc6065e6aac3c812d7adbca5a16d900e554d047e2d0c23ff5a50f22d01271f101886940ec"})
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
signalfd(r0, &(0x7f0000000000)={[0x52d4]}, 0x8)

17:05:08 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 65)

17:05:08 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x208002, 0x0)
write$bt_hci(r1, &(0x7f00000000c0)={0x1, @write_local_name={{0xc13, 0xf8}, {"934d79d716312cc6a23e6dd57f31e56796221035cabbb6304ae9a9aa843796304171a37bd28bd6497005bb76a3f12a1928d2f25ad4aa05022afc8fe1677c452ee88217da0af13e8ee47962ea0541cc33066c21d209011830bada132f4a1a8d380870deab2ac63bdbb34996c91784f483f073278c0dd40fb8064deb78d62ce0afa986d9c583701e3b904d59303a1ca75cddad5a5842be6fcd0d84b2e8ea36090cbe3d907baf1be698985022e562ab8f70cd343bcd4db195556b5d94a52fe172be6339857747688b5da4e62f489e42b7ba854066cc696d4f8fdb11ae38141468529cf4c4f684d2b4d0e26e1fac9bdb58c471ba7f2dbd5bd709"}}}, 0xfc)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:05:08 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 96)

17:05:08 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d2, &(0x7f0000000040)="36f6f20b83f738e63bc185a6796a18e030543b3073fbe151f49432a6df07aa8dc7b4c691fb01801cbf166109f33103596a3358f0e9f7fa3e54b1c0a4f41a7c7799b724c40c41f57fe790798cb288f8679e1718acd402b342e891fd6db74388ee5e69f00c46d3a0a941234b762f39ae0820ba1eaf9d53623f336b4e9c2725cb52bff35c413b5b51d162ce13b755761302d69a4e4c17e4300ab27069445602e7c0c473cfc7f0812eefff6a85a64e29652f6ed714e3a80479af5dc29c4634f68ef3399b757d146ff907c21684db1fb9261f269e91f6a6376d78e9cdd58752d1ea9cccaea7f5923ef654168021bac3792a36d1")
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)

17:05:08 executing program 2:
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x2000}, 0x4)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
bind$bt_hci(r0, &(0x7f00000000c0)={0x1f, 0x4, 0x1}, 0x6)

17:05:08 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
bind$bt_hci(r0, &(0x7f0000000000), 0x6)
perf_event_open(0x0, 0x0, 0x3, 0xffffffffffffffff, 0x2)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, {0x27d7}}, './file0\x00'})
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x8, 0x20, 0x7c, 0x1, 0x0, 0xfffffffffffffffa, 0x22040, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0xc84, 0x4, @perf_config_ext={0x80, 0x77}, 0x40949, 0x9, 0x2966c82b, 0x7, 0x0, 0x800, 0x6, 0x0, 0x8, 0x0, 0x200}, 0x0, 0x2, r1, 0x8)

[ 3232.981821] FAULT_INJECTION: forcing a failure.
[ 3232.981821] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3232.987895] CPU: 1 UID: 0 PID: 21541 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3232.987930] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3232.987944] Call Trace:
[ 3232.987952]  <TASK>
[ 3232.987961]  dump_stack_lvl+0xfa/0x120
[ 3232.987992]  should_fail_ex+0x4d7/0x5e0
[ 3232.988026]  should_fail_alloc_page+0xe0/0x110
[ 3232.988065]  prepare_alloc_pages+0x1eb/0x550
[ 3232.988097]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3232.988126]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3232.988152]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3232.988183]  ? pgprot2cachemode+0x9a/0x130
[ 3232.988211]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3232.988242]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3232.988274]  ? do_raw_read_unlock+0x44/0xe0
[ 3232.988298]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3232.988333]  ? policy_nodemask+0xeb/0x4e0
[ 3232.988359]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3232.988385]  ? policy_nodemask+0xeb/0x4e0
[ 3232.988413]  alloc_pages_mpol+0xed/0x340
[ 3232.988440]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3232.988468]  ? alloc_pages_noprof+0xb7/0x180
[ 3232.988498]  alloc_pages_noprof+0x9d/0x180
[ 3232.988527]  kimage_alloc_pages+0x70/0x240
[ 3232.988556]  kimage_alloc_page+0x14e/0x7e0
[ 3232.988591]  kimage_load_segment+0x424/0xc90
[ 3232.988627]  do_kexec_load+0x6bd/0x8a0
[ 3232.988657]  ? __pfx_do_kexec_load+0x10/0x10
[ 3232.988688]  ? _copy_from_user+0x5b/0xd0
[ 3232.988724]  __x64_sys_kexec_load+0x1c6/0x230
[ 3232.988756]  do_syscall_64+0xbf/0x3f0
[ 3232.988782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3232.988807] RIP: 0033:0x7fd597aabb19
[ 3232.988825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3232.988848] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3232.988881] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3232.988897] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3232.988912] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3232.988926] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3232.988940] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3232.988971]  </TASK>
17:05:08 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:05:08 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 66)

[ 3233.103818] FAULT_INJECTION: forcing a failure.
[ 3233.103818] name failslab, interval 1, probability 0, space 0, times 0
[ 3233.104767] CPU: 0 UID: 0 PID: 21554 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3233.104785] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3233.104793] Call Trace:
[ 3233.104798]  <TASK>
[ 3233.104803]  dump_stack_lvl+0xfa/0x120
[ 3233.104822]  should_fail_ex+0x4d7/0x5e0
[ 3233.104842]  should_failslab+0xc2/0x120
[ 3233.104870]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3233.104885]  ? sock_def_readable+0x1bf/0x5b0
[ 3233.104903]  ? __alloc_skb+0x2ab/0x370
[ 3233.104918]  ? lock_is_held_type+0x9e/0x120
[ 3233.104941]  ? __alloc_skb+0x2ab/0x370
[ 3233.104954]  __alloc_skb+0x2ab/0x370
[ 3233.104970]  ? __pfx___alloc_skb+0x10/0x10
[ 3233.104985]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3233.105000]  ? sock_queue_rcv_skb_reason+0xd8/0x190
[ 3233.105019]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3233.105039]  create_monitor_event+0x65/0x930
[ 3233.105056]  hci_sock_bind+0xab2/0x1470
[ 3233.105071]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3233.105090]  __sys_bind+0x1dd/0x2b0
[ 3233.105105]  ? __pfx___sys_bind+0x10/0x10
[ 3233.105122]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3233.105141]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3233.105159]  ? ksys_write+0x1a3/0x240
[ 3233.105177]  ? __pfx_ksys_write+0x10/0x10
[ 3233.105197]  __x64_sys_bind+0x73/0xb0
[ 3233.105210]  do_syscall_64+0xbf/0x3f0
[ 3233.105224]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3233.105238] RIP: 0033:0x7fbfee694b19
[ 3233.105248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3233.105260] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3233.105272] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3233.105281] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3233.105288] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3233.105296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3233.105303] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3233.105324]  </TASK>
17:05:08 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
setsockopt$bt_hci_HCI_DATA_DIR(r0, 0x0, 0x1, &(0x7f0000000000)=0x7, 0x4)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:05:08 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000000940)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f00000001c0)=[{0xfffffffffffffffe}, {&(0x7f0000000040)=""/189, 0xbd}, {&(0x7f0000000100)=""/130, 0x82}], 0x3}}, {{&(0x7f0000000200)=@caif=@dgm, 0x80, &(0x7f0000000440)=[{&(0x7f0000000280)=""/80, 0x50}, {&(0x7f0000000300)=""/160, 0xa0}, {&(0x7f00000003c0)=""/74, 0x4a}], 0x3, &(0x7f0000000480)=""/32, 0x20}, 0xffffff36}, {{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f00000004c0)=""/118, 0x76}, {&(0x7f0000000540)=""/78, 0x4e}, {&(0x7f00000005c0)=""/133, 0x85}, {&(0x7f0000000680)=""/50, 0x32}, {&(0x7f00000006c0)=""/97, 0x61}, {&(0x7f0000000740)=""/32, 0x20}, {&(0x7f0000000780)=""/24, 0x18}, {&(0x7f00000007c0)=""/90, 0x5a}], 0x8, &(0x7f00000008c0)=""/96, 0x60}, 0xffffffae}], 0x4, 0x12066, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
write$bt_hci(r2, &(0x7f0000004580)={0x1, @write_auth_payload_to={{0xc7c, 0x4}, {0xc9, 0x81}}}, 0x8)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xfffd, 0x2}, 0x6)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000005ac0)={{0x1, 0x1, 0x18, <r3=>r2, {0xe7}}, './file0\x00'})
setsockopt$bt_l2cap_L2CAP_OPTIONS(r3, 0x6, 0x1, &(0x7f0000005b00)={0x9, 0x1, 0xe9, 0x9, 0x3, 0x81, 0x7}, 0xc)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000005900)=[{{&(0x7f0000000a40)=@rc={0x1f, @none, 0x19}, 0x80, &(0x7f0000001bc0)=[{&(0x7f0000000ac0)="fe2792def14612382c17c3d87b2417dc376b41da42443025164d85b7d8f185903bbb1fb74aa23e67ae92b4ea9c0298c23f6ad2332d0f72bc901c07e725b92690cbd829b1f0fc003df2a0c632b7957516b4c0ecf903ad0c92322d830c13463703261abbd3e4b74a87e705551ac5769228fc28ebf18493287771afeef7fc88", 0x7e}, {&(0x7f0000000b40)="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", 0x1000}, {&(0x7f0000001b40)="0b1ef3dcb8c5c807f018765571ee720435e865000226c6b16ac98652cef27161ac555479678300996ecf4173b08c07c68542e3bf09c8f53f25d3b78719f7159c7189143fb75216924bf1693824473588d366f97637accb035439851cc57ae9cc5571ce49486fbbdba667cde745de7e7cc7776f0129a0c50002d130baeb127d19", 0x80}], 0x3}}, {{0x0, 0x0, &(0x7f00000021c0)=[{&(0x7f0000001c00)="e75872d91fc28c6641019e9fd7a3c2c290478b4e0682000ebecacbcd0292b421c7d79166b7ec0be0f35948faacaaebc1aa85f145927af51554a4c5bef681a49f16e4f066a2", 0x45}, {&(0x7f0000001c80)="2a49066b51ce21b450bcbf7878642fc031ddb250d7da061862554942a50bc76544efd1eb8e506877996fd04be542da63f2364c63f7e61f00be4477b6d42b12c39f706fe9e7854c01d73c8d3351c557903862bf3fef949959cf432c0d84a51a8b6f3865a1c3a43b0865d3360ddabd060f4677a6ecbfc7380435f59dbdea7f052e25718cc536fa08dabf8e6c2e1118cf88dee657a85c396b3b09edf071194b4434c3cacc4d37a25b21d0fe055d8bbc841d09f0", 0xb2}, {&(0x7f0000001d40)="fc50a698cff92c7f0717ec30ab4e7ac34ebb0a5b112280b5831a6f425932691a7bb3be1180b6ecebf1b73014282931c75c662709dc561a6d9d56c9d1a46f19aa0b8c8fb4f64395bc4f3b56f375f16e84d47b000d9279ee2418f5907bc95c541538e80ccdc46084f0e344b7305093016c5bd86e7a73589f44d4810417d39de8a8e79cd8314aeee7f5689301668ec1d7d96903813a68f323c41e663dc14592315f37ea5598764967931c34f6b4163cf665024c91b4aca7f1553448ad380f2db7b6ed771cb18451ed109d07df3f246d476edfce93f373c89398d42a85394365687efbc210cad704c29f008bd4bec74b57ab82ff1c", 0xf3}, {&(0x7f0000001e40)="42400cbda6e0191e46b5bba3f490a03f780e17c44aa34bd31a28bcf190cc6c878046761cb45dbac08d3215654d554d7b5ba4fcb8a342a953a9a1c746b6124b06d3b265da838686f6727a361742cd71a93e5f4b1bd290481471424ad08d918526fd81cecd551aa0df849d471a6258806b98b0b17f", 0x74}, {&(0x7f0000001ec0)="6934f8d7fb795459136706f1f10281fb1e9694207da0460cda10", 0x1a}, {&(0x7f0000001f00)="745e60ce499294a9475e22908061ea7ee8a52c4cb8587e0819652bce964642d19187c8b0e40081eb3a1258efc2ccc3dc66d3666714d16b1baee6feee4cfc1c9a8d9d09fbbc081f64108c81d0372fea01fa158c87652d8ddf8dd86a299dbeaa98c9f6a82c4ceecafd994c570b5688f790c3367e073bec45dbcf5fd2e0f8e75a982dde45bbe2eaf0c309c8c7ad1a3515260ac2493893e160c12785692a71004ba54125ea80f6873af024dbc27b8d747485978a9a51af", 0xb5}, {&(0x7f0000001fc0)="4fa4", 0x2}, {&(0x7f0000002000)="1ff7999e4e52d42e14d558e741d3cf35fae46925c2eb66086e93f1695d8ab2", 0x1f}, {&(0x7f0000002040)="bbfe00681aa2d2595175747a00201ccb20c290c48484afab960cf90a45fe58be22062baa2de5f2fb48877d9c2747ade1198619ce7a79541f235d3da1b84ccf9d40725e969ad18dd37e16abdf19f3ae3bd34d5ae41cc61ce88eb8fe72dcdfa5117a0cb66768d46faada95223f9d33217e21b1603af2a4a3a4f7955b7a68c5a0c3ec6789d76361ce310e1af5cb8eeebb25e8590f88da8c83d81f", 0x99}, {&(0x7f0000002100)="bf9f72bced44da73756c3d38d7907b07c4352d3007d03c0bfc71cf610d758e1ab4bdb73df4662f3091a672aff4b49a4efcc2462ad1df848b53fef24a4abafcdf851b8dff49435ed5f1fd31e229a8231845fd2bdc9d7ab76c9889eab8cae888804bde4cbe2f0d7096058fc46023bdd6e40bf81c204d19b8c0f64db838a6a7c2efd5a51dd56f636be36e254bf562a857ffddf8643341", 0x95}], 0xa, &(0x7f0000002280)=[@mark={{0x14, 0x1, 0x24, 0x6}}, @txtime={{0x18, 0x1, 0x3d, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0x6}}, @mark={{0x14, 0x1, 0x24, 0x5}}, @mark={{0x14, 0x1, 0x24, 0x9fb}}], 0x78}}, {{&(0x7f0000002300)=@pptp={0x18, 0x2, {0x2, @rand_addr=0x64010101}}, 0x80, &(0x7f0000003780)=[{&(0x7f0000002380)="e21112d9e3d19714fb08d4fdfcf4ec4b20a2fc4f2882d6f27f122f8484394deb55b8ebfbcab01eac9193d690bce0d74a7445c462d5318db66f21bf6cdb0e6f1231eeff588c624e22c1ab418746d758e6bd8e6a54c152c7bda5da38c80491337199", 0x61}, {&(0x7f0000002400)="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", 0x1000}, {&(0x7f0000003400)="9f9104976e1896ce4f6ce4470ad68ec9e087e5f39c9a4ee86cf8c029b1f7895b83021302821de4f05853839ca8b376a7a6601b7421d92d109fcc87ecf57738c4bc1dafbfbbabc58420356f9e1e11d952b0c8dffda34f13f5437cf8cbe89f8f4ce0723356959d288578f19d9be08a67fec6d753e406ef7f6cfe4ec712a6774d77b746a2570fc9dd23596bd5fc8c8a6590e39e75078dc9293b75aa728c33213b", 0x9f}, {&(0x7f00000034c0)="0ddd5dbc1e45ab5690a3c5668bc63673d7ca07802176628cc40c070540c412c9bdd4ade509a81dc83104e0a1b71f8faa4f64f46f2c7dccc664b1dac2b590c545122a1283d4ccefef4d78c318a89ebc9f6c5aa9223cd12decd914f7d177146d0ee31f9f756a00de92deb97039b2d41104e2b64ee447d698c91d4e4b646c9945486f7674bef777917e7f73b3311a4fa99de40dfa104c2b0f5901dccc27007d6a2b4ed7fbe242c1732f5a1889740514f3e1c797ef694702a255a7e085ec7560a625c363ff1ca56d0f66df91d56df9217cc949c24858bef0241acdf03d9de4277dc735ca1c4c4abe7e46042a779ce18ecfa9f1bcd9da", 0xf4}, {&(0x7f00000035c0)="9053ec0322c5198ecaa03a69a56579cba2acd0eb25e213d3ad37c37d243397133daacc102110ec593dadb497d161bf87fa72b953adfb12af926beef2ad6ad7ca4d17c3bd1ffa8cd1a022395e6620c74e904ad53423cfb4dd97f7d82342e8347964c227fc3b66501cd806877cbf65030b65a3681ed3753c8eb4a067c1c6ce5497d38de3438f9c02d20c07c7b431e4f5177645a4dd244212d7e2be38bf1cb3dcfa10866f5917b5a656c0d4a5ab86e77ee1b80383c67513916d8c9f28659b1bfc713b0bd453eb14a5a6f7", 0xc9}, {&(0x7f00000036c0)="8638966f879db1b714b556e78c1960fd4e051266d08f91895fc97c248fcbccdf2c481744a8b775a4b4448b88983b56a4495cea8a0633faa2af609dac7e68ac689f5f2006382e72fedd7576e26ec844897d9aa9f6c46e95707b72c3850603cc60a5aaac88b0d98a56781fd6c4ac22b3a4173e600e4f0d1831a125b35952ea7ab8d0d1c3429f49a34d22b0de2b47a8b00288a29672c11c7df770a97ba8ea7455944287938a0908878d88029dc3f4a30e", 0xaf}], 0x6}}, {{0x0, 0x0, &(0x7f0000003c00)=[{&(0x7f0000003800)="aa6d5f9887054b884d4ccb6fec1dc8d86e84faae2cad2271fc36e0afb0bc7b27206793b40758ea0dd0bc94e9a2cb4888498801b57245c31a7dc7e758156bbaccfb543d8980a051ab3e9dd09bf98f50f47c0d05c025aa88aec71af75cd0608dd6e81623adfb9e56028d1ef5c59690e54443c2", 0x72}, {&(0x7f0000003880)="19089cc6dc2c5858704684839da531afb6d6703739e70bd01ae41ebc6fa8c4537f74155816afa10275ad19b45f733e1c9ca5d1c7602feaa90fd5564403699cee8ccec94c241f96cec656a116273b9f9d9df9773e00efd5bca7127a84b5122ff45c4a0ec355b8a19a53968c4dc5133c3ea8cb", 0x72}, {&(0x7f0000003900)="68026e391f9108a3da837c28dfadf179c8d99bd135d619a99e745bdb70a83bdf695dbec3028ac5586971481a713a7bfbb6a23939348c958d7f8780cdcf5bd06357a7fe4106515c433648929f4fc23013a4c862078d70", 0x56}, {&(0x7f0000003980)="52d24b4c4a973d2dea637a0e23ebceca7a173540b86c056c2433cd1c34370caa089332b14f62f9ffed7446a531b30c593685de5c8fc2a9d1d1c0a716549d5a784a0532eead484cc4aa391174c94bf8b1379f3b55ffd6d354e47c0b26b971a8834e6a4af8aac5de4f461089125fd0c815c925a8b505cf166641507a9e66dfa3cce5c07e589aa8786d36db767ecc46ca6cc62735d9501c885dd95fc2da0d1d3416b0db72c5f77663b5d8a7d382098a2b3b891ead700f0b8ef011f832a7b40184169d08832cac0e972374624caabf2c91c9743907fd244c521dca6b0ed01abb667d1cca9a04ecf34ccc7ae5d983d7da", 0xee}, {&(0x7f0000003a80)="b2c775805e5806ed1abf5e8449ccedb2f07c14a457729b38536c0f15fe0d868c15c6ee5a523574f67934edb8904a67517f63be8e0438745842fba58ab832bad6b5b5a3ae8643a8b0a9ef6ec59847c1618e70eb2d4b5693749d09305fdc", 0x5d}, {&(0x7f0000003b00)="8fc84d6b752fa5d915f4dd6f1e888132d7f0e7949ca66f4e73cd00a2c67768a9f8f2f9bfc4bc3b1fa69d5ffa76f37610677cab4224c4dbfdd236bee22983523ffec81b1e77d4d1c5a721fa0169ecfc1b7cfea6108903932ef344e0977cc5f8692f4f881e0e2504b74e55ec3768fe695726c47e38703a789a20ce88ebb76a20052ad74c78d12e2df13bb9edc0e768316611327f3b253b27d9717e8855d0cd96717815a9c842abed67ce7c65d19dedf47d057e4886d6c65a742639516728234f6adad02a061e1f4c3609884229be9c82e267866e2939bc9232b97bbeb211fabcaf6cf19d3a89bbdaae9276", 0xea}], 0x6, &(0x7f0000003c80)=[@txtime={{0x18, 0x1, 0x3d, 0x5}}, @mark={{0x14, 0x1, 0x24, 0x5}}, @mark={{0x14, 0x1, 0x24, 0x2a}}, @timestamping={{0x14, 0x1, 0x25, 0xfff}}, @mark={{0x14, 0x1, 0x24, 0x8001}}, @timestamping={{0x14, 0x1, 0x25, 0xcf37}}, @mark={{0x14, 0x1, 0x24, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0x146}}], 0xc0}}, {{0x0, 0x0, &(0x7f0000004380)=[{&(0x7f0000003d40)="8f0138ae7180fbdbaa415bb8c4a9af654cce1307cf2afbeec40c6dec", 0x1c}, {&(0x7f0000003d80)="a4e98a5c3da1cd5871ec76646b3b7f0ad71beb45f91b239b57d2fd7ce3dee710391afd523f001462b428fa4efc5d6c154160b4bcff7dc88fffdbca4d4ed67cc914bf35688f844fe1848272f5f13e650967b985348b532f599cea839bc38215879c4b8ca589e67e72e43e0c202bf784953a5085f0fcd877122a768e5315c7d753a7ceee52eb3ec158ed077d399d4194af82b3486fba8810bbe964abbb", 0x9c}, {&(0x7f0000003e40)="fe408a9679198e16864a70dd91865635c087164e62f257956d021a056ecc18cb056650358a97f68180cf14838a8fdc2873618b4177c36b5706a9233566191e99943d40dda814a53a82fb25a6ad8c0e610d9ec11aba6b694735b17e59c89e6174539fd312675ac830b86bdaf258c4806934a5d44967fb4d8b5d21bf58ec93101495feb58a0ace", 0x86}, {&(0x7f0000003f00)="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", 0xfb}, {&(0x7f0000004000)="30c13834a3028fae1968b9167ec8f3d113b413359301a3edf548eadf726b354aa384b79609a183b5e7e25f82b462fbda717df518180be3a8c678388a30deffb93a353a21040b2549cddb2816a8b30a4423c77e54bedeeb8667ea23c9cf22097fe305d6bbba5978b244f0329fe2876bb7f52f79a1f6fdd50b5776b85798492a0ceec86da12f718dccd49b88eda5ff8306458a0d710463530b2bcd43096f684dc622e4cda8146317c009f754c1dee4c3c8f9fe117a9fb5a30d7a34bf2d09a39c6f3f4e63ce33b8e33e8a95e544136f882402372338d3c9c6a9ab91dda6760d7cb857a017512ae5879e274509d289", 0xed}, {&(0x7f0000004100)="93a706c030be84708f6db7386b3512b86aeb461a29850f7156d771a1974e998bf3d9e56e9bbd20294257a996be936d2e530fd9bae3201004fa930a0599ddd57d805503105fa802f80887b671e90f2a2b92dc57e770dc8b4ddd6c4c81f22c2c8b175bf4920d971c3adecc90b321772e573fb006e5eee13117e14525df8e99cab28b38b3be7ac591", 0x87}, {&(0x7f00000041c0)="918dcb92fcf9e701da978f0828aa5a564959b5852bee5a98680e8bf93492d9fffe43ddc587f3b29ccd087ea2bb0414f7492613daea9e74e4512ac45a93c693f41ddcafcd4af366d0a7c0792d4304069c6479d3c6b0e05a6e89e31d9b84160df2055974eb5b7747f1a0c309c96df7a1285bbd0dbebd7c47f4944f71675a44a16432f1bdd9d75e227ff3a79d66e51162ce246f96191d7314bce661bbd36022a2537b25a1ab94e74a81f132debe6a717c52539d846064c3d5c7a939eb4c87cdf87eba07398c037a693a17f57c0432095f0c67548d1ff9465d2a7b4e1bb9c000323d8bd7af25195d4c509098949c4635a298e20f7b1448420c", 0xf7}, {&(0x7f00000042c0)="e791ce2760cc24974bc3e36e3743cfbc5ffe7b79d7247946f0c66c6d77dc1af2a273b1ef2293e17a38b53f652394b96c1ab042016e0116a7f7e80aabba31f08be7692922ef37c019481c59cea34aa00c833c0dd8b7c59400631a844022df719dbe4f399a7abef3fdc2fed39ea8c710b955aa6759b296e0ab59f7f1a0025462a4275cd598c5e532ca265b84e061159ca9b38928643cf52610d581", 0x9a}], 0x8, &(0x7f0000004400)=[@mark={{0x14, 0x1, 0x24, 0x4}}, @mark={{0x14, 0x1, 0x24, 0x9}}, @txtime={{0x18, 0x1, 0x3d, 0x84}}, @timestamping={{0x14, 0x1, 0x25, 0x4}}, @txtime={{0x18, 0x1, 0x3d, 0x3}}, @timestamping={{0x14, 0x1, 0x25, 0x194}}, @mark={{0x14, 0x1, 0x24, 0x2}}, @txtime={{0x18, 0x1, 0x3d, 0x6420371c}}, @txtime={{0x18, 0x1, 0x3d, 0x100000001}}], 0xd8}}, {{&(0x7f0000004500)=@vsock={0x28, 0x0, 0x2711, @local}, 0x80, &(0x7f0000004700)=[{&(0x7f0000004580)}, {&(0x7f00000045c0)="1644d28aa0d86432a344a4d32a2a17d7a4de222549b10d3732bf2c56b4c5888d4c2fa0a3e9439c52e60dcabaf796c9bb6bd2be75214164c33b532e6561f683008e9663561af1ff4acfc48bcf2ec08e5b6f15d3a6654056c11827c60336ea21cdffb4371e26404a5cc117df6d19810a6814174eb213cfe5", 0x77}, {&(0x7f0000004640)="1bd21531d2d04953", 0x8}, {&(0x7f0000004680)="146c42fc7701a6e6f993f1c417a882eeec2e3610d59bb2893d4159b0dabe70e0eba43dcf5ce147e261ea8f0e0b46a411f9f8c4b23f61034650bb595ad2d5de207407a104f373c0a04679fbaa9bcef5c313e2cb4b5ba7b59eb51fdebde10c79f1", 0x60}], 0x4, &(0x7f0000004740)=[@mark={{0x14, 0x1, 0x24, 0x3}}, @mark={{0x14}}, @txtime={{0x18, 0x1, 0x3d, 0x10f4cbe3}}, @mark={{0x14, 0x1, 0x24, 0x1}}, @timestamping={{0x14, 0x1, 0x25, 0x9}}, @timestamping={{0x14}}, @mark={{0x14, 0x1, 0x24, 0x200}}, @timestamping={{0x14, 0x1, 0x25, 0x3ff}}], 0xc0}}, {{&(0x7f0000004800)=@ieee802154={0x24, @long={0x3, 0x3, {0xaaaaaaaaaaaa0202}}}, 0x80, &(0x7f0000005880)=[{&(0x7f0000004880)="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", 0x1000}], 0x1, &(0x7f00000058c0)=[@txtime={{0x18, 0x1, 0x3d, 0x3}}, @mark={{0x14, 0x1, 0x24, 0x7}}], 0x30}}], 0x7, 0x4000)
write$bt_hci(r0, 0x0, 0x6)

17:05:08 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:05:08 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 97)

[ 3233.234824] FAULT_INJECTION: forcing a failure.
[ 3233.234824] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3233.235874] CPU: 0 UID: 0 PID: 21561 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3233.235891] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3233.235899] Call Trace:
[ 3233.235903]  <TASK>
[ 3233.235908]  dump_stack_lvl+0xfa/0x120
[ 3233.235926]  should_fail_ex+0x4d7/0x5e0
[ 3233.235945]  should_fail_alloc_page+0xe0/0x110
[ 3233.235965]  prepare_alloc_pages+0x1eb/0x550
[ 3233.235982]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3233.235998]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3233.236010]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3233.236027]  ? pgprot2cachemode+0x9a/0x130
[ 3233.236043]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3233.236058]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3233.236075]  ? do_raw_read_unlock+0x44/0xe0
[ 3233.236089]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3233.236104]  ? policy_nodemask+0xeb/0x4e0
[ 3233.236118]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3233.236131]  ? policy_nodemask+0xeb/0x4e0
[ 3233.236145]  alloc_pages_mpol+0xed/0x340
[ 3233.236158]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3233.236173]  ? alloc_pages_noprof+0xb7/0x180
[ 3233.236189]  alloc_pages_noprof+0x9d/0x180
[ 3233.236204]  kimage_alloc_pages+0x70/0x240
[ 3233.236220]  kimage_alloc_page+0x14e/0x7e0
[ 3233.236238]  kimage_load_segment+0x424/0xc90
[ 3233.236256]  do_kexec_load+0x6bd/0x8a0
[ 3233.236272]  ? __pfx_do_kexec_load+0x10/0x10
[ 3233.236287]  ? _copy_from_user+0x5b/0xd0
[ 3233.236310]  __x64_sys_kexec_load+0x1c6/0x230
[ 3233.236326]  do_syscall_64+0xbf/0x3f0
[ 3233.236340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3233.236353] RIP: 0033:0x7fd597aabb19
[ 3233.236363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3233.236375] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3233.236387] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3233.236396] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3233.236403] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3233.236410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3233.236418] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3233.236433]  </TASK>
[ 3233.822603] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3233.823492] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3233.824784] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:05:19 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 67)

17:05:19 executing program 2:
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x2000}, 0x4)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
bind$bt_hci(r0, &(0x7f00000000c0)={0x1f, 0x4, 0x1}, 0x6)

17:05:19 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
r1 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder-control\x00', 0x0, 0x0)
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
r3 = accept4$inet(r2, &(0x7f0000003700)={0x2, 0x0, @initdev}, &(0x7f0000003740)=0x10, 0x80000)
setsockopt$IP_VS_SO_SET_ADDDEST(r3, 0x0, 0x487, &(0x7f0000003780)={{0x2f, @dev={0xac, 0x14, 0x14, 0x18}, 0x4e21, 0x1, 'ovf\x00', 0x1c, 0x0, 0x22}, {@multicast2, 0x4e21, 0x3, 0x2, 0x8, 0x5}}, 0x44)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r4 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r4, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r5 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r5, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r6 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r6, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r6, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
poll(&(0x7f0000000080)=[{r1, 0x2200}, {r0, 0x1000}, {r2, 0x400a}, {r4, 0xc080}, {r5, 0x8}, {0xffffffffffffffff, 0x184}, {r1, 0xe01a}, {r6, 0x20}], 0x33, 0xf0c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:05:19 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
ioctl$sock_inet_SIOCSIFNETMASK(r1, 0x891c, &(0x7f0000000080)={'veth1_to_hsr\x00', {0x2, 0x0, @broadcast}})
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
r2 = socket$inet6_icmp(0xa, 0x2, 0x3a)
ioctl$FICLONE(r2, 0x40049409, r0)

17:05:19 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:05:19 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
perf_event_open(0x0, 0x0, 0x0, r2, 0x0)

17:05:19 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 98)

17:05:19 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000180)=ANY=[@ANYBLOB="c8930a0019506dca18000048b254c5dd44b4c39c02ccda713e0067307ec1c2e4f181c57bedd89196f2cbe45b339aa4e28fb1d855ebfc800f7713919823aa68b85a7102a22261ef8f97d91d0870fdb5a4d24324ae0734194c7fcfbf281e79a11d8d4eab55ca8601985cd36e5841c5afbb5bda41a8b3dc0000000000fff7", @ANYRES32=<r1=>r0, @ANYBLOB='\t\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
ioctl$sock_bt_hci(r1, 0x400448e0, &(0x7f0000000080)="9f8361fffc2329b0cb7a11203361d85b230cc5918dcac47aa1800c734cce4caa676d9226d1b7bbe8e605c4e7ec7be6fd01974f69e30290afc44893d9849d2abce832e088fb49ab6f209a7fc2b0c108f5ecdd3b5f63f6a880b591b5b20f9cc246fde5b0a311ae3ed780d8fd2b7765670b41f654aa11b339e207206eafd5bb13fae337be8d26bfc9328cdfc2481e7367cc71e72663d3863589e16214d944698e3c4e068b9ec247d208bad2fe9abe10cfc353ff3237c197f9c9607a34cc26b61c2a896a7d30c0cc7c935bf7104745cd301dae59aa28ebc4753f8e832298f911ba5b2d8c7e")
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r0, 0x0, 0x6)

[ 3243.996662] FAULT_INJECTION: forcing a failure.
[ 3243.996662] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3243.998756] CPU: 1 UID: 0 PID: 21586 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3243.998787] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3243.998801] Call Trace:
[ 3243.998809]  <TASK>
[ 3243.998818]  dump_stack_lvl+0xfa/0x120
[ 3243.998847]  should_fail_ex+0x4d7/0x5e0
[ 3243.998879]  should_fail_alloc_page+0xe0/0x110
[ 3243.998916]  prepare_alloc_pages+0x1eb/0x550
[ 3243.998946]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3243.998973]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3243.998996]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3243.999029]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3243.999059]  ? pgprot2cachemode+0x9a/0x130
[ 3243.999090]  ? irqentry_exit+0x3b/0x90
[ 3243.999123]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3243.999155]  ? policy_nodemask+0x60/0x4e0
[ 3243.999181]  ? write_comp_data+0x12/0xa0
[ 3243.999215]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3243.999240]  ? policy_nodemask+0xeb/0x4e0
[ 3243.999266]  alloc_pages_mpol+0xed/0x340
[ 3243.999291]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3243.999325]  ? alloc_pages_noprof+0xb7/0x180
[ 3243.999354]  alloc_pages_noprof+0x9d/0x180
[ 3243.999380]  kimage_alloc_pages+0x70/0x240
[ 3243.999408]  kimage_alloc_page+0x14e/0x7e0
[ 3243.999440]  kimage_load_segment+0x424/0xc90
[ 3243.999474]  do_kexec_load+0x6bd/0x8a0
[ 3243.999502]  ? __pfx_do_kexec_load+0x10/0x10
[ 3243.999531]  ? _copy_from_user+0x5b/0xd0
[ 3243.999564]  __x64_sys_kexec_load+0x1c6/0x230
[ 3243.999595]  do_syscall_64+0xbf/0x3f0
[ 3243.999619]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3243.999642] RIP: 0033:0x7fd597aabb19
[ 3243.999659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3243.999681] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3243.999703] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3243.999718] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3243.999731] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3243.999745] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3243.999758] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3243.999787]  </TASK>
17:05:19 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:05:19 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 68)

17:05:19 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x90, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:05:19 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x1, 0x4}, 0x6)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
write$bt_hci(r2, &(0x7f0000000040)={0x1, @sniff_mode={{0x803, 0xa}, {0xc8, 0x1, 0x14, 0x8000, 0x7}}}, 0xe)

17:05:19 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 99)

17:05:19 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x0, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

[ 3244.279264] FAULT_INJECTION: forcing a failure.
[ 3244.279264] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3244.281230] CPU: 0 UID: 0 PID: 21610 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3244.281261] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3244.281275] Call Trace:
[ 3244.281283]  <TASK>
[ 3244.281291]  dump_stack_lvl+0xfa/0x120
[ 3244.281327]  should_fail_ex+0x4d7/0x5e0
[ 3244.281361]  should_fail_alloc_page+0xe0/0x110
[ 3244.281397]  prepare_alloc_pages+0x1eb/0x550
[ 3244.281427]  ? __alloc_frozen_pages_noprof+0x296/0x1f20
[ 3244.281457]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3244.281480]  ? __pfx__vm_unmap_aliases+0x10/0x10
[ 3244.281510]  ? pgprot2cachemode+0x9a/0x130
[ 3244.281538]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3244.281568]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3244.281598]  ? do_raw_read_unlock+0x44/0xe0
[ 3244.281622]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3244.281650]  ? policy_nodemask+0xeb/0x4e0
[ 3244.281677]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3244.281701]  ? policy_nodemask+0xeb/0x4e0
[ 3244.281728]  alloc_pages_mpol+0xed/0x340
[ 3244.281752]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3244.281782]  ? alloc_pages_noprof+0xb7/0x180
[ 3244.281812]  alloc_pages_noprof+0x9d/0x180
[ 3244.281838]  kimage_alloc_pages+0x70/0x240
[ 3244.281867]  kimage_alloc_page+0x14e/0x7e0
[ 3244.281900]  kimage_load_segment+0x424/0xc90
[ 3244.281935]  do_kexec_load+0x6bd/0x8a0
[ 3244.281963]  ? __pfx_do_kexec_load+0x10/0x10
[ 3244.281991]  ? _copy_from_user+0x5b/0xd0
[ 3244.282025]  __x64_sys_kexec_load+0x1c6/0x230
[ 3244.282056]  do_syscall_64+0xbf/0x3f0
[ 3244.282081]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3244.282106] RIP: 0033:0x7fd597aabb19
[ 3244.282123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3244.282147] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3244.282169] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3244.282185] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3244.282199] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3244.282213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3244.282227] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3244.282259]  </TASK>
[ 3244.826960] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3244.890294] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3244.896719] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:05:33 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x0, 0xf8, 0x0, 0x0, 0x0, 0x80000001, 0x10004, 0x6, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xffffffff, 0x4, @perf_bp={&(0x7f0000000000), 0x1}, 0x4, 0x9, 0x2c, 0x5, 0xfffffffffffffc01, 0x7, 0x1, 0x0, 0xb7f5, 0x0, 0xd82}, 0x0, 0xffffffffffffffff, r1, 0xb)

17:05:33 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0) (fail_nth: 100)

17:05:33 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendto$inet(r1, &(0x7f0000000100)="7b4eee501d9fc707374d9335e41a28b6151dd1de4c440c2764d58e5a3712a795c45113d167590604669d2672627f22ec52a986a0a021e92b41ab588df02558af1b7fecd2778f3f0bd540c01c9ad128a97bf9806939de4b887c29", 0x5a, 0x5, &(0x7f0000000000)={0x2, 0x4e20, @multicast2}, 0x10)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x8800)
ioctl$sock_inet_SIOCSARP(r2, 0x8955, &(0x7f00000001c0)={{0x2, 0x4e22, @multicast2}, {0x6, @broadcast}, 0x60, {0x2, 0x4e23, @private=0xa010102}, 'veth0_virt_wifi\x00'})
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:05:33 executing program 3:
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000001300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000012c0)={&(0x7f0000000180)={0x1134, r0, 0x2, 0x70bd2d, 0x25dfdbfd, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_LINKMODES_OURS={0x1104, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0xf8, 0x3, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x400}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x13, 0x2, '\'\xd2-\xd2/{%\x16-\':-]\xd2\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}]}, {0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfb}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '/a]}\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x80000000}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}]}, {0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '+}$\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x25}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '\xbb@{\x00'}]}]}, @ETHTOOL_A_BITSET_MASK={0x1004, 0x5, "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"}]}]}, 0x1134}, 0x1, 0x0, 0x0, 0x20000000}, 0x4010)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r2 = getpgrp(0x0)
sched_setaffinity(r2, 0x8, &(0x7f00000000c0)=0xfffffffffffffffd)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000080), 0xe98b3bd879fefe21}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, r2, 0x0, 0xffffffffffffffff, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r3, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r4 = dup(r3)
setsockopt$bt_BT_DEFER_SETUP(r4, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
sendmsg$NL80211_CMD_UPDATE_FT_IES(r4, &(0x7f00000015c0)={&(0x7f0000001380)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000001580)={&(0x7f00000013c0)={0x19c, 0x0, 0x100, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_MDID={0x6, 0xb1, 0x8000}, @NL80211_ATTR_IE={0x17a, 0x2a, [@random={0xfc, 0x9a, "e76bbcdc38b2e21fb9b2dc12ac41b3e2b64daf1b038f7b9beb707f17fddf0e06bb18dbc0c897e32b6fba460dacbd1e976feb31ab5675e2d3faf59fcd92bd97c2b0dc87101e7968a912944f6d43947d74101cac08b820d7b2f29d226c762563414e955582f9c6e29286f75f94a07d42e82a554cac35df9c24d87b220c1e7a2f786c07509fe76e6335fd1e32726f1ec4981c4c3b5f1fc2b624ccf9"}, @mesh_id={0x72, 0x6}, @chsw_timing={0x68, 0x4, {0x101, 0x400}}, @random_vendor={0xdd, 0xbc, "74ab881aae4d44b70cab09e68657d8e1338e0a7874deba2a916afba873a2c3ddf94614223c270b25ee9a8e2b70419b47039bd31c141a8198888e695a09ed0d75f8cff00e84cfe87bc4d46fbe3ba0296208a2c7da06f1bb7ac943089839b0a5ea0e74e0e8400ec541353095d7164cc2bd73b9939532d5ba85e11fda567adbde8085bb5e77d81b6e909f33a00adb624798714d12181385631576fed89072677496dd9d485a6477c0a2dd66f37ff9ebeedb5976f17bc5abf7942e49558f"}, @supported_rates={0x1, 0x4, [{0x4, 0x1}, {0x12}, {0x16, 0x1}, {}]}, @ssid={0x0, 0x6, @default_ibss_ssid}]}, @NL80211_ATTR_IE={0x4}]}, 0x19c}, 0x1, 0x0, 0x0, 0x801}, 0x8004)
getpid()
ioctl$sock_bt_hci(r1, 0x400448c9, 0x0)
syz_open_procfs$namespace(r2, &(0x7f0000001340)='ns/user\x00')

17:05:33 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x0, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:05:33 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe, 0xfffffffffffffd56}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)
recvmsg(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000000c0)=""/100, 0x64}, {&(0x7f0000000140)=""/57, 0x39}, {&(0x7f0000000180)=""/89, 0x59}, {&(0x7f0000000200)=""/27, 0x1b}, {&(0x7f0000000240)=""/244, 0xf4}, {&(0x7f0000000340)=""/83, 0x53}, {&(0x7f00000003c0)=""/255, 0xff}], 0x7, &(0x7f0000000540)=""/4096, 0x1000}, 0x20)
setsockopt$bt_hci_HCI_DATA_DIR(r0, 0x0, 0x1, &(0x7f0000000080)=0xe09, 0x4)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x9)
setsockopt$bt_hci_HCI_DATA_DIR(r1, 0x0, 0x1, &(0x7f0000001580)=0x2, 0x4)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x4, 0x4}, 0x6)
r2 = openat2(r1, &(0x7f00000015c0)='./file0\x00', &(0x7f0000001600)={0x101001, 0x4, 0x12}, 0x18)
bind$bt_hci(r2, &(0x7f0000001640)={0x1f, 0x4, 0x1}, 0x6)

17:05:33 executing program 2:
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x2000}, 0x4)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
bind$bt_hci(r0, &(0x7f00000000c0)={0x1f, 0x4, 0x1}, 0x6)

17:05:33 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 69)

17:05:33 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 70)

[ 3258.047904] FAULT_INJECTION: forcing a failure.
[ 3258.047904] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 3258.050073] CPU: 1 UID: 0 PID: 21637 Comm: syz-executor.0 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3258.050110] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3258.050126] Call Trace:
[ 3258.050135]  <TASK>
[ 3258.050145]  dump_stack_lvl+0xfa/0x120
[ 3258.050178]  should_fail_ex+0x4d7/0x5e0
[ 3258.050217]  should_fail_alloc_page+0xe0/0x110
[ 3258.050259]  prepare_alloc_pages+0x1eb/0x550
[ 3258.050302]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 3258.050354]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3258.050397]  ? lock_acquire+0x15e/0x2f0
[ 3258.050435]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3258.050474]  ? finish_task_switch.isra.0+0x206/0x840
[ 3258.050508]  ? trace_sched_exit_tp+0xbf/0x100
[ 3258.050535]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3258.050565]  ? policy_nodemask+0xeb/0x4e0
[ 3258.050598]  alloc_pages_mpol+0xed/0x340
[ 3258.050627]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3258.050659]  ? alloc_pages_noprof+0xb7/0x180
[ 3258.050694]  alloc_pages_noprof+0x9d/0x180
[ 3258.050725]  kimage_alloc_pages+0x70/0x240
[ 3258.050758]  kimage_alloc_page+0x14e/0x7e0
[ 3258.050798]  kimage_load_segment+0x424/0xc90
[ 3258.050837]  do_kexec_load+0x6bd/0x8a0
[ 3258.050871]  ? __pfx_do_kexec_load+0x10/0x10
[ 3258.050906]  ? _copy_from_user+0x5b/0xd0
[ 3258.050945]  __x64_sys_kexec_load+0x1c6/0x230
[ 3258.050982]  do_syscall_64+0xbf/0x3f0
[ 3258.051011]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3258.051038] RIP: 0033:0x7fd597aabb19
[ 3258.051059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3258.051085] RSP: 002b:00007fd595021188 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 3258.051111] RAX: ffffffffffffffda RBX: 00007fd597bbef60 RCX: 00007fd597aabb19
[ 3258.051129] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[ 3258.051145] RBP: 00007fd5950211d0 R08: 0000000000000000 R09: 0000000000000000
[ 3258.051161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003
[ 3258.051177] R13: 00007ffca71055df R14: 00007fd595021300 R15: 0000000000022000
[ 3258.051212]  </TASK>
[ 3258.136024] FAULT_INJECTION: forcing a failure.
[ 3258.136024] name failslab, interval 1, probability 0, space 0, times 0
[ 3258.138035] CPU: 1 UID: 0 PID: 21649 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3258.138069] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3258.138083] Call Trace:
[ 3258.138092]  <TASK>
[ 3258.138102]  dump_stack_lvl+0xfa/0x120
[ 3258.138134]  should_fail_ex+0x4d7/0x5e0
[ 3258.138171]  should_failslab+0xc2/0x120
[ 3258.138208]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3258.138237]  ? sock_def_readable+0x1bf/0x5b0
[ 3258.138269]  ? __alloc_skb+0x2ab/0x370
[ 3258.138299]  ? lock_is_held_type+0x9e/0x120
[ 3258.138350]  ? __alloc_skb+0x2ab/0x370
[ 3258.138378]  __alloc_skb+0x2ab/0x370
[ 3258.138409]  ? __pfx___alloc_skb+0x10/0x10
[ 3258.138440]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3258.138467]  ? sock_queue_rcv_skb_reason+0xd8/0x190
[ 3258.138503]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3258.138544]  create_monitor_event+0x3d7/0x930
[ 3258.138576]  hci_sock_bind+0xb22/0x1470
[ 3258.138606]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3258.138644]  __sys_bind+0x1dd/0x2b0
[ 3258.138673]  ? __pfx___sys_bind+0x10/0x10
[ 3258.138707]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3258.138742]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3258.138779]  ? ksys_write+0x1a3/0x240
[ 3258.138813]  ? __pfx_ksys_write+0x10/0x10
[ 3258.138853]  __x64_sys_bind+0x73/0xb0
[ 3258.138881]  do_syscall_64+0xbf/0x3f0
[ 3258.138907]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3258.138930] RIP: 0033:0x7fbfee694b19
[ 3258.138949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3258.138971] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3258.138995] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3258.139012] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3258.139027] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3258.139041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3258.139056] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3258.139089]  </TASK>
17:05:33 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x0, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:05:33 executing program 0:
kexec_load(0x0, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:05:33 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0xfffffffffffffcfb, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}, 0x400}], 0x400000000000376, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(0xffffffffffffffff)
setsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0xf, &(0x7f0000000e00)=0x40085, 0xfffffffffffffdbe)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/consoles\x00', 0x0, 0x0)
bind$bt_hci(r3, &(0x7f0000000d00)={0x1f, 0x3, 0x4}, 0x6)
clock_getres(0x7, &(0x7f0000000d80))
ioctl$sock_bt_hci(r2, 0x400448cb, &(0x7f0000000cc0)="3a0d9ffee2246928df26a6ef9fa3d51dc8771b92b70ae033fc641b3b8f36102982599a6e71d35acf59702f99")
recvmmsg(0xffffffffffffffff, &(0x7f0000000b80)=[{{&(0x7f0000000080)=@tipc=@id, 0x80, &(0x7f0000000340)=[{&(0x7f0000000100)=""/2, 0x2}, {&(0x7f00000001c0)=""/207, 0xcf}, {&(0x7f00000010c0)=""/4096, 0x1000}, {&(0x7f0000002e00)=""/4096, 0x1000}, {&(0x7f00000002c0)=""/101, 0x65}], 0x5}, 0x5b44}, {{&(0x7f00000003c0)=@in6, 0x80, &(0x7f0000000140)=[{&(0x7f0000000440)=""/85, 0x55}, {&(0x7f00000004c0)=""/194, 0xc2}], 0x2, &(0x7f00000005c0)=""/110, 0x6e}, 0x7fff}, {{0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f0000000640)=""/248, 0xf8}, {&(0x7f0000000740)=""/70, 0x46}, {&(0x7f00000007c0)=""/148, 0x94}, {&(0x7f0000000880)=""/15, 0xf}, {&(0x7f00000008c0)=""/147, 0x93}, {&(0x7f0000000980)=""/163, 0xa3}], 0x6, &(0x7f0000000ac0)=""/136, 0x88}, 0x9}], 0x3, 0x20, 0x0)
r4 = socket$inet(0x2, 0x2, 0x10ff)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r4, &(0x7f0000000040)="60da7056a593ccc8bd3f00000000000000f19d7a", 0x14, 0x810, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10)
ioctl$sock_SIOCINQ(r4, 0x541b, &(0x7f0000000d40))
fdatasync(r1)
write$bt_hci(r0, 0x0, 0x6)
r5 = syz_open_dev$mouse(&(0x7f0000000c40), 0x9, 0x801)
setsockopt$bt_hci_HCI_TIME_STAMP(r5, 0x0, 0x3, &(0x7f0000000c80)=0x509, 0x4)

17:05:33 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 71)

17:05:33 executing program 5:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f00000000c0)={0x1f, 0x2, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x9, 0x4}, 0xe)
bind$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r1 = dup(r0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f00000001c0))
bind$bt_hci(r1, &(0x7f0000000080)={0x1f, 0xfffd, 0x1}, 0x6)
r2 = getpgid(0x0)
openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x101, 0x0)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x101480, 0x0)
perf_event_open(0x0, r2, 0xffffffffffffffff, r3, 0x0)

17:05:33 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 72)

[ 3258.858413] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3258.908929] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3258.911088] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:05:43 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 73)

17:05:43 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f0000000240)={0x2, 0x0, @remote}, 0xfffffd5e)
recvfrom(r0, &(0x7f0000000180)=""/37, 0x25, 0x10120, &(0x7f00000001c0)=@rc={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x81}, 0x80)
setsockopt$inet_mreqsrc(r0, 0x0, 0x26, &(0x7f0000000140)={@initdev={0xac, 0x1e, 0x2, 0x0}, @multicast2, @broadcast}, 0xc)
getsockname$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, &(0x7f0000000100)=0x10)

17:05:43 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$HCIINQUIRY(r0, 0x800448f0, &(0x7f0000000080)={0x2, 0x9, "2c4582", 0xff, 0x4})
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

17:05:43 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000040))
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}, 0x9}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x0, 0x1, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)

17:05:43 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:05:43 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
ioctl$sock_bt_hci(r0, 0x80089180, &(0x7f0000000000)="f12123fd3c2023fb68699e63ce8cc792bc2c3172d747e80c4907cf8021b8f267d82f21369120f071e7148a2cbd6281943489e4b6b005abe0858e7f3b747b7d9277b5e12e00e2765a452f0b3270066dbd2aecec3fcce5e58495f4e54b66b765bca3d7")
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:05:43 executing program 0:
kexec_load(0x2, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:05:43 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f00000002c0))
r3 = dup2(r2, r1)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000000)={0x0, <r5=>0x0}, &(0x7f0000000040)=0x5)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r6, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r7 = dup(r6)
setsockopt$bt_BT_DEFER_SETUP(r7, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$sock_bt_hci(r7, 0x800448d5, &(0x7f00000001c0)="a2a13eeb8b0dc7ea1faa23eb3779ef40e9dd5e125d476352a7b6d8ab8e7a3b4622c79c73534d150baee719d666c59bd9d8f92e7174c323ec70bb19f4ad14bb5323376fd78e6481fdf0718fc81b582e331edd2803dc5768917ada3f2d6609694b38a3e5109a50fbb00bd5ccd99a3212a52ba9825a637c64955f2c040f7fb033f0e293c7a1c4c38688e2efa3b3d2e8bef74b5e44f221999344b987aa2814bc5a2dfb97251ac10450615fadfdb2401e4f703abd8938deb97ede63023ef96979b47ec8561bdc48660fc452b64dc0d439190408362ac7")
setuid(r5)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@cache_none}], [{@euid_lt={'euid<', r5}}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@fowner_eq}, {@obj_user={'obj_user', 0x3d, '/}{'}}, {@mask={'mask', 0x3d, 'MAY_READ'}}, {@smackfshat={'smackfshat', 0x3d, ','}}, {@obj_user}]}})

17:05:43 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:05:43 executing program 0:
kexec_load(0x3, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:05:43 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 74)

17:05:43 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$sock_bt_hci(r2, 0x800448d5, &(0x7f00000000c0)="30b7ff047e8231e9a5a2db0a5a50aac1ce1306d41841f5c0840c99b11830b080ea55c92f31ed207d9cea77107d1998a69f1fa76ba3cecc09d23723ca4d103f63bac2c7c7c71bac72e30eb3aa526fbb50416845bf9ac83f46aec25b9e550efe96de698ce3a4fe205939e398f00e015277df694c175af976dea24644cd9d0f5b8d5496415e77522ec929f146aaae2bdf04f2fe64d3fe605a24a869301860183011b946d6c60f1e219823ead5318086f3c0cc4bafd95dd0574b2fca62e8f139cf48bff58946d27da580f62306a9755b03afd8a86e1b33d2b91adfa433c9")
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:05:43 executing program 1:
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x123080, 0x0)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r1, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r1, 0x0, 0x6)

17:05:43 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

[ 3268.318190] FAULT_INJECTION: forcing a failure.
[ 3268.318190] name failslab, interval 1, probability 0, space 0, times 0
[ 3268.319822] CPU: 0 UID: 0 PID: 21705 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3268.319852] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3268.319866] Call Trace:
[ 3268.319874]  <TASK>
[ 3268.319883]  dump_stack_lvl+0xfa/0x120
[ 3268.319912]  should_fail_ex+0x4d7/0x5e0
[ 3268.319946]  should_failslab+0xc2/0x120
[ 3268.319980]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3268.320008]  ? sock_def_readable+0x1bf/0x5b0
[ 3268.320038]  ? __alloc_skb+0x2ab/0x370
[ 3268.320066]  ? lock_is_held_type+0x9e/0x120
[ 3268.320105]  ? __alloc_skb+0x2ab/0x370
[ 3268.320130]  __alloc_skb+0x2ab/0x370
[ 3268.320159]  ? __pfx___alloc_skb+0x10/0x10
[ 3268.320187]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3268.320212]  ? sock_queue_rcv_skb_reason+0xd8/0x190
[ 3268.320245]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3268.320283]  create_monitor_event+0x692/0x930
[ 3268.320322]  hci_sock_bind+0xa19/0x1470
[ 3268.320351]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3268.320386]  __sys_bind+0x1dd/0x2b0
[ 3268.320413]  ? __pfx___sys_bind+0x10/0x10
[ 3268.320444]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3268.320477]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3268.320511]  ? ksys_write+0x1a3/0x240
[ 3268.320542]  ? __pfx_ksys_write+0x10/0x10
[ 3268.320578]  __x64_sys_bind+0x73/0xb0
[ 3268.320604]  do_syscall_64+0xbf/0x3f0
[ 3268.320628]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3268.320651] RIP: 0033:0x7fbfee694b19
[ 3268.320667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3268.320689] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3268.320711] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3268.320726] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3268.320741] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3268.320754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3268.320768] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3268.320798]  </TASK>
17:05:43 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x800448d7, &(0x7f0000000140)="4650bacd20a1ded8a47440f17cc44e695be276c3dee62db44c659352edcacf00667a28cc818a54349d671be6b684344dcca5b5265f126234fadf220a2de227d8214a21ea61e526955691b4a6cf5ef457fa898fc6be3d2391d497f38e615cb141c70dea9c22a517123ff6750b8ab73db798b5204b6a013cd9ca107ea84700641a3e9692187843afe121d7daface188153e9871eb99ec0e57e218347200228a51726402e7d2f1b0b0a7ca5d09bfc96fc1fe31e1e6b5f1d39c764bbf8a39bd037dc122da677")
ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000000c0)="01cf1fc3f7a9e8d419b368da282187d617234b5dc8886ef69956460ce8aea3a89d16216b3c50626ea675aa59489d253ffeb44ce7295f14d9ce32781982dd0c6715f3a109b063c8f230743709b43eabd82833436819500a5e440dfa9aab4a7862129a6b6044af1b790ba61b4eba4982addf018c2d9cfda17f67f24e9f")
write$bt_hci(r0, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)
write$bt_hci(r0, 0x0, 0x6)

17:05:43 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_DATA_DIR(r1, 0x0, 0x1, &(0x7f0000000000)=0x1, 0x4)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3)

17:05:43 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

[ 3269.303931] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3269.306048] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:05:52 executing program 0:
kexec_load(0x8, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:05:52 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x800448d7, &(0x7f0000000140)="4650bacd20a1ded8a47440f17cc44e695be276c3dee62db44c659352edcacf00667a28cc818a54349d671be6b684344dcca5b5265f126234fadf220a2de227d8214a21ea61e526955691b4a6cf5ef457fa898fc6be3d2391d497f38e615cb141c70dea9c22a517123ff6750b8ab73db798b5204b6a013cd9ca107ea84700641a3e9692187843afe121d7daface188153e9871eb99ec0e57e218347200228a51726402e7d2f1b0b0a7ca5d09bfc96fc1fe31e1e6b5f1d39c764bbf8a39bd037dc122da677")
ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000000c0)="01cf1fc3f7a9e8d419b368da282187d617234b5dc8886ef69956460ce8aea3a89d16216b3c50626ea675aa59489d253ffeb44ce7295f14d9ce32781982dd0c6715f3a109b063c8f230743709b43eabd82833436819500a5e440dfa9aab4a7862129a6b6044af1b790ba61b4eba4982addf018c2d9cfda17f67f24e9f")
write$bt_hci(r0, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)
write$bt_hci(r0, 0x0, 0x6)

17:05:52 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffffffffffffffff, 0x1}, 0x6)
r2 = openat2(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x58, 0x4}, 0x18)
write$bt_hci(r2, &(0x7f0000000140)={0x1, @le_create_cis={{0x2064, 0xd}, {0x3, [{0x2, 0x1}, {0x3, 0x8000}, {0x7, 0x6}]}}}, 0x11)
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x2, 0x1, 0x9, 0x21, 0x0, 0x0, 0x200, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x7, 0x1, @perf_config_ext={0x8}, 0x10010, 0x3f, 0x7fffffff, 0x0, 0x8, 0x4779, 0x0, 0x0, 0x3, 0x0, 0x20000000}, 0x0, 0x0, r1, 0x8)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x800448d2, &(0x7f0000000200)="fb5429646a16789c3de3ec3268dccf819e1660cd2d19c11dfa898e")
ioctl$sock_SIOCSIFVLAN_GET_VLAN_REALDEV_NAME_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000240)={0x8, 'sit0\x00', {'ipvlan0\x00'}, 0x7})

17:05:52 executing program 6:
r0 = socket$inet(0x2, 0x800, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r2, 0x800c6613, &(0x7f0000000100)=@v2={0x2, @aes256, 0x3, '\x00', @c})
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
setsockopt$inet_int(r0, 0x0, 0x8, &(0x7f0000000000)=0x4, 0x4)

17:05:52 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:05:52 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 75)

17:05:52 executing program 5:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r1 = dup(r0)
setsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
fsconfig$FSCONFIG_SET_FD(r1, 0x5, &(0x7f0000000000)=':-\x00', 0x0, 0xffffffffffffffff)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:05:52 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f00000000c0)=[{0xfffffffffffffffe}, {&(0x7f0000000100)=""/97, 0x61}], 0x2}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
setsockopt$bt_hci_HCI_FILTER(r0, 0x0, 0x2, &(0x7f0000000040)={0x4c1a, [0xb72e], 0xfff}, 0x10)
recvmmsg(0xffffffffffffffff, &(0x7f0000000340)=[{{0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f00000002c0)=""/86, 0x56}, 0xf20}], 0x1, 0x10020, &(0x7f0000000380)={0x0, 0x3938700})
write$bt_hci(r0, 0x0, 0x6)
write$binfmt_script(r0, &(0x7f0000000180)={'#! ', './file0', [{}, {0x20, '[-'}, {}, {}, {}, {0x20, '({'}, {0x20, '%#/'}], 0xa, "7dde14d6cdf6879eeeed087840f5a5c62bb5cbc504b7a9659321b8632c1e2ff786e891b3e97bab8c7d7e19d9479619aad4b0de7ab76e7e2d3490c84f1bbdbeea34b6b7757358e3fe60e9d96117dc4f6e8a926e9a84f488911f5d70156d39af97e0838555c07054ce182acdc68ef3e7f75da90cf3bad25ece9b939a7cc504be9c429ae5691aa7cf159568dfb4df5479fd7caccf82c9ea5b4c4033a5fc0dc0e06d0f83228b1ac15fb6b578ac03fbaac8428bb6f973891396257a24836ddf4d0789b951fcee6ef1574cc5b20b1fad24ffc80c4b6b819609e98215afea106eec19223b5e7332e17ca934f0f9be64"}, 0x105)

17:05:52 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 76)

17:05:52 executing program 0:
kexec_load(0x10, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:05:52 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
r3 = perf_event_open(0x0, 0x0, 0x0, r2, 0x0)
signalfd(r3, &(0x7f0000000000)={[0x5]}, 0x8)

17:05:52 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
perf_event_open(&(0x7f0000000080)={0x5, 0x80, 0x81, 0xd9, 0x1f, 0x6, 0x0, 0x1, 0xa0240, 0x8, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x2, 0x2, @perf_config_ext={0x401}, 0x12952, 0x2, 0x7aa, 0x1, 0x5, 0x9, 0x4, 0x0, 0x7, 0x0, 0x825}, 0x0, 0x5, r1, 0x10)

17:05:52 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$HCIINQUIRY(r1, 0x800448f0, &(0x7f0000000040)={0x3, 0x9, "b2cc01", 0x2, 0x40})
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)

17:05:52 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x800448d7, &(0x7f0000000140)="4650bacd20a1ded8a47440f17cc44e695be276c3dee62db44c659352edcacf00667a28cc818a54349d671be6b684344dcca5b5265f126234fadf220a2de227d8214a21ea61e526955691b4a6cf5ef457fa898fc6be3d2391d497f38e615cb141c70dea9c22a517123ff6750b8ab73db798b5204b6a013cd9ca107ea84700641a3e9692187843afe121d7daface188153e9871eb99ec0e57e218347200228a51726402e7d2f1b0b0a7ca5d09bfc96fc1fe31e1e6b5f1d39c764bbf8a39bd037dc122da677")
ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000000c0)="01cf1fc3f7a9e8d419b368da282187d617234b5dc8886ef69956460ce8aea3a89d16216b3c50626ea675aa59489d253ffeb44ce7295f14d9ce32781982dd0c6715f3a109b063c8f230743709b43eabd82833436819500a5e440dfa9aab4a7862129a6b6044af1b790ba61b4eba4982addf018c2d9cfda17f67f24e9f")
write$bt_hci(r0, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)
write$bt_hci(r0, 0x0, 0x6)

17:05:52 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
getsockopt$bt_sco_SCO_OPTIONS(r2, 0x11, 0x1, &(0x7f00000000c0)=""/252, &(0x7f0000000000)=0xfc)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:05:52 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)

17:05:52 executing program 0:
kexec_load(0x300, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:05:52 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 77)

17:05:52 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
dup(r0)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
write$bt_hci(r2, &(0x7f0000000000)={0x1, @set_conn_encrypt={{0x413, 0x3}, {0xc9, 0x20}}}, 0x7)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r3, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r4 = dup(r3)
setsockopt$bt_BT_DEFER_SETUP(r4, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$HCIINQUIRY(r4, 0x800448f0, &(0x7f0000000040)={0x4, 0x6, "9ae3e8", 0xb0, 0x4c})
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 3278.024170] Bluetooth: hci3: Opcode 0x0401 failed: -4
[ 3278.026542] Bluetooth: hci3: Opcode 0x0401 failed: -4
[ 3278.086171] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3278.088968] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3279.294400] Bluetooth: hci3: command 0x0406 tx timeout
[ 3281.342423] Bluetooth: hci3: command 0x0406 tx timeout
17:06:01 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x800448d7, &(0x7f0000000140)="4650bacd20a1ded8a47440f17cc44e695be276c3dee62db44c659352edcacf00667a28cc818a54349d671be6b684344dcca5b5265f126234fadf220a2de227d8214a21ea61e526955691b4a6cf5ef457fa898fc6be3d2391d497f38e615cb141c70dea9c22a517123ff6750b8ab73db798b5204b6a013cd9ca107ea84700641a3e9692187843afe121d7daface188153e9871eb99ec0e57e218347200228a51726402e7d2f1b0b0a7ca5d09bfc96fc1fe31e1e6b5f1d39c764bbf8a39bd037dc122da677")
ioctl$sock_bt_hci(r0, 0x400448dc, &(0x7f00000000c0)="01cf1fc3f7a9e8d419b368da282187d617234b5dc8886ef69956460ce8aea3a89d16216b3c50626ea675aa59489d253ffeb44ce7295f14d9ce32781982dd0c6715f3a109b063c8f230743709b43eabd82833436819500a5e440dfa9aab4a7862129a6b6044af1b790ba61b4eba4982addf018c2d9cfda17f67f24e9f")
write$bt_hci(r0, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)

17:06:01 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 78)

17:06:01 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448ca, &(0x7f0000000000)="f10c6b3adc694aaa001714f67082ae2a1ba732959cf56b190498de7e62cdb807ef2a4ab0d494e01385f3a6a27f9b736901")
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:06:01 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
setsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f0000000080)=0x7, 0x2)

17:06:01 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000040)={<r1=>0xffffffffffffffff, 0x2c75, 0x401, 0x7eb})
recvfrom(r1, &(0x7f0000000080)=""/132, 0x84, 0x20, &(0x7f0000000140)=@l2tp6={0xa, 0x0, 0xfff, @private1={0xfc, 0x1, '\x00', 0x1}, 0x91e, 0x2}, 0x80)

17:06:01 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
r1 = socket$inet(0x2, 0x80003, 0xff)
r2 = socket$inet_icmp(0x2, 0x2, 0x1)
recvfrom$inet(r2, &(0x7f0000000200)=""/218, 0xda, 0x1, &(0x7f0000000180)={0x2, 0x4e21, @multicast2}, 0x10)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
getsockname$inet(r1, &(0x7f0000000100), &(0x7f0000000140)=0x10)
r3 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r3, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$IP_VS_SO_SET_ZERO(r3, 0x0, 0x48f, &(0x7f0000000080)={0x60df285ed58cf20, @broadcast, 0x4e21, 0x1, 'wlc\x00', 0x10, 0x6, 0x35}, 0x2c)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'veth0\x00'})
r4 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r4, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$EBT_SO_SET_COUNTERS(r4, 0x0, 0x81, &(0x7f0000000340)={'filter\x00', 0x0, 0x0, 0x0, [0x5f2c, 0x3, 0x7, 0x2, 0x53db], 0x1, &(0x7f0000000300)=[{}, {}, {}], 0x0, [{}]}, 0x88)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x4048000, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:06:01 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)

17:06:01 executing program 0:
kexec_load(0x3e00, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

[ 3286.004706] FAULT_INJECTION: forcing a failure.
[ 3286.004706] name failslab, interval 1, probability 0, space 0, times 0
[ 3286.005722] CPU: 0 UID: 0 PID: 21808 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3286.005740] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3286.005749] Call Trace:
[ 3286.005753]  <TASK>
[ 3286.005758]  dump_stack_lvl+0xfa/0x120
[ 3286.005776]  should_fail_ex+0x4d7/0x5e0
[ 3286.005796]  should_failslab+0xc2/0x120
[ 3286.005815]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3286.005831]  ? sock_def_readable+0x1bf/0x5b0
[ 3286.005848]  ? __alloc_skb+0x2ab/0x370
[ 3286.005863]  ? lock_is_held_type+0x9e/0x120
[ 3286.005885]  ? __alloc_skb+0x2ab/0x370
[ 3286.005899]  __alloc_skb+0x2ab/0x370
[ 3286.005915]  ? __pfx___alloc_skb+0x10/0x10
[ 3286.005930]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3286.005944]  ? sock_queue_rcv_skb_reason+0xd8/0x190
[ 3286.005963]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3286.005983]  create_monitor_event+0x65/0x930
[ 3286.006000]  hci_sock_bind+0xab2/0x1470
[ 3286.006015]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3286.006033]  __sys_bind+0x1dd/0x2b0
[ 3286.006048]  ? __pfx___sys_bind+0x10/0x10
[ 3286.006065]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3286.006083]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3286.006101]  ? ksys_write+0x1a3/0x240
[ 3286.006119]  ? __pfx_ksys_write+0x10/0x10
[ 3286.006139]  __x64_sys_bind+0x73/0xb0
[ 3286.006152]  do_syscall_64+0xbf/0x3f0
[ 3286.006166]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3286.006179] RIP: 0033:0x7fbfee694b19
[ 3286.006189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3286.006201] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3286.006213] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3286.006222] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3286.006229] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3286.006237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3286.006244] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3286.006261]  </TASK>
17:06:01 executing program 6:
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='sessionid\x00')
fcntl$setlease(0xffffffffffffffff, 0x400, 0x2)
r1 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r1}], 0x1, 0xf8c6)
sendto$inet(r1, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0xc1, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10)
r2 = openat$cgroup_devices(r0, &(0x7f0000000000)='devices.deny\x00', 0x2, 0x0)
r3 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r3, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
close_range(r2, r3, 0x0)
signalfd(r0, &(0x7f0000000100), 0x8)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$EXT4_IOC_MIGRATE(r4, 0x6609)
r5 = pidfd_getfd(r0, r1, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r5, 0x5411, &(0x7f0000000180))

17:06:01 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 79)

17:06:01 executing program 0:
kexec_load(0x3f00, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:01 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x202242, 0x1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x800448d2, &(0x7f0000000080)="7920c31bea9630b257f26af8edaf24f025e7c1a4782ff9cfb07b339f98ee05f49ef568399d039e750f16e22fc6f524a0028304071aa04bb2b67ce1be6197203719bf88016ba5d8c41bdadafd092e29c6416d1488a4ede12e7de429c8f50166ec833cb6fe792533544d0b80b5e51409a52239ce24db45d5c003fb751d1cb4cda1d88e14c50c7d94ff9a13be139af3835fc1c69c8c5c2fd3dee1ceeb6e7fca0ee0d580e874c29ccb9321816a7859ff0d5ff15de810ca0bf041e773f11f48f1b88a4092f280a7b1792d2a7938d89e60792e9a7a9305147285156fd0ebca58d0d713b9a886f40607a0ca8d17")
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

17:06:01 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
write$bt_hci(r0, &(0x7f0000000000)={0x1, @setup_sync_conn={{0x428, 0x11}, {0xc9, 0x1, 0x1f, 0x5, 0x7, 0x0, 0x1}}}, 0x15)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0x2, 0x2}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:06:01 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 80)

17:06:01 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$sock_bt_hci(r0, 0x800448d7, &(0x7f0000000140)="4650bacd20a1ded8a47440f17cc44e695be276c3dee62db44c659352edcacf00667a28cc818a54349d671be6b684344dcca5b5265f126234fadf220a2de227d8214a21ea61e526955691b4a6cf5ef457fa898fc6be3d2391d497f38e615cb141c70dea9c22a517123ff6750b8ab73db798b5204b6a013cd9ca107ea84700641a3e9692187843afe121d7daface188153e9871eb99ec0e57e218347200228a51726402e7d2f1b0b0a7ca5d09bfc96fc1fe31e1e6b5f1d39c764bbf8a39bd037dc122da677")
write$bt_hci(r0, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)

17:06:01 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)

17:06:01 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x1}, 0x6)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)

[ 3287.096759] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3287.098773] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:06:10 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
setsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f0000000080)=0x7, 0x2)

17:06:10 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 81)

17:06:10 executing program 0:
kexec_load(0x4000, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:10 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)

17:06:10 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x1, 0x1}, 0x6)
ioctl$FICLONE(r1, 0x40049409, r2)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
r3 = fsmount(r0, 0x0, 0xb5)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000040)={<r4=>0x0}, &(0x7f00000000c0)=0xc)
perf_event_open(0x0, r4, 0x2000000009, r3, 0x8)

17:06:10 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(0xffffffffffffffff, 0x89f4, &(0x7f0000000240)={'syztnl1\x00', &(0x7f00000001c0)={'ip6_vti0\x00', <r1=>0x0, 0x29, 0x2, 0x1f, 0x10000, 0x48, @mcast2, @empty, 0x7, 0x8, 0xfff, 0x5}})
sendmmsg$inet(r0, &(0x7f0000000300)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000040)="83e3e9641dec3dcf851e19105589ba5c7cfe35c9edc16698f16ed19d74c6bdb1df2eefa24b8e91981292d802762c9be9503ed57a7f0e85083967a29957ee34f7995246811fbfd34de496b270a11b59530778d052de716311155173b01687cf6eb3f364a9637a0757a4f295515357bd203c1689b33d29965af4d288bb1059684f6e5c31946e0c00215f5dad78f318dfa1dd4323891711602488534bff3f67c9441b8ed12feea94af214e8bf46cbe9d2b99e1049c2c733eeeb03c120cc17a674a767499c6b5bd22f8dbe2cfe72e657fe7562d70b0fbc39a5443e7a55a152f01c0828bc46b7c1b4b8b3cd2d0c5c", 0xec}], 0x1, &(0x7f0000000280)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x9b}}, @ip_ttl={{0x14, 0x0, 0x2, 0x2}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r1, @broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x10001}}], 0x68}}], 0x1, 0x10)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)

17:06:10 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
clock_gettime(0x0, &(0x7f0000000100)={<r1=>0x0, <r2=>0x0})
ppoll(&(0x7f0000000000)=[{r0, 0x10}, {r0, 0x2000}, {r0, 0x2202}, {r0, 0x4}, {r0, 0x248}, {r0, 0x200}, {r0, 0x80}], 0x7, &(0x7f0000000140)={r1, r2+10000000}, &(0x7f0000000180)={[0x9]}, 0x8)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:06:10 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100), 0x6)
r1 = perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f00000000c0), 0x4}, 0xd200, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r3 = dup(r2)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
r4 = openat$cgroup_ro(r3, &(0x7f00000001c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x0, 0x0)
sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r4, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, 0x0, 0x200, 0x70bd27, 0x25dfdbfb, {}, ["", "", ""]}, 0xfec9}, 0x1, 0x0, 0x0, 0x20008080}, 0x20000040)
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000080)='\x00')
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/class/ata_port', 0x40000, 0x24)
setsockopt$bt_hci_HCI_DATA_DIR(r5, 0x0, 0x1, &(0x7f0000000340)=0x9, 0x4)
r6 = openat$cgroup_pressure(r5, &(0x7f0000006c80)='io.pressure\x00', 0x2, 0x0)
r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r7, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r8 = dup(r7)
setsockopt$bt_BT_DEFER_SETUP(r8, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
r9 = dup(r1)
io_submit(0x0, 0x5, &(0x7f0000006ec0)=[&(0x7f0000000400)={0x0, 0x0, 0x0, 0x2, 0x7, 0xffffffffffffffff, &(0x7f00000003c0)="660718432cab8c472a45d062885538ffbec4b805b7be8445a8696a", 0x1b, 0x3ff, 0x0, 0x1, r1}, &(0x7f0000006b40)={0x0, 0x0, 0x0, 0x6, 0x9, 0xffffffffffffffff, &(0x7f0000006a40)="e51e2fa1df9373f3bdbba1507df260d8e0bb33698cdfd049e4757131a364642b9f233785131cc194d0ae78506e51e7cec547caa5ff13d1900dbfe2bd493c05cca15259c25078783f2e60037637c2e13b5d4f762b8d0d2975a257f8b71268e69d2ee9ad44e3252a58d4b08c6e56f5c86d91f2aee5015f57268142368d36da1be4d60d1fe1657aa0bf9f0bec4673321acc6dd1f46af3fd65caa11e45a4a5c4502e69ce4f98d669d62bc47dc5c4d51ab612b64548ec565d5208b90e56fe9bd42e5be427b71fda", 0xc5, 0xffffffffffffdfd7, 0x0, 0x3, r3}, &(0x7f0000006c40)={0x0, 0x0, 0x0, 0x8, 0x8, 0xffffffffffffffff, &(0x7f0000006b80)="39e16768173a2c35e95da531688c4a03c1be661af2907b52190edff66f87effd434efbdad8e428208ac2d0dd37c0b1e0c6d27e074152df9c530c60ff99da826edb1ed2bae22812a4fd8e8f283a0ca2483d496e86f94df5fc5536210d896e43ac8938658f777be370ff4af6134c0629ff683816d1a89cf31f741d4e9551895d6c6a55d16990eaff243d8ca2f26f4334ab80e0bc9a1d3e0f2d1361dad05add5381df3216ca7279ad242f2a0d75", 0xac, 0x3, 0x0, 0x2, r3}, &(0x7f0000006d80)={0x0, 0x0, 0x0, 0x9, 0x9, r6, &(0x7f0000006cc0)="b1615f0567c5ee8502d94ace18bdafe64d0843138918490c34fd8e6dabbd8e63c8d7560d78f4ac0fccdc7c3cbe5a5be331f966751b7c17eefb3a64f5d34ce1408413347964715e1c326a78cfc8f515c10d929c3b87f42ed9267cc808bd23288148e0110f22bd0b33322cff3ff2f6d1815fe28b5cabcc6f5d98989f245ff87c891df6d2151d5af815f5a8fadb5e8cc1b5336b9c23c5aa770babf1282e5feb0e43c913afe3", 0xa4, 0x9287, 0x0, 0x2, r8}, &(0x7f0000006e80)={0x0, 0x0, 0x0, 0x7, 0x8, r0, &(0x7f0000006dc0)="0bd218293e1fd942557a13a411ffdfa15fca4945018b0cc83d6b2c426339e94aa7ec8ea4e502b7ad3077e0f37cf6546fedd173f06ca154e51552374be3a3febcc1f8b022bec7fb5fe99481ce614c337d3218d5fd9b178ccf45686bc9566d1834721a10d9ea2c00ee8be621f9875988764b95ab932d9757af8cff33535482a2d7ba97", 0x82, 0x81, 0x0, 0x5, r9}])
getsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f0000000140)=0x8, &(0x7f0000000180)=0x2)

17:06:10 executing program 0:
kexec_load(0xfe7f, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:10 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:06:10 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 82)

17:06:11 executing program 0:
kexec_load(0xff0f, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:11 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
write$bt_hci(r0, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)

17:06:11 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r1 = socket$inet(0x2, 0x80003, 0xff)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0x3, 0x1}, 0x6)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
getsockopt$IP_VS_SO_GET_DAEMON(r1, 0x0, 0x487, &(0x7f0000000040), &(0x7f0000000080)=0x30)
write$bt_hci(r0, 0x0, 0x6)

[ 3295.841809] FAULT_INJECTION: forcing a failure.
[ 3295.841809] name failslab, interval 1, probability 0, space 0, times 0
[ 3295.842744] CPU: 0 UID: 0 PID: 21884 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3295.842761] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3295.842769] Call Trace:
[ 3295.842773]  <TASK>
[ 3295.842779]  dump_stack_lvl+0xfa/0x120
[ 3295.842798]  should_fail_ex+0x4d7/0x5e0
[ 3295.842818]  should_failslab+0xc2/0x120
[ 3295.842838]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3295.842853]  ? sock_def_readable+0x1bf/0x5b0
[ 3295.842870]  ? __alloc_skb+0x2ab/0x370
[ 3295.842885]  ? lock_is_held_type+0x9e/0x120
[ 3295.842907]  ? __alloc_skb+0x2ab/0x370
[ 3295.842920]  __alloc_skb+0x2ab/0x370
[ 3295.842936]  ? __pfx___alloc_skb+0x10/0x10
[ 3295.842951]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3295.842966]  ? sock_queue_rcv_skb_reason+0xd8/0x190
[ 3295.842984]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3295.843005]  create_monitor_event+0x3d7/0x930
[ 3295.843022]  hci_sock_bind+0xb22/0x1470
[ 3295.843037]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3295.843055]  __sys_bind+0x1dd/0x2b0
[ 3295.843070]  ? __pfx___sys_bind+0x10/0x10
[ 3295.843087]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3295.843106]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3295.843124]  ? ksys_write+0x1a3/0x240
[ 3295.843141]  ? __pfx_ksys_write+0x10/0x10
[ 3295.843161]  __x64_sys_bind+0x73/0xb0
[ 3295.843175]  do_syscall_64+0xbf/0x3f0
[ 3295.843188]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3295.843201] RIP: 0033:0x7fbfee694b19
[ 3295.843210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3295.843223] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3295.843235] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3295.843243] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3295.843251] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3295.843258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3295.843266] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3295.843283]  </TASK>
17:06:11 executing program 0:
kexec_load(0x1f12f, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

[ 3296.563301] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3296.564864] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3296.566438] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:06:20 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
write$bt_hci(r0, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)

17:06:20 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$incfs(0xffffffffffffffff, &(0x7f0000000000)='.pending_reads\x00', 0x410000, 0x0)
ioctl$sock_bt_hci(r1, 0x400448dd, &(0x7f0000000040)="67fbac9feaeeecef2425fc6318ec53207889f33427")

17:06:20 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x0, 0x2}, 0x46)
write$bt_hci(r0, 0x0, 0x6)

17:06:20 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 83)

17:06:20 executing program 0:
kexec_load(0x3f62e, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:20 executing program 6:
r0 = socket$inet(0x2, 0x0, 0x316d)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

17:06:20 executing program 4:
kexec_load(0x3f00, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:20 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000015c0), 0x200040, 0x0)
ioctl$sock_bt_hci(r1, 0x800448d7, &(0x7f0000001600)="648f91bf3617c41b70111f7c739ffac785bd6dfd4cda6cf6a580d4ac4a02b2cd01b2318c7e83803beb6eb89dded713638a0a6a5c62d2f4a8c72afc63d29c80cdf8d4f0b6c4a7451ce74dba442af60303702e49e6d9549eeec6dcd58df2888a1dd8af2b1795ed1638a11fa288ed10396ef7bef671575c3cee37d60f1f9ae85697a80c7efef7f2b60e2fe5ed33c4c16d1e851fc90dbac3eaa7873da52b983d41623fef716b2b3635d638cc9a45b04c5a340d326074f025e363528f2bfd2aa4477b1a61b0f624e36562a62a7f55fb25d78f52804fe47e0c25ac9f8f413f1154adae32e07e0681c80f3b5db46267b8957baf70c6f9ac")
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

17:06:20 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 84)

17:06:21 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
setsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f0000000080)=0x7, 0x2)

17:06:21 executing program 0:
kexec_load(0x80000, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:21 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 85)

17:06:21 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r2 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r2, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
close_range(r1, r2, 0x2)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x2, 0x3}, 0x6)

17:06:21 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

[ 3306.690632] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3306.806737] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3306.808176] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:06:31 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x1, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x86}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

17:06:31 executing program 0:
kexec_load(0x9fbff, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:31 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
setsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f0000000080)=0x7, 0x2)

17:06:31 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1}}, 0x10)
sendto$inet(r1, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x8080, &(0x7f00000000c0)={0x2, 0x3, @remote}, 0xfffffffffffffc3b)

17:06:31 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 86)

17:06:31 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$sock_bt_hci(r1, 0x400448dc, &(0x7f00000000c0)="6018900938bf5e6ba11aab4256707025e411ceab1b23c5ea205f0de715de289e409a8fe561e4c441753a998f4886e3925579956ca5ddbedab9ea3d9d196299cbd448e5367a647e133eeb606be7f933323205c9c1bca08935bc562388d4aab3d556f72abcbf777d6ab2cd3dd98e2c8daf3763b8bca36f5bb72f70f71740af2fb610185b48dbbc5b05161eb922d18dc7ac4109dc0cf0f7a4d3fcf76b02c08ee1c64dfec81a971240c01ecf78c7d8")
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:06:31 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
write$bt_hci(r0, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)

17:06:31 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

17:06:31 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000000)={0x1, @change_conn_ptype={{0x40f, 0x4}, {0xc9, 0xb2}}}, 0x8)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 3316.332472] FAULT_INJECTION: forcing a failure.
[ 3316.332472] name failslab, interval 1, probability 0, space 0, times 0
[ 3316.334334] CPU: 0 UID: 0 PID: 21967 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3316.334367] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3316.334381] Call Trace:
[ 3316.334389]  <TASK>
[ 3316.334399]  dump_stack_lvl+0xfa/0x120
[ 3316.334430]  should_fail_ex+0x4d7/0x5e0
[ 3316.334465]  should_failslab+0xc2/0x120
[ 3316.334501]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3316.334530]  ? sock_def_readable+0x1bf/0x5b0
[ 3316.334561]  ? __alloc_skb+0x2ab/0x370
[ 3316.334590]  ? lock_is_held_type+0x9e/0x120
[ 3316.334631]  ? __alloc_skb+0x2ab/0x370
[ 3316.334658]  __alloc_skb+0x2ab/0x370
[ 3316.334689]  ? __pfx___alloc_skb+0x10/0x10
[ 3316.334719]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3316.334746]  ? sock_queue_rcv_skb_reason+0xd8/0x190
[ 3316.334783]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3316.334824]  create_monitor_event+0x692/0x930
[ 3316.334857]  hci_sock_bind+0xa19/0x1470
[ 3316.334886]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3316.334924]  __sys_bind+0x1dd/0x2b0
[ 3316.334952]  ? __pfx___sys_bind+0x10/0x10
[ 3316.334985]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3316.335021]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3316.335057]  ? ksys_write+0x1a3/0x240
[ 3316.335090]  ? __pfx_ksys_write+0x10/0x10
[ 3316.335129]  __x64_sys_bind+0x73/0xb0
[ 3316.335157]  do_syscall_64+0xbf/0x3f0
[ 3316.335183]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3316.335207] RIP: 0033:0x7fbfee694b19
[ 3316.335226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3316.335249] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3316.335272] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3316.335288] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3316.335302] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3316.335324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
17:06:31 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
write$bt_hci(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="0109040700000000000004166032211e05e1e4ff0f00000000000057e54635a72ecf35226572eb889684c77887114b683b93960a8a106b246acbb03b01aed9df6cce08b3a60a20"], 0xb)

[ 3316.335339] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3316.335371]  </TASK>
17:06:31 executing program 0:
kexec_load(0x9ffff, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:31 executing program 5:
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, 0x1}, 0xfffffd43)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:06:31 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(0x0, 0x0, 0xf, 0xffffffffffffffff, 0x0)

17:06:31 executing program 0:
kexec_load(0xbffff, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:31 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 87)

[ 3317.193463] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3317.195204] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3317.198064] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:06:40 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
setsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f0000000080)=0x7, 0x2)

17:06:40 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448cc, &(0x7f0000000080)="383eb7ed67a278ba32dd19f280b1f02c55fc5fa1824f340956e8c20da7bfb3a3af1fe3fc17be422dd916727f4bc5853f08d0b7ff69e427b71805fcaed048029ec2eaaf0ab8f5b7607da2aaaf502a7c66b05af7dfbcfe49cb921cd9c7cccb60378a2403d36de4c329fe9c874118d914a56a68c2c8c97cbb9bc94605a18b82d1c230a03ba4e85d4f0ad4d4e32714f6b5c6fd63a079a9623ff33c3dbc2cebb68b6975a1ba396c6f7811f5d3c2d70588240ae3a603f1bc39a3e676727777907280de98f1bbdcc961a9f1c7e420e605d5f1c2cc9dd35592fbf6d5f9dda2b78db28de885127315ff")
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

17:06:40 executing program 0:
kexec_load(0xc95ff, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:40 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 88)

17:06:40 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000040), 0x10402, 0x0)
ioctl$sock_inet_SIOCGIFBRDADDR(r1, 0x8919, &(0x7f0000000080)={'macvtap0\x00', {0x2, 0x0, @private}})
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000200)=[{0xfffffffffffffffe}, {&(0x7f00000000c0)=""/9, 0x9}, {&(0x7f0000000100)=""/230, 0xe6}], 0x3}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)

17:06:40 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)

17:06:40 executing program 6:
r0 = socket$inet(0x2, 0x5, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
recvfrom$inet6(0xffffffffffffffff, &(0x7f0000000000)=""/47, 0x2f, 0x0, &(0x7f0000000100)={0xa, 0x4e22, 0x6, @private2={0xfc, 0x2, '\x00', 0x1}, 0x4}, 0x1c)

17:06:40 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x1, 0x1}, 0x6)
setsockopt$bt_hci_HCI_DATA_DIR(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000100)=0x8, 0x4)
syz_open_procfs(0x0, &(0x7f0000000040)='timers\x00')
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:06:40 executing program 0:
kexec_load(0xca5ff, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:40 executing program 0:
kexec_load(0xcadff, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:40 executing program 0:
kexec_load(0xcd3ff, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:40 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)

17:06:40 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 89)

17:06:40 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0x7, 0x4}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:06:40 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000040)=[{0xfffffffffffffffe}], 0x1}, 0x3}], 0x2, 0x40002023, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r4=>0x0})
sendto$packet(r2, 0x0, 0x608, 0x0, &(0x7f0000000040)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @dev}, 0x14)
ioctl$sock_inet6_SIOCDIFADDR(r1, 0x8936, &(0x7f0000000080)={@private2={0xfc, 0x2, '\x00', 0x1}, 0x78, r4})

[ 3325.711619] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3325.723389] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:06:48 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
r3 = dup2(r0, r0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000040)={0x8000000a})
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$bt_hci(r0, &(0x7f0000000000)={0x1, @remote_name_req={{0x419, 0xa}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x81, 0x9, 0xff}}}, 0xe)

17:06:48 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)

17:06:48 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000100)={<r1=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f0000000000)={r1, 0x3, r0, 0xff})

17:06:48 executing program 4:
kexec_load(0xca5ff, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:48 executing program 0:
kexec_load(0xfffff, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:48 executing program 1:
syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
write$bt_hci(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="0143201e040205ffd73edbb5a1348d64a0d47f33b05ec403"], 0x22)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)
listen(r1, 0x0)
setsockopt$bt_hci_HCI_DATA_DIR(r0, 0x0, 0x1, &(0x7f0000000080)=0x7, 0x4)

17:06:48 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r3 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r3, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f00000000c0)={0x0, 0x0, 0x3, 0xed07})
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)

17:06:48 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 90)

17:06:48 executing program 4:
kexec_load(0x300, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:48 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)

17:06:48 executing program 0:
kexec_load(0x100000, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:48 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
write$bt_hci(r0, &(0x7f0000000000)={0x1, @le_ltk_neg_reply={{0x201b, 0x2}, {0xc8}}}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:06:48 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)

17:06:48 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 91)

17:06:48 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)

17:06:48 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$sock_bt_hci(r2, 0xc000000a, &(0x7f0000000000)="9362d72636e49d8fb3a00721d9c4c60ce38f14cdd4c6c18da0e74a4e5741694730d77d642de43d15844906e928441285fcaa97ff7d91878b84d421e8bcd939b70b047a5c1f7ee0cfe4a1b6593169022c9c27ad57d819c75edfd1baabd8a87e0b42ba2f43")
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)

17:06:48 executing program 4:
kexec_load(0x8, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:48 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_FILTER(r0, 0x0, 0x2, &(0x7f0000000040)={0x6, [0x649, 0xff], 0x8001}, 0x10)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe, 0xfffffffffffffeff}], 0x1}}], 0x2, 0x0, 0x0)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080), 0x800, 0x0)
process_vm_writev(0xffffffffffffffff, &(0x7f0000002440)=[{&(0x7f0000002580)=""/1, 0x1}, {&(0x7f0000001180)=""/132, 0x84}, {&(0x7f0000002e00)=""/4096, 0x1000}, {&(0x7f0000002240)=""/241, 0xf1}, {&(0x7f0000002340)=""/200, 0xc8}], 0x5, &(0x7f0000002540)=[{&(0x7f00000024c0)=""/94, 0x5e}], 0x1, 0x0)
writev(r1, &(0x7f0000001100)=[{&(0x7f00000000c0)="178ccb9432f9c61454ce94f0e596b5e8da53d23b206ef853aacef133f519f0cf351c", 0x22}, {&(0x7f0000000100)="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", 0x1000}], 0x2)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)

[ 3334.341202] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 3334.342794] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:06:57 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(0xffffffffffffffff, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)

17:06:57 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0xf8c6)
sendto$inet(r0, &(0x7f0000000040)="60da701df893ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
r1 = dup(r0)
pwrite64(r1, &(0x7f0000000100)="f3752a6a288a345a0e3d33ea6ce5d0821ca443e4f0c1e25c122a15ab840b4be311840e20240d4ff4c743087a6a5e0cb52941dd0d76767f82fa6b4d4b655813058a6a2e5d31b35d781f285053625822fdbff00238992bb5a885045e9625d9533c726cf1e0f63f7019d7d58037a52006abab0f4f1314d789fadad89c26411e7fa5fc58c0b701d9a35b993a259f573289a764a7d4208d888a245bd3b60c5616b6f63a18856b9bbd9fab681a93479e", 0xad, 0x1)

17:06:57 executing program 1:
r0 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)='ns/cgroup\x00')
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {r1}}, './file0\x00'})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r2, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r2, 0x0, 0x6)

17:06:57 executing program 0:
kexec_load(0x30ae4b, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:57 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:06:57 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0xa)

17:06:57 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 92)

[ 3342.041293] FAULT_INJECTION: forcing a failure.
[ 3342.041293] name failslab, interval 1, probability 0, space 0, times 0
[ 3342.043774] CPU: 1 UID: 0 PID: 22099 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3342.043791] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3342.043799] Call Trace:
[ 3342.043803]  <TASK>
[ 3342.043808]  dump_stack_lvl+0xfa/0x120
[ 3342.043826]  should_fail_ex+0x4d7/0x5e0
[ 3342.043845]  should_failslab+0xc2/0x120
[ 3342.043864]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3342.043879]  ? sock_def_readable+0x1bf/0x5b0
[ 3342.043896]  ? __alloc_skb+0x2ab/0x370
[ 3342.043910]  ? lock_is_held_type+0x9e/0x120
[ 3342.043931]  ? __alloc_skb+0x2ab/0x370
[ 3342.043945]  __alloc_skb+0x2ab/0x370
[ 3342.043960]  ? __pfx___alloc_skb+0x10/0x10
[ 3342.043975]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3342.043990]  ? sock_queue_rcv_skb_reason+0xd8/0x190
[ 3342.044008]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3342.044028]  create_monitor_event+0x65/0x930
[ 3342.044044]  hci_sock_bind+0xab2/0x1470
[ 3342.044059]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3342.044077]  __sys_bind+0x1dd/0x2b0
[ 3342.044092]  ? __pfx___sys_bind+0x10/0x10
[ 3342.044108]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3342.044127]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3342.044146]  ? ksys_write+0x1a3/0x240
[ 3342.044163]  ? __pfx_ksys_write+0x10/0x10
[ 3342.044182]  __x64_sys_bind+0x73/0xb0
[ 3342.044196]  do_syscall_64+0xbf/0x3f0
[ 3342.044209]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3342.044222] RIP: 0033:0x7fbfee694b19
[ 3342.044231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3342.044243] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3342.044255] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3342.044263] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3342.044271] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3342.044278] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3342.044285] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
[ 3342.044305]  </TASK>
17:06:57 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(0xffffffffffffffff, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)

17:06:57 executing program 0:
kexec_load(0x3e0000, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:57 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0x1, 0x4}, 0x6)

17:06:57 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(0xffffffffffffffff, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)

17:06:57 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8983, &(0x7f0000000000)={0x2, 'team0\x00', {0x74000000}, 0x5})
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$NL80211_CMD_RADAR_DETECT(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x20, 0x0, 0x679c07f3fc3cb6ac, 0x70bd29, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x2, 0x5d}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x4}, 0x4c000)

17:06:57 executing program 0:
kexec_load(0x1000000, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:06:57 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 93)

17:06:57 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6) (fail_nth: 1)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:06:57 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000000)={0x0, <r4=>0x0}, &(0x7f0000000040)=0x5)
setuid(r4)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x200440, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@version_L}, {@access_uid={'access', 0x3d, 0xee00}}], [{@uid_gt={'uid>', r4}}]}})

17:06:57 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, 0x0, 0x0, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)

[ 3342.271248] FAULT_INJECTION: forcing a failure.
[ 3342.271248] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3342.272773] CPU: 1 UID: 0 PID: 22135 Comm: syz-executor.4 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3342.272790] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3342.272798] Call Trace:
[ 3342.272802]  <TASK>
[ 3342.272807]  dump_stack_lvl+0xfa/0x120
[ 3342.272825]  should_fail_ex+0x4d7/0x5e0
[ 3342.272843]  _copy_from_user+0x30/0xd0
[ 3342.272861]  move_addr_to_kernel.part.0+0x40/0x120
[ 3342.272877]  __sys_bind+0x14b/0x2b0
[ 3342.272890]  ? __pfx___sys_bind+0x10/0x10
[ 3342.272907]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3342.272926]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3342.272944]  ? ksys_write+0x1a3/0x240
[ 3342.272962]  ? __pfx_ksys_write+0x10/0x10
[ 3342.272982]  __x64_sys_bind+0x73/0xb0
[ 3342.272995]  do_syscall_64+0xbf/0x3f0
[ 3342.273009]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3342.273022] RIP: 0033:0x7fc9e773bb19
[ 3342.273031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3342.273043] RSP: 002b:00007fc9e4cb1188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3342.273055] RAX: ffffffffffffffda RBX: 00007fc9e784ef60 RCX: 00007fc9e773bb19
[ 3342.273063] RDX: 0000000000000006 RSI: 0000000020000080 RDI: 0000000000000004
[ 3342.273070] RBP: 00007fc9e4cb11d0 R08: 0000000000000000 R09: 0000000000000000
[ 3342.273078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3342.273084] R13: 00007ffcc3e452df R14: 00007fc9e4cb1300 R15: 0000000000022000
[ 3342.273100]  </TASK>
17:07:07 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 94)

17:07:07 executing program 0:
kexec_load(0x2000000, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:07:07 executing program 6:
r0 = socket$inet(0x2, 0x80003, 0xff)
poll(&(0x7f0000000080)=[{r0, 0x2000}], 0x1, 0xf8c6)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r2, 0xc0189371, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
sendto$inet(r0, &(0x7f0000000000)="602563073c967f6a9af19d7a0000000097bc64d5521d81a0ecbceee400000000", 0x20, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
r3 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r3, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$IP_VS_SO_SET_DELDEST(r3, 0x0, 0x488, &(0x7f0000000240)={{0x67, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e20, 0x1, 'wrr\x00', 0x30, 0x9, 0x38}, {@empty, 0xff5b, 0x1, 0x3, 0x5, 0x5}}, 0x44)
setsockopt$inet_int(r0, 0x0, 0x16, &(0x7f0000000040)=0xfffffff7, 0x4)
r4 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r4, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
sendto$inet(r4, &(0x7f0000000100)="1a6bc81b6aa5792b06e73e38810b27e239738fe431afdcb98d48f7435bfa5d7f6c42bbf2666a1e0864e50c305685addd79f96c0e2f839c8dbcdbee13ea946731699f79c13a0edd54500ee35ba01a614aeb71067e15f382379fee63e289162eabea1c9cad6d8ea4af1de743e24fb3834f06c4b6855492e2a571f93cafa49c135fbb0664bfb9c51b4ae64867a9ce1acb29df5263a5c8cb2f70b4e8a740460baac2f33aefd6c763b15af36ab8924b3d8251d148f3076348f040a4354f660b73b910c96f7515fd359a6a5dc04f4987090c67d579acd5fb4a7857d2", 0xd9, 0x8081, &(0x7f0000000200)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x19}}, 0x10)

17:07:07 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, 0x0, 0x0, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)

17:07:07 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000000e40)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000000)=""/242, 0xf2}, {&(0x7f0000000100)=""/235, 0xeb}, {&(0x7f0000000200)=""/137, 0x89}, {&(0x7f00000002c0)=""/81, 0x51}, {&(0x7f0000000340)=""/67, 0x43}, {&(0x7f00000003c0)=""/149, 0x95}, {&(0x7f0000000480)=""/6, 0x6}, {&(0x7f00000004c0)=""/45, 0x2d}], 0x8, &(0x7f0000000580)=""/218, 0xda}, 0x2}, {{&(0x7f0000000680)=@rc={0x1f, @fixed}, 0x80, &(0x7f0000002140)=[{&(0x7f0000000700)=""/192, 0xc0}, {&(0x7f00000007c0)=""/5, 0x5}, {&(0x7f0000000800)=""/170, 0xaa}, {&(0x7f00000008c0)=""/142, 0x8e}, {&(0x7f0000000980)=""/167, 0xa7}, {&(0x7f0000000a40)=""/25, 0x19}, {&(0x7f0000000f00)=""/159, 0x9f}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000001fc0)=""/159, 0x9f}, {&(0x7f0000002080)=""/24, 0x18}, {&(0x7f00000020c0)=""/97, 0x61}], 0xb, &(0x7f0000000b00)=""/141, 0x8d}, 0xffff}, {{&(0x7f0000000bc0)=@nfc_llcp, 0x80, &(0x7f0000000dc0)=[{&(0x7f0000000c40)=""/30, 0x1e}, {&(0x7f0000000c80)=""/91, 0x5b}, {&(0x7f0000000d00)=""/183, 0xb7}], 0x3, &(0x7f0000000e00)=""/23, 0x17}, 0xfff}], 0x3, 0x0, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000180)={0x1f, 0x0, @fixed}, 0xe)
r2 = dup(r1)
setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, &(0x7f0000001080)=0x4, 0x4)
ioctl$HCIINQUIRY(r2, 0x800448f0, &(0x7f0000004f80)={0x4, 0x7f, "19c96c", 0x1, 0x1f})
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(0xffffffffffffffff, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r3 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r3, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f00000056c0)={{{@in=@remote, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@initdev}, 0x0, @in=@dev}}, &(0x7f00000057c0)=0xe8)
stat(&(0x7f0000005800)='./file0\x00', &(0x7f0000005840)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
r6 = accept(r0, &(0x7f00000058c0)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000005940)=0x80)
sendmmsg$unix(r2, &(0x7f0000005a00)=[{{&(0x7f0000005440)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000005600)=[{&(0x7f00000054c0)="74a63632235747bfb43dbfc1c981713577955f27c04b9206b974126b33357527d1d922e944b3e63004e37923c4aae6f5876ef72360f8c25aad0f3bfeb23ae317a1c71381ff405e19738d5624f4c7d2ce70297e551f532d59201f618ce4c256c4c4375b22b2208aea16759d6ce6d60b2232a9584d6f5ef77470e993a926449c1c705587b59e0a651c46", 0x89}, {&(0x7f0000005580)="034f8553af620c7c696891c1b45f5af298fea2d504e314cd0c7bb5f3c9ed184151819df9c5bfd2465cd5587db6ddd745668ba1feda433b2fe66e369815fb7578fc7dc3acd456a6e7e88676c016ce37ffbd26e87ad3ebb1cf7c9eb9bcc91d365c", 0x60}], 0x2, &(0x7f0000005980)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r3]}}, @cred={{0x1c, 0x1, 0x2, {0x0, r4, r5}}}, @rights={{0x18, 0x1, 0x1, [r1, r6]}}], 0x58, 0x8000}}], 0x1, 0x8804)
bind$bt_hci(r0, 0xfffffffffffffffc, 0xfffffffffffffdf3)
write$bt_hci(r0, 0x0, 0x6)
recvmmsg(0xffffffffffffffff, &(0x7f0000004fc0)=[{{&(0x7f0000000a80)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @private1}}, 0x80, &(0x7f0000003400)=[{&(0x7f0000002200)=""/4096, 0x1000}, {&(0x7f0000003200)=""/68, 0x44}, {&(0x7f0000003280)=""/29, 0x1d}, {&(0x7f00000032c0)=""/81, 0x51}, {&(0x7f0000003340)=""/146, 0x92}], 0x5, &(0x7f0000003480)=""/83, 0x53}, 0x28cc}, {{0x0, 0x0, &(0x7f0000003740)=[{&(0x7f0000003500)=""/32, 0x20}, {&(0x7f0000003540)=""/79, 0x4f}, {&(0x7f00000035c0)=""/230, 0xe6}, {&(0x7f00000036c0)=""/91, 0x5b}], 0x4, &(0x7f0000003780)=""/84, 0x54}, 0x2}, {{&(0x7f0000003800)=@ax25={{}, [@bcast, @bcast, @bcast, @remote, @bcast, @remote, @bcast, @null]}, 0x80, &(0x7f0000003980)=[{&(0x7f0000003880)=""/231, 0xe7}], 0x1}, 0x7}, {{&(0x7f00000039c0)=@nfc_llcp, 0x80, &(0x7f0000003c00)=[{&(0x7f0000003a40)=""/228, 0xe4}, {&(0x7f0000003b40)=""/140, 0x8c}], 0x2}, 0x3}, {{&(0x7f0000003c40)=@in={0x2, 0x0, @remote}, 0x80, &(0x7f0000004f00)=[{&(0x7f0000003cc0)=""/115, 0x73}, {&(0x7f0000003d40)=""/76, 0x4c}, {&(0x7f0000003dc0)=""/83, 0x53}, {&(0x7f0000003e40)=""/4096, 0x1000}, {&(0x7f0000004e40)=""/155, 0x9b}], 0x5, &(0x7f0000004f80)}, 0x5}], 0x5, 0x2042, &(0x7f0000005100)={0x0, 0x3938700})
recvmsg(r2, &(0x7f0000005400)={&(0x7f0000005140)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev}}}, 0x80, &(0x7f00000052c0)=[{&(0x7f00000051c0)=""/227, 0xe3}], 0x1, &(0x7f0000005300)=""/198, 0xc6}, 0x2000)

17:07:07 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000064280)={0x0, ""/256, 0x0, <r2=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000065480)={0x0, ""/256, 0x0, <r3=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000065680)={0x5, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}, {0x0, r3}], 0x7, "70c6d8b2c5d315"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f000005e800)={0x0, ""/256, 0x0, <r4=>0x0})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000005f080)={0x0, <r5=>0x0, "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", "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"})
ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f0000060080)={{<r6=>0x0, 0x1f, 0x3, 0x5, 0x3, 0x0, 0x6, 0xffff, 0x5, 0x984, 0x800, 0x4, 0x6, 0x10001, 0x2}})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000061080)={0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r7=>0x0}, {}, {}, {}, {}, {}, {}, {0x0, <r8=>0x0}], 0x1f, "26dbb28c343087"})
[ 3352.036688] ------------[ cut here ]------------
[ 3352.037976] WARNING: ./include/linux/ns_common.h:262 at nsproxy_ns_active_get+0x323/0x3d0, CPU#0: syz-executor.1/22159
[ 3352.039925] Modules linked in:
[ 3352.040520] CPU: 0 UID: 0 PID: 22159 Comm: syz-executor.1 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3352.041913] FAULT_INJECTION: forcing a failure.
[ 3352.041913] name failslab, interval 1, probability 0, space 0, times 0
[ 3352.042094] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3352.043785] CPU: 1 UID: 0 PID: 22156 Comm: syz-executor.7 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3352.043817] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3352.043831] Call Trace:
[ 3352.043839]  <TASK>
[ 3352.043848]  dump_stack_lvl+0xfa/0x120
[ 3352.043877]  should_fail_ex+0x4d7/0x5e0
[ 3352.043911]  should_failslab+0xc2/0x120
[ 3352.043945]  kmem_cache_alloc_node_noprof+0x87/0x6b0
[ 3352.043972]  ? sock_def_readable+0x1bf/0x5b0
[ 3352.044002]  ? __alloc_skb+0x2ab/0x370
[ 3352.044029]  ? lock_is_held_type+0x9e/0x120
[ 3352.044067]  ? __alloc_skb+0x2ab/0x370
[ 3352.044093]  __alloc_skb+0x2ab/0x370
[ 3352.044121]  ? __pfx___alloc_skb+0x10/0x10
[ 3352.044149]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3352.044174]  ? sock_queue_rcv_skb_reason+0xd8/0x190
[ 3352.044208]  ? __pfx_sock_queue_rcv_skb_reason+0x10/0x10
[ 3352.044246]  create_monitor_event+0x3d7/0x930
[ 3352.044275]  hci_sock_bind+0xb22/0x1470
[ 3352.044302]  ? __pfx_hci_sock_bind+0x10/0x10
[ 3352.044345]  __sys_bind+0x1dd/0x2b0
[ 3352.044371]  ? __pfx___sys_bind+0x10/0x10
[ 3352.044402]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000062080)={<r9=>0x0})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000062280)={<r10=>0x0, 0x0, "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", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000063280)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r11=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r12=>0x0}], 0x8, "1bb05a59c8e09c"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000064280)={0x0, ""/256, 0x0, <r13=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000065480)={0x0, ""/256, 0x0, <r14=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000065680)={0x5, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r11}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}, {r6, r7}, {r9, r10}, {}, {}, {}, {}, {}, {r12, r13}, {0x0, r14}], 0x7, "70c6d8b2c5d315"})
[ 3352.044435]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3352.044469]  ? ksys_write+0x1a3/0x240
[ 3352.044499]  ? xfd_validate_state+0x55/0x180
[ 3352.044531]  ? __pfx_ksys_write+0x10/0x10
[ 3352.044568]  __x64_sys_bind+0x73/0xb0
[ 3352.044593]  do_syscall_64+0xbf/0x3f0
[ 3352.044617]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3352.044639] RIP: 0033:0x7fbfee694b19
[ 3352.044656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3352.044677] RSP: 002b:00007fbfebc0a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[ 3352.044699] RAX: ffffffffffffffda RBX: 00007fbfee7a7f60 RCX: 00007fbfee694b19
[ 3352.044714] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004
[ 3352.044728] RBP: 00007fbfebc0a1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3352.044741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 3352.044754] R13: 00007ffdec5d6f0f R14: 00007fbfebc0a300 R15: 0000000000022000
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f000005ea00)={<r15=>0x0, 0x0, "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", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005fa00)={0x3, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}, {}, {r9, r15}], 0xc0, "d89346859755a8"})
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
r16 = getpgrp(0x0)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x59, 0x81, 0x7, 0x0, 0x9, 0x42908, 0x5, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x35, 0x4, @perf_bp={&(0x7f0000000080), 0xc}, 0x40000, 0x101, 0x100000, 0x7, 0x10001, 0x5, 0x39, 0x0, 0x6, 0x0, 0x8}, r16, 0x10, r1, 0x9)

17:07:07 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
write$bt_hci(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="010b0807ffffffffffff0930dedd3cabd7573816294184c1db88816a9ad55eaa0f47c2909ac3022e9ced52dd3c94cf9862baa33efa9c87f844e0b6cab8afc0f35c2033e25bf5b4845bcc660b4871a2119ae4b7d0c76c1a14545e04fca94d326e8e5653c30ad443cf355437501ec611e6f1cc07aca8a0e506069da668030302f05c292f7fa8657cdbcc5b9404f89a90536422f74a46cc48e796c37ab6f733b560397fe3648059f5c5c02506d0c74c94bdd0f64490b9564492ce6d62"], 0xb)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f00000000c0)=0xfffffffffffffffd)
perf_event_open(0x0, r1, 0x3, 0xffffffffffffffff, 0xb)

17:07:07 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6) (fail_nth: 2)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

[ 3352.044784]  </TASK>
[ 3352.045742] FAULT_INJECTION: forcing a failure.
[ 3352.045742] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3352.046640] RIP: 0010:nsproxy_ns_active_get+0x323/0x3d0
[ 3352.047898] CPU: 1 UID: 0 PID: 22158 Comm: syz-executor.4 Not tainted 6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3352.047929] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3352.047941] Call Trace:
[ 3352.047949]  <TASK>
[ 3352.047958]  dump_stack_lvl+0xfa/0x120
[ 3352.047981]  should_fail_ex+0x4d7/0x5e0
[ 3352.048011]  _copy_to_user+0x32/0xd0
[ 3352.048043]  simple_read_from_buffer+0xe0/0x180
[ 3352.048074]  proc_fail_nth_read+0x18a/0x240
[ 3352.048110]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 3352.048145]  ? security_file_permission+0x22/0x90
[ 3352.048182]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 3352.048216]  vfs_read+0x1eb/0xc70
[ 3352.048251]  ? __pfx_vfs_read+0x10/0x10
[ 3352.048282]  ? lock_release+0xc8/0x290
[ 3352.048325]  ? __fget_files+0x20d/0x3b0
[ 3352.048364]  ksys_read+0x121/0x240
[ 3352.048393]  ? __pfx_ksys_read+0x10/0x10
[ 3352.048431]  do_syscall_64+0xbf/0x3f0
[ 3352.048455]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3352.048476] RIP: 0033:0x7fc9e76ee69c
17:07:07 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x0, 0x95)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)

17:07:07 executing program 0:
kexec_load(0x3000000, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

[ 3352.048492] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 3352.048513] RSP: 002b:00007fc9e4cb1170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 3352.048533] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00007fc9e76ee69c
[ 3352.048548] RDX: 000000000000000f RSI: 00007fc9e4cb11e0 RDI: 0000000000000003
[ 3352.048561] RBP: 00007fc9e4cb11d0 R08: 0000000000000000 R09: 0000000000000000
[ 3352.048575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3352.048588] R13: 00007ffcc3e452df R14: 00007fc9e4cb1300 R15: 0000000000022000
[ 3352.048617]  </TASK>
[ 3352.118860] Code: 00 01 0f 98 c3 31 ff 89 de e8 19 dd ab ff 84 db 75 07 5b 5d e9 3e e2 ab ff e8 39 e2 ab ff 90 0f 0b 90 eb ee e8 2e e2 ab ff 90 <0f> 0b 90 e9 3f fd ff ff e8 20 e2 ab ff 90 0f 0b 90 e9 92 fd ff ff
[ 3352.121491] RSP: 0018:ffff88800ac6fe08 EFLAGS: 00010212
[ 3352.122299] RAX: 0000000000000cf3 RBX: ffff888015fff208 RCX: ffffc900007e9000
[ 3352.123536] RDX: 0000000000040000 RSI: ffffffff81c89cf2 RDI: 0000000000000001
[ 3352.124598] RBP: ffff888009ebc401 R08: 0000000000000001 R09: ffffed10013d7897
[ 3352.125652] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888016baafc0
[ 3352.126743] R13: 0000000000000000 R14: ffff88804efab780 R15: ffff88800ac6fe98
[ 3352.127795] FS:  00007ff360573700(0000) GS:ffff8880e53a8000(0000) knlGS:0000000000000000
[ 3352.128988] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 3352.129857] CR2: 00007ff363111018 CR3: 00000000454e5000 CR4: 0000000000350ef0
[ 3352.130936] Call Trace:
[ 3352.131363]  <TASK>
[ 3352.131802]  switch_task_namespaces+0x3d/0x110
[ 3352.132667]  __do_sys_setns+0x6b0/0x19a0
[ 3352.133465]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3352.134624]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3352.135834]  ? __pfx___do_sys_setns+0x10/0x10
[ 3352.136834]  do_syscall_64+0xbf/0x3f0
[ 3352.137677]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3352.138689] RIP: 0033:0x7ff362fff107
[ 3352.139444] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 34 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3352.142489] RSP: 002b:00007ff360573128 EFLAGS: 00000246 ORIG_RAX: 0000000000000134
[ 3352.143699] RAX: ffffffffffffffda RBX: 00007ff363110f60 RCX: 00007ff362fff107
[ 3352.144795] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000000000ef
[ 3352.145861] RBP: 0000000000000003 R08: 0000000000000000 R09: 0000000000000000
[ 3352.146929] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3352.147973] R13: 00007fff571b4e4f R14: 00007ff360573300 R15: 0000000000022000
[ 3352.149107]  </TASK>
[ 3352.149577] irq event stamp: 1549
[ 3352.150117] hardirqs last  enabled at (1557): [<ffffffff81546b48>] __up_console_sem+0x78/0x80
[ 3352.151487] hardirqs last disabled at (1568): [<ffffffff81546b2d>] __up_console_sem+0x5d/0x80
[ 3352.152964] softirqs last  enabled at (1230): [<ffffffff813bc1cc>] handle_softirqs+0x50c/0x770
[ 3352.154263] softirqs last disabled at (1181): [<ffffffff813bc564>] __irq_exit_rcu+0xc4/0x100
[ 3352.155599] ---[ end trace 0000000000000000 ]---
[ 3352.156472] ------------[ cut here ]------------
[ 3352.157213] WARNING: ./include/linux/ns_common.h:262 at nsproxy_ns_active_get+0x331/0x3d0, CPU#0: syz-executor.1/22159
[ 3352.158980] Modules linked in:
[ 3352.159528] CPU: 0 UID: 0 PID: 22159 Comm: syz-executor.1 Tainted: G        W           6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3352.161296] Tainted: [W]=WARN
[ 3352.161805] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3352.163183] RIP: 0010:nsproxy_ns_active_get+0x331/0x3d0
17:07:07 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 95)

[ 3352.164051] Code: 84 db 75 07 5b 5d e9 3e e2 ab ff e8 39 e2 ab ff 90 0f 0b 90 eb ee e8 2e e2 ab ff 90 0f 0b 90 e9 3f fd ff ff e8 20 e2 ab ff 90 <0f> 0b 90 e9 92 fd ff ff e8 12 e2 ab ff 90 0f 0b 90 e9 e5 fd ff ff
[ 3352.167298] RSP: 0018:ffff88800ac6fe08 EFLAGS: 00010216
[ 3352.168111] RAX: 00000000000306b2 RBX: ffff888015fff208 RCX: ffffc900007e9000
[ 3352.169334] RDX: 0000000000040000 RSI: ffffffff81c89d00 RDI: 0000000000000001
[ 3352.170457] RBP: ffff88800dc58201 R08: 0000000000000001 R09: ffffed1001b8b0a5
[ 3352.171516] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888016baafc0
[ 3352.172581] R13: 0000000000000000 R14: ffff88804efab780 R15: ffff88800ac6fe98
[ 3352.173675] FS:  00007ff360573700(0000) GS:ffff8880e53a8000(0000) knlGS:0000000000000000
[ 3352.175047] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 3352.175944] CR2: 00007ff363111018 CR3: 00000000454e5000 CR4: 0000000000350ef0
[ 3352.177806] Call Trace:
[ 3352.178249]  <TASK>
[ 3352.179071]  switch_task_namespaces+0x3d/0x110
[ 3352.179826]  __do_sys_setns+0x6b0/0x19a0
[ 3352.180455]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3352.181365]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3352.182294]  ? __pfx___do_sys_setns+0x10/0x10
[ 3352.183128]  do_syscall_64+0xbf/0x3f0
[ 3352.183918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3352.184945] RIP: 0033:0x7ff362fff107
[ 3352.185708] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 34 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3352.189238] RSP: 002b:00007ff360573128 EFLAGS: 00000246 ORIG_RAX: 0000000000000134
[ 3352.190775] RAX: ffffffffffffffda RBX: 00007ff363110f60 RCX: 00007ff362fff107
[ 3352.192022] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000000000ef
[ 3352.193138] RBP: 0000000000000003 R08: 0000000000000000 R09: 0000000000000000
[ 3352.194524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3352.195666] R13: 00007fff571b4e4f R14: 00007ff360573300 R15: 0000000000022000
[ 3352.196784]  </TASK>
[ 3352.197244] irq event stamp: 2257
[ 3352.197802] hardirqs last  enabled at (2269): [<ffffffff81546b48>] __up_console_sem+0x78/0x80
[ 3352.199110] hardirqs last disabled at (2280): [<ffffffff81546b2d>] __up_console_sem+0x5d/0x80
[ 3352.200580] softirqs last  enabled at (2188): [<ffffffff813bc1cc>] handle_softirqs+0x50c/0x770
[ 3352.201942] softirqs last disabled at (2183): [<ffffffff813bc564>] __irq_exit_rcu+0xc4/0x100
[ 3352.203390] ---[ end trace 0000000000000000 ]---
[ 3352.204221] ------------[ cut here ]------------
[ 3352.204956] WARNING: ./include/linux/ns_common.h:262 at nsproxy_ns_active_get+0x33f/0x3d0, CPU#0: syz-executor.1/22159
[ 3352.205423] ------------[ cut here ]------------
[ 3352.206559] Modules linked in:
[ 3352.206586] CPU: 0 UID: 0 PID: 22159 Comm: syz-executor.1 Tainted: G        W           6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3352.207353] WARNING: ./include/linux/ns_common.h:262 at nsproxy_ns_active_get+0x35b/0x3d0, CPU#1: syz-executor.1/22165
[ 3352.207934] Tainted: [W]=WARN
[ 3352.209753] Modules linked in:
[ 3352.211322] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3352.211812] 
[ 3352.212343] RIP: 0010:nsproxy_ns_active_get+0x33f/0x3d0
[ 3352.213666] CPU: 1 UID: 0 PID: 22165 Comm: syz-executor.1 Tainted: G        W           6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3352.213876] Code: ab ff 90 0f 0b 90 eb ee e8 2e e2 ab ff 90 0f 0b 90 e9 3f fd ff ff e8 20 e2 ab ff 90 0f 0b 90 e9 92 fd ff ff e8 12 e2 ab ff 90 <0f> 0b 90 e9 e5 fd ff ff e8 04 e2 ab ff 90 0f 0b 90 e9 38 fe ff ff
[ 3352.214725] Tainted: [W]=WARN
[ 3352.216616] RSP: 0018:ffff88800ac6fe08 EFLAGS: 00010246
[ 3352.219340] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3352.219820] 
[ 3352.220641] RIP: 0010:nsproxy_ns_active_get+0x35b/0x3d0
[ 3352.221854] RAX: 0000000000040000 RBX: ffff888015fff208 RCX: ffffc900007e9000
[ 3352.222130] Code: 0f 0b 90 e9 92 fd ff ff e8 12 e2 ab ff 90 0f 0b 90 e9 e5 fd ff ff e8 04 e2 ab ff 90 0f 0b 90 e9 38 fe ff ff e8 f6 e1 ab ff 90 <0f> 0b 90 e9 8b fe ff ff e8 e8 e1 ab ff 90 0f 0b 90 e9 de fe ff ff
[ 3352.222949] RDX: 0000000000040000 RSI: ffffffff81c89d0e RDI: 0000000000000001
[ 3352.224060] RSP: 0018:ffff88801a3e7e08 EFLAGS: 00010216
[ 3352.226954] RBP: ffff888016354001 R08: 0000000000000001 R09: ffffed1002c6a941
[ 3352.228081] 
[ 3352.228869] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888016baafc0
[ 3352.229991] RAX: 000000000000a5bf RBX: ffff88801e1ba7b8 RCX: ffffc900009ea000
[ 3352.230277] R13: 0000000000000000 R14: ffff88804efab780 R15: ffff88800ac6fe98
[ 3352.231420] RDX: 0000000000040000 RSI: ffffffff81c89d2a RDI: 0000000000000001
[ 3352.232575] FS:  00007ff360573700(0000) GS:ffff8880e53a8000(0000) knlGS:0000000000000000
[ 3352.233691] RBP: ffff88800983b201 R08: 0000000000000001 R09: ffffed1001307657
[ 3352.234805] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 3352.236058] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888016baafc0
[ 3352.237204] CR2: 00007ff363111018 CR3: 00000000454e5000 CR4: 0000000000350ef0
[ 3352.238066] R13: 0000000000000000 R14: ffff888048a13780 R15: ffff88801a3e7e98
[ 3352.239335] Call Trace:
[ 3352.240405] FS:  00007ff360552700(0000) GS:ffff8880e54a8000(0000) knlGS:0000000000000000
[ 3352.241480]  <TASK>
[ 3352.241868] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 3352.243086]  switch_task_namespaces+0x3d/0x110
[ 3352.243454] CR2: 0000000020000000 CR3: 00000000454e5000 CR4: 0000000000350ef0
[ 3352.244300]  __do_sys_setns+0x6b0/0x19a0
[ 3352.245001] Call Trace:
[ 3352.246149]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3352.246767]  <TASK>
[ 3352.247160]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3352.248031]  switch_task_namespaces+0x3d/0x110
[ 3352.248392]  ? __pfx___do_sys_setns+0x10/0x10
[ 3352.249229]  __do_sys_setns+0x6b0/0x19a0
[ 3352.249934]  do_syscall_64+0xbf/0x3f0
[ 3352.250615]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3352.251256]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3352.251850]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3352.252867] RIP: 0033:0x7ff362fff107
[ 3352.253646]  ? __pfx___do_sys_setns+0x10/0x10
[ 3352.254603] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 34 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3352.255219]  do_syscall_64+0xbf/0x3f0
[ 3352.256051] RSP: 002b:00007ff360573128 EFLAGS: 00000246
[ 3352.259001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3352.259651]  ORIG_RAX: 0000000000000134
[ 3352.260544] RIP: 0033:0x7ff362fff107
[ 3352.261491] RAX: ffffffffffffffda RBX: 00007ff363110f60 RCX: 00007ff362fff107
[ 3352.262136] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 34 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 3352.262753] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000000000ef
[ 3352.263895] RSP: 002b:00007ff360552128 EFLAGS: 00000246
[ 3352.266875] RBP: 0000000000000003 R08: 0000000000000000 R09: 0000000000000000
[ 3352.268061]  ORIG_RAX: 0000000000000134
[ 3352.269042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3352.270216] RAX: ffffffffffffffda RBX: 00007ff363111020 RCX: 00007ff362fff107
[ 3352.270861] R13: 00007fff571b4e4f R14: 00007ff360573300 R15: 0000000000022000
[ 3352.272038] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000000000ef
[ 3352.273147]  </TASK>
[ 3352.274247] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[ 3352.274266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3352.275433] irq event stamp: 2747
[ 3352.275794] R13: 00007fff571b4e4f R14: 00007ff360552300 R15: 0000000000022000
[ 3352.277061] hardirqs last  enabled at (2757): [<ffffffff84c3572b>] irqentry_exit+0x3b/0x90
[ 3352.278163]  </TASK>
[ 3352.278729] hardirqs last disabled at (2768): [<ffffffff84c342af>] sysvec_apic_timer_interrupt+0xf/0x80
[ 3352.283658] irq event stamp: 1273
[ 3352.284140] softirqs last  enabled at (2998): [<ffffffff813bc1cc>] handle_softirqs+0x50c/0x770
[ 3352.286145] softirqs last disabled at (2993): [<ffffffff813bc564>] __irq_exit_rcu+0xc4/0x100
[ 3352.287132] hardirqs last  enabled at (1879): [<ffffffff84c3572b>] irqentry_exit+0x3b/0x90
[ 3352.287895] ---[ end trace 0000000000000000 ]---
[ 3352.289258] hardirqs last disabled at (1890): [<ffffffff84c342af>] sysvec_apic_timer_interrupt+0xf/0x80
[ 3352.291685] softirqs last  enabled at (1878): [<ffffffff813bc1cc>] handle_softirqs+0x50c/0x770
[ 3352.293066] softirqs last disabled at (1283): [<ffffffff813bc564>] __irq_exit_rcu+0xc4/0x100
[ 3352.294444] ---[ end trace 0000000000000000 ]---
[ 3352.333037] ------------[ cut here ]------------
[ 3352.333963] WARNING: ./include/linux/ns_common.h:262 at nsproxy_ns_active_get+0x369/0x3d0, CPU#0: syz-executor.1/22159
[ 3352.335790] Modules linked in:
[ 3352.336467] CPU: 0 UID: 0 PID: 22159 Comm: syz-executor.1 Tainted: G        W           6.18.0-rc4-next-20251103 #1 PREEMPT(voluntary) 
[ 3352.338551] Tainted: [W]=WARN
[ 3352.339105] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3352.340600] RIP: 0010:nsproxy_ns_active_get+0x369/0x3d0
[ 3352.341542] Code: 0f 0b 90 e9 e5 fd ff ff e8 04 e2 ab ff 90 0f 0b 90 e9 38 fe ff ff e8 f6 e1 ab ff 90 0f 0b 90 e9 8b fe ff ff e8 e8 e1 ab ff 90 <0f> 0b 90 e9 de fe ff ff e8 da e1 ab ff 90 0f 0b 90 e9 31 ff ff ff
[ 3352.344577] RSP: 0018:ffff88800ac6fe08 EFLAGS: 00010246
[ 3352.345615] RAX: 0000000000040000 RBX: ffff888015fffa90 RCX: ffffc900007e9000
[ 3352.346786] RDX: 0000000000040000 RSI: ffffffff81c89d38 RDI: 0000000000000001
[ 3352.347927] RBP: ffff888016a41801 R08: 0000000000000001 R09: ffffed1002d4834a
[ 3352.349085] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888016328e00
[ 3352.350257] R13: 0000000000000000 R14: ffff88804efab780 R15: ffff88800ac6fe98
[ 3352.351532] FS:  00007ff360573700(0000) GS:ffff8880e53a8000(0000) knlGS:0000000000000000
[ 3352.352806] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 3352.353758] CR2: 00007fbfee7a8018 CR3: 00000000454e5000 CR4: 0000000000350ef0
[ 3352.354923] Call Trace:
[ 3352.355412]  <TASK>
[ 3352.355778]  switch_task_namespaces+0x3d/0x110
[ 3352.356655]  __do_sys_setns+0x6b0/0x19a0
[ 3352.357329]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3352.358251]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 3352.359220]  ? __pfx___do_sys_setns+0x10/0x10
[ 3352.359996]  do_syscall_64+0xbf/0x3f0
[ 3352.360636]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3352.361547] RIP: 0033:0x7ff362fff107
[ 3352.362210] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 34 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
17:07:07 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, 0x0, 0x0, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, &(0x7f0000000040)={0x1, @le_reject_cis={{0x2067, 0x3}, {0xc8, 0x91}}}, 0x7)

[ 3352.365060] RSP: 002b:00007ff360573128 EFLAGS: 00000246 ORIG_RAX: 0000000000000134
[ 3352.366865] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007ff362fff107
[ 3352.367932] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000003
[ 3352.368982] RBP: 0000000000000003 R08: 0000000000000000 R09: 0000000000000000
[ 3352.370036] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff3605736bc
[ 3352.371105] R13: 000000000000000e R14: 00007ff360573300 R15: 0000000000022000
[ 3352.372165]  </TASK>
[ 3352.372543] irq event stamp: 3707
[ 3352.373126] hardirqs last  enabled at (3717): [<ffffffff81546b48>] __up_console_sem+0x78/0x80
[ 3352.374502] hardirqs last disabled at (3726): [<ffffffff81546b2d>] __up_console_sem+0x5d/0x80
[ 3352.375831] softirqs last  enabled at (3642): [<ffffffff813bc1cc>] handle_softirqs+0x50c/0x770
[ 3352.377201] softirqs last disabled at (3745): [<ffffffff813bc564>] __irq_exit_rcu+0xc4/0x100
[ 3352.378531] ---[ end trace 0000000000000000 ]---
17:07:07 executing program 0:
kexec_load(0x4c61a57, 0x1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x80000}], 0x0)

17:07:07 executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
openat(0xffffffffffffff9c, &(0x7f00000015c0)='./file0\x00', 0x40000, 0x190)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
ioctl$EXT4_IOC_SWAP_BOOT(r1, 0x6611)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x10000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
socket$inet(0x2, 0x80003, 0xff)
r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r2)

17:07:07 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x2, 0x1}, 0x6)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = memfd_secret(0x80000)
ioctl$sock_inet_SIOCGIFBRDADDR(r2, 0x8919, &(0x7f00000000c0)={'veth1_vlan\x00', {0x2, 0x0, @broadcast}})

17:07:07 executing program 7:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) (fail_nth: 96)

[ 3352.558054] Bluetooth: hci0: Opcode 0x0c03 failed: -4
17:07:07 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002d00)=[{0xfffffffffffffffe}], 0x1}}], 0x2, 0x0, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
write$bt_hci(r0, 0x0, 0x6)
r1 = socket$inet(0x2, 0x80003, 0xff)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000001c0)=0x80, 0x4)
sendto$inet(r1, &(0x7f0000000040)="60da7056a593ccc8bd2563073c967f6a9af19d7a", 0x14, 0x0, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)
r2 = socket(0x1a, 0x4, 0xd75)
ioctl$BTRFS_IOC_SNAP_CREATE(r1, 0x50009401, &(0x7f0000000080)={{r2}, "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"})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x40, &(0x7f0000000040)=0x2, 0x4)


VM DIAGNOSIS:
17:07:07  Registers:
info registers vcpu 0
RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff82919330 RDI=ffffffff8895a780 RBP=ffffffff8895a740 RSP=ffff88800ac6f720
R8 =0000000000000001 R9 =ffffed100158ded5 R10=0000000000000000 R11=0000000000000001
R12=0000000000000030 R13=ffffffff8895a790 R14=ffffffff8895a740 R15=ffffffff8895aa00
RIP=ffffffff82919385 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007ff360573700 00000000 00000000
GS =0000 ffff8880e53a8000 00000000 00000000
LDT=0000 fffffe2300000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ff363111018 CR3=00000000454e5000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007ff3630e47c000007ff3630e47c8
XMM02=00007ff3630e47e000007ff3630e47c0 XMM03=00007ff3630e47c800007ff3630e47c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=ffff888009cf3780 RBX=0000000000000000 RCX=0000000000000001 RDX=0000000000000000
RSI=ffffffff8135964d RDI=fffffbfff0bc36f4 RBP=ffffffff85e1b7a0 RSP=ffff88801729f6a8
R8 =0000000000000000 R9 =0000000000000000 R10=000000000003c61c R11=00000000000252d8
R12=0000000000000002 R13=0000000000000000 R14=0000000000000000 R15=0000000000000246
RIP=ffffffff81522b43 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 000055556be21400 00000000 00000000
GS =0000 ffff8880e54a8000 00000000 00000000
LDT=0000 fffffe0100000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2dd23000 CR3=0000000048de9000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000ff000000000000000000ff00 XMM01=646e6962003532786124646e69620067
XMM02=00000000000000000000000000000000 XMM03=00007fbfee77b7c800007fbfee77b7c0
XMM04=ffffffff0000ff00000000ff00000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000