E_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000000)=r0)

06:44:46 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x6800000000000000, 0x0)

[ 2123.687019][T18599] fuse: Bad value for 'fd'
06:44:46 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=0000000000000000001000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:46 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x6832020000000000, 0x0)

06:44:47 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000001000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2123.740038][T18602] fuse: Unknown parameter 'use00000000000000000000'
[ 2123.744483][T18606] fuse: Invalid rootmode
[ 2123.747992][T18603] fuse: Unknown parameter 'use00000000000000000000'
06:44:47 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,use', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,use', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000000)=r0)

06:44:47 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x6c00000000000000, 0x0)

[ 2123.844658][T18615] fuse: Bad value for 'fd'
06:44:47 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=0000000000000000001000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,use', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000000)=r0)

[ 2123.873086][T18616] fuse: Unknown parameter 'use00000000000000000000'
[ 2123.884498][T18619] fuse: Bad value for 'rootmode'
[ 2123.891485][T18620] fuse: Unknown parameter 'use00000000000000000000'
06:44:47 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_i', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000001000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x7400000000000000, 0x0)

06:44:47 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000001000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_i', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2123.956849][T18625] fuse: Bad value for 'fd'
[ 2123.976639][T18627] fuse: Unknown parameter 'use00000000000000000000'
[ 2124.030919][T18633] fuse: Unknown parameter 'user_i00000000000000000000'
[ 2124.031021][T18631] fuse: Bad value for 'rootmode'
[ 2124.047512][T18632] fuse: Bad value for 'fd'
[ 2124.049794][T18637] fuse: Bad value for 'fd'
06:44:47 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_i', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000000)=r0)

06:44:47 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x7a00000000000000, 0x0)

06:44:47 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000001000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000001000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_i', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2124.091079][T18639] fuse: Unknown parameter 'user_i00000000000000000000'
06:44:47 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x8cffffff00000000, 0x0)

06:44:47 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000000)=r0)

06:44:47 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000001000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2124.149290][T18642] fuse: Bad value for 'fd'
[ 2124.161173][T18645] fuse: Bad value for 'fd'
[ 2124.180894][T18646] fuse: Unknown parameter 'user_i00000000000000000000'
06:44:47 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_i', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,use', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_i', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x8f11000000000000, 0x0)

[ 2124.227681][T18650] fuse: Unknown parameter 'user_i00000000000000000000'
[ 2124.238090][T18651] fuse: Bad value for 'rootmode'
[ 2124.266761][T18656] fuse: Bad value for 'fd'
[ 2124.273395][T18654] fuse: Bad value for 'fd'
06:44:47 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000001000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}}, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000000)=r0)

06:44:47 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2124.308020][T18659] fuse: Unknown parameter 'user_i00000000000000000000'
[ 2124.328749][T18661] fuse: Unknown parameter 'user_i00000000000000000000'
06:44:47 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x97ffffff00000000, 0x0)

06:44:47 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000001000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,use', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2124.381733][T18664] fuse: Unknown parameter 'use00000000000000000000'
[ 2124.421914][T18672] fuse: Unknown parameter 'user_id00000000000000000000'
06:44:47 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}}, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000000)=r0)

06:44:47 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2124.441766][T18670] fuse: Invalid rootmode
[ 2124.459714][T18673] fuse: Unknown parameter 'user_id00000000000000000000'
06:44:47 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000001000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0xe4ffffff00000000, 0x0)

06:44:47 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2124.514367][T18679] fuse: Unknown parameter 'use00000000000000000000'
[ 2124.535576][T18681] fuse: Unknown parameter 'user_id00000000000000000000'
06:44:47 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,use', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), 0x0, 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000001000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}}, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000000)=r0)

06:44:47 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0xf6ffffff00000000, 0x0)

06:44:47 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2124.581194][T18685] fuse: Invalid rootmode
[ 2124.592013][T18686] fuse: Unknown parameter 'user_id00000000000000000000'
06:44:47 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), 0x0, 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000001000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_i', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:47 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(0xffffffffffffffff, 0x8004e500, &(0x7f0000000000)=r0)

06:44:47 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0xf9fdffff00000000, 0x0)

06:44:47 executing program 0:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2124.661350][T18693] fuse: Unknown parameter 'use00000000000000000000'
[ 2124.677902][T18696] fuse: Invalid rootmode
[ 2124.695031][T18699] fuse: Unknown parameter 'user_id00000000000000000000'
06:44:47 executing program 3:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2124.729618][T18701] fuse: Unknown parameter 'user_id00000000000000000000'
06:44:48 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0xfdffffff00000000, 0x0)

06:44:48 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), 0x0, 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000001000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2124.793561][T18703] fuse: Unknown parameter 'user_i00000000000000000000'
[ 2124.814559][T18712] fuse: Bad value for 'fd'
06:44:48 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_i', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:48 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(0xffffffffffffffff, 0x8004e500, &(0x7f0000000000)=r0)

[ 2124.842742][T18713] fuse: Bad value for 'fd'
06:44:48 executing program 5:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

06:44:48 executing program 3:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:48 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0xfeffffff00000000, 0x0)

06:44:48 executing program 0:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:48 executing program 3:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:48 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_i', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2124.920738][T18720] fuse: Unknown parameter 'user_i00000000000000000000'
[ 2124.934367][T18723] fuse: Bad value for 'fd'
06:44:48 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0xff03000000000000, 0x0)

06:44:48 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(0xffffffffffffffff, 0x8004e500, &(0x7f0000000000)=r0)

06:44:48 executing program 5:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

[ 2124.996792][T18729] fuse: Bad value for 'fd'
06:44:48 executing program 0:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2125.043508][T18731] fuse: Bad value for 'fd'
06:44:48 executing program 3:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:48 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0xffffff7f00000000, 0x0)

06:44:48 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:48 executing program 5:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

[ 2125.071508][T18733] fuse: Unknown parameter 'user_i00000000000000000000'
[ 2125.111233][T18740] fuse: Bad value for 'fd'
06:44:48 executing program 0:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:48 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, 0x0)

06:44:48 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0xffffffff00000000, 0x0)

06:44:48 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:48 executing program 3:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2125.169585][T18743] fuse: Bad value for 'fd'
[ 2125.187891][T18746] fuse: Unknown parameter 'user_id00000000000000000000'
06:44:48 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000001000'], 0x0, 0x0, 0x0)

[ 2125.247935][T18752] fuse: Bad value for 'fd'
06:44:48 executing program 0:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:48 executing program 3:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2125.285238][T18757] fuse: Bad value for 'fd'
06:44:48 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, 0x0)

06:44:48 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0xffffffff8a800000, 0x0)

06:44:48 executing program 0:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2125.306050][T18758] fuse: Unknown parameter 'user_id00000000000000000000'
[ 2125.338498][T18762] fuse: Bad value for 'fd'
06:44:48 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:48 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:48 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000001000'], 0x0, 0x0, 0x0)

[ 2125.368642][T18763] fuse: Invalid rootmode
[ 2125.380297][T18766] fuse: Bad value for 'fd'
06:44:48 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0xfffffffffffff000, 0x0)

06:44:48 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000001000'], 0x0, 0x0, 0x0)

06:44:48 executing program 2:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:48 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, 0x0)

[ 2125.458353][T18775] fuse: Invalid rootmode
[ 2125.460776][T18776] fuse: Unknown parameter 'user_id00000000000000000000'
[ 2125.481251][T18771] fuse: Bad value for 'fd'
[ 2125.492459][T18778] fuse: Unknown parameter '0x0000000000000003'
06:44:48 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:48 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:48 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0xffffffffffffff0f, 0x0)

[ 2125.550302][T18782] fuse: Invalid rootmode
06:44:48 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:48 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000000))

[ 2125.608715][T18789] fuse: Unknown parameter '0x0000000000000003'
[ 2125.616211][T18786] fuse: Bad value for 'fd'
[ 2125.631480][T18790] fuse: Bad value for 'fd'
06:44:48 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:48 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2125.654756][T18793] fuse: Unknown parameter '0x0000000000000003'
06:44:48 executing program 2:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:48 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:48 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
write$P9_RRENAMEAT(0xffffffffffffffff, &(0x7f0000000040)={0x7, 0x4b, 0x2}, 0x7)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)
getcwd(&(0x7f0000000080)=""/131, 0x83)

06:44:48 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:48 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000000))

[ 2125.720995][T18798] fuse: Unknown parameter '0x0000000000000003'
[ 2125.723266][T18800] fuse: Bad value for 'fd'
06:44:49 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:49 executing program 2:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:49 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
write$P9_RRENAMEAT(0xffffffffffffffff, &(0x7f0000000040)={0x7, 0x4b, 0x2}, 0x7) (async)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0) (async)
getcwd(&(0x7f0000000080)=""/131, 0x83)

[ 2125.787208][T18803] fuse: Bad value for 'fd'
[ 2125.797490][T18804] fuse: Unknown parameter '0x0000000000000003'
[ 2125.822308][T18809] fuse: Bad value for 'fd'
06:44:49 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:49 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:49 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2125.873036][T18813] fuse: Unknown parameter '0x0000000000000003'
[ 2125.887094][T18814] fuse: Bad value for 'fd'
06:44:49 executing program 2:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:49 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000000))

06:44:49 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
write$P9_RRENAMEAT(0xffffffffffffffff, &(0x7f0000000040)={0x7, 0x4b, 0x2}, 0x7)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0) (async)
getcwd(&(0x7f0000000080)=""/131, 0x83)

06:44:49 executing program 2:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:49 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:49 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:49 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2125.981065][T18822] fuse: Bad value for 'fd'
[ 2125.993404][T18826] fuse: Unknown parameter '0x0000000000000003'
[ 2126.000692][T18825] fuse: Bad value for 'fd'
[ 2126.005064][T18827] fuse: Unknown parameter '0xffffffffffffffff'
[ 2126.078071][T18833] fuse: Bad value for 'fd'
06:44:49 executing program 2:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:49 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000000))

06:44:49 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
write$FUSE_CREATE_OPEN(r0, &(0x7f0000000000)={0xa0, 0x0, 0x0, {{0x1, 0x1, 0x8000000000000000, 0xed, 0x1, 0x4, {0x5, 0x101, 0xffffffffffffffec, 0x4, 0x36c, 0x6, 0x5, 0x3f, 0x5, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x8}}, {0x0, 0x2}}}, 0xa0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:44:49 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2126.100631][T18836] fuse: Unknown parameter '0x0000000000000003'
[ 2126.135133][T18840] fuse: Unknown parameter '0x0000000000000003'
[ 2126.143723][T18838] fuse: Bad value for 'fd'
06:44:49 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:49 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2126.210433][T18843] fuse: Bad value for 'fd'
06:44:49 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:49 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:49 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
write$FUSE_CREATE_OPEN(r0, &(0x7f0000000000)={0xa0, 0x0, 0x0, {{0x1, 0x1, 0x8000000000000000, 0xed, 0x1, 0x4, {0x5, 0x101, 0xffffffffffffffec, 0x4, 0x36c, 0x6, 0x5, 0x3f, 0x5, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x8}}, {0x0, 0x2}}}, 0xa0) (async, rerun: 32)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0) (rerun: 32)

06:44:49 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2126.256368][T18851] fuse: Bad value for 'fd'
[ 2126.259390][T18852] fuse: Unknown parameter '0x0000000000000003'
[ 2126.281020][T18850] fuse: Unknown parameter '0x0000000000000003'
06:44:49 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:49 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
write$FUSE_CREATE_OPEN(r0, &(0x7f0000000000)={0xa0, 0x0, 0x0, {{0x1, 0x1, 0x8000000000000000, 0xed, 0x1, 0x4, {0x5, 0x101, 0xffffffffffffffec, 0x4, 0x36c, 0x6, 0x5, 0x3f, 0x5, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x8}}, {0x0, 0x2}}}, 0xa0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:44:49 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2126.346744][T18857] fuse: Unknown parameter '0x0000000000000003'
06:44:49 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2126.397690][T18861] fuse: Unknown parameter 'fd0x0000000000000003'
[ 2126.406019][T18858] fuse: Unknown parameter 'fd0x0000000000000003'
[ 2126.406172][T18862] fuse: Invalid rootmode
06:44:49 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:49 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:49 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
write$FUSE_CREATE_OPEN(r0, &(0x7f0000000000)={0xa0, 0x0, 0x0, {{0x1, 0x1, 0x8000000000000000, 0xed, 0x1, 0x4, {0x5, 0x101, 0xffffffffffffffec, 0x4, 0x36c, 0x6, 0x5, 0x3f, 0x5, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x8}}, {0x0, 0x2}}}, 0xa0) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:44:49 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2126.489744][T18866] fuse: Unknown parameter '0x0000000000000003'
[ 2126.525627][T18869] fuse: Unknown parameter 'fd0x0000000000000003'
[ 2126.532920][T18872] fuse: Unknown parameter 'fd0x0000000000000003'
06:44:49 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:49 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:49 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2126.561436][T18874] fuse: Invalid rootmode
06:44:49 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0x182, 0x2, 0x0, 0x204, 0x1, 0xc03, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x4, 0x1, 0x7}, 0x48)
r2 = gettid()
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r2, 0x0, 0x4004)
write$FUSE_LK(r0, &(0x7f00000000c0)={0x28, 0x0, 0x0, {{0x101, 0x4, 0x1, r2}}}, 0x28)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1}, './file0\x00'})

06:44:49 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2126.635202][T18878] fuse: Unknown parameter '0x0000000000000003'
[ 2126.640410][T18881] fuse: Unknown parameter 'fd0x0000000000000003'
[ 2126.651004][T18882] fuse: Unknown parameter 'fd0x0000000000000003'
06:44:49 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000000))

06:44:49 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, 0x0)

06:44:49 executing program 3:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2126.682932][T18883] fuse: Unknown parameter '0x0000000000000003'
[ 2126.717539][T18887] fuse: Invalid rootmode
06:44:49 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0x182, 0x2, 0x0, 0x204, 0x1, 0xc03, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x4, 0x1, 0x7}, 0x48)
r2 = gettid()
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r2, 0x0, 0x4004) (async)
write$FUSE_LK(r0, &(0x7f00000000c0)={0x28, 0x0, 0x0, {{0x101, 0x4, 0x1, r2}}}, 0x28) (async)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1}, './file0\x00'})

06:44:49 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:49 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2126.801230][T18893] fuse: Bad value for 'fd'
06:44:50 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0xff03000000000000, 0x0)

06:44:50 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, 0x0)

06:44:50 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:50 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0x182, 0x2, 0x0, 0x204, 0x1, 0xc03, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x4, 0x1, 0x7}, 0x48) (async)
r2 = gettid()
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r2, 0x0, 0x4004)
write$FUSE_LK(r0, &(0x7f00000000c0)={0x28, 0x0, 0x0, {{0x101, 0x4, 0x1, r2}}}, 0x28) (async)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1}, './file0\x00'})

[ 2126.838278][T18901] fuse: Invalid rootmode
[ 2126.838861][T18900] fuse: Unknown parameter '0x0000000000000003'
06:44:50 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000001000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:50 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:50 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2126.930036][T18907] fuse: Invalid rootmode
[ 2126.936518][T18905] __do_sys_memfd_create: 27 callbacks suppressed
[ 2126.936535][T18905] syz-executor.3[18905]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
06:44:50 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,use', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:50 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
r2 = getgid()
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001780), 0x2, 0x0)
read$FUSE(r3, &(0x7f0000007400)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_CREATE_OPEN(r3, &(0x7f0000000040)={0xa0, 0x0, r4, {{0x4, 0x3, 0x7, 0x0, 0xdc3c, 0x8, {0x3, 0x3, 0x101, 0x4, 0x7fffffffffffffff, 0x8, 0x1, 0x8, 0x9, 0xa000, 0x3, 0xffffffffffffffff, r2, 0x7fffffff, 0x20}}, {0x0, 0x18}}}, 0xa0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000001100)={{0x1, 0x1, 0x18, <r5=>r0, {0x4}}, './file0\x00'})
syz_io_uring_setup(0x1591, &(0x7f0000001180)={0x0, 0x6080, 0x8, 0x2, 0x300, 0x0, r5}, &(0x7f0000001200)=<r6=>0x0, &(0x7f0000001240))
r7 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x20010, r5, 0x10000000)
r8 = bpf$ITER_CREATE(0x21, &(0x7f0000001280)={r5}, 0x8)
syz_io_uring_submit(r6, r7, &(0x7f0000001740)=@IORING_OP_SENDMSG={0x9, 0x8, 0x0, r8, 0x0, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000001540)=[{&(0x7f00000012c0)="ac698fa45f151f0293ee50dd72dea2bc2c1b88d100de7603a29645a513f6880dab8536e6179bd12fbcafde09eea3d39f393d60ffdc0b278731a9a37f981c673a8f89b767d5b72a433508a14f858b0ea3c6cc0fbf754ba2bb5098248284ca4cc73d8794c196d3b3d00bae414eb551b59e53e92a5a6230563e", 0x78}, {&(0x7f0000001340)="4be968fcb387bb32ab152cbe21481bec88", 0x11}, {&(0x7f0000004400)="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", 0x1000}, {&(0x7f0000005400)="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", 0x1000}, {&(0x7f0000001380)="bd8705799840fad22eab19bb8953534c5e6ae2142478a360a153b07e3caff2746d60e75471ef1b8175a3726048483272b80d74c1f227faa2f3d2480410a5fe215713f2fe5314c62780ad3e6fdfb85c1ca1259adb04411e93f258bdfa12d3c64cf12109dd7c13a1", 0x67}, {&(0x7f0000006400)="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", 0x1000}, {&(0x7f0000001400)="59ba6adb65e65843f807cfac535eee791b7b174f532fd97cd9c5791f4d90b3fd25f69ab5b61cdfb30d2052a6d61cfad63b0dd4d9990043c55a00b18c44adfd682b26cb42977ddc6ce464a985c5e54767c5d4ea1cae23f04778e074e57d7ce196abbf32d9b60c41cf975c7b77ae39651df911ae46e089c8d6a0ca57097b3e2f8ee71ac768c9f9b0f870f3d037", 0x8c}, {&(0x7f00000014c0)="49acf9c1448a86c6a5f5ce6b8b611b0d39148201b2ce8bf12c4d1afd9b6c7fed9d0b61f20b3fff4a7d7cba25aab4226d15e13dddb13c9b230aff117827cdee8e1596c66d592a900d0e235380e5e32594211facbaa267ccf7d6d238c998f3e3628a17c84ed62fd8cda8fae8eb8c787e5633abcc825c145411f01eb87cf2d44161", 0x80}], 0x8, &(0x7f00000015c0)=[{0x58, 0x29, 0x8, "deee09f5f16ae2e8e2f669a05af7d8f87e0b43f79ded94806a122fadd9b5b4bb2552c72403f7aadf32c79eb3e4e9b61037573e1881e50c910e5e6b3b6f81ab4a5eb765"}, {0x30, 0x102, 0x6, "67f53ccc1e92ab3a3cce0c9a12e3611b6a39a65421342c8b3a1feb77"}, {0xa8, 0x16, 0x5, "b028c8dc8c4eb0b6ab07ce06ae3492611a708914853b38921c8b224eac927c01e4b04211d6af57f854122b508e04c815956548f373f401a3c415a3a47c2f550a556025b33bd44bd9905e6db5a69eb35efc8fab07181aff9ca8241561190cd5dcabbb716967818f25700b5e6ec682040c45b2bec0ba3414102d8eb7b9edceb708b35de2aaae551e66275b2622162b27601633c41de3af9a"}], 0x130}, 0x0, 0x20048000, 0x1})
read$FUSE(r1, &(0x7f00000023c0)={0x2020, 0x0, <r9=>0x0}, 0x2020)
write$FUSE_LSEEK(r5, &(0x7f0000001140)={0x18, 0x0, r9, {0x4}}, 0x18)
recvfrom$l2tp6(r1, &(0x7f0000000100)=""/4096, 0x1000, 0x2000, 0x0, 0x0)

06:44:50 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x6632020000000000, 0x0)

06:44:50 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
write$FUSE_NOTIFY_POLL(0xffffffffffffffff, &(0x7f0000000000)={0xffffffffffffffa5, 0x1, 0x0, {0x803}}, 0x18)

[ 2127.067168][T18915] fuse: Unknown parameter '0x0000000000000003'
[ 2127.092899][T18922] syz-executor.0[18922]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[ 2127.113210][T18924] fuse: Invalid rootmode
06:44:50 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:50 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'}) (async, rerun: 32)
r2 = getgid() (async, rerun: 32)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001780), 0x2, 0x0)
read$FUSE(r3, &(0x7f0000007400)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_CREATE_OPEN(r3, &(0x7f0000000040)={0xa0, 0x0, r4, {{0x4, 0x3, 0x7, 0x0, 0xdc3c, 0x8, {0x3, 0x3, 0x101, 0x4, 0x7fffffffffffffff, 0x8, 0x1, 0x8, 0x9, 0xa000, 0x3, 0xffffffffffffffff, r2, 0x7fffffff, 0x20}}, {0x0, 0x18}}}, 0xa0) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000001100)={{0x1, 0x1, 0x18, <r5=>r0, {0x4}}, './file0\x00'})
syz_io_uring_setup(0x1591, &(0x7f0000001180)={0x0, 0x6080, 0x8, 0x2, 0x300, 0x0, r5}, &(0x7f0000001200)=<r6=>0x0, &(0x7f0000001240)) (async)
r7 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x20010, r5, 0x10000000) (async, rerun: 64)
r8 = bpf$ITER_CREATE(0x21, &(0x7f0000001280)={r5}, 0x8) (rerun: 64)
syz_io_uring_submit(r6, r7, &(0x7f0000001740)=@IORING_OP_SENDMSG={0x9, 0x8, 0x0, r8, 0x0, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000001540)=[{&(0x7f00000012c0)="ac698fa45f151f0293ee50dd72dea2bc2c1b88d100de7603a29645a513f6880dab8536e6179bd12fbcafde09eea3d39f393d60ffdc0b278731a9a37f981c673a8f89b767d5b72a433508a14f858b0ea3c6cc0fbf754ba2bb5098248284ca4cc73d8794c196d3b3d00bae414eb551b59e53e92a5a6230563e", 0x78}, {&(0x7f0000001340)="4be968fcb387bb32ab152cbe21481bec88", 0x11}, {&(0x7f0000004400)="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", 0x1000}, {&(0x7f0000005400)="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", 0x1000}, {&(0x7f0000001380)="bd8705799840fad22eab19bb8953534c5e6ae2142478a360a153b07e3caff2746d60e75471ef1b8175a3726048483272b80d74c1f227faa2f3d2480410a5fe215713f2fe5314c62780ad3e6fdfb85c1ca1259adb04411e93f258bdfa12d3c64cf12109dd7c13a1", 0x67}, {&(0x7f0000006400)="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", 0x1000}, {&(0x7f0000001400)="59ba6adb65e65843f807cfac535eee791b7b174f532fd97cd9c5791f4d90b3fd25f69ab5b61cdfb30d2052a6d61cfad63b0dd4d9990043c55a00b18c44adfd682b26cb42977ddc6ce464a985c5e54767c5d4ea1cae23f04778e074e57d7ce196abbf32d9b60c41cf975c7b77ae39651df911ae46e089c8d6a0ca57097b3e2f8ee71ac768c9f9b0f870f3d037", 0x8c}, {&(0x7f00000014c0)="49acf9c1448a86c6a5f5ce6b8b611b0d39148201b2ce8bf12c4d1afd9b6c7fed9d0b61f20b3fff4a7d7cba25aab4226d15e13dddb13c9b230aff117827cdee8e1596c66d592a900d0e235380e5e32594211facbaa267ccf7d6d238c998f3e3628a17c84ed62fd8cda8fae8eb8c787e5633abcc825c145411f01eb87cf2d44161", 0x80}], 0x8, &(0x7f00000015c0)=[{0x58, 0x29, 0x8, "deee09f5f16ae2e8e2f669a05af7d8f87e0b43f79ded94806a122fadd9b5b4bb2552c72403f7aadf32c79eb3e4e9b61037573e1881e50c910e5e6b3b6f81ab4a5eb765"}, {0x30, 0x102, 0x6, "67f53ccc1e92ab3a3cce0c9a12e3611b6a39a65421342c8b3a1feb77"}, {0xa8, 0x16, 0x5, "b028c8dc8c4eb0b6ab07ce06ae3492611a708914853b38921c8b224eac927c01e4b04211d6af57f854122b508e04c815956548f373f401a3c415a3a47c2f550a556025b33bd44bd9905e6db5a69eb35efc8fab07181aff9ca8241561190cd5dcabbb716967818f25700b5e6ec682040c45b2bec0ba3414102d8eb7b9edceb708b35de2aaae551e66275b2622162b27601633c41de3af9a"}], 0x130}, 0x0, 0x20048000, 0x1})
read$FUSE(r1, &(0x7f00000023c0)={0x2020, 0x0, <r9=>0x0}, 0x2020)
write$FUSE_LSEEK(r5, &(0x7f0000001140)={0x18, 0x0, r9, {0x4}}, 0x18) (async)
recvfrom$l2tp6(r1, &(0x7f0000000100)=""/4096, 0x1000, 0x2000, 0x0, 0x0)

06:44:50 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x5d32020000000000, 0x0)

[ 2127.134184][T18926] fuse: Bad value for 'fd'
06:44:50 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000000000000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2127.168668][T18928] fuse: Unknown parameter '0x0000000000000003'
06:44:50 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:50 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000000)=r0)

06:44:50 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2127.237236][T18931] syz-executor.0[18931]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[ 2127.254696][T18935] fuse: Invalid rootmode
06:44:50 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
r2 = getgid() (async, rerun: 64)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001780), 0x2, 0x0) (rerun: 64)
read$FUSE(r3, &(0x7f0000007400)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_CREATE_OPEN(r3, &(0x7f0000000040)={0xa0, 0x0, r4, {{0x4, 0x3, 0x7, 0x0, 0xdc3c, 0x8, {0x3, 0x3, 0x101, 0x4, 0x7fffffffffffffff, 0x8, 0x1, 0x8, 0x9, 0xa000, 0x3, 0xffffffffffffffff, r2, 0x7fffffff, 0x20}}, {0x0, 0x18}}}, 0xa0) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000001100)={{0x1, 0x1, 0x18, <r5=>r0, {0x4}}, './file0\x00'})
syz_io_uring_setup(0x1591, &(0x7f0000001180)={0x0, 0x6080, 0x8, 0x2, 0x300, 0x0, r5}, &(0x7f0000001200)=<r6=>0x0, &(0x7f0000001240)) (async)
r7 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x20010, r5, 0x10000000)
r8 = bpf$ITER_CREATE(0x21, &(0x7f0000001280)={r5}, 0x8)
syz_io_uring_submit(r6, r7, &(0x7f0000001740)=@IORING_OP_SENDMSG={0x9, 0x8, 0x0, r8, 0x0, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000001540)=[{&(0x7f00000012c0)="ac698fa45f151f0293ee50dd72dea2bc2c1b88d100de7603a29645a513f6880dab8536e6179bd12fbcafde09eea3d39f393d60ffdc0b278731a9a37f981c673a8f89b767d5b72a433508a14f858b0ea3c6cc0fbf754ba2bb5098248284ca4cc73d8794c196d3b3d00bae414eb551b59e53e92a5a6230563e", 0x78}, {&(0x7f0000001340)="4be968fcb387bb32ab152cbe21481bec88", 0x11}, {&(0x7f0000004400)="68821640401172097884d87825d2a80413ad6f78280b194ec058ef86e589fb9b98477786b4463a9e3879b5c071f336ed1d3f17e4fa143333c00dd089888820c6d4ed8f6bf9606c8c3a6d243f95478c8f9e27942c86d9c62d59d9ae75324631a38aa9df5c14c1943a070e9df3063dcfda87bda70b738258b004205cd9e0e163e9d8f5b6f140056c53157e9d7ccd81970c340bae1c8930194d7c56a624c575f5ffed71cd2d25f28a3bf5e9c910d55d7d9eb207b549b3b5e5164f6facf3f51cdda6ca0a1a465c828e232059838851000e7da3f9299a3daf209172f559e2f32890c77589470c1657cf2c8de121336eea8bc428da9ae47cb893dfa22cd8009ef42d944e46b7453599cd222eaf5645ae36f568714ee98040a4fe27d5835196dda507c76f98e743204b65206d18bff40d6417910bbce5ab08ccbfd1eb455653211ff0c48e1d3491f26ea0f4c5f3a81a39cb83bc1bd0d3a0040a617a468b58453c1ba0b232bbe0ca4b9f43a9579e8be6970cd759ef36fa61374599fbee956ff96f32770bfe4dd9fea27b20329ae1c2f3f4a15a88143b7363c7e4a6369db866c0bfe0d4d172f090a4fe37aa047737dd0b8744383feeae57c57ebebd553a05fc6cfb8481cc8ecaaacdbd443057191f6c7c5d23d45652349abea572a191b60fa960fa30a3cba9be82fb9a1b252434083afef6e9b09d73fbbf2d24b229fee83cbf2b2112be2afe663a99c187df1b114cd05798bb5c6724d7fe1e1bedc310583651a5cb3a44982f3d5da8f58c46b9786ea8d31ba8f1cf04f72ca8daf4ff362b1c590ea95f19b5e4f4e63f0d3922fd67e356a23c8a1ba44c4a50e0a71f2dc23de0df31d759bdeb3f321113b27713d9fe1f047d17e51fb35fa13308d564ee03014625717092a870a166bdafa772e4d274a356e1eca520944a1532d413d6afe13f6a6b4b7b14672e76a4a76dc43471e0a4c2f7fc084b7072f8071d177dc46503dd25ac0f51b8e7c3e8cd0b6b8612f9c464d8f803a9ca5f098936d51d5016f4347875f94d5ec10cad4b0925dac412c5b710538b76e1923cd7d658db0b2bb468a17ada2dff73ebe99d0e4028e420aeed1fe8b14c94889eb17031b4afed4ea79e2f8abd3fc674766227723e1e5aa0aa10e369dbbfa3a6d9b7e89158d89a57161eb9aed1509bfcab6f67594b034300a9208c174c4fc7f93424428f7fd962f8a118c52a40e4f597691e69eb038f867974415b7193258e67cdc12f3928b252b7b19fe95d50b6e2221fac8f4b46e554543b845c1bc03a33d58724b42c8612c57b6643cf17cbf67701dc6aaeb27ea62442b4ca74d5e885a416fed183ff4945ab7725afb86cfc073418a8fea22ed9d168b7c16ebca2680c441b2812d6fae32e42b1200ee75ad3d1673521d55d566335779971498e153a69edeeb94921e8bf6dedbf6a48637076144a57b663afc866fcd943d5b8e0d957e5b544ac2ad74c6505a7a3dd042824e51e47190a6b403bdb816d327effb74ff73a9de949ccb55b0cfdc4cc423bc6f2123cb9d349a460a6145473b67c3b52c2e8d04785ac49e363187927f529a809c8d67771dab75e23a9c9189bead8bd2a11fb987cb0f3d14341e922aa733c849a92c238f0c8ac65f06d96d0a7defe6a17570624d18a14eeb08678efbf495471b07875cfe492ef3c09a813c620ff9e64abb26e6d32021c81b6f8035f4d4370760855b41a5dfdd4ea10b5105cf7238bffaed7717a1f19385c5d4461e2a7cca5c56f03c8d97cd6c498b43cb792d6b495f2838ab0b5bd0d55b620738837484d485388f98085e40256e8bfc5902c3122314bec2668731d96c8295cb6e57d7a9ea8d995068667376e2b7012a557d18cba9ca268001de8c8127813f47610f9d28426b2772d4844995ef6f618be81e7c2d692fa4b1a7e891d4c10217ab982207f271f1eb52defe844326f4a58238bfd99d6e34891ba156b00108b2890d759b76642880747e851c10cf3121a44825f44c2548320ed755166dfca7f94f749453127befdb719e9a8a1207dfa7c48fb89bcef686ae088fcc83dc818b732cb888275bec117638feb9663059c21866cba8889d8c185cce79b7a43812abf032338676214a8c2745dfe8d539d3ec5c7a8a429b636e25102e1303efbaf03fb78c53b4f7d0e3df8640a4f8028b69a7804699f19ac79fc18bd28717f259ce3d3d9e7080a3ca357d2e9b8e92d9c8bc5946b5735884d343c0c647cfe12ca825f81026af6d39a82adc983fc3cd1851eeae8d66957ac889243cdb5c7b196363252a717dfd72c6fa62d1ef56ac22ec9e1d4afbfe9e1b55c6355e0fff70d13a52cf05d4697be2933a077da0b6c76d95d840a7bcc636c59c6e9e54140573f23eeaa56c0c7765080231105904a1300b10a39286fe03b0b9db8e7a4f94f7902b9ef27cdc6dde06075b1b2191073a95f743a177f77dadb94a01d60967f42758a831314f86e64c756dc33fc14461f5eaad46b0b2e90af70ba080f411313dacb63225eddb22d754d2094e8ff8a54017a56ff228e9f400420d8016f7caca1a31778bcb32ad31b2efd6cfe67f0ea732012dd8bdd2270cde48ef865025f2e5780c129634db6c322f2afb918301ada027c6844d78fa147f8353f2288a94e179f4c0dadf28f9274a00849f28ef4d6db9656af48377b39893a67dd6f035d91d7780b1bd2364b5fa9fd0b76cf5f30fa0c2f75067e754a1358606fecef8fb6ee3d1a430b8a5fa16ffd1e704373652b4a1098b96ea083bc4ca04dd886f73842faa4ffdc64918acf574a4aea99bd2b1de007c2af7d69ebfd2296181e016b5d0f889561a12ebeca744aa3a808b1344c075fe99ec62ac64b90072613b2e6279a9f8880353395af11b3368bc287f9b6eb30cd3ecb2cc3730543dbd82e7571d7dd8351696bdcfe4393c83b45d10b8da34ebf319410308faedcc2504b5988e986f5d62975b65bbc8d200d08e174f11cf55b7aaa21a3b57e4e7c008b7b8bca97d96f4f136bdce3aca63f87929cbfbd708e9f97e6477caa9b8ed5a8290b7909a8639f08f1ee99bec72f6dd35f0c632270e8aba7b563c131f4496fc111f4145441fe1c946d0771ab741848f7a9945acb66bf891164b7c1167fdc0f7d8b58d388c8effcf86e18c55f6a05d6b60ff4b82cafb266de6f1899699f935a6ba3060934cb4f1a8f73c007babd900e17ee7fddafdd2b9ffe8663a0ce18071b4f7fc66f0b740bfa35eda129f5054eb4f6e7c7ee8a03664baca419cb483446ba4bdca56bfe92976ed3d4c78e452e7d632c10a2b50ed5e7898f9c62dd143c727dab48b21faca02dc0ae56b0d785ba12c2f0babeb021dec6baf2eb6f94140691f92c3b9891e4ab25059d8dbefc6e19a1ad5ab2b9f1d8eb2bc26fda676c573aacc8cd26d2a1e09571fd1c4488eb93225841007c45397775a6ca8ff3650fab9b520c90442df1f11bd5ea0ad60de3825a5896258534e6c40d592e366e6f83d9ef4ba7e93ea2c999edee69d8290303cfc4716ca2f22c611c7a56e4d2d4046e75a8a2810f3f4a5c959cb310f8b6e824b53cd5dfba15a11280032b80159ba2360d3832da22704fefc99e6ce18d3ba0a6ab5977a98b4c9e36b27fda364545855a9895890b019734a075813ba94550a4f530dabe161195278f05bbbeb44fda97770bae1a7a85c228c1b67a33f61224fe040bd306e7c84ff0bad1e1ec352097f477024b06a3c916ce7196487965427320a329c317442fb7fe1f8b9b9756d3dc58eabfe21ee48932e12e63b0c8ae13d845446a9bce740412f7de2e83e4312eb154b97a42fe1a914cd5cd23fd6b7df304a9c0cb39bc5f1472b91e0de7774f952c79c262d0d75922a110fe7d9e7da841a14b53307f2fd23a86fe5f3a288d86501fa5ae9f5d9a1a96ad6b360980195fd5c06dc335a41676e01ca26dcc7e475bc65c771919ffab97f1ae2af5547e1fbfed1c0c4eaa26812a84b6ca1b5589287e4544fcb7268868f535e31f26fea27bd3a55d0be5c59d6b3f1af650605028e81a185eea0e94c3352aba179f5b5b55d64d270fe152359bbd316904a0d89ee11a317d75c4cd1c13ee55678fbefb2fdcdc2223c2c1e97d5000fd8a91055875fd93250a5c3f69d7707d6221d523fcb222096b2b9a6a9d193c454bf52ce8f0044a39574b76b65980dd1979bcb632a47e5c439287de88da748d04eed550fcf6ace9b75e686298bdc65c32e89bad049eca33ec14dd5328e8db047e310bdb92e9e9a860ec82a80ea38edc48fcf90d27def5ac25a9cad90a39d0f89e9a96dbe6e3acaf4aa8523ad0195f88b1a6ba0e0d9488a2685231d340f9747196d11c2595ee03adac562e5da0e53ef6cd6b692680640844f300a84948cc7c97f40ae862443ca155864da8aacb818d671e7b7f6552e6fc0439e1d00182a04b6aa3ef3f5b2a1f5e86d5ebe8ca46ef8b6876e0a2b9f369760bc3a76d1e1b702694bd79a205c6717a0a132268a81d597e065b0295be327adab0a6d976af516f4396878ef7486429b771d65845c312754c33b7ca0e1eed9f6a38404b7c497ac12d86c5e2c8ac7103866b91642a7c558a267b30ce05a4c1923f254efad28806c281dda1629f99cd8f396289c0f0353ee8caf9e90764ed0af699b15774c4c8ec793e5c504c0ff0eb5561d9dd545a1f92857bce1330e66ca90ae0172c3eacfcfb9c531be8c619742d1b7c00f2fe7fab95a3ca4bcab8722d23128d8056eef879b0d0656dc908f16786bb8d95ca43204ef7e82916b28ab754984dbcbbb55b0e156d0126a4ddfe9722d21f64445fff3e471b9b9ff601959e69517e9d7e45c308f418f1150c92fa976dd448f29f8a09ec6ad541f88e8af35dc12cc513f6deb97f748de2f7ea4575f8e51f82a2c3cabf3760bde63378c041a697a3c07e8ebefe68271547110a6521ceaef68c818469bdc1411796d51bdc2c7187a8a1e0628eb426ec65d2da2678ba5f0afd3690d34a595611f2dd33ff3fc237c3957fb143cdb55a5bd357240f45de344ddd0e40d309a2ea7b216c5757d60d0341956ab1a56c6533e3f906127fbde980e26255f3987695a145bac1f8850483731d12f74e6914cf51a89371a7497cd69405160dbbed6cd897061c3eacad6ac21518467b67b33f951d2b87c8e1c8b048669e3744fd07630896de2fcd8ad74a980ca5b65bc1cd9791d37e418f0d36c81eba3358542c4ad57420a8da56e7e277fc2018d1dc8ce59f3252353652d9ec987255a1fece1a994386634bf51b4a1565c5da4bcb1c87dba59bc0ba010851d768ff9dd1b602475379a7c8af17a1af87ea07dac2176d97442cd7dbdcb13d2a92957e3237f923acf384f65d4346e4d936290e799285d8e736acc008a8813573ba8e370b9cec4df0889c13786dd11f8bdcda53fc21ec4846811f86ec643c4ff31c399eba75451bd6430997e1896d1f81424ec38d4275a27a4293481ea7083b9e9ae8a31c40ac4b5ad82905048f905e6b9051e1c39efbb0be136131a083805b9bfdfa79b3016ea75545079ab4afb00397f4f897b40fa8175c2a451004917a82e8729e640c3ac0335bb4cb173d68220cdad7ee3a4cde45e5d48239cdedd1783fc3b0eb6964a7d35f725629bf804a1d60688c7750c6edefba89d0f5529cd14d1bbf2814fde7ad6b3061e6dbe3e3dc56a0ff526c0669ee4f54818d17819ce0a02cad42828174af0a0a0c214d1842b11ea9ccb585f2405ffc0d198aad046aea263dcf1eab22f39914289bb2f6e421c58fb4ae34fc34ceae5d6adbaf86043b8db5e229f0fda901f3ae6dcdb03fe1c703fa116ad048ab266216257e64", 0x1000}, {&(0x7f0000005400)="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", 0x1000}, {&(0x7f0000001380)="bd8705799840fad22eab19bb8953534c5e6ae2142478a360a153b07e3caff2746d60e75471ef1b8175a3726048483272b80d74c1f227faa2f3d2480410a5fe215713f2fe5314c62780ad3e6fdfb85c1ca1259adb04411e93f258bdfa12d3c64cf12109dd7c13a1", 0x67}, {&(0x7f0000006400)="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", 0x1000}, {&(0x7f0000001400)="59ba6adb65e65843f807cfac535eee791b7b174f532fd97cd9c5791f4d90b3fd25f69ab5b61cdfb30d2052a6d61cfad63b0dd4d9990043c55a00b18c44adfd682b26cb42977ddc6ce464a985c5e54767c5d4ea1cae23f04778e074e57d7ce196abbf32d9b60c41cf975c7b77ae39651df911ae46e089c8d6a0ca57097b3e2f8ee71ac768c9f9b0f870f3d037", 0x8c}, {&(0x7f00000014c0)="49acf9c1448a86c6a5f5ce6b8b611b0d39148201b2ce8bf12c4d1afd9b6c7fed9d0b61f20b3fff4a7d7cba25aab4226d15e13dddb13c9b230aff117827cdee8e1596c66d592a900d0e235380e5e32594211facbaa267ccf7d6d238c998f3e3628a17c84ed62fd8cda8fae8eb8c787e5633abcc825c145411f01eb87cf2d44161", 0x80}], 0x8, &(0x7f00000015c0)=[{0x58, 0x29, 0x8, "deee09f5f16ae2e8e2f669a05af7d8f87e0b43f79ded94806a122fadd9b5b4bb2552c72403f7aadf32c79eb3e4e9b61037573e1881e50c910e5e6b3b6f81ab4a5eb765"}, {0x30, 0x102, 0x6, "67f53ccc1e92ab3a3cce0c9a12e3611b6a39a65421342c8b3a1feb77"}, {0xa8, 0x16, 0x5, "b028c8dc8c4eb0b6ab07ce06ae3492611a708914853b38921c8b224eac927c01e4b04211d6af57f854122b508e04c815956548f373f401a3c415a3a47c2f550a556025b33bd44bd9905e6db5a69eb35efc8fab07181aff9ca8241561190cd5dcabbb716967818f25700b5e6ec682040c45b2bec0ba3414102d8eb7b9edceb708b35de2aaae551e66275b2622162b27601633c41de3af9a"}], 0x130}, 0x0, 0x20048000, 0x1})
read$FUSE(r1, &(0x7f00000023c0)={0x2020, 0x0, <r9=>0x0}, 0x2020)
write$FUSE_LSEEK(r5, &(0x7f0000001140)={0x18, 0x0, r9, {0x4}}, 0x18) (async, rerun: 64)
recvfrom$l2tp6(r1, &(0x7f0000000100)=""/4096, 0x1000, 0x2000, 0x0, 0x0) (rerun: 64)

06:44:50 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
write$FUSE_NOTIFY_POLL(0xffffffffffffffff, &(0x7f0000000000)={0xffffffffffffffa5, 0x1, 0x0, {0x803}}, 0x18)

06:44:50 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000000000000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:50 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2127.326373][T18941] fuse: Unknown parameter 'fd0x0000000000000003'
[ 2127.365108][T18939] fuse: Invalid rootmode
[ 2127.371696][T18947] fuse: Invalid rootmode
06:44:50 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000000000000', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:50 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x5b32020000000000, 0x0)

06:44:50 executing program 4:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14}, 0x14}}, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r1, 0x8004e500, &(0x7f0000000000)=r1)

06:44:50 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0, @ANYBLOB='\x00\x00 \x00\x00\x00\x00\x00\x00\x00'], 0x0, 0x0, 0x0)

[ 2127.423757][T18950] fuse: Unknown parameter 'fd0x0000000000000003'
06:44:50 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2127.470375][T18952] fuse: Invalid rootmode
06:44:50 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:50 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:50 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
read$FUSE(r0, &(0x7f0000000000)={0x2020, 0x0, 0x0, 0x0, <r1=>0x0}, 0x2020)
read$FUSE(r0, &(0x7f00000023c0)={0x2020, 0x0, 0x0, <r2=>0x0}, 0x2020)
setuid(0xee00)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f00000020c0)=ANY=[@ANYBLOB="4c643d0bd3d588cc6d3f5909640d87d2ceb368e7a1d3826b63ef9ee1047411358baa440f536b89262895075561629a477e46e64f4b1d584805a8d46cc162178037f5d3db95b0f00c8b011eff8ce54d54b33a82dc2d1760d5deb5b1b3acb148ce8bc617c8f7ad0c35292fd5d101e486fb4f426068e81a4b5e6fcf54e8de56bfae8413d5ec65b172703b9615dbd7148feba9c69dc21a63627e68dabc8cfee96b0d56e016eb5c2df9c72600620039aef44043b91ea990f5a0dfb4704dfebcedd32600", @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000060000,user_id=', @ANYRESDEC=r2, @ANYBLOB=',group_id=', @ANYRESDEC=r1, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

06:44:50 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0, @ANYBLOB='\x00\x00 \x00\x00\x00\x00\x00\x00\x00', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

[ 2127.542688][T18960] syz-executor.3[18960]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[ 2127.561958][T18962] fuse: Unknown parameter 'fd0x0000000000000003'
[ 2127.581699][T18964] fuse: Bad value for 'rootmode'
06:44:50 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14}, 0x14}}, 0x0)
sendmsg$NLBL_MGMT_C_VERSION(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x2c, 0x0, 0x32c, 0x70bd28, 0x25dfdbfd, {}, [@NLBL_MGMT_A_FAMILY={0x6}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x2}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24008010}, 0xc0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
read$FUSE(r1, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r1, 0x8004e500, &(0x7f0000000000)=r1)

06:44:50 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:50 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:50 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
read$FUSE(r0, &(0x7f0000000000)={0x2020, 0x0, 0x0, 0x0, <r1=>0x0}, 0x2020) (async)
read$FUSE(r0, &(0x7f00000023c0)={0x2020, 0x0, 0x0, <r2=>0x0}, 0x2020) (async)
setuid(0xee00)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f00000020c0)=ANY=[@ANYBLOB="4c643d0bd3d588cc6d3f5909640d87d2ceb368e7a1d3826b63ef9ee1047411358baa440f536b89262895075561629a477e46e64f4b1d584805a8d46cc162178037f5d3db95b0f00c8b011eff8ce54d54b33a82dc2d1760d5deb5b1b3acb148ce8bc617c8f7ad0c35292fd5d101e486fb4f426068e81a4b5e6fcf54e8de56bfae8413d5ec65b172703b9615dbd7148feba9c69dc21a63627e68dabc8cfee96b0d56e016eb5c2df9c72600620039aef44043b91ea990f5a0dfb4704dfebcedd32600", @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000060000,user_id=', @ANYRESDEC=r2, @ANYBLOB=',group_id=', @ANYRESDEC=r1, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

06:44:50 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:50 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:50 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
read$FUSE(r0, &(0x7f0000000000)={0x2020, 0x0, 0x0, 0x0, <r1=>0x0}, 0x2020)
read$FUSE(r0, &(0x7f00000023c0)={0x2020, 0x0, 0x0, <r2=>0x0}, 0x2020)
setuid(0xee00) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f00000020c0)=ANY=[@ANYBLOB="4c643d0bd3d588cc6d3f5909640d87d2ceb368e7a1d3826b63ef9ee1047411358baa440f536b89262895075561629a477e46e64f4b1d584805a8d46cc162178037f5d3db95b0f00c8b011eff8ce54d54b33a82dc2d1760d5deb5b1b3acb148ce8bc617c8f7ad0c35292fd5d101e486fb4f426068e81a4b5e6fcf54e8de56bfae8413d5ec65b172703b9615dbd7148feba9c69dc21a63627e68dabc8cfee96b0d56e016eb5c2df9c72600620039aef44043b91ea990f5a0dfb4704dfebcedd32600", @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000060000,user_id=', @ANYRESDEC=r2, @ANYBLOB=',group_id=', @ANYRESDEC=r1, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

[ 2127.674345][T18968] fuse: Bad value for 'fd'
[ 2127.690237][T18974] fuse: Bad value for 'rootmode'
[ 2127.701574][T18975] fuse: Bad value for 'rootmode'
06:44:50 executing program 4:
syz_mount_image$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0x100000000000000, 0x0, 0x0, 0x0, 0x0)

06:44:50 executing program 2:
syz_mount_image$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0x7fceefb53ee8, 0x0, 0x0, 0x0, 0x0)

06:44:51 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2127.780453][T18980] fuse: Bad value for 'fd'
06:44:51 executing program 2:
syz_mount_image$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0x7fceee9fffff, 0x0, 0x0, 0x0, 0x0)

06:44:51 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000000000000100', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2127.826606][T18984] fuse: Bad value for 'rootmode'
[ 2127.838667][T18990] fuse: Unknown parameter 'Ld'
[ 2127.858121][T18991] fuse: Bad value for 'fd'
06:44:51 executing program 3:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000004a00)={&(0x7f0000004940)={0x10, 0x0, 0x0, 0x80000200}, 0xc, &(0x7f00000049c0)={&(0x7f0000004980)={0x14, 0x4, 0x1, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, ["", "", ""]}, 0x14}}, 0x40)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020, 0x0, 0x0, <r0=>0x0}, 0x2020)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004cc0)={&(0x7f0000004a40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000004c80)={&(0x7f0000004e00)={0x1c8, 0x1, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_USERDATA={0x102, 0x6, "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"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x81, 0x6, "6c27a0e6f4b1a8f03e9b735dc044d073b6c245ea6d443fb316c059e0ea544d764ee2f0b6432b40b3b87ad5857e8a3d811e303bb631fac14b1d168f790c7074c97985b52c23ca6f76ae1c95f2d461b5a7870b72ce1c1728e42e659a7620ecfe4ba390b8c7369fb63bf1f8f732daa34dcc4f05e22218472a41d016d12052"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x8000}, 0x8050)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(r1, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
read$FUSE(0xffffffffffffffff, &(0x7f00000020c0)={0x2020, 0x0, 0x0, 0x0, <r2=>0x0}, 0x2020)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004dc0)={&(0x7f0000004d00)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000004ac0)={&(0x7f0000004a80)={0x24, 0x1, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x7}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000080}, 0x28044014)
r3 = syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2000, &(0x7f0000004280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000020000,user_id=', @ANYRESDEC=r0, @ANYBLOB="15677d75be705f69643d8a5de5c86ab4d27868", @ANYRESDEC=r2, @ANYBLOB=',default_permissions,smackfsroot=,\x00'], 0x1, 0x0, &(0x7f00000041c0)="59d3b20cb3d8125d294aea3004ca649d9e40a13ef4b093d46c5bbc7e569c1eca1f600678da6512eea37414fd2ebd5e8ee4cf7f3f5b658e79a9975e6b7644b4c373247d440bc7d7213f29718c84611be2453c9f49c6cd9a382c9c99d7a64f813a13f84f6928072c0f72c0d69350cc5caadaf81031b8ba9b435fd5f3229a44576013c65c0f708d3cdb043697f06c0be447f4455557f6be")
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000004100)=ANY=[@ANYBLOB="010000180000000000000000", @ANYRES32=<r4=>r3, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
recvmsg$can_j1939(r4, &(0x7f0000004900)={&(0x7f0000004140)=@sco={0x1f, @none}, 0x80, &(0x7f0000004800)=[{&(0x7f0000004340)=""/136, 0x88}, {&(0x7f0000004400)=""/173, 0xad}, {&(0x7f00000044c0)=""/150, 0x96}, {&(0x7f0000004580)=""/75, 0x4b}, {&(0x7f0000004600)=""/133, 0x85}, {&(0x7f00000046c0)=""/116, 0x74}, {&(0x7f0000004740)=""/157, 0x9d}], 0x7, &(0x7f0000004880)=""/99, 0x63}, 0x40000020)
setreuid(0xee01, 0xffffffffffffffff)

06:44:51 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000000), 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>r1, {0x2, 0xd3f1}}, './file0\x00'})
write$P9_RRENAMEAT(r2, &(0x7f0000000100)={0x7, 0x4b, 0x1}, 0x7)
read$FUSE(r0, &(0x7f00000023c0)={0x2020, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}, 0x2020)
prlimit64(r3, 0x9, &(0x7f0000000080)={0x7, 0x7fff}, &(0x7f00000000c0))
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000040)=r2)

06:44:51 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x3, 0x2, 0x3, 0x0, 0x0, {0x7, 0x0, 0xa}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x20008000)
sendmsg$IPCTNL_MSG_EXP_DELETE(r1, &(0x7f0000000980)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000940)={&(0x7f00000007c0)={0x158, 0x2, 0x2, 0x5, 0x0, 0x0, {0x2, 0x0, 0x3}, [@CTA_EXPECT_TUPLE={0x64, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @private=0xa010100}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @rand_addr=0x64010101}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @ipv4={'\x00', '\xff\xff', @remote}}, {0x14, 0x4, @remote}}}]}, @CTA_EXPECT_ID={0x8}, @CTA_EXPECT_MASTER={0x4c, 0x1, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_EXPECT_ID={0x8, 0x5, 0x1, 0x0, 0x20}, @CTA_EXPECT_TUPLE={0x78, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @rand_addr=' \x01\x00'}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}]}, @CTA_EXPECT_HELP_NAME={0x9, 0x6, 'pptp\x00'}]}, 0x158}, 0x1, 0x0, 0x0, 0x804}, 0x4000000)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000280), 0x8)
sendmsg$NFQNL_MSG_CONFIG(r2, &(0x7f0000000740)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x33c3e698a83fff8a}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x28, 0x2, 0x3, 0x101, 0x0, 0x0, {0x7, 0x0, 0x1}, [@NFQA_CFG_QUEUE_MAXLEN={0x8, 0x3, 0x1, 0x0, 0x81}, @NFQA_CFG_PARAMS={0x9, 0x2, {0x100}}]}, 0x28}, 0x1, 0x0, 0x0, 0xa0}, 0x8c)
sendmsg$NFT_MSG_GETGEN(r2, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x14, 0x10, 0xa, 0x3, 0x0, 0x0, {0x5, 0x0, 0x2}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20008080}, 0x4000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r3, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x70, 0x0, 0x1, 0x801, 0x0, 0x0, {0x2, 0x0, 0x8}, [@CTA_NAT_SRC={0xc, 0x6, 0x0, 0x1, [@CTA_NAT_V4_MINIP={0x8, 0x1, @multicast1}]}, @CTA_TUPLE_ORIG={0x50, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @private1}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}]}]}, 0x70}, 0x1, 0x0, 0x0, 0x20000000}, 0xc0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETGEN(r4, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, 0x10, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x5}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40001}, 0x8811)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)=ANY=[], 0x2c}}, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x1, &(0x7f0000000100)=ANY=[@ANYRESHEX=r1, @ANYRES32=r4, @ANYRES16=r1, @ANYRES64=r1, @ANYBLOB="c1e462dfc67309c8b6", @ANYRES32=r0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

06:44:51 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:51 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
prlimit64(0x0, 0x0, &(0x7f0000000000), 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>r1, {0x2, 0xd3f1}}, './file0\x00'})
write$P9_RRENAMEAT(r2, &(0x7f0000000100)={0x7, 0x4b, 0x1}, 0x7) (async)
read$FUSE(r0, &(0x7f00000023c0)={0x2020, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}, 0x2020)
prlimit64(r3, 0x9, &(0x7f0000000080)={0x7, 0x7fff}, &(0x7f00000000c0)) (async)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000040)=r2)

06:44:51 executing program 0:
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:51 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2127.950282][T18999] fuse: Bad value for 'rootmode'
[ 2127.957163][T19001] fuse: Bad value for 'fd'
[ 2127.979701][T19002] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
06:44:51 executing program 2:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000004a00)={&(0x7f0000004940)={0x10, 0x0, 0x0, 0x80000200}, 0xc, &(0x7f00000049c0)={&(0x7f0000004980)={0x14, 0x4, 0x1, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, ["", "", ""]}, 0x14}}, 0x40)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020, 0x0, 0x0, <r0=>0x0}, 0x2020)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004cc0)={&(0x7f0000004a40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000004c80)={&(0x7f0000004e00)={0x1c8, 0x1, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_USERDATA={0x102, 0x6, "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"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x81, 0x6, "6c27a0e6f4b1a8f03e9b735dc044d073b6c245ea6d443fb316c059e0ea544d764ee2f0b6432b40b3b87ad5857e8a3d811e303bb631fac14b1d168f790c7074c97985b52c23ca6f76ae1c95f2d461b5a7870b72ce1c1728e42e659a7620ecfe4ba390b8c7369fb63bf1f8f732daa34dcc4f05e22218472a41d016d12052"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x8000}, 0x8050)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(r1, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
read$FUSE(0xffffffffffffffff, &(0x7f00000020c0)={0x2020, 0x0, 0x0, 0x0, <r2=>0x0}, 0x2020)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004dc0)={&(0x7f0000004d00)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000004ac0)={&(0x7f0000004a80)={0x24, 0x1, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x7}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000080}, 0x28044014)
r3 = syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2000, &(0x7f0000004280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000020000,user_id=', @ANYRESDEC=r0, @ANYBLOB="15677d75be705f69643d8a5de5c86ab4d27868", @ANYRESDEC=r2, @ANYBLOB=',default_permissions,smackfsroot=,\x00'], 0x1, 0x0, &(0x7f00000041c0)="59d3b20cb3d8125d294aea3004ca649d9e40a13ef4b093d46c5bbc7e569c1eca1f600678da6512eea37414fd2ebd5e8ee4cf7f3f5b658e79a9975e6b7644b4c373247d440bc7d7213f29718c84611be2453c9f49c6cd9a382c9c99d7a64f813a13f84f6928072c0f72c0d69350cc5caadaf81031b8ba9b435fd5f3229a44576013c65c0f708d3cdb043697f06c0be447f4455557f6be")
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000004100)=ANY=[@ANYBLOB="010000180000000000000000", @ANYRES32=<r4=>r3, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
recvmsg$can_j1939(r4, &(0x7f0000004900)={&(0x7f0000004140)=@sco={0x1f, @none}, 0x80, &(0x7f0000004800)=[{&(0x7f0000004340)=""/136, 0x88}, {&(0x7f0000004400)=""/173, 0xad}, {&(0x7f00000044c0)=""/150, 0x96}, {&(0x7f0000004580)=""/75, 0x4b}, {&(0x7f0000004600)=""/133, 0x85}, {&(0x7f00000046c0)=""/116, 0x74}, {&(0x7f0000004740)=""/157, 0x9d}], 0x7, &(0x7f0000004880)=""/99, 0x63}, 0x40000020)
setreuid(0xee01, 0xffffffffffffffff)

[ 2128.017865][T19002] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 2128.047466][T19005] fuse: Bad value for 'rootmode'
06:44:51 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2128.060209][   T28] audit: type=1326 audit(1693118691.246:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18994 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f400ae7cae9 code=0x0
[ 2128.092286][T19003] fuse: Unknown parameter '0x0000000000000004'
06:44:51 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x900, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:44:51 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000000), 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300) (async)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>r1, {0x2, 0xd3f1}}, './file0\x00'})
write$P9_RRENAMEAT(r2, &(0x7f0000000100)={0x7, 0x4b, 0x1}, 0x7) (async)
write$P9_RRENAMEAT(r2, &(0x7f0000000100)={0x7, 0x4b, 0x1}, 0x7)
read$FUSE(r0, &(0x7f00000023c0)={0x2020}, 0x2020) (async)
read$FUSE(r0, &(0x7f00000023c0)={0x2020, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}, 0x2020)
prlimit64(r3, 0x9, &(0x7f0000000080)={0x7, 0x7fff}, &(0x7f00000000c0))
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000040)=r2)

[ 2128.106442][   T28] audit: type=1326 audit(1693118691.296:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18994 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f400ae7cae9 code=0x0
[ 2128.127097][T19015] fuse: Bad value for 'rootmode'
[ 2128.137670][T19016] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
06:44:51 executing program 0:
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2128.152876][   T28] audit: type=1326 audit(1693118691.356:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18994 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f400ae7cae9 code=0x0
[ 2128.186654][T19016] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[ 2128.235564][   T28] audit: type=1326 audit(1693118691.436:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19012 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f115b87cae9 code=0x0
[ 2128.287132][   T28] audit: type=1326 audit(1693118691.486:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19012 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f115b87cae9 code=0x0
[ 2128.337937][   T28] audit: type=1326 audit(1693118691.536:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19012 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f115b87cae9 code=0x0
06:44:52 executing program 0:
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:52 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000010', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:52 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:44:52 executing program 4:
syz_mount_image$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0x4000000, 0x0, 0x0, 0x0, 0x0)

06:44:52 executing program 3:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000004a00)={&(0x7f0000004940)={0x10, 0x0, 0x0, 0x80000200}, 0xc, &(0x7f00000049c0)={&(0x7f0000004980)={0x14, 0x4, 0x1, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, ["", "", ""]}, 0x14}}, 0x40)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020, 0x0, 0x0, <r0=>0x0}, 0x2020)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004cc0)={&(0x7f0000004a40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000004c80)={&(0x7f0000004e00)={0x1c8, 0x1, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_USERDATA={0x102, 0x6, "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"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x81, 0x6, "6c27a0e6f4b1a8f03e9b735dc044d073b6c245ea6d443fb316c059e0ea544d764ee2f0b6432b40b3b87ad5857e8a3d811e303bb631fac14b1d168f790c7074c97985b52c23ca6f76ae1c95f2d461b5a7870b72ce1c1728e42e659a7620ecfe4ba390b8c7369fb63bf1f8f732daa34dcc4f05e22218472a41d016d12052"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x8000}, 0x8050)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(r1, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
read$FUSE(0xffffffffffffffff, &(0x7f00000020c0)={0x2020, 0x0, 0x0, 0x0, <r2=>0x0}, 0x2020)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004dc0)={&(0x7f0000004d00)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000004ac0)={&(0x7f0000004a80)={0x24, 0x1, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x7}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000080}, 0x28044014)
r3 = syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2000, &(0x7f0000004280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000020000,user_id=', @ANYRESDEC=r0, @ANYBLOB="15677d75be705f69643d8a5de5c86ab4d27868", @ANYRESDEC=r2, @ANYBLOB=',default_permissions,smackfsroot=,\x00'], 0x1, 0x0, &(0x7f00000041c0)="59d3b20cb3d8125d294aea3004ca649d9e40a13ef4b093d46c5bbc7e569c1eca1f600678da6512eea37414fd2ebd5e8ee4cf7f3f5b658e79a9975e6b7644b4c373247d440bc7d7213f29718c84611be2453c9f49c6cd9a382c9c99d7a64f813a13f84f6928072c0f72c0d69350cc5caadaf81031b8ba9b435fd5f3229a44576013c65c0f708d3cdb043697f06c0be447f4455557f6be")
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000004100)=ANY=[@ANYBLOB="010000180000000000000000", @ANYRES32=<r4=>r3, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
recvmsg$can_j1939(r4, &(0x7f0000004900)={&(0x7f0000004140)=@sco={0x1f, @none}, 0x80, &(0x7f0000004800)=[{&(0x7f0000004340)=""/136, 0x88}, {&(0x7f0000004400)=""/173, 0xad}, {&(0x7f00000044c0)=""/150, 0x96}, {&(0x7f0000004580)=""/75, 0x4b}, {&(0x7f0000004600)=""/133, 0x85}, {&(0x7f00000046c0)=""/116, 0x74}, {&(0x7f0000004740)=""/157, 0x9d}], 0x7, &(0x7f0000004880)=""/99, 0x63}, 0x40000020)
setreuid(0xee01, 0xffffffffffffffff)

06:44:52 executing program 4:
getsockname$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000040)=0x20)
r0 = geteuid()
setreuid(r0, 0x0)
setreuid(r0, 0xffffffffffffffff)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000000040)=@framed={{}, [@alu]}, &(0x7f0000000080)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
write$9p(r1, 0x0, 0x0)
r2 = getgid()
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, r2}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq={'fowner', 0x3d, r0}}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:44:52 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), 0x0, 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2128.843539][T19036] fuse: Bad value for 'rootmode'
[ 2128.908373][T19038] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
[ 2128.924796][T19038] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
06:44:52 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0xa, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:44:52 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0) (async)

06:44:52 executing program 5:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYBLOB=',rootmode=000000000000000000100', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:52 executing program 4:
getsockname$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000040)=0x20)
r0 = geteuid()
setreuid(r0, 0x0)
setreuid(r0, 0xffffffffffffffff)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000000040)=@framed={{}, [@alu]}, &(0x7f0000000080)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
write$9p(r1, 0x0, 0x0)
r2 = getgid()
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, r2}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq={'fowner', 0x3d, r0}}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:44:52 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), 0x0, 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2128.946280][   T28] audit: type=1326 audit(1693118692.146:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19037 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f400ae7cae9 code=0x0
[ 2128.998527][   T28] audit: type=1326 audit(1693118692.196:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19037 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f400ae7cae9 code=0x0
[ 2129.019603][T19051] fuse: Bad value for 'fd'
06:44:52 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), 0x0, 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:52 executing program 4:
getsockname$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000040)=0x20)
r0 = geteuid()
setreuid(r0, 0x0)
setreuid(r0, 0xffffffffffffffff)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000000040)=@framed={{}, [@alu]}, &(0x7f0000000080)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
write$9p(r1, 0x0, 0x0)
r2 = getgid()
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, r2}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq={'fowner', 0x3d, r0}}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:44:52 executing program 5:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYBLOB=',rootmode=000000000000000000100', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:52 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0) (async, rerun: 32)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0) (rerun: 32)

[ 2129.052122][   T28] audit: type=1326 audit(1693118692.256:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19037 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f400ae7cae9 code=0x0
[ 2129.151658][T19062] fuse: Bad value for 'fd'
06:44:52 executing program 3:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000004a00)={&(0x7f0000004940)={0x10, 0x0, 0x0, 0x80000200}, 0xc, &(0x7f00000049c0)={&(0x7f0000004980)={0x14, 0x4, 0x1, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, ["", "", ""]}, 0x14}}, 0x40)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020, 0x0, 0x0, <r0=>0x0}, 0x2020)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004cc0)={&(0x7f0000004a40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000004c80)={&(0x7f0000004e00)={0x1c8, 0x1, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_USERDATA={0x102, 0x6, "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"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x81, 0x6, "6c27a0e6f4b1a8f03e9b735dc044d073b6c245ea6d443fb316c059e0ea544d764ee2f0b6432b40b3b87ad5857e8a3d811e303bb631fac14b1d168f790c7074c97985b52c23ca6f76ae1c95f2d461b5a7870b72ce1c1728e42e659a7620ecfe4ba390b8c7369fb63bf1f8f732daa34dcc4f05e22218472a41d016d12052"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x8000}, 0x8050)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(r1, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
read$FUSE(0xffffffffffffffff, &(0x7f00000020c0)={0x2020, 0x0, 0x0, 0x0, <r2=>0x0}, 0x2020)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004dc0)={&(0x7f0000004d00)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000004ac0)={&(0x7f0000004a80)={0x24, 0x1, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x7}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000080}, 0x28044014)
r3 = syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2000, &(0x7f0000004280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000020000,user_id=', @ANYRESDEC=r0, @ANYBLOB="15677d75be705f69643d8a5de5c86ab4d27868", @ANYRESDEC=r2, @ANYBLOB=',default_permissions,smackfsroot=,\x00'], 0x1, 0x0, &(0x7f00000041c0)="59d3b20cb3d8125d294aea3004ca649d9e40a13ef4b093d46c5bbc7e569c1eca1f600678da6512eea37414fd2ebd5e8ee4cf7f3f5b658e79a9975e6b7644b4c373247d440bc7d7213f29718c84611be2453c9f49c6cd9a382c9c99d7a64f813a13f84f6928072c0f72c0d69350cc5caadaf81031b8ba9b435fd5f3229a44576013c65c0f708d3cdb043697f06c0be447f4455557f6be")
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000004100)=ANY=[@ANYBLOB="010000180000000000000000", @ANYRES32=<r4=>r3, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
recvmsg$can_j1939(r4, &(0x7f0000004900)={&(0x7f0000004140)=@sco={0x1f, @none}, 0x80, &(0x7f0000004800)=[{&(0x7f0000004340)=""/136, 0x88}, {&(0x7f0000004400)=""/173, 0xad}, {&(0x7f00000044c0)=""/150, 0x96}, {&(0x7f0000004580)=""/75, 0x4b}, {&(0x7f0000004600)=""/133, 0x85}, {&(0x7f00000046c0)=""/116, 0x74}, {&(0x7f0000004740)=""/157, 0x9d}], 0x7, &(0x7f0000004880)=""/99, 0x63}, 0x40000020)
setreuid(0xee01, 0xffffffffffffffff)

06:44:52 executing program 2:
syz_mount_image$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0xe00, 0x0, 0x0, 0x0, 0x0)

06:44:52 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

06:44:52 executing program 5:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYBLOB=',rootmode=000000000000000000100', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:52 executing program 4:
getsockname$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000040)=0x20)
r0 = geteuid()
setreuid(r0, 0x0)
setreuid(r0, 0xffffffffffffffff)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000000040)=@framed={{}, [@alu]}, &(0x7f0000000080)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
write$9p(r1, 0x0, 0x0)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq={'fowner', 0x3d, r0}}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:44:52 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000040)=r1)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:44:53 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

06:44:53 executing program 4:
getsockname$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000040)=0x20)
r0 = geteuid()
setreuid(r0, 0x0)
setreuid(r0, 0xffffffffffffffff)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000000040)=@framed={{}, [@alu]}, &(0x7f0000000080)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq={'fowner', 0x3d, r0}}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:44:53 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000040)=r1) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:44:53 executing program 2:
getsockname$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000040)=0x20)
r0 = geteuid()
setreuid(r0, 0x0)
setreuid(r0, 0xffffffffffffffff)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000000040)=@framed={{}, [@alu]}, &(0x7f0000000080)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
write$9p(r1, 0x0, 0x0)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq={'fowner', 0x3d, r0}}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

[ 2129.780938][T19075] fuse: Bad value for 'fd'
[ 2129.789867][T19078] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
[ 2129.803782][T19078] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
06:44:53 executing program 5:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=000000000000000000100', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2129.846338][   T28] audit: type=1326 audit(1693118693.046:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19072 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f400ae7cae9 code=0x0
06:44:53 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

[ 2129.933872][T19088] fuse: Bad value for 'fd'
06:44:53 executing program 2:
syz_mount_image$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0x7e, 0x0, 0x0, 0x0, 0x0)

06:44:53 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async, rerun: 32)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (rerun: 32)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000040)=r1) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:44:53 executing program 4:
getsockname$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000040)=0x20)
r0 = geteuid()
setreuid(r0, 0x0)
setreuid(r0, 0xffffffffffffffff)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq={'fowner', 0x3d, r0}}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:44:53 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX], 0x0, 0x0, 0x0)

06:44:53 executing program 5:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=000000000000000000100', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:53 executing program 3:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000004a00)={&(0x7f0000004940)={0x10, 0x0, 0x0, 0x80000200}, 0xc, &(0x7f00000049c0)={&(0x7f0000004980)={0x14, 0x4, 0x1, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, ["", "", ""]}, 0x14}}, 0x40)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020, 0x0, 0x0, <r0=>0x0}, 0x2020)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004cc0)={&(0x7f0000004a40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000004c80)={&(0x7f0000004e00)={0x1c8, 0x1, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_USERDATA={0x102, 0x6, "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"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x81, 0x6, "6c27a0e6f4b1a8f03e9b735dc044d073b6c245ea6d443fb316c059e0ea544d764ee2f0b6432b40b3b87ad5857e8a3d811e303bb631fac14b1d168f790c7074c97985b52c23ca6f76ae1c95f2d461b5a7870b72ce1c1728e42e659a7620ecfe4ba390b8c7369fb63bf1f8f732daa34dcc4f05e22218472a41d016d12052"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x8000}, 0x8050)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(r1, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
read$FUSE(0xffffffffffffffff, &(0x7f00000020c0)={0x2020, 0x0, 0x0, 0x0, <r2=>0x0}, 0x2020)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004dc0)={&(0x7f0000004d00)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000004ac0)={&(0x7f0000004a80)={0x24, 0x1, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x7}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000080}, 0x28044014)
r3 = syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2000, &(0x7f0000004280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000020000,user_id=', @ANYRESDEC=r0, @ANYBLOB="15677d75be705f69643d8a5de5c86ab4d27868", @ANYRESDEC=r2, @ANYBLOB=',default_permissions,smackfsroot=,\x00'], 0x1, 0x0, &(0x7f00000041c0)="59d3b20cb3d8125d294aea3004ca649d9e40a13ef4b093d46c5bbc7e569c1eca1f600678da6512eea37414fd2ebd5e8ee4cf7f3f5b658e79a9975e6b7644b4c373247d440bc7d7213f29718c84611be2453c9f49c6cd9a382c9c99d7a64f813a13f84f6928072c0f72c0d69350cc5caadaf81031b8ba9b435fd5f3229a44576013c65c0f708d3cdb043697f06c0be447f4455557f6be")
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000004100)=ANY=[@ANYBLOB="010000180000000000000000", @ANYRES32=<r4=>r3, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
recvmsg$can_j1939(r4, &(0x7f0000004900)={&(0x7f0000004140)=@sco={0x1f, @none}, 0x80, &(0x7f0000004800)=[{&(0x7f0000004340)=""/136, 0x88}, {&(0x7f0000004400)=""/173, 0xad}, {&(0x7f00000044c0)=""/150, 0x96}, {&(0x7f0000004580)=""/75, 0x4b}, {&(0x7f0000004600)=""/133, 0x85}, {&(0x7f00000046c0)=""/116, 0x74}, {&(0x7f0000004740)=""/157, 0x9d}], 0x7, &(0x7f0000004880)=""/99, 0x63}, 0x40000020)

06:44:53 executing program 4:
getsockname$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000040)=0x20)
r0 = geteuid()
setreuid(r0, 0x0)
setreuid(r0, 0xffffffffffffffff)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq={'fowner', 0x3d, r0}}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:44:53 executing program 5:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=000000000000000000100', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:53 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x9, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

[ 2130.665422][T19106] fuse: Bad value for 'fd'
[ 2130.665677][T19107] fuse: Bad value for 'fd'
[ 2130.682628][T19104] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
[ 2130.698540][T19104] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
06:44:53 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f00000020c0), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000002100)={{0x1, 0x1, 0x18, <r1=>r0, {0x0, 0xee00}}, './file0\x00'})
read$FUSE(r1, &(0x7f0000000040)={0x2020}, 0x2020)

06:44:53 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX], 0x0, 0x0, 0x0)

06:44:54 executing program 4:
getsockname$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000040)=0x20)
r0 = geteuid()
setreuid(r0, 0x0)
setreuid(r0, 0xffffffffffffffff)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq={'fowner', 0x3d, r0}}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:44:54 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000000000000100', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2130.772435][T19112] fuse: Bad value for 'fd'
06:44:54 executing program 4:
getsockname$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000040)=0x20)
r0 = geteuid()
setreuid(r0, 0x0)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq={'fowner', 0x3d, r0}}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:44:54 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0) (async)
openat$fuse(0xffffffffffffff9c, &(0x7f00000020c0), 0x2, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000002100)={{0x1, 0x1, 0x18, <r1=>r0, {0x0, 0xee00}}, './file0\x00'})
read$FUSE(r1, &(0x7f0000000040)={0x2020}, 0x2020)

06:44:54 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX], 0x0, 0x0, 0x0)

06:44:54 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x9, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

[ 2130.858542][T19120] fuse: Bad value for 'fd'
[ 2130.867024][T19123] fuse: Unknown parameter '0x0000000000000003'
[ 2130.950501][T19130] fuse: Bad value for 'fd'
06:44:54 executing program 3:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000004a00)={&(0x7f0000004940)={0x10, 0x0, 0x0, 0x80000200}, 0xc, &(0x7f00000049c0)={&(0x7f0000004980)={0x14, 0x4, 0x1, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, ["", "", ""]}, 0x14}}, 0x40)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020, 0x0, 0x0, <r0=>0x0}, 0x2020)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004cc0)={&(0x7f0000004a40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000004c80)={&(0x7f0000004e00)={0x1c8, 0x1, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_USERDATA={0x102, 0x6, "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"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x81, 0x6, "6c27a0e6f4b1a8f03e9b735dc044d073b6c245ea6d443fb316c059e0ea544d764ee2f0b6432b40b3b87ad5857e8a3d811e303bb631fac14b1d168f790c7074c97985b52c23ca6f76ae1c95f2d461b5a7870b72ce1c1728e42e659a7620ecfe4ba390b8c7369fb63bf1f8f732daa34dcc4f05e22218472a41d016d12052"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x8000}, 0x8050)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(r1, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
read$FUSE(0xffffffffffffffff, &(0x7f00000020c0)={0x2020, 0x0, 0x0, 0x0, <r2=>0x0}, 0x2020)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004dc0)={&(0x7f0000004d00)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000004ac0)={&(0x7f0000004a80)={0x24, 0x1, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x7}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000080}, 0x28044014)
r3 = syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2000, &(0x7f0000004280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000020000,user_id=', @ANYRESDEC=r0, @ANYBLOB="15677d75be705f69643d8a5de5c86ab4d27868", @ANYRESDEC=r2, @ANYBLOB=',default_permissions,smackfsroot=,\x00'], 0x1, 0x0, &(0x7f00000041c0)="59d3b20cb3d8125d294aea3004ca649d9e40a13ef4b093d46c5bbc7e569c1eca1f600678da6512eea37414fd2ebd5e8ee4cf7f3f5b658e79a9975e6b7644b4c373247d440bc7d7213f29718c84611be2453c9f49c6cd9a382c9c99d7a64f813a13f84f6928072c0f72c0d69350cc5caadaf81031b8ba9b435fd5f3229a44576013c65c0f708d3cdb043697f06c0be447f4455557f6be")
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000004100)=ANY=[@ANYBLOB="010000180000000000000000", @ANYRES32=r3, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])

06:44:54 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000000000000100', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:54 executing program 4:
getsockname$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000040)=0x20)
r0 = geteuid()
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq={'fowner', 0x3d, r0}}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:44:54 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:54 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0) (async)
openat$fuse(0xffffffffffffff9c, &(0x7f00000020c0), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000002100)={{0x1, 0x1, 0x18, <r1=>r0, {0x0, 0xee00}}, './file0\x00'})
read$FUSE(r1, &(0x7f0000000040)={0x2020}, 0x2020)

06:44:54 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000000000000100', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:54 executing program 4:
getsockname$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000040)=0x20)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:44:54 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2131.542864][T19137] fuse: Unknown parameter '0x0000000000000003'
[ 2131.552742][T19141] fuse: Unknown parameter '0x0000000000000003'
06:44:54 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:54 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000000000000100', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:54 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:54 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

[ 2131.730750][T19156] fuse: Unknown parameter '0x0000000000000003'
06:44:55 executing program 3:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000004a00)={&(0x7f0000004940)={0x10, 0x0, 0x0, 0x80000200}, 0xc, &(0x7f00000049c0)={&(0x7f0000004980)={0x14, 0x4, 0x1, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, ["", "", ""]}, 0x14}}, 0x40)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020, 0x0, 0x0, <r0=>0x0}, 0x2020)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004cc0)={&(0x7f0000004a40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000004c80)={&(0x7f0000004e00)={0x1c8, 0x1, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_USERDATA={0x102, 0x6, "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"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x81, 0x6, "6c27a0e6f4b1a8f03e9b735dc044d073b6c245ea6d443fb316c059e0ea544d764ee2f0b6432b40b3b87ad5857e8a3d811e303bb631fac14b1d168f790c7074c97985b52c23ca6f76ae1c95f2d461b5a7870b72ce1c1728e42e659a7620ecfe4ba390b8c7369fb63bf1f8f732daa34dcc4f05e22218472a41d016d12052"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x8000}, 0x8050)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(r1, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
read$FUSE(0xffffffffffffffff, &(0x7f00000020c0)={0x2020, 0x0, 0x0, 0x0, <r2=>0x0}, 0x2020)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004dc0)={&(0x7f0000004d00)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000004ac0)={&(0x7f0000004a80)={0x24, 0x1, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x7}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000080}, 0x28044014)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2000, &(0x7f0000004280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000020000,user_id=', @ANYRESDEC=r0, @ANYBLOB="15677d75be705f69643d8a5de5c86ab4d27868", @ANYRESDEC=r2, @ANYBLOB=',default_permissions,smackfsroot=,\x00'], 0x1, 0x0, &(0x7f00000041c0)="59d3b20cb3d8125d294aea3004ca649d9e40a13ef4b093d46c5bbc7e569c1eca1f600678da6512eea37414fd2ebd5e8ee4cf7f3f5b658e79a9975e6b7644b4c373247d440bc7d7213f29718c84611be2453c9f49c6cd9a382c9c99d7a64f813a13f84f6928072c0f72c0d69350cc5caadaf81031b8ba9b435fd5f3229a44576013c65c0f708d3cdb043697f06c0be447f4455557f6be")

06:44:55 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:55 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x8001}}]}}, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x57fb, &(0x7f00000000c0)={0x0, 0xbda0, 0x0, 0x0, 0xf4}, &(0x7f0000000140)=<r1=>0x0, &(0x7f0000000180))
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(0x0, r2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x26, 0x0, @fd_index=0x6, 0xffff, 0x0, 0x0, 0x2, 0x1})
sendmsg$L2TP_CMD_SESSION_MODIFY(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x38, 0x0, 0x800, 0x70bd2c, 0x25dfdbff, {}, [@L2TP_ATTR_DEBUG={0x8, 0x11, 0x1}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}, @L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0xc1}, @L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0x8}]}, 0x38}, 0x1, 0x0, 0x0, 0x4008000}, 0x81)

06:44:55 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000000000000100', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:55 executing program 4:
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:44:55 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:55 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000000000000100', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2132.409454][T19166] fuse: Unknown parameter '0x0000000000000003'
[ 2132.425843][T19172] fuse: Unknown parameter '0xffffffffffffffff00000000000000000000'
06:44:55 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:55 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:55 executing program 4:
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:44:55 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x8001}}]}}, 0x0, 0x0, 0x0) (async, rerun: 64)
syz_io_uring_setup(0x57fb, &(0x7f00000000c0)={0x0, 0xbda0, 0x0, 0x0, 0xf4}, &(0x7f0000000140)=<r1=>0x0, &(0x7f0000000180)) (async, rerun: 64)
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(0x0, r2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x26, 0x0, @fd_index=0x6, 0xffff, 0x0, 0x0, 0x2, 0x1})
sendmsg$L2TP_CMD_SESSION_MODIFY(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x38, 0x0, 0x800, 0x70bd2c, 0x25dfdbff, {}, [@L2TP_ATTR_DEBUG={0x8, 0x11, 0x1}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}, @L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0xc1}, @L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0x8}]}, 0x38}, 0x1, 0x0, 0x0, 0x4008000}, 0x81)

[ 2132.547295][T19179] fuse: Unknown parameter '0xffffffffffffffff00000000000000000000'
06:44:55 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2132.589862][T19182] fuse: Unknown parameter '0x0000000000000003'
[ 2132.675992][T19191] fuse: Unknown parameter '0xffffffffffffffff00000000000000000000'
06:44:56 executing program 3:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000004a00)={&(0x7f0000004940)={0x10, 0x0, 0x0, 0x80000200}, 0xc, &(0x7f00000049c0)={&(0x7f0000004980)={0x14, 0x4, 0x1, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, ["", "", ""]}, 0x14}}, 0x40)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020}, 0x2020)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004cc0)={&(0x7f0000004a40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000004c80)={&(0x7f0000004e00)={0x1c8, 0x1, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_USERDATA={0x102, 0x6, "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"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x81, 0x6, "6c27a0e6f4b1a8f03e9b735dc044d073b6c245ea6d443fb316c059e0ea544d764ee2f0b6432b40b3b87ad5857e8a3d811e303bb631fac14b1d168f790c7074c97985b52c23ca6f76ae1c95f2d461b5a7870b72ce1c1728e42e659a7620ecfe4ba390b8c7369fb63bf1f8f732daa34dcc4f05e22218472a41d016d12052"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x8000}, 0x8050)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
read$FUSE(0xffffffffffffffff, &(0x7f00000020c0)={0x2020}, 0x2020)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004dc0)={&(0x7f0000004d00)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000004ac0)={&(0x7f0000004a80)={0x24, 0x1, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x7}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000080}, 0x28044014)

06:44:56 executing program 4:
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:44:56 executing program 2:
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:56 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000000000000100', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:56 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB, @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:56 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x8001}}]}}, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x57fb, &(0x7f00000000c0)={0x0, 0xbda0, 0x0, 0x0, 0xf4}, &(0x7f0000000140)=<r1=>0x0, &(0x7f0000000180))
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(0x0, r2, 0x0) (async)
syz_io_uring_submit(0x0, r2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x26, 0x0, @fd_index=0x6, 0xffff, 0x0, 0x0, 0x2, 0x1})
sendmsg$L2TP_CMD_SESSION_MODIFY(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x38, 0x0, 0x800, 0x70bd2c, 0x25dfdbff, {}, [@L2TP_ATTR_DEBUG={0x8, 0x11, 0x1}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}, @L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0xc1}, @L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0x8}]}, 0x38}, 0x1, 0x0, 0x0, 0x4008000}, 0x81) (async)
sendmsg$L2TP_CMD_SESSION_MODIFY(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x38, 0x0, 0x800, 0x70bd2c, 0x25dfdbff, {}, [@L2TP_ATTR_DEBUG={0x8, 0x11, 0x1}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}, @L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0xc1}, @L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0x8}]}, 0x38}, 0x1, 0x0, 0x0, 0x4008000}, 0x81)

06:44:56 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), 0x0, 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:44:56 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000000000000100', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:56 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB, @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:56 executing program 2:
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2133.319301][T19224] fuse: Unknown parameter '0xffffffffffffffff00000000000000000000'
[ 2133.343344][T19226] fuse: Unknown parameter '0x0000000000000003'
06:44:56 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000120000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="2c00e2ce4e72c4117990f0c093d19f3d6bcd19d673bb8e2080650ee413a713a98853625f89575553b86a4db2371b64a85f08445c1ab52864a7182c3411e4999382c47b2ba76db786194978bf5fb9a217a527c3b550"], 0x0, 0x0, 0x0)

[ 2133.395748][T19230] validate_nla: 4 callbacks suppressed
[ 2133.395766][T19230] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
06:44:56 executing program 2:
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2133.449388][   T28] kauditd_printk_skb: 11 callbacks suppressed
[ 2133.449406][   T28] audit: type=1326 audit(1693118696.656:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19228 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f400ae7cae9 code=0x0
[ 2133.453049][T19230] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 2133.490021][T19237] fuse: Unknown parameter 'fd0x0000000000000003'
[ 2133.510191][T19239] fuse: Unknown parameter '0xffffffffffffffff00000000000000000000'
[ 2133.512621][   T28] audit: type=1326 audit(1693118696.706:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19228 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f400ae7cae9 code=0x0
[ 2133.562373][   T28] audit: type=1326 audit(1693118696.766:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19228 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f400ae7cae9 code=0x0
06:44:57 executing program 3:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000004a00)={&(0x7f0000004940)={0x10, 0x0, 0x0, 0x80000200}, 0xc, &(0x7f00000049c0)={&(0x7f0000004980)={0x14, 0x4, 0x1, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, ["", "", ""]}, 0x14}}, 0x40)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020}, 0x2020)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004cc0)={&(0x7f0000004a40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000004c80)={&(0x7f0000004e00)={0x1c8, 0x1, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_USERDATA={0x102, 0x6, "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"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x81, 0x6, "6c27a0e6f4b1a8f03e9b735dc044d073b6c245ea6d443fb316c059e0ea544d764ee2f0b6432b40b3b87ad5857e8a3d811e303bb631fac14b1d168f790c7074c97985b52c23ca6f76ae1c95f2d461b5a7870b72ce1c1728e42e659a7620ecfe4ba390b8c7369fb63bf1f8f732daa34dcc4f05e22218472a41d016d12052"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x8000}, 0x8050)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
read$FUSE(0xffffffffffffffff, &(0x7f00000020c0)={0x2020}, 0x2020)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)

06:44:57 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), 0x0, 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:44:57 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000000000000100', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:57 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), 0x0, 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:57 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000120000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="2c00e2ce4e72c4117990f0c093d19f3d6bcd19d673bb8e2080650ee413a713a98853625f89575553b86a4db2371b64a85f08445c1ab52864a7182c3411e4999382c47b2ba76db786194978bf5fb9a217a527c3b550"], 0x0, 0x0, 0x0)

06:44:57 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB, @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:57 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), 0x0, 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:44:57 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000000000000100', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:57 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), 0x0, 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2134.245386][T19252] fuse: Unknown parameter 'fd0x0000000000000003'
[ 2134.253460][T19253] fuse: Unknown parameter '0xffffffffffffffff00000000000000000000'
06:44:57 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:57 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

[ 2134.300223][T19259] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
[ 2134.317451][T19259] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
06:44:57 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000120000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="2c00e2ce4e72c4117990f0c093d19f3d6bcd19d673bb8e2080650ee413a713a98853625f89575553b86a4db2371b64a85f08445c1ab52864a7182c3411e4999382c47b2ba76db786194978bf5fb9a217a527c3b550"], 0x0, 0x0, 0x0)

[ 2134.338590][   T28] audit: type=1326 audit(1693118697.536:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19257 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f400ae7cae9 code=0x0
[ 2134.355923][T19263] fuse: Unknown parameter 'fd0x0000000000000003'
[ 2134.397347][T19266] fuse: Bad value for 'fd'
[ 2134.414906][T19267] fuse: Unknown parameter 'fd0xffffffffffffffff00000000000000000000'
[ 2134.437762][   T28] audit: type=1326 audit(1693118697.636:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19257 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f400ae7cae9 code=0x0
[ 2134.472631][   T28] audit: type=1326 audit(1693118697.676:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19257 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f400ae7cae9 code=0x0
06:44:58 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:58 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), 0x0, 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:58 executing program 5:
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:58 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
read$FUSE(r0, &(0x7f0000000000)={0x2020, 0x0, 0x0, <r1=>0x0}, 0x2020)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x1022040, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x5000}, 0x2c, {'user_id', 0x3d, r1}}, 0x0, 0x0, 0x0)

06:44:58 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:44:58 executing program 3:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000004a00)={&(0x7f0000004940)={0x10, 0x0, 0x0, 0x80000200}, 0xc, &(0x7f00000049c0)={&(0x7f0000004980)={0x14, 0x4, 0x1, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, ["", "", ""]}, 0x14}}, 0x40)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020}, 0x2020)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004cc0)={&(0x7f0000004a40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000004c80)={&(0x7f0000004e00)={0x1c8, 0x1, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_USERDATA={0x102, 0x6, "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"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x81, 0x6, "6c27a0e6f4b1a8f03e9b735dc044d073b6c245ea6d443fb316c059e0ea544d764ee2f0b6432b40b3b87ad5857e8a3d811e303bb631fac14b1d168f790c7074c97985b52c23ca6f76ae1c95f2d461b5a7870b72ce1c1728e42e659a7620ecfe4ba390b8c7369fb63bf1f8f732daa34dcc4f05e22218472a41d016d12052"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x8000}, 0x8050)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
read$FUSE(0xffffffffffffffff, &(0x7f00000020c0)={0x2020}, 0x2020)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)

06:44:58 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB, @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:58 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
read$FUSE(r0, &(0x7f0000000000)={0x2020, 0x0, 0x0, <r1=>0x0}, 0x2020)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x1022040, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x5000}, 0x2c, {'user_id', 0x3d, r1}}, 0x0, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
read$FUSE(r0, &(0x7f0000000000)={0x2020}, 0x2020) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x1022040, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x5000}, 0x2c, {'user_id', 0x3d, r1}}, 0x0, 0x0, 0x0) (async)

06:44:58 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:58 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

06:44:58 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

[ 2135.193937][T19277] fuse: Unknown parameter 'fd0xffffffffffffffff00000000000000000000'
[ 2135.203647][T19280] fuse: Bad value for 'fd'
[ 2135.256432][T19283] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
[ 2135.278764][T19283] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
06:44:58 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

06:44:58 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
read$FUSE(r0, &(0x7f0000000000)={0x2020, 0x0, 0x0, <r1=>0x0}, 0x2020)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x1022040, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x5000}, 0x2c, {'user_id', 0x3d, r1}}, 0x0, 0x0, 0x0)

[ 2135.310796][T19293] fuse: Unknown parameter 'fd0xffffffffffffffff00000000000000000000'
[ 2135.311863][   T28] audit: type=1326 audit(1693118698.506:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19282 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f400ae7cae9 code=0x0
[ 2135.323573][T19291] fuse: Unknown parameter '0xffffffffffffffff00000000000000000000'
[ 2135.352759][T19295] fuse: Bad value for 'fd'
06:44:58 executing program 0:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:44:58 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, 0x0, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:44:58 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x8001}}]}}, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x57fb, &(0x7f00000000c0)={0x0, 0xbda0, 0x0, 0x0, 0xf4}, &(0x7f0000000140)=<r1=>0x0, &(0x7f0000000180))
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(0x0, r2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x26, 0x0, @fd_index=0x6, 0xffff, 0x0, 0x0, 0x2, 0x1})
sendmsg$L2TP_CMD_SESSION_MODIFY(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x38, 0x0, 0x800, 0x70bd2c, 0x25dfdbff, {}, [@L2TP_ATTR_DEBUG={0x8, 0x11, 0x1}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}, @L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0xc1}, @L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0x8}]}, 0x38}, 0x1, 0x0, 0x0, 0x4008000}, 0x81)

06:44:58 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

[ 2135.410876][T19300] fuse: Unknown parameter '0xffffffffffffffff00000000000000000000'
[ 2135.427610][   T28] audit: type=1326 audit(1693118698.576:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19282 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f400ae7cae9 code=0x0
06:44:59 executing program 3:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000004a00)={&(0x7f0000004940)={0x10, 0x0, 0x0, 0x80000200}, 0xc, &(0x7f00000049c0)={&(0x7f0000004980)={0x14, 0x4, 0x1, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, ["", "", ""]}, 0x14}}, 0x40)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020}, 0x2020)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004cc0)={&(0x7f0000004a40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000004c80)={&(0x7f0000004e00)={0x1c8, 0x1, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_USERDATA={0x102, 0x6, "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"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x81, 0x6, "6c27a0e6f4b1a8f03e9b735dc044d073b6c245ea6d443fb316c059e0ea544d764ee2f0b6432b40b3b87ad5857e8a3d811e303bb631fac14b1d168f790c7074c97985b52c23ca6f76ae1c95f2d461b5a7870b72ce1c1728e42e659a7620ecfe4ba390b8c7369fb63bf1f8f732daa34dcc4f05e22218472a41d016d12052"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x8000}, 0x8050)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
read$FUSE(0xffffffffffffffff, &(0x7f00000020c0)={0x2020}, 0x2020)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)

06:44:59 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

06:44:59 executing program 5:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, 0x0, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:44:59 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, 0x0, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:44:59 executing program 1:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:44:59 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x8001}}]}}, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x57fb, &(0x7f00000000c0)={0x0, 0xbda0, 0x0, 0x0, 0xf4}, &(0x7f0000000140)=<r1=>0x0, &(0x7f0000000180))
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(0x0, r2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x26, 0x0, @fd_index=0x6, 0xffff, 0x0, 0x0, 0x2, 0x1})
sendmsg$L2TP_CMD_SESSION_MODIFY(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x38, 0x0, 0x800, 0x70bd2c, 0x25dfdbff, {}, [@L2TP_ATTR_DEBUG={0x8, 0x11, 0x1}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}, @L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0xc1}, @L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0x8}]}, 0x38}, 0x1, 0x0, 0x0, 0x4008000}, 0x81)

06:44:59 executing program 5:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000004a00)={&(0x7f0000004940)={0x10, 0x0, 0x0, 0x80000200}, 0xc, &(0x7f00000049c0)={&(0x7f0000004980)={0x14, 0x4, 0x1, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, ["", "", ""]}, 0x14}}, 0x40)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020, 0x0, 0x0, <r0=>0x0}, 0x2020)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004cc0)={&(0x7f0000004a40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000004c80)={&(0x7f0000004e00)={0x1c8, 0x1, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_USERDATA={0x102, 0x6, "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"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x81, 0x6, "6c27a0e6f4b1a8f03e9b735dc044d073b6c245ea6d443fb316c059e0ea544d764ee2f0b6432b40b3b87ad5857e8a3d811e303bb631fac14b1d168f790c7074c97985b52c23ca6f76ae1c95f2d461b5a7870b72ce1c1728e42e659a7620ecfe4ba390b8c7369fb63bf1f8f732daa34dcc4f05e22218472a41d016d12052"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x8000}, 0x8050)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(r1, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
read$FUSE(0xffffffffffffffff, &(0x7f00000020c0)={0x2020, 0x0, 0x0, 0x0, <r2=>0x0}, 0x2020)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004dc0)={&(0x7f0000004d00)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000004ac0)={&(0x7f0000004a80)={0x24, 0x1, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x7}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000080}, 0x28044014)
r3 = syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2000, &(0x7f0000004280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000020000,user_id=', @ANYRESDEC=r0, @ANYBLOB="15677d75be705f69643d8a5de5c86ab4d27868", @ANYRESDEC=r2, @ANYBLOB=',default_permissions,smackfsroot=,\x00'], 0x1, 0x0, &(0x7f00000041c0)="59d3b20cb3d8125d294aea3004ca649d9e40a13ef4b093d46c5bbc7e569c1eca1f600678da6512eea37414fd2ebd5e8ee4cf7f3f5b658e79a9975e6b7644b4c373247d440bc7d7213f29718c84611be2453c9f49c6cd9a382c9c99d7a64f813a13f84f6928072c0f72c0d69350cc5caadaf81031b8ba9b435fd5f3229a44576013c65c0f708d3cdb043697f06c0be447f4455557f6be")
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000004100)=ANY=[@ANYBLOB="010000180000000000000000", @ANYRES32=r3, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])

06:44:59 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:44:59 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, 0x0, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

[ 2136.146133][T19318] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
[ 2136.165556][T19318] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
06:44:59 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd='], 0x0, 0x0, 0x0)

06:44:59 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

[ 2136.204825][   T28] audit: type=1326 audit(1693118699.406:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19312 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f400ae7cae9 code=0x0
06:44:59 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x8, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

[ 2136.275266][T19327] netlink: 'syz-executor.5': attribute type 2 has an invalid length.
[ 2136.298132][T19327] netlink: 'syz-executor.5': attribute type 1 has an invalid length.
[ 2136.311269][T19330] fuse: Bad value for 'fd'
[ 2136.341419][   T28] audit: type=1326 audit(1693118699.546:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19322 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f84d3e7cae9 code=0x0
06:45:00 executing program 3:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000004a00)={&(0x7f0000004940)={0x10, 0x0, 0x0, 0x80000200}, 0xc, &(0x7f00000049c0)={&(0x7f0000004980)={0x14, 0x4, 0x1, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, ["", "", ""]}, 0x14}}, 0x40)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020}, 0x2020)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004cc0)={&(0x7f0000004a40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000004c80)={&(0x7f0000004e00)={0x1c8, 0x1, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_USERDATA={0x102, 0x6, "0a41c28f427a7d6cf32ccb76f619b47df9517699d35de8e223d0d083ba972487b33d224557df9cdbbf78a582861c55831172ac6f6423e02d64a0431e7f4754b5d98519afc209888618169b5539e264d379cb82d5dadeaf0c449d3a1f451e2a2e35ea578a7bf5427585fd079c1869151851f4ccdfdbdc3738f99cde667b6b5a426f93081cab5fe4886576287e0779757ec21e0089856d325dc785e87ffe30a22bdcba4cab0f00cba9bc69791ea0a0f4868cb21c2ba0cbba5ccda44529663f94bb3b4c8fe30855929f1dedc25916256d3f4545db6a687565ee15d05e7618a4c7bbec09fc27a167ca3525ebc1c380977fc001bea9acb0254a3b2eaa2c809fa4"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x81, 0x6, "6c27a0e6f4b1a8f03e9b735dc044d073b6c245ea6d443fb316c059e0ea544d764ee2f0b6432b40b3b87ad5857e8a3d811e303bb631fac14b1d168f790c7074c97985b52c23ca6f76ae1c95f2d461b5a7870b72ce1c1728e42e659a7620ecfe4ba390b8c7369fb63bf1f8f732daa34dcc4f05e22218472a41d016d12052"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x8000}, 0x8050)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
read$FUSE(0xffffffffffffffff, &(0x7f00000020c0)={0x2020}, 0x2020)

06:45:00 executing program 1:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
r0 = geteuid()
setreuid(r0, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
sendmsg$IPCTNL_MSG_EXP_DELETE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x74, 0x2, 0x2, 0x101, 0x0, 0x0, {0x7, 0x0, 0xa}, [@CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x4}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x3}, @CTA_EXPECT_MASK={0x40, 0x3, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @remote}, {0x14, 0x4, @empty}}}]}, @CTA_EXPECT_ZONE={0x6}, @CTA_EXPECT_ID={0x8, 0x5, 0x1, 0x0, 0x101}]}, 0x74}, 0x1, 0x0, 0x0, 0x400c004}, 0x20000040)
pipe2$watch_queue(&(0x7f0000000180), 0x80)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=r0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="ac00"], 0x0, 0x0, 0x0)
sendmsg$NLBL_MGMT_C_VERSION(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x14, 0x0, 0x100, 0x70bd2a, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4004000}, 0x20008800)

06:45:00 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd='], 0x0, 0x0, 0x0)

06:45:00 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:45:00 executing program 0:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
read$FUSE(r0, 0x0, 0x5000000)

06:45:00 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

[ 2137.005550][T19342] fuse: Bad value for 'fd'
[ 2137.026992][T19346] fuse: Bad value for 'group_id'
06:45:00 executing program 3:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000004a00)={&(0x7f0000004940)={0x10, 0x0, 0x0, 0x80000200}, 0xc, &(0x7f00000049c0)={&(0x7f0000004980)={0x14, 0x4, 0x1, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, ["", "", ""]}, 0x14}}, 0x40)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020}, 0x2020)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004cc0)={&(0x7f0000004a40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000004c80)={&(0x7f0000004e00)={0x1c8, 0x1, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_USERDATA={0x102, 0x6, "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"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x81, 0x6, "6c27a0e6f4b1a8f03e9b735dc044d073b6c245ea6d443fb316c059e0ea544d764ee2f0b6432b40b3b87ad5857e8a3d811e303bb631fac14b1d168f790c7074c97985b52c23ca6f76ae1c95f2d461b5a7870b72ce1c1728e42e659a7620ecfe4ba390b8c7369fb63bf1f8f732daa34dcc4f05e22218472a41d016d12052"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x8000}, 0x8050)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:00 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd='], 0x0, 0x0, 0x0)

06:45:00 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:45:00 executing program 1:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
r0 = geteuid()
setreuid(r0, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
sendmsg$IPCTNL_MSG_EXP_DELETE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x74, 0x2, 0x2, 0x101, 0x0, 0x0, {0x7, 0x0, 0xa}, [@CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x4}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x3}, @CTA_EXPECT_MASK={0x40, 0x3, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @remote}, {0x14, 0x4, @empty}}}]}, @CTA_EXPECT_ZONE={0x6}, @CTA_EXPECT_ID={0x8, 0x5, 0x1, 0x0, 0x101}]}, 0x74}, 0x1, 0x0, 0x0, 0x400c004}, 0x20000040)
pipe2$watch_queue(&(0x7f0000000180), 0x80)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=r0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="ac00"], 0x0, 0x0, 0x0)
sendmsg$NLBL_MGMT_C_VERSION(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x14, 0x0, 0x100, 0x70bd2a, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4004000}, 0x20008800)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
geteuid() (async)
setreuid(r0, 0x0) (async)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async)
sendmsg$IPCTNL_MSG_EXP_DELETE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x74, 0x2, 0x2, 0x101, 0x0, 0x0, {0x7, 0x0, 0xa}, [@CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x4}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x3}, @CTA_EXPECT_MASK={0x40, 0x3, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @remote}, {0x14, 0x4, @empty}}}]}, @CTA_EXPECT_ZONE={0x6}, @CTA_EXPECT_ID={0x8, 0x5, 0x1, 0x0, 0x101}]}, 0x74}, 0x1, 0x0, 0x0, 0x400c004}, 0x20000040) (async)
pipe2$watch_queue(&(0x7f0000000180), 0x80) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=r0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="ac00"], 0x0, 0x0, 0x0) (async)
sendmsg$NLBL_MGMT_C_VERSION(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x14, 0x0, 0x100, 0x70bd2a, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4004000}, 0x20008800) (async)

06:45:00 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:45:00 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x6, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:45:00 executing program 3:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000004a00)={&(0x7f0000004940)={0x10, 0x0, 0x0, 0x80000200}, 0xc, &(0x7f00000049c0)={&(0x7f0000004980)={0x14, 0x4, 0x1, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, ["", "", ""]}, 0x14}}, 0x40)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020}, 0x2020)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004cc0)={&(0x7f0000004a40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000004c80)={&(0x7f0000004e00)={0x1c8, 0x1, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_USERDATA={0x102, 0x6, "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"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x81, 0x6, "6c27a0e6f4b1a8f03e9b735dc044d073b6c245ea6d443fb316c059e0ea544d764ee2f0b6432b40b3b87ad5857e8a3d811e303bb631fac14b1d168f790c7074c97985b52c23ca6f76ae1c95f2d461b5a7870b72ce1c1728e42e659a7620ecfe4ba390b8c7369fb63bf1f8f732daa34dcc4f05e22218472a41d016d12052"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x8000}, 0x8050)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:00 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:45:00 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

[ 2137.152484][T19356] fuse: Bad value for 'fd'
[ 2137.171431][T19358] fuse: Bad value for 'group_id'
06:45:00 executing program 1:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
r0 = geteuid()
setreuid(r0, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
sendmsg$IPCTNL_MSG_EXP_DELETE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x74, 0x2, 0x2, 0x101, 0x0, 0x0, {0x7, 0x0, 0xa}, [@CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x4}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x3}, @CTA_EXPECT_MASK={0x40, 0x3, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @remote}, {0x14, 0x4, @empty}}}]}, @CTA_EXPECT_ZONE={0x6}, @CTA_EXPECT_ID={0x8, 0x5, 0x1, 0x0, 0x101}]}, 0x74}, 0x1, 0x0, 0x0, 0x400c004}, 0x20000040) (async, rerun: 32)
pipe2$watch_queue(&(0x7f0000000180), 0x80) (async, rerun: 32)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=r0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="ac00"], 0x0, 0x0, 0x0) (async)
sendmsg$NLBL_MGMT_C_VERSION(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x14, 0x0, 0x100, 0x70bd2a, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4004000}, 0x20008800)

06:45:00 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:00 executing program 3:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000004a00)={&(0x7f0000004940)={0x10, 0x0, 0x0, 0x80000200}, 0xc, &(0x7f00000049c0)={&(0x7f0000004980)={0x14, 0x4, 0x1, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, ["", "", ""]}, 0x14}}, 0x40)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020}, 0x2020)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004cc0)={&(0x7f0000004a40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000004c80)={&(0x7f0000004e00)={0x1c8, 0x1, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_USERDATA={0x102, 0x6, "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"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x81, 0x6, "6c27a0e6f4b1a8f03e9b735dc044d073b6c245ea6d443fb316c059e0ea544d764ee2f0b6432b40b3b87ad5857e8a3d811e303bb631fac14b1d168f790c7074c97985b52c23ca6f76ae1c95f2d461b5a7870b72ce1c1728e42e659a7620ecfe4ba390b8c7369fb63bf1f8f732daa34dcc4f05e22218472a41d016d12052"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x8000}, 0x8050)
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:00 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:45:00 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
read$FUSE(r0, 0x0, 0x2000)

06:45:00 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

[ 2137.318789][T19375] fuse: Bad value for 'group_id'
06:45:00 executing program 3:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000004a00)={&(0x7f0000004940)={0x10, 0x0, 0x0, 0x80000200}, 0xc, &(0x7f00000049c0)={&(0x7f0000004980)={0x14, 0x4, 0x1, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, ["", "", ""]}, 0x14}}, 0x40)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020}, 0x2020)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004cc0)={&(0x7f0000004a40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000004c80)={&(0x7f0000004e00)={0x1c8, 0x1, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_USERDATA={0x102, 0x6, "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"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x81, 0x6, "6c27a0e6f4b1a8f03e9b735dc044d073b6c245ea6d443fb316c059e0ea544d764ee2f0b6432b40b3b87ad5857e8a3d811e303bb631fac14b1d168f790c7074c97985b52c23ca6f76ae1c95f2d461b5a7870b72ce1c1728e42e659a7620ecfe4ba390b8c7369fb63bf1f8f732daa34dcc4f05e22218472a41d016d12052"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x8000}, 0x8050)
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:00 executing program 0:
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:45:00 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

[ 2137.367736][T19378] fuse: Unknown parameter '00000000000000000000'
06:45:00 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[], [{@pcr={'pcr', 0x3d, 0x16}}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:45:00 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:00 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x5, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:45:00 executing program 0:
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:45:00 executing program 3:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000004a00)={&(0x7f0000004940)={0x10, 0x0, 0x0, 0x80000200}, 0xc, &(0x7f00000049c0)={&(0x7f0000004980)={0x14, 0x4, 0x1, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, ["", "", ""]}, 0x14}}, 0x40)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020}, 0x2020)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000004cc0)={&(0x7f0000004a40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000004c80)={&(0x7f0000004e00)={0x1c8, 0x1, 0xa, 0x3, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_USERDATA={0x102, 0x6, "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"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x81, 0x6, "6c27a0e6f4b1a8f03e9b735dc044d073b6c245ea6d443fb316c059e0ea544d764ee2f0b6432b40b3b87ad5857e8a3d811e303bb631fac14b1d168f790c7074c97985b52c23ca6f76ae1c95f2d461b5a7870b72ce1c1728e42e659a7620ecfe4ba390b8c7369fb63bf1f8f732daa34dcc4f05e22218472a41d016d12052"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x8000}, 0x8050)
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:00 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

[ 2137.503419][T19392] fuse: Unknown parameter '00000000000000000000'
06:45:00 executing program 0:
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:45:00 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:45:00 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:00 executing program 3:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000004a00)={&(0x7f0000004940)={0x10, 0x0, 0x0, 0x80000200}, 0xc, &(0x7f00000049c0)={&(0x7f0000004980)={0x14, 0x4, 0x1, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, ["", "", ""]}, 0x14}}, 0x40)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020}, 0x2020)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:00 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0) (async)

06:45:00 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), 0x0, 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:45:00 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:45:00 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

[ 2137.642284][T19407] fuse: Unknown parameter '00000000000000000000'
06:45:00 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:00 executing program 3:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000004a00)={&(0x7f0000004940)={0x10, 0x0, 0x0, 0x80000200}, 0xc, &(0x7f00000049c0)={&(0x7f0000004980)={0x14, 0x4, 0x1, 0x5, 0x0, 0x0, {0x1, 0x0, 0x2}, ["", "", ""]}, 0x14}}, 0x40)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:00 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), 0x0, 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:45:01 executing program 4:
setreuid(0xee01, 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, <r0=>0xee00}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {<r1=>0xee00, r0}}, './file0\x00'})
setuid(r1)

06:45:01 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:01 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:01 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="09001c56e2c79bfbe6cbc277102b32d0475ef2a06c51df480aa7d424b8c733348bf32411aa9b036518b207852fbb7b905b0786e1640f524a6a1f84f6e9aadef15b73cdd0", @ANYRESHEX=r0, @ANYRES64=0x0, @ANYBLOB="09042a657ad688e47a2260272b0bbf46e671ef600e2fb7dab95a5fc2755d0e151258100fa0f72ff6ab5ab2205e4f40fa2929c0e0d476e8476c580a5348a66591de", @ANYBLOB="2cd8579c377b5e269e980212ce5a2fd5e8ee7f480423d5604864522f71b22e381c9d30ef03911e826bcf6a46bc57ec9c7e242124741aed836b9e00abcf8fa15b3af07afcd2291b50dd0ee2f93c6bdde487efc9477aaea74725", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x404b, &(0x7f0000000080)={{}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xee00}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@blksize={'blksize', 0x3d, 0x1000}}, {@blksize}], [{@seclabel}]}}, 0x0, 0x0, &(0x7f00000002c0)="9bd73158b50ace7104aff20468c1b43435cf5471fb37626c9d6d72ce9559ebfba2df2bb6320e1d80931c5cdb54c99595d34ca63d4799b58e8695a4fd526de78a23db155d35e1b32b8a87bda68c5510c921ee17bc64b996370ffedc4c405ae027433af96bea3e0f7aebb215738e6c8307828a061ee6b9b401ba2d26c74773c28a4400e2e1d2f8b74151025c5a1c7205de47d4ecffba0e86d8b8bd6f4efe00b265088faf3f9d9a73760fbcb792610dcb79a435c34791d4ba83bdae2f25e93b235c34")

06:45:01 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x4, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

[ 2137.786930][T19422] fuse: Unknown parameter '00000000000000000000'
06:45:01 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), 0x0, 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:45:01 executing program 3:
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2137.879666][T19431] fuse: Unknown parameter '00000000000000000000'
[ 2137.883534][T19432] fuse: Unknown parameter '	'
06:45:01 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:01 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
read$FUSE(r0, 0x0, 0x500)

[ 2137.924094][T19432] fuse: Bad value for 'fd'
06:45:01 executing program 1:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="09001c56e2c79bfbe6cbc277102b32d0475ef2a06c51df480aa7d424b8c733348bf32411aa9b036518b207852fbb7b905b0786e1640f524a6a1f84f6e9aadef15b73cdd0", @ANYRESHEX=r0, @ANYRES64=0x0, @ANYBLOB="09042a657ad688e47a2260272b0bbf46e671ef600e2fb7dab95a5fc2755d0e151258100fa0f72ff6ab5ab2205e4f40fa2929c0e0d476e8476c580a5348a66591de", @ANYBLOB="2cd8579c377b5e269e980212ce5a2fd5e8ee7f480423d5604864522f71b22e381c9d30ef03911e826bcf6a46bc57ec9c7e242124741aed836b9e00abcf8fa15b3af07afcd2291b50dd0ee2f93c6bdde487efc9477aaea74725", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x404b, &(0x7f0000000080)={{}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xee00}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@blksize={'blksize', 0x3d, 0x1000}}, {@blksize}], [{@seclabel}]}}, 0x0, 0x0, &(0x7f00000002c0)="9bd73158b50ace7104aff20468c1b43435cf5471fb37626c9d6d72ce9559ebfba2df2bb6320e1d80931c5cdb54c99595d34ca63d4799b58e8695a4fd526de78a23db155d35e1b32b8a87bda68c5510c921ee17bc64b996370ffedc4c405ae027433af96bea3e0f7aebb215738e6c8307828a061ee6b9b401ba2d26c74773c28a4400e2e1d2f8b74151025c5a1c7205de47d4ecffba0e86d8b8bd6f4efe00b265088faf3f9d9a73760fbcb792610dcb79a435c34791d4ba83bdae2f25e93b235c34")

06:45:01 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:01 executing program 3:
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2137.973698][T19439] fuse: Unknown parameter '00000000000000000000'
06:45:01 executing program 5:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}}, 0x0, 0x0, 0x0)
read$FUSE(r0, 0x0, 0x6)

06:45:01 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

[ 2138.052868][T19445] fuse: Unknown parameter '	'
06:45:01 executing program 3:
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000004c00)={&(0x7f0000004b00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:01 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (fail_nth: 1)

06:45:01 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

[ 2138.073307][T19445] fuse: Bad value for 'fd'
[ 2138.081501][T19451] fuse: Bad value for 'fd'
[ 2138.095924][T19454] fuse: Unknown parameter 'fd00000000000000000000'
06:45:01 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="09001c56e2c79bfbe6cbc277102b32d0475ef2a06c51df480aa7d424b8c733348bf32411aa9b036518b207852fbb7b905b0786e1640f524a6a1f84f6e9aadef15b73cdd0", @ANYRESHEX=r0, @ANYRES64=0x0, @ANYBLOB="09042a657ad688e47a2260272b0bbf46e671ef600e2fb7dab95a5fc2755d0e151258100fa0f72ff6ab5ab2205e4f40fa2929c0e0d476e8476c580a5348a66591de", @ANYBLOB="2cd8579c377b5e269e980212ce5a2fd5e8ee7f480423d5604864522f71b22e381c9d30ef03911e826bcf6a46bc57ec9c7e242124741aed836b9e00abcf8fa15b3af07afcd2291b50dd0ee2f93c6bdde487efc9477aaea74725", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0) (async)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x404b, &(0x7f0000000080)={{}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xee00}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@blksize={'blksize', 0x3d, 0x1000}}, {@blksize}], [{@seclabel}]}}, 0x0, 0x0, &(0x7f00000002c0)="9bd73158b50ace7104aff20468c1b43435cf5471fb37626c9d6d72ce9559ebfba2df2bb6320e1d80931c5cdb54c99595d34ca63d4799b58e8695a4fd526de78a23db155d35e1b32b8a87bda68c5510c921ee17bc64b996370ffedc4c405ae027433af96bea3e0f7aebb215738e6c8307828a061ee6b9b401ba2d26c74773c28a4400e2e1d2f8b74151025c5a1c7205de47d4ecffba0e86d8b8bd6f4efe00b265088faf3f9d9a73760fbcb792610dcb79a435c34791d4ba83bdae2f25e93b235c34")

06:45:01 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:01 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 1)

06:45:01 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, 0x0, 0x8000)

[ 2138.185421][T19458] FAULT_INJECTION: forcing a failure.
[ 2138.185421][T19458] name failslab, interval 1, probability 0, space 0, times 0
[ 2138.207196][T19460] fuse: Bad value for 'fd'
[ 2138.223159][T19458] CPU: 1 PID: 19458 Comm: syz-executor.4 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2138.232005][T19464] FAULT_INJECTION: forcing a failure.
[ 2138.232005][T19464] name failslab, interval 1, probability 0, space 0, times 0
[ 2138.233102][T19458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2138.233119][T19458] Call Trace:
[ 2138.233128][T19458]  <TASK>
[ 2138.246366][T19465] fuse: Unknown parameter '	'
[ 2138.255773][T19458]  dump_stack_lvl+0x125/0x1b0
[ 2138.255819][T19458]  should_fail_ex+0x496/0x5b0
[ 2138.255858][T19458]  should_failslab+0x9/0x20
06:45:01 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (fail_nth: 2)

[ 2138.255884][T19458]  kmem_cache_alloc+0x33a/0x3b0
[ 2138.255920][T19458]  getname_flags.part.0+0x50/0x4d0
[ 2138.255955][T19458]  __x64_sys_mkdirat+0x100/0x170
[ 2138.255989][T19458]  do_syscall_64+0x38/0xb0
[ 2138.256028][T19458]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2138.256068][T19458] RIP: 0033:0x7fceeee7b5e7
[ 2138.256089][T19458] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
06:45:01 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}, {@allow_other}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

[ 2138.256114][T19458] RSP: 002b:00007fceefb53ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2138.256139][T19458] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fceeee7b5e7
[ 2138.256156][T19458] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[ 2138.256173][T19458] RBP: 0000000020000080 R08: 0000000000000000 R09: 0000000000000000
[ 2138.256188][T19458] R10: 0000000020000080 R11: 0000000000000246 R12: 00000000200000c0
[ 2138.256205][T19458] R13: 00007fceefb53f40 R14: 0000000000000000 R15: 0000000020000100
[ 2138.256236][T19458]  </TASK>
[ 2138.258112][T19466] fuse: Unknown parameter 'fd00000000000000000000'
[ 2138.307962][T19471] FAULT_INJECTION: forcing a failure.
[ 2138.307962][T19471] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2138.323717][T19467] fuse: Bad value for 'fd'
[ 2138.370556][T19471] CPU: 0 PID: 19471 Comm: syz-executor.4 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2138.419064][T19471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2138.429146][T19471] Call Trace:
[ 2138.432451][T19471]  <TASK>
[ 2138.435402][T19471]  dump_stack_lvl+0x125/0x1b0
[ 2138.440120][T19471]  should_fail_ex+0x496/0x5b0
[ 2138.444845][T19471]  strncpy_from_user+0x38/0x300
[ 2138.449720][T19471]  getname_flags.part.0+0x93/0x4d0
[ 2138.454860][T19471]  __x64_sys_mkdirat+0x100/0x170
[ 2138.459833][T19471]  do_syscall_64+0x38/0xb0
[ 2138.464274][T19471]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2138.470192][T19471] RIP: 0033:0x7fceeee7b5e7
06:45:01 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$NFT_MSG_GETTABLE(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x5c, 0x1, 0xa, 0x101, 0x0, 0x0, {0x3, 0x0, 0x5}, [@NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x5c}}, 0x10000)
r2 = gettid()
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r2, 0x0, 0x4004)
r3 = gettid()
sendmsg$nl_netfilter(r0, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000000c0)={&(0x7f0000002340)={0x2614, 0x7, 0x2, 0x101, 0x70bd2b, 0x25dfdbfe, {0x1, 0x0, 0x5}, [@generic="9fbdfb91ff210e5c9c9d4c6374cf17553c31dea52f49b949c231ac4c2ea009cb434c065979a1da1edfd738d3d952f0172532b47da83e09a06b139f793fa0f2eaf8ce6adc38f1bf2e9f45e6bcf61e97af8d968172cc89c0ada64b5bf6d5e2a22a6be98a1a4ef6c4f4aa11833d5bd43cd44c603a39a7e3ff786f", @generic="a7833a2850377e6c5f31b42269df0d8ab1b4a137ad0d85a6406a2868f3c0f64ed8a798fa106942e8dd6e7b2cd985c1b08c8722dfd9b4ae05e975ac65c47418a2b3f2f457bd2e6a4881319658dc7ce07df738052b0d04af55499e05343a23a56dc00d80cae7350c4d2f25c4a8b499f81d6c8a7a91ad4c3512d19fc56cb1827eb5c5728f226f98917687", @typed={0x8, 0x18, 0x0, 0x0, @pid=r2}, @typed={0x8, 0x4d, 0x0, 0x0, @pid=r3}, @nested={0x17b, 0x28, 0x0, 0x1, [@generic="7a34dd076de916c26c74a443f18c5039d2c61508ad76b29e677c233166598a7573348410c02097c1b3ffcf40a8cc55e37303a38b5d71a6a692b88a4029f7857980bebb2e94a6cc58ab4b57b8d880cf3a3b87edb0aae5f1313d0caed17165b17b3bc6b5e3", @typed={0xd8, 0x62, 0x0, 0x0, @binary="21d25d49aa2518d0162b641631a153adf11c4f87962754a0b3469629be7a52d35799f00ec4203cb6010cb31e033b087196eb0ea72ae29ea0520ff5683499f65f5fc360310931e962b65ad70a8d404345f3db1962d55e74efb0797dc2f5f43ddf314b66418d5d5adf8f29217f45ed7fa09a0d3aa12bbd5cfea7712d5b01ca1361dc1e17f52a9a41dcc3585d6153143a60c5de21f9542cd44d66c84f2e59893c0867f5b80bf4d678033ee90bea1a107f72a482e2ba789c903a114386a8bcbdae9aefb571de79f19380becceff9fc76435e1b900bf3"}, @generic="84221ac29f35080780779c564441fbebe27ffdb61a554fc0e4dccf3cbcc341236e27da5866eb08a9498ccf6cda348a1fa9213f91d08313ebb8a7be"]}, @typed={0x14, 0x6, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @nested={0x94, 0x4b, 0x0, 0x1, [@typed={0xc, 0x8f, 0x0, 0x0, @u64=0x1}, @generic="e2c1d0bf5d9b9f9243b856f4c8ccc4b226c98ece7b8b7b27f58a1738fcb31173038a82ba1877919e0fb6", @generic="d5fd92251db8a843ef56b4eff9d1cc7030a3cd930ee0fbd8dc52ab1c13fbb6576a3aa9c8bc859514ba23fd6479858548388d4f2ede58aa23f7ab66511c24f5957e3ce1eae0cab15074141b579b8959e22b5157cac8e306834f9f"]}, @nested={0x2215, 0x47, 0x0, 0x1, [@generic="a71967a54e05e2068694f77d3d75f0973908cae885ec7832b8cf7d305dfc36967b36b8dff5a87df99d4d8cebfbc8c9e04e826baa7433ebff05b295740e715d5f4e503195b525bec40e2fc5b9954b9b35f3421036d8c7e0779d01d2844b70c10aa38271a6ad70befd7dcbee62a2d68c00748446634442bdfb311a184bb51e196982b36fa96f1c6d266a1f71a342191664a2e01cdb3b2140f67606e5cb9d7a917e39b448a01b69912995de6e29102c60d2268df707ffee39000a27022c566f110509c5b46176ea05", @typed={0x8, 0x68, 0x0, 0x0, @fd}, @generic="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", @typed={0x8, 0x53, 0x0, 0x0, @uid=0xee01}, @typed={0x4, 0x69}, @generic="734c941b1f0376f49ab0ad53ea676bc6784692ad0a4f3c8ee2e81ed525077e74b380cb09da447c77af5654a99ac035fad61abc3eb609aee92d33dedfb7f495d78b923e07065c02a6a1105dfcc18026b08ff33297a923cf7dde002105fd320d96d09292e9e665dd9b785fc880e9220d1e60aac5934af857c3962f51ff35e3892e0fa08674fdd0afa6389cd9501aaeae1316310344d78184d49782f28db91d0dbccc19e966ca2444aad5149a0759f0b674f0ec31bef8", @generic="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", @generic="303fc935960e2367719de1e2000a3ef749feff1c49e545241f6f9376f07ec9b5a32bf78a3a86a6da96bccbf7158d200d57b0c92d54b43d0523bad753f3d0c496a03f51e6657053819865", @generic="f2763cb583eae979901536f55e990cf1a8bbc81f2da70fdcb439c8c8c235575d44b2b330f75aa5e25786fc67c4043431c6f3bc664b262e"]}, @typed={0xb0, 0x74, 0x0, 0x0, @binary="4e5ea4059a7396caf6bbaf9e127c3fb9fe729648807014026a930d53b9fd48a903313c17762314ab5f5864370140607fb995913a6c3c4adaf632d8a973fdf14c528fb37ff63150ec2fb80cc2943f49c8663435fa783b9b7816feae52e6fff82f6cdea0eabc2c9eaba59c3c0283eb099a45cde854a31d2d0d640a5eaa1da39a9269059684ee398b34ff45ae4d95e5757c2af9729fe9dd10834f8f0f49477f2db4517c0a468457912e13ce85d2"}]}, 0x2614}, 0x1, 0x0, 0x0, 0x20000010}, 0x4040001)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c27726fb9379e5f369d3d", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
r4 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r4, 0x0, 0x0)
write$9p(r4, 0x0, 0x0)
write$FUSE_LSEEK(r4, &(0x7f0000000140)={0x18, 0x0, 0x0, {0xbf}}, 0x18)

[ 2138.474613][T19471] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2138.494249][T19471] RSP: 002b:00007fceefb53ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2138.502689][T19471] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fceeee7b5e7
[ 2138.510683][T19471] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[ 2138.518670][T19471] RBP: 0000000020000080 R08: 0000000000000000 R09: 0000000000000000
[ 2138.526670][T19471] R10: 0000000020000080 R11: 0000000000000246 R12: 00000000200000c0
[ 2138.534655][T19471] R13: 00007fceefb53f40 R14: 0000000000000000 R15: 0000000020000100
[ 2138.542735][T19471]  </TASK>
[ 2138.546029][T19464] CPU: 1 PID: 19464 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2138.554059][T19475] fuse: Bad value for 'fd'
[ 2138.555933][T19464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2138.570429][T19464] Call Trace:
[ 2138.573713][T19464]  <TASK>
[ 2138.576650][T19464]  dump_stack_lvl+0x125/0x1b0
[ 2138.581349][T19464]  should_fail_ex+0x496/0x5b0
[ 2138.586045][T19464]  should_failslab+0x9/0x20
[ 2138.590553][T19464]  kmem_cache_alloc+0x33a/0x3b0
[ 2138.595422][T19464]  getname_flags.part.0+0x50/0x4d0
[ 2138.600545][T19464]  __x64_sys_mkdirat+0x100/0x170
[ 2138.605496][T19464]  do_syscall_64+0x38/0xb0
[ 2138.609927][T19464]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2138.615840][T19464] RIP: 0033:0x7f84d3e7b5e7
[ 2138.620280][T19464] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2138.639896][T19464] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2138.648314][T19464] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f84d3e7b5e7
[ 2138.656288][T19464] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2138.664264][T19464] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2138.672269][T19464] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
06:45:01 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, 0x0, 0x8000)

[ 2138.680243][T19464] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2138.688329][T19464]  </TASK>
[ 2138.699095][T19476] fuse: Bad value for 'fd'
06:45:01 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, 0x0, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:45:01 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:01 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$NFT_MSG_GETTABLE(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x5c, 0x1, 0xa, 0x101, 0x0, 0x0, {0x3, 0x0, 0x5}, [@NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x5c}}, 0x10000)
r2 = gettid()
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r2, 0x0, 0x4004)
r3 = gettid()
sendmsg$nl_netfilter(r0, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000000c0)={&(0x7f0000002340)={0x2614, 0x7, 0x2, 0x101, 0x70bd2b, 0x25dfdbfe, {0x1, 0x0, 0x5}, [@generic="9fbdfb91ff210e5c9c9d4c6374cf17553c31dea52f49b949c231ac4c2ea009cb434c065979a1da1edfd738d3d952f0172532b47da83e09a06b139f793fa0f2eaf8ce6adc38f1bf2e9f45e6bcf61e97af8d968172cc89c0ada64b5bf6d5e2a22a6be98a1a4ef6c4f4aa11833d5bd43cd44c603a39a7e3ff786f", @generic="a7833a2850377e6c5f31b42269df0d8ab1b4a137ad0d85a6406a2868f3c0f64ed8a798fa106942e8dd6e7b2cd985c1b08c8722dfd9b4ae05e975ac65c47418a2b3f2f457bd2e6a4881319658dc7ce07df738052b0d04af55499e05343a23a56dc00d80cae7350c4d2f25c4a8b499f81d6c8a7a91ad4c3512d19fc56cb1827eb5c5728f226f98917687", @typed={0x8, 0x18, 0x0, 0x0, @pid=r2}, @typed={0x8, 0x4d, 0x0, 0x0, @pid=r3}, @nested={0x17b, 0x28, 0x0, 0x1, [@generic="7a34dd076de916c26c74a443f18c5039d2c61508ad76b29e677c233166598a7573348410c02097c1b3ffcf40a8cc55e37303a38b5d71a6a692b88a4029f7857980bebb2e94a6cc58ab4b57b8d880cf3a3b87edb0aae5f1313d0caed17165b17b3bc6b5e3", @typed={0xd8, 0x62, 0x0, 0x0, @binary="21d25d49aa2518d0162b641631a153adf11c4f87962754a0b3469629be7a52d35799f00ec4203cb6010cb31e033b087196eb0ea72ae29ea0520ff5683499f65f5fc360310931e962b65ad70a8d404345f3db1962d55e74efb0797dc2f5f43ddf314b66418d5d5adf8f29217f45ed7fa09a0d3aa12bbd5cfea7712d5b01ca1361dc1e17f52a9a41dcc3585d6153143a60c5de21f9542cd44d66c84f2e59893c0867f5b80bf4d678033ee90bea1a107f72a482e2ba789c903a114386a8bcbdae9aefb571de79f19380becceff9fc76435e1b900bf3"}, @generic="84221ac29f35080780779c564441fbebe27ffdb61a554fc0e4dccf3cbcc341236e27da5866eb08a9498ccf6cda348a1fa9213f91d08313ebb8a7be"]}, @typed={0x14, 0x6, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @nested={0x94, 0x4b, 0x0, 0x1, [@typed={0xc, 0x8f, 0x0, 0x0, @u64=0x1}, @generic="e2c1d0bf5d9b9f9243b856f4c8ccc4b226c98ece7b8b7b27f58a1738fcb31173038a82ba1877919e0fb6", @generic="d5fd92251db8a843ef56b4eff9d1cc7030a3cd930ee0fbd8dc52ab1c13fbb6576a3aa9c8bc859514ba23fd6479858548388d4f2ede58aa23f7ab66511c24f5957e3ce1eae0cab15074141b579b8959e22b5157cac8e306834f9f"]}, @nested={0x2215, 0x47, 0x0, 0x1, [@generic="a71967a54e05e2068694f77d3d75f0973908cae885ec7832b8cf7d305dfc36967b36b8dff5a87df99d4d8cebfbc8c9e04e826baa7433ebff05b295740e715d5f4e503195b525bec40e2fc5b9954b9b35f3421036d8c7e0779d01d2844b70c10aa38271a6ad70befd7dcbee62a2d68c00748446634442bdfb311a184bb51e196982b36fa96f1c6d266a1f71a342191664a2e01cdb3b2140f67606e5cb9d7a917e39b448a01b69912995de6e29102c60d2268df707ffee39000a27022c566f110509c5b46176ea05", @typed={0x8, 0x68, 0x0, 0x0, @fd}, @generic="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", @typed={0x8, 0x53, 0x0, 0x0, @uid=0xee01}, @typed={0x4, 0x69}, @generic="734c941b1f0376f49ab0ad53ea676bc6784692ad0a4f3c8ee2e81ed525077e74b380cb09da447c77af5654a99ac035fad61abc3eb609aee92d33dedfb7f495d78b923e07065c02a6a1105dfcc18026b08ff33297a923cf7dde002105fd320d96d09292e9e665dd9b785fc880e9220d1e60aac5934af857c3962f51ff35e3892e0fa08674fdd0afa6389cd9501aaeae1316310344d78184d49782f28db91d0dbccc19e966ca2444aad5149a0759f0b674f0ec31bef8", @generic="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", @generic="303fc935960e2367719de1e2000a3ef749feff1c49e545241f6f9376f07ec9b5a32bf78a3a86a6da96bccbf7158d200d57b0c92d54b43d0523bad753f3d0c496a03f51e6657053819865", @generic="f2763cb583eae979901536f55e990cf1a8bbc81f2da70fdcb439c8c8c235575d44b2b330f75aa5e25786fc67c4043431c6f3bc664b262e"]}, @typed={0xb0, 0x74, 0x0, 0x0, @binary="4e5ea4059a7396caf6bbaf9e127c3fb9fe729648807014026a930d53b9fd48a903313c17762314ab5f5864370140607fb995913a6c3c4adaf632d8a973fdf14c528fb37ff63150ec2fb80cc2943f49c8663435fa783b9b7816feae52e6fff82f6cdea0eabc2c9eaba59c3c0283eb099a45cde854a31d2d0d640a5eaa1da39a9269059684ee398b34ff45ae4d95e5757c2af9729fe9dd10834f8f0f49477f2db4517c0a468457912e13ce85d2"}]}, 0x2614}, 0x1, 0x0, 0x0, 0x20000010}, 0x4040001)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c27726fb9379e5f369d3d", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c27726fb9379e5f369d3d", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
bpf$ITER_CREATE(0x21, 0x0, 0x0) (async)
r4 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r4, 0x0, 0x0)
write$9p(r4, 0x0, 0x0)
write$FUSE_LSEEK(r4, &(0x7f0000000140)={0x18, 0x0, 0x0, {0xbf}}, 0x18) (async)
write$FUSE_LSEEK(r4, &(0x7f0000000140)={0x18, 0x0, 0x0, {0xbf}}, 0x18)

06:45:01 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 2)

06:45:02 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, 0x0, 0x8000)

06:45:02 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (fail_nth: 3)

[ 2138.792779][T19484] fuse: Bad value for 'fd'
[ 2138.793475][T19483] fuse: Bad value for 'fd'
[ 2138.815112][T19487] FAULT_INJECTION: forcing a failure.
[ 2138.815112][T19487] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2138.825394][T19488] fuse: Unknown parameter 'fd00000000000000000000'
[ 2138.837560][T19487] CPU: 0 PID: 19487 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2138.847506][T19487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2138.857585][T19487] Call Trace:
[ 2138.860883][T19487]  <TASK>
[ 2138.863833][T19487]  dump_stack_lvl+0x125/0x1b0
[ 2138.868563][T19487]  should_fail_ex+0x496/0x5b0
[ 2138.873373][T19487]  strncpy_from_user+0x38/0x300
[ 2138.875780][T19492] FAULT_INJECTION: forcing a failure.
[ 2138.875780][T19492] name failslab, interval 1, probability 0, space 0, times 0
06:45:02 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 1)

06:45:02 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2138.878240][T19487]  getname_flags.part.0+0x93/0x4d0
[ 2138.895978][T19487]  __x64_sys_mkdirat+0x100/0x170
[ 2138.900960][T19487]  do_syscall_64+0x38/0xb0
[ 2138.905414][T19487]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2138.911346][T19487] RIP: 0033:0x7f84d3e7b5e7
[ 2138.915784][T19487] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2138.935501][T19487] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2138.943942][T19487] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f84d3e7b5e7
[ 2138.951940][T19487] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2138.959932][T19487] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2138.967919][T19487] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2138.975222][T19496] FAULT_INJECTION: forcing a failure.
[ 2138.975222][T19496] name failslab, interval 1, probability 0, space 0, times 0
[ 2138.975892][T19487] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2138.989431][T19494] validate_nla: 12 callbacks suppressed
[ 2138.989446][T19494] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
[ 2138.996447][T19487]  </TASK>
[ 2139.010131][T19496] CPU: 0 PID: 19496 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2139.023102][T19496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2139.033260][T19496] Call Trace:
[ 2139.036544][T19496]  <TASK>
[ 2139.039479][T19496]  dump_stack_lvl+0x125/0x1b0
06:45:02 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, 0x0, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

[ 2139.044204][T19496]  should_fail_ex+0x496/0x5b0
[ 2139.048916][T19496]  should_failslab+0x9/0x20
[ 2139.050490][T19494] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 2139.053427][T19496]  kmem_cache_alloc+0x33a/0x3b0
[ 2139.053468][T19496]  ? kernel_fpu_begin_mask+0x270/0x270
[ 2139.071835][T19496]  getname_flags.part.0+0x50/0x4d0
[ 2139.076987][T19496]  __x64_sys_mkdirat+0x100/0x170
[ 2139.081955][T19496]  do_syscall_64+0x38/0xb0
[ 2139.086402][T19496]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
06:45:02 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$NFT_MSG_GETTABLE(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x5c, 0x1, 0xa, 0x101, 0x0, 0x0, {0x3, 0x0, 0x5}, [@NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x5c}}, 0x10000) (async)
r2 = gettid()
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r2, 0x0, 0x4004) (async)
r3 = gettid()
sendmsg$nl_netfilter(r0, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000000c0)={&(0x7f0000002340)={0x2614, 0x7, 0x2, 0x101, 0x70bd2b, 0x25dfdbfe, {0x1, 0x0, 0x5}, [@generic="9fbdfb91ff210e5c9c9d4c6374cf17553c31dea52f49b949c231ac4c2ea009cb434c065979a1da1edfd738d3d952f0172532b47da83e09a06b139f793fa0f2eaf8ce6adc38f1bf2e9f45e6bcf61e97af8d968172cc89c0ada64b5bf6d5e2a22a6be98a1a4ef6c4f4aa11833d5bd43cd44c603a39a7e3ff786f", @generic="a7833a2850377e6c5f31b42269df0d8ab1b4a137ad0d85a6406a2868f3c0f64ed8a798fa106942e8dd6e7b2cd985c1b08c8722dfd9b4ae05e975ac65c47418a2b3f2f457bd2e6a4881319658dc7ce07df738052b0d04af55499e05343a23a56dc00d80cae7350c4d2f25c4a8b499f81d6c8a7a91ad4c3512d19fc56cb1827eb5c5728f226f98917687", @typed={0x8, 0x18, 0x0, 0x0, @pid=r2}, @typed={0x8, 0x4d, 0x0, 0x0, @pid=r3}, @nested={0x17b, 0x28, 0x0, 0x1, [@generic="7a34dd076de916c26c74a443f18c5039d2c61508ad76b29e677c233166598a7573348410c02097c1b3ffcf40a8cc55e37303a38b5d71a6a692b88a4029f7857980bebb2e94a6cc58ab4b57b8d880cf3a3b87edb0aae5f1313d0caed17165b17b3bc6b5e3", @typed={0xd8, 0x62, 0x0, 0x0, @binary="21d25d49aa2518d0162b641631a153adf11c4f87962754a0b3469629be7a52d35799f00ec4203cb6010cb31e033b087196eb0ea72ae29ea0520ff5683499f65f5fc360310931e962b65ad70a8d404345f3db1962d55e74efb0797dc2f5f43ddf314b66418d5d5adf8f29217f45ed7fa09a0d3aa12bbd5cfea7712d5b01ca1361dc1e17f52a9a41dcc3585d6153143a60c5de21f9542cd44d66c84f2e59893c0867f5b80bf4d678033ee90bea1a107f72a482e2ba789c903a114386a8bcbdae9aefb571de79f19380becceff9fc76435e1b900bf3"}, @generic="84221ac29f35080780779c564441fbebe27ffdb61a554fc0e4dccf3cbcc341236e27da5866eb08a9498ccf6cda348a1fa9213f91d08313ebb8a7be"]}, @typed={0x14, 0x6, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @nested={0x94, 0x4b, 0x0, 0x1, [@typed={0xc, 0x8f, 0x0, 0x0, @u64=0x1}, @generic="e2c1d0bf5d9b9f9243b856f4c8ccc4b226c98ece7b8b7b27f58a1738fcb31173038a82ba1877919e0fb6", @generic="d5fd92251db8a843ef56b4eff9d1cc7030a3cd930ee0fbd8dc52ab1c13fbb6576a3aa9c8bc859514ba23fd6479858548388d4f2ede58aa23f7ab66511c24f5957e3ce1eae0cab15074141b579b8959e22b5157cac8e306834f9f"]}, @nested={0x2215, 0x47, 0x0, 0x1, [@generic="a71967a54e05e2068694f77d3d75f0973908cae885ec7832b8cf7d305dfc36967b36b8dff5a87df99d4d8cebfbc8c9e04e826baa7433ebff05b295740e715d5f4e503195b525bec40e2fc5b9954b9b35f3421036d8c7e0779d01d2844b70c10aa38271a6ad70befd7dcbee62a2d68c00748446634442bdfb311a184bb51e196982b36fa96f1c6d266a1f71a342191664a2e01cdb3b2140f67606e5cb9d7a917e39b448a01b69912995de6e29102c60d2268df707ffee39000a27022c566f110509c5b46176ea05", @typed={0x8, 0x68, 0x0, 0x0, @fd}, @generic="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", @typed={0x8, 0x53, 0x0, 0x0, @uid=0xee01}, @typed={0x4, 0x69}, @generic="734c941b1f0376f49ab0ad53ea676bc6784692ad0a4f3c8ee2e81ed525077e74b380cb09da447c77af5654a99ac035fad61abc3eb609aee92d33dedfb7f495d78b923e07065c02a6a1105dfcc18026b08ff33297a923cf7dde002105fd320d96d09292e9e665dd9b785fc880e9220d1e60aac5934af857c3962f51ff35e3892e0fa08674fdd0afa6389cd9501aaeae1316310344d78184d49782f28db91d0dbccc19e966ca2444aad5149a0759f0b674f0ec31bef8", @generic="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", @generic="303fc935960e2367719de1e2000a3ef749feff1c49e545241f6f9376f07ec9b5a32bf78a3a86a6da96bccbf7158d200d57b0c92d54b43d0523bad753f3d0c496a03f51e6657053819865", @generic="f2763cb583eae979901536f55e990cf1a8bbc81f2da70fdcb439c8c8c235575d44b2b330f75aa5e25786fc67c4043431c6f3bc664b262e"]}, @typed={0xb0, 0x74, 0x0, 0x0, @binary="4e5ea4059a7396caf6bbaf9e127c3fb9fe729648807014026a930d53b9fd48a903313c17762314ab5f5864370140607fb995913a6c3c4adaf632d8a973fdf14c528fb37ff63150ec2fb80cc2943f49c8663435fa783b9b7816feae52e6fff82f6cdea0eabc2c9eaba59c3c0283eb099a45cde854a31d2d0d640a5eaa1da39a9269059684ee398b34ff45ae4d95e5757c2af9729fe9dd10834f8f0f49477f2db4517c0a468457912e13ce85d2"}]}, 0x2614}, 0x1, 0x0, 0x0, 0x20000010}, 0x4040001) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c27726fb9379e5f369d3d", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
r4 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r4, 0x0, 0x0) (async)
write$9p(r4, 0x0, 0x0) (async)
write$FUSE_LSEEK(r4, &(0x7f0000000140)={0x18, 0x0, 0x0, {0xbf}}, 0x18)

[ 2139.092361][T19496] RIP: 0033:0x7f115b87b5e7
[ 2139.096838][T19496] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2139.116468][T19496] RSP: 002b:00007f115c552ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2139.124909][T19496] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f115b87b5e7
[ 2139.132916][T19496] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2139.140912][T19496] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2139.148907][T19496] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2139.156901][T19496] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2139.164908][T19496]  </TASK>
[ 2139.168035][T19492] CPU: 1 PID: 19492 Comm: syz-executor.4 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2139.177951][T19492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2139.188027][T19492] Call Trace:
[ 2139.191313][T19492]  <TASK>
[ 2139.194243][T19492]  dump_stack_lvl+0x125/0x1b0
[ 2139.198944][T19492]  should_fail_ex+0x496/0x5b0
[ 2139.203648][T19492]  ? __d_alloc+0x32/0xac0
[ 2139.208089][T19492]  should_failslab+0x9/0x20
[ 2139.212610][T19492]  kmem_cache_alloc_lru+0x3e6/0x630
[ 2139.217844][T19492]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2139.223237][T19492]  ? __d_alloc+0x32/0xac0
[ 2139.227575][T19492]  __d_alloc+0x32/0xac0
[ 2139.231742][T19492]  d_alloc+0x4e/0x220
[ 2139.235749][T19492]  lookup_one_qstr_excl+0xc7/0x180
[ 2139.240900][T19492]  ? mnt_want_write+0x161/0x440
[ 2139.245784][T19492]  filename_create+0x1ed/0x530
[ 2139.250581][T19492]  ? vfs_path_parent_lookup+0x50/0x50
[ 2139.255973][T19492]  ? preempt_count_sub+0x150/0x150
[ 2139.261103][T19492]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2139.267035][T19492]  ? __virt_addr_valid+0x5e/0x2d0
[ 2139.272078][T19492]  do_mkdirat+0xb3/0x330
[ 2139.276338][T19492]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2139.281208][T19492]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2139.286614][T19492]  __x64_sys_mkdirat+0x115/0x170
[ 2139.291586][T19492]  do_syscall_64+0x38/0xb0
[ 2139.296024][T19492]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2139.301940][T19492] RIP: 0033:0x7fceeee7b5e7
[ 2139.306448][T19492] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2139.326770][T19492] RSP: 002b:00007fceefb53ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2139.335199][T19492] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fceeee7b5e7
[ 2139.343176][T19492] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[ 2139.351154][T19492] RBP: 0000000020000080 R08: 0000000000000000 R09: 0000000000000000
[ 2139.359129][T19492] R10: 0000000020000080 R11: 0000000000000246 R12: 00000000200000c0
[ 2139.367107][T19492] R13: 00007fceefb53f40 R14: 0000000000000000 R15: 0000000020000100
[ 2139.375100][T19492]  </TASK>
[ 2139.388369][T19500] fuse: Bad value for 'fd'
06:45:02 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (fail_nth: 4)

06:45:02 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, 0x0, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:45:02 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:02 executing program 1:
pipe2$9p(&(0x7f0000000080), 0x800)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1, {0x0, 0xffffffffffffffff}}, './file0\x00'})
r2 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r2, 0x0, 0x0)
write$9p(r2, 0x0, 0x0)
write$P9_RWSTAT(r2, &(0x7f0000000040)={0x7, 0x7f, 0x1}, 0x7)
r3 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r3, 0x0, 0x0)
write$9p(r3, 0x0, 0x0)
write$P9_RXATTRCREATE(r3, &(0x7f0000000100)={0x7, 0x21, 0x2}, 0x7)

06:45:02 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 2)

06:45:02 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 3)

06:45:02 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

[ 2139.457460][T19506] FAULT_INJECTION: forcing a failure.
[ 2139.457460][T19506] name failslab, interval 1, probability 0, space 0, times 0
[ 2139.511262][T19510] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
[ 2139.527807][T19510] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 2139.544770][T19514] FAULT_INJECTION: forcing a failure.
[ 2139.544770][T19514] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2139.551246][T19515] FAULT_INJECTION: forcing a failure.
[ 2139.551246][T19515] name failslab, interval 1, probability 0, space 0, times 0
[ 2139.560422][T19506] CPU: 1 PID: 19506 Comm: syz-executor.4 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2139.580387][T19506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2139.590555][T19506] Call Trace:
[ 2139.593842][T19506]  <TASK>
[ 2139.596779][T19506]  dump_stack_lvl+0x125/0x1b0
[ 2139.601484][T19506]  should_fail_ex+0x496/0x5b0
[ 2139.606190][T19506]  should_failslab+0x9/0x20
[ 2139.610704][T19506]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2139.616271][T19506]  ? tomoyo_realpath_from_path+0xb9/0x710
[ 2139.622032][T19506]  ? tomoyo_realpath_from_path+0xb9/0x710
[ 2139.627798][T19506]  __kmalloc+0x4f/0x100
[ 2139.631977][T19506]  tomoyo_realpath_from_path+0xb9/0x710
[ 2139.637547][T19506]  ? tomoyo_profile+0x47/0x60
[ 2139.642239][T19506]  tomoyo_path_number_perm+0x243/0x590
[ 2139.647718][T19506]  ? tomoyo_path_number_perm+0x1eb/0x590
[ 2139.653456][T19506]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 2139.659278][T19506]  ? ext4_fname_setup_filename+0x250/0x250
[ 2139.665106][T19506]  ? d_splice_alias+0x4d5/0xdf0
[ 2139.669983][T19506]  ? do_raw_spin_unlock+0x173/0x230
[ 2139.675199][T19506]  ? _raw_spin_unlock+0x28/0x40
[ 2139.680058][T19506]  ? hook_path_mkdir+0x42d/0x500
[ 2139.685011][T19506]  ? d_alloc+0x1b7/0x220
[ 2139.689267][T19506]  tomoyo_path_mkdir+0x9c/0xe0
[ 2139.694138][T19506]  ? tomoyo_file_ioctl+0x30/0x30
[ 2139.699093][T19506]  security_path_mkdir+0x10e/0x170
[ 2139.704221][T19506]  do_mkdirat+0x163/0x330
[ 2139.708565][T19506]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2139.713427][T19506]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2139.718810][T19506]  __x64_sys_mkdirat+0x115/0x170
[ 2139.723764][T19506]  do_syscall_64+0x38/0xb0
[ 2139.728197][T19506]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2139.734114][T19506] RIP: 0033:0x7fceeee7b5e7
[ 2139.738531][T19506] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2139.758409][T19506] RSP: 002b:00007fceefb53ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2139.766831][T19506] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fceeee7b5e7
[ 2139.774807][T19506] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[ 2139.782782][T19506] RBP: 0000000020000080 R08: 0000000000000000 R09: 0000000000000000
[ 2139.790762][T19506] R10: 0000000020000080 R11: 0000000000000246 R12: 00000000200000c0
[ 2139.798735][T19506] R13: 00007fceefb53f40 R14: 0000000000000000 R15: 0000000020000100
[ 2139.806747][T19506]  </TASK>
[ 2139.809905][T19514] CPU: 0 PID: 19514 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2139.819835][T19514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2139.829912][T19514] Call Trace:
[ 2139.833211][T19514]  <TASK>
[ 2139.836154][T19514]  dump_stack_lvl+0x125/0x1b0
[ 2139.840869][T19514]  should_fail_ex+0x496/0x5b0
[ 2139.845754][T19514]  strncpy_from_user+0x38/0x300
[ 2139.850636][T19514]  getname_flags.part.0+0x93/0x4d0
[ 2139.855795][T19514]  __x64_sys_mkdirat+0x100/0x170
06:45:03 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:45:03 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2139.860768][T19514]  do_syscall_64+0x38/0xb0
[ 2139.865209][T19514]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2139.871127][T19514] RIP: 0033:0x7f115b87b5e7
[ 2139.875560][T19514] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2139.895199][T19514] RSP: 002b:00007f115c552ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2139.903642][T19514] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f115b87b5e7
06:45:03 executing program 1:
pipe2$9p(&(0x7f0000000080), 0x800) (async, rerun: 64)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (rerun: 64)
socket$inet6_udplite(0xa, 0x2, 0x88) (async)
r1 = syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1, {0x0, 0xffffffffffffffff}}, './file0\x00'}) (async, rerun: 64)
r2 = bpf$ITER_CREATE(0x21, 0x0, 0x0) (rerun: 64)
sendmsg$IPCTNL_MSG_EXP_NEW(r2, 0x0, 0x0) (async)
write$9p(r2, 0x0, 0x0) (async, rerun: 32)
write$P9_RWSTAT(r2, &(0x7f0000000040)={0x7, 0x7f, 0x1}, 0x7) (async, rerun: 32)
r3 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r3, 0x0, 0x0) (async)
write$9p(r3, 0x0, 0x0) (async, rerun: 64)
write$P9_RXATTRCREATE(r3, &(0x7f0000000100)={0x7, 0x21, 0x2}, 0x7) (rerun: 64)

[ 2139.911636][T19514] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2139.919635][T19514] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2139.927629][T19514] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2139.935625][T19514] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2139.943706][T19514]  </TASK>
[ 2139.946729][T19515] CPU: 1 PID: 19515 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2139.956732][T19515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2139.966808][T19515] Call Trace:
[ 2139.970118][T19515]  <TASK>
[ 2139.973075][T19515]  dump_stack_lvl+0x125/0x1b0
[ 2139.977799][T19515]  should_fail_ex+0x496/0x5b0
[ 2139.982516][T19515]  ? __d_alloc+0x32/0xac0
[ 2139.986868][T19515]  should_failslab+0x9/0x20
[ 2139.991394][T19515]  kmem_cache_alloc_lru+0x3e6/0x630
[ 2139.996631][T19515]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2140.002042][T19515]  ? __d_alloc+0x32/0xac0
[ 2140.006401][T19515]  __d_alloc+0x32/0xac0
[ 2140.010587][T19515]  d_alloc+0x4e/0x220
[ 2140.014601][T19515]  lookup_one_qstr_excl+0xc7/0x180
[ 2140.019736][T19515]  ? mnt_want_write+0x161/0x440
[ 2140.024602][T19515]  filename_create+0x1ed/0x530
[ 2140.029378][T19515]  ? vfs_path_parent_lookup+0x50/0x50
[ 2140.034762][T19515]  ? preempt_count_sub+0x150/0x150
[ 2140.039887][T19515]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2140.045797][T19515]  ? __virt_addr_valid+0x5e/0x2d0
[ 2140.050832][T19515]  do_mkdirat+0xb3/0x330
[ 2140.055090][T19515]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2140.059958][T19515]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2140.065341][T19515]  __x64_sys_mkdirat+0x115/0x170
[ 2140.070293][T19515]  do_syscall_64+0x38/0xb0
[ 2140.074725][T19515]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2140.080639][T19515] RIP: 0033:0x7f84d3e7b5e7
[ 2140.085057][T19515] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2140.104677][T19515] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2140.113703][T19515] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f84d3e7b5e7
[ 2140.121674][T19515] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2140.129645][T19515] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2140.137617][T19515] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2140.145588][T19515] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2140.153576][T19515]  </TASK>
[ 2140.156862][T19506] ERROR: Out of memory at tomoyo_realpath_from_path.
06:45:03 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (fail_nth: 5)

06:45:03 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 4)

06:45:03 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 3)

06:45:03 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}, {@fowner_eq}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:45:03 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:03 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[], [{@pcr={'pcr', 0x3d, 0x16}}, {@permit_directio}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:45:03 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:03 executing program 1:
pipe2$9p(&(0x7f0000000080), 0x800) (async)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1, {0x0, 0xffffffffffffffff}}, './file0\x00'}) (async, rerun: 64)
r2 = bpf$ITER_CREATE(0x21, 0x0, 0x0) (rerun: 64)
sendmsg$IPCTNL_MSG_EXP_NEW(r2, 0x0, 0x0)
write$9p(r2, 0x0, 0x0) (async)
write$P9_RWSTAT(r2, &(0x7f0000000040)={0x7, 0x7f, 0x1}, 0x7) (async)
r3 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r3, 0x0, 0x0)
write$9p(r3, 0x0, 0x0) (async)
write$P9_RXATTRCREATE(r3, &(0x7f0000000100)={0x7, 0x21, 0x2}, 0x7)

[ 2140.278802][T19529] FAULT_INJECTION: forcing a failure.
[ 2140.278802][T19529] name failslab, interval 1, probability 0, space 0, times 0
[ 2140.318452][T19529] CPU: 1 PID: 19529 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2140.328402][T19529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2140.333947][T19537] FAULT_INJECTION: forcing a failure.
[ 2140.333947][T19537] name failslab, interval 1, probability 0, space 0, times 0
[ 2140.338462][T19529] Call Trace:
[ 2140.338475][T19529]  <TASK>
[ 2140.338485][T19529]  dump_stack_lvl+0x125/0x1b0
[ 2140.362084][T19529]  should_fail_ex+0x496/0x5b0
[ 2140.366807][T19529]  ? __d_alloc+0x32/0xac0
[ 2140.371174][T19529]  should_failslab+0x9/0x20
[ 2140.375700][T19529]  kmem_cache_alloc_lru+0x3e6/0x630
[ 2140.380940][T19529]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2140.386354][T19529]  ? __d_alloc+0x32/0xac0
[ 2140.388227][T19540] FAULT_INJECTION: forcing a failure.
[ 2140.388227][T19540] name failslab, interval 1, probability 0, space 0, times 0
[ 2140.390694][T19529]  __d_alloc+0x32/0xac0
[ 2140.390729][T19529]  d_alloc+0x4e/0x220
[ 2140.390755][T19529]  lookup_one_qstr_excl+0xc7/0x180
[ 2140.416564][T19529]  ? mnt_want_write+0x161/0x440
[ 2140.421448][T19529]  filename_create+0x1ed/0x530
[ 2140.426236][T19529]  ? vfs_path_parent_lookup+0x50/0x50
[ 2140.431640][T19529]  ? preempt_count_sub+0x150/0x150
[ 2140.436783][T19529]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2140.442701][T19529]  ? __virt_addr_valid+0x5e/0x2d0
[ 2140.449656][T19529]  do_mkdirat+0xb3/0x330
[ 2140.453926][T19529]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2140.458803][T19529]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2140.464195][T19529]  __x64_sys_mkdirat+0x115/0x170
[ 2140.469155][T19529]  do_syscall_64+0x38/0xb0
[ 2140.473592][T19529]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2140.479518][T19529] RIP: 0033:0x7f115b87b5e7
[ 2140.483951][T19529] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2140.503579][T19529] RSP: 002b:00007f115c552ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2140.512021][T19529] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f115b87b5e7
[ 2140.520011][T19529] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
06:45:03 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[], [{@pcr={'pcr', 0x3d, 0x16}}]}}, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

[ 2140.527996][T19529] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2140.535985][T19529] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2140.544057][T19529] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2140.552050][T19529]  </TASK>
[ 2140.555884][T19537] CPU: 0 PID: 19537 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2140.565807][T19537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2140.575879][T19537] Call Trace:
[ 2140.579169][T19537]  <TASK>
[ 2140.582106][T19537]  dump_stack_lvl+0x125/0x1b0
[ 2140.586805][T19537]  should_fail_ex+0x496/0x5b0
[ 2140.591504][T19537]  should_failslab+0x9/0x20
[ 2140.596013][T19537]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2140.601744][T19537]  ? tomoyo_realpath_from_path+0xb9/0x710
[ 2140.607481][T19537]  ? tomoyo_realpath_from_path+0xb9/0x710
[ 2140.613215][T19537]  __kmalloc+0x4f/0x100
[ 2140.617374][T19537]  tomoyo_realpath_from_path+0xb9/0x710
[ 2140.622933][T19537]  ? tomoyo_profile+0x47/0x60
[ 2140.627620][T19537]  tomoyo_path_number_perm+0x243/0x590
[ 2140.633087][T19537]  ? tomoyo_path_number_perm+0x1eb/0x590
[ 2140.638730][T19537]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 2140.644561][T19537]  ? ext4_fname_setup_filename+0x250/0x250
[ 2140.650380][T19537]  ? d_splice_alias+0x4d5/0xdf0
[ 2140.655252][T19537]  ? do_raw_spin_unlock+0x173/0x230
[ 2140.660466][T19537]  ? _raw_spin_unlock+0x28/0x40
[ 2140.665327][T19537]  ? hook_path_mkdir+0x42d/0x500
[ 2140.670283][T19537]  ? d_alloc+0x1b7/0x220
[ 2140.674557][T19537]  tomoyo_path_mkdir+0x9c/0xe0
[ 2140.679332][T19537]  ? tomoyo_file_ioctl+0x30/0x30
[ 2140.684285][T19537]  security_path_mkdir+0x10e/0x170
[ 2140.689404][T19537]  do_mkdirat+0x163/0x330
[ 2140.693748][T19537]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2140.698613][T19537]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2140.703995][T19537]  __x64_sys_mkdirat+0x115/0x170
[ 2140.708958][T19537]  do_syscall_64+0x38/0xb0
[ 2140.713398][T19537]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2140.719306][T19537] RIP: 0033:0x7f84d3e7b5e7
[ 2140.723724][T19537] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2140.743337][T19537] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2140.751751][T19537] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f84d3e7b5e7
[ 2140.759724][T19537] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2140.767700][T19537] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2140.775671][T19537] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2140.783643][T19537] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2140.791629][T19537]  </TASK>
[ 2140.809144][T19540] CPU: 1 PID: 19540 Comm: syz-executor.4 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2140.819443][T19540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2140.829278][T19537] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2140.829498][T19540] Call Trace:
[ 2140.829509][T19540]  <TASK>
[ 2140.837228][T19537] fuse: Bad value for 'fd'
[ 2140.839430][T19540]  dump_stack_lvl+0x125/0x1b0
[ 2140.839472][T19540]  should_fail_ex+0x496/0x5b0
[ 2140.839511][T19540]  should_failslab+0x9/0x20
[ 2140.860707][T19540]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2140.866191][T19540]  ? tomoyo_encode2+0x100/0x3d0
[ 2140.871057][T19540]  ? tomoyo_encode2+0x100/0x3d0
[ 2140.875918][T19540]  __kmalloc+0x4f/0x100
[ 2140.880087][T19540]  tomoyo_encode2+0x100/0x3d0
[ 2140.884775][T19540]  ? rcu_is_watching+0x12/0xb0
[ 2140.889544][T19540]  tomoyo_encode+0x29/0x50
[ 2140.893971][T19540]  tomoyo_realpath_from_path+0x196/0x710
[ 2140.899627][T19540]  tomoyo_path_number_perm+0x243/0x590
[ 2140.905210][T19540]  ? tomoyo_path_number_perm+0x1eb/0x590
[ 2140.910854][T19540]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 2140.916685][T19540]  ? ext4_fname_setup_filename+0x250/0x250
[ 2140.922593][T19540]  ? d_splice_alias+0x4d5/0xdf0
[ 2140.927552][T19540]  ? do_raw_spin_unlock+0x173/0x230
[ 2140.932846][T19540]  ? _raw_spin_unlock+0x28/0x40
[ 2140.937704][T19540]  ? hook_path_mkdir+0x42d/0x500
[ 2140.942655][T19540]  ? d_alloc+0x1b7/0x220
[ 2140.947171][T19540]  tomoyo_path_mkdir+0x9c/0xe0
[ 2140.952068][T19540]  ? tomoyo_file_ioctl+0x30/0x30
[ 2140.957305][T19540]  security_path_mkdir+0x10e/0x170
[ 2140.962517][T19540]  do_mkdirat+0x163/0x330
[ 2140.966863][T19540]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2140.972249][T19540]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2140.977635][T19540]  __x64_sys_mkdirat+0x115/0x170
[ 2140.982587][T19540]  do_syscall_64+0x38/0xb0
[ 2140.987023][T19540]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2140.992932][T19540] RIP: 0033:0x7fceeee7b5e7
[ 2140.997348][T19540] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2141.017145][T19540] RSP: 002b:00007fceefb53ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2141.025566][T19540] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fceeee7b5e7
[ 2141.033535][T19540] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[ 2141.041503][T19540] RBP: 0000000020000080 R08: 0000000000000000 R09: 0000000000000000
[ 2141.049474][T19540] R10: 0000000020000080 R11: 0000000000000246 R12: 00000000200000c0
[ 2141.057544][T19540] R13: 00007fceefb53f40 R14: 0000000000000000 R15: 0000000020000100
[ 2141.065540][T19540]  </TASK>
06:45:04 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 5)

06:45:04 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:04 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 4)

[ 2141.117181][T19546] FAULT_INJECTION: forcing a failure.
[ 2141.117181][T19546] name failslab, interval 1, probability 0, space 0, times 0
[ 2141.130996][T19549] FAULT_INJECTION: forcing a failure.
[ 2141.130996][T19549] name failslab, interval 1, probability 0, space 0, times 0
[ 2141.131038][T19549] CPU: 1 PID: 19549 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2141.131066][T19549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2141.131082][T19549] Call Trace:
[ 2141.131090][T19549]  <TASK>
[ 2141.131100][T19549]  dump_stack_lvl+0x125/0x1b0
[ 2141.131142][T19549]  should_fail_ex+0x496/0x5b0
[ 2141.131181][T19549]  should_failslab+0x9/0x20
[ 2141.131205][T19549]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2141.131241][T19549]  ? tomoyo_realpath_from_path+0xb9/0x710
[ 2141.131275][T19549]  ? tomoyo_realpath_from_path+0xb9/0x710
[ 2141.147233][T19540] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2141.154803][T19549]  __kmalloc+0x4f/0x100
[ 2141.154833][T19549]  tomoyo_realpath_from_path+0xb9/0x710
[ 2141.218408][T19549]  ? tomoyo_profile+0x47/0x60
[ 2141.223115][T19549]  tomoyo_path_number_perm+0x243/0x590
[ 2141.228718][T19549]  ? tomoyo_path_number_perm+0x1eb/0x590
[ 2141.234453][T19549]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 2141.240299][T19549]  ? ext4_fname_setup_filename+0x250/0x250
[ 2141.246220][T19549]  ? d_splice_alias+0x4d5/0xdf0
[ 2141.251096][T19549]  ? do_raw_spin_unlock+0x173/0x230
[ 2141.256308][T19549]  ? _raw_spin_unlock+0x28/0x40
[ 2141.261168][T19549]  ? hook_path_mkdir+0x42d/0x500
[ 2141.266116][T19549]  ? d_alloc+0x1b7/0x220
[ 2141.270369][T19549]  tomoyo_path_mkdir+0x9c/0xe0
[ 2141.275144][T19549]  ? tomoyo_file_ioctl+0x30/0x30
[ 2141.280543][T19549]  security_path_mkdir+0x10e/0x170
[ 2141.285675][T19549]  do_mkdirat+0x163/0x330
[ 2141.290204][T19549]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2141.295078][T19549]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2141.300479][T19549]  __x64_sys_mkdirat+0x115/0x170
[ 2141.305452][T19549]  do_syscall_64+0x38/0xb0
[ 2141.309933][T19549]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2141.315844][T19549] RIP: 0033:0x7f115b87b5e7
[ 2141.320257][T19549] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2141.339873][T19549] RSP: 002b:00007f115c552ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2141.348294][T19549] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f115b87b5e7
[ 2141.356280][T19549] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
06:45:04 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (fail_nth: 6)

06:45:04 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

06:45:04 executing program 1:
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
write$9p(r0, 0x0, 0x0)
bind$l2tp6(r0, &(0x7f0000000000)={0xa, 0x0, 0x100, @mcast1, 0x6ad9, 0x1}, 0x20)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, 0x2, 0x9, 0x401, 0x0, 0x0, {0x0, 0x0, 0x9}, [@NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0xffffffff}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x1}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x8}, @NFCTH_STATUS={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x280889d1}, 0x40)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0xfd, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x4, 0x1, 0x3, 0x0, 0x0, {0x1, 0x0, 0x4}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0xc088}, 0x0)

[ 2141.364356][T19549] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2141.372328][T19549] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2141.380308][T19549] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2141.388634][T19549]  </TASK>
06:45:04 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2141.439741][T19546] CPU: 1 PID: 19546 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2141.449962][T19546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2141.450921][T19556] FAULT_INJECTION: forcing a failure.
[ 2141.450921][T19556] name failslab, interval 1, probability 0, space 0, times 0
[ 2141.460122][T19546] Call Trace:
[ 2141.460137][T19546]  <TASK>
[ 2141.460145][T19546]  dump_stack_lvl+0x125/0x1b0
[ 2141.460186][T19546]  should_fail_ex+0x496/0x5b0
[ 2141.460224][T19546]  should_failslab+0x9/0x20
[ 2141.492852][T19546]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2141.498354][T19546]  ? tomoyo_encode2+0x100/0x3d0
[ 2141.503248][T19546]  ? tomoyo_encode2+0x100/0x3d0
[ 2141.508118][T19546]  __kmalloc+0x4f/0x100
[ 2141.512282][T19546]  tomoyo_encode2+0x100/0x3d0
[ 2141.516976][T19546]  ? rcu_is_watching+0x12/0xb0
[ 2141.521743][T19546]  tomoyo_encode+0x29/0x50
[ 2141.526171][T19546]  tomoyo_realpath_from_path+0x196/0x710
[ 2141.531820][T19546]  tomoyo_path_number_perm+0x243/0x590
[ 2141.537290][T19546]  ? tomoyo_path_number_perm+0x1eb/0x590
[ 2141.542932][T19546]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 2141.548767][T19546]  ? ext4_fname_setup_filename+0x250/0x250
[ 2141.554602][T19546]  ? d_splice_alias+0x4d5/0xdf0
[ 2141.559570][T19546]  ? do_raw_spin_unlock+0x173/0x230
[ 2141.564789][T19546]  ? _raw_spin_unlock+0x28/0x40
[ 2141.569647][T19546]  ? hook_path_mkdir+0x42d/0x500
[ 2141.575286][T19546]  ? d_alloc+0x1b7/0x220
[ 2141.581155][T19546]  tomoyo_path_mkdir+0x9c/0xe0
[ 2141.586207][T19546]  ? tomoyo_file_ioctl+0x30/0x30
[ 2141.591161][T19546]  security_path_mkdir+0x10e/0x170
[ 2141.596280][T19546]  do_mkdirat+0x163/0x330
[ 2141.600622][T19546]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2141.605486][T19546]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2141.610951][T19546]  __x64_sys_mkdirat+0x115/0x170
[ 2141.615949][T19546]  do_syscall_64+0x38/0xb0
[ 2141.620383][T19546]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2141.626376][T19546] RIP: 0033:0x7f84d3e7b5e7
[ 2141.630879][T19546] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2141.650492][T19546] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2141.659180][T19546] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f84d3e7b5e7
[ 2141.667151][T19546] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2141.675120][T19546] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2141.683091][T19546] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2141.691232][T19546] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2141.699213][T19546]  </TASK>
[ 2141.702333][T19549] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2141.711579][T19546] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2141.719762][T19546] fuse: Bad value for 'fd'
[ 2141.724391][T19556] CPU: 1 PID: 19556 Comm: syz-executor.4 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
06:45:04 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:04 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

[ 2141.734307][T19556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2141.744376][T19556] Call Trace:
[ 2141.747683][T19556]  <TASK>
[ 2141.750625][T19556]  dump_stack_lvl+0x125/0x1b0
[ 2141.755339][T19556]  should_fail_ex+0x496/0x5b0
[ 2141.760057][T19556]  ? ext4_alloc_inode+0x28/0x650
[ 2141.765015][T19556]  should_failslab+0x9/0x20
[ 2141.769538][T19556]  kmem_cache_alloc_lru+0x3e6/0x630
[ 2141.774773][T19556]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2141.780783][T19556]  ? ext4_free_in_core_inode+0xb0/0xb0
[ 2141.786267][T19556]  ? ext4_alloc_inode+0x28/0x650
06:45:05 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 5)

[ 2141.791237][T19556]  ext4_alloc_inode+0x28/0x650
[ 2141.796040][T19556]  ? ext4_free_in_core_inode+0xb0/0xb0
[ 2141.801614][T19556]  alloc_inode+0x5d/0x220
[ 2141.805978][T19556]  new_inode+0x22/0x260
[ 2141.810164][T19556]  __ext4_new_inode+0x378/0x5620
[ 2141.815137][T19556]  ? tomoyo_path_number_perm+0x190/0x590
[ 2141.820805][T19556]  ? ext4_fname_setup_filename+0x250/0x250
[ 2141.826646][T19556]  ? ext4_mark_inode_used+0x14a0/0x14a0
[ 2141.832222][T19556]  ? __dquot_initialize+0x299/0xc40
06:45:05 executing program 1:
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
write$9p(r0, 0x0, 0x0)
bind$l2tp6(r0, &(0x7f0000000000)={0xa, 0x0, 0x100, @mcast1, 0x6ad9, 0x1}, 0x20)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, 0x2, 0x9, 0x401, 0x0, 0x0, {0x0, 0x0, 0x9}, [@NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0xffffffff}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x1}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x8}, @NFCTH_STATUS={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x280889d1}, 0x40)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0xfd, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x4, 0x1, 0x3, 0x0, 0x0, {0x1, 0x0, 0x4}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0xc088}, 0x0)
bpf$ITER_CREATE(0x21, 0x0, 0x0) (async)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0) (async)
write$9p(r0, 0x0, 0x0) (async)
bind$l2tp6(r0, &(0x7f0000000000)={0xa, 0x0, 0x100, @mcast1, 0x6ad9, 0x1}, 0x20) (async)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, 0x2, 0x9, 0x401, 0x0, 0x0, {0x0, 0x0, 0x9}, [@NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0xffffffff}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x1}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x8}, @NFCTH_STATUS={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x280889d1}, 0x40) (async)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0xfd, 0x0, 0x0) (async)
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x4, 0x1, 0x3, 0x0, 0x0, {0x1, 0x0, 0x4}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0xc088}, 0x0) (async)

06:45:05 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 6)

06:45:05 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x0, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2141.837592][T19556]  ext4_mkdir+0x284/0xb70
[ 2141.841961][T19556]  ? generic_permission+0x230/0x6a0
[ 2141.847276][T19556]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2141.852409][T19556]  ? security_inode_permission+0xd8/0x100
[ 2141.858172][T19556]  ? inode_permission+0xdd/0x5e0
[ 2141.863136][T19556]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 2141.868217][T19556]  vfs_mkdir+0x532/0x7e0
[ 2141.872586][T19556]  do_mkdirat+0x2a9/0x330
[ 2141.876958][T19556]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2141.881933][T19556]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2141.887346][T19556]  __x64_sys_mkdirat+0x115/0x170
[ 2141.892317][T19556]  do_syscall_64+0x38/0xb0
[ 2141.896764][T19556]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2141.902776][T19556] RIP: 0033:0x7fceeee7b5e7
[ 2141.907204][T19556] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2141.927267][T19556] RSP: 002b:00007fceefb53ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
06:45:05 executing program 0:
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
write$9p(r0, 0x0, 0x0)
bind$l2tp6(r0, &(0x7f0000000000)={0xa, 0x0, 0x100, @mcast1, 0x6ad9, 0x1}, 0x20)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, 0x2, 0x9, 0x401, 0x0, 0x0, {0x0, 0x0, 0x9}, [@NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0xffffffff}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x1}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x8}, @NFCTH_STATUS={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x280889d1}, 0x40)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0xfd, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x4, 0x1, 0x3, 0x0, 0x0, {0x1, 0x0, 0x4}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0xc088}, 0x0)

[ 2141.935869][T19556] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fceeee7b5e7
[ 2141.944120][T19556] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[ 2141.952096][T19556] RBP: 0000000020000080 R08: 0000000000000000 R09: 0000000000000000
[ 2141.960088][T19556] R10: 0000000020000080 R11: 0000000000000246 R12: 00000000200000c0
[ 2141.968063][T19556] R13: 00007fceefb53f40 R14: 0000000000000000 R15: 0000000020000100
[ 2141.976048][T19556]  </TASK>
[ 2142.002097][T19571] FAULT_INJECTION: forcing a failure.
[ 2142.002097][T19571] name failslab, interval 1, probability 0, space 0, times 0
[ 2142.015898][T19573] FAULT_INJECTION: forcing a failure.
[ 2142.015898][T19573] name failslab, interval 1, probability 0, space 0, times 0
[ 2142.028692][T19571] CPU: 1 PID: 19571 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2142.038618][T19571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2142.048698][T19571] Call Trace:
06:45:05 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:05 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (fail_nth: 7)

[ 2142.051998][T19571]  <TASK>
[ 2142.055032][T19571]  dump_stack_lvl+0x125/0x1b0
[ 2142.059753][T19571]  should_fail_ex+0x496/0x5b0
[ 2142.064477][T19571]  should_failslab+0x9/0x20
[ 2142.069039][T19571]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2142.074630][T19571]  ? tomoyo_encode2+0x100/0x3d0
[ 2142.079521][T19571]  ? tomoyo_encode2+0x100/0x3d0
[ 2142.084421][T19571]  __kmalloc+0x4f/0x100
[ 2142.088671][T19571]  tomoyo_encode2+0x100/0x3d0
[ 2142.093390][T19571]  ? rcu_is_watching+0x12/0xb0
[ 2142.098202][T19571]  tomoyo_encode+0x29/0x50
06:45:05 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x0, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2142.102657][T19571]  tomoyo_realpath_from_path+0x196/0x710
[ 2142.108333][T19571]  tomoyo_path_number_perm+0x243/0x590
[ 2142.113830][T19571]  ? tomoyo_path_number_perm+0x1eb/0x590
[ 2142.119500][T19571]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 2142.125344][T19571]  ? ext4_fname_setup_filename+0x250/0x250
[ 2142.127151][T19576] FAULT_INJECTION: forcing a failure.
[ 2142.127151][T19576] name failslab, interval 1, probability 0, space 0, times 0
[ 2142.131191][T19571]  ? d_splice_alias+0x4d5/0xdf0
06:45:05 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x0, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2142.131238][T19571]  ? do_raw_spin_unlock+0x173/0x230
[ 2142.131273][T19571]  ? _raw_spin_unlock+0x28/0x40
[ 2142.131304][T19571]  ? hook_path_mkdir+0x42d/0x500
[ 2142.131339][T19571]  ? d_alloc+0x1b7/0x220
[ 2142.131370][T19571]  tomoyo_path_mkdir+0x9c/0xe0
[ 2142.131406][T19571]  ? tomoyo_file_ioctl+0x30/0x30
[ 2142.131444][T19571]  security_path_mkdir+0x10e/0x170
[ 2142.131476][T19571]  do_mkdirat+0x163/0x330
[ 2142.131508][T19571]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2142.131542][T19571]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2142.131574][T19571]  __x64_sys_mkdirat+0x115/0x170
[ 2142.131609][T19571]  do_syscall_64+0x38/0xb0
[ 2142.131645][T19571]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2142.131685][T19571] RIP: 0033:0x7f115b87b5e7
[ 2142.131702][T19571] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2142.131723][T19571] RSP: 002b:00007f115c552ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2142.245272][T19571] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f115b87b5e7
[ 2142.253251][T19571] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2142.261225][T19571] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2142.269196][T19571] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2142.277351][T19571] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2142.285331][T19571]  </TASK>
[ 2142.291858][T19573] CPU: 1 PID: 19573 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2142.301797][T19573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2142.311854][T19573] Call Trace:
[ 2142.315134][T19573]  <TASK>
[ 2142.318069][T19573]  dump_stack_lvl+0x125/0x1b0
[ 2142.322768][T19573]  should_fail_ex+0x496/0x5b0
[ 2142.327461][T19573]  ? ext4_alloc_inode+0x28/0x650
[ 2142.332401][T19573]  should_failslab+0x9/0x20
[ 2142.336912][T19573]  kmem_cache_alloc_lru+0x3e6/0x630
[ 2142.342139][T19573]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2142.348127][T19573]  ? ext4_free_in_core_inode+0xb0/0xb0
[ 2142.353596][T19573]  ? ext4_alloc_inode+0x28/0x650
[ 2142.358539][T19573]  ext4_alloc_inode+0x28/0x650
[ 2142.363397][T19573]  ? ext4_free_in_core_inode+0xb0/0xb0
[ 2142.368867][T19573]  alloc_inode+0x5d/0x220
[ 2142.373301][T19573]  new_inode+0x22/0x260
[ 2142.377470][T19573]  __ext4_new_inode+0x378/0x5620
[ 2142.382423][T19573]  ? tomoyo_path_number_perm+0x190/0x590
[ 2142.388071][T19573]  ? ext4_fname_setup_filename+0x250/0x250
[ 2142.393890][T19573]  ? ext4_mark_inode_used+0x14a0/0x14a0
[ 2142.399464][T19573]  ? __dquot_initialize+0x299/0xc40
[ 2142.404686][T19573]  ext4_mkdir+0x284/0xb70
[ 2142.409045][T19573]  ? generic_permission+0x230/0x6a0
[ 2142.414254][T19573]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2142.419365][T19573]  ? security_inode_permission+0xd8/0x100
[ 2142.425097][T19573]  ? inode_permission+0xdd/0x5e0
[ 2142.430042][T19573]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 2142.435074][T19573]  vfs_mkdir+0x532/0x7e0
[ 2142.439328][T19573]  do_mkdirat+0x2a9/0x330
[ 2142.443670][T19573]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2142.448537][T19573]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2142.453933][T19573]  __x64_sys_mkdirat+0x115/0x170
[ 2142.458897][T19573]  do_syscall_64+0x38/0xb0
[ 2142.463611][T19573]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2142.469522][T19573] RIP: 0033:0x7f84d3e7b5e7
[ 2142.473946][T19573] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2142.493567][T19573] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2142.501986][T19573] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f84d3e7b5e7
[ 2142.509973][T19573] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2142.518044][T19573] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2142.526020][T19573] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2142.533995][T19573] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2142.542008][T19573]  </TASK>
06:45:05 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {0x0, 0x0, 0x4}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2142.550831][T19571] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2142.564985][T19583] netlink: 'syz-executor.0': attribute type 2 has an invalid length.
06:45:05 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 6)

[ 2142.599474][T19576] CPU: 1 PID: 19576 Comm: syz-executor.4 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2142.601253][T19583] netlink: 'syz-executor.0': attribute type 1 has an invalid length.
[ 2142.609399][T19576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2142.609415][T19576] Call Trace:
[ 2142.609425][T19576]  <TASK>
[ 2142.609434][T19576]  dump_stack_lvl+0x125/0x1b0
[ 2142.609476][T19576]  should_fail_ex+0x496/0x5b0
[ 2142.630938][T19585] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
[ 2142.633777][T19576]  should_failslab+0x9/0x20
[ 2142.633810][T19576]  kmem_cache_alloc+0x33a/0x3b0
[ 2142.638481][T19585] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 2142.643138][T19576]  security_inode_alloc+0x38/0x180
[ 2142.643175][T19576]  inode_init_always+0xbef/0xee0
[ 2142.678756][T19576]  alloc_inode+0x7a/0x220
[ 2142.683126][T19576]  new_inode+0x22/0x260
[ 2142.687371][T19576]  __ext4_new_inode+0x378/0x5620
[ 2142.692348][T19576]  ? tomoyo_path_number_perm+0x190/0x590
06:45:05 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 7)

06:45:05 executing program 1:
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
write$9p(r0, 0x0, 0x0)
bind$l2tp6(r0, &(0x7f0000000000)={0xa, 0x0, 0x100, @mcast1, 0x6ad9, 0x1}, 0x20) (async)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, 0x2, 0x9, 0x401, 0x0, 0x0, {0x0, 0x0, 0x9}, [@NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0xffffffff}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x1}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x8}, @NFCTH_STATUS={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x280889d1}, 0x40)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0xfd, 0x0, 0x0) (async)
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x4, 0x1, 0x3, 0x0, 0x0, {0x1, 0x0, 0x4}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0xc088}, 0x0)

[ 2142.698049][T19576]  ? ext4_fname_setup_filename+0x250/0x250
[ 2142.703898][T19576]  ? ext4_mark_inode_used+0x14a0/0x14a0
[ 2142.709496][T19576]  ? __dquot_initialize+0x299/0xc40
[ 2142.714738][T19576]  ext4_mkdir+0x284/0xb70
[ 2142.719187][T19576]  ? generic_permission+0x230/0x6a0
[ 2142.724421][T19576]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2142.729643][T19576]  ? security_inode_permission+0xd8/0x100
[ 2142.735410][T19576]  ? inode_permission+0xdd/0x5e0
[ 2142.740379][T19576]  ? bpf_lsm_inode_mkdir+0x9/0x10
06:45:05 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, 0x0, 0x0, 0x0, &(0x7f0000000240)="52b6e1322e690def3cea65a82dec04210495441594f24055fcc227baceca496e7782247564a177b1cf1697f8f23b5b44c28704f138d6e7b10f2d84e88dc7d23918443b23b533f7c8768a9b81e03ec83ecf1f75c2d41172aada58aee44eed000f7a50af4ab76e47b3d74ddba29ca89c0e3735f8d3976af51fdbc6894e990f65eba1534c14545e91db0e128bcb7a9c98749f")

[ 2142.741443][T19589] FAULT_INJECTION: forcing a failure.
[ 2142.741443][T19589] name failslab, interval 1, probability 0, space 0, times 0
[ 2142.745422][T19576]  vfs_mkdir+0x532/0x7e0
[ 2142.745462][T19576]  do_mkdirat+0x2a9/0x330
[ 2142.766615][T19576]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2142.771508][T19576]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2142.776919][T19576]  __x64_sys_mkdirat+0x115/0x170
[ 2142.781903][T19576]  do_syscall_64+0x38/0xb0
[ 2142.786366][T19576]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2142.792300][T19576] RIP: 0033:0x7fceeee7b5e7
06:45:06 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2142.796739][T19576] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2142.816475][T19576] RSP: 002b:00007fceefb53ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2142.824907][T19576] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fceeee7b5e7
[ 2142.832992][T19576] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[ 2142.840989][T19576] RBP: 0000000020000080 R08: 0000000000000000 R09: 0000000000000000
[ 2142.848988][T19576] R10: 0000000020000080 R11: 0000000000000246 R12: 00000000200000c0
[ 2142.857079][T19576] R13: 00007fceefb53f40 R14: 0000000000000000 R15: 0000000020000100
[ 2142.863698][T19594] FAULT_INJECTION: forcing a failure.
[ 2142.863698][T19594] name failslab, interval 1, probability 0, space 0, times 0
[ 2142.865322][T19576]  </TASK>
[ 2142.888550][T19594] CPU: 0 PID: 19594 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2142.898498][T19594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2142.908562][T19594] Call Trace:
[ 2142.911854][T19594]  <TASK>
[ 2142.914852][T19594]  dump_stack_lvl+0x125/0x1b0
[ 2142.920250][T19594]  should_fail_ex+0x496/0x5b0
[ 2142.924956][T19594]  ? ext4_alloc_inode+0x28/0x650
[ 2142.929899][T19594]  should_failslab+0x9/0x20
[ 2142.934408][T19594]  kmem_cache_alloc_lru+0x3e6/0x630
[ 2142.939625][T19594]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2142.945653][T19594]  ? ext4_free_in_core_inode+0xb0/0xb0
[ 2142.951122][T19594]  ? ext4_alloc_inode+0x28/0x650
[ 2142.956063][T19594]  ext4_alloc_inode+0x28/0x650
[ 2142.960835][T19594]  ? ext4_free_in_core_inode+0xb0/0xb0
[ 2142.966315][T19594]  alloc_inode+0x5d/0x220
[ 2142.970663][T19594]  new_inode+0x22/0x260
[ 2142.974919][T19594]  __ext4_new_inode+0x378/0x5620
[ 2142.979870][T19594]  ? tomoyo_path_number_perm+0x190/0x590
[ 2142.985630][T19594]  ? ext4_fname_setup_filename+0x250/0x250
[ 2142.991450][T19594]  ? ext4_mark_inode_used+0x14a0/0x14a0
[ 2142.997009][T19594]  ? __dquot_initialize+0x299/0xc40
[ 2143.002236][T19594]  ext4_mkdir+0x284/0xb70
[ 2143.006576][T19594]  ? generic_permission+0x230/0x6a0
[ 2143.011801][T19594]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2143.016926][T19594]  ? security_inode_permission+0xd8/0x100
[ 2143.022667][T19594]  ? inode_permission+0xdd/0x5e0
[ 2143.027625][T19594]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 2143.032675][T19594]  vfs_mkdir+0x532/0x7e0
[ 2143.036984][T19594]  do_mkdirat+0x2a9/0x330
[ 2143.041438][T19594]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2143.046307][T19594]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2143.051698][T19594]  __x64_sys_mkdirat+0x115/0x170
[ 2143.056669][T19594]  do_syscall_64+0x38/0xb0
[ 2143.061141][T19594]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2143.067080][T19594] RIP: 0033:0x7f115b87b5e7
[ 2143.071927][T19594] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2143.091730][T19594] RSP: 002b:00007f115c552ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2143.100152][T19594] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f115b87b5e7
[ 2143.108124][T19594] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2143.116097][T19594] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2143.124074][T19594] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2143.132051][T19594] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2143.140036][T19594]  </TASK>
[ 2143.148555][T19589] CPU: 1 PID: 19589 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2143.158502][T19589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2143.168590][T19589] Call Trace:
[ 2143.172041][T19589]  <TASK>
[ 2143.174991][T19589]  dump_stack_lvl+0x125/0x1b0
[ 2143.179708][T19589]  should_fail_ex+0x496/0x5b0
[ 2143.184428][T19589]  ? ext4_alloc_inode+0x28/0x650
[ 2143.189397][T19589]  should_failslab+0x9/0x20
[ 2143.193925][T19589]  kmem_cache_alloc_lru+0x3e6/0x630
06:45:06 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0x9, 0xf3}}, './file0\x00'})
sendmsg$IPSET_CMD_GET_BYINDEX(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x4c, 0xf, 0x6, 0x301, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_INDEX={0x6, 0xb, 0x2}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_INDEX={0x6, 0xb, 0x1}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_INDEX={0x6, 0xb, 0x1}]}, 0x4c}}, 0x40001)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000180)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {}, 0x2c, {[], [{@audit}]}}, 0x0, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r2, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$NFT_MSG_GETGEN(r2, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x14, 0x10, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0xa}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x40c0)

06:45:06 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (fail_nth: 1)

06:45:06 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

[ 2143.199164][T19589]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2143.205169][T19589]  ? ext4_free_in_core_inode+0xb0/0xb0
[ 2143.210658][T19589]  ? ext4_alloc_inode+0x28/0x650
[ 2143.215720][T19589]  ext4_alloc_inode+0x28/0x650
[ 2143.220600][T19589]  ? ext4_free_in_core_inode+0xb0/0xb0
[ 2143.226088][T19589]  alloc_inode+0x5d/0x220
[ 2143.230453][T19589]  new_inode+0x22/0x260
[ 2143.234735][T19589]  __ext4_new_inode+0x378/0x5620
[ 2143.239715][T19589]  ? tomoyo_path_number_perm+0x190/0x590
[ 2143.245390][T19589]  ? ext4_fname_setup_filename+0x250/0x250
[ 2143.251494][T19589]  ? ext4_mark_inode_used+0x14a0/0x14a0
[ 2143.257080][T19589]  ? __dquot_initialize+0x299/0xc40
[ 2143.262302][T19589]  ext4_mkdir+0x284/0xb70
[ 2143.266640][T19589]  ? generic_permission+0x230/0x6a0
[ 2143.271853][T19589]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2143.276973][T19589]  ? security_inode_permission+0xd8/0x100
[ 2143.282725][T19589]  ? inode_permission+0xdd/0x5e0
[ 2143.287870][T19589]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 2143.292917][T19589]  vfs_mkdir+0x532/0x7e0
[ 2143.297175][T19589]  do_mkdirat+0x2a9/0x330
[ 2143.301519][T19589]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2143.306487][T19589]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2143.311899][T19589]  __x64_sys_mkdirat+0x115/0x170
[ 2143.316889][T19589]  do_syscall_64+0x38/0xb0
[ 2143.321349][T19589]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2143.327319][T19589] RIP: 0033:0x7f84d3e7b5e7
[ 2143.331757][T19589] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2143.351481][T19589] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2143.359942][T19589] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f84d3e7b5e7
[ 2143.369067][T19589] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2143.377108][T19589] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2143.385141][T19589] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2143.394187][T19589] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2143.402398][T19589]  </TASK>
06:45:06 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:06 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 8)

06:45:06 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0002, &(0x7f0000000100), 0x0, 0x0, 0x0)

[ 2143.423428][T19602] FAULT_INJECTION: forcing a failure.
[ 2143.423428][T19602] name failslab, interval 1, probability 0, space 0, times 0
[ 2143.436861][T19601] fuse: Unknown parameter 'audit'
[ 2143.481859][T19602] CPU: 0 PID: 19602 Comm: syz-executor.0 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2143.491825][T19602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2143.501992][T19602] Call Trace:
[ 2143.505299][T19602]  <TASK>
[ 2143.508245][T19602]  dump_stack_lvl+0x125/0x1b0
[ 2143.512989][T19602]  should_fail_ex+0x496/0x5b0
[ 2143.517715][T19602]  should_failslab+0x9/0x20
[ 2143.522356][T19602]  kmem_cache_alloc+0x33a/0x3b0
[ 2143.527286][T19602]  getname_flags.part.0+0x50/0x4d0
[ 2143.532505][T19602]  __x64_sys_mkdirat+0x100/0x170
[ 2143.537623][T19602]  do_syscall_64+0x38/0xb0
[ 2143.542171][T19602]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2143.542631][T19608] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
[ 2143.548091][T19602] RIP: 0033:0x7f546f27b5e7
[ 2143.548118][T19602] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2143.556317][T19608] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 2143.560574][T19602] RSP: 002b:00007f546ddfdee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2143.560613][T19602] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f546f27b5e7
[ 2143.560629][T19602] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[ 2143.560645][T19602] RBP: 0000000020000080 R08: 0000000000000000 R09: 0000000000000000
[ 2143.560658][T19602] R10: 0000000020000080 R11: 0000000000000246 R12: 00000000200000c0
06:45:06 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x70, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x12}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:06 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 7)

06:45:06 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0004, &(0x7f0000000100), 0x0, 0x0, 0x0)

06:45:06 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0x9, 0xf3}}, './file0\x00'})
sendmsg$IPSET_CMD_GET_BYINDEX(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x4c, 0xf, 0x6, 0x301, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_INDEX={0x6, 0xb, 0x2}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_INDEX={0x6, 0xb, 0x1}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_INDEX={0x6, 0xb, 0x1}]}, 0x4c}}, 0x40001) (async, rerun: 64)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000180)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {}, 0x2c, {[], [{@audit}]}}, 0x0, 0x0, 0x0) (rerun: 64)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r2, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0) (async)
sendmsg$NFT_MSG_GETGEN(r2, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x14, 0x10, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0xa}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x40c0)

[ 2143.560671][T19602] R13: 00007f546ddfdf40 R14: 0000000000000000 R15: 0000000020000100
[ 2143.560694][T19602]  </TASK>
[ 2143.567948][T19609] FAULT_INJECTION: forcing a failure.
[ 2143.567948][T19609] name failslab, interval 1, probability 0, space 0, times 0
[ 2143.656170][T19612] FAULT_INJECTION: forcing a failure.
[ 2143.656170][T19612] name failslab, interval 1, probability 0, space 0, times 0
[ 2143.691132][T19609] CPU: 0 PID: 19609 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2143.701094][T19609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2143.711172][T19609] Call Trace:
[ 2143.714475][T19609]  <TASK>
[ 2143.717423][T19609]  dump_stack_lvl+0x125/0x1b0
[ 2143.722141][T19609]  should_fail_ex+0x496/0x5b0
[ 2143.726861][T19609]  should_failslab+0x9/0x20
[ 2143.731386][T19609]  kmem_cache_alloc+0x33a/0x3b0
[ 2143.736273][T19609]  jbd2__journal_start+0x190/0x690
[ 2143.741425][T19609]  ? __ext4_new_inode+0x2e51/0x5620
[ 2143.746648][T19609]  __ext4_journal_start_sb+0x40f/0x5c0
[ 2143.752121][T19609]  __ext4_new_inode+0x2e51/0x5620
[ 2143.757186][T19609]  ? ext4_mark_inode_used+0x14a0/0x14a0
[ 2143.762748][T19609]  ? __dquot_initialize+0x299/0xc40
[ 2143.767971][T19609]  ext4_mkdir+0x284/0xb70
[ 2143.772312][T19609]  ? generic_permission+0x230/0x6a0
[ 2143.777530][T19609]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2143.782644][T19609]  ? security_inode_permission+0xd8/0x100
[ 2143.788380][T19609]  ? inode_permission+0xdd/0x5e0
[ 2143.793326][T19609]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 2143.798361][T19609]  vfs_mkdir+0x532/0x7e0
[ 2143.802617][T19609]  do_mkdirat+0x2a9/0x330
[ 2143.806961][T19609]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2143.811828][T19609]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2143.817215][T19609]  __x64_sys_mkdirat+0x115/0x170
[ 2143.822173][T19609]  do_syscall_64+0x38/0xb0
[ 2143.826608][T19609]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2143.832527][T19609] RIP: 0033:0x7f84d3e7b5e7
[ 2143.836959][T19609] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2143.856578][T19609] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2143.864997][T19609] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f84d3e7b5e7
[ 2143.872973][T19609] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2143.880943][T19609] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
06:45:06 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (fail_nth: 2)

06:45:06 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xc0ed0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

[ 2143.888919][T19609] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2143.896897][T19609] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2143.905140][T19609]  </TASK>
[ 2143.918411][T19618] FAULT_INJECTION: forcing a failure.
[ 2143.918411][T19618] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2143.923281][T19612] CPU: 0 PID: 19612 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2143.939100][T19621] fuse: Bad value for 'fd'
[ 2143.941335][T19612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2143.941351][T19612] Call Trace:
[ 2143.941359][T19612]  <TASK>
[ 2143.941368][T19612]  dump_stack_lvl+0x125/0x1b0
[ 2143.966711][T19612]  should_fail_ex+0x496/0x5b0
[ 2143.971426][T19612]  should_failslab+0x9/0x20
[ 2143.975941][T19612]  kmem_cache_alloc+0x33a/0x3b0
[ 2143.980817][T19612]  security_inode_alloc+0x38/0x180
[ 2143.985952][T19612]  inode_init_always+0xbef/0xee0
[ 2143.990923][T19612]  alloc_inode+0x7a/0x220
[ 2143.995283][T19612]  new_inode+0x22/0x260
[ 2143.999484][T19612]  __ext4_new_inode+0x378/0x5620
[ 2144.004540][T19612]  ? tomoyo_path_number_perm+0x190/0x590
[ 2144.010207][T19612]  ? ext4_fname_setup_filename+0x250/0x250
[ 2144.016045][T19612]  ? ext4_mark_inode_used+0x14a0/0x14a0
[ 2144.021615][T19612]  ? __dquot_initialize+0x299/0xc40
[ 2144.026837][T19612]  ext4_mkdir+0x284/0xb70
[ 2144.031197][T19612]  ? generic_permission+0x230/0x6a0
[ 2144.036423][T19612]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2144.041552][T19612]  ? security_inode_permission+0xd8/0x100
[ 2144.047294][T19612]  ? inode_permission+0xdd/0x5e0
[ 2144.052246][T19612]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 2144.057290][T19612]  vfs_mkdir+0x532/0x7e0
[ 2144.061555][T19612]  do_mkdirat+0x2a9/0x330
[ 2144.065909][T19612]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2144.070783][T19612]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2144.076258][T19612]  __x64_sys_mkdirat+0x115/0x170
[ 2144.079421][T19609] EXT4-fs error (device sda1) in __ext4_new_inode:1083: Out of memory
[ 2144.081204][T19612]  do_syscall_64+0x38/0xb0
[ 2144.093971][T19612]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2144.099915][T19612] RIP: 0033:0x7f115b87b5e7
[ 2144.104343][T19612] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2144.123983][T19612] RSP: 002b:00007f115c552ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2144.132425][T19612] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f115b87b5e7
06:45:07 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x2}}, 0x0, 0x0, 0x0)

06:45:07 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 9)

[ 2144.140424][T19612] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2144.148588][T19612] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2144.152157][T19627] FAULT_INJECTION: forcing a failure.
[ 2144.152157][T19627] name failslab, interval 1, probability 0, space 0, times 0
[ 2144.156558][T19612] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2144.156576][T19612] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2144.156601][T19612]  </TASK>
06:45:07 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0x9, 0xf3}}, './file0\x00'})
sendmsg$IPSET_CMD_GET_BYINDEX(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x4c, 0xf, 0x6, 0x301, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_INDEX={0x6, 0xb, 0x2}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_INDEX={0x6, 0xb, 0x1}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_INDEX={0x6, 0xb, 0x1}]}, 0x4c}}, 0x40001) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000180)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {}, 0x2c, {[], [{@audit}]}}, 0x0, 0x0, 0x0) (async)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r2, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0) (async, rerun: 64)
sendmsg$NFT_MSG_GETGEN(r2, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x14, 0x10, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0xa}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x40c0) (rerun: 64)

06:45:07 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x4}}, 0x0, 0x0, 0x0)

06:45:07 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x68, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2144.190890][T19619] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
[ 2144.212707][T19630] fuse: Unknown parameter 'audit'
[ 2144.212984][T19619] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 2144.261321][T19627] CPU: 1 PID: 19627 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2144.271370][T19627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2144.281552][T19627] Call Trace:
[ 2144.284847][T19627]  <TASK>
[ 2144.287797][T19627]  dump_stack_lvl+0x125/0x1b0
[ 2144.292537][T19627]  should_fail_ex+0x496/0x5b0
[ 2144.297427][T19627]  should_failslab+0x9/0x20
[ 2144.301951][T19627]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2144.307440][T19627]  ? ext4_find_extent+0x958/0xce0
[ 2144.312486][T19627]  ? ext4_find_extent+0x958/0xce0
[ 2144.317539][T19627]  __kmalloc+0x4f/0x100
[ 2144.321704][T19627]  ext4_find_extent+0x958/0xce0
[ 2144.326581][T19627]  ? crypto_shash_update+0xd5/0x130
[ 2144.331806][T19627]  ext4_ext_map_blocks+0x26b/0x5b10
[ 2144.337029][T19627]  ? jbd2_journal_dirty_metadata+0x1c3/0xd50
[ 2144.343026][T19627]  ? ext4_inode_csum_set+0x294/0x360
[ 2144.348324][T19627]  ? ext4_ext_release+0x10/0x10
[ 2144.353195][T19627]  ? rcu_is_watching+0x12/0xb0
[ 2144.357986][T19627]  ? lock_acquire+0x464/0x510
[ 2144.362692][T19627]  ? lock_sync+0x190/0x190
[ 2144.367224][T19627]  ? lock_release+0x4bf/0x680
[ 2144.370290][T19636] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
[ 2144.371924][T19627]  ? ext4_es_lookup_extent+0x4a5/0xbe0
[ 2144.380088][T19636] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 2144.385456][T19627]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2144.385498][T19627]  ? preempt_count_sub+0x150/0x150
[ 2144.405172][T19627]  ? rcu_is_watching+0x12/0xb0
06:45:07 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x3c, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2144.409967][T19627]  ? ext4_es_lookup_extent+0xc7/0xbe0
[ 2144.415382][T19627]  ext4_map_blocks+0x844/0x1770
[ 2144.420269][T19627]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2144.425492][T19627]  ? __brelse+0x88/0xa0
[ 2144.429688][T19627]  ext4_append+0x1fb/0x560
[ 2144.434143][T19627]  ? ext4_match+0x5d0/0x5d0
[ 2144.438768][T19627]  ? __dquot_initialize+0x299/0xc40
[ 2144.444001][T19627]  ext4_init_new_dir+0x220/0x4c0
[ 2144.448955][T19627]  ? ext4_init_dot_dotdot+0x560/0x560
[ 2144.454340][T19627]  ext4_mkdir+0x316/0xb70
[ 2144.458681][T19627]  ? generic_permission+0x230/0x6a0
[ 2144.463982][T19627]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2144.469123][T19627]  ? security_inode_permission+0xd8/0x100
[ 2144.474868][T19627]  ? inode_permission+0xdd/0x5e0
[ 2144.479830][T19627]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 2144.484868][T19627]  vfs_mkdir+0x532/0x7e0
[ 2144.489206][T19627]  do_mkdirat+0x2a9/0x330
[ 2144.493567][T19627]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2144.498450][T19627]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2144.503854][T19627]  __x64_sys_mkdirat+0x115/0x170
[ 2144.508821][T19627]  do_syscall_64+0x38/0xb0
[ 2144.513281][T19627]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2144.519227][T19627] RIP: 0033:0x7f84d3e7b5e7
[ 2144.523750][T19627] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2144.543386][T19627] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2144.551813][T19627] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f84d3e7b5e7
06:45:07 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x3c, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2144.559810][T19627] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2144.567787][T19627] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2144.575952][T19627] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2144.584042][T19627] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2144.592047][T19627]  </TASK>
06:45:07 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 8)

06:45:07 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@default_permissions}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x800}}, {@default_permissions}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}, {@default_permissions}, {@default_permissions}]}}, 0x0, 0x0, 0x0)

06:45:07 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x1000000}}, 0x0, 0x0, 0x0)

[ 2144.628241][T19618] CPU: 0 PID: 19618 Comm: syz-executor.0 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2144.638199][T19618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2144.648278][T19618] Call Trace:
[ 2144.651578][T19618]  <TASK>
[ 2144.654609][T19618]  dump_stack_lvl+0x125/0x1b0
[ 2144.659333][T19618]  should_fail_ex+0x496/0x5b0
[ 2144.664053][T19618]  strncpy_from_user+0x38/0x300
[ 2144.668953][T19618]  getname_flags.part.0+0x93/0x4d0
[ 2144.674114][T19618]  __x64_sys_mkdirat+0x100/0x170
[ 2144.679117][T19618]  do_syscall_64+0x38/0xb0
[ 2144.683573][T19618]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2144.689608][T19618] RIP: 0033:0x7f546f27b5e7
[ 2144.690607][T19644] FAULT_INJECTION: forcing a failure.
[ 2144.690607][T19644] name failslab, interval 1, probability 0, space 0, times 0
[ 2144.694033][T19618] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2144.694060][T19618] RSP: 002b:00007f546ddfdee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2144.694086][T19618] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f546f27b5e7
[ 2144.743706][T19618] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[ 2144.751790][T19618] RBP: 0000000020000080 R08: 0000000000000000 R09: 0000000000000000
[ 2144.759788][T19618] R10: 0000000020000080 R11: 0000000000000246 R12: 00000000200000c0
[ 2144.767780][T19618] R13: 00007f546ddfdf40 R14: 0000000000000000 R15: 0000000020000100
[ 2144.775852][T19618]  </TASK>
[ 2144.794818][T19645] fuse: blksize only supported for fuseblk
[ 2144.796756][T19644] CPU: 0 PID: 19644 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2144.810565][T19644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2144.820733][T19644] Call Trace:
[ 2144.824028][T19644]  <TASK>
[ 2144.826981][T19644]  dump_stack_lvl+0x125/0x1b0
[ 2144.831711][T19644]  should_fail_ex+0x496/0x5b0
[ 2144.836435][T19644]  should_failslab+0x9/0x20
06:45:08 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 10)

06:45:08 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@default_permissions}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x800}}, {@default_permissions}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}, {@default_permissions}, {@default_permissions}]}}, 0x0, 0x0, 0x0)

06:45:08 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

[ 2144.840966][T19644]  kmem_cache_alloc+0x33a/0x3b0
[ 2144.845852][T19644]  jbd2__journal_start+0x190/0x690
[ 2144.851014][T19644]  ? __ext4_new_inode+0x2e51/0x5620
[ 2144.856344][T19644]  __ext4_journal_start_sb+0x40f/0x5c0
[ 2144.861841][T19644]  __ext4_new_inode+0x2e51/0x5620
[ 2144.866910][T19644]  ? ext4_mark_inode_used+0x14a0/0x14a0
[ 2144.869183][T19649] fuse: blksize only supported for fuseblk
[ 2144.872470][T19644]  ? __dquot_initialize+0x299/0xc40
[ 2144.872513][T19644]  ext4_mkdir+0x284/0xb70
[ 2144.887846][T19644]  ? generic_permission+0x230/0x6a0
06:45:08 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x3c, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2144.893083][T19644]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2144.898228][T19644]  ? security_inode_permission+0xd8/0x100
[ 2144.904086][T19644]  ? inode_permission+0xdd/0x5e0
[ 2144.909050][T19644]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 2144.914100][T19644]  vfs_mkdir+0x532/0x7e0
[ 2144.918366][T19644]  do_mkdirat+0x2a9/0x330
[ 2144.922751][T19644]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2144.927725][T19644]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2144.933210][T19644]  __x64_sys_mkdirat+0x115/0x170
[ 2144.938203][T19644]  do_syscall_64+0x38/0xb0
[ 2144.942743][T19644]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2144.948662][T19644] RIP: 0033:0x7f115b87b5e7
[ 2144.953083][T19644] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2144.973123][T19644] RSP: 002b:00007f115c552ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2144.981640][T19644] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f115b87b5e7
[ 2144.989718][T19644] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2144.998009][T19644] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2145.005999][T19644] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2145.013989][T19644] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2145.021979][T19644]  </TASK>
[ 2145.037968][T19651] FAULT_INJECTION: forcing a failure.
06:45:08 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x54, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x18, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2145.037968][T19651] name failslab, interval 1, probability 0, space 0, times 0
[ 2145.051084][T19651] CPU: 0 PID: 19651 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2145.061005][T19651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2145.071093][T19651] Call Trace:
[ 2145.074394][T19651]  <TASK>
[ 2145.077341][T19651]  dump_stack_lvl+0x125/0x1b0
[ 2145.077470][T19654] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
[ 2145.082042][T19651]  should_fail_ex+0x496/0x5b0
06:45:08 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 9)

[ 2145.082085][T19651]  ? __es_tree_search.isra.0+0x210/0x210
[ 2145.082125][T19651]  should_failslab+0x9/0x20
[ 2145.082151][T19651]  kmem_cache_alloc+0x69/0x3b0
[ 2145.082186][T19651]  ? lock_acquire+0x464/0x510
[ 2145.082222][T19651]  __es_insert_extent+0x741/0x1470
[ 2145.082255][T19651]  ? do_raw_write_lock+0x11e/0x3b0
[ 2145.082288][T19651]  ? do_raw_read_unlock+0xe0/0xe0
[ 2145.082323][T19651]  ext4_es_insert_extent+0x357/0xd00
[ 2145.090583][T19644] EXT4-fs error (device sda1) in __ext4_new_inode:1083: Out of memory
[ 2145.095033][T19651]  ? rcu_is_watching+0x12/0xb0
[ 2145.095064][T19651]  ? ext4_es_scan_clu+0x310/0x310
[ 2145.153186][T19651]  ? __ext4_handle_dirty_metadata+0x8e0/0x8e0
[ 2145.159304][T19651]  ? __es_find_extent_range+0x1cc/0x4c0
[ 2145.164895][T19651]  ? rcu_is_watching+0x12/0xb0
[ 2145.169751][T19651]  ext4_ext_map_blocks+0x1673/0x5b10
[ 2145.175054][T19651]  ? jbd2_journal_dirty_metadata+0x1c3/0xd50
[ 2145.181053][T19651]  ? ext4_inode_csum_set+0x294/0x360
[ 2145.186349][T19651]  ? ext4_ext_release+0x10/0x10
[ 2145.191263][T19651]  ? rcu_is_watching+0x12/0xb0
[ 2145.196031][T19651]  ? lock_acquire+0x464/0x510
[ 2145.200730][T19651]  ? lock_sync+0x190/0x190
[ 2145.205169][T19651]  ? lock_release+0x4bf/0x680
[ 2145.209868][T19651]  ? ext4_es_lookup_extent+0x4a5/0xbe0
[ 2145.215356][T19651]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2145.220841][T19651]  ? ext4_es_lookup_extent+0xc7/0xbe0
[ 2145.226247][T19651]  ext4_map_blocks+0x844/0x1770
[ 2145.231217][T19651]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2145.236443][T19651]  ? __brelse+0x88/0xa0
[ 2145.240638][T19651]  ext4_append+0x1fb/0x560
[ 2145.245087][T19651]  ? ext4_match+0x5d0/0x5d0
[ 2145.249603][T19651]  ? __dquot_initialize+0x299/0xc40
[ 2145.254898][T19651]  ext4_init_new_dir+0x220/0x4c0
[ 2145.260015][T19651]  ? ext4_init_dot_dotdot+0x560/0x560
[ 2145.265397][T19651]  ext4_mkdir+0x316/0xb70
[ 2145.269731][T19651]  ? generic_permission+0x230/0x6a0
[ 2145.274941][T19651]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2145.280060][T19651]  ? security_inode_permission+0xd8/0x100
[ 2145.285858][T19651]  ? inode_permission+0xdd/0x5e0
[ 2145.290845][T19651]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 2145.295883][T19651]  vfs_mkdir+0x532/0x7e0
[ 2145.300228][T19651]  do_mkdirat+0x2a9/0x330
[ 2145.304573][T19651]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2145.309439][T19651]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2145.314821][T19651]  __x64_sys_mkdirat+0x115/0x170
[ 2145.319773][T19651]  do_syscall_64+0x38/0xb0
[ 2145.324385][T19651]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2145.330340][T19651] RIP: 0033:0x7f84d3e7b5e7
[ 2145.334758][T19651] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2145.354642][T19651] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2145.363066][T19651] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f84d3e7b5e7
[ 2145.371051][T19651] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2145.379018][T19651] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2145.387017][T19651] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2145.395102][T19651] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2145.403087][T19651]  </TASK>
06:45:08 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@default_permissions}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x800}}, {@default_permissions}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x1000}}, {@default_permissions}, {@default_permissions}]}}, 0x0, 0x0, 0x0)

06:45:08 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x2000000}}, 0x0, 0x0, 0x0)

06:45:08 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x54, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x18, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2145.454440][T19658] FAULT_INJECTION: forcing a failure.
[ 2145.454440][T19658] name failslab, interval 1, probability 0, space 0, times 0
[ 2145.462958][T19651] fuse: Bad value for 'fd'
[ 2145.467505][T19658] CPU: 0 PID: 19658 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2145.481760][T19658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2145.491835][T19658] Call Trace:
[ 2145.495129][T19658]  <TASK>
[ 2145.498076][T19658]  dump_stack_lvl+0x125/0x1b0
[ 2145.502793][T19658]  should_fail_ex+0x496/0x5b0
[ 2145.507506][T19658]  should_failslab+0x9/0x20
[ 2145.512018][T19658]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2145.517591][T19658]  ? ext4_find_extent+0x958/0xce0
[ 2145.522636][T19658]  ? ext4_find_extent+0x958/0xce0
[ 2145.527678][T19658]  __kmalloc+0x4f/0x100
[ 2145.531882][T19658]  ext4_find_extent+0x958/0xce0
[ 2145.536769][T19658]  ? crypto_shash_update+0xd5/0x130
[ 2145.541991][T19658]  ext4_ext_map_blocks+0x26b/0x5b10
[ 2145.547212][T19658]  ? jbd2_journal_dirty_metadata+0x1c3/0xd50
[ 2145.553204][T19658]  ? ext4_inode_csum_set+0x294/0x360
[ 2145.558496][T19658]  ? ext4_ext_release+0x10/0x10
[ 2145.563364][T19658]  ? rcu_is_watching+0x12/0xb0
[ 2145.568218][T19658]  ? lock_acquire+0x464/0x510
[ 2145.572903][T19658]  ? lock_sync+0x190/0x190
[ 2145.577330][T19658]  ? lock_release+0x4bf/0x680
[ 2145.582013][T19658]  ? ext4_es_lookup_extent+0x4a5/0xbe0
[ 2145.587482][T19658]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2145.592862][T19658]  ? preempt_count_sub+0x150/0x150
[ 2145.597989][T19658]  ? rcu_is_watching+0x12/0xb0
[ 2145.602764][T19658]  ? ext4_es_lookup_extent+0xc7/0xbe0
[ 2145.608583][T19658]  ext4_map_blocks+0x844/0x1770
[ 2145.613441][T19658]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2145.618647][T19658]  ? __brelse+0x88/0xa0
[ 2145.622820][T19658]  ext4_append+0x1fb/0x560
[ 2145.627254][T19658]  ? ext4_match+0x5d0/0x5d0
[ 2145.631781][T19658]  ? __dquot_initialize+0x299/0xc40
[ 2145.636987][T19658]  ext4_init_new_dir+0x220/0x4c0
[ 2145.641930][T19658]  ? ext4_init_dot_dotdot+0x560/0x560
[ 2145.647310][T19658]  ext4_mkdir+0x316/0xb70
[ 2145.651644][T19658]  ? generic_permission+0x230/0x6a0
[ 2145.656855][T19658]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2145.661980][T19658]  ? security_inode_permission+0xd8/0x100
[ 2145.667737][T19658]  ? inode_permission+0xdd/0x5e0
[ 2145.672692][T19658]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 2145.677729][T19658]  vfs_mkdir+0x532/0x7e0
[ 2145.681983][T19658]  do_mkdirat+0x2a9/0x330
[ 2145.686326][T19658]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2145.691192][T19658]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2145.696582][T19658]  __x64_sys_mkdirat+0x115/0x170
[ 2145.701546][T19658]  do_syscall_64+0x38/0xb0
[ 2145.705979][T19658]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2145.711972][T19658] RIP: 0033:0x7f115b87b5e7
[ 2145.716384][T19658] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2145.736261][T19658] RSP: 002b:00007f115c552ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2145.744765][T19658] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f115b87b5e7
06:45:09 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 11)

06:45:09 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0002, &(0x7f0000000100), 0x0, 0x0, 0x0)

[ 2145.753032][T19658] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2145.761020][T19658] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2145.769165][T19658] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2145.777136][T19658] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2145.785145][T19658]  </TASK>
06:45:09 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
r1 = add_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
add_key$fscrypt_v1(&(0x7f0000000040), 0x0, 0x0, 0x0, r1)
request_key(&(0x7f0000000040)='pkcs7_test\x00', &(0x7f0000000080)={'syz', 0x2}, &(0x7f00000002c0)='.-\x00', r1)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000000000)='./file0/file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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", @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',subj_type=R&,\x00'], 0x0, 0x0, 0x0)
socket$inet6(0xa, 0x2, 0x9)
syz_genetlink_get_family_id$l2tp(&(0x7f00000000c0), 0xffffffffffffffff)

06:45:09 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x4000000}}, 0x0, 0x0, 0x0)

06:45:09 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0004, &(0x7f0000000100), 0x0, 0x0, 0x0)

[ 2145.830624][T19662] fuse: blksize only supported for fuseblk
[ 2145.845279][T19665] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
06:45:09 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 10)

06:45:09 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x54, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x18, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2145.940388][T19673] FAULT_INJECTION: forcing a failure.
[ 2145.940388][T19673] name failslab, interval 1, probability 0, space 0, times 0
[ 2145.953605][T19673] CPU: 1 PID: 19673 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2145.963532][T19673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2145.973612][T19673] Call Trace:
[ 2145.976909][T19673]  <TASK>
[ 2145.979859][T19673]  dump_stack_lvl+0x125/0x1b0
[ 2145.984668][T19673]  should_fail_ex+0x496/0x5b0
06:45:09 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xc0ed0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

[ 2145.986841][T19678] FAULT_INJECTION: forcing a failure.
[ 2145.986841][T19678] name failslab, interval 1, probability 0, space 0, times 0
[ 2145.989369][T19673]  ? __es_tree_search.isra.0+0x210/0x210
[ 2145.989412][T19673]  should_failslab+0x9/0x20
[ 2146.012316][T19673]  kmem_cache_alloc+0x69/0x3b0
[ 2146.017161][T19673]  ? lock_acquire+0x464/0x510
[ 2146.021884][T19673]  __es_insert_extent+0x741/0x1470
[ 2146.027046][T19673]  ? do_raw_write_lock+0x11e/0x3b0
[ 2146.032195][T19673]  ? do_raw_read_unlock+0xe0/0xe0
06:45:09 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x8cffffff}}, 0x0, 0x0, 0x0)

[ 2146.037280][T19673]  ext4_es_insert_extent+0x357/0xd00
[ 2146.042608][T19673]  ? rcu_is_watching+0x12/0xb0
[ 2146.047401][T19673]  ? ext4_es_scan_clu+0x310/0x310
[ 2146.052461][T19673]  ? __ext4_handle_dirty_metadata+0x8e0/0x8e0
[ 2146.058566][T19673]  ? __es_find_extent_range+0x1cc/0x4c0
[ 2146.060905][T19681] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
[ 2146.064216][T19673]  ? rcu_is_watching+0x12/0xb0
[ 2146.077062][T19673]  ext4_ext_map_blocks+0x1673/0x5b10
[ 2146.082388][T19673]  ? jbd2_journal_dirty_metadata+0x1c3/0xd50
06:45:09 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x60, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x24, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2146.088403][T19673]  ? ext4_inode_csum_set+0x294/0x360
[ 2146.093727][T19673]  ? ext4_ext_release+0x10/0x10
[ 2146.098606][T19673]  ? rcu_is_watching+0x12/0xb0
[ 2146.103391][T19673]  ? lock_acquire+0x464/0x510
[ 2146.108104][T19673]  ? lock_sync+0x190/0x190
[ 2146.112552][T19673]  ? lock_release+0x4bf/0x680
[ 2146.117258][T19673]  ? ext4_es_lookup_extent+0x4a5/0xbe0
[ 2146.122750][T19673]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2146.128167][T19673]  ? ext4_es_lookup_extent+0xc7/0xbe0
[ 2146.133580][T19673]  ext4_map_blocks+0x844/0x1770
06:45:09 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0xf6ffffff}}, 0x0, 0x0, 0x0)

[ 2146.138485][T19673]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2146.143893][T19673]  ? __brelse+0x88/0xa0
[ 2146.148088][T19673]  ext4_append+0x1fb/0x560
[ 2146.152550][T19673]  ? ext4_match+0x5d0/0x5d0
[ 2146.157194][T19673]  ? __dquot_initialize+0x299/0xc40
[ 2146.162434][T19673]  ext4_init_new_dir+0x220/0x4c0
[ 2146.164189][T19687] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
[ 2146.167414][T19673]  ? ext4_init_dot_dotdot+0x560/0x560
[ 2146.167449][T19673]  ext4_mkdir+0x316/0xb70
[ 2146.167473][T19673]  ? generic_permission+0x230/0x6a0
[ 2146.190536][T19673]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2146.195674][T19673]  ? security_inode_permission+0xd8/0x100
[ 2146.201773][T19673]  ? inode_permission+0xdd/0x5e0
[ 2146.206740][T19673]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 2146.208868][T19687] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 2146.211784][T19673]  vfs_mkdir+0x532/0x7e0
[ 2146.211822][T19673]  do_mkdirat+0x2a9/0x330
[ 2146.211853][T19673]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2146.211885][T19673]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2146.211916][T19673]  __x64_sys_mkdirat+0x115/0x170
[ 2146.211950][T19673]  do_syscall_64+0x38/0xb0
[ 2146.211988][T19673]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2146.212027][T19673] RIP: 0033:0x7f115b87b5e7
[ 2146.212047][T19673] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2146.212072][T19673] RSP: 002b:00007f115c552ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
06:45:09 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 11)

[ 2146.212096][T19673] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f115b87b5e7
[ 2146.212113][T19673] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2146.212129][T19673] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2146.212144][T19673] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2146.212160][T19673] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2146.212185][T19673]  </TASK>
[ 2146.222300][T19688] fuse: Bad value for 'fd'
[ 2146.329167][T19678] CPU: 0 PID: 19678 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2146.347252][T19678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2146.357517][T19678] Call Trace:
[ 2146.360899][T19678]  <TASK>
[ 2146.363842][T19678]  dump_stack_lvl+0x125/0x1b0
[ 2146.368561][T19678]  should_fail_ex+0x496/0x5b0
[ 2146.373296][T19678]  should_failslab+0x9/0x20
[ 2146.377829][T19678]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2146.383336][T19678]  ? ext4_find_extent+0x958/0xce0
[ 2146.388568][T19678]  ? ext4_find_extent+0x958/0xce0
[ 2146.393739][T19678]  __kmalloc+0x4f/0x100
[ 2146.397935][T19678]  ext4_find_extent+0x958/0xce0
[ 2146.402822][T19678]  ext4_ext_map_blocks+0x26b/0x5b10
[ 2146.408058][T19678]  ? ext4_ext_map_blocks+0x6d7/0x5b10
[ 2146.413464][T19678]  ? __kmem_cache_free+0xb8/0x2f0
[ 2146.418527][T19678]  ? rcu_is_watching+0x12/0xb0
[ 2146.423318][T19678]  ? ext4_ext_release+0x10/0x10
[ 2146.423748][T19692] FAULT_INJECTION: forcing a failure.
[ 2146.423748][T19692] name failslab, interval 1, probability 0, space 0, times 0
[ 2146.428183][T19678]  ? rcu_is_watching+0x12/0xb0
[ 2146.428212][T19678]  ? lock_sync+0x190/0x190
[ 2146.449967][T19678]  ? lock_release+0x4bf/0x680
[ 2146.454765][T19678]  ? ext4_es_lookup_extent+0x4a5/0xbe0
[ 2146.460262][T19678]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2146.465658][T19678]  ? preempt_count_sub+0x150/0x150
[ 2146.470797][T19678]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2146.476806][T19678]  ? down_write_killable_nested+0x250/0x250
[ 2146.482727][T19678]  ? ext4_es_lookup_extent+0xc7/0xbe0
[ 2146.488147][T19678]  ext4_map_blocks+0x619/0x1770
[ 2146.493025][T19678]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2146.498288][T19678]  ext4_getblk+0x17f/0x810
[ 2146.502723][T19678]  ? ext4_iomap_overwrite_begin+0xb0/0xb0
[ 2146.508454][T19678]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2146.513671][T19678]  ext4_bread+0x2c/0x190
[ 2146.517925][T19678]  ext4_append+0x26d/0x560
[ 2146.522361][T19678]  ? ext4_match+0x5d0/0x5d0
[ 2146.526880][T19678]  ? __dquot_initialize+0x299/0xc40
[ 2146.532181][T19678]  ext4_init_new_dir+0x220/0x4c0
[ 2146.537128][T19678]  ? ext4_init_dot_dotdot+0x560/0x560
[ 2146.542512][T19678]  ext4_mkdir+0x316/0xb70
[ 2146.546858][T19678]  ? generic_permission+0x230/0x6a0
[ 2146.552089][T19678]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2146.557212][T19678]  ? security_inode_permission+0xd8/0x100
[ 2146.562954][T19678]  ? inode_permission+0xdd/0x5e0
[ 2146.568164][T19678]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 2146.573204][T19678]  vfs_mkdir+0x532/0x7e0
[ 2146.577462][T19678]  do_mkdirat+0x2a9/0x330
[ 2146.581825][T19678]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2146.586695][T19678]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2146.592085][T19678]  __x64_sys_mkdirat+0x115/0x170
[ 2146.597042][T19678]  do_syscall_64+0x38/0xb0
[ 2146.601485][T19678]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2146.607404][T19678] RIP: 0033:0x7f84d3e7b5e7
[ 2146.611826][T19678] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2146.631448][T19678] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2146.639873][T19678] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f84d3e7b5e7
[ 2146.647858][T19678] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2146.655853][T19678] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2146.663842][T19678] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2146.671878][T19678] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2146.679879][T19678]  </TASK>
[ 2146.682939][T19692] CPU: 1 PID: 19692 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2146.692858][T19692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2146.702931][T19692] Call Trace:
[ 2146.706221][T19692]  <TASK>
[ 2146.709174][T19692]  dump_stack_lvl+0x125/0x1b0
[ 2146.713886][T19692]  should_fail_ex+0x496/0x5b0
[ 2146.718582][T19692]  should_failslab+0x9/0x20
[ 2146.723088][T19692]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2146.728564][T19692]  ? ext4_find_extent+0x958/0xce0
[ 2146.733598][T19692]  ? ext4_find_extent+0x958/0xce0
[ 2146.738630][T19692]  __kmalloc+0x4f/0x100
[ 2146.742789][T19692]  ext4_find_extent+0x958/0xce0
[ 2146.747740][T19692]  ext4_ext_map_blocks+0x26b/0x5b10
[ 2146.752965][T19692]  ? ext4_ext_map_blocks+0x6d7/0x5b10
[ 2146.758345][T19692]  ? __kmem_cache_free+0xb8/0x2f0
[ 2146.763473][T19692]  ? rcu_is_watching+0x12/0xb0
[ 2146.768239][T19692]  ? ext4_ext_release+0x10/0x10
[ 2146.773097][T19692]  ? rcu_is_watching+0x12/0xb0
[ 2146.777861][T19692]  ? lock_sync+0x190/0x190
[ 2146.782287][T19692]  ? lock_release+0x4bf/0x680
[ 2146.786970][T19692]  ? ext4_es_lookup_extent+0x4a5/0xbe0
[ 2146.792437][T19692]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2146.797819][T19692]  ? preempt_count_sub+0x150/0x150
[ 2146.802941][T19692]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2146.808977][T19692]  ? down_write_killable_nested+0x250/0x250
[ 2146.814880][T19692]  ? ext4_es_lookup_extent+0xc7/0xbe0
[ 2146.820281][T19692]  ext4_map_blocks+0x619/0x1770
[ 2146.825138][T19692]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2146.830350][T19692]  ext4_getblk+0x17f/0x810
[ 2146.834773][T19692]  ? ext4_iomap_overwrite_begin+0xb0/0xb0
[ 2146.840507][T19692]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2146.845715][T19692]  ext4_bread+0x2c/0x190
[ 2146.849962][T19692]  ext4_append+0x26d/0x560
[ 2146.854392][T19692]  ? ext4_match+0x5d0/0x5d0
[ 2146.858906][T19692]  ? __dquot_initialize+0x299/0xc40
[ 2146.864112][T19692]  ext4_init_new_dir+0x220/0x4c0
[ 2146.869059][T19692]  ? ext4_init_dot_dotdot+0x560/0x560
[ 2146.874433][T19692]  ext4_mkdir+0x316/0xb70
[ 2146.878765][T19692]  ? generic_permission+0x230/0x6a0
[ 2146.883973][T19692]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2146.889084][T19692]  ? security_inode_permission+0xd8/0x100
[ 2146.894899][T19692]  ? inode_permission+0xdd/0x5e0
[ 2146.899843][T19692]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 2146.904875][T19692]  vfs_mkdir+0x532/0x7e0
[ 2146.909127][T19692]  do_mkdirat+0x2a9/0x330
[ 2146.913466][T19692]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2146.918415][T19692]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2146.923796][T19692]  __x64_sys_mkdirat+0x115/0x170
[ 2146.928744][T19692]  do_syscall_64+0x38/0xb0
[ 2146.933176][T19692]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2146.939087][T19692] RIP: 0033:0x7f115b87b5e7
[ 2146.943503][T19692] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2146.963121][T19692] RSP: 002b:00007f115c552ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2146.971542][T19692] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f115b87b5e7
[ 2146.979513][T19692] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2146.987488][T19692] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
06:45:10 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 12)

06:45:10 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 12)

06:45:10 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x54, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x18, 0x2, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:10 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0xffffff8c}}, 0x0, 0x0, 0x0)

06:45:10 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
r1 = add_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
add_key$fscrypt_v1(&(0x7f0000000040), 0x0, 0x0, 0x0, r1) (async)
request_key(&(0x7f0000000040)='pkcs7_test\x00', &(0x7f0000000080)={'syz', 0x2}, &(0x7f00000002c0)='.-\x00', r1) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000000000)='./file0/file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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", @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',subj_type=R&,\x00'], 0x0, 0x0, 0x0) (async)
socket$inet6(0xa, 0x2, 0x9) (async)
syz_genetlink_get_family_id$l2tp(&(0x7f00000000c0), 0xffffffffffffffff)

06:45:10 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x2}}, 0x0, 0x0, 0x0)

[ 2146.995458][T19692] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2147.003432][T19692] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2147.011498][T19692]  </TASK>
06:45:10 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0xfffffff6}}, 0x0, 0x0, 0x0)

06:45:10 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x4}}, 0x0, 0x0, 0x0)

[ 2147.088362][T19702] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 2147.105303][T19705] FAULT_INJECTION: forcing a failure.
[ 2147.105303][T19705] name failslab, interval 1, probability 0, space 0, times 0
[ 2147.122878][T19706] FAULT_INJECTION: forcing a failure.
[ 2147.122878][T19706] name failslab, interval 1, probability 0, space 0, times 0
06:45:10 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x54, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x18, 0x2, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2147.153447][T19705] CPU: 0 PID: 19705 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2147.163400][T19705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2147.173564][T19705] Call Trace:
[ 2147.176870][T19705]  <TASK>
[ 2147.179825][T19705]  dump_stack_lvl+0x125/0x1b0
[ 2147.184553][T19705]  should_fail_ex+0x496/0x5b0
[ 2147.189294][T19705]  should_failslab+0x9/0x20
[ 2147.193919][T19705]  kmem_cache_alloc+0x33a/0x3b0
[ 2147.198811][T19705]  ext4_mb_new_blocks+0x8f6/0x4af0
06:45:10 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x100000000000000}}, 0x0, 0x0, 0x0)

06:45:10 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x1000000}}, 0x0, 0x0, 0x0)

[ 2147.203966][T19705]  ? kasan_set_track+0x25/0x30
[ 2147.208765][T19705]  ? ext4_cache_extents+0x68/0x2d0
[ 2147.213909][T19705]  ? ext4_discard_preallocations+0xfa0/0xfa0
[ 2147.219921][T19705]  ? ext4_ext_search_right+0x2c7/0xb80
[ 2147.225413][T19705]  ? ext4_inode_to_goal_block+0x348/0x450
[ 2147.231166][T19705]  ext4_ext_map_blocks+0x1b30/0x5b10
[ 2147.236487][T19705]  ? ext4_ext_map_blocks+0x6d7/0x5b10
[ 2147.241889][T19705]  ? __kmem_cache_free+0xb8/0x2f0
[ 2147.246954][T19705]  ? rcu_is_watching+0x12/0xb0
06:45:10 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x200000000000000}}, 0x0, 0x0, 0x0)

[ 2147.251834][T19705]  ? ext4_ext_release+0x10/0x10
[ 2147.256713][T19705]  ? rcu_is_watching+0x12/0xb0
[ 2147.261499][T19705]  ? lock_sync+0x190/0x190
[ 2147.265971][T19705]  ? lock_release+0x4bf/0x680
[ 2147.270698][T19705]  ? ext4_es_lookup_extent+0x4a5/0xbe0
[ 2147.276190][T19705]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2147.281687][T19705]  ? preempt_count_sub+0x150/0x150
[ 2147.286837][T19705]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2147.292943][T19705]  ? down_write_killable_nested+0x250/0x250
[ 2147.298873][T19705]  ? ext4_es_lookup_extent+0xc7/0xbe0
[ 2147.304286][T19705]  ext4_map_blocks+0x619/0x1770
[ 2147.309175][T19705]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2147.314416][T19705]  ext4_getblk+0x17f/0x810
[ 2147.318857][T19705]  ? ext4_iomap_overwrite_begin+0xb0/0xb0
[ 2147.325128][T19705]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2147.330368][T19705]  ext4_bread+0x2c/0x190
[ 2147.334649][T19705]  ext4_append+0x26d/0x560
[ 2147.339100][T19705]  ? ext4_match+0x5d0/0x5d0
[ 2147.343638][T19705]  ? __dquot_initialize+0x299/0xc40
[ 2147.348864][T19705]  ext4_init_new_dir+0x220/0x4c0
[ 2147.353837][T19705]  ? ext4_init_dot_dotdot+0x560/0x560
[ 2147.359250][T19705]  ext4_mkdir+0x316/0xb70
[ 2147.363608][T19705]  ? generic_permission+0x230/0x6a0
[ 2147.368924][T19705]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2147.374341][T19705]  ? security_inode_permission+0xd8/0x100
[ 2147.380122][T19705]  ? inode_permission+0xdd/0x5e0
[ 2147.385114][T19705]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 2147.390437][T19705]  vfs_mkdir+0x532/0x7e0
[ 2147.394718][T19705]  do_mkdirat+0x2a9/0x330
[ 2147.399343][T19705]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2147.404225][T19705]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2147.409619][T19705]  __x64_sys_mkdirat+0x115/0x170
[ 2147.414579][T19705]  do_syscall_64+0x38/0xb0
[ 2147.419020][T19705]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2147.424946][T19705] RIP: 0033:0x7f115b87b5e7
[ 2147.429377][T19705] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2147.453225][T19705] RSP: 002b:00007f115c552ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2147.462925][T19705] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f115b87b5e7
[ 2147.471209][T19705] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2147.479799][T19705] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2147.488693][T19705] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2147.497124][T19705] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2147.506411][T19705]  </TASK>
[ 2147.509437][T19706] CPU: 1 PID: 19706 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2147.519356][T19706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2147.529413][T19706] Call Trace:
[ 2147.532688][T19706]  <TASK>
[ 2147.535619][T19706]  dump_stack_lvl+0x125/0x1b0
[ 2147.540314][T19706]  should_fail_ex+0x496/0x5b0
[ 2147.545009][T19706]  should_failslab+0x9/0x20
[ 2147.549517][T19706]  kmem_cache_alloc+0x33a/0x3b0
[ 2147.554380][T19706]  ext4_mb_new_blocks+0x8f6/0x4af0
[ 2147.559516][T19706]  ? kasan_set_track+0x25/0x30
[ 2147.564323][T19706]  ? ext4_cache_extents+0x68/0x2d0
[ 2147.569454][T19706]  ? ext4_discard_preallocations+0xfa0/0xfa0
[ 2147.575449][T19706]  ? ext4_ext_search_right+0x2c7/0xb80
[ 2147.580919][T19706]  ? ext4_inode_to_goal_block+0x348/0x450
[ 2147.586647][T19706]  ext4_ext_map_blocks+0x1b30/0x5b10
[ 2147.591946][T19706]  ? ext4_ext_map_blocks+0x6d7/0x5b10
[ 2147.597330][T19706]  ? __kmem_cache_free+0xb8/0x2f0
[ 2147.602371][T19706]  ? rcu_is_watching+0x12/0xb0
[ 2147.607138][T19706]  ? ext4_ext_release+0x10/0x10
[ 2147.611998][T19706]  ? rcu_is_watching+0x12/0xb0
[ 2147.616766][T19706]  ? lock_sync+0x190/0x190
[ 2147.621193][T19706]  ? lock_release+0x4bf/0x680
[ 2147.626144][T19706]  ? ext4_es_lookup_extent+0x4a5/0xbe0
[ 2147.631703][T19706]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2147.637088][T19706]  ? preempt_count_sub+0x150/0x150
[ 2147.642213][T19706]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2147.648205][T19706]  ? down_write_killable_nested+0x250/0x250
[ 2147.654107][T19706]  ? ext4_es_lookup_extent+0xc7/0xbe0
[ 2147.659495][T19706]  ext4_map_blocks+0x619/0x1770
[ 2147.664371][T19706]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2147.669582][T19706]  ext4_getblk+0x17f/0x810
[ 2147.674007][T19706]  ? ext4_iomap_overwrite_begin+0xb0/0xb0
[ 2147.679732][T19706]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2147.684940][T19706]  ext4_bread+0x2c/0x190
[ 2147.689185][T19706]  ext4_append+0x26d/0x560
[ 2147.693615][T19706]  ? ext4_match+0x5d0/0x5d0
[ 2147.699343][T19706]  ? __dquot_initialize+0x299/0xc40
[ 2147.704547][T19706]  ext4_init_new_dir+0x220/0x4c0
[ 2147.709494][T19706]  ? ext4_init_dot_dotdot+0x560/0x560
[ 2147.714887][T19706]  ext4_mkdir+0x316/0xb70
[ 2147.719222][T19706]  ? generic_permission+0x230/0x6a0
[ 2147.724427][T19706]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2147.729544][T19706]  ? security_inode_permission+0xd8/0x100
[ 2147.735289][T19706]  ? inode_permission+0xdd/0x5e0
[ 2147.740233][T19706]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 2147.745270][T19706]  vfs_mkdir+0x532/0x7e0
[ 2147.749527][T19706]  do_mkdirat+0x2a9/0x330
[ 2147.753867][T19706]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2147.758729][T19706]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2147.764204][T19706]  __x64_sys_mkdirat+0x115/0x170
[ 2147.769167][T19706]  do_syscall_64+0x38/0xb0
[ 2147.773601][T19706]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2147.779553][T19706] RIP: 0033:0x7f84d3e7b5e7
[ 2147.783970][T19706] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2147.803670][T19706] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2147.812092][T19706] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f84d3e7b5e7
[ 2147.820060][T19706] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2147.828032][T19706] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2147.836001][T19706] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2147.843973][T19706] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2147.851985][T19706]  </TASK>
06:45:11 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 13)

06:45:11 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 13)

06:45:11 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x2000000}}, 0x0, 0x0, 0x0)

06:45:11 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x400000000000000}}, 0x0, 0x0, 0x0)

06:45:11 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
r1 = add_key(&(0x7f0000000140)='cifs.spnego\x00', &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
add_key$fscrypt_v1(&(0x7f0000000040), 0x0, 0x0, 0x0, r1) (async, rerun: 32)
request_key(&(0x7f0000000040)='pkcs7_test\x00', &(0x7f0000000080)={'syz', 0x2}, &(0x7f00000002c0)='.-\x00', r1) (rerun: 32)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000000000)='./file0/file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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", @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',subj_type=R&,\x00'], 0x0, 0x0, 0x0)
socket$inet6(0xa, 0x2, 0x9)
syz_genetlink_get_family_id$l2tp(&(0x7f00000000c0), 0xffffffffffffffff)

06:45:11 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x54, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x18, 0x2, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2147.937497][T19725] FAULT_INJECTION: forcing a failure.
[ 2147.937497][T19725] name failslab, interval 1, probability 0, space 0, times 0
[ 2147.975922][T19725] CPU: 0 PID: 19725 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
06:45:11 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x8cffffff00000000}}, 0x0, 0x0, 0x0)

06:45:11 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x4000000}}, 0x0, 0x0, 0x0)

[ 2147.985892][T19725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2147.995978][T19725] Call Trace:
[ 2147.999275][T19725]  <TASK>
[ 2148.002218][T19725]  dump_stack_lvl+0x125/0x1b0
[ 2148.006934][T19725]  should_fail_ex+0x496/0x5b0
[ 2148.011658][T19725]  should_failslab+0x9/0x20
[ 2148.016187][T19725]  kmem_cache_alloc+0x33a/0x3b0
[ 2148.021110][T19725]  ext4_mb_new_blocks+0x259b/0x4af0
[ 2148.026332][T19725]  ? kasan_set_track+0x25/0x30
[ 2148.031109][T19725]  ? ext4_cache_extents+0x68/0x2d0
[ 2148.036225][T19725]  ? ext4_discard_preallocations+0xfa0/0xfa0
[ 2148.042213][T19725]  ? ext4_ext_search_right+0x2c7/0xb80
[ 2148.047678][T19725]  ? ext4_inode_to_goal_block+0x348/0x450
[ 2148.053406][T19725]  ext4_ext_map_blocks+0x1b30/0x5b10
[ 2148.058706][T19725]  ? ext4_ext_map_blocks+0x6d7/0x5b10
[ 2148.064084][T19725]  ? __kmem_cache_free+0xb8/0x2f0
[ 2148.069129][T19725]  ? rcu_is_watching+0x12/0xb0
[ 2148.073895][T19725]  ? ext4_ext_release+0x10/0x10
[ 2148.078751][T19725]  ? rcu_is_watching+0x12/0xb0
[ 2148.083521][T19725]  ? lock_sync+0x190/0x190
[ 2148.087952][T19725]  ? lock_release+0x4bf/0x680
[ 2148.092637][T19725]  ? ext4_es_lookup_extent+0x4a5/0xbe0
[ 2148.098113][T19725]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2148.103495][T19725]  ? preempt_count_sub+0x150/0x150
[ 2148.108637][T19725]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2148.114628][T19725]  ? down_write_killable_nested+0x250/0x250
[ 2148.120634][T19725]  ? ext4_es_lookup_extent+0xc7/0xbe0
[ 2148.126016][T19725]  ext4_map_blocks+0x619/0x1770
[ 2148.130875][T19725]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2148.136079][T19725]  ext4_getblk+0x17f/0x810
[ 2148.140502][T19725]  ? ext4_iomap_overwrite_begin+0xb0/0xb0
[ 2148.146311][T19725]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2148.151514][T19725]  ext4_bread+0x2c/0x190
[ 2148.155756][T19725]  ext4_append+0x26d/0x560
[ 2148.160184][T19725]  ? ext4_match+0x5d0/0x5d0
[ 2148.164693][T19725]  ? __dquot_initialize+0x299/0xc40
[ 2148.169902][T19725]  ext4_init_new_dir+0x220/0x4c0
[ 2148.174842][T19725]  ? ext4_init_dot_dotdot+0x560/0x560
[ 2148.180248][T19725]  ext4_mkdir+0x316/0xb70
[ 2148.184592][T19725]  ? generic_permission+0x230/0x6a0
[ 2148.189971][T19725]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2148.195080][T19725]  ? security_inode_permission+0xd8/0x100
[ 2148.200828][T19725]  ? inode_permission+0xdd/0x5e0
[ 2148.205771][T19725]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 2148.210802][T19725]  vfs_mkdir+0x532/0x7e0
[ 2148.215054][T19725]  do_mkdirat+0x2a9/0x330
[ 2148.219391][T19725]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2148.224252][T19725]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2148.229632][T19725]  __x64_sys_mkdirat+0x115/0x170
[ 2148.234581][T19725]  do_syscall_64+0x38/0xb0
[ 2148.239013][T19725]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2148.244928][T19725] RIP: 0033:0x7f84d3e7b5e7
[ 2148.249346][T19725] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2148.269047][T19725] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2148.277463][T19725] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f84d3e7b5e7
06:45:11 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x60, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x24, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2148.285442][T19725] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2148.293688][T19725] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2148.301660][T19725] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2148.309630][T19725] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2148.317695][T19725]  </TASK>
06:45:11 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0xf6ffffff00000000}}, 0x0, 0x0, 0x0)

06:45:11 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 14)

06:45:11 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x54, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_TUPLE={0x24, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2148.359430][T19730] FAULT_INJECTION: forcing a failure.
[ 2148.359430][T19730] name failslab, interval 1, probability 0, space 0, times 0
[ 2148.413889][T19730] CPU: 1 PID: 19730 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2148.423853][T19730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2148.433930][T19730] Call Trace:
[ 2148.437227][T19730]  <TASK>
[ 2148.440171][T19730]  dump_stack_lvl+0x125/0x1b0
[ 2148.444889][T19730]  should_fail_ex+0x496/0x5b0
[ 2148.449606][T19730]  should_failslab+0x9/0x20
[ 2148.454136][T19730]  kmem_cache_alloc+0x33a/0x3b0
[ 2148.459067][T19730]  ext4_mb_new_blocks+0x259b/0x4af0
06:45:11 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0xffffffff00000000}}, 0x0, 0x0, 0x0)

[ 2148.464311][T19730]  ? kasan_set_track+0x25/0x30
[ 2148.469127][T19730]  ? ext4_cache_extents+0x68/0x2d0
[ 2148.474266][T19730]  ? ext4_discard_preallocations+0xfa0/0xfa0
[ 2148.480277][T19730]  ? ext4_ext_search_right+0x2c7/0xb80
[ 2148.485769][T19730]  ? ext4_inode_to_goal_block+0x348/0x450
[ 2148.491528][T19730]  ext4_ext_map_blocks+0x1b30/0x5b10
[ 2148.496865][T19730]  ? ext4_ext_map_blocks+0x6d7/0x5b10
[ 2148.502274][T19730]  ? __kmem_cache_free+0xb8/0x2f0
[ 2148.507342][T19730]  ? rcu_is_watching+0x12/0xb0
[ 2148.512134][T19730]  ? ext4_ext_release+0x10/0x10
[ 2148.517020][T19730]  ? rcu_is_watching+0x12/0xb0
[ 2148.521815][T19730]  ? lock_sync+0x190/0x190
[ 2148.526243][T19730]  ? lock_release+0x4bf/0x680
[ 2148.530924][T19730]  ? ext4_es_lookup_extent+0x4a5/0xbe0
[ 2148.536388][T19730]  ? reacquire_held_locks+0x4b0/0x4b0
[ 2148.541771][T19730]  ? preempt_count_sub+0x150/0x150
[ 2148.546892][T19730]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2148.552883][T19730]  ? down_write_killable_nested+0x250/0x250
[ 2148.558781][T19730]  ? ext4_es_lookup_extent+0xc7/0xbe0
[ 2148.564168][T19730]  ext4_map_blocks+0x619/0x1770
[ 2148.569028][T19730]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2148.574240][T19730]  ext4_getblk+0x17f/0x810
[ 2148.578664][T19730]  ? ext4_iomap_overwrite_begin+0xb0/0xb0
[ 2148.584388][T19730]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2148.589604][T19730]  ext4_bread+0x2c/0x190
[ 2148.593850][T19730]  ext4_append+0x26d/0x560
[ 2148.599238][T19730]  ? ext4_match+0x5d0/0x5d0
[ 2148.603765][T19730]  ? __dquot_initialize+0x299/0xc40
[ 2148.608970][T19730]  ext4_init_new_dir+0x220/0x4c0
[ 2148.613913][T19730]  ? ext4_init_dot_dotdot+0x560/0x560
[ 2148.619289][T19730]  ext4_mkdir+0x316/0xb70
[ 2148.623716][T19730]  ? generic_permission+0x230/0x6a0
[ 2148.629009][T19730]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2148.634120][T19730]  ? security_inode_permission+0xd8/0x100
[ 2148.639850][T19730]  ? inode_permission+0xdd/0x5e0
[ 2148.644791][T19730]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 2148.649821][T19730]  vfs_mkdir+0x532/0x7e0
[ 2148.654085][T19730]  do_mkdirat+0x2a9/0x330
[ 2148.658432][T19730]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2148.663293][T19730]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2148.668674][T19730]  __x64_sys_mkdirat+0x115/0x170
[ 2148.673624][T19730]  do_syscall_64+0x38/0xb0
[ 2148.678058][T19730]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2148.683968][T19730] RIP: 0033:0x7f115b87b5e7
[ 2148.688382][T19730] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2148.708551][T19730] RSP: 002b:00007f115c552ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2148.716982][T19730] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f115b87b5e7
[ 2148.725143][T19730] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2148.733128][T19730] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2148.741191][T19730] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2148.749264][T19730] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2148.757256][T19730]  </TASK>
06:45:12 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 14)

06:45:12 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x54, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_TUPLE={0x24, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:12 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x8cffffff}}, 0x0, 0x0, 0x0)

[ 2148.790194][T19751] FAULT_INJECTION: forcing a failure.
[ 2148.790194][T19751] name failslab, interval 1, probability 0, space 0, times 0
[ 2148.804979][T19751] CPU: 1 PID: 19751 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2148.814919][T19751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2148.825000][T19751] Call Trace:
[ 2148.828297][T19751]  <TASK>
[ 2148.831242][T19751]  dump_stack_lvl+0x125/0x1b0
[ 2148.835961][T19751]  should_fail_ex+0x496/0x5b0
[ 2148.840677][T19751]  ? __es_tree_search.isra.0+0x210/0x210
[ 2148.847301][T19751]  should_failslab+0x9/0x20
[ 2148.851839][T19751]  kmem_cache_alloc+0x69/0x3b0
[ 2148.856639][T19751]  ? lock_acquire+0x464/0x510
[ 2148.861358][T19751]  __es_insert_extent+0x741/0x1470
[ 2148.866517][T19751]  ext4_es_insert_extent+0x357/0xd00
[ 2148.871848][T19751]  ? ext4_es_scan_clu+0x310/0x310
[ 2148.876918][T19751]  ? down_write_killable_nested+0x250/0x250
[ 2148.877601][T19756] FAULT_INJECTION: forcing a failure.
[ 2148.877601][T19756] name failslab, interval 1, probability 0, space 0, times 0
[ 2148.882821][T19751]  ? ext4_es_lookup_extent+0xc7/0xbe0
[ 2148.882868][T19751]  ext4_map_blocks+0xa82/0x1770
[ 2148.882899][T19751]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2148.910966][T19751]  ext4_getblk+0x17f/0x810
[ 2148.915400][T19751]  ? ext4_iomap_overwrite_begin+0xb0/0xb0
[ 2148.921128][T19751]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2148.926430][T19751]  ext4_bread+0x2c/0x190
[ 2148.930681][T19751]  ext4_append+0x26d/0x560
[ 2148.935116][T19751]  ? ext4_match+0x5d0/0x5d0
[ 2148.939721][T19751]  ? __dquot_initialize+0x299/0xc40
[ 2148.944934][T19751]  ext4_init_new_dir+0x220/0x4c0
[ 2148.949881][T19751]  ? ext4_init_dot_dotdot+0x560/0x560
[ 2148.955264][T19751]  ext4_mkdir+0x316/0xb70
[ 2148.959604][T19751]  ? generic_permission+0x230/0x6a0
[ 2148.964824][T19751]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2148.969941][T19751]  ? security_inode_permission+0xd8/0x100
[ 2148.975684][T19751]  ? inode_permission+0xdd/0x5e0
[ 2148.980633][T19751]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 2148.985676][T19751]  vfs_mkdir+0x532/0x7e0
[ 2148.989935][T19751]  do_mkdirat+0x2a9/0x330
[ 2148.994285][T19751]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2148.999168][T19751]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2149.004561][T19751]  __x64_sys_mkdirat+0x115/0x170
[ 2149.009519][T19751]  do_syscall_64+0x38/0xb0
[ 2149.013955][T19751]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2149.019963][T19751] RIP: 0033:0x7f84d3e7b5e7
[ 2149.024384][T19751] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2149.044103][T19751] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2149.052530][T19751] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f84d3e7b5e7
[ 2149.060505][T19751] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2149.068488][T19751] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2149.076465][T19751] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2149.084442][T19751] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2149.092427][T19751]  </TASK>
[ 2149.095470][T19756] CPU: 0 PID: 19756 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2149.105404][T19756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2149.115474][T19756] Call Trace:
[ 2149.118756][T19756]  <TASK>
[ 2149.121689][T19756]  dump_stack_lvl+0x125/0x1b0
[ 2149.127253][T19756]  should_fail_ex+0x496/0x5b0
[ 2149.131951][T19756]  ? __es_tree_search.isra.0+0x210/0x210
[ 2149.137597][T19756]  should_failslab+0x9/0x20
[ 2149.142104][T19756]  kmem_cache_alloc+0x69/0x3b0
[ 2149.146880][T19756]  ? lock_acquire+0x464/0x510
[ 2149.151569][T19756]  __es_insert_extent+0x741/0x1470
[ 2149.156909][T19756]  ext4_es_insert_extent+0x357/0xd00
[ 2149.162215][T19756]  ? ext4_es_scan_clu+0x310/0x310
[ 2149.167358][T19756]  ? down_write_killable_nested+0x250/0x250
[ 2149.173268][T19756]  ? ext4_es_lookup_extent+0xc7/0xbe0
[ 2149.178672][T19756]  ext4_map_blocks+0xa82/0x1770
[ 2149.183550][T19756]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2149.188785][T19756]  ext4_getblk+0x17f/0x810
[ 2149.193227][T19756]  ? ext4_iomap_overwrite_begin+0xb0/0xb0
[ 2149.198957][T19756]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2149.204176][T19756]  ext4_bread+0x2c/0x190
[ 2149.208527][T19756]  ext4_append+0x26d/0x560
[ 2149.212961][T19756]  ? ext4_match+0x5d0/0x5d0
[ 2149.217476][T19756]  ? __dquot_initialize+0x299/0xc40
[ 2149.223222][T19756]  ext4_init_new_dir+0x220/0x4c0
[ 2149.228371][T19756]  ? ext4_init_dot_dotdot+0x560/0x560
[ 2149.233782][T19756]  ext4_mkdir+0x316/0xb70
[ 2149.238125][T19756]  ? generic_permission+0x230/0x6a0
[ 2149.243351][T19756]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2149.249176][T19756]  ? security_inode_permission+0xd8/0x100
[ 2149.254923][T19756]  ? inode_permission+0xdd/0x5e0
[ 2149.259872][T19756]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 2149.264907][T19756]  vfs_mkdir+0x532/0x7e0
[ 2149.269167][T19756]  do_mkdirat+0x2a9/0x330
[ 2149.273513][T19756]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2149.278374][T19756]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2149.283772][T19756]  __x64_sys_mkdirat+0x115/0x170
[ 2149.288743][T19756]  do_syscall_64+0x38/0xb0
[ 2149.293192][T19756]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2149.299144][T19756] RIP: 0033:0x7f115b87b5e7
[ 2149.303575][T19756] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2149.323196][T19756] RSP: 002b:00007f115c552ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2149.331702][T19756] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f115b87b5e7
[ 2149.339717][T19756] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2149.347687][T19756] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2149.355672][T19756] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2149.363660][T19756] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2149.371640][T19756]  </TASK>
06:45:12 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0xee00, <r2=>0xee00}}, './file0\x00'})
getsockopt$SO_J1939_ERRQUEUE(r1, 0x6b, 0x4, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r3 = geteuid()
setreuid(r3, 0x0)
r4 = geteuid()
setreuid(r4, 0x0)
r5 = geteuid()
setreuid(r5, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x804000, &(0x7f0000000240)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xa000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, r2}, 0x2c, {[{@default_permissions}, {@default_permissions}], [{@rootcontext={'rootcontext', 0x3d, 'system_u'}}, {@defcontext={'defcontext', 0x3d, 'sysadm_u'}}, {@fowner_lt={'fowner<', r4}}, {@fowner_gt={'fowner>', r5}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@fowner_eq={'fowner', 0x3d, r3}}]}}, 0x0, 0x0, 0x0)
r6 = bpf$ITER_CREATE(0x21, &(0x7f00000000c0), 0x8)
read$FUSE(r6, &(0x7f0000002340)={0x2020}, 0x2020)

[ 2149.410546][T19751] fuse: Bad value for 'fd'
06:45:12 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x54, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_STATUS={0x8}, @NFCTH_TUPLE={0x24, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:12 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

06:45:12 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0xf6ffffff}}, 0x0, 0x0, 0x0)

06:45:12 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 15)

06:45:12 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 15)

06:45:12 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0xffffff8c}}, 0x0, 0x0, 0x0)

06:45:12 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x58, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x24, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:12 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[], [], 0x2}}, 0x0, 0x0, 0x0)

[ 2149.528931][T19770] FAULT_INJECTION: forcing a failure.
[ 2149.528931][T19770] name failslab, interval 1, probability 0, space 0, times 0
[ 2149.545642][T19760] fuse: Unknown parameter 'rootcontext'
[ 2149.547708][T19773] validate_nla: 3 callbacks suppressed
[ 2149.547723][T19773] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
[ 2149.576329][T19770] CPU: 1 PID: 19770 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2149.582372][T19775] FAULT_INJECTION: forcing a failure.
[ 2149.582372][T19775] name failslab, interval 1, probability 0, space 0, times 0
[ 2149.586261][T19770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2149.586278][T19770] Call Trace:
[ 2149.586288][T19770]  <TASK>
[ 2149.586296][T19770]  dump_stack_lvl+0x125/0x1b0
[ 2149.619825][T19770]  should_fail_ex+0x496/0x5b0
[ 2149.624545][T19770]  should_failslab+0x9/0x20
[ 2149.629068][T19770]  kmem_cache_alloc+0x33a/0x3b0
[ 2149.633952][T19770]  ? do_raw_spin_lock+0x12e/0x2b0
[ 2149.639008][T19770]  jbd2_journal_add_journal_head+0x1e0/0x670
[ 2149.645024][T19770]  jbd2_journal_get_create_access+0x44/0x550
[ 2149.651038][T19770]  __ext4_journal_get_create_access+0x54/0x1f0
[ 2149.657227][T19770]  ext4_getblk+0x388/0x810
[ 2149.661678][T19770]  ? ext4_iomap_overwrite_begin+0xb0/0xb0
[ 2149.667427][T19770]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2149.672668][T19770]  ext4_bread+0x2c/0x190
06:45:12 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0xfffffff6}}, 0x0, 0x0, 0x0)

06:45:12 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[], [], 0x4}}, 0x0, 0x0, 0x0)

[ 2149.676939][T19770]  ext4_append+0x26d/0x560
[ 2149.681739][T19770]  ? ext4_match+0x5d0/0x5d0
[ 2149.686283][T19770]  ? __dquot_initialize+0x299/0xc40
[ 2149.691518][T19770]  ext4_init_new_dir+0x220/0x4c0
[ 2149.696484][T19770]  ? ext4_init_dot_dotdot+0x560/0x560
[ 2149.701882][T19770]  ext4_mkdir+0x316/0xb70
[ 2149.706237][T19770]  ? generic_permission+0x230/0x6a0
[ 2149.711469][T19770]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2149.716618][T19770]  ? security_inode_permission+0xd8/0x100
[ 2149.722377][T19770]  ? inode_permission+0xdd/0x5e0
06:45:12 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x100000000000000}}, 0x0, 0x0, 0x0)

[ 2149.727340][T19770]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 2149.732392][T19770]  vfs_mkdir+0x532/0x7e0
[ 2149.736673][T19770]  do_mkdirat+0x2a9/0x330
[ 2149.741036][T19770]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2149.745918][T19770]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2149.751324][T19770]  __x64_sys_mkdirat+0x115/0x170
[ 2149.756388][T19770]  do_syscall_64+0x38/0xb0
[ 2149.760855][T19770]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2149.766791][T19770] RIP: 0033:0x7f115b87b5e7
[ 2149.771222][T19770] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2149.790859][T19770] RSP: 002b:00007f115c552ee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2149.799297][T19770] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f115b87b5e7
[ 2149.807287][T19770] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2149.815275][T19770] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
06:45:13 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0xee00, <r2=>0xee00}}, './file0\x00'})
getsockopt$SO_J1939_ERRQUEUE(r1, 0x6b, 0x4, &(0x7f0000000040), &(0x7f0000000080)=0x4) (async)
r3 = geteuid()
setreuid(r3, 0x0) (async, rerun: 64)
r4 = geteuid() (rerun: 64)
setreuid(r4, 0x0) (async)
r5 = geteuid()
setreuid(r5, 0x0) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x804000, &(0x7f0000000240)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xa000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, r2}, 0x2c, {[{@default_permissions}, {@default_permissions}], [{@rootcontext={'rootcontext', 0x3d, 'system_u'}}, {@defcontext={'defcontext', 0x3d, 'sysadm_u'}}, {@fowner_lt={'fowner<', r4}}, {@fowner_gt={'fowner>', r5}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@fowner_eq={'fowner', 0x3d, r3}}]}}, 0x0, 0x0, 0x0) (async, rerun: 32)
r6 = bpf$ITER_CREATE(0x21, &(0x7f00000000c0), 0x8) (rerun: 32)
read$FUSE(r6, &(0x7f0000002340)={0x2020}, 0x2020)

06:45:13 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x200000000000000}}, 0x0, 0x0, 0x0)

06:45:13 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

[ 2149.823258][T19770] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2149.831235][T19770] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2149.839416][T19770]  </TASK>
[ 2149.844779][T19773] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 2149.890625][T19775] CPU: 1 PID: 19775 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2149.901363][T19775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2149.911597][T19775] Call Trace:
[ 2149.914879][T19775]  <TASK>
[ 2149.917814][T19775]  dump_stack_lvl+0x125/0x1b0
[ 2149.922510][T19775]  should_fail_ex+0x496/0x5b0
[ 2149.927216][T19775]  should_failslab+0x9/0x20
[ 2149.931723][T19775]  kmem_cache_alloc+0x33a/0x3b0
[ 2149.936585][T19775]  ? do_raw_spin_lock+0x12e/0x2b0
[ 2149.941708][T19775]  jbd2_journal_add_journal_head+0x1e0/0x670
[ 2149.947702][T19775]  jbd2_journal_get_create_access+0x44/0x550
[ 2149.953700][T19775]  __ext4_journal_get_create_access+0x54/0x1f0
[ 2149.959868][T19775]  ext4_getblk+0x388/0x810
[ 2149.964293][T19775]  ? ext4_iomap_overwrite_begin+0xb0/0xb0
[ 2149.970016][T19775]  ? ext4_issue_zeroout+0x1f0/0x1f0
[ 2149.975220][T19775]  ext4_bread+0x2c/0x190
[ 2149.979470][T19775]  ext4_append+0x26d/0x560
[ 2149.983897][T19775]  ? ext4_match+0x5d0/0x5d0
[ 2149.988410][T19775]  ? __dquot_initialize+0x299/0xc40
[ 2149.993615][T19775]  ext4_init_new_dir+0x220/0x4c0
[ 2149.998559][T19775]  ? ext4_init_dot_dotdot+0x560/0x560
[ 2150.003936][T19775]  ext4_mkdir+0x316/0xb70
[ 2150.008270][T19775]  ? generic_permission+0x230/0x6a0
[ 2150.013478][T19775]  ? ext4_init_new_dir+0x4c0/0x4c0
[ 2150.018589][T19775]  ? security_inode_permission+0xd8/0x100
[ 2150.024409][T19775]  ? inode_permission+0xdd/0x5e0
[ 2150.029355][T19775]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 2150.034390][T19775]  vfs_mkdir+0x532/0x7e0
[ 2150.038935][T19775]  do_mkdirat+0x2a9/0x330
[ 2150.043290][T19775]  ? __ia32_sys_mknod+0xb0/0xb0
[ 2150.048158][T19775]  ? getname_flags.part.0+0x1d5/0x4d0
[ 2150.053550][T19775]  __x64_sys_mkdirat+0x115/0x170
[ 2150.058566][T19775]  do_syscall_64+0x38/0xb0
[ 2150.063007][T19775]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2150.068924][T19775] RIP: 0033:0x7f84d3e7b5e7
[ 2150.073352][T19775] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2150.093073][T19775] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 2150.101675][T19775] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f84d3e7b5e7
[ 2150.109664][T19775] RDX: 00000000000001ff RSI: 0000000020002300 RDI: 00000000ffffff9c
[ 2150.117648][T19775] RBP: 00000000200022c0 R08: 0000000000000000 R09: 0000000000000000
[ 2150.125715][T19775] R10: 00000000200022c0 R11: 0000000000000246 R12: 0000000020002300
[ 2150.133704][T19775] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
06:45:13 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x50, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x24, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2150.141709][T19775]  </TASK>
[ 2150.149097][T19775] ENOMEM in journal_alloc_journal_head, retrying.
[ 2150.156109][T19770] ENOMEM in journal_alloc_journal_head, retrying.
[ 2150.177097][T19775] fuse: Bad value for 'fd'
[ 2150.206049][T19791] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
[ 2150.214562][T19791] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 2150.240535][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.247412][T19794] fuse: Unknown parameter 'rootcontext'
06:45:13 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 16)

06:45:13 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x400000000000000}}, 0x0, 0x0, 0x0)

06:45:13 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x2, 0x0, 0x0)

06:45:13 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 16)

06:45:13 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x50, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x24, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2150.254664][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.261300][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.267376][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.274702][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.281743][T19794] fuse: Unknown parameter 'rootcontext'
06:45:13 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 17)

06:45:13 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x8cffffff00000000}}, 0x0, 0x0, 0x0)

06:45:13 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x4, 0x0, 0x0)

[ 2150.306747][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.334283][T19803] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
[ 2150.355810][T19803] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 2150.395941][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.417438][T19811] FAULT_INJECTION: forcing a failure.
[ 2150.417438][T19811] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2150.434007][T19811] CPU: 0 PID: 19811 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2150.443945][T19811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2150.454022][T19811] Call Trace:
[ 2150.457314][T19811]  <TASK>
[ 2150.460260][T19811]  dump_stack_lvl+0x125/0x1b0
[ 2150.461285][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.464968][T19811]  should_fail_ex+0x496/0x5b0
[ 2150.472901][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.475259][T19811]  _copy_from_user+0x30/0xf0
[ 2150.475295][T19811]  memdup_user+0x71/0xd0
[ 2150.488804][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.489617][T19811]  strndup_user+0x74/0xe0
[ 2150.489654][T19811]  __x64_sys_mount+0x138/0x310
[ 2150.495700][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.499503][T19811]  ? copy_mnt_ns+0xb60/0xb60
[ 2150.499536][T19811]  ? rcu_is_watching+0x12/0xb0
[ 2150.499560][T19811]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2150.499590][T19811]  do_syscall_64+0x38/0xb0
[ 2150.499627][T19811]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2150.499667][T19811] RIP: 0033:0x7f115b87e1ea
[ 2150.499686][T19811] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2150.499710][T19811] RSP: 002b:00007f115c552ee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2150.507063][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.510171][T19811] RAX: ffffffffffffffda RBX: 00007f115c552f80 RCX: 00007f115b87e1ea
[ 2150.510191][T19811] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2150.510205][T19811] RBP: 00000000200022c0 R08: 00007f115c552f80 R09: 0000000000000000
[ 2150.510218][T19811] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2150.510232][T19811] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2150.510253][T19811]  </TASK>
[ 2150.620071][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.625997][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.633563][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.642435][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.648365][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.654666][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.660794][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.666710][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.672953][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.678847][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.685204][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.691151][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.696996][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.703066][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.709170][T19794] fuse: Unknown parameter 'rootcontext'
06:45:13 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0xee00, <r2=>0xee00}}, './file0\x00'})
getsockopt$SO_J1939_ERRQUEUE(r1, 0x6b, 0x4, &(0x7f0000000040), &(0x7f0000000080)=0x4) (async)
r3 = geteuid()
setreuid(r3, 0x0) (async)
r4 = geteuid()
setreuid(r4, 0x0) (async, rerun: 32)
r5 = geteuid() (rerun: 32)
setreuid(r5, 0x0) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x804000, &(0x7f0000000240)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xa000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, r2}, 0x2c, {[{@default_permissions}, {@default_permissions}], [{@rootcontext={'rootcontext', 0x3d, 'system_u'}}, {@defcontext={'defcontext', 0x3d, 'sysadm_u'}}, {@fowner_lt={'fowner<', r4}}, {@fowner_gt={'fowner>', r5}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@fowner_eq={'fowner', 0x3d, r3}}]}}, 0x0, 0x0, 0x0)
r6 = bpf$ITER_CREATE(0x21, &(0x7f00000000c0), 0x8)
read$FUSE(r6, &(0x7f0000002340)={0x2020}, 0x2020)

06:45:13 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x2, 0x0)

06:45:13 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 17)

06:45:13 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x50, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x24, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:13 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0xf6ffffff00000000}}, 0x0, 0x0, 0x0)

06:45:13 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 18)

[ 2150.715081][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.721115][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.726987][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.733112][T19794] fuse: Unknown parameter 'rootcontext'
[ 2150.771513][T19815] syz-executor.4[19815]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[ 2150.787126][T19819] FAULT_INJECTION: forcing a failure.
[ 2150.787126][T19819] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2150.793451][T19820] FAULT_INJECTION: forcing a failure.
[ 2150.793451][T19820] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2150.812307][T19819] CPU: 0 PID: 19819 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2150.823309][T19819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2150.826148][T19824] fuse: Unknown parameter 'rootcontext'
[ 2150.833459][T19819] Call Trace:
[ 2150.833474][T19819]  <TASK>
[ 2150.833484][T19819]  dump_stack_lvl+0x125/0x1b0
[ 2150.833524][T19819]  should_fail_ex+0x496/0x5b0
[ 2150.857449][T19819]  _copy_from_user+0x30/0xf0
[ 2150.862075][T19819]  memdup_user+0x71/0xd0
[ 2150.866526][T19819]  strndup_user+0x74/0xe0
[ 2150.870890][T19819]  __x64_sys_mount+0x138/0x310
[ 2150.875687][T19819]  ? copy_mnt_ns+0xb60/0xb60
[ 2150.880307][T19819]  ? rcu_is_watching+0x12/0xb0
[ 2150.885185][T19819]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2150.891290][T19819]  do_syscall_64+0x38/0xb0
[ 2150.895743][T19819]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2150.901676][T19819] RIP: 0033:0x7f115b87e1ea
[ 2150.906124][T19819] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2150.925847][T19819] RSP: 002b:00007f115c552ee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2150.934368][T19819] RAX: ffffffffffffffda RBX: 00007f115c552f80 RCX: 00007f115b87e1ea
[ 2150.942686][T19819] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2150.950683][T19819] RBP: 00000000200022c0 R08: 00007f115c552f80 R09: 0000000000000000
[ 2150.958682][T19819] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
06:45:14 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB="6f746d6f6465135386ed7ecd000000000000ef07303000003030643d000000000000b400000400", @ANYRESDEC=0x0, @ANYBLOB="ff48c7e016ff0bf80000", @ANYRESDEC=r1, @ANYRESOCT=r0], 0x0, 0x0, 0x0)

[ 2150.966680][T19819] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2150.974684][T19819]  </TASK>
[ 2150.977710][T19820] CPU: 1 PID: 19820 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2150.987717][T19820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2150.997795][T19820] Call Trace:
[ 2151.001084][T19820]  <TASK>
[ 2151.004024][T19820]  dump_stack_lvl+0x125/0x1b0
[ 2151.008815][T19820]  should_fail_ex+0x496/0x5b0
[ 2151.013529][T19820]  _copy_from_user+0x30/0xf0
[ 2151.018139][T19820]  memdup_user+0x71/0xd0
[ 2151.022409][T19820]  strndup_user+0x74/0xe0
[ 2151.026763][T19820]  __x64_sys_mount+0x138/0x310
[ 2151.031543][T19820]  ? copy_mnt_ns+0xb60/0xb60
[ 2151.036143][T19820]  ? rcu_is_watching+0x12/0xb0
[ 2151.040908][T19820]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2151.047511][T19820]  do_syscall_64+0x38/0xb0
[ 2151.052203][T19820]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2151.058202][T19820] RIP: 0033:0x7f84d3e7e1ea
[ 2151.062622][T19820] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2151.082412][T19820] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2151.091118][T19820] RAX: ffffffffffffffda RBX: 00007f84d4b3cf80 RCX: 00007f84d3e7e1ea
[ 2151.099092][T19820] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2151.107065][T19820] RBP: 00000000200022c0 R08: 00007f84d4b3cf80 R09: 0000000000000000
[ 2151.115212][T19820] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
06:45:14 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x4, 0x0)

06:45:14 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0xffffffff00000000}}, 0x0, 0x0, 0x0)

[ 2151.123277][T19820] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2151.131347][T19820]  </TASK>
[ 2151.146211][T19827] fuse: Bad value for 'fd'
06:45:14 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB="6f746d6f6465135386ed7ecd000000000000ef07303000003030643d000000000000b400000400", @ANYRESDEC=0x0, @ANYBLOB="ff48c7e016ff0bf80000", @ANYRESDEC=r1, @ANYRESOCT=r0], 0x0, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB="6f746d6f6465135386ed7ecd000000000000ef07303000003030643d000000000000b400000400", @ANYRESDEC=0x0, @ANYBLOB="ff48c7e016ff0bf80000", @ANYRESDEC=r1, @ANYRESOCT=r0], 0x0, 0x0, 0x0) (async)

06:45:14 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x1000000, 0x0)

06:45:14 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x4c, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x24, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2151.168102][T19829] syz-executor.4[19829]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
06:45:14 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 18)

06:45:14 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 19)

06:45:14 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

[ 2151.245188][T19834] syz-executor.4[19834]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[ 2151.261028][T19836] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
[ 2151.271409][T19836] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
06:45:14 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x4c, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x24, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:14 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB="6f746d6f6465135386ed7ecd000000000000ef07303000003030643d000000000000b400000400", @ANYRESDEC=0x0, @ANYBLOB="ff48c7e016ff0bf80000", @ANYRESDEC=r1, @ANYRESOCT=r0], 0x0, 0x0, 0x0)

06:45:14 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[], [], 0x2}}, 0x0, 0x0, 0x0)

[ 2151.299794][T19838] fuse: Bad value for 'fd'
[ 2151.307277][T19838] fuse: Bad value for 'fd'
06:45:14 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x2000000, 0x0)

[ 2151.343703][T19846] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
[ 2151.352388][T19846] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 2151.352464][T19847] FAULT_INJECTION: forcing a failure.
[ 2151.352464][T19847] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2151.375327][T19844] FAULT_INJECTION: forcing a failure.
[ 2151.375327][T19844] name failslab, interval 1, probability 0, space 0, times 0
[ 2151.398121][T19847] CPU: 1 PID: 19847 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2151.408168][T19847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2151.414031][T19852] syz-executor.4[19852]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[ 2151.420881][T19847] Call Trace:
[ 2151.420919][T19847]  <TASK>
[ 2151.420939][T19847]  dump_stack_lvl+0x125/0x1b0
06:45:14 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[], [], 0x4}}, 0x0, 0x0, 0x0)

06:45:14 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x4000000, 0x0)

[ 2151.420998][T19847]  should_fail_ex+0x496/0x5b0
[ 2151.421043][T19847]  _copy_from_user+0x30/0xf0
[ 2151.456018][T19847]  copy_mount_options+0x76/0x190
[ 2151.461003][T19847]  __x64_sys_mount+0x1ad/0x310
[ 2151.465808][T19847]  ? copy_mnt_ns+0xb60/0xb60
[ 2151.470524][T19847]  ? rcu_is_watching+0x12/0xb0
[ 2151.475321][T19847]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2151.481334][T19847]  do_syscall_64+0x38/0xb0
[ 2151.485793][T19847]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2151.491750][T19847] RIP: 0033:0x7f115b87e1ea
06:45:14 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

[ 2151.496188][T19847] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2151.515824][T19847] RSP: 002b:00007f115c552ee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2151.524277][T19847] RAX: ffffffffffffffda RBX: 00007f115c552f80 RCX: 00007f115b87e1ea
[ 2151.532358][T19847] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2151.540347][T19847] RBP: 00000000200022c0 R08: 00007f115c552f80 R09: 0000000000000000
[ 2151.543511][T19856] syz-executor.4[19856]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[ 2151.548407][T19847] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2151.548427][T19847] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2151.548451][T19847]  </TASK>
[ 2151.577832][T19844] CPU: 0 PID: 19844 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2151.587750][T19844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2151.597933][T19844] Call Trace:
[ 2151.601211][T19844]  <TASK>
[ 2151.604139][T19844]  dump_stack_lvl+0x125/0x1b0
[ 2151.608836][T19844]  should_fail_ex+0x496/0x5b0
[ 2151.613529][T19844]  should_failslab+0x9/0x20
[ 2151.618032][T19844]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2151.623503][T19844]  ? copy_mount_options+0x55/0x190
[ 2151.628624][T19844]  kmalloc_trace+0x25/0xe0
[ 2151.633065][T19844]  copy_mount_options+0x55/0x190
[ 2151.638011][T19844]  __x64_sys_mount+0x1ad/0x310
[ 2151.642786][T19844]  ? copy_mnt_ns+0xb60/0xb60
[ 2151.647471][T19844]  ? rcu_is_watching+0x12/0xb0
[ 2151.652235][T19844]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2151.658219][T19844]  do_syscall_64+0x38/0xb0
[ 2151.662672][T19844]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2151.668586][T19844] RIP: 0033:0x7f84d3e7e1ea
[ 2151.673002][T19844] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2151.692702][T19844] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2151.701118][T19844] RAX: ffffffffffffffda RBX: 00007f84d4b3cf80 RCX: 00007f84d3e7e1ea
[ 2151.709089][T19844] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2151.717061][T19844] RBP: 00000000200022c0 R08: 00007f84d4b3cf80 R09: 0000000000000000
[ 2151.725030][T19844] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2151.732999][T19844] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2151.740977][T19844]  </TASK>
[ 2151.776398][T19859] fuse: Bad value for 'fd'
06:45:15 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x2, 0x0, 0x0)

06:45:15 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x4c, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x24, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:15 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 19)

[ 2151.856138][T19863] FAULT_INJECTION: forcing a failure.
[ 2151.856138][T19863] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2151.873616][T19863] CPU: 0 PID: 19863 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2151.883560][T19863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2151.893621][T19863] Call Trace:
[ 2151.896903][T19863]  <TASK>
[ 2151.899832][T19863]  dump_stack_lvl+0x125/0x1b0
[ 2151.904528][T19863]  should_fail_ex+0x496/0x5b0
[ 2151.909222][T19863]  _copy_from_user+0x30/0xf0
[ 2151.913820][T19863]  copy_mount_options+0x76/0x190
[ 2151.918768][T19863]  __x64_sys_mount+0x1ad/0x310
[ 2151.923541][T19863]  ? copy_mnt_ns+0xb60/0xb60
[ 2151.928234][T19863]  ? rcu_is_watching+0x12/0xb0
[ 2151.932998][T19863]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2151.939073][T19863]  do_syscall_64+0x38/0xb0
[ 2151.943504][T19863]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2151.949417][T19863] RIP: 0033:0x7f84d3e7e1ea
[ 2151.953843][T19863] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2151.973898][T19863] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2151.982320][T19863] RAX: ffffffffffffffda RBX: 00007f84d4b3cf80 RCX: 00007f84d3e7e1ea
[ 2151.990296][T19863] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2151.998268][T19863] RBP: 00000000200022c0 R08: 00007f84d4b3cf80 R09: 0000000000000000
06:45:15 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 20)

06:45:15 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

06:45:15 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x8cffffff, 0x0)

06:45:15 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x4, 0x0, 0x0)

06:45:15 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x58, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x24, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:15 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 20)

[ 2152.006243][T19863] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2152.014213][T19863] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2152.022373][T19863]  </TASK>
[ 2152.032981][T19863] fuse: Bad value for 'fd'
06:45:15 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x2, 0x0)

[ 2152.073382][T19868] syz-executor.4[19868]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[ 2152.092825][T19872] fuse: Bad value for 'user_id'
[ 2152.112806][T19876] FAULT_INJECTION: forcing a failure.
06:45:15 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x58, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x24, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

06:45:15 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

06:45:15 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0xf6ffffff, 0x0)

[ 2152.112806][T19876] name failslab, interval 1, probability 0, space 0, times 0
[ 2152.136348][T19877] FAULT_INJECTION: forcing a failure.
[ 2152.136348][T19877] name failslab, interval 1, probability 0, space 0, times 0
[ 2152.167155][T19876] CPU: 0 PID: 19876 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2152.173940][T19880] syz-executor.0[19880]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[ 2152.177084][T19876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2152.177103][T19876] Call Trace:
[ 2152.177114][T19876]  <TASK>
[ 2152.177124][T19876]  dump_stack_lvl+0x125/0x1b0
[ 2152.177168][T19876]  should_fail_ex+0x496/0x5b0
[ 2152.177206][T19876]  should_failslab+0x9/0x20
[ 2152.177230][T19876]  kmem_cache_alloc+0x33a/0x3b0
[ 2152.177268][T19876]  getname_flags.part.0+0x50/0x4d0
[ 2152.177302][T19876]  getname_flags+0x9c/0xf0
[ 2152.177336][T19876]  user_path_at_empty+0x2c/0x60
[ 2152.177370][T19876]  __x64_sys_mount+0x1ff/0x310
[ 2152.177403][T19876]  ? copy_mnt_ns+0xb60/0xb60
[ 2152.177434][T19876]  ? rcu_is_watching+0x12/0xb0
[ 2152.177458][T19876]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2152.177490][T19876]  do_syscall_64+0x38/0xb0
[ 2152.177525][T19876]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2152.177563][T19876] RIP: 0033:0x7f115b87e1ea
[ 2152.177584][T19876] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2152.177609][T19876] RSP: 002b:00007f115c552ee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2152.177635][T19876] RAX: ffffffffffffffda RBX: 00007f115c552f80 RCX: 00007f115b87e1ea
[ 2152.177653][T19876] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2152.177669][T19876] RBP: 00000000200022c0 R08: 00007f115c552f80 R09: 0000000000000000
[ 2152.177685][T19876] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2152.177701][T19876] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2152.177726][T19876]  </TASK>
[ 2152.180605][T19881] fuse: Bad value for 'user_id'
[ 2152.197422][T19877] CPU: 1 PID: 19877 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2152.212720][T19885] syz-executor.4[19885]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[ 2152.214103][T19877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2152.214120][T19877] Call Trace:
[ 2152.214129][T19877]  <TASK>
[ 2152.214139][T19877]  dump_stack_lvl+0x125/0x1b0
[ 2152.392687][T19877]  should_fail_ex+0x496/0x5b0
[ 2152.399046][T19877]  should_failslab+0x9/0x20
[ 2152.403990][T19877]  kmem_cache_alloc+0x33a/0x3b0
[ 2152.409120][T19877]  getname_flags.part.0+0x50/0x4d0
[ 2152.415000][T19877]  getname_flags+0x9c/0xf0
[ 2152.420230][T19877]  user_path_at_empty+0x2c/0x60
[ 2152.425894][T19877]  __x64_sys_mount+0x1ff/0x310
[ 2152.431809][T19877]  ? copy_mnt_ns+0xb60/0xb60
[ 2152.437201][T19877]  ? rcu_is_watching+0x12/0xb0
[ 2152.442446][T19877]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2152.449681][T19877]  do_syscall_64+0x38/0xb0
[ 2152.454135][T19877]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2152.460636][T19877] RIP: 0033:0x7f84d3e7e1ea
[ 2152.465247][T19877] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2152.485935][T19877] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2152.494888][T19877] RAX: ffffffffffffffda RBX: 00007f84d4b3cf80 RCX: 00007f84d3e7e1ea
[ 2152.503050][T19877] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2152.511022][T19877] RBP: 00000000200022c0 R08: 00007f84d4b3cf80 R09: 0000000000000000
06:45:15 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0xffffff8c, 0x0)

06:45:15 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x58, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x24, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)

[ 2152.518999][T19877] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2152.526972][T19877] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2152.534971][T19877]  </TASK>
06:45:15 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 21)

06:45:15 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x4, 0x0)

06:45:15 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 21)

06:45:15 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

06:45:15 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x1000000, 0x0)

[ 2152.608073][T19891] syz-executor.0[19891]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[ 2152.609333][T19889] syz-executor.4[19889]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
06:45:15 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0xfffffff6, 0x0)

06:45:15 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x58, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x24, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}]}, 0x58}}, 0x8000)

[ 2152.669796][T19894] FAULT_INJECTION: forcing a failure.
[ 2152.669796][T19894] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2152.691623][T19896] fuse: Bad value for 'user_id'
[ 2152.691868][T19897] fuse: Bad value for 'user_id'
[ 2152.716414][T19899] FAULT_INJECTION: forcing a failure.
[ 2152.716414][T19899] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2152.732321][T19899] CPU: 1 PID: 19899 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2152.742302][T19899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2152.752549][T19899] Call Trace:
[ 2152.755843][T19899]  <TASK>
[ 2152.758787][T19899]  dump_stack_lvl+0x125/0x1b0
[ 2152.763498][T19899]  should_fail_ex+0x496/0x5b0
06:45:16 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(0xffffffffffffffff, 0xc04c5349, &(0x7f0000000040)={0xfffffc00, 0x1, 0x5})
write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000000)={0x2a, 0x6, 0x0, {0x5, 0x6, 0xfffffffffffffcf7, 0x0, '['}}, 0x2a)

[ 2152.768210][T19899]  strncpy_from_user+0x38/0x300
[ 2152.773081][T19899]  getname_flags.part.0+0x93/0x4d0
[ 2152.778216][T19899]  getname_flags+0x9c/0xf0
[ 2152.782736][T19899]  user_path_at_empty+0x2c/0x60
[ 2152.787608][T19899]  __x64_sys_mount+0x1ff/0x310
[ 2152.792414][T19899]  ? copy_mnt_ns+0xb60/0xb60
[ 2152.797041][T19899]  ? rcu_is_watching+0x12/0xb0
[ 2152.801825][T19899]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2152.807921][T19899]  do_syscall_64+0x38/0xb0
[ 2152.812369][T19899]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
06:45:16 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x100000000000000, 0x0)

[ 2152.818293][T19899] RIP: 0033:0x7f115b87e1ea
[ 2152.822713][T19899] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2152.842340][T19899] RSP: 002b:00007f115c552ee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2152.850777][T19899] RAX: ffffffffffffffda RBX: 00007f115c552f80 RCX: 00007f115b87e1ea
[ 2152.858769][T19899] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2152.866848][T19899] RBP: 00000000200022c0 R08: 00007f115c552f80 R09: 0000000000000000
[ 2152.874848][T19899] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2152.882830][T19899] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2152.890825][T19899]  </TASK>
[ 2152.895997][T19894] CPU: 0 PID: 19894 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2152.905929][T19894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2152.916002][T19894] Call Trace:
[ 2152.919297][T19894]  <TASK>
[ 2152.922241][T19894]  dump_stack_lvl+0x125/0x1b0
[ 2152.926952][T19894]  should_fail_ex+0x496/0x5b0
[ 2152.931665][T19894]  strncpy_from_user+0x38/0x300
[ 2152.936526][T19894]  getname_flags.part.0+0x93/0x4d0
[ 2152.941649][T19894]  getname_flags+0x9c/0xf0
[ 2152.946073][T19894]  user_path_at_empty+0x2c/0x60
[ 2152.950936][T19894]  __x64_sys_mount+0x1ff/0x310
[ 2152.955714][T19894]  ? copy_mnt_ns+0xb60/0xb60
[ 2152.960314][T19894]  ? rcu_is_watching+0x12/0xb0
[ 2152.965082][T19894]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2152.971071][T19894]  do_syscall_64+0x38/0xb0
[ 2152.975592][T19894]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2152.981503][T19894] RIP: 0033:0x7f84d3e7e1ea
[ 2152.985917][T19894] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2153.005621][T19894] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2153.014039][T19894] RAX: ffffffffffffffda RBX: 00007f84d4b3cf80 RCX: 00007f84d3e7e1ea
[ 2153.022015][T19894] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2153.032853][T19894] RBP: 00000000200022c0 R08: 00007f84d4b3cf80 R09: 0000000000000000
[ 2153.040833][T19894] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2153.048802][T19894] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2153.056955][T19894]  </TASK>
06:45:16 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x2000000, 0x0)

06:45:16 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000004c00)={0x0, 0x0, &(0x7f0000004bc0)={&(0x7f0000004b40)={0x58, 0x0, 0x9, 0x301, 0x0, 0x0, {}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_PRIV_DATA_LEN={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x24, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @broadcast}}}]}]}, 0x58}}, 0x0)

06:45:16 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x4000000, 0x0)

06:45:16 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 22)

06:45:16 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x200000000000000, 0x0)

06:45:16 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 22)

06:45:16 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(0xffffffffffffffff, 0xc04c5349, &(0x7f0000000040)={0xfffffc00, 0x1, 0x5})
write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000000)={0x2a, 0x6, 0x0, {0x5, 0x6, 0xfffffffffffffcf7, 0x0, '['}}, 0x2a)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(0xffffffffffffffff, 0xc04c5349, &(0x7f0000000040)={0xfffffc00, 0x1, 0x5}) (async)
write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000000)={0x2a, 0x6, 0x0, {0x5, 0x6, 0xfffffffffffffcf7, 0x0, '['}}, 0x2a) (async)

06:45:16 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

06:45:16 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x8cffffff, 0x0)

06:45:16 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x400000000000000, 0x0)

[ 2153.192129][T19919] FAULT_INJECTION: forcing a failure.
[ 2153.192129][T19919] name failslab, interval 1, probability 0, space 0, times 0
[ 2153.236480][T19919] CPU: 0 PID: 19919 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2153.246440][T19919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2153.256956][T19919] Call Trace:
[ 2153.260344][T19919]  <TASK>
[ 2153.263290][T19919]  dump_stack_lvl+0x125/0x1b0
[ 2153.268006][T19919]  should_fail_ex+0x496/0x5b0
[ 2153.272726][T19919]  should_failslab+0x9/0x20
[ 2153.277250][T19919]  __kmem_cache_alloc_node+0x2fd/0x350
06:45:16 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(0xffffffffffffffff, 0xc04c5349, &(0x7f0000000040)={0xfffffc00, 0x1, 0x5}) (async)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(0xffffffffffffffff, 0xc04c5349, &(0x7f0000000040)={0xfffffc00, 0x1, 0x5})
write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000000)={0x2a, 0x6, 0x0, {0x5, 0x6, 0xfffffffffffffcf7, 0x0, '['}}, 0x2a)

06:45:16 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0xf6ffffff, 0x0)

[ 2153.282842][T19919]  ? tomoyo_encode2+0x100/0x3d0
[ 2153.287742][T19919]  ? tomoyo_encode2+0x100/0x3d0
[ 2153.292632][T19919]  __kmalloc+0x4f/0x100
[ 2153.296827][T19919]  tomoyo_encode2+0x100/0x3d0
[ 2153.301545][T19919]  tomoyo_encode+0x29/0x50
[ 2153.305994][T19919]  tomoyo_mount_acl+0x145/0x880
[ 2153.310888][T19919]  ? tomoyo_check_mount_acl+0x1a0/0x1a0
[ 2153.316477][T19919]  ? filter_irq_stacks+0x90/0x90
[ 2153.321462][T19919]  ? kasan_save_stack+0x43/0x50
[ 2153.326446][T19919]  ? kasan_save_stack+0x33/0x50
[ 2153.331351][T19919]  ? tomoyo_domain+0xbd/0x150
06:45:16 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0xffffff8c, 0x0)

[ 2153.336065][T19919]  ? tomoyo_profile+0x47/0x60
[ 2153.340772][T19919]  tomoyo_mount_permission+0x16d/0x410
[ 2153.346265][T19919]  ? tomoyo_mount_permission+0x10b/0x410
[ 2153.351935][T19919]  ? tomoyo_mount_acl+0x880/0x880
[ 2153.357006][T19919]  ? rcu_is_watching+0x12/0xb0
[ 2153.361799][T19919]  security_sb_mount+0x86/0xd0
[ 2153.366682][T19919]  path_mount+0x129/0x1ed0
[ 2153.371129][T19919]  ? kmem_cache_free+0xf0/0x480
[ 2153.376011][T19919]  ? finish_automount+0xa50/0xa50
[ 2153.381065][T19919]  ? putname+0x101/0x140
06:45:16 executing program 1:
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)
pipe2$watch_queue(&(0x7f00000000c0), 0x80)
r2 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r2, 0x0, 0x0)
write$9p(r2, 0x0, 0x0)
sendmsg$L2TP_CMD_SESSION_GET(r2, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xfffffffffffffe80, &(0x7f0000000180)={&(0x7f0000000200)={0x24, r0, 0x20, 0x70bd29, 0xffe, {}, [@L2TP_ATTR_IP_DADDR={0x8, 0x19, @remote}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x2}]}, 0x62}}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
read$FUSE(r1, &(0x7f00000023c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_LSEEK(r1, &(0x7f0000000080)={0x18, 0x0, r3, {0x1f}}, 0x18)

[ 2153.385340][T19919]  __x64_sys_mount+0x293/0x310
[ 2153.390141][T19919]  ? copy_mnt_ns+0xb60/0xb60
[ 2153.394773][T19919]  ? rcu_is_watching+0x12/0xb0
[ 2153.399591][T19919]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2153.405607][T19919]  do_syscall_64+0x38/0xb0
[ 2153.410065][T19919]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2153.416001][T19919] RIP: 0033:0x7f115b87e1ea
06:45:16 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0xfffffff6, 0x0)

[ 2153.420523][T19919] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2153.440246][T19919] RSP: 002b:00007f115c552ee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2153.448686][T19919] RAX: ffffffffffffffda RBX: 00007f115c552f80 RCX: 00007f115b87e1ea
[ 2153.456691][T19919] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2153.464774][T19919] RBP: 00000000200022c0 R08: 00007f115c552f80 R09: 0000000000000000
[ 2153.475634][T19919] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2153.484157][T19919] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2153.492184][T19919]  </TASK>
[ 2153.500535][T19921] fuse: Bad value for 'user_id'
[ 2153.537954][T19942] FAULT_INJECTION: forcing a failure.
[ 2153.537954][T19942] name failslab, interval 1, probability 0, space 0, times 0
[ 2153.570768][T19942] CPU: 1 PID: 19942 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
06:45:16 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x100000000000000, 0x0)

06:45:16 executing program 1:
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)
pipe2$watch_queue(&(0x7f00000000c0), 0x80)
r2 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r2, 0x0, 0x0)
write$9p(r2, 0x0, 0x0)
sendmsg$L2TP_CMD_SESSION_GET(r2, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xfffffffffffffe80, &(0x7f0000000180)={&(0x7f0000000200)={0x24, r0, 0x20, 0x70bd29, 0xffe, {}, [@L2TP_ATTR_IP_DADDR={0x8, 0x19, @remote}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x2}]}, 0x62}}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
read$FUSE(r1, &(0x7f00000023c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_LSEEK(r1, &(0x7f0000000080)={0x18, 0x0, r3, {0x1f}}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff) (async)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0) (async)
pipe2$watch_queue(&(0x7f00000000c0), 0x80) (async)
bpf$ITER_CREATE(0x21, 0x0, 0x0) (async)
sendmsg$IPCTNL_MSG_EXP_NEW(r2, 0x0, 0x0) (async)
write$9p(r2, 0x0, 0x0) (async)
sendmsg$L2TP_CMD_SESSION_GET(r2, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xfffffffffffffe80, &(0x7f0000000180)={&(0x7f0000000200)={0x24, r0, 0x20, 0x70bd29, 0xffe, {}, [@L2TP_ATTR_IP_DADDR={0x8, 0x19, @remote}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x2}]}, 0x62}}, 0x0) (async)
socket$inet6_udplite(0xa, 0x2, 0x88) (async)
read$FUSE(r1, &(0x7f00000023c0)={0x2020}, 0x2020) (async)
write$FUSE_LSEEK(r1, &(0x7f0000000080)={0x18, 0x0, r3, {0x1f}}, 0x18) (async)

[ 2153.580857][T19942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2153.591029][T19942] Call Trace:
[ 2153.594331][T19942]  <TASK>
[ 2153.597290][T19942]  dump_stack_lvl+0x125/0x1b0
[ 2153.602017][T19942]  should_fail_ex+0x496/0x5b0
[ 2153.606752][T19942]  should_failslab+0x9/0x20
[ 2153.611288][T19942]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2153.616794][T19942]  ? tomoyo_encode2+0x100/0x3d0
[ 2153.621694][T19942]  ? tomoyo_encode2+0x100/0x3d0
[ 2153.626586][T19942]  __kmalloc+0x4f/0x100
[ 2153.630780][T19942]  tomoyo_encode2+0x100/0x3d0
[ 2153.635516][T19942]  tomoyo_encode+0x29/0x50
[ 2153.640065][T19942]  tomoyo_mount_acl+0x145/0x880
[ 2153.644981][T19942]  ? tomoyo_check_mount_acl+0x1a0/0x1a0
[ 2153.650564][T19942]  ? filter_irq_stacks+0x90/0x90
[ 2153.655516][T19942]  ? kasan_save_stack+0x43/0x50
[ 2153.660398][T19942]  ? kasan_save_stack+0x33/0x50
[ 2153.665299][T19942]  ? tomoyo_domain+0xbd/0x150
[ 2153.670000][T19942]  ? tomoyo_profile+0x47/0x60
[ 2153.674756][T19942]  tomoyo_mount_permission+0x16d/0x410
[ 2153.680233][T19942]  ? tomoyo_mount_permission+0x10b/0x410
[ 2153.685890][T19942]  ? tomoyo_mount_acl+0x880/0x880
[ 2153.690915][T19942]  ? rcu_is_watching+0x12/0xb0
[ 2153.695674][T19942]  security_sb_mount+0x86/0xd0
[ 2153.700445][T19942]  path_mount+0x129/0x1ed0
[ 2153.705066][T19942]  ? kmem_cache_free+0xf0/0x480
[ 2153.709941][T19942]  ? finish_automount+0xa50/0xa50
[ 2153.714972][T19942]  ? putname+0x101/0x140
[ 2153.719238][T19942]  __x64_sys_mount+0x293/0x310
[ 2153.724025][T19942]  ? copy_mnt_ns+0xb60/0xb60
[ 2153.728632][T19942]  ? rcu_is_watching+0x12/0xb0
[ 2153.733399][T19942]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2153.739464][T19942]  do_syscall_64+0x38/0xb0
[ 2153.743893][T19942]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2153.749791][T19942] RIP: 0033:0x7f84d3e7e1ea
[ 2153.754198][T19942] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2153.773840][T19942] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2153.782256][T19942] RAX: ffffffffffffffda RBX: 00007f84d4b3cf80 RCX: 00007f84d3e7e1ea
[ 2153.790221][T19942] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2153.798185][T19942] RBP: 00000000200022c0 R08: 00007f84d4b3cf80 R09: 0000000000000000
[ 2153.806153][T19942] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2153.814309][T19942] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2153.822288][T19942]  </TASK>
06:45:17 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 23)

06:45:17 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

06:45:17 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 23)

06:45:17 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x8cffffff00000000, 0x0)

06:45:17 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x200000000000000, 0x0)

06:45:17 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0xf6ffffff00000000, 0x0)

06:45:17 executing program 1:
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff) (async)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0) (async)
pipe2$watch_queue(&(0x7f00000000c0), 0x80) (async)
r2 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r2, 0x0, 0x0) (async, rerun: 64)
write$9p(r2, 0x0, 0x0) (async, rerun: 64)
sendmsg$L2TP_CMD_SESSION_GET(r2, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xfffffffffffffe80, &(0x7f0000000180)={&(0x7f0000000200)={0x24, r0, 0x20, 0x70bd29, 0xffe, {}, [@L2TP_ATTR_IP_DADDR={0x8, 0x19, @remote}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x2}]}, 0x62}}, 0x0) (async)
socket$inet6_udplite(0xa, 0x2, 0x88) (async)
read$FUSE(r1, &(0x7f00000023c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_LSEEK(r1, &(0x7f0000000080)={0x18, 0x0, r3, {0x1f}}, 0x18)

06:45:17 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x400000000000000, 0x0)

[ 2153.874777][T19953] fuse: Bad value for 'user_id'
[ 2153.883586][T19956] FAULT_INJECTION: forcing a failure.
[ 2153.883586][T19956] name failslab, interval 1, probability 0, space 0, times 0
[ 2153.924047][T19956] CPU: 0 PID: 19956 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2153.928229][T19961] FAULT_INJECTION: forcing a failure.
[ 2153.928229][T19961] name failslab, interval 1, probability 0, space 0, times 0
[ 2153.934070][T19956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2153.934089][T19956] Call Trace:
[ 2153.934098][T19956]  <TASK>
[ 2153.934108][T19956]  dump_stack_lvl+0x125/0x1b0
[ 2153.934149][T19956]  should_fail_ex+0x496/0x5b0
[ 2153.934186][T19956]  should_failslab+0x9/0x20
[ 2153.976984][T19956]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2153.982482][T19956]  ? tomoyo_realpath_from_path+0xb9/0x710
[ 2153.988254][T19956]  ? tomoyo_realpath_from_path+0xb9/0x710
[ 2153.994020][T19956]  __kmalloc+0x4f/0x100
[ 2153.998210][T19956]  tomoyo_realpath_from_path+0xb9/0x710
[ 2154.003796][T19956]  ? tomoyo_fill_path_info+0x233/0x420
[ 2154.009301][T19956]  tomoyo_mount_acl+0x1af/0x880
[ 2154.014193][T19956]  ? tomoyo_check_mount_acl+0x1a0/0x1a0
[ 2154.019765][T19956]  ? filter_irq_stacks+0x90/0x90
06:45:17 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x8cffffff00000000, 0x0)

06:45:17 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0xf6ffffff00000000, 0x0)

[ 2154.024748][T19956]  ? kasan_save_stack+0x43/0x50
[ 2154.029639][T19956]  ? kasan_save_stack+0x33/0x50
[ 2154.034539][T19956]  ? tomoyo_domain+0xbd/0x150
[ 2154.039247][T19956]  ? tomoyo_profile+0x47/0x60
[ 2154.043952][T19956]  tomoyo_mount_permission+0x16d/0x410
[ 2154.049458][T19956]  ? tomoyo_mount_permission+0x10b/0x410
[ 2154.055126][T19956]  ? tomoyo_mount_acl+0x880/0x880
[ 2154.060190][T19956]  ? rcu_is_watching+0x12/0xb0
[ 2154.064993][T19956]  security_sb_mount+0x86/0xd0
[ 2154.069795][T19956]  path_mount+0x129/0x1ed0
[ 2154.074245][T19956]  ? kmem_cache_free+0xf0/0x480
[ 2154.079122][T19956]  ? finish_automount+0xa50/0xa50
[ 2154.084178][T19956]  ? putname+0x101/0x140
[ 2154.088443][T19956]  __x64_sys_mount+0x293/0x310
[ 2154.093234][T19956]  ? copy_mnt_ns+0xb60/0xb60
[ 2154.097843][T19956]  ? rcu_is_watching+0x12/0xb0
[ 2154.102705][T19956]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2154.108737][T19956]  do_syscall_64+0x38/0xb0
[ 2154.113179][T19956]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2154.119098][T19956] RIP: 0033:0x7f84d3e7e1ea
[ 2154.123527][T19956] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2154.143158][T19956] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2154.151593][T19956] RAX: ffffffffffffffda RBX: 00007f84d4b3cf80 RCX: 00007f84d3e7e1ea
[ 2154.159591][T19956] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2154.167578][T19956] RBP: 00000000200022c0 R08: 00007f84d4b3cf80 R09: 0000000000000000
[ 2154.175565][T19956] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2154.183583][T19956] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2154.191677][T19956]  </TASK>
[ 2154.194702][T19961] CPU: 1 PID: 19961 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2154.204623][T19961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2154.214784][T19961] Call Trace:
[ 2154.218082][T19961]  <TASK>
[ 2154.220903][T19956] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2154.221010][T19961]  dump_stack_lvl+0x125/0x1b0
[ 2154.232376][T19961]  should_fail_ex+0x496/0x5b0
[ 2154.237095][T19961]  should_failslab+0x9/0x20
[ 2154.241604][T19961]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2154.247074][T19961]  ? tomoyo_realpath_from_path+0xb9/0x710
[ 2154.252807][T19961]  ? tomoyo_realpath_from_path+0xb9/0x710
[ 2154.258535][T19961]  __kmalloc+0x4f/0x100
[ 2154.262694][T19961]  tomoyo_realpath_from_path+0xb9/0x710
[ 2154.268254][T19961]  ? tomoyo_fill_path_info+0x233/0x420
[ 2154.273727][T19961]  tomoyo_mount_acl+0x1af/0x880
[ 2154.278595][T19961]  ? tomoyo_check_mount_acl+0x1a0/0x1a0
[ 2154.284151][T19961]  ? filter_irq_stacks+0x90/0x90
[ 2154.289103][T19961]  ? kasan_save_stack+0x43/0x50
[ 2154.294052][T19961]  ? kasan_save_stack+0x33/0x50
[ 2154.298928][T19961]  ? tomoyo_domain+0xbd/0x150
[ 2154.303625][T19961]  ? tomoyo_profile+0x47/0x60
[ 2154.308308][T19961]  tomoyo_mount_permission+0x16d/0x410
[ 2154.313780][T19961]  ? tomoyo_mount_permission+0x10b/0x410
[ 2154.319422][T19961]  ? tomoyo_mount_acl+0x880/0x880
[ 2154.324471][T19961]  ? rcu_is_watching+0x12/0xb0
[ 2154.329240][T19961]  security_sb_mount+0x86/0xd0
[ 2154.334129][T19961]  path_mount+0x129/0x1ed0
[ 2154.338558][T19961]  ? kmem_cache_free+0xf0/0x480
[ 2154.343427][T19961]  ? finish_automount+0xa50/0xa50
[ 2154.348476][T19961]  ? putname+0x101/0x140
[ 2154.352737][T19961]  __x64_sys_mount+0x293/0x310
[ 2154.357509][T19961]  ? copy_mnt_ns+0xb60/0xb60
[ 2154.362198][T19961]  ? rcu_is_watching+0x12/0xb0
[ 2154.366962][T19961]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2154.372950][T19961]  do_syscall_64+0x38/0xb0
[ 2154.377378][T19961]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2154.383284][T19961] RIP: 0033:0x7f115b87e1ea
[ 2154.387706][T19961] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2154.408623][T19961] RSP: 002b:00007f115c552ee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2154.417041][T19961] RAX: ffffffffffffffda RBX: 00007f115c552f80 RCX: 00007f115b87e1ea
[ 2154.425015][T19961] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2154.432989][T19961] RBP: 00000000200022c0 R08: 00007f115c552f80 R09: 0000000000000000
[ 2154.440964][T19961] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2154.448936][T19961] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2154.456976][T19961]  </TASK>
06:45:17 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

06:45:17 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0xffffffff00000000, 0x0)

06:45:17 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 24)

06:45:17 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0xffffffff00000000, 0x0)

[ 2154.503538][T19961] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2154.508038][T19977] fuse: Bad value for 'user_id'
06:45:17 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 24)

06:45:17 executing program 4:
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(0xffffffffffffffff, 0xc08c5334, &(0x7f0000000180)={0x4000000, 0x401, 0x0, 'queue0\x00', 0x3})
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB], 0x1, 0x0, 0x0)

06:45:17 executing program 3:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

06:45:17 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000)={r0}, 0x8)
ioctl$MEDIA_REQUEST_IOC_QUEUE(r1, 0x7c80, 0x0)

[ 2154.583447][T19982] FAULT_INJECTION: forcing a failure.
[ 2154.583447][T19982] name failslab, interval 1, probability 0, space 0, times 0
[ 2154.618022][T19984] fuse: Bad value for 'fd'
06:45:17 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x2001040, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xee00}}, 0x0, 0x0, 0x0)
write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000040)={0x23, 0x37, 0x1, {0x3, 0x3, 0x72, 0x0, 0x5, '!\'&-}'}}, 0x23)
write$P9_RXATTRCREATE(0xffffffffffffffff, &(0x7f0000000000)={0x7, 0x21, 0x2}, 0x7)

[ 2154.644172][T19986] FAULT_INJECTION: forcing a failure.
[ 2154.644172][T19986] name failslab, interval 1, probability 0, space 0, times 0
[ 2154.663126][T19982] CPU: 0 PID: 19982 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2154.673431][T19982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2154.683523][T19982] Call Trace:
[ 2154.686828][T19982]  <TASK>
[ 2154.689868][T19982]  dump_stack_lvl+0x125/0x1b0
06:45:17 executing program 3:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

06:45:17 executing program 3:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

[ 2154.693409][T19992] fuse: Bad value for 'fd'
[ 2154.694663][T19982]  should_fail_ex+0x496/0x5b0
[ 2154.703792][T19982]  should_failslab+0x9/0x20
[ 2154.708329][T19982]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2154.713830][T19982]  ? tomoyo_encode2+0x100/0x3d0
[ 2154.718722][T19982]  ? tomoyo_encode2+0x100/0x3d0
[ 2154.723606][T19982]  __kmalloc+0x4f/0x100
[ 2154.727799][T19982]  tomoyo_encode2+0x100/0x3d0
[ 2154.732558][T19982]  ? rcu_is_watching+0x12/0xb0
[ 2154.737341][T19982]  tomoyo_encode+0x29/0x50
[ 2154.741783][T19982]  tomoyo_realpath_from_path+0x196/0x710
[ 2154.747530][T19982]  tomoyo_mount_acl+0x1af/0x880
[ 2154.752401][T19982]  ? tomoyo_check_mount_acl+0x1a0/0x1a0
[ 2154.757964][T19982]  ? filter_irq_stacks+0x90/0x90
[ 2154.762922][T19982]  ? kasan_save_stack+0x43/0x50
[ 2154.767877][T19982]  ? kasan_save_stack+0x33/0x50
[ 2154.773020][T19982]  ? tomoyo_domain+0xbd/0x150
[ 2154.777711][T19982]  ? tomoyo_profile+0x47/0x60
[ 2154.782397][T19982]  tomoyo_mount_permission+0x16d/0x410
[ 2154.787956][T19982]  ? tomoyo_mount_permission+0x10b/0x410
[ 2154.793599][T19982]  ? tomoyo_mount_acl+0x880/0x880
[ 2154.798648][T19982]  ? rcu_is_watching+0x12/0xb0
[ 2154.803421][T19982]  security_sb_mount+0x86/0xd0
[ 2154.808203][T19982]  path_mount+0x129/0x1ed0
[ 2154.812639][T19982]  ? kmem_cache_free+0xf0/0x480
[ 2154.817524][T19982]  ? finish_automount+0xa50/0xa50
[ 2154.822585][T19982]  ? putname+0x101/0x140
[ 2154.826860][T19982]  __x64_sys_mount+0x293/0x310
[ 2154.831651][T19982]  ? copy_mnt_ns+0xb60/0xb60
[ 2154.836298][T19982]  ? rcu_is_watching+0x12/0xb0
[ 2154.841091][T19982]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2154.847093][T19982]  do_syscall_64+0x38/0xb0
[ 2154.851537][T19982]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2154.857465][T19982] RIP: 0033:0x7f84d3e7e1ea
[ 2154.861889][T19982] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2154.881512][T19982] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2154.889931][T19982] RAX: ffffffffffffffda RBX: 00007f84d4b3cf80 RCX: 00007f84d3e7e1ea
[ 2154.897993][T19982] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2154.906005][T19982] RBP: 00000000200022c0 R08: 00007f84d4b3cf80 R09: 0000000000000000
[ 2154.913980][T19982] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2154.921972][T19982] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2154.929957][T19982]  </TASK>
06:45:18 executing program 4:
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(0xffffffffffffffff, 0xc08c5334, &(0x7f0000000180)={0x4000000, 0x401, 0x0, 'queue0\x00', 0x3}) (async)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(0xffffffffffffffff, 0xc08c5334, &(0x7f0000000180)={0x4000000, 0x401, 0x0, 'queue0\x00', 0x3})
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB], 0x1, 0x0, 0x0)

06:45:18 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x2001040, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xee00}}, 0x0, 0x0, 0x0) (async, rerun: 32)
write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000040)={0x23, 0x37, 0x1, {0x3, 0x3, 0x72, 0x0, 0x5, '!\'&-}'}}, 0x23) (rerun: 32)
write$P9_RXATTRCREATE(0xffffffffffffffff, &(0x7f0000000000)={0x7, 0x21, 0x2}, 0x7)

06:45:18 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000)={r0}, 0x8)
ioctl$MEDIA_REQUEST_IOC_QUEUE(r1, 0x7c80, 0x0)

[ 2154.946492][T19982] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2154.988766][T19986] CPU: 0 PID: 19986 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2154.998811][T19986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2155.008895][T19986] Call Trace:
[ 2155.012194][T19986]  <TASK>
[ 2155.015139][T19986]  dump_stack_lvl+0x125/0x1b0
[ 2155.019858][T19986]  should_fail_ex+0x496/0x5b0
[ 2155.024580][T19986]  should_failslab+0x9/0x20
[ 2155.029119][T19986]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2155.034610][T19986]  ? tomoyo_encode2+0x100/0x3d0
[ 2155.039494][T19986]  ? tomoyo_encode2+0x100/0x3d0
[ 2155.044381][T19986]  __kmalloc+0x4f/0x100
[ 2155.048566][T19986]  tomoyo_encode2+0x100/0x3d0
[ 2155.053272][T19986]  ? rcu_is_watching+0x12/0xb0
[ 2155.058045][T19986]  tomoyo_encode+0x29/0x50
[ 2155.062477][T19986]  tomoyo_realpath_from_path+0x196/0x710
[ 2155.068134][T19986]  tomoyo_mount_acl+0x1af/0x880
[ 2155.073008][T19986]  ? tomoyo_check_mount_acl+0x1a0/0x1a0
[ 2155.078653][T19986]  ? filter_irq_stacks+0x90/0x90
[ 2155.083611][T19986]  ? kasan_save_stack+0x43/0x50
[ 2155.088476][T19986]  ? kasan_save_stack+0x33/0x50
[ 2155.093354][T19986]  ? tomoyo_domain+0xbd/0x150
[ 2155.098048][T19986]  ? tomoyo_profile+0x47/0x60
[ 2155.102736][T19986]  tomoyo_mount_permission+0x16d/0x410
[ 2155.108209][T19986]  ? tomoyo_mount_permission+0x10b/0x410
[ 2155.113856][T19986]  ? tomoyo_mount_acl+0x880/0x880
[ 2155.118916][T19986]  ? rcu_is_watching+0x12/0xb0
[ 2155.123707][T19986]  security_sb_mount+0x86/0xd0
[ 2155.128490][T19986]  path_mount+0x129/0x1ed0
[ 2155.132921][T19986]  ? kmem_cache_free+0xf0/0x480
[ 2155.137786][T19986]  ? finish_automount+0xa50/0xa50
[ 2155.142826][T19986]  ? putname+0x101/0x140
[ 2155.147082][T19986]  __x64_sys_mount+0x293/0x310
[ 2155.151871][T19986]  ? copy_mnt_ns+0xb60/0xb60
[ 2155.156478][T19986]  ? rcu_is_watching+0x12/0xb0
[ 2155.161256][T19986]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2155.167250][T19986]  do_syscall_64+0x38/0xb0
[ 2155.171686][T19986]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2155.177598][T19986] RIP: 0033:0x7f115b87e1ea
[ 2155.182032][T19986] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2155.201739][T19986] RSP: 002b:00007f115c552ee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2155.210159][T19986] RAX: ffffffffffffffda RBX: 00007f115c552f80 RCX: 00007f115b87e1ea
[ 2155.218137][T19986] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2155.226108][T19986] RBP: 00000000200022c0 R08: 00007f115c552f80 R09: 0000000000000000
[ 2155.234091][T19986] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2155.242071][T19986] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2155.250078][T19986]  </TASK>
06:45:18 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 25)

06:45:18 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000)={r0}, 0x8)
ioctl$MEDIA_REQUEST_IOC_QUEUE(r1, 0x7c80, 0x0)

06:45:18 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 25)

06:45:18 executing program 4:
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(0xffffffffffffffff, 0xc08c5334, &(0x7f0000000180)={0x4000000, 0x401, 0x0, 'queue0\x00', 0x3})
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB], 0x1, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(0xffffffffffffffff, 0xc08c5334, &(0x7f0000000180)={0x4000000, 0x401, 0x0, 'queue0\x00', 0x3}) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB], 0x1, 0x0, 0x0) (async)

06:45:18 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x2001040, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xee00}}, 0x0, 0x0, 0x0) (async)
write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000040)={0x23, 0x37, 0x1, {0x3, 0x3, 0x72, 0x0, 0x5, '!\'&-}'}}, 0x23)
write$P9_RXATTRCREATE(0xffffffffffffffff, &(0x7f0000000000)={0x7, 0x21, 0x2}, 0x7)

[ 2155.297232][T19986] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2155.300407][T20005] fuse: Bad value for 'fd'
06:45:18 executing program 0:
setfsgid(0xffffffffffffffff)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

06:45:18 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:45:18 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

06:45:18 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x6019, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB='\x00\x00'], 0x0, 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="c100000000000000"])

[ 2155.385830][T20015] FAULT_INJECTION: forcing a failure.
[ 2155.385830][T20015] name failslab, interval 1, probability 0, space 0, times 0
[ 2155.400224][T20015] CPU: 1 PID: 20015 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2155.410160][T20015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2155.420244][T20015] Call Trace:
[ 2155.423544][T20015]  <TASK>
[ 2155.425799][T20018] fuse: Bad value for 'fd'
[ 2155.426520][T20015]  dump_stack_lvl+0x125/0x1b0
[ 2155.435737][T20015]  should_fail_ex+0x496/0x5b0
[ 2155.440458][T20015]  should_failslab+0x9/0x20
[ 2155.444985][T20015]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2155.450498][T20015]  ? tomoyo_encode2+0x100/0x3d0
[ 2155.455389][T20015]  ? __kmem_cache_free+0xb8/0x2f0
[ 2155.460456][T20015]  ? tomoyo_encode2+0x100/0x3d0
[ 2155.465337][T20015]  __kmalloc+0x4f/0x100
[ 2155.469616][T20015]  tomoyo_encode2+0x100/0x3d0
[ 2155.474336][T20015]  tomoyo_encode+0x29/0x50
[ 2155.478797][T20015]  tomoyo_mount_acl+0x314/0x880
[ 2155.483686][T20015]  ? tomoyo_check_mount_acl+0x1a0/0x1a0
[ 2155.489266][T20015]  ? filter_irq_stacks+0x90/0x90
[ 2155.494249][T20015]  ? kasan_save_stack+0x43/0x50
[ 2155.499138][T20015]  ? kasan_save_stack+0x33/0x50
[ 2155.503679][T20023] FAULT_INJECTION: forcing a failure.
[ 2155.503679][T20023] name failslab, interval 1, probability 0, space 0, times 0
[ 2155.516590][T20015]  ? tomoyo_domain+0xbd/0x150
[ 2155.516635][T20015]  ? tomoyo_profile+0x47/0x60
[ 2155.516661][T20015]  tomoyo_mount_permission+0x16d/0x410
[ 2155.531581][T20015]  ? tomoyo_mount_permission+0x10b/0x410
[ 2155.537264][T20015]  ? tomoyo_mount_acl+0x880/0x880
[ 2155.538867][T20025] fuse: Bad value for 'fd'
[ 2155.542326][T20015]  ? rcu_is_watching+0x12/0xb0
[ 2155.542364][T20015]  security_sb_mount+0x86/0xd0
[ 2155.556316][T20015]  path_mount+0x129/0x1ed0
[ 2155.560795][T20015]  ? kmem_cache_free+0xf0/0x480
[ 2155.565662][T20015]  ? finish_automount+0xa50/0xa50
[ 2155.570695][T20015]  ? putname+0x101/0x140
[ 2155.574943][T20015]  __x64_sys_mount+0x293/0x310
[ 2155.579715][T20015]  ? copy_mnt_ns+0xb60/0xb60
[ 2155.584314][T20015]  ? rcu_is_watching+0x12/0xb0
[ 2155.589081][T20015]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2155.595067][T20015]  do_syscall_64+0x38/0xb0
[ 2155.599498][T20015]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2155.605419][T20015] RIP: 0033:0x7f84d3e7e1ea
[ 2155.609847][T20015] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
06:45:18 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

06:45:18 executing program 0:
setfsgid(0xffffffffffffffff)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
setfsgid(0xffffffffffffffff) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)

[ 2155.629648][T20015] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2155.638160][T20015] RAX: ffffffffffffffda RBX: 00007f84d4b3cf80 RCX: 00007f84d3e7e1ea
[ 2155.646134][T20015] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2155.654109][T20015] RBP: 00000000200022c0 R08: 00007f84d4b3cf80 R09: 0000000000000000
[ 2155.662093][T20015] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2155.670070][T20015] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2155.678082][T20015]  </TASK>
[ 2155.714937][T20023] CPU: 1 PID: 20023 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2155.724895][T20023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2155.734974][T20023] Call Trace:
[ 2155.738271][T20023]  <TASK>
[ 2155.741214][T20023]  dump_stack_lvl+0x125/0x1b0
[ 2155.745927][T20023]  should_fail_ex+0x496/0x5b0
[ 2155.750642][T20023]  should_failslab+0x9/0x20
[ 2155.755169][T20023]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2155.760663][T20023]  ? tomoyo_encode2+0x100/0x3d0
[ 2155.765551][T20023]  ? __kmem_cache_free+0xb8/0x2f0
[ 2155.770614][T20023]  ? tomoyo_encode2+0x100/0x3d0
[ 2155.775498][T20023]  __kmalloc+0x4f/0x100
[ 2155.779783][T20023]  tomoyo_encode2+0x100/0x3d0
[ 2155.784502][T20023]  tomoyo_encode+0x29/0x50
[ 2155.788970][T20023]  tomoyo_mount_acl+0x314/0x880
[ 2155.793948][T20023]  ? tomoyo_check_mount_acl+0x1a0/0x1a0
[ 2155.799517][T20023]  ? filter_irq_stacks+0x90/0x90
[ 2155.804474][T20023]  ? kasan_save_stack+0x43/0x50
[ 2155.809339][T20023]  ? kasan_save_stack+0x33/0x50
[ 2155.814227][T20023]  ? tomoyo_domain+0xbd/0x150
[ 2155.818930][T20023]  ? tomoyo_profile+0x47/0x60
[ 2155.823620][T20023]  tomoyo_mount_permission+0x16d/0x410
[ 2155.829109][T20023]  ? tomoyo_mount_permission+0x10b/0x410
[ 2155.834779][T20023]  ? tomoyo_mount_acl+0x880/0x880
[ 2155.839841][T20023]  ? rcu_is_watching+0x12/0xb0
[ 2155.844621][T20023]  security_sb_mount+0x86/0xd0
[ 2155.849407][T20023]  path_mount+0x129/0x1ed0
[ 2155.853841][T20023]  ? kmem_cache_free+0xf0/0x480
[ 2155.858709][T20023]  ? finish_automount+0xa50/0xa50
[ 2155.863747][T20023]  ? putname+0x101/0x140
[ 2155.868001][T20023]  __x64_sys_mount+0x293/0x310
[ 2155.872780][T20023]  ? copy_mnt_ns+0xb60/0xb60
[ 2155.877382][T20023]  ? rcu_is_watching+0x12/0xb0
[ 2155.882150][T20023]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2155.888141][T20023]  do_syscall_64+0x38/0xb0
[ 2155.892580][T20023]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2155.898493][T20023] RIP: 0033:0x7f115b87e1ea
[ 2155.902909][T20023] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2155.922523][T20023] RSP: 002b:00007f115c552ee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2155.930940][T20023] RAX: ffffffffffffffda RBX: 00007f115c552f80 RCX: 00007f115b87e1ea
[ 2155.938915][T20023] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2155.946886][T20023] RBP: 00000000200022c0 R08: 00007f115c552f80 R09: 0000000000000000
[ 2155.954856][T20023] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
06:45:18 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

06:45:19 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 26)

06:45:19 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

06:45:19 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x6019, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB='\x00\x00'], 0x0, 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="c100000000000000"])

06:45:19 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:45:19 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 26)

06:45:19 executing program 0:
setfsgid(0xffffffffffffffff) (async, rerun: 32)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (rerun: 32)

[ 2155.963175][T20023] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2155.971157][T20023]  </TASK>
[ 2155.991572][T20032] fuse: Bad value for 'fd'
[ 2156.087816][T20042] FAULT_INJECTION: forcing a failure.
[ 2156.087816][T20042] name failslab, interval 1, probability 0, space 0, times 0
[ 2156.124271][T20042] CPU: 1 PID: 20042 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
06:45:19 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x6019, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB='\x00\x00'], 0x0, 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="c100000000000000"])
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x6019, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB='\x00\x00'], 0x0, 0x0, 0x0) (async)
bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="c100000000000000"]) (async)

06:45:19 executing program 0:
pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f0000000040))
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

06:45:19 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

06:45:19 executing program 0:
pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f0000000040))
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
pipe2$watch_queue(&(0x7f0000000000), 0x80) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f0000000040)) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)

[ 2156.134232][T20042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2156.144358][T20042] Call Trace:
[ 2156.147655][T20042]  <TASK>
[ 2156.150614][T20042]  dump_stack_lvl+0x125/0x1b0
[ 2156.155332][T20042]  should_fail_ex+0x496/0x5b0
[ 2156.160068][T20042]  should_failslab+0x9/0x20
[ 2156.164618][T20042]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2156.170133][T20042]  ? alloc_fs_context+0x57/0x9f0
[ 2156.175106][T20042]  kmalloc_trace+0x25/0xe0
[ 2156.179577][T20042]  alloc_fs_context+0x57/0x9f0
[ 2156.184373][T20042]  path_mount+0xae6/0x1ed0
[ 2156.188831][T20042]  ? kmem_cache_free+0xf0/0x480
[ 2156.193722][T20042]  ? finish_automount+0xa50/0xa50
[ 2156.198782][T20042]  ? putname+0x101/0x140
[ 2156.203162][T20042]  __x64_sys_mount+0x293/0x310
[ 2156.208193][T20042]  ? copy_mnt_ns+0xb60/0xb60
[ 2156.212822][T20042]  ? rcu_is_watching+0x12/0xb0
[ 2156.217616][T20042]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2156.223216][T20047] FAULT_INJECTION: forcing a failure.
[ 2156.223216][T20047] name failslab, interval 1, probability 0, space 0, times 0
[ 2156.223619][T20042]  do_syscall_64+0x38/0xb0
[ 2156.240645][T20042]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2156.246653][T20042] RIP: 0033:0x7f84d3e7e1ea
[ 2156.251071][T20042] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2156.270870][T20042] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2156.279391][T20042] RAX: ffffffffffffffda RBX: 00007f84d4b3cf80 RCX: 00007f84d3e7e1ea
[ 2156.287380][T20042] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2156.295455][T20042] RBP: 00000000200022c0 R08: 00007f84d4b3cf80 R09: 0000000000000000
[ 2156.303434][T20042] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2156.311407][T20042] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2156.319390][T20042]  </TASK>
06:45:19 executing program 0:
pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f0000000040)) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

06:45:19 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

[ 2156.336180][T20047] CPU: 1 PID: 20047 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2156.346223][T20047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2156.356303][T20047] Call Trace:
[ 2156.359599][T20047]  <TASK>
[ 2156.362543][T20047]  dump_stack_lvl+0x125/0x1b0
[ 2156.367528][T20047]  should_fail_ex+0x496/0x5b0
[ 2156.372255][T20047]  should_failslab+0x9/0x20
[ 2156.376785][T20047]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2156.382295][T20047]  ? alloc_fs_context+0x57/0x9f0
06:45:19 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 27)

[ 2156.387265][T20047]  kmalloc_trace+0x25/0xe0
[ 2156.391812][T20047]  alloc_fs_context+0x57/0x9f0
[ 2156.396626][T20047]  path_mount+0xae6/0x1ed0
[ 2156.401187][T20047]  ? kmem_cache_free+0xf0/0x480
[ 2156.406082][T20047]  ? finish_automount+0xa50/0xa50
[ 2156.411158][T20047]  ? putname+0x101/0x140
[ 2156.415439][T20047]  __x64_sys_mount+0x293/0x310
[ 2156.420265][T20047]  ? copy_mnt_ns+0xb60/0xb60
[ 2156.424934][T20047]  ? rcu_is_watching+0x12/0xb0
[ 2156.429737][T20047]  ? trace_irq_enable.constprop.0+0xd0/0x100
06:45:19 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), 0x0, 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

[ 2156.435860][T20047]  do_syscall_64+0x38/0xb0
[ 2156.440320][T20047]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2156.446260][T20047] RIP: 0033:0x7f115b87e1ea
[ 2156.448191][T20065] FAULT_INJECTION: forcing a failure.
[ 2156.448191][T20065] name failslab, interval 1, probability 0, space 0, times 0
[ 2156.450679][T20047] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
06:45:19 executing program 0:
r0 = geteuid()
r1 = geteuid()
r2 = syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x800000, &(0x7f0000000740)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@blksize={'blksize', 0x3d, 0xc00}}], [{@obj_role={'obj_role', 0x3d, '\'$^)'}}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@seclabel}, {@fsname={'fsname', 0x3d, 'rootmode'}}, {@fowner_gt={'fowner>', r1}}]}}, 0x0, 0x0, &(0x7f0000000200)="e75935c3ee372887ceaa01455ed7c909bc9f84379b427036a84c7bea2c59497ed9923f82500ba8c2827aa88e49bf19532faec20f49ce1e0eecd1fb93a35cae4c08b8cb0b24bf2a")
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0x6ba}}, './file0\x00'})
r4 = gettid()
sendmsg$nl_netfilter(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0x8, &(0x7f0000000100)={&(0x7f00000003c0)={0x354, 0x6, 0x0, 0x201, 0x70bd28, 0x25dfdbfd, {0x3}, [@nested={0x1a6, 0x12, 0x0, 0x1, [@generic="3d27bdbb4c678f60616d76bf7ea460fd3261b824fd15d2e3f2b74b761f0ef6d6347efc7ce36ceb21d080b9101ec7eec47e72d31744db517e25c2a20478b06ccd58cbc9c3f1b8b4539eb9b4916455a941745b2ae2ec110749fabe7f18f9c2b14cf17637b6df7e", @generic="a2a3d93e12d899a2d91fec5efc5c260ee209193690aae6c9658e57de4f2a3890ba120f514379621381b72a1a7966740e8f004067a3be9478bd317bbe7d97e62be447237a5f1e0901030f8787b5a353fe9287c0befb129194353b7fa099f5ea61fcbd3b734ccb5b31251f8173840ae1e1d7f18ecd6ee89c05cd73e694b1b1e581b64c7a9250cbc908d35a7207baac7fda1d3540fc14814e3c03e31f1c55808a9d765dc8fda152c5b11867572d32ae24fbcd850cc83ce256bc770f163dbd732f5d168cdbfff83a551e4bb71a81a81a3a25aadb82aa83a98fe9b7241558bcec7fec2f560d20088f5ee7a591af9531", @generic="0fe937bd5a69e114c28f1a768b52c119e2b01b87180325549b05868aca36efb7880fd99974b41c1c2fa7a61cc2d925fca651e94f553d3b3961b613f0ff988e12ef3de0884c6132", @typed={0x8, 0x81, 0x0, 0x0, @pid=r4}]}, @typed={0x8, 0x63, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x20, 0x0, 0x0, @u32=0x7}, @typed={0xc, 0x3f, 0x0, 0x0, @u64=0x2d6}, @typed={0x8c, 0x58, 0x0, 0x0, @binary="f437113ced7940d62ee3923011c614a58b800e27ccc4e92a67ff2493543a1d168c151467ba8ee475b683dfdca50180c9eab98ec041e40515cd629f545c823bfc07e29c6c9fa717815a11c01daf10a1a41f80fc2a3d524a8dece01b0fb7526c1041f176346a2c6f77686fcd86a460de1724926c52becf67db1e589c42cce78d2f486f45796459d029"}, @typed={0x8, 0x57, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x1a}}, @generic="9eabc999bc2295070325a8cba5523648c681a136318ed58da7d830f271f8c2948d186d53f4e38c1e9a54aa63efba6eb9f0fe1638c8e961bab110855b480fdfdb99d03d2e994d1181de415d1397e028b9445ac3992bef2cffbfc9442c020f538a53b4eec3ea76a81c74605a6d1fdb62f58411f49ff537e59640984dca49df7fa0ae8c83e53df99459ced3dbb70b76771024f502304111b404fb277405d3cb9a66b1cfb173fd6a676cc84216ecaeed6453b91939674c231a947722175b509f5b19607d4f5e0f3a1d1ef2d66ec290cb8eed92332911ca2e20e5edfc8d10c6488e39d7cb97a3be7414"]}, 0x354}, 0x1, 0x0, 0x0, 0x5}, 0x4000000)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',hash,posixacl,fowner<', @ANYRESDEC=r0, @ANYBLOB="288669643d", @ANYRESDEC=r0, @ANYBLOB=',fscontext=unconfined_u,\x00'], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7)
r5 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r5, 0x0, 0x0)
write$9p(r5, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000940)={{0x1, 0x1, 0x18, r2, {<r6=>r0, 0xee01}}, './file1\x00'})
write$FUSE_CREATE_OPEN(r5, &(0x7f0000000980)={0xa0, 0x0, 0x0, {{0x3, 0x0, 0x7, 0x6, 0x7, 0x1, {0x0, 0x2, 0x4936, 0x9, 0x69b, 0x400, 0x8, 0x3f, 0x8, 0x8000, 0x8, r6, 0xffffffffffffffff, 0x200, 0x9}}, {0x0, 0xc}}}, 0xa0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=@bloom_filter={0x1e, 0x9, 0x100, 0xfffffffc, 0x1800, r3, 0x7, '\x00', 0x0, r3, 0x1, 0x5, 0x3, 0x2}, 0x48)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r3, 0xc0189372, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r8=>r7, {0x1f}}, './file1\x00'})
sendmsg$nl_netfilter(r8, &(0x7f0000000b40)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000900)={0x14, 0x10, 0xa, 0x401, 0x70bd2b, 0x25dfdbff, {0x0, 0x0, 0x6}}, 0x14}, 0x1, 0x0, 0x0, 0xc010}, 0x4081)

[ 2156.450705][T20047] RSP: 002b:00007f115c552ee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2156.450727][T20047] RAX: ffffffffffffffda RBX: 00007f115c552f80 RCX: 00007f115b87e1ea
[ 2156.450743][T20047] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2156.507316][T20047] RBP: 00000000200022c0 R08: 00007f115c552f80 R09: 0000000000000000
[ 2156.515315][T20047] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2156.523481][T20047] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2156.531479][T20047]  </TASK>
[ 2156.534516][T20065] CPU: 0 PID: 20065 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2156.544447][T20065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2156.554522][T20065] Call Trace:
[ 2156.557814][T20065]  <TASK>
[ 2156.560753][T20065]  dump_stack_lvl+0x125/0x1b0
[ 2156.565449][T20065]  should_fail_ex+0x496/0x5b0
[ 2156.570145][T20065]  should_failslab+0x9/0x20
[ 2156.574655][T20065]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2156.580130][T20065]  ? fuse_init_fs_context+0x43/0x1d0
[ 2156.585432][T20065]  kmalloc_trace+0x25/0xe0
[ 2156.589867][T20065]  fuse_init_fs_context+0x43/0x1d0
[ 2156.595068][T20065]  ? fuse_conn_destroy+0x290/0x290
[ 2156.600190][T20065]  alloc_fs_context+0x56c/0x9f0
[ 2156.605100][T20065]  path_mount+0xae6/0x1ed0
[ 2156.609718][T20065]  ? kmem_cache_free+0xf0/0x480
[ 2156.614912][T20065]  ? finish_automount+0xa50/0xa50
[ 2156.620064][T20065]  ? putname+0x101/0x140
[ 2156.624338][T20065]  __x64_sys_mount+0x293/0x310
[ 2156.629133][T20065]  ? copy_mnt_ns+0xb60/0xb60
[ 2156.633785][T20065]  ? rcu_is_watching+0x12/0xb0
[ 2156.638618][T20065]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2156.644636][T20065]  do_syscall_64+0x38/0xb0
[ 2156.649073][T20065]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2156.655001][T20065] RIP: 0033:0x7f84d3e7e1ea
[ 2156.659420][T20065] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2156.679035][T20065] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2156.687466][T20065] RAX: ffffffffffffffda RBX: 00007f84d4b3cf80 RCX: 00007f84d3e7e1ea
[ 2156.695442][T20065] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2156.703418][T20065] RBP: 00000000200022c0 R08: 00007f84d4b3cf80 R09: 0000000000000000
[ 2156.711392][T20065] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2156.719369][T20065] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2156.727352][T20065]  </TASK>
06:45:19 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:45:19 executing program 4:
socket$inet_udplite(0x2, 0x2, 0x88)

[ 2156.750903][T20069] fuse: Bad value for 'fd'
06:45:20 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 27)

06:45:20 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), 0x0, 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

06:45:20 executing program 0:
r0 = geteuid()
r1 = geteuid()
r2 = syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x800000, &(0x7f0000000740)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@blksize={'blksize', 0x3d, 0xc00}}], [{@obj_role={'obj_role', 0x3d, '\'$^)'}}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@seclabel}, {@fsname={'fsname', 0x3d, 'rootmode'}}, {@fowner_gt={'fowner>', r1}}]}}, 0x0, 0x0, &(0x7f0000000200)="e75935c3ee372887ceaa01455ed7c909bc9f84379b427036a84c7bea2c59497ed9923f82500ba8c2827aa88e49bf19532faec20f49ce1e0eecd1fb93a35cae4c08b8cb0b24bf2a")
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0x6ba}}, './file0\x00'})
r4 = gettid()
sendmsg$nl_netfilter(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0x8, &(0x7f0000000100)={&(0x7f00000003c0)={0x354, 0x6, 0x0, 0x201, 0x70bd28, 0x25dfdbfd, {0x3}, [@nested={0x1a6, 0x12, 0x0, 0x1, [@generic="3d27bdbb4c678f60616d76bf7ea460fd3261b824fd15d2e3f2b74b761f0ef6d6347efc7ce36ceb21d080b9101ec7eec47e72d31744db517e25c2a20478b06ccd58cbc9c3f1b8b4539eb9b4916455a941745b2ae2ec110749fabe7f18f9c2b14cf17637b6df7e", @generic="a2a3d93e12d899a2d91fec5efc5c260ee209193690aae6c9658e57de4f2a3890ba120f514379621381b72a1a7966740e8f004067a3be9478bd317bbe7d97e62be447237a5f1e0901030f8787b5a353fe9287c0befb129194353b7fa099f5ea61fcbd3b734ccb5b31251f8173840ae1e1d7f18ecd6ee89c05cd73e694b1b1e581b64c7a9250cbc908d35a7207baac7fda1d3540fc14814e3c03e31f1c55808a9d765dc8fda152c5b11867572d32ae24fbcd850cc83ce256bc770f163dbd732f5d168cdbfff83a551e4bb71a81a81a3a25aadb82aa83a98fe9b7241558bcec7fec2f560d20088f5ee7a591af9531", @generic="0fe937bd5a69e114c28f1a768b52c119e2b01b87180325549b05868aca36efb7880fd99974b41c1c2fa7a61cc2d925fca651e94f553d3b3961b613f0ff988e12ef3de0884c6132", @typed={0x8, 0x81, 0x0, 0x0, @pid=r4}]}, @typed={0x8, 0x63, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x20, 0x0, 0x0, @u32=0x7}, @typed={0xc, 0x3f, 0x0, 0x0, @u64=0x2d6}, @typed={0x8c, 0x58, 0x0, 0x0, @binary="f437113ced7940d62ee3923011c614a58b800e27ccc4e92a67ff2493543a1d168c151467ba8ee475b683dfdca50180c9eab98ec041e40515cd629f545c823bfc07e29c6c9fa717815a11c01daf10a1a41f80fc2a3d524a8dece01b0fb7526c1041f176346a2c6f77686fcd86a460de1724926c52becf67db1e589c42cce78d2f486f45796459d029"}, @typed={0x8, 0x57, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x1a}}, @generic="9eabc999bc2295070325a8cba5523648c681a136318ed58da7d830f271f8c2948d186d53f4e38c1e9a54aa63efba6eb9f0fe1638c8e961bab110855b480fdfdb99d03d2e994d1181de415d1397e028b9445ac3992bef2cffbfc9442c020f538a53b4eec3ea76a81c74605a6d1fdb62f58411f49ff537e59640984dca49df7fa0ae8c83e53df99459ced3dbb70b76771024f502304111b404fb277405d3cb9a66b1cfb173fd6a676cc84216ecaeed6453b91939674c231a947722175b509f5b19607d4f5e0f3a1d1ef2d66ec290cb8eed92332911ca2e20e5edfc8d10c6488e39d7cb97a3be7414"]}, 0x354}, 0x1, 0x0, 0x0, 0x5}, 0x4000000)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',hash,posixacl,fowner<', @ANYRESDEC=r0, @ANYBLOB="288669643d", @ANYRESDEC=r0, @ANYBLOB=',fscontext=unconfined_u,\x00'], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7)
r5 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r5, 0x0, 0x0)
write$9p(r5, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000940)={{0x1, 0x1, 0x18, r2, {<r6=>r0, 0xee01}}, './file1\x00'})
write$FUSE_CREATE_OPEN(r5, &(0x7f0000000980)={0xa0, 0x0, 0x0, {{0x3, 0x0, 0x7, 0x6, 0x7, 0x1, {0x0, 0x2, 0x4936, 0x9, 0x69b, 0x400, 0x8, 0x3f, 0x8, 0x8000, 0x8, r6, 0xffffffffffffffff, 0x200, 0x9}}, {0x0, 0xc}}}, 0xa0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=@bloom_filter={0x1e, 0x9, 0x100, 0xfffffffc, 0x1800, r3, 0x7, '\x00', 0x0, r3, 0x1, 0x5, 0x3, 0x2}, 0x48)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r3, 0xc0189372, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r8=>r7, {0x1f}}, './file1\x00'})
sendmsg$nl_netfilter(r8, &(0x7f0000000b40)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000900)={0x14, 0x10, 0xa, 0x401, 0x70bd2b, 0x25dfdbff, {0x0, 0x0, 0x6}}, 0x14}, 0x1, 0x0, 0x0, 0xc010}, 0x4081)
geteuid() (async)
geteuid() (async)
syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x800000, &(0x7f0000000740)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@blksize={'blksize', 0x3d, 0xc00}}], [{@obj_role={'obj_role', 0x3d, '\'$^)'}}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@seclabel}, {@fsname={'fsname', 0x3d, 'rootmode'}}, {@fowner_gt={'fowner>', r1}}]}}, 0x0, 0x0, &(0x7f0000000200)="e75935c3ee372887ceaa01455ed7c909bc9f84379b427036a84c7bea2c59497ed9923f82500ba8c2827aa88e49bf19532faec20f49ce1e0eecd1fb93a35cae4c08b8cb0b24bf2a") (async)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x6ba}}, './file0\x00'}) (async)
gettid() (async)
sendmsg$nl_netfilter(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0x8, &(0x7f0000000100)={&(0x7f00000003c0)={0x354, 0x6, 0x0, 0x201, 0x70bd28, 0x25dfdbfd, {0x3}, [@nested={0x1a6, 0x12, 0x0, 0x1, [@generic="3d27bdbb4c678f60616d76bf7ea460fd3261b824fd15d2e3f2b74b761f0ef6d6347efc7ce36ceb21d080b9101ec7eec47e72d31744db517e25c2a20478b06ccd58cbc9c3f1b8b4539eb9b4916455a941745b2ae2ec110749fabe7f18f9c2b14cf17637b6df7e", @generic="a2a3d93e12d899a2d91fec5efc5c260ee209193690aae6c9658e57de4f2a3890ba120f514379621381b72a1a7966740e8f004067a3be9478bd317bbe7d97e62be447237a5f1e0901030f8787b5a353fe9287c0befb129194353b7fa099f5ea61fcbd3b734ccb5b31251f8173840ae1e1d7f18ecd6ee89c05cd73e694b1b1e581b64c7a9250cbc908d35a7207baac7fda1d3540fc14814e3c03e31f1c55808a9d765dc8fda152c5b11867572d32ae24fbcd850cc83ce256bc770f163dbd732f5d168cdbfff83a551e4bb71a81a81a3a25aadb82aa83a98fe9b7241558bcec7fec2f560d20088f5ee7a591af9531", @generic="0fe937bd5a69e114c28f1a768b52c119e2b01b87180325549b05868aca36efb7880fd99974b41c1c2fa7a61cc2d925fca651e94f553d3b3961b613f0ff988e12ef3de0884c6132", @typed={0x8, 0x81, 0x0, 0x0, @pid=r4}]}, @typed={0x8, 0x63, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x20, 0x0, 0x0, @u32=0x7}, @typed={0xc, 0x3f, 0x0, 0x0, @u64=0x2d6}, @typed={0x8c, 0x58, 0x0, 0x0, @binary="f437113ced7940d62ee3923011c614a58b800e27ccc4e92a67ff2493543a1d168c151467ba8ee475b683dfdca50180c9eab98ec041e40515cd629f545c823bfc07e29c6c9fa717815a11c01daf10a1a41f80fc2a3d524a8dece01b0fb7526c1041f176346a2c6f77686fcd86a460de1724926c52becf67db1e589c42cce78d2f486f45796459d029"}, @typed={0x8, 0x57, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x1a}}, @generic="9eabc999bc2295070325a8cba5523648c681a136318ed58da7d830f271f8c2948d186d53f4e38c1e9a54aa63efba6eb9f0fe1638c8e961bab110855b480fdfdb99d03d2e994d1181de415d1397e028b9445ac3992bef2cffbfc9442c020f538a53b4eec3ea76a81c74605a6d1fdb62f58411f49ff537e59640984dca49df7fa0ae8c83e53df99459ced3dbb70b76771024f502304111b404fb277405d3cb9a66b1cfb173fd6a676cc84216ecaeed6453b91939674c231a947722175b509f5b19607d4f5e0f3a1d1ef2d66ec290cb8eed92332911ca2e20e5edfc8d10c6488e39d7cb97a3be7414"]}, 0x354}, 0x1, 0x0, 0x0, 0x5}, 0x4000000) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',hash,posixacl,fowner<', @ANYRESDEC=r0, @ANYBLOB="288669643d", @ANYRESDEC=r0, @ANYBLOB=',fscontext=unconfined_u,\x00'], 0x1, 0x0, 0x0) (async)
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7) (async)
bpf$ITER_CREATE(0x21, 0x0, 0x0) (async)
sendmsg$IPCTNL_MSG_EXP_NEW(r5, 0x0, 0x0) (async)
write$9p(r5, 0x0, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000940)={{0x1, 0x1, 0x18, r2, {r0, 0xee01}}, './file1\x00'}) (async)
write$FUSE_CREATE_OPEN(r5, &(0x7f0000000980)={0xa0, 0x0, 0x0, {{0x3, 0x0, 0x7, 0x6, 0x7, 0x1, {0x0, 0x2, 0x4936, 0x9, 0x69b, 0x400, 0x8, 0x3f, 0x8, 0x8000, 0x8, r6, 0xffffffffffffffff, 0x200, 0x9}}, {0x0, 0xc}}}, 0xa0) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=@bloom_filter={0x1e, 0x9, 0x100, 0xfffffffc, 0x1800, r3, 0x7, '\x00', 0x0, r3, 0x1, 0x5, 0x3, 0x2}, 0x48) (async)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r3, 0xc0189372, &(0x7f0000000280)={{0x1, 0x1, 0x18, r7, {0x1f}}, './file1\x00'}) (async)
sendmsg$nl_netfilter(r8, &(0x7f0000000b40)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000900)={0x14, 0x10, 0xa, 0x401, 0x70bd2b, 0x25dfdbff, {0x0, 0x0, 0x6}}, 0x14}, 0x1, 0x0, 0x0, 0xc010}, 0x4081) (async)

06:45:20 executing program 4:
socket$inet_udplite(0x2, 0x2, 0x88)

06:45:20 executing program 4:
socket$inet_udplite(0x2, 0x2, 0x88)
socket$inet_udplite(0x2, 0x2, 0x88) (async)

06:45:20 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), 0x0, 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

06:45:20 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 28)

[ 2156.846441][T20081] FAULT_INJECTION: forcing a failure.
[ 2156.846441][T20081] name failslab, interval 1, probability 0, space 0, times 0
[ 2156.860423][T20078] fuse: Bad value for 'fd'
[ 2156.873729][T20078] fuse: Bad value for 'fd'
06:45:20 executing program 0:
r0 = geteuid()
r1 = geteuid()
syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x800000, &(0x7f0000000740)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@blksize={'blksize', 0x3d, 0xc00}}], [{@obj_role={'obj_role', 0x3d, '\'$^)'}}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@seclabel}, {@fsname={'fsname', 0x3d, 'rootmode'}}, {@fowner_gt={'fowner>', r1}}]}}, 0x0, 0x0, &(0x7f0000000200)="e75935c3ee372887ceaa01455ed7c909bc9f84379b427036a84c7bea2c59497ed9923f82500ba8c2827aa88e49bf19532faec20f49ce1e0eecd1fb93a35cae4c08b8cb0b24bf2a") (async)
r2 = syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x800000, &(0x7f0000000740)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@blksize={'blksize', 0x3d, 0xc00}}], [{@obj_role={'obj_role', 0x3d, '\'$^)'}}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@seclabel}, {@fsname={'fsname', 0x3d, 'rootmode'}}, {@fowner_gt={'fowner>', r1}}]}}, 0x0, 0x0, &(0x7f0000000200)="e75935c3ee372887ceaa01455ed7c909bc9f84379b427036a84c7bea2c59497ed9923f82500ba8c2827aa88e49bf19532faec20f49ce1e0eecd1fb93a35cae4c08b8cb0b24bf2a")
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0x6ba}}, './file0\x00'})
r4 = gettid()
sendmsg$nl_netfilter(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0x8, &(0x7f0000000100)={&(0x7f00000003c0)={0x354, 0x6, 0x0, 0x201, 0x70bd28, 0x25dfdbfd, {0x3}, [@nested={0x1a6, 0x12, 0x0, 0x1, [@generic="3d27bdbb4c678f60616d76bf7ea460fd3261b824fd15d2e3f2b74b761f0ef6d6347efc7ce36ceb21d080b9101ec7eec47e72d31744db517e25c2a20478b06ccd58cbc9c3f1b8b4539eb9b4916455a941745b2ae2ec110749fabe7f18f9c2b14cf17637b6df7e", @generic="a2a3d93e12d899a2d91fec5efc5c260ee209193690aae6c9658e57de4f2a3890ba120f514379621381b72a1a7966740e8f004067a3be9478bd317bbe7d97e62be447237a5f1e0901030f8787b5a353fe9287c0befb129194353b7fa099f5ea61fcbd3b734ccb5b31251f8173840ae1e1d7f18ecd6ee89c05cd73e694b1b1e581b64c7a9250cbc908d35a7207baac7fda1d3540fc14814e3c03e31f1c55808a9d765dc8fda152c5b11867572d32ae24fbcd850cc83ce256bc770f163dbd732f5d168cdbfff83a551e4bb71a81a81a3a25aadb82aa83a98fe9b7241558bcec7fec2f560d20088f5ee7a591af9531", @generic="0fe937bd5a69e114c28f1a768b52c119e2b01b87180325549b05868aca36efb7880fd99974b41c1c2fa7a61cc2d925fca651e94f553d3b3961b613f0ff988e12ef3de0884c6132", @typed={0x8, 0x81, 0x0, 0x0, @pid=r4}]}, @typed={0x8, 0x63, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x20, 0x0, 0x0, @u32=0x7}, @typed={0xc, 0x3f, 0x0, 0x0, @u64=0x2d6}, @typed={0x8c, 0x58, 0x0, 0x0, @binary="f437113ced7940d62ee3923011c614a58b800e27ccc4e92a67ff2493543a1d168c151467ba8ee475b683dfdca50180c9eab98ec041e40515cd629f545c823bfc07e29c6c9fa717815a11c01daf10a1a41f80fc2a3d524a8dece01b0fb7526c1041f176346a2c6f77686fcd86a460de1724926c52becf67db1e589c42cce78d2f486f45796459d029"}, @typed={0x8, 0x57, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x1a}}, @generic="9eabc999bc2295070325a8cba5523648c681a136318ed58da7d830f271f8c2948d186d53f4e38c1e9a54aa63efba6eb9f0fe1638c8e961bab110855b480fdfdb99d03d2e994d1181de415d1397e028b9445ac3992bef2cffbfc9442c020f538a53b4eec3ea76a81c74605a6d1fdb62f58411f49ff537e59640984dca49df7fa0ae8c83e53df99459ced3dbb70b76771024f502304111b404fb277405d3cb9a66b1cfb173fd6a676cc84216ecaeed6453b91939674c231a947722175b509f5b19607d4f5e0f3a1d1ef2d66ec290cb8eed92332911ca2e20e5edfc8d10c6488e39d7cb97a3be7414"]}, 0x354}, 0x1, 0x0, 0x0, 0x5}, 0x4000000)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',hash,posixacl,fowner<', @ANYRESDEC=r0, @ANYBLOB="288669643d", @ANYRESDEC=r0, @ANYBLOB=',fscontext=unconfined_u,\x00'], 0x1, 0x0, 0x0) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',hash,posixacl,fowner<', @ANYRESDEC=r0, @ANYBLOB="288669643d", @ANYRESDEC=r0, @ANYBLOB=',fscontext=unconfined_u,\x00'], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7)
bpf$ITER_CREATE(0x21, 0x0, 0x0) (async)
r5 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r5, 0x0, 0x0)
write$9p(r5, 0x0, 0x0) (async)
write$9p(r5, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000940)={{0x1, 0x1, 0x18, r2, {<r6=>r0, 0xee01}}, './file1\x00'})
write$FUSE_CREATE_OPEN(r5, &(0x7f0000000980)={0xa0, 0x0, 0x0, {{0x3, 0x0, 0x7, 0x6, 0x7, 0x1, {0x0, 0x2, 0x4936, 0x9, 0x69b, 0x400, 0x8, 0x3f, 0x8, 0x8000, 0x8, r6, 0xffffffffffffffff, 0x200, 0x9}}, {0x0, 0xc}}}, 0xa0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=@bloom_filter={0x1e, 0x9, 0x100, 0xfffffffc, 0x1800, r3, 0x7, '\x00', 0x0, r3, 0x1, 0x5, 0x3, 0x2}, 0x48)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r3, 0xc0189372, &(0x7f0000000280)={{0x1, 0x1, 0x18, r7, {0x1f}}, './file1\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r3, 0xc0189372, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r8=>r7, {0x1f}}, './file1\x00'})
sendmsg$nl_netfilter(r8, &(0x7f0000000b40)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000900)={0x14, 0x10, 0xa, 0x401, 0x70bd2b, 0x25dfdbff, {0x0, 0x0, 0x6}}, 0x14}, 0x1, 0x0, 0x0, 0xc010}, 0x4081)

[ 2156.898058][T20081] CPU: 0 PID: 20081 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2156.908028][T20081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2156.918110][T20081] Call Trace:
[ 2156.921414][T20081]  <TASK>
[ 2156.924359][T20081]  dump_stack_lvl+0x125/0x1b0
[ 2156.929073][T20081]  should_fail_ex+0x496/0x5b0
[ 2156.933816][T20081]  should_failslab+0x9/0x20
[ 2156.938349][T20081]  __kmem_cache_alloc_node+0x2fd/0x350
06:45:20 executing program 4:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
bpf$OBJ_GET_PROG(0x7, &(0x7f00000009c0)={&(0x7f0000000980)='./file0/file0/file0\x00', 0x0, 0x18}, 0x10)
sendmsg$OSF_MSG_REMOVE(r1, &(0x7f0000000900)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000008c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x710}, 0x1, 0x0, 0x0, 0x20004010}, 0x8040)
write$9p(r1, 0x0, 0x0)
fanotify_mark(r1, 0x40, 0x1069, r0, &(0x7f0000000000)='./file0/file0\x00')
sendmsg$L2TP_CMD_TUNNEL_MODIFY(0xffffffffffffffff, &(0x7f0000000a40)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x20000200}, 0xc, &(0x7f0000000a00)={&(0x7f0000000a80)=ANY=[@ANYBLOB="54a3d100423fd9c9f92843879b29d038f124476238b9862b268c85117bcbb3", @ANYRES16=0x0, @ANYBLOB="08002bbd7000fedbdf2503000000080018006401010008000b0001000000050005000100000006001a00000300000500210000000000060003008000000008000c00040000000500040000000000"], 0x54}, 0x1, 0x0, 0x0, 0x20040800}, 0x854)

[ 2156.943849][T20081]  ? fuse_init_fs_context+0x43/0x1d0
[ 2156.944105][T20091] FAULT_INJECTION: forcing a failure.
[ 2156.944105][T20091] name failslab, interval 1, probability 0, space 0, times 0
[ 2156.949150][T20081]  kmalloc_trace+0x25/0xe0
[ 2156.949190][T20081]  fuse_init_fs_context+0x43/0x1d0
[ 2156.949216][T20081]  ? fuse_conn_destroy+0x290/0x290
[ 2156.949237][T20081]  alloc_fs_context+0x56c/0x9f0
[ 2156.949264][T20081]  path_mount+0xae6/0x1ed0
[ 2156.949296][T20081]  ? kmem_cache_free+0xf0/0x480
[ 2156.949333][T20081]  ? finish_automount+0xa50/0xa50
[ 2156.949366][T20081]  ? putname+0x101/0x140
[ 2156.997949][T20095] fuse: Bad value for 'fd'
[ 2156.999870][T20081]  __x64_sys_mount+0x293/0x310
[ 2156.999910][T20081]  ? copy_mnt_ns+0xb60/0xb60
[ 2157.011495][T20096] fuse: Bad value for 'fd'
[ 2157.013633][T20081]  ? rcu_is_watching+0x12/0xb0
[ 2157.013666][T20081]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2157.028990][T20081]  do_syscall_64+0x38/0xb0
[ 2157.033446][T20081]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2157.039377][T20081] RIP: 0033:0x7f115b87e1ea
[ 2157.043817][T20081] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2157.063536][T20081] RSP: 002b:00007f115c552ee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2157.071970][T20081] RAX: ffffffffffffffda RBX: 00007f115c552f80 RCX: 00007f115b87e1ea
[ 2157.079946][T20081] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2157.087916][T20081] RBP: 00000000200022c0 R08: 00007f115c552f80 R09: 0000000000000000
06:45:20 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYRESDEC=r0, @ANYRESHEX=r0, @ANYBLOB=',ro00000000000140000,user_id=', @ANYRESDEC=r0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

06:45:20 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB="2c726f6f746d6f64653d3030303030303082f1303030303030303030303030303030302c757365725f69643d", @ANYRESDEC=0x0, @ANYBLOB="2c05000000000000003d", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r1=>r0, {0x9}}, './file0\x00'})
fanotify_mark(0xffffffffffffffff, 0x490, 0x21, r1, &(0x7f00000002c0)='./file0\x00')
r2 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r2, 0x0, 0x0)
sendmsg$L2TP_CMD_SESSION_MODIFY(r2, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x5c, 0x0, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@L2TP_ATTR_UDP_DPORT={0x6, 0x1b, 0x4e21}, @L2TP_ATTR_RECV_SEQ={0x5, 0x12, 0x3}, @L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0x1f}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @L2TP_ATTR_DEBUG={0x8, 0x11, 0x1}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @loopback}, @L2TP_ATTR_UDP_CSUM={0x5, 0xd, 0x1}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000000}, 0x8010)
write$9p(r2, 0x0, 0x0)
fanotify_mark(0xffffffffffffffff, 0x8, 0x0, r2, &(0x7f0000000000)='./file0\x00')

06:45:20 executing program 3:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

[ 2157.095889][T20081] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2157.103949][T20081] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2157.111934][T20081]  </TASK>
[ 2157.179428][T20091] CPU: 0 PID: 20091 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2157.184468][T20103] fuse: Unknown parameter '000000000000000000030x0000000000000003'
[ 2157.189361][T20091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2157.189377][T20091] Call Trace:
[ 2157.189386][T20091]  <TASK>
[ 2157.189395][T20091]  dump_stack_lvl+0x125/0x1b0
[ 2157.189434][T20091]  should_fail_ex+0x496/0x5b0
[ 2157.189472][T20091]  should_failslab+0x9/0x20
[ 2157.189496][T20091]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2157.189532][T20091]  ? vfs_parse_fs_string+0xc4/0x150
[ 2157.189570][T20091]  ? vfs_parse_fs_string+0xc4/0x150
[ 2157.189604][T20091]  __kmalloc_node_track_caller+0x50/0x100
[ 2157.189629][T20091]  kmemdup_nul+0x49/0xe0
[ 2157.253826][T20091]  vfs_parse_fs_string+0xc4/0x150
[ 2157.258975][T20091]  ? vfs_parse_fs_param+0x3c0/0x3c0
[ 2157.264194][T20091]  ? bpf_lsm_sb_eat_lsm_opts+0x9/0x10
[ 2157.269583][T20091]  generic_parse_monolithic+0x16d/0x1f0
[ 2157.275148][T20091]  ? vfs_parse_fs_string+0x150/0x150
[ 2157.280447][T20091]  ? fuse_conn_destroy+0x290/0x290
[ 2157.285559][T20091]  ? alloc_fs_context+0x5ba/0x9f0
[ 2157.290585][T20091]  path_mount+0x1449/0x1ed0
[ 2157.295102][T20091]  ? kmem_cache_free+0xf0/0x480
[ 2157.299974][T20091]  ? finish_automount+0xa50/0xa50
[ 2157.305012][T20091]  ? putname+0x101/0x140
[ 2157.309265][T20091]  __x64_sys_mount+0x293/0x310
[ 2157.314043][T20091]  ? copy_mnt_ns+0xb60/0xb60
[ 2157.318642][T20091]  ? rcu_is_watching+0x12/0xb0
[ 2157.323409][T20091]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2157.329397][T20091]  do_syscall_64+0x38/0xb0
[ 2157.333829][T20091]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2157.339735][T20091] RIP: 0033:0x7f84d3e7e1ea
[ 2157.344150][T20091] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2157.363772][T20091] RSP: 002b:00007f84d4b3cee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2157.372192][T20091] RAX: ffffffffffffffda RBX: 00007f84d4b3cf80 RCX: 00007f84d3e7e1ea
06:45:20 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 28)

06:45:20 executing program 4:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0) (async)
bpf$OBJ_GET_PROG(0x7, &(0x7f00000009c0)={&(0x7f0000000980)='./file0/file0/file0\x00', 0x0, 0x18}, 0x10)
sendmsg$OSF_MSG_REMOVE(r1, &(0x7f0000000900)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000008c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x710}, 0x1, 0x0, 0x0, 0x20004010}, 0x8040) (async)
write$9p(r1, 0x0, 0x0) (async)
fanotify_mark(r1, 0x40, 0x1069, r0, &(0x7f0000000000)='./file0/file0\x00') (async)
sendmsg$L2TP_CMD_TUNNEL_MODIFY(0xffffffffffffffff, &(0x7f0000000a40)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x20000200}, 0xc, &(0x7f0000000a00)={&(0x7f0000000a80)=ANY=[@ANYBLOB="54a3d100423fd9c9f92843879b29d038f124476238b9862b268c85117bcbb3", @ANYRES16=0x0, @ANYBLOB="08002bbd7000fedbdf2503000000080018006401010008000b0001000000050005000100000006001a00000300000500210000000000060003008000000008000c00040000000500040000000000"], 0x54}, 0x1, 0x0, 0x0, 0x20040800}, 0x854)

06:45:20 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB="2c726f6f746d6f64653d3030303030303082f1303030303030303030303030303030302c757365725f69643d", @ANYRESDEC=0x0, @ANYBLOB="2c05000000000000003d", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r1=>r0, {0x9}}, './file0\x00'})
fanotify_mark(0xffffffffffffffff, 0x490, 0x21, r1, &(0x7f00000002c0)='./file0\x00') (async)
r2 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r2, 0x0, 0x0) (async)
sendmsg$L2TP_CMD_SESSION_MODIFY(r2, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x5c, 0x0, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@L2TP_ATTR_UDP_DPORT={0x6, 0x1b, 0x4e21}, @L2TP_ATTR_RECV_SEQ={0x5, 0x12, 0x3}, @L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0x1f}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @L2TP_ATTR_DEBUG={0x8, 0x11, 0x1}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @loopback}, @L2TP_ATTR_UDP_CSUM={0x5, 0xd, 0x1}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000000}, 0x8010) (async)
write$9p(r2, 0x0, 0x0) (async)
fanotify_mark(0xffffffffffffffff, 0x8, 0x0, r2, &(0x7f0000000000)='./file0\x00')

06:45:20 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYRESDEC=r0, @ANYRESHEX=r0, @ANYBLOB=',ro00000000000140000,user_id=', @ANYRESDEC=r0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

06:45:20 executing program 3:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

[ 2157.380269][T20091] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2157.389470][T20091] RBP: 00000000200022c0 R08: 00007f84d4b3cf80 R09: 0000000000000000
[ 2157.397449][T20091] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2157.405428][T20091] R13: 00007f84d4b3cf40 R14: 0000000000000000 R15: 0000000020002340
[ 2157.413413][T20091]  </TASK>
06:45:20 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYRESDEC=r0, @ANYRESHEX=r0, @ANYBLOB=',ro00000000000140000,user_id=', @ANYRESDEC=r0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

[ 2157.469152][T20108] fuse: Unknown parameter '000000000000000000030x0000000000000003'
[ 2157.481942][T20110] FAULT_INJECTION: forcing a failure.
[ 2157.481942][T20110] name failslab, interval 1, probability 0, space 0, times 0
[ 2157.499472][T20110] CPU: 1 PID: 20110 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2157.509424][T20110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2157.519513][T20110] Call Trace:
[ 2157.522816][T20110]  <TASK>
[ 2157.525761][T20110]  dump_stack_lvl+0x125/0x1b0
[ 2157.530487][T20110]  should_fail_ex+0x496/0x5b0
[ 2157.535202][T20110]  should_failslab+0x9/0x20
[ 2157.539730][T20110]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2157.545221][T20110]  ? vfs_parse_fs_string+0xc4/0x150
[ 2157.550455][T20110]  ? vfs_parse_fs_string+0xc4/0x150
[ 2157.555704][T20110]  __kmalloc_node_track_caller+0x50/0x100
[ 2157.561455][T20110]  kmemdup_nul+0x49/0xe0
[ 2157.565734][T20110]  vfs_parse_fs_string+0xc4/0x150
[ 2157.570784][T20110]  ? vfs_parse_fs_param+0x3c0/0x3c0
[ 2157.576004][T20110]  ? bpf_lsm_sb_eat_lsm_opts+0x9/0x10
[ 2157.581384][T20110]  generic_parse_monolithic+0x16d/0x1f0
[ 2157.586943][T20110]  ? vfs_parse_fs_string+0x150/0x150
[ 2157.592242][T20110]  ? fuse_conn_destroy+0x290/0x290
[ 2157.597442][T20110]  ? alloc_fs_context+0x5ba/0x9f0
[ 2157.602470][T20110]  path_mount+0x1449/0x1ed0
[ 2157.606987][T20110]  ? kmem_cache_free+0xf0/0x480
[ 2157.611852][T20110]  ? finish_automount+0xa50/0xa50
[ 2157.616891][T20110]  ? putname+0x101/0x140
[ 2157.621143][T20110]  __x64_sys_mount+0x293/0x310
[ 2157.625920][T20110]  ? copy_mnt_ns+0xb60/0xb60
[ 2157.630518][T20110]  ? rcu_is_watching+0x12/0xb0
[ 2157.635285][T20110]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2157.641275][T20110]  do_syscall_64+0x38/0xb0
[ 2157.645716][T20110]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2157.651711][T20110] RIP: 0033:0x7f115b87e1ea
[ 2157.656126][T20110] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2157.675768][T20110] RSP: 002b:00007f115c552ee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2157.684185][T20110] RAX: ffffffffffffffda RBX: 00007f115c552f80 RCX: 00007f115b87e1ea
[ 2157.692159][T20110] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2157.700133][T20110] RBP: 00000000200022c0 R08: 00007f115c552f80 R09: 0000000000000000
[ 2157.708105][T20110] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
06:45:20 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 29)

06:45:20 executing program 3:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

06:45:20 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB="2c726f6f746d6f64653d3030303030303082f1303030303030303030303030303030302c757365725f69643d", @ANYRESDEC=0x0, @ANYBLOB="2c05000000000000003d", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r1=>r0, {0x9}}, './file0\x00'})
fanotify_mark(0xffffffffffffffff, 0x490, 0x21, r1, &(0x7f00000002c0)='./file0\x00')
r2 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r2, 0x0, 0x0)
sendmsg$L2TP_CMD_SESSION_MODIFY(r2, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x5c, 0x0, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@L2TP_ATTR_UDP_DPORT={0x6, 0x1b, 0x4e21}, @L2TP_ATTR_RECV_SEQ={0x5, 0x12, 0x3}, @L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0x1f}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @L2TP_ATTR_DEBUG={0x8, 0x11, 0x1}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @loopback}, @L2TP_ATTR_UDP_CSUM={0x5, 0xd, 0x1}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000000}, 0x8010)
write$9p(r2, 0x0, 0x0)
fanotify_mark(0xffffffffffffffff, 0x8, 0x0, r2, &(0x7f0000000000)='./file0\x00')
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB="2c726f6f746d6f64653d3030303030303082f1303030303030303030303030303030302c757365725f69643d", @ANYRESDEC=0x0, @ANYBLOB="2c05000000000000003d", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000280)={{0x1, 0x1, 0x18, r0, {0x9}}, './file0\x00'}) (async)
fanotify_mark(0xffffffffffffffff, 0x490, 0x21, r1, &(0x7f00000002c0)='./file0\x00') (async)
bpf$ITER_CREATE(0x21, 0x0, 0x0) (async)
sendmsg$IPCTNL_MSG_EXP_NEW(r2, 0x0, 0x0) (async)
sendmsg$L2TP_CMD_SESSION_MODIFY(r2, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x5c, 0x0, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@L2TP_ATTR_UDP_DPORT={0x6, 0x1b, 0x4e21}, @L2TP_ATTR_RECV_SEQ={0x5, 0x12, 0x3}, @L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0x1f}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @L2TP_ATTR_DEBUG={0x8, 0x11, 0x1}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @loopback}, @L2TP_ATTR_UDP_CSUM={0x5, 0xd, 0x1}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000000}, 0x8010) (async)
write$9p(r2, 0x0, 0x0) (async)
fanotify_mark(0xffffffffffffffff, 0x8, 0x0, r2, &(0x7f0000000000)='./file0\x00') (async)

06:45:20 executing program 4:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0) (async)
bpf$OBJ_GET_PROG(0x7, &(0x7f00000009c0)={&(0x7f0000000980)='./file0/file0/file0\x00', 0x0, 0x18}, 0x10) (async, rerun: 64)
sendmsg$OSF_MSG_REMOVE(r1, &(0x7f0000000900)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000008c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x710}, 0x1, 0x0, 0x0, 0x20004010}, 0x8040) (rerun: 64)
write$9p(r1, 0x0, 0x0) (async)
fanotify_mark(r1, 0x40, 0x1069, r0, &(0x7f0000000000)='./file0/file0\x00') (async)
sendmsg$L2TP_CMD_TUNNEL_MODIFY(0xffffffffffffffff, &(0x7f0000000a40)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x20000200}, 0xc, &(0x7f0000000a00)={&(0x7f0000000a80)=ANY=[@ANYBLOB="54a3d100423fd9c9f92843879b29d038f124476238b9862b268c85117bcbb3", @ANYRES16=0x0, @ANYBLOB="08002bbd7000fedbdf2503000000080018006401010008000b0001000000050005000100000006001a00000300000500210000000000060003008000000008000c00040000000500040000000000"], 0x54}, 0x1, 0x0, 0x0, 0x20040800}, 0x854)

[ 2157.716075][T20110] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2157.724060][T20110]  </TASK>
06:45:21 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 29)

06:45:21 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
write$9p(r1, 0x0, 0x0)
read$FUSE(r1, &(0x7f0000000000)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_IOCTL(0xffffffffffffffff, &(0x7f0000002040)={0x20, 0x0, r2, {0x97d8, 0x0, 0x8, 0x4}}, 0x20)
r3 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r3, 0x0, 0x0)
write$9p(r3, 0x0, 0x0)
ioctl$SG_BLKSECTGET(r3, 0x1267, &(0x7f00000020c0))

[ 2157.766470][T20121] fuse: Unknown parameter '000000000000000000030x0000000000000003'
[ 2157.788423][T20124] fuse: Bad value for 'fd'
[ 2157.794320][T20124] FAULT_INJECTION: forcing a failure.
[ 2157.794320][T20124] name fail_usercopy, interval 1, probability 0, space 0, times 0
06:45:21 executing program 3:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

06:45:21 executing program 0:
openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0xa4, 0x0, 0x9, 0x5, 0x0, 0x0, {0x1, 0x0, 0xa}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x58, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x12}}, {0x8, 0x2, @multicast2}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @loopback}, {0x8, 0x2, @remote}}}]}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x8}]}, 0xa4}, 0x1, 0x0, 0x0, 0x40}, 0x4000080)
r0 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card1/oss_mixer\x00', 0x800800, 0x0)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
write$9p(r1, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x7fff, 0x7}}, './file0\x00'})
r2 = socket$l2tp(0x2, 0x2, 0x73)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000240)={{0x1, 0x1, 0x18, r2, {0xee01, 0xee00}}, './file0\x00'})

[ 2157.859830][T20124] CPU: 1 PID: 20124 Comm: syz-executor.5 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2157.869784][T20124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2157.879863][T20124] Call Trace:
[ 2157.883170][T20124]  <TASK>
[ 2157.886206][T20124]  dump_stack_lvl+0x125/0x1b0
[ 2157.890933][T20124]  should_fail_ex+0x496/0x5b0
[ 2157.895668][T20124]  _copy_to_user+0x30/0xb0
[ 2157.900175][T20124]  simple_read_from_buffer+0xd0/0x150
[ 2157.905691][T20124]  proc_fail_nth_read+0x1b0/0x290
[ 2157.910767][T20124]  ? proc_sessionid_read+0x290/0x290
[ 2157.916201][T20124]  ? security_file_permission+0xdc/0x100
[ 2157.921889][T20124]  ? proc_sessionid_read+0x290/0x290
[ 2157.922260][T20141] fuse: Bad value for 'fd'
[ 2157.927199][T20124]  vfs_read+0x1ce/0x930
[ 2157.927238][T20124]  ? kernel_read+0x1b0/0x1b0
[ 2157.940421][T20124]  ? __fget_files+0x279/0x410
[ 2157.945136][T20124]  ksys_read+0x12f/0x250
[ 2157.949407][T20124]  ? vfs_write+0xe40/0xe40
[ 2157.953851][T20124]  ? rcu_is_watching+0x12/0xb0
[ 2157.958638][T20124]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2157.964647][T20124]  do_syscall_64+0x38/0xb0
[ 2157.969101][T20124]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2157.974644][T20143] FAULT_INJECTION: forcing a failure.
[ 2157.974644][T20143] name failslab, interval 1, probability 0, space 0, times 0
[ 2157.975016][T20124] RIP: 0033:0x7f84d3e7b78c
[ 2157.975038][T20124] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[ 2158.011639][T20124] RSP: 002b:00007f84d4b3d0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2158.020075][T20124] RAX: ffffffffffffffda RBX: 00007f84d3f9bf80 RCX: 00007f84d3e7b78c
[ 2158.028056][T20124] RDX: 000000000000000f RSI: 00007f84d4b3d130 RDI: 0000000000000003
[ 2158.036034][T20124] RBP: 00007f84d4b3d120 R08: 0000000000000000 R09: 0000000000000000
[ 2158.044016][T20124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2158.052010][T20124] R13: 000000000000000b R14: 00007f84d3f9bf80 R15: 00007ffd3d07ae58
06:45:21 executing program 3:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

06:45:21 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000042c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="0400"], 0x0, 0x0, 0x0)
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
write$9p(r0, 0x0, 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000004380), 0x1, 0x0)
write$P9_RCREATE(r1, &(0x7f00000043c0)={0x18, 0x73, 0x1, {{0x1, 0x0, 0x5}, 0x2}}, 0x18)
read$FUSE(0xffffffffffffffff, &(0x7f0000000180)={0x2020, 0x0, <r2=>0x0}, 0xfffffffffffffdee)
r3 = getgid()
write$FUSE_CREATE_OPEN(r0, &(0x7f00000021c0)={0xa0, 0x0, r2, {{0x6, 0x3, 0xae, 0x6b, 0xfffff847, 0x4, {0x1, 0x1, 0x4, 0x200, 0x160, 0x1, 0xffff0000, 0x2, 0x5, 0x8000, 0xfffffc01, 0xee00, r3, 0x1000, 0x6}}, {0x0, 0x4}}}, 0xa0)
r4 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r4, 0x0, 0x0)
r5 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r5, 0x0, 0x0)
write$9p(r5, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r4, 0x89f0, &(0x7f0000004340)={'ip6_vti0\x00', &(0x7f0000000100)={'ip6tnl0\x00', 0x0, 0x29, 0x1, 0x40, 0x0, 0x8, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private1, 0x10, 0x1, 0xff, 0x4}})
read$FUSE(r5, &(0x7f0000002280)={0x2020}, 0x2020)
r6 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r6, 0x0, 0x0)
write$9p(r6, 0x0, 0x0)
write$FUSE_NOTIFY_DELETE(r6, &(0x7f0000004400)={0x2a, 0x6, 0x0, {0x3, 0x3, 0x1, 0x0, '*'}}, 0x2a)
write$9p(r4, 0x0, 0x0)
write$9p(r4, &(0x7f0000000000)="94e1192935fc1eaf5707c03f9d8b6cc21f199617f4ac2b79380938a73c671b7b5a94aef00cc1bbfcdaefed72c85a59253d0c17bef838467e84869dcad190948d236206", 0x43)

06:45:21 executing program 0:
openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0) (async)
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0xa4, 0x0, 0x9, 0x5, 0x0, 0x0, {0x1, 0x0, 0xa}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x58, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x12}}, {0x8, 0x2, @multicast2}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @loopback}, {0x8, 0x2, @remote}}}]}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x8}]}, 0xa4}, 0x1, 0x0, 0x0, 0x40}, 0x4000080)
r0 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card1/oss_mixer\x00', 0x800800, 0x0) (async)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0) (async)
write$9p(r1, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x7fff, 0x7}}, './file0\x00'})
r2 = socket$l2tp(0x2, 0x2, 0x73)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000240)={{0x1, 0x1, 0x18, r2, {0xee01, 0xee00}}, './file0\x00'})

[ 2158.060005][T20124]  </TASK>
[ 2158.063551][T20143] CPU: 0 PID: 20143 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2158.073471][T20143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2158.083555][T20143] Call Trace:
[ 2158.086852][T20143]  <TASK>
[ 2158.089804][T20143]  dump_stack_lvl+0x125/0x1b0
[ 2158.094509][T20143]  should_fail_ex+0x496/0x5b0
[ 2158.099208][T20143]  should_failslab+0x9/0x20
[ 2158.103802][T20143]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2158.109359][T20143]  ? fuse_get_tree+0x78/0x640
[ 2158.114128][T20143]  ? bpf_lsm_sb_eat_lsm_opts+0x9/0x10
[ 2158.119514][T20143]  kmalloc_trace+0x25/0xe0
[ 2158.123957][T20143]  fuse_get_tree+0x78/0x640
[ 2158.128478][T20143]  vfs_get_tree+0x8c/0x370
[ 2158.132908][T20143]  path_mount+0x1492/0x1ed0
[ 2158.137421][T20143]  ? kmem_cache_free+0xf0/0x480
[ 2158.142288][T20143]  ? finish_automount+0xa50/0xa50
[ 2158.147322][T20143]  ? putname+0x101/0x140
[ 2158.151576][T20143]  __x64_sys_mount+0x293/0x310
[ 2158.156349][T20143]  ? copy_mnt_ns+0xb60/0xb60
[ 2158.161905][T20143]  ? rcu_is_watching+0x12/0xb0
[ 2158.166675][T20143]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2158.172670][T20143]  do_syscall_64+0x38/0xb0
[ 2158.177102][T20143]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2158.183015][T20143] RIP: 0033:0x7f115b87e1ea
[ 2158.187442][T20143] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
06:45:21 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2158.207066][T20143] RSP: 002b:00007f115c552ee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2158.215491][T20143] RAX: ffffffffffffffda RBX: 00007f115c552f80 RCX: 00007f115b87e1ea
[ 2158.223466][T20143] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2158.231443][T20143] RBP: 00000000200022c0 R08: 00007f115c552f80 R09: 0000000000000000
[ 2158.239416][T20143] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2158.247391][T20143] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2158.255459][T20143]  </TASK>
06:45:21 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 30)

06:45:21 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000042c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="0400"], 0x0, 0x0, 0x0) (async)
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0) (async)
write$9p(r0, 0x0, 0x0) (async)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000004380), 0x1, 0x0)
write$P9_RCREATE(r1, &(0x7f00000043c0)={0x18, 0x73, 0x1, {{0x1, 0x0, 0x5}, 0x2}}, 0x18) (async)
read$FUSE(0xffffffffffffffff, &(0x7f0000000180)={0x2020, 0x0, <r2=>0x0}, 0xfffffffffffffdee)
r3 = getgid()
write$FUSE_CREATE_OPEN(r0, &(0x7f00000021c0)={0xa0, 0x0, r2, {{0x6, 0x3, 0xae, 0x6b, 0xfffff847, 0x4, {0x1, 0x1, 0x4, 0x200, 0x160, 0x1, 0xffff0000, 0x2, 0x5, 0x8000, 0xfffffc01, 0xee00, r3, 0x1000, 0x6}}, {0x0, 0x4}}}, 0xa0)
r4 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r4, 0x0, 0x0)
r5 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r5, 0x0, 0x0) (async)
write$9p(r5, 0x0, 0x0) (async)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r4, 0x89f0, &(0x7f0000004340)={'ip6_vti0\x00', &(0x7f0000000100)={'ip6tnl0\x00', 0x0, 0x29, 0x1, 0x40, 0x0, 0x8, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private1, 0x10, 0x1, 0xff, 0x4}})
read$FUSE(r5, &(0x7f0000002280)={0x2020}, 0x2020)
r6 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r6, 0x0, 0x0)
write$9p(r6, 0x0, 0x0) (async)
write$FUSE_NOTIFY_DELETE(r6, &(0x7f0000004400)={0x2a, 0x6, 0x0, {0x3, 0x3, 0x1, 0x0, '*'}}, 0x2a) (async)
write$9p(r4, 0x0, 0x0) (async)
write$9p(r4, &(0x7f0000000000)="94e1192935fc1eaf5707c03f9d8b6cc21f199617f4ac2b79380938a73c671b7b5a94aef00cc1bbfcdaefed72c85a59253d0c17bef838467e84869dcad190948d236206", 0x43)

[ 2158.292602][T20147] fuse: Bad value for 'fd'
06:45:21 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0) (async)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0) (async)
write$9p(r1, 0x0, 0x0)
read$FUSE(r1, &(0x7f0000000000)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_IOCTL(0xffffffffffffffff, &(0x7f0000002040)={0x20, 0x0, r2, {0x97d8, 0x0, 0x8, 0x4}}, 0x20)
r3 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r3, 0x0, 0x0)
write$9p(r3, 0x0, 0x0) (async, rerun: 32)
ioctl$SG_BLKSECTGET(r3, 0x1267, &(0x7f00000020c0)) (rerun: 32)

06:45:21 executing program 3:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

06:45:21 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000042c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="0400"], 0x0, 0x0, 0x0) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000042c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="0400"], 0x0, 0x0, 0x0)
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
write$9p(r0, 0x0, 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000004380), 0x1, 0x0)
write$P9_RCREATE(r1, &(0x7f00000043c0)={0x18, 0x73, 0x1, {{0x1, 0x0, 0x5}, 0x2}}, 0x18)
read$FUSE(0xffffffffffffffff, &(0x7f0000000180)={0x2020, 0x0, <r2=>0x0}, 0xfffffffffffffdee)
r3 = getgid()
write$FUSE_CREATE_OPEN(r0, &(0x7f00000021c0)={0xa0, 0x0, r2, {{0x6, 0x3, 0xae, 0x6b, 0xfffff847, 0x4, {0x1, 0x1, 0x4, 0x200, 0x160, 0x1, 0xffff0000, 0x2, 0x5, 0x8000, 0xfffffc01, 0xee00, r3, 0x1000, 0x6}}, {0x0, 0x4}}}, 0xa0) (async)
write$FUSE_CREATE_OPEN(r0, &(0x7f00000021c0)={0xa0, 0x0, r2, {{0x6, 0x3, 0xae, 0x6b, 0xfffff847, 0x4, {0x1, 0x1, 0x4, 0x200, 0x160, 0x1, 0xffff0000, 0x2, 0x5, 0x8000, 0xfffffc01, 0xee00, r3, 0x1000, 0x6}}, {0x0, 0x4}}}, 0xa0)
r4 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r4, 0x0, 0x0)
bpf$ITER_CREATE(0x21, 0x0, 0x0) (async)
r5 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r5, 0x0, 0x0) (async)
sendmsg$IPCTNL_MSG_EXP_NEW(r5, 0x0, 0x0)
write$9p(r5, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r4, 0x89f0, &(0x7f0000004340)={'ip6_vti0\x00', &(0x7f0000000100)={'ip6tnl0\x00', 0x0, 0x29, 0x1, 0x40, 0x0, 0x8, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private1, 0x10, 0x1, 0xff, 0x4}}) (async)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r4, 0x89f0, &(0x7f0000004340)={'ip6_vti0\x00', &(0x7f0000000100)={'ip6tnl0\x00', 0x0, 0x29, 0x1, 0x40, 0x0, 0x8, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private1, 0x10, 0x1, 0xff, 0x4}})
read$FUSE(r5, &(0x7f0000002280)={0x2020}, 0x2020)
r6 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r6, 0x0, 0x0) (async)
sendmsg$IPCTNL_MSG_EXP_NEW(r6, 0x0, 0x0)
write$9p(r6, 0x0, 0x0)
write$FUSE_NOTIFY_DELETE(r6, &(0x7f0000004400)={0x2a, 0x6, 0x0, {0x3, 0x3, 0x1, 0x0, '*'}}, 0x2a)
write$9p(r4, 0x0, 0x0)
write$9p(r4, &(0x7f0000000000)="94e1192935fc1eaf5707c03f9d8b6cc21f199617f4ac2b79380938a73c671b7b5a94aef00cc1bbfcdaefed72c85a59253d0c17bef838467e84869dcad190948d236206", 0x43) (async)
write$9p(r4, &(0x7f0000000000)="94e1192935fc1eaf5707c03f9d8b6cc21f199617f4ac2b79380938a73c671b7b5a94aef00cc1bbfcdaefed72c85a59253d0c17bef838467e84869dcad190948d236206", 0x43)

06:45:21 executing program 0:
openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0xa4, 0x0, 0x9, 0x5, 0x0, 0x0, {0x1, 0x0, 0xa}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x58, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x12}}, {0x8, 0x2, @multicast2}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @loopback}, {0x8, 0x2, @remote}}}]}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x8}]}, 0xa4}, 0x1, 0x0, 0x0, 0x40}, 0x4000080)
openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card1/oss_mixer\x00', 0x800800, 0x0) (async)
r0 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card1/oss_mixer\x00', 0x800800, 0x0)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
write$9p(r1, 0x0, 0x0) (async)
write$9p(r1, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x7fff, 0x7}}, './file0\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x7fff, 0x7}}, './file0\x00'})
r2 = socket$l2tp(0x2, 0x2, 0x73)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000240)={{0x1, 0x1, 0x18, r2, {0xee01, 0xee00}}, './file0\x00'})

[ 2158.402624][T20157] fuse: Bad value for 'fd'
06:45:21 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

[ 2158.433421][T20164] FAULT_INJECTION: forcing a failure.
[ 2158.433421][T20164] name failslab, interval 1, probability 0, space 0, times 0
[ 2158.444804][T20165] fuse: Bad value for 'fd'
[ 2158.470804][T20164] CPU: 1 PID: 20164 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
06:45:21 executing program 4:
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$NFNL_MSG_CTHELPER_DEL(0xffffffffffffffff, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000004300)={&(0x7f0000004200)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000042c0)={&(0x7f0000004240)={0x48, 0x14, 0x5, 0x401, 0x70bd2d, 0x25dfdbfd, {0x7, 0x0, 0x1}, [@nested={0x31, 0x45, 0x0, 0x1, [@generic="bebcb8ab7af2a6d3bd90dec046a24751fca9f608dcf4853d4e10f5543cbd4c40655490b5c071c7778ae8065dc8"]}]}, 0x48}, 0x1, 0x0, 0x0, 0x40001}, 0x20000000)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
write$9p(r0, 0x0, 0x0)
write$P9_RMKDIR(r0, &(0x7f0000000040)={0x14, 0x49, 0x1, {0x80, 0x4, 0x2}}, 0x14)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='\x00\x00\x00', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
write$9p(r1, 0x0, 0x0)
write$P9_RLERROR(r1, &(0x7f0000004340)={0x9, 0x7, 0x2}, 0x9)
read$FUSE(0xffffffffffffffff, &(0x7f0000000180)={0x2020, 0x0, <r2=>0x0}, 0x2020)
read$FUSE(0xffffffffffffffff, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_LK(r1, &(0x7f0000000000)={0x28, 0x0, r2, {{0x401, 0x3, 0x1, r3}}}, 0x28)

06:45:21 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0410, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRES32=0x0, @ANYBLOB="e13d7d7f0a352a2accbdc8927900f6e80405c2a56641fb913a6976c9b546a1496e9425b621180c56daa77983da3c3728af173bef548bc3b440d63e2a6b8754535e111244a3b614e8a163bd1ead4c032547290318d340d6fbd484156004d25bb49e54edd906eb5c8e13c2e8fc49d8d1191cb28eb30b709895658dbafc673fe5d8eb5f46d03b973f1e9c81d4dcfe1f1258ed599e4863120a16be70a8ea9a8ff5bf27cfe1bb9b9c1623732cdc8dff67acc14c1b09390554246c44c60d6119186cb1632b6998b978fec7eb415e", @ANYRESDEC=0x0, @ANYBLOB], 0x0, 0x0, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000140)={&(0x7f00000002c0)={0xf0, 0x0, 0x9, 0x0, 0x0, 0x0, {0x1, 0x0, 0x9}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0xc}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0xffffffff}}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x19}, @NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x94, 0x2, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @empty}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x8}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private0}, {0x14, 0x4, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}]}]}, 0xf0}, 0x1, 0x0, 0x0, 0x8050}, 0x20008010)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x3}}, './file1\x00'})
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x200002, 0x0)

06:45:21 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x2, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2158.480847][T20164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2158.490928][T20164] Call Trace:
[ 2158.494236][T20164]  <TASK>
[ 2158.497187][T20164]  dump_stack_lvl+0x125/0x1b0
[ 2158.501905][T20164]  should_fail_ex+0x496/0x5b0
[ 2158.506735][T20164]  should_failslab+0x9/0x20
[ 2158.511273][T20164]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2158.516781][T20164]  ? fuse_get_tree+0xbe/0x640
[ 2158.521499][T20164]  kmalloc_trace+0x25/0xe0
[ 2158.525991][T20164]  fuse_get_tree+0xbe/0x640
[ 2158.530526][T20164]  vfs_get_tree+0x8c/0x370
[ 2158.534967][T20164]  path_mount+0x1492/0x1ed0
[ 2158.539524][T20164]  ? kmem_cache_free+0xf0/0x480
[ 2158.544394][T20164]  ? finish_automount+0xa50/0xa50
[ 2158.549440][T20164]  ? putname+0x101/0x140
[ 2158.553693][T20164]  __x64_sys_mount+0x293/0x310
[ 2158.558468][T20164]  ? copy_mnt_ns+0xb60/0xb60
[ 2158.563065][T20164]  ? rcu_is_watching+0x12/0xb0
[ 2158.567835][T20164]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2158.573825][T20164]  do_syscall_64+0x38/0xb0
[ 2158.578255][T20164]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2158.584167][T20164] RIP: 0033:0x7f115b87e1ea
[ 2158.588625][T20164] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2158.608245][T20164] RSP: 002b:00007f115c552ee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2158.616662][T20164] RAX: ffffffffffffffda RBX: 00007f115c552f80 RCX: 00007f115b87e1ea
[ 2158.624638][T20164] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
06:45:21 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0410, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRES32=0x0, @ANYBLOB="e13d7d7f0a352a2accbdc8927900f6e80405c2a56641fb913a6976c9b546a1496e9425b621180c56daa77983da3c3728af173bef548bc3b440d63e2a6b8754535e111244a3b614e8a163bd1ead4c032547290318d340d6fbd484156004d25bb49e54edd906eb5c8e13c2e8fc49d8d1191cb28eb30b709895658dbafc673fe5d8eb5f46d03b973f1e9c81d4dcfe1f1258ed599e4863120a16be70a8ea9a8ff5bf27cfe1bb9b9c1623732cdc8dff67acc14c1b09390554246c44c60d6119186cb1632b6998b978fec7eb415e", @ANYRESDEC=0x0, @ANYBLOB], 0x0, 0x0, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000140)={&(0x7f00000002c0)={0xf0, 0x0, 0x9, 0x0, 0x0, 0x0, {0x1, 0x0, 0x9}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0xc}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0xffffffff}}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x19}, @NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x94, 0x2, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @empty}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x8}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private0}, {0x14, 0x4, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}]}]}, 0xf0}, 0x1, 0x0, 0x0, 0x8050}, 0x20008010) (async)
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000140)={&(0x7f00000002c0)={0xf0, 0x0, 0x9, 0x0, 0x0, 0x0, {0x1, 0x0, 0x9}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0xc}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0xffffffff}}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x19}, @NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x94, 0x2, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @empty}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x8}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private0}, {0x14, 0x4, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}]}]}, 0xf0}, 0x1, 0x0, 0x0, 0x8050}, 0x20008010)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x3}}, './file1\x00'})
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x200002, 0x0)

[ 2158.632612][T20164] RBP: 00000000200022c0 R08: 00007f115c552f80 R09: 0000000000000000
[ 2158.640590][T20164] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2158.648564][T20164] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2158.656555][T20164]  </TASK>
[ 2158.672209][T20174] fuse: Invalid rootmode
06:45:21 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0) (async)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0) (async)
write$9p(r1, 0x0, 0x0)
read$FUSE(r1, &(0x7f0000000000)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_IOCTL(0xffffffffffffffff, &(0x7f0000002040)={0x20, 0x0, r2, {0x97d8, 0x0, 0x8, 0x4}}, 0x20)
r3 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r3, 0x0, 0x0)
write$9p(r3, 0x0, 0x0) (async)
ioctl$SG_BLKSECTGET(r3, 0x1267, &(0x7f00000020c0))

06:45:21 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 31)

06:45:21 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

06:45:21 executing program 4:
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$NFNL_MSG_CTHELPER_DEL(0xffffffffffffffff, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0) (async)
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000004300)={&(0x7f0000004200)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000042c0)={&(0x7f0000004240)={0x48, 0x14, 0x5, 0x401, 0x70bd2d, 0x25dfdbfd, {0x7, 0x0, 0x1}, [@nested={0x31, 0x45, 0x0, 0x1, [@generic="bebcb8ab7af2a6d3bd90dec046a24751fca9f608dcf4853d4e10f5543cbd4c40655490b5c071c7778ae8065dc8"]}]}, 0x48}, 0x1, 0x0, 0x0, 0x40001}, 0x20000000) (async)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
write$9p(r0, 0x0, 0x0)
write$P9_RMKDIR(r0, &(0x7f0000000040)={0x14, 0x49, 0x1, {0x80, 0x4, 0x2}}, 0x14)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='\x00\x00\x00', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0) (async)
write$9p(r1, 0x0, 0x0)
write$P9_RLERROR(r1, &(0x7f0000004340)={0x9, 0x7, 0x2}, 0x9) (async)
read$FUSE(0xffffffffffffffff, &(0x7f0000000180)={0x2020, 0x0, <r2=>0x0}, 0x2020)
read$FUSE(0xffffffffffffffff, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_LK(r1, &(0x7f0000000000)={0x28, 0x0, r2, {{0x401, 0x3, 0x1, r3}}}, 0x28)

[ 2158.725434][T20179] fuse: Bad value for 'fd'
06:45:21 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0410, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRES32=0x0, @ANYBLOB="e13d7d7f0a352a2accbdc8927900f6e80405c2a56641fb913a6976c9b546a1496e9425b621180c56daa77983da3c3728af173bef548bc3b440d63e2a6b8754535e111244a3b614e8a163bd1ead4c032547290318d340d6fbd484156004d25bb49e54edd906eb5c8e13c2e8fc49d8d1191cb28eb30b709895658dbafc673fe5d8eb5f46d03b973f1e9c81d4dcfe1f1258ed599e4863120a16be70a8ea9a8ff5bf27cfe1bb9b9c1623732cdc8dff67acc14c1b09390554246c44c60d6119186cb1632b6998b978fec7eb415e", @ANYRESDEC=0x0, @ANYBLOB], 0x0, 0x0, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000140)={&(0x7f00000002c0)={0xf0, 0x0, 0x9, 0x0, 0x0, 0x0, {0x1, 0x0, 0x9}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0xc}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0xffffffff}}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x19}, @NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x94, 0x2, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @empty}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x8}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private0}, {0x14, 0x4, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}]}]}, 0xf0}, 0x1, 0x0, 0x0, 0x8050}, 0x20008010)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x3}}, './file1\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x3}}, './file1\x00'})
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x200002, 0x0)

06:45:22 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x3, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:22 executing program 4:
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$NFNL_MSG_CTHELPER_DEL(0xffffffffffffffff, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0) (async)
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000004300)={&(0x7f0000004200)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000042c0)={&(0x7f0000004240)={0x48, 0x14, 0x5, 0x401, 0x70bd2d, 0x25dfdbfd, {0x7, 0x0, 0x1}, [@nested={0x31, 0x45, 0x0, 0x1, [@generic="bebcb8ab7af2a6d3bd90dec046a24751fca9f608dcf4853d4e10f5543cbd4c40655490b5c071c7778ae8065dc8"]}]}, 0x48}, 0x1, 0x0, 0x0, 0x40001}, 0x20000000) (async)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0) (async)
write$9p(r0, 0x0, 0x0) (async)
write$P9_RMKDIR(r0, &(0x7f0000000040)={0x14, 0x49, 0x1, {0x80, 0x4, 0x2}}, 0x14) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='\x00\x00\x00', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0) (async)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0) (async)
write$9p(r1, 0x0, 0x0) (async)
write$P9_RLERROR(r1, &(0x7f0000004340)={0x9, 0x7, 0x2}, 0x9) (async)
read$FUSE(0xffffffffffffffff, &(0x7f0000000180)={0x2020, 0x0, <r2=>0x0}, 0x2020)
read$FUSE(0xffffffffffffffff, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_LK(r1, &(0x7f0000000000)={0x28, 0x0, r2, {{0x401, 0x3, 0x1, r3}}}, 0x28)

06:45:22 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0xffffffffffffffff, 0xffffffffffffffff}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r0}, './file1\x00'})
write$FUSE_NOTIFY_POLL(r2, &(0x7f0000000000)={0x18, 0x1, 0x0, {0x3fd}}, 0x18)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="0400"], 0x0, 0x0, 0x0)

06:45:22 executing program 0:
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
write$9p(r1, 0x0, 0x0)
write$9p(r1, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000000)={0x41, @time={0x8000, 0x2}, 0x80, {0x7, 0x81}, 0xff, 0x0, 0x9})

06:45:22 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000040)={&(0x7f0000000180)={0x60, 0x0, 0x1, 0x5, 0x0, 0x0, {0x6, 0x0, 0x4}, [@CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x1000}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x1000}, @CTA_HELP={0x14, 0x5, 0x0, 0x1, {0xe, 0x1, 'ftp-20000\x00'}}, @CTA_LABELS_MASK={0x28, 0x17, [0x5, 0x7, 0x8, 0x0, 0x3, 0x3, 0x8, 0x20, 0x6]}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000010}, 0x0)

[ 2158.842495][T20191] fuse: Invalid rootmode
[ 2158.859867][T20197] fuse: Bad value for 'fd'
[ 2158.864244][T20200] fuse: Bad value for 'group_id'
06:45:22 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

06:45:22 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x4, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:22 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0xffffffffffffffff, 0xffffffffffffffff}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r0}, './file1\x00'})
write$FUSE_NOTIFY_POLL(r2, &(0x7f0000000000)={0x18, 0x1, 0x0, {0x3fd}}, 0x18)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="0400"], 0x0, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0xffffffffffffffff, 0xffffffffffffffff}}, './file0\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) (async)
write$FUSE_NOTIFY_POLL(r2, &(0x7f0000000000)={0x18, 0x1, 0x0, {0x3fd}}, 0x18) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="0400"], 0x0, 0x0, 0x0) (async)

[ 2158.900514][T20201] FAULT_INJECTION: forcing a failure.
[ 2158.900514][T20201] name failslab, interval 1, probability 0, space 0, times 0
[ 2158.948617][T20205] fuse: Bad value for 'fd'
[ 2158.959910][T20201] CPU: 1 PID: 20201 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2158.969950][T20201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2158.975406][T20209] fuse: Invalid rootmode
[ 2158.980008][T20201] Call Trace:
[ 2158.980023][T20201]  <TASK>
[ 2158.980032][T20201]  dump_stack_lvl+0x125/0x1b0
[ 2158.980074][T20201]  should_fail_ex+0x496/0x5b0
[ 2158.999895][T20201]  should_failslab+0x9/0x20
[ 2159.004432][T20201]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2159.009936][T20201]  ? alloc_super+0x52/0xb40
[ 2159.014481][T20201]  kmalloc_trace+0x25/0xe0
[ 2159.018937][T20201]  alloc_super+0x52/0xb40
[ 2159.021240][T20212] fuse: Bad value for 'group_id'
[ 2159.023284][T20201]  sget_fc+0x145/0x9b0
[ 2159.023323][T20201]  ? set_anon_super+0xb0/0xb0
[ 2159.031350][T20212] fuse: Bad value for 'group_id'
[ 2159.032292][T20201]  ? fuse_fill_super_common+0x1040/0x1040
[ 2159.032326][T20201]  get_tree_nodev+0x28/0x180
[ 2159.052262][T20201]  fuse_get_tree+0x27d/0x640
[ 2159.056884][T20201]  vfs_get_tree+0x8c/0x370
[ 2159.061337][T20201]  path_mount+0x1492/0x1ed0
[ 2159.065863][T20201]  ? kmem_cache_free+0xf0/0x480
[ 2159.070731][T20201]  ? finish_automount+0xa50/0xa50
[ 2159.075772][T20201]  ? putname+0x101/0x140
[ 2159.080023][T20201]  __x64_sys_mount+0x293/0x310
[ 2159.084809][T20201]  ? copy_mnt_ns+0xb60/0xb60
[ 2159.089411][T20201]  ? rcu_is_watching+0x12/0xb0
[ 2159.094184][T20201]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2159.100175][T20201]  do_syscall_64+0x38/0xb0
[ 2159.104609][T20201]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2159.110519][T20201] RIP: 0033:0x7f115b87e1ea
[ 2159.114941][T20201] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2159.134571][T20201] RSP: 002b:00007f115c552ee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
06:45:22 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 32)

[ 2159.142992][T20201] RAX: ffffffffffffffda RBX: 00007f115c552f80 RCX: 00007f115b87e1ea
[ 2159.150983][T20201] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2159.159055][T20201] RBP: 00000000200022c0 R08: 00007f115c552f80 R09: 0000000000000000
[ 2159.167073][T20201] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2159.175482][T20201] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2159.183466][T20201]  </TASK>
06:45:22 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}]}}, 0x0, 0x0, 0x0)

06:45:22 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x5, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:22 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000040)={&(0x7f0000000180)={0x60, 0x0, 0x1, 0x5, 0x0, 0x0, {0x6, 0x0, 0x4}, [@CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x1000}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x1000}, @CTA_HELP={0x14, 0x5, 0x0, 0x1, {0xe, 0x1, 'ftp-20000\x00'}}, @CTA_LABELS_MASK={0x28, 0x17, [0x5, 0x7, 0x8, 0x0, 0x3, 0x3, 0x8, 0x20, 0x6]}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000010}, 0x0)

06:45:22 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0xffffffffffffffff, 0xffffffffffffffff}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r0}, './file1\x00'})
write$FUSE_NOTIFY_POLL(r2, &(0x7f0000000000)={0x18, 0x1, 0x0, {0x3fd}}, 0x18)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="0400"], 0x0, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0xffffffffffffffff, 0xffffffffffffffff}}, './file0\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) (async)
write$FUSE_NOTIFY_POLL(r2, &(0x7f0000000000)={0x18, 0x1, 0x0, {0x3fd}}, 0x18) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="0400"], 0x0, 0x0, 0x0) (async)

06:45:22 executing program 0:
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
write$9p(r1, 0x0, 0x0) (async)
write$9p(r1, 0x0, 0x0)
write$9p(r1, 0x0, 0x0) (async)
write$9p(r1, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000000)={0x41, @time={0x8000, 0x2}, 0x80, {0x7, 0x81}, 0xff, 0x0, 0x9})

06:45:22 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000040)={&(0x7f0000000180)={0x60, 0x0, 0x1, 0x5, 0x0, 0x0, {0x6, 0x0, 0x4}, [@CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x1000}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x1000}, @CTA_HELP={0x14, 0x5, 0x0, 0x1, {0xe, 0x1, 'ftp-20000\x00'}}, @CTA_LABELS_MASK={0x28, 0x17, [0x5, 0x7, 0x8, 0x0, 0x3, 0x3, 0x8, 0x20, 0x6]}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000010}, 0x0)

06:45:22 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x6, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:22 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
r1 = geteuid()
setreuid(r1, 0x0)
write$P9_RUNLINKAT(0xffffffffffffffff, &(0x7f00000000c0)={0x7, 0x4d, 0x1}, 0x7)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0xcc893, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {}, 0x2c, {[], [{@subj_user={'subj_user', 0x3d, 'rootmode'}}, {@appraise_type}, {@uid_gt={'uid>', r1}}]}}, 0x0, 0x0, 0x0)

[ 2159.247946][T20216] fuse: Bad value for 'group_id'
[ 2159.256687][T20220] fuse: Bad value for 'group_id'
[ 2159.268540][T20219] fuse: Bad value for 'fd'
06:45:22 executing program 0:
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0) (async)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
write$9p(r1, 0x0, 0x0)
write$9p(r1, 0x0, 0x0) (async)
write$9p(r1, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000000)={0x41, @time={0x8000, 0x2}, 0x80, {0x7, 0x81}, 0xff, 0x0, 0x9})

06:45:22 executing program 4:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xffffffffffffffff}, 0x2c, {[{@allow_other}]}}, 0x0, 0x0, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x101400, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x8000}}, './file0\x00'})

[ 2159.351127][T20226] fuse: Bad value for 'user_id'
06:45:22 executing program 1:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
r1 = geteuid()
setreuid(r1, 0x0)
write$P9_RUNLINKAT(0xffffffffffffffff, &(0x7f00000000c0)={0x7, 0x4d, 0x1}, 0x7)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0xcc893, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {}, 0x2c, {[], [{@subj_user={'subj_user', 0x3d, 'rootmode'}}, {@appraise_type}, {@uid_gt={'uid>', r1}}]}}, 0x0, 0x0, 0x0)

06:45:22 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}]}}, 0x0, 0x0, 0x0)

[ 2159.379915][T20233] fuse: Bad value for 'fd'
[ 2159.386494][T20234] FAULT_INJECTION: forcing a failure.
[ 2159.386494][T20234] name failslab, interval 1, probability 0, space 0, times 0
[ 2159.417218][T20234] CPU: 0 PID: 20234 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2159.427184][T20234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2159.437269][T20234] Call Trace:
[ 2159.440562][T20234]  <TASK>
[ 2159.443495][T20234]  dump_stack_lvl+0x125/0x1b0
[ 2159.448203][T20234]  should_fail_ex+0x496/0x5b0
[ 2159.452910][T20234]  should_failslab+0x9/0x20
[ 2159.457505][T20234]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2159.462980][T20234]  ? security_sb_alloc+0x1ca/0x260
[ 2159.468122][T20234]  ? security_sb_alloc+0x1ca/0x260
[ 2159.473246][T20234]  __kmalloc+0x4f/0x100
[ 2159.477408][T20234]  security_sb_alloc+0x1ca/0x260
[ 2159.482358][T20234]  alloc_super+0x236/0xb40
[ 2159.486788][T20234]  sget_fc+0x145/0x9b0
[ 2159.490869][T20234]  ? set_anon_super+0xb0/0xb0
[ 2159.495559][T20234]  ? fuse_fill_super_common+0x1040/0x1040
[ 2159.501374][T20234]  get_tree_nodev+0x28/0x180
[ 2159.505981][T20234]  fuse_get_tree+0x27d/0x640
[ 2159.510605][T20234]  vfs_get_tree+0x8c/0x370
[ 2159.515048][T20234]  path_mount+0x1492/0x1ed0
[ 2159.519575][T20234]  ? kmem_cache_free+0xf0/0x480
[ 2159.524440][T20234]  ? finish_automount+0xa50/0xa50
[ 2159.529483][T20234]  ? putname+0x101/0x140
[ 2159.533737][T20234]  __x64_sys_mount+0x293/0x310
[ 2159.538521][T20234]  ? copy_mnt_ns+0xb60/0xb60
[ 2159.543127][T20234]  ? rcu_is_watching+0x12/0xb0
[ 2159.547894][T20234]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2159.553886][T20234]  do_syscall_64+0x38/0xb0
[ 2159.558321][T20234]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2159.564233][T20234] RIP: 0033:0x7f115b87e1ea
[ 2159.568654][T20234] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2159.588273][T20234] RSP: 002b:00007f115c552ee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2159.596694][T20234] RAX: ffffffffffffffda RBX: 00007f115c552f80 RCX: 00007f115b87e1ea
[ 2159.604771][T20234] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2159.612744][T20234] RBP: 00000000200022c0 R08: 00007f115c552f80 R09: 0000000000000000
[ 2159.620813][T20234] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2159.628786][T20234] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2159.636774][T20234]  </TASK>
06:45:22 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 33)

06:45:22 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x7, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:22 executing program 4:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xffffffffffffffff}, 0x2c, {[{@allow_other}]}}, 0x0, 0x0, 0x0) (async)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x101400, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x8000}}, './file0\x00'})

06:45:22 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
r1 = geteuid()
setreuid(r1, 0x0)
write$P9_RUNLINKAT(0xffffffffffffffff, &(0x7f00000000c0)={0x7, 0x4d, 0x1}, 0x7)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0xcc893, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {}, 0x2c, {[], [{@subj_user={'subj_user', 0x3d, 'rootmode'}}, {@appraise_type}, {@uid_gt={'uid>', r1}}]}}, 0x0, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
geteuid() (async)
setreuid(r1, 0x0) (async)
write$P9_RUNLINKAT(0xffffffffffffffff, &(0x7f00000000c0)={0x7, 0x4d, 0x1}, 0x7) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0xcc893, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {}, 0x2c, {[], [{@subj_user={'subj_user', 0x3d, 'rootmode'}}, {@appraise_type}, {@uid_gt={'uid>', r1}}]}}, 0x0, 0x0, 0x0) (async)

06:45:22 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
write$9p(r0, 0x0, 0x0)
r1 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000), 0x10)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {0xee01}}, './file0\x00'})

[ 2159.701083][T20245] fuse: Bad value for 'user_id'
06:45:22 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x9, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2159.731351][T20252] fuse: Bad value for 'fd'
06:45:22 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}]}}, 0x0, 0x0, 0x0)

06:45:22 executing program 4:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xffffffffffffffff}, 0x2c, {[{@allow_other}]}}, 0x0, 0x0, 0x0) (async)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x101400, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x8000}}, './file0\x00'})

06:45:22 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0) (async)
write$9p(r0, 0x0, 0x0)
r1 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000), 0x10)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {0xee01}}, './file0\x00'})

06:45:23 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x10, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:23 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
r1 = syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xffffffffffffffff}}, 0x0, 0x0, 0x0)
r2 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r2, 0x0, 0x0)
write$9p(r2, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r1, {0x10001}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, r3, {0x2ee}}, './file0\x00'})

[ 2159.791562][T20257] fuse: Bad value for 'fd'
[ 2159.826106][T20260] fuse: Bad value for 'group_id'
06:45:23 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
r1 = syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xffffffffffffffff}}, 0x0, 0x0, 0x0) (async)
r2 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r2, 0x0, 0x0) (async)
write$9p(r2, 0x0, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r1, {0x10001}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, r3, {0x2ee}}, './file0\x00'})

[ 2159.867782][T20263] fuse: Bad value for 'user_id'
[ 2159.870663][T20268] fuse: Bad value for 'fd'
[ 2159.932770][T20273] fuse: Bad value for 'group_id'
[ 2159.932966][T20269] FAULT_INJECTION: forcing a failure.
[ 2159.932966][T20269] name failslab, interval 1, probability 0, space 0, times 0
[ 2159.953137][T20269] CPU: 0 PID: 20269 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2159.963085][T20269] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2159.973251][T20269] Call Trace:
[ 2159.976525][T20269]  <TASK>
[ 2159.980577][T20269]  dump_stack_lvl+0x125/0x1b0
[ 2159.985271][T20269]  should_fail_ex+0x496/0x5b0
[ 2159.989973][T20269]  should_failslab+0x9/0x20
[ 2159.994470][T20269]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2159.999945][T20269]  ? security_sb_alloc+0x1ca/0x260
[ 2160.005080][T20269]  ? security_sb_alloc+0x1ca/0x260
[ 2160.010192][T20269]  __kmalloc+0x4f/0x100
[ 2160.014342][T20269]  security_sb_alloc+0x1ca/0x260
[ 2160.019286][T20269]  alloc_super+0x236/0xb40
[ 2160.023710][T20269]  sget_fc+0x145/0x9b0
[ 2160.027778][T20269]  ? set_anon_super+0xb0/0xb0
[ 2160.032457][T20269]  ? fuse_fill_super_common+0x1040/0x1040
[ 2160.038172][T20269]  get_tree_nodev+0x28/0x180
[ 2160.042761][T20269]  fuse_get_tree+0x27d/0x640
[ 2160.047346][T20269]  vfs_get_tree+0x8c/0x370
[ 2160.051767][T20269]  path_mount+0x1492/0x1ed0
[ 2160.056268][T20269]  ? kmem_cache_free+0xf0/0x480
[ 2160.061122][T20269]  ? finish_automount+0xa50/0xa50
[ 2160.066153][T20269]  ? putname+0x101/0x140
[ 2160.070403][T20269]  __x64_sys_mount+0x293/0x310
[ 2160.075167][T20269]  ? copy_mnt_ns+0xb60/0xb60
[ 2160.079767][T20269]  ? rcu_is_watching+0x12/0xb0
[ 2160.084545][T20269]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2160.090518][T20269]  do_syscall_64+0x38/0xb0
[ 2160.094940][T20269]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2160.100872][T20269] RIP: 0033:0x7f115b87e1ea
[ 2160.105273][T20269] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
06:45:23 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 34)

06:45:23 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
write$9p(r0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(0xffffffffffffffff, 0x8004e500, &(0x7f0000000000)=r0)

06:45:23 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}]}}, 0x0, 0x0, 0x0)

06:45:23 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
write$9p(r0, 0x0, 0x0) (async)
r1 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000), 0x10)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {0xee01}}, './file0\x00'})

06:45:23 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x48, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:23 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
r1 = syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xffffffffffffffff}}, 0x0, 0x0, 0x0) (async, rerun: 32)
r2 = bpf$ITER_CREATE(0x21, 0x0, 0x0) (rerun: 32)
sendmsg$IPCTNL_MSG_EXP_NEW(r2, 0x0, 0x0) (async)
write$9p(r2, 0x0, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r1, {0x10001}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, r3, {0x2ee}}, './file0\x00'})

[ 2160.125658][T20269] RSP: 002b:00007f115c552ee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2160.134082][T20269] RAX: ffffffffffffffda RBX: 00007f115c552f80 RCX: 00007f115b87e1ea
[ 2160.142052][T20269] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2160.150017][T20269] RBP: 00000000200022c0 R08: 00007f115c552f80 R09: 0000000000000000
[ 2160.157983][T20269] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2160.165971][T20269] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2160.173978][T20269]  </TASK>
06:45:23 executing program 0:
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000300)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000340)={0x4000000, 0x2, {0xffffffffffffffff, 0x1, 0x278f, 0x1, 0x6}, 0xfffff5b7})
r1 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>r1, {0x0, 0x5}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r3=>r1, {0x1ff}}, '\x00'})
ioctl$FUSE_DEV_IOC_CLONE(r2, 0x8004e500, &(0x7f0000000180)=r3)
r4 = bpf$ITER_CREATE(0x21, &(0x7f00000001c0)={r3}, 0x8)
syz_io_uring_setup(0x3860, &(0x7f0000000200)={0x0, 0x6a77, 0x800, 0x2, 0x1e4, 0x0, r4}, &(0x7f0000000280), &(0x7f00000002c0))

06:45:23 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x4c, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2160.217007][T20278] fuse: Bad value for 'fd'
[ 2160.234880][T20283] fuse: Bad value for 'group_id'
[ 2160.240403][T20284] fuse: Bad value for 'user_id'
06:45:23 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}]}}, 0x0, 0x0, 0x0)

06:45:23 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
write$9p(r0, 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(0xffffffffffffffff, 0x8004e500, &(0x7f0000000000)=r0)

[ 2160.265769][T20289] FAULT_INJECTION: forcing a failure.
[ 2160.265769][T20289] name failslab, interval 1, probability 0, space 0, times 0
[ 2160.289637][T20283] fuse: Bad value for 'group_id'
[ 2160.296301][T20283] fuse: Bad value for 'group_id'
[ 2160.320101][T20283] fuse: Bad value for 'group_id'
[ 2160.323978][T20289] CPU: 0 PID: 20289 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2160.332046][T20283] fuse: Bad value for 'group_id'
[ 2160.334959][T20289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2160.334976][T20289] Call Trace:
[ 2160.334986][T20289]  <TASK>
[ 2160.334995][T20289]  dump_stack_lvl+0x125/0x1b0
[ 2160.348572][T20283] fuse: Bad value for 'group_id'
[ 2160.349967][T20289]  should_fail_ex+0x496/0x5b0
[ 2160.350019][T20289]  should_failslab+0x9/0x20
[ 2160.350041][T20289]  __kmem_cache_alloc_node+0x2fd/0x350
[ 2160.350075][T20289]  ? __list_lru_init+0xd1/0x630
[ 2160.350107][T20289]  ? __list_lru_init+0xd1/0x630
[ 2160.350137][T20289]  __kmalloc+0x4f/0x100
[ 2160.350160][T20289]  __list_lru_init+0xd1/0x630
[ 2160.350194][T20289]  alloc_super+0x8ea/0xb40
[ 2160.350226][T20289]  sget_fc+0x145/0x9b0
[ 2160.356019][T20283] fuse: Bad value for 'group_id'
[ 2160.356426][T20289]  ? set_anon_super+0xb0/0xb0
[ 2160.362832][T20283] fuse: Bad value for 'group_id'
[ 2160.366002][T20289]  ? fuse_fill_super_common+0x1040/0x1040
[ 2160.366034][T20289]  get_tree_nodev+0x28/0x180
[ 2160.432436][T20289]  fuse_get_tree+0x27d/0x640
[ 2160.437045][T20289]  vfs_get_tree+0x8c/0x370
[ 2160.441478][T20289]  path_mount+0x1492/0x1ed0
[ 2160.446003][T20289]  ? kmem_cache_free+0xf0/0x480
[ 2160.450869][T20289]  ? finish_automount+0xa50/0xa50
[ 2160.455920][T20289]  ? putname+0x101/0x140
[ 2160.460186][T20289]  __x64_sys_mount+0x293/0x310
[ 2160.464973][T20289]  ? copy_mnt_ns+0xb60/0xb60
[ 2160.469584][T20289]  ? rcu_is_watching+0x12/0xb0
[ 2160.474359][T20289]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2160.480354][T20289]  do_syscall_64+0x38/0xb0
[ 2160.484789][T20289]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2160.490729][T20289] RIP: 0033:0x7f115b87e1ea
[ 2160.495149][T20289] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2160.514869][T20289] RSP: 002b:00007f115c552ee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2160.523290][T20289] RAX: ffffffffffffffda RBX: 00007f115c552f80 RCX: 00007f115b87e1ea
[ 2160.531267][T20289] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2160.539241][T20289] RBP: 00000000200022c0 R08: 00007f115c552f80 R09: 0000000000000000
[ 2160.547400][T20289] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2160.555375][T20289] R13: 00007f115c552f40 R14: 0000000000000000 R15: 0000000020002340
[ 2160.563449][T20289]  </TASK>
[ 2160.580320][T20283] fuse: Bad value for 'group_id'
[ 2160.585816][T20283] fuse: Bad value for 'group_id'
[ 2160.594622][T20283] fuse: Bad value for 'group_id'
[ 2160.600362][T20283] fuse: Bad value for 'group_id'
[ 2160.600528][T20294] fuse: Bad value for 'user_id'
[ 2160.605777][T20283] fuse: Bad value for 'group_id'
[ 2160.611776][T20299] fuse: Bad value for 'fd'
[ 2160.616328][T20283] fuse: Bad value for 'group_id'
[ 2160.625143][T20283] fuse: Bad value for 'group_id'
06:45:23 executing program 0:
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000300)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000340)={0x4000000, 0x2, {0xffffffffffffffff, 0x1, 0x278f, 0x1, 0x6}, 0xfffff5b7}) (async, rerun: 32)
r1 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (rerun: 32)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>r1, {0x0, 0x5}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r3=>r1, {0x1ff}}, '\x00'})
ioctl$FUSE_DEV_IOC_CLONE(r2, 0x8004e500, &(0x7f0000000180)=r3) (async, rerun: 32)
r4 = bpf$ITER_CREATE(0x21, &(0x7f00000001c0)={r3}, 0x8) (rerun: 32)
syz_io_uring_setup(0x3860, &(0x7f0000000200)={0x0, 0x6a77, 0x800, 0x2, 0x1e4, 0x0, r4}, &(0x7f0000000280), &(0x7f00000002c0))

06:45:23 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0) (async)
write$9p(r0, 0x0, 0x0) (async)
ioctl$FUSE_DEV_IOC_CLONE(0xffffffffffffffff, 0x8004e500, &(0x7f0000000000)=r0)

[ 2160.635591][T20283] fuse: Bad value for 'group_id'
06:45:23 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0) (fail_nth: 35)

06:45:23 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x60, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:23 executing program 0:
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000300)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000340)={0x4000000, 0x2, {0xffffffffffffffff, 0x1, 0x278f, 0x1, 0x6}, 0xfffff5b7})
r1 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>r1, {0x0, 0x5}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {0x1ff}}, '\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r3=>r1, {0x1ff}}, '\x00'})
ioctl$FUSE_DEV_IOC_CLONE(r2, 0x8004e500, &(0x7f0000000180)=r3) (async)
ioctl$FUSE_DEV_IOC_CLONE(r2, 0x8004e500, &(0x7f0000000180)=r3)
r4 = bpf$ITER_CREATE(0x21, &(0x7f00000001c0)={r3}, 0x8)
syz_io_uring_setup(0x3860, &(0x7f0000000200)={0x0, 0x6a77, 0x800, 0x2, 0x1e4, 0x0, r4}, &(0x7f0000000280), &(0x7f00000002c0))

06:45:23 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}]}}, 0x0, 0x0, 0x0)

06:45:23 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
r0 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)
syz_io_uring_setup(0x2612, &(0x7f0000000180)={0x0, 0x7033, 0x0, 0x1, 0x260}, &(0x7f0000000040), &(0x7f0000000200))
syz_io_uring_submit(0x0, r0, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x23456})
read$FUSE(0xffffffffffffffff, &(0x7f0000000240)={0x2020}, 0x2020)

[ 2160.691838][ T1229] ieee802154 phy0 wpan0: encryption failed: -22
[ 2160.710664][ T1229] ieee802154 phy1 wpan1: encryption failed: -22
[ 2160.711547][T20283] fuse: Bad value for 'group_id'
[ 2160.723103][T20283] fuse: Bad value for 'group_id'
[ 2160.728687][T20283] fuse: Bad value for 'group_id'
[ 2160.734443][T20283] fuse: Bad value for 'group_id'
[ 2160.746376][T20283] fuse: Bad value for 'group_id'
[ 2160.752612][T20283] fuse: Bad value for 'group_id'
[ 2160.756373][T20308] fuse: Bad value for 'user_id'
[ 2160.770917][T20283] fuse: Bad value for 'group_id'
[ 2160.793743][T20283] fuse: Bad value for 'group_id'
[ 2160.801489][T20283] fuse: Bad value for 'group_id'
[ 2160.807006][T20283] fuse: Bad value for 'group_id'
[ 2160.815435][T20283] fuse: Bad value for 'group_id'
[ 2160.851055][T20283] fuse: Bad value for 'group_id'
[ 2160.855920][T20316] FAULT_INJECTION: forcing a failure.
[ 2160.855920][T20316] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2160.856558][T20283] fuse: Bad value for 'group_id'
[ 2160.872795][T20316] CPU: 1 PID: 20316 Comm: syz-executor.2 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2160.875749][T20283] fuse: Bad value for 'group_id'
[ 2160.884242][T20316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2160.884258][T20316] Call Trace:
[ 2160.884267][T20316]  <TASK>
[ 2160.884277][T20316]  dump_stack_lvl+0x125/0x1b0
[ 2160.884321][T20316]  should_fail_ex+0x496/0x5b0
[ 2160.884359][T20316]  _copy_to_user+0x30/0xb0
[ 2160.884388][T20316]  simple_read_from_buffer+0xd0/0x150
[ 2160.884417][T20316]  proc_fail_nth_read+0x1b0/0x290
[ 2160.884455][T20316]  ? proc_sessionid_read+0x290/0x290
[ 2160.884488][T20316]  ? security_file_permission+0xdc/0x100
[ 2160.884526][T20316]  ? proc_sessionid_read+0x290/0x290
[ 2160.884558][T20316]  vfs_read+0x1ce/0x930
[ 2160.884585][T20316]  ? kernel_read+0x1b0/0x1b0
[ 2160.884613][T20316]  ? __fget_files+0x279/0x410
[ 2160.884644][T20316]  ksys_read+0x12f/0x250
[ 2160.884670][T20316]  ? vfs_write+0xe40/0xe40
[ 2160.884695][T20316]  ? rcu_is_watching+0x12/0xb0
[ 2160.884719][T20316]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2160.884749][T20316]  do_syscall_64+0x38/0xb0
[ 2160.884785][T20316]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2160.884833][T20316] RIP: 0033:0x7f115b87b78c
[ 2160.884855][T20316] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[ 2160.884880][T20316] RSP: 002b:00007f115c5530c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2160.884905][T20316] RAX: ffffffffffffffda RBX: 00007f115b99bf80 RCX: 00007f115b87b78c
[ 2160.884923][T20316] RDX: 000000000000000f RSI: 00007f115c553130 RDI: 0000000000000003
[ 2160.884938][T20316] RBP: 00007f115c553120 R08: 0000000000000000 R09: 0000000000000000
06:45:24 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c6771010000000100000052793914edbe56713d", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

06:45:24 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
r0 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)
syz_io_uring_setup(0x2612, &(0x7f0000000180)={0x0, 0x7033, 0x0, 0x1, 0x260}, &(0x7f0000000040), &(0x7f0000000200))
syz_io_uring_submit(0x0, r0, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x23456})
read$FUSE(0xffffffffffffffff, &(0x7f0000000240)={0x2020}, 0x2020)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)
mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000) (async)
syz_io_uring_setup(0x2612, &(0x7f0000000180)={0x0, 0x7033, 0x0, 0x1, 0x260}, &(0x7f0000000040), &(0x7f0000000200)) (async)
syz_io_uring_submit(0x0, r0, 0x0) (async)
syz_io_uring_submit(0x0, r0, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x23456}) (async)
read$FUSE(0xffffffffffffffff, &(0x7f0000000240)={0x2020}, 0x2020) (async)

06:45:24 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}]}}, 0x0, 0x0, 0x0)

06:45:24 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x68, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:24 executing program 0:
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x4a, 0x6}}, './file0\x00'})
write$P9_ROPEN(r0, &(0x7f0000000040)={0x18, 0x71, 0x1, {{0x40, 0x1}, 0x1}}, 0x18)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000300)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB="00721f044df7f2c70271e42a30726f6f746d6f64653d303830bd180000303020303030303030203030303030302c757365725f69643d", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="c42415e7b8942ee86f9062a74b7c3f1dfdb02b0412fe7e1d6ed79b699bb0bc07c85bce9a30f0ac286c16d3cd22f3e0c8c8d63231ee0a338727ac0a1814e23d4585ec3bc4a57b145dff970500000000000000"], 0x0, 0x0, 0x0)
pipe2$watch_queue(&(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f00000001c0)=r1)

06:45:24 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2160.884954][T20316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2160.884970][T20316] R13: 000000000000000b R14: 00007f115b99bf80 R15: 00007fff23cbea38
[ 2160.884995][T20316]  </TASK>
06:45:24 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}}, 0x0, 0x0, 0x0)

06:45:24 executing program 0:
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x4a, 0x6}}, './file0\x00'})
write$P9_ROPEN(r0, &(0x7f0000000040)={0x18, 0x71, 0x1, {{0x40, 0x1}, 0x1}}, 0x18)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000300)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB="00721f044df7f2c70271e42a30726f6f746d6f64653d303830bd180000303020303030303030203030303030302c757365725f69643d", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="c42415e7b8942ee86f9062a74b7c3f1dfdb02b0412fe7e1d6ed79b699bb0bc07c85bce9a30f0ac286c16d3cd22f3e0c8c8d63231ee0a338727ac0a1814e23d4585ec3bc4a57b145dff970500000000000000"], 0x0, 0x0, 0x0)
pipe2$watch_queue(&(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f00000001c0)=r1)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x4a, 0x6}}, './file0\x00'}) (async)
write$P9_ROPEN(r0, &(0x7f0000000040)={0x18, 0x71, 0x1, {{0x40, 0x1}, 0x1}}, 0x18) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000300)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB="00721f044df7f2c70271e42a30726f6f746d6f64653d303830bd180000303020303030303030203030303030302c757365725f69643d", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="c42415e7b8942ee86f9062a74b7c3f1dfdb02b0412fe7e1d6ed79b699bb0bc07c85bce9a30f0ac286c16d3cd22f3e0c8c8d63231ee0a338727ac0a1814e23d4585ec3bc4a57b145dff970500000000000000"], 0x0, 0x0, 0x0) (async)
pipe2$watch_queue(&(0x7f0000000180), 0x80) (async)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f00000001c0)=r1) (async)

[ 2161.129079][T20322] fuse: Bad value for 'user_id'
06:45:24 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x6c, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:24 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x2, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:24 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
r0 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)
syz_io_uring_setup(0x2612, &(0x7f0000000180)={0x0, 0x7033, 0x0, 0x1, 0x260}, &(0x7f0000000040), &(0x7f0000000200)) (async)
syz_io_uring_submit(0x0, r0, 0x0) (async)
syz_io_uring_submit(0x0, r0, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x23456}) (async)
read$FUSE(0xffffffffffffffff, &(0x7f0000000240)={0x2020}, 0x2020)

[ 2161.167198][T20328] fuse: Unknown parameter 'gq
'
06:45:24 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c6771010000000100000052793914edbe56713d", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

06:45:24 executing program 0:
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x4a, 0x6}}, './file0\x00'})
write$P9_ROPEN(r0, &(0x7f0000000040)={0x18, 0x71, 0x1, {{0x40, 0x1}, 0x1}}, 0x18) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000300)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB="00721f044df7f2c70271e42a30726f6f746d6f64653d303830bd180000303020303030303030203030303030302c757365725f69643d", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="c42415e7b8942ee86f9062a74b7c3f1dfdb02b0412fe7e1d6ed79b699bb0bc07c85bce9a30f0ac286c16d3cd22f3e0c8c8d63231ee0a338727ac0a1814e23d4585ec3bc4a57b145dff970500000000000000"], 0x0, 0x0, 0x0) (async)
pipe2$watch_queue(&(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f00000001c0)=r1)

06:45:24 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x74, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2161.263787][T20344] fuse: Bad value for 'user_id'
06:45:24 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}]}}, 0x0, 0x0, 0x0)

06:45:24 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x3, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2161.299499][T20348] fuse: Unknown parameter 'gq
'
06:45:24 executing program 4:
r0 = getgid()
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x20a0010, &(0x7f0000000180)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {'group_id', 0x3d, r0}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x1}}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x600}}, {@blksize={'blksize', 0x3d, 0x1100}}]}}, 0x0, 0x0, 0x0)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
write$9p(r1, 0x0, 0x0)
write$FUSE_NOTIFY_DELETE(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="2b000000060000000000000000000000000000000100000000000000b29c3e80da02a11f5c450081eda5e920dad445ad423ef6b8984cf22223fb15cc6e03bb8979a578d9932b62fa65dcb15ada0f7471b1fee4483a95f8f33534a30f0f5013675689cb211ab3c700087300000000"], 0x2b)
sendmsg$NET_DM_CMD_STOP(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080), 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, 0x0, 0x2, 0x70bd2a, 0x25dfdbfc, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

06:45:24 executing program 0:
sendmsg$L2TP_CMD_TUNNEL_GET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@L2TP_ATTR_IFNAME={0x14, 0x8, 'caif0\x00'}, @L2TP_ATTR_UDP_CSUM={0x5, 0xd, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000801}, 0x40000)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x3, 0x4}}, './file0\x00'})
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)={&(0x7f0000000380)={0xfc, 0x0, 0x1, 0xa00, 0x0, 0x0, {0xa, 0x0, 0x5}, [@CTA_FILTER={0x44, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0xd}, @CTA_FILTER_REPLY_FLAGS={0x8}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x4}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x20}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x246}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0xa0e}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x48}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x802}]}, @CTA_NAT_SRC={0x80, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @empty}, @CTA_NAT_V6_MINIP={0x14, 0x4, @rand_addr=' \x01\x00'}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @multicast1}, @CTA_NAT_V6_MINIP={0x14, 0x4, @mcast1}, @CTA_NAT_V6_MINIP={0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @CTA_NAT_PROTO={0x14, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e23}]}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @empty}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @loopback}]}, @CTA_LABELS_MASK={0x14, 0x17, [0x7, 0xe08, 0x790, 0x8001]}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x1000}, @CTA_STATUS_MASK={0x8, 0x1a, 0x1, 0x0, 0x714}]}, 0xfc}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x1000}}, {@default_permissions}, {@default_permissions}, {@max_read={'max_read', 0x3d, 0x7f}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@max_read={'max_read', 0x3d, 0x4}}, {@blksize={'blksize', 0x3d, 0x1000}}, {@blksize={'blksize', 0x3d, 0xc00}}]}}, 0x0, 0x0, 0x0)
add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc4}, &(0x7f0000000300)={0x0, "46b6e87fe5e19f1fa4c765fcfae94b79016e7e0ea6588fca73179ae8982d0775a3f03ffd7d15fc03d2f53aeeda27e6c3353dec8a59aff37ce20ee7dd9b77d2aa", 0x12}, 0x48, 0x0)

06:45:24 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c6771010000000100000052793914edbe56713d", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c6771010000000100000052793914edbe56713d", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

06:45:24 executing program 4:
r0 = getgid()
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x20a0010, &(0x7f0000000180)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {'group_id', 0x3d, r0}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x1}}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x600}}, {@blksize={'blksize', 0x3d, 0x1100}}]}}, 0x0, 0x0, 0x0)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
write$9p(r1, 0x0, 0x0)
write$FUSE_NOTIFY_DELETE(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="2b000000060000000000000000000000000000000100000000000000b29c3e80da02a11f5c450081eda5e920dad445ad423ef6b8984cf22223fb15cc6e03bb8979a578d9932b62fa65dcb15ada0f7471b1fee4483a95f8f33534a30f0f5013675689cb211ab3c700087300000000"], 0x2b)
sendmsg$NET_DM_CMD_STOP(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080), 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, 0x0, 0x2, 0x70bd2a, 0x25dfdbfc, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
getgid() (async)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x20a0010, &(0x7f0000000180)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {'group_id', 0x3d, r0}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x1}}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x600}}, {@blksize={'blksize', 0x3d, 0x1100}}]}}, 0x0, 0x0, 0x0) (async)
bpf$ITER_CREATE(0x21, 0x0, 0x0) (async)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0) (async)
write$9p(r1, 0x0, 0x0) (async)
write$FUSE_NOTIFY_DELETE(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="2b000000060000000000000000000000000000000100000000000000b29c3e80da02a11f5c450081eda5e920dad445ad423ef6b8984cf22223fb15cc6e03bb8979a578d9932b62fa65dcb15ada0f7471b1fee4483a95f8f33534a30f0f5013675689cb211ab3c700087300000000"], 0x2b) (async)
sendmsg$NET_DM_CMD_STOP(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080), 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, 0x0, 0x2, 0x70bd2a, 0x25dfdbfc, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0xc0}, 0x0) (async)

06:45:24 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x7a, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:24 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x4, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:24 executing program 3:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x74, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:24 executing program 0:
sendmsg$L2TP_CMD_TUNNEL_GET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@L2TP_ATTR_IFNAME={0x14, 0x8, 'caif0\x00'}, @L2TP_ATTR_UDP_CSUM={0x5, 0xd, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000801}, 0x40000)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x3, 0x4}}, './file0\x00'})
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)={&(0x7f0000000380)={0xfc, 0x0, 0x1, 0xa00, 0x0, 0x0, {0xa, 0x0, 0x5}, [@CTA_FILTER={0x44, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0xd}, @CTA_FILTER_REPLY_FLAGS={0x8}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x4}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x20}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x246}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0xa0e}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x48}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x802}]}, @CTA_NAT_SRC={0x80, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @empty}, @CTA_NAT_V6_MINIP={0x14, 0x4, @rand_addr=' \x01\x00'}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @multicast1}, @CTA_NAT_V6_MINIP={0x14, 0x4, @mcast1}, @CTA_NAT_V6_MINIP={0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @CTA_NAT_PROTO={0x14, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e23}]}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @empty}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @loopback}]}, @CTA_LABELS_MASK={0x14, 0x17, [0x7, 0xe08, 0x790, 0x8001]}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x1000}, @CTA_STATUS_MASK={0x8, 0x1a, 0x1, 0x0, 0x714}]}, 0xfc}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x1000}}, {@default_permissions}, {@default_permissions}, {@max_read={'max_read', 0x3d, 0x7f}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@max_read={'max_read', 0x3d, 0x4}}, {@blksize={'blksize', 0x3d, 0x1000}}, {@blksize={'blksize', 0x3d, 0xc00}}]}}, 0x0, 0x0, 0x0)
add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc4}, &(0x7f0000000300)={0x0, "46b6e87fe5e19f1fa4c765fcfae94b79016e7e0ea6588fca73179ae8982d0775a3f03ffd7d15fc03d2f53aeeda27e6c3353dec8a59aff37ce20ee7dd9b77d2aa", 0x12}, 0x48, 0x0)
sendmsg$L2TP_CMD_TUNNEL_GET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@L2TP_ATTR_IFNAME={0x14, 0x8, 'caif0\x00'}, @L2TP_ATTR_UDP_CSUM={0x5, 0xd, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000801}, 0x40000) (async)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000100)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x3, 0x4}}, './file0\x00'}) (async)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)={&(0x7f0000000380)={0xfc, 0x0, 0x1, 0xa00, 0x0, 0x0, {0xa, 0x0, 0x5}, [@CTA_FILTER={0x44, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0xd}, @CTA_FILTER_REPLY_FLAGS={0x8}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x4}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x20}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x246}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0xa0e}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x48}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x802}]}, @CTA_NAT_SRC={0x80, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @empty}, @CTA_NAT_V6_MINIP={0x14, 0x4, @rand_addr=' \x01\x00'}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @multicast1}, @CTA_NAT_V6_MINIP={0x14, 0x4, @mcast1}, @CTA_NAT_V6_MINIP={0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @CTA_NAT_PROTO={0x14, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e23}]}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @empty}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @loopback}]}, @CTA_LABELS_MASK={0x14, 0x17, [0x7, 0xe08, 0x790, 0x8001]}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x1000}, @CTA_STATUS_MASK={0x8, 0x1a, 0x1, 0x0, 0x714}]}, 0xfc}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x1000}}, {@default_permissions}, {@default_permissions}, {@max_read={'max_read', 0x3d, 0x7f}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@max_read={'max_read', 0x3d, 0x4}}, {@blksize={'blksize', 0x3d, 0x1000}}, {@blksize={'blksize', 0x3d, 0xc00}}]}}, 0x0, 0x0, 0x0) (async)
add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc4}, &(0x7f0000000300)={0x0, "46b6e87fe5e19f1fa4c765fcfae94b79016e7e0ea6588fca73179ae8982d0775a3f03ffd7d15fc03d2f53aeeda27e6c3353dec8a59aff37ce20ee7dd9b77d2aa", 0x12}, 0x48, 0x0) (async)

06:45:24 executing program 4:
r0 = getgid()
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x20a0010, &(0x7f0000000180)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {'group_id', 0x3d, r0}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x1}}, {@allow_other}, {@blksize={'blksize', 0x3d, 0x600}}, {@blksize={'blksize', 0x3d, 0x1100}}]}}, 0x0, 0x0, 0x0) (async)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0) (async)
write$9p(r1, 0x0, 0x0) (async)
write$FUSE_NOTIFY_DELETE(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="2b000000060000000000000000000000000000000100000000000000b29c3e80da02a11f5c450081eda5e920dad445ad423ef6b8984cf22223fb15cc6e03bb8979a578d9932b62fa65dcb15ada0f7471b1fee4483a95f8f33534a30f0f5013675689cb211ab3c700087300000000"], 0x2b) (async)
sendmsg$NET_DM_CMD_STOP(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080), 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, 0x0, 0x2, 0x70bd2a, 0x25dfdbfc, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

[ 2161.428185][T20362] fuse: Unknown parameter 'gq
'
[ 2161.430888][T20358] fuse: Bad value for 'user_id'
[ 2161.458640][T20363] fuse: Unknown parameter 'gq
'
06:45:24 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0xb8, 0x2, 0x9, 0x401, 0x0, 0x0, {0x5, 0x0, 0xa}, [@NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_TUPLE={0x68, 0x2, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x24}}}, {0x14, 0x4, @empty}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x6}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0xf6}}, @NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}]}, 0xb8}, 0x1, 0x0, 0x0, 0x40802}, 0x4004880)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:45:24 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x300, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:24 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x5, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:24 executing program 0:
sendmsg$L2TP_CMD_TUNNEL_GET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@L2TP_ATTR_IFNAME={0x14, 0x8, 'caif0\x00'}, @L2TP_ATTR_UDP_CSUM={0x5, 0xd, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000801}, 0x40000) (async)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x3, 0x4}}, './file0\x00'})
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)={&(0x7f0000000380)={0xfc, 0x0, 0x1, 0xa00, 0x0, 0x0, {0xa, 0x0, 0x5}, [@CTA_FILTER={0x44, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0xd}, @CTA_FILTER_REPLY_FLAGS={0x8}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x4}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x20}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x246}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0xa0e}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x48}, @CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x802}]}, @CTA_NAT_SRC={0x80, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @empty}, @CTA_NAT_V6_MINIP={0x14, 0x4, @rand_addr=' \x01\x00'}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @multicast1}, @CTA_NAT_V6_MINIP={0x14, 0x4, @mcast1}, @CTA_NAT_V6_MINIP={0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @CTA_NAT_PROTO={0x14, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e23}]}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @empty}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @loopback}]}, @CTA_LABELS_MASK={0x14, 0x17, [0x7, 0xe08, 0x790, 0x8001]}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x1000}, @CTA_STATUS_MASK={0x8, 0x1a, 0x1, 0x0, 0x714}]}, 0xfc}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x1000}}, {@default_permissions}, {@default_permissions}, {@max_read={'max_read', 0x3d, 0x7f}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@max_read={'max_read', 0x3d, 0x4}}, {@blksize={'blksize', 0x3d, 0x1000}}, {@blksize={'blksize', 0x3d, 0xc00}}]}}, 0x0, 0x0, 0x0)
add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc4}, &(0x7f0000000300)={0x0, "46b6e87fe5e19f1fa4c765fcfae94b79016e7e0ea6588fca73179ae8982d0775a3f03ffd7d15fc03d2f53aeeda27e6c3353dec8a59aff37ce20ee7dd9b77d2aa", 0x12}, 0x48, 0x0)

06:45:24 executing program 3:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x6, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:24 executing program 4:
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x3428}}, './file0\x00'})
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f0000000040)=0x1)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='fd9', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

[ 2161.584850][T20383] fuse: Bad value for 'fd'
06:45:24 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB="400006", @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000001400)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
read$FUSE(r1, &(0x7f0000001440)={0x2020}, 0x2020)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4004, @fd_index=0x4, 0x6, &(0x7f0000000000)=[{&(0x7f0000000180)=""/154, 0x9a}, {&(0x7f0000000240)=""/4096, 0x1000}, {&(0x7f0000001240)=""/228, 0xe4}, {&(0x7f0000001340)=""/157, 0x9d}], 0x4, 0x10})

06:45:24 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x500, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2161.623189][T20388] validate_nla: 12 callbacks suppressed
[ 2161.623207][T20388] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
[ 2161.641596][T20390] fuse: Bad value for 'fd'
[ 2161.657308][T20388] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
06:45:24 executing program 3:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000040)={&(0x7f0000000180)={0x60, 0x0, 0x1, 0x5, 0x0, 0x0, {0x6, 0x0, 0x4}, [@CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x1000}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x1000}, @CTA_HELP={0x14, 0x5, 0x0, 0x1, {0xe, 0x1, 'ftp-20000\x00'}}, @CTA_LABELS_MASK={0x28, 0x17, [0x5, 0x7, 0x8, 0x0, 0x3, 0x3, 0x8, 0x20, 0x6]}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000010}, 0x0)

06:45:24 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x6, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:24 executing program 4:
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x3428}}, './file0\x00'})
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f0000000040)=0x1) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='fd9', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

06:45:24 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB="400006", @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000001400)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
read$FUSE(r1, &(0x7f0000001440)={0x2020}, 0x2020) (async)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4004, @fd_index=0x4, 0x6, &(0x7f0000000000)=[{&(0x7f0000000180)=""/154, 0x9a}, {&(0x7f0000000240)=""/4096, 0x1000}, {&(0x7f0000001240)=""/228, 0xe4}, {&(0x7f0000001340)=""/157, 0x9d}], 0x4, 0x10})

[ 2161.675321][T20388] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
[ 2161.711935][T20401] fuse: Bad value for 'fd'
06:45:25 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0xb8, 0x2, 0x9, 0x401, 0x0, 0x0, {0x5, 0x0, 0xa}, [@NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_TUPLE={0x68, 0x2, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x24}}}, {0x14, 0x4, @empty}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x6}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0xf6}}, @NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}]}, 0xb8}, 0x1, 0x0, 0x0, 0x40802}, 0x4004880) (async)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:45:25 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x600, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:25 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0xffffffffffffffff, 0xffffffffffffffff}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r0}, './file1\x00'})
write$FUSE_NOTIFY_POLL(r2, &(0x7f0000000000)={0x18, 0x1, 0x0, {0x3fd}}, 0x18)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="0400"], 0x0, 0x0, 0x0)

06:45:25 executing program 4:
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x3428}}, './file0\x00'})
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f0000000040)=0x1) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='fd9', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

[ 2161.823180][T20409] fuse: Bad value for 'fd'
06:45:25 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x7, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:25 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x700, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:25 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB="400006", @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000001400)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
read$FUSE(r1, &(0x7f0000001440)={0x2020}, 0x2020)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4004, @fd_index=0x4, 0x6, &(0x7f0000000000)=[{&(0x7f0000000180)=""/154, 0x9a}, {&(0x7f0000000240)=""/4096, 0x1000}, {&(0x7f0000001240)=""/228, 0xe4}, {&(0x7f0000001340)=""/157, 0x9d}], 0x4, 0x10})
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB="400006", @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000001400)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) (async)
read$FUSE(r1, &(0x7f0000001440)={0x2020}, 0x2020) (async)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4004, @fd_index=0x4, 0x6, &(0x7f0000000000)=[{&(0x7f0000000180)=""/154, 0x9a}, {&(0x7f0000000240)=""/4096, 0x1000}, {&(0x7f0000001240)=""/228, 0xe4}, {&(0x7f0000001340)=""/157, 0x9d}], 0x4, 0x10}) (async)

[ 2161.852322][T20414] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
[ 2161.885077][T20413] fuse: Bad value for 'group_id'
06:45:25 executing program 4:
socket$packet(0x11, 0x2, 0x300)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x23a0009, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}}, 0x0, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000200)={&(0x7f0000000000)=[0x0], &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x1, 0x4, 0x7, 0x5})

06:45:25 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0xb8, 0x2, 0x9, 0x401, 0x0, 0x0, {0x5, 0x0, 0xa}, [@NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_TUPLE={0x68, 0x2, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x24}}}, {0x14, 0x4, @empty}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x6}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0xf6}}, @NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}]}, 0xb8}, 0x1, 0x0, 0x0, 0x40802}, 0x4004880)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:45:25 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x900, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2161.921262][T20414] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
[ 2161.946682][T20420] fuse: Bad value for 'fd'
[ 2161.955357][T20414] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
06:45:25 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x8, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:25 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x2, 0x0, 0x3})

06:45:25 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0xb8, 0x2, 0x9, 0x401, 0x0, 0x0, {0x5, 0x0, 0xa}, [@NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_TUPLE={0x68, 0x2, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x24}}}, {0x14, 0x4, @empty}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x6}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0xf6}}, @NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}]}, 0xb8}, 0x1, 0x0, 0x0, 0x40802}, 0x4004880) (async)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:45:25 executing program 4:
socket$packet(0x11, 0x2, 0x300)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x23a0009, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}}, 0x0, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000200)={&(0x7f0000000000)=[0x0], &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x1, 0x4, 0x7, 0x5})
socket$packet(0x11, 0x2, 0x300) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x23a0009, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}}, 0x0, 0x0, 0x0) (async)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000200)={&(0x7f0000000000)=[0x0], &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x1, 0x4, 0x7, 0x5}) (async)

06:45:25 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x9, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:25 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x1020, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2162.041184][T20430] fuse: Bad value for 'fd'
[ 2162.054602][T20429] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
06:45:25 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x2, 0x0, 0x3})

06:45:25 executing program 4:
socket$packet(0x11, 0x2, 0x300)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x23a0009, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}}, 0x0, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000200)={&(0x7f0000000000)=[0x0], &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x1, 0x4, 0x7, 0x5})
socket$packet(0x11, 0x2, 0x300) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x23a0009, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}}, 0x0, 0x0, 0x0) (async)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000200)={&(0x7f0000000000)=[0x0], &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x1, 0x4, 0x7, 0x5}) (async)

[ 2162.119920][T20429] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 2162.128044][T20429] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 2162.156329][T20440] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
06:45:25 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0xa, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:25 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1e30e5861666ea8c0f58d170479e6e6f590ed00607e72d6d2895f158adeb6fe46264342a31108ee05cf4f3848771ac0d1b6391f6738cdbf931f9371c6fedd458a872f5fbeba99e5624f5f8f15c9f9cd8e9ca8ec5bbdc85691c33309b1dee1368322b3e90044a901cbe3352e00ac15c4e690665438792eae56133ddc4ffb74b8bbeba6df32cf86dd36ae921d293", @ANYRESHEX=r0, @ANYRES8=r0, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="2cb848cca500"], 0x0, 0x0, 0x0)

06:45:25 executing program 3:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x700, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:25 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x2, 0x0, 0x3})
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x2, 0x0, 0x3}) (async)

06:45:25 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x1f00, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:25 executing program 4:
r0 = gettid()
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r0, 0x0, 0x4004)
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r0, 0x0, 0x4004)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, {0x9, 0x7}}, './file0\x00'})
keyctl$KEYCTL_WATCH_KEY(0x20, 0x0, r1, 0xd)
geteuid()
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000240)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xffffffffffffffff}}, 0x3, 0x0, 0x0)

06:45:25 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0x101}}, './file0\x00'})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r1, 0xc05064a7, &(0x7f00000002c0)={&(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[{}, {}], &(0x7f0000000240), &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x2, 0x0, 0x8})

06:45:25 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x10, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2162.292758][T20455] fuse: Unknown parameter '0�f�X�pG�noY��-m(��X��o�bd4*1��\��q�c��s���1�7o��X�r��멞V$���\����ʎŻ܅i30��h2+>�J��3R�
[ 2162.292758][T20455] �\NieC����a3����K���m�'
[ 2162.354538][T20461] fuse: Bad value for 'fd'
06:45:25 executing program 4:
r0 = gettid()
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r0, 0x0, 0x4004)
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r0, 0x0, 0x4004) (async)
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r0, 0x0, 0x4004)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x9, 0x7}}, './file0\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, {0x9, 0x7}}, './file0\x00'})
keyctl$KEYCTL_WATCH_KEY(0x20, 0x0, r1, 0xd)
geteuid()
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000240)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xffffffffffffffff}}, 0x3, 0x0, 0x0)

06:45:25 executing program 3:
r0 = geteuid()
r1 = geteuid()
r2 = syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x800000, &(0x7f0000000740)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@blksize={'blksize', 0x3d, 0xc00}}], [{@obj_role={'obj_role', 0x3d, '\'$^)'}}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@seclabel}, {@fsname={'fsname', 0x3d, 'rootmode'}}, {@fowner_gt={'fowner>', r1}}]}}, 0x0, 0x0, &(0x7f0000000200)="e75935c3ee372887ceaa01455ed7c909bc9f84379b427036a84c7bea2c59497ed9923f82500ba8c2827aa88e49bf19532faec20f49ce1e0eecd1fb93a35cae4c08b8cb0b24bf2a")
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0x6ba}}, './file0\x00'})
r4 = gettid()
sendmsg$nl_netfilter(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0x8, &(0x7f0000000100)={&(0x7f00000003c0)={0x354, 0x6, 0x0, 0x201, 0x70bd28, 0x25dfdbfd, {0x3}, [@nested={0x1a6, 0x12, 0x0, 0x1, [@generic="3d27bdbb4c678f60616d76bf7ea460fd3261b824fd15d2e3f2b74b761f0ef6d6347efc7ce36ceb21d080b9101ec7eec47e72d31744db517e25c2a20478b06ccd58cbc9c3f1b8b4539eb9b4916455a941745b2ae2ec110749fabe7f18f9c2b14cf17637b6df7e", @generic="a2a3d93e12d899a2d91fec5efc5c260ee209193690aae6c9658e57de4f2a3890ba120f514379621381b72a1a7966740e8f004067a3be9478bd317bbe7d97e62be447237a5f1e0901030f8787b5a353fe9287c0befb129194353b7fa099f5ea61fcbd3b734ccb5b31251f8173840ae1e1d7f18ecd6ee89c05cd73e694b1b1e581b64c7a9250cbc908d35a7207baac7fda1d3540fc14814e3c03e31f1c55808a9d765dc8fda152c5b11867572d32ae24fbcd850cc83ce256bc770f163dbd732f5d168cdbfff83a551e4bb71a81a81a3a25aadb82aa83a98fe9b7241558bcec7fec2f560d20088f5ee7a591af9531", @generic="0fe937bd5a69e114c28f1a768b52c119e2b01b87180325549b05868aca36efb7880fd99974b41c1c2fa7a61cc2d925fca651e94f553d3b3961b613f0ff988e12ef3de0884c6132", @typed={0x8, 0x81, 0x0, 0x0, @pid=r4}]}, @typed={0x8, 0x63, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x20, 0x0, 0x0, @u32=0x7}, @typed={0xc, 0x3f, 0x0, 0x0, @u64=0x2d6}, @typed={0x8c, 0x58, 0x0, 0x0, @binary="f437113ced7940d62ee3923011c614a58b800e27ccc4e92a67ff2493543a1d168c151467ba8ee475b683dfdca50180c9eab98ec041e40515cd629f545c823bfc07e29c6c9fa717815a11c01daf10a1a41f80fc2a3d524a8dece01b0fb7526c1041f176346a2c6f77686fcd86a460de1724926c52becf67db1e589c42cce78d2f486f45796459d029"}, @typed={0x8, 0x57, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x1a}}, @generic="9eabc999bc2295070325a8cba5523648c681a136318ed58da7d830f271f8c2948d186d53f4e38c1e9a54aa63efba6eb9f0fe1638c8e961bab110855b480fdfdb99d03d2e994d1181de415d1397e028b9445ac3992bef2cffbfc9442c020f538a53b4eec3ea76a81c74605a6d1fdb62f58411f49ff537e59640984dca49df7fa0ae8c83e53df99459ced3dbb70b76771024f502304111b404fb277405d3cb9a66b1cfb173fd6a676cc84216ecaeed6453b91939674c231a947722175b509f5b19607d4f5e0f3a1d1ef2d66ec290cb8eed92332911ca2e20e5edfc8d10c6488e39d7cb97a3be7414"]}, 0x354}, 0x1, 0x0, 0x0, 0x5}, 0x4000000)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',hash,posixacl,fowner<', @ANYRESDEC=r0, @ANYBLOB="288669643d", @ANYRESDEC=r0, @ANYBLOB=',fscontext=unconfined_u,\x00'], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7)
r5 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r5, 0x0, 0x0)
write$9p(r5, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000940)={{0x1, 0x1, 0x18, r2, {<r6=>r0, 0xee01}}, './file1\x00'})
write$FUSE_CREATE_OPEN(r5, &(0x7f0000000980)={0xa0, 0x0, 0x0, {{0x3, 0x0, 0x7, 0x6, 0x7, 0x1, {0x0, 0x2, 0x4936, 0x9, 0x69b, 0x400, 0x8, 0x3f, 0x8, 0x8000, 0x8, r6, 0xffffffffffffffff, 0x200, 0x9}}, {0x0, 0xc}}}, 0xa0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=@bloom_filter={0x1e, 0x9, 0x100, 0xfffffffc, 0x1800, r3, 0x7, '\x00', 0x0, r3, 0x1, 0x5, 0x3, 0x2}, 0x48)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r3, 0xc0189372, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r8=>r7, {0x1f}}, './file1\x00'})
sendmsg$nl_netfilter(r8, &(0x7f0000000b40)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000900)={0x14, 0x10, 0xa, 0x401, 0x70bd2b, 0x25dfdbff, {0x0, 0x0, 0x6}}, 0x14}, 0x1, 0x0, 0x0, 0xc010}, 0x4081)

06:45:25 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0x101}}, './file0\x00'})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r1, 0xc05064a7, &(0x7f00000002c0)={&(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[{}, {}], &(0x7f0000000240), &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x2, 0x0, 0x8})

06:45:25 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x300, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:25 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x2000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:25 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1e30e5861666ea8c0f58d170479e6e6f590ed00607e72d6d2895f158adeb6fe46264342a31108ee05cf4f3848771ac0d1b6391f6738cdbf931f9371c6fedd458a872f5fbeba99e5624f5f8f15c9f9cd8e9ca8ec5bbdc85691c33309b1dee1368322b3e90044a901cbe3352e00ac15c4e690665438792eae56133ddc4ffb74b8bbeba6df32cf86dd36ae921d293", @ANYRESHEX=r0, @ANYRES8=r0, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="2cb848cca500"], 0x0, 0x0, 0x0)

06:45:25 executing program 4:
r0 = gettid()
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r0, 0x0, 0x4004) (async, rerun: 64)
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r0, 0x0, 0x4004) (async, rerun: 64)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, {0x9, 0x7}}, './file0\x00'})
keyctl$KEYCTL_WATCH_KEY(0x20, 0x0, r1, 0xd) (async)
geteuid()
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000240)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xffffffffffffffff}}, 0x3, 0x0, 0x0)

06:45:25 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x101}}, './file0\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0x101}}, './file0\x00'})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r1, 0xc05064a7, &(0x7f00000002c0)={&(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[{}, {}], &(0x7f0000000240), &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x2, 0x0, 0x8})

06:45:25 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x500, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:25 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x2010, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2162.542005][T20476] fuse: Bad value for 'fd'
06:45:25 executing program 3:
r0 = geteuid()
r1 = geteuid()
r2 = syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x800000, &(0x7f0000000740)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@blksize={'blksize', 0x3d, 0xc00}}], [{@obj_role={'obj_role', 0x3d, '\'$^)'}}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@seclabel}, {@fsname={'fsname', 0x3d, 'rootmode'}}, {@fowner_gt={'fowner>', r1}}]}}, 0x0, 0x0, &(0x7f0000000200)="e75935c3ee372887ceaa01455ed7c909bc9f84379b427036a84c7bea2c59497ed9923f82500ba8c2827aa88e49bf19532faec20f49ce1e0eecd1fb93a35cae4c08b8cb0b24bf2a")
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0x6ba}}, './file0\x00'})
r4 = gettid()
sendmsg$nl_netfilter(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0x8, &(0x7f0000000100)={&(0x7f00000003c0)={0x354, 0x6, 0x0, 0x201, 0x70bd28, 0x25dfdbfd, {0x3}, [@nested={0x1a6, 0x12, 0x0, 0x1, [@generic="3d27bdbb4c678f60616d76bf7ea460fd3261b824fd15d2e3f2b74b761f0ef6d6347efc7ce36ceb21d080b9101ec7eec47e72d31744db517e25c2a20478b06ccd58cbc9c3f1b8b4539eb9b4916455a941745b2ae2ec110749fabe7f18f9c2b14cf17637b6df7e", @generic="a2a3d93e12d899a2d91fec5efc5c260ee209193690aae6c9658e57de4f2a3890ba120f514379621381b72a1a7966740e8f004067a3be9478bd317bbe7d97e62be447237a5f1e0901030f8787b5a353fe9287c0befb129194353b7fa099f5ea61fcbd3b734ccb5b31251f8173840ae1e1d7f18ecd6ee89c05cd73e694b1b1e581b64c7a9250cbc908d35a7207baac7fda1d3540fc14814e3c03e31f1c55808a9d765dc8fda152c5b11867572d32ae24fbcd850cc83ce256bc770f163dbd732f5d168cdbfff83a551e4bb71a81a81a3a25aadb82aa83a98fe9b7241558bcec7fec2f560d20088f5ee7a591af9531", @generic="0fe937bd5a69e114c28f1a768b52c119e2b01b87180325549b05868aca36efb7880fd99974b41c1c2fa7a61cc2d925fca651e94f553d3b3961b613f0ff988e12ef3de0884c6132", @typed={0x8, 0x81, 0x0, 0x0, @pid=r4}]}, @typed={0x8, 0x63, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x20, 0x0, 0x0, @u32=0x7}, @typed={0xc, 0x3f, 0x0, 0x0, @u64=0x2d6}, @typed={0x8c, 0x58, 0x0, 0x0, @binary="f437113ced7940d62ee3923011c614a58b800e27ccc4e92a67ff2493543a1d168c151467ba8ee475b683dfdca50180c9eab98ec041e40515cd629f545c823bfc07e29c6c9fa717815a11c01daf10a1a41f80fc2a3d524a8dece01b0fb7526c1041f176346a2c6f77686fcd86a460de1724926c52becf67db1e589c42cce78d2f486f45796459d029"}, @typed={0x8, 0x57, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x1a}}, @generic="9eabc999bc2295070325a8cba5523648c681a136318ed58da7d830f271f8c2948d186d53f4e38c1e9a54aa63efba6eb9f0fe1638c8e961bab110855b480fdfdb99d03d2e994d1181de415d1397e028b9445ac3992bef2cffbfc9442c020f538a53b4eec3ea76a81c74605a6d1fdb62f58411f49ff537e59640984dca49df7fa0ae8c83e53df99459ced3dbb70b76771024f502304111b404fb277405d3cb9a66b1cfb173fd6a676cc84216ecaeed6453b91939674c231a947722175b509f5b19607d4f5e0f3a1d1ef2d66ec290cb8eed92332911ca2e20e5edfc8d10c6488e39d7cb97a3be7414"]}, 0x354}, 0x1, 0x0, 0x0, 0x5}, 0x4000000)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',hash,posixacl,fowner<', @ANYRESDEC=r0, @ANYBLOB="288669643d", @ANYRESDEC=r0, @ANYBLOB=',fscontext=unconfined_u,\x00'], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7)
r5 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r5, 0x0, 0x0)
write$9p(r5, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000940)={{0x1, 0x1, 0x18, r2, {<r6=>r0, 0xee01}}, './file1\x00'})
write$FUSE_CREATE_OPEN(r5, &(0x7f0000000980)={0xa0, 0x0, 0x0, {{0x3, 0x0, 0x7, 0x6, 0x7, 0x1, {0x0, 0x2, 0x4936, 0x9, 0x69b, 0x400, 0x8, 0x3f, 0x8, 0x8000, 0x8, r6, 0xffffffffffffffff, 0x200, 0x9}}, {0x0, 0xc}}}, 0xa0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=@bloom_filter={0x1e, 0x9, 0x100, 0xfffffffc, 0x1800, r3, 0x7, '\x00', 0x0, r3, 0x1, 0x5, 0x3, 0x2}, 0x48)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r3, 0xc0189372, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r8=>r7, {0x1f}}, './file1\x00'})
sendmsg$nl_netfilter(r8, &(0x7f0000000b40)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000900)={0x14, 0x10, 0xa, 0x401, 0x70bd2b, 0x25dfdbff, {0x0, 0x0, 0x6}}, 0x14}, 0x1, 0x0, 0x0, 0xc010}, 0x4081)

06:45:25 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x600, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:25 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0xd8, 0x2, 0x9, 0x401, 0x0, 0x0, {0x5, 0x0, 0x5}, [@NFCTH_TUPLE={0x3c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x35}}, {0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x16}}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x9}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @rand_addr=0x64010102}, {0x8, 0x2, @private=0xa010100}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}]}, @NFCTH_TUPLE={0x34, 0x2, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @rand_addr=0x64010100}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x17}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0xd8}, 0x1, 0x0, 0x0, 0x4000088}, 0x4000011)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x201, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000340)={{0x1, 0x1, 0x18, <r2=>r1, {0x80000000}}, './file0\x00'})
sendmsg$IPSET_CMD_LIST(r2, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x24, 0x7, 0x6, 0x801, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x7fffffff}]}, 0x24}, 0x1, 0x0, 0x0, 0x400c0}, 0x40)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

[ 2162.622911][T20480] fuse: Unknown parameter '0�f�X�pG�noY��-m(��X��o�bd4*1��\��q�c��s���1�7o��X�r��멞V$���\����ʎŻ܅i30��h2+>�J��3R�
[ 2162.622911][T20480] �\NieC����a3����K���m�'
06:45:25 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x31a1000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0xfff}}, './file0\x00'})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, {0x552, 0x5}}, './file1\x00'})
r3 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r3, 0x0, 0x0)
write$9p(r3, 0x0, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000180), r3)

06:45:25 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x4000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:25 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1e30e5861666ea8c0f58d170479e6e6f590ed00607e72d6d2895f158adeb6fe46264342a31108ee05cf4f3848771ac0d1b6391f6738cdbf931f9371c6fedd458a872f5fbeba99e5624f5f8f15c9f9cd8e9ca8ec5bbdc85691c33309b1dee1368322b3e90044a901cbe3352e00ac15c4e690665438792eae56133ddc4ffb74b8bbeba6df32cf86dd36ae921d293", @ANYRESHEX=r0, @ANYRES8=r0, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="2cb848cca500"], 0x0, 0x0, 0x0)

[ 2162.685087][T20492] fuse: Bad value for 'fd'
06:45:25 executing program 3:
r0 = geteuid()
r1 = geteuid()
r2 = syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x800000, &(0x7f0000000740)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@blksize={'blksize', 0x3d, 0xc00}}], [{@obj_role={'obj_role', 0x3d, '\'$^)'}}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@seclabel}, {@fsname={'fsname', 0x3d, 'rootmode'}}, {@fowner_gt={'fowner>', r1}}]}}, 0x0, 0x0, &(0x7f0000000200)="e75935c3ee372887ceaa01455ed7c909bc9f84379b427036a84c7bea2c59497ed9923f82500ba8c2827aa88e49bf19532faec20f49ce1e0eecd1fb93a35cae4c08b8cb0b24bf2a")
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0x6ba}}, './file0\x00'})
r4 = gettid()
sendmsg$nl_netfilter(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0x8, &(0x7f0000000100)={&(0x7f00000003c0)={0x354, 0x6, 0x0, 0x201, 0x70bd28, 0x25dfdbfd, {0x3}, [@nested={0x1a6, 0x12, 0x0, 0x1, [@generic="3d27bdbb4c678f60616d76bf7ea460fd3261b824fd15d2e3f2b74b761f0ef6d6347efc7ce36ceb21d080b9101ec7eec47e72d31744db517e25c2a20478b06ccd58cbc9c3f1b8b4539eb9b4916455a941745b2ae2ec110749fabe7f18f9c2b14cf17637b6df7e", @generic="a2a3d93e12d899a2d91fec5efc5c260ee209193690aae6c9658e57de4f2a3890ba120f514379621381b72a1a7966740e8f004067a3be9478bd317bbe7d97e62be447237a5f1e0901030f8787b5a353fe9287c0befb129194353b7fa099f5ea61fcbd3b734ccb5b31251f8173840ae1e1d7f18ecd6ee89c05cd73e694b1b1e581b64c7a9250cbc908d35a7207baac7fda1d3540fc14814e3c03e31f1c55808a9d765dc8fda152c5b11867572d32ae24fbcd850cc83ce256bc770f163dbd732f5d168cdbfff83a551e4bb71a81a81a3a25aadb82aa83a98fe9b7241558bcec7fec2f560d20088f5ee7a591af9531", @generic="0fe937bd5a69e114c28f1a768b52c119e2b01b87180325549b05868aca36efb7880fd99974b41c1c2fa7a61cc2d925fca651e94f553d3b3961b613f0ff988e12ef3de0884c6132", @typed={0x8, 0x81, 0x0, 0x0, @pid=r4}]}, @typed={0x8, 0x63, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x20, 0x0, 0x0, @u32=0x7}, @typed={0xc, 0x3f, 0x0, 0x0, @u64=0x2d6}, @typed={0x8c, 0x58, 0x0, 0x0, @binary="f437113ced7940d62ee3923011c614a58b800e27ccc4e92a67ff2493543a1d168c151467ba8ee475b683dfdca50180c9eab98ec041e40515cd629f545c823bfc07e29c6c9fa717815a11c01daf10a1a41f80fc2a3d524a8dece01b0fb7526c1041f176346a2c6f77686fcd86a460de1724926c52becf67db1e589c42cce78d2f486f45796459d029"}, @typed={0x8, 0x57, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x1a}}, @generic="9eabc999bc2295070325a8cba5523648c681a136318ed58da7d830f271f8c2948d186d53f4e38c1e9a54aa63efba6eb9f0fe1638c8e961bab110855b480fdfdb99d03d2e994d1181de415d1397e028b9445ac3992bef2cffbfc9442c020f538a53b4eec3ea76a81c74605a6d1fdb62f58411f49ff537e59640984dca49df7fa0ae8c83e53df99459ced3dbb70b76771024f502304111b404fb277405d3cb9a66b1cfb173fd6a676cc84216ecaeed6453b91939674c231a947722175b509f5b19607d4f5e0f3a1d1ef2d66ec290cb8eed92332911ca2e20e5edfc8d10c6488e39d7cb97a3be7414"]}, 0x354}, 0x1, 0x0, 0x0, 0x5}, 0x4000000)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',hash,posixacl,fowner<', @ANYRESDEC=r0, @ANYBLOB="288669643d", @ANYRESDEC=r0, @ANYBLOB=',fscontext=unconfined_u,\x00'], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7)
r5 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r5, 0x0, 0x0)
write$9p(r5, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000940)={{0x1, 0x1, 0x18, r2, {<r6=>r0, 0xee01}}, './file1\x00'})
write$FUSE_CREATE_OPEN(r5, &(0x7f0000000980)={0xa0, 0x0, 0x0, {{0x3, 0x0, 0x7, 0x6, 0x7, 0x1, {0x0, 0x2, 0x4936, 0x9, 0x69b, 0x400, 0x8, 0x3f, 0x8, 0x8000, 0x8, r6, 0xffffffffffffffff, 0x200, 0x9}}, {0x0, 0xc}}}, 0xa0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=@bloom_filter={0x1e, 0x9, 0x100, 0xfffffffc, 0x1800, r3, 0x7, '\x00', 0x0, r3, 0x1, 0x5, 0x3, 0x2}, 0x48)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r3, 0xc0189372, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r8=>r7, {0x1f}}, './file1\x00'})
sendmsg$nl_netfilter(r8, &(0x7f0000000b40)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000900)={0x14, 0x10, 0xa, 0x401, 0x70bd2b, 0x25dfdbff, {0x0, 0x0, 0x6}}, 0x14}, 0x1, 0x0, 0x0, 0xc010}, 0x4081)

06:45:25 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0xd8, 0x2, 0x9, 0x401, 0x0, 0x0, {0x5, 0x0, 0x5}, [@NFCTH_TUPLE={0x3c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x35}}, {0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x16}}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x9}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @rand_addr=0x64010102}, {0x8, 0x2, @private=0xa010100}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}]}, @NFCTH_TUPLE={0x34, 0x2, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @rand_addr=0x64010100}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x17}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0xd8}, 0x1, 0x0, 0x0, 0x4000088}, 0x4000011)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x201, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000340)={{0x1, 0x1, 0x18, <r2=>r1, {0x80000000}}, './file0\x00'})
sendmsg$IPSET_CMD_LIST(r2, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x24, 0x7, 0x6, 0x801, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x7fffffff}]}, 0x24}, 0x1, 0x0, 0x0, 0x400c0}, 0x40)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) (async)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0xd8, 0x2, 0x9, 0x401, 0x0, 0x0, {0x5, 0x0, 0x5}, [@NFCTH_TUPLE={0x3c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x35}}, {0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x16}}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x9}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @rand_addr=0x64010102}, {0x8, 0x2, @private=0xa010100}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}]}, @NFCTH_TUPLE={0x34, 0x2, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @rand_addr=0x64010100}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x17}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0xd8}, 0x1, 0x0, 0x0, 0x4000088}, 0x4000011) (async)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x201, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000340)={{0x1, 0x1, 0x18, r1, {0x80000000}}, './file0\x00'}) (async)
sendmsg$IPSET_CMD_LIST(r2, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x24, 0x7, 0x6, 0x801, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x7fffffff}]}, 0x24}, 0x1, 0x0, 0x0, 0x400c0}, 0x40) (async)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)

[ 2162.751832][T20497] fuse: Bad value for 'fd'
06:45:26 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x4800, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:26 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x700, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:26 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x31a1000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0xfff}}, './file0\x00'})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, {0x552, 0x5}}, './file1\x00'})
r3 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r3, 0x0, 0x0)
write$9p(r3, 0x0, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000180), r3)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x31a1000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0xfff}}, './file0\x00'}) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, {0x552, 0x5}}, './file1\x00'}) (async)
bpf$ITER_CREATE(0x21, 0x0, 0x0) (async)
sendmsg$IPCTNL_MSG_EXP_NEW(r3, 0x0, 0x0) (async)
write$9p(r3, 0x0, 0x0) (async)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000180), r3) (async)

[ 2162.806891][T20504] fuse: Unknown parameter '0�f�X�pG�noY��-m(��X��o�bd4*1��\��q�c��s���1�7o��X�r��멞V$���\����ʎŻ܅i30��h2+>�J��3R�
[ 2162.806891][T20504] �\NieC����a3����K���m�'
[ 2162.838019][T20507] fuse: Bad value for 'fd'
06:45:26 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0xd8, 0x2, 0x9, 0x401, 0x0, 0x0, {0x5, 0x0, 0x5}, [@NFCTH_TUPLE={0x3c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x35}}, {0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x16}}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x9}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @rand_addr=0x64010102}, {0x8, 0x2, @private=0xa010100}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}]}, @NFCTH_TUPLE={0x34, 0x2, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @rand_addr=0x64010100}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x17}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0xd8}, 0x1, 0x0, 0x0, 0x4000088}, 0x4000011) (async)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x201, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000340)={{0x1, 0x1, 0x18, <r2=>r1, {0x80000000}}, './file0\x00'})
sendmsg$IPSET_CMD_LIST(r2, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x24, 0x7, 0x6, 0x801, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x7fffffff}]}, 0x24}, 0x1, 0x0, 0x0, 0x400c0}, 0x40) (async)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

06:45:26 executing program 3:
r0 = geteuid()
r1 = geteuid()
r2 = syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x800000, &(0x7f0000000740)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@blksize={'blksize', 0x3d, 0xc00}}], [{@obj_role={'obj_role', 0x3d, '\'$^)'}}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@seclabel}, {@fsname={'fsname', 0x3d, 'rootmode'}}, {@fowner_gt={'fowner>', r1}}]}}, 0x0, 0x0, &(0x7f0000000200)="e75935c3ee372887ceaa01455ed7c909bc9f84379b427036a84c7bea2c59497ed9923f82500ba8c2827aa88e49bf19532faec20f49ce1e0eecd1fb93a35cae4c08b8cb0b24bf2a")
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0x6ba}}, './file0\x00'})
r4 = gettid()
sendmsg$nl_netfilter(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0x8, &(0x7f0000000100)={&(0x7f00000003c0)={0x354, 0x6, 0x0, 0x201, 0x70bd28, 0x25dfdbfd, {0x3}, [@nested={0x1a6, 0x12, 0x0, 0x1, [@generic="3d27bdbb4c678f60616d76bf7ea460fd3261b824fd15d2e3f2b74b761f0ef6d6347efc7ce36ceb21d080b9101ec7eec47e72d31744db517e25c2a20478b06ccd58cbc9c3f1b8b4539eb9b4916455a941745b2ae2ec110749fabe7f18f9c2b14cf17637b6df7e", @generic="a2a3d93e12d899a2d91fec5efc5c260ee209193690aae6c9658e57de4f2a3890ba120f514379621381b72a1a7966740e8f004067a3be9478bd317bbe7d97e62be447237a5f1e0901030f8787b5a353fe9287c0befb129194353b7fa099f5ea61fcbd3b734ccb5b31251f8173840ae1e1d7f18ecd6ee89c05cd73e694b1b1e581b64c7a9250cbc908d35a7207baac7fda1d3540fc14814e3c03e31f1c55808a9d765dc8fda152c5b11867572d32ae24fbcd850cc83ce256bc770f163dbd732f5d168cdbfff83a551e4bb71a81a81a3a25aadb82aa83a98fe9b7241558bcec7fec2f560d20088f5ee7a591af9531", @generic="0fe937bd5a69e114c28f1a768b52c119e2b01b87180325549b05868aca36efb7880fd99974b41c1c2fa7a61cc2d925fca651e94f553d3b3961b613f0ff988e12ef3de0884c6132", @typed={0x8, 0x81, 0x0, 0x0, @pid=r4}]}, @typed={0x8, 0x63, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x20, 0x0, 0x0, @u32=0x7}, @typed={0xc, 0x3f, 0x0, 0x0, @u64=0x2d6}, @typed={0x8c, 0x58, 0x0, 0x0, @binary="f437113ced7940d62ee3923011c614a58b800e27ccc4e92a67ff2493543a1d168c151467ba8ee475b683dfdca50180c9eab98ec041e40515cd629f545c823bfc07e29c6c9fa717815a11c01daf10a1a41f80fc2a3d524a8dece01b0fb7526c1041f176346a2c6f77686fcd86a460de1724926c52becf67db1e589c42cce78d2f486f45796459d029"}, @typed={0x8, 0x57, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x1a}}, @generic="9eabc999bc2295070325a8cba5523648c681a136318ed58da7d830f271f8c2948d186d53f4e38c1e9a54aa63efba6eb9f0fe1638c8e961bab110855b480fdfdb99d03d2e994d1181de415d1397e028b9445ac3992bef2cffbfc9442c020f538a53b4eec3ea76a81c74605a6d1fdb62f58411f49ff537e59640984dca49df7fa0ae8c83e53df99459ced3dbb70b76771024f502304111b404fb277405d3cb9a66b1cfb173fd6a676cc84216ecaeed6453b91939674c231a947722175b509f5b19607d4f5e0f3a1d1ef2d66ec290cb8eed92332911ca2e20e5edfc8d10c6488e39d7cb97a3be7414"]}, 0x354}, 0x1, 0x0, 0x0, 0x5}, 0x4000000)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',hash,posixacl,fowner<', @ANYRESDEC=r0, @ANYBLOB="288669643d", @ANYRESDEC=r0, @ANYBLOB=',fscontext=unconfined_u,\x00'], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7)
r5 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r5, 0x0, 0x0)
write$9p(r5, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000940)={{0x1, 0x1, 0x18, r2, {<r6=>r0, 0xee01}}, './file1\x00'})
write$FUSE_CREATE_OPEN(r5, &(0x7f0000000980)={0xa0, 0x0, 0x0, {{0x3, 0x0, 0x7, 0x6, 0x7, 0x1, {0x0, 0x2, 0x4936, 0x9, 0x69b, 0x400, 0x8, 0x3f, 0x8, 0x8000, 0x8, r6, 0xffffffffffffffff, 0x200, 0x9}}, {0x0, 0xc}}}, 0xa0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=@bloom_filter={0x1e, 0x9, 0x100, 0xfffffffc, 0x1800, r3, 0x7, '\x00', 0x0, r3, 0x1, 0x5, 0x3, 0x2}, 0x48)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r3, 0xc0189372, &(0x7f0000000280)={{0x1, 0x1, 0x18, r7, {0x1f}}, './file1\x00'})

06:45:26 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x31a1000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0xfff}}, './file0\x00'})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, {0x552, 0x5}}, './file1\x00'})
r3 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r3, 0x0, 0x0)
write$9p(r3, 0x0, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000180), r3)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x31a1000, &(0x7f0000000100)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0xfff}}, './file0\x00'}) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, {0x552, 0x5}}, './file1\x00'}) (async)
bpf$ITER_CREATE(0x21, 0x0, 0x0) (async)
sendmsg$IPCTNL_MSG_EXP_NEW(r3, 0x0, 0x0) (async)
write$9p(r3, 0x0, 0x0) (async)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000180), r3) (async)

[ 2162.856554][T20512] fuse: Bad value for 'fd'
06:45:26 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x4c00, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:26 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x900, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:26 executing program 4:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
write$9p(r1, 0x0, 0x0)
fanotify_mark(r1, 0x40, 0x10, r0, &(0x7f0000000000)='./file0\x00')

[ 2162.915389][T20519] fuse: Bad value for 'fd'
06:45:26 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB="2c726f6f746d7300f36633ce42e43030303030303030e716abde32ab273030303030313430303030f44b3c1ff317000000007108291d812c757365725f69643d51bb4906347bd846a4fa457754cb9841b72ce9f2c33cde1539f16ac43ea2ffffffffdbf7fa1d7607a25a38bbbb9e27fecbe2818aff3932cc4067e0315190c4ce419bfc33e7bfd65fda229f7177073fd79cf080db8c1025", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="0116"], 0x0, 0x0, 0x0)

06:45:26 executing program 3:
r0 = geteuid()
r1 = geteuid()
r2 = syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x800000, &(0x7f0000000740)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@blksize={'blksize', 0x3d, 0xc00}}], [{@obj_role={'obj_role', 0x3d, '\'$^)'}}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@seclabel}, {@fsname={'fsname', 0x3d, 'rootmode'}}, {@fowner_gt={'fowner>', r1}}]}}, 0x0, 0x0, &(0x7f0000000200)="e75935c3ee372887ceaa01455ed7c909bc9f84379b427036a84c7bea2c59497ed9923f82500ba8c2827aa88e49bf19532faec20f49ce1e0eecd1fb93a35cae4c08b8cb0b24bf2a")
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0x6ba}}, './file0\x00'})
r4 = gettid()
sendmsg$nl_netfilter(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0x8, &(0x7f0000000100)={&(0x7f00000003c0)={0x354, 0x6, 0x0, 0x201, 0x70bd28, 0x25dfdbfd, {0x3}, [@nested={0x1a6, 0x12, 0x0, 0x1, [@generic="3d27bdbb4c678f60616d76bf7ea460fd3261b824fd15d2e3f2b74b761f0ef6d6347efc7ce36ceb21d080b9101ec7eec47e72d31744db517e25c2a20478b06ccd58cbc9c3f1b8b4539eb9b4916455a941745b2ae2ec110749fabe7f18f9c2b14cf17637b6df7e", @generic="a2a3d93e12d899a2d91fec5efc5c260ee209193690aae6c9658e57de4f2a3890ba120f514379621381b72a1a7966740e8f004067a3be9478bd317bbe7d97e62be447237a5f1e0901030f8787b5a353fe9287c0befb129194353b7fa099f5ea61fcbd3b734ccb5b31251f8173840ae1e1d7f18ecd6ee89c05cd73e694b1b1e581b64c7a9250cbc908d35a7207baac7fda1d3540fc14814e3c03e31f1c55808a9d765dc8fda152c5b11867572d32ae24fbcd850cc83ce256bc770f163dbd732f5d168cdbfff83a551e4bb71a81a81a3a25aadb82aa83a98fe9b7241558bcec7fec2f560d20088f5ee7a591af9531", @generic="0fe937bd5a69e114c28f1a768b52c119e2b01b87180325549b05868aca36efb7880fd99974b41c1c2fa7a61cc2d925fca651e94f553d3b3961b613f0ff988e12ef3de0884c6132", @typed={0x8, 0x81, 0x0, 0x0, @pid=r4}]}, @typed={0x8, 0x63, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x20, 0x0, 0x0, @u32=0x7}, @typed={0xc, 0x3f, 0x0, 0x0, @u64=0x2d6}, @typed={0x8c, 0x58, 0x0, 0x0, @binary="f437113ced7940d62ee3923011c614a58b800e27ccc4e92a67ff2493543a1d168c151467ba8ee475b683dfdca50180c9eab98ec041e40515cd629f545c823bfc07e29c6c9fa717815a11c01daf10a1a41f80fc2a3d524a8dece01b0fb7526c1041f176346a2c6f77686fcd86a460de1724926c52becf67db1e589c42cce78d2f486f45796459d029"}, @typed={0x8, 0x57, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x1a}}, @generic="9eabc999bc2295070325a8cba5523648c681a136318ed58da7d830f271f8c2948d186d53f4e38c1e9a54aa63efba6eb9f0fe1638c8e961bab110855b480fdfdb99d03d2e994d1181de415d1397e028b9445ac3992bef2cffbfc9442c020f538a53b4eec3ea76a81c74605a6d1fdb62f58411f49ff537e59640984dca49df7fa0ae8c83e53df99459ced3dbb70b76771024f502304111b404fb277405d3cb9a66b1cfb173fd6a676cc84216ecaeed6453b91939674c231a947722175b509f5b19607d4f5e0f3a1d1ef2d66ec290cb8eed92332911ca2e20e5edfc8d10c6488e39d7cb97a3be7414"]}, 0x354}, 0x1, 0x0, 0x0, 0x5}, 0x4000000)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',hash,posixacl,fowner<', @ANYRESDEC=r0, @ANYBLOB="288669643d", @ANYRESDEC=r0, @ANYBLOB=',fscontext=unconfined_u,\x00'], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7)
r5 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r5, 0x0, 0x0)
write$9p(r5, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000940)={{0x1, 0x1, 0x18, r2, {<r6=>r0, 0xee01}}, './file1\x00'})
write$FUSE_CREATE_OPEN(r5, &(0x7f0000000980)={0xa0, 0x0, 0x0, {{0x3, 0x0, 0x7, 0x6, 0x7, 0x1, {0x0, 0x2, 0x4936, 0x9, 0x69b, 0x400, 0x8, 0x3f, 0x8, 0x8000, 0x8, r6, 0xffffffffffffffff, 0x200, 0x9}}, {0x0, 0xc}}}, 0xa0)
bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=@bloom_filter={0x1e, 0x9, 0x100, 0xfffffffc, 0x1800, r3, 0x7, '\x00', 0x0, r3, 0x1, 0x5, 0x3, 0x2}, 0x48)

06:45:26 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x6000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2162.975105][T20523] fuse: Bad value for 'fd'
06:45:26 executing program 4:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
write$9p(r1, 0x0, 0x0)
fanotify_mark(r1, 0x40, 0x10, r0, &(0x7f0000000000)='./file0\x00')
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)
bpf$ITER_CREATE(0x21, 0x0, 0x0) (async)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0) (async)
write$9p(r1, 0x0, 0x0) (async)
fanotify_mark(r1, 0x40, 0x10, r0, &(0x7f0000000000)='./file0\x00') (async)

06:45:26 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
connect$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x7, @private1, 0x9}, 0x20)

06:45:26 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB="2c726f6f746d7300f36633ce42e43030303030303030e716abde32ab273030303030313430303030f44b3c1ff317000000007108291d812c757365725f69643d51bb4906347bd846a4fa457754cb9841b72ce9f2c33cde1539f16ac43ea2ffffffffdbf7fa1d7607a25a38bbbb9e27fecbe2818aff3932cc4067e0315190c4ce419bfc33e7bfd65fda229f7177073fd79cf080db8c1025", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="0116"], 0x0, 0x0, 0x0)

[ 2163.030362][T20533] fuse: Unknown parameter 'rootms'
06:45:26 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0xa00, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2163.065307][T20535] fuse: Bad value for 'fd'
06:45:26 executing program 4:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0) (async)
write$9p(r1, 0x0, 0x0)
fanotify_mark(r1, 0x40, 0x10, r0, &(0x7f0000000000)='./file0\x00')

06:45:26 executing program 3:
r0 = geteuid()
r1 = geteuid()
r2 = syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x800000, &(0x7f0000000740)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@blksize={'blksize', 0x3d, 0xc00}}], [{@obj_role={'obj_role', 0x3d, '\'$^)'}}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@seclabel}, {@fsname={'fsname', 0x3d, 'rootmode'}}, {@fowner_gt={'fowner>', r1}}]}}, 0x0, 0x0, &(0x7f0000000200)="e75935c3ee372887ceaa01455ed7c909bc9f84379b427036a84c7bea2c59497ed9923f82500ba8c2827aa88e49bf19532faec20f49ce1e0eecd1fb93a35cae4c08b8cb0b24bf2a")
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0x6ba}}, './file0\x00'})
r4 = gettid()
sendmsg$nl_netfilter(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0x8, &(0x7f0000000100)={&(0x7f00000003c0)={0x354, 0x6, 0x0, 0x201, 0x70bd28, 0x25dfdbfd, {0x3}, [@nested={0x1a6, 0x12, 0x0, 0x1, [@generic="3d27bdbb4c678f60616d76bf7ea460fd3261b824fd15d2e3f2b74b761f0ef6d6347efc7ce36ceb21d080b9101ec7eec47e72d31744db517e25c2a20478b06ccd58cbc9c3f1b8b4539eb9b4916455a941745b2ae2ec110749fabe7f18f9c2b14cf17637b6df7e", @generic="a2a3d93e12d899a2d91fec5efc5c260ee209193690aae6c9658e57de4f2a3890ba120f514379621381b72a1a7966740e8f004067a3be9478bd317bbe7d97e62be447237a5f1e0901030f8787b5a353fe9287c0befb129194353b7fa099f5ea61fcbd3b734ccb5b31251f8173840ae1e1d7f18ecd6ee89c05cd73e694b1b1e581b64c7a9250cbc908d35a7207baac7fda1d3540fc14814e3c03e31f1c55808a9d765dc8fda152c5b11867572d32ae24fbcd850cc83ce256bc770f163dbd732f5d168cdbfff83a551e4bb71a81a81a3a25aadb82aa83a98fe9b7241558bcec7fec2f560d20088f5ee7a591af9531", @generic="0fe937bd5a69e114c28f1a768b52c119e2b01b87180325549b05868aca36efb7880fd99974b41c1c2fa7a61cc2d925fca651e94f553d3b3961b613f0ff988e12ef3de0884c6132", @typed={0x8, 0x81, 0x0, 0x0, @pid=r4}]}, @typed={0x8, 0x63, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x20, 0x0, 0x0, @u32=0x7}, @typed={0xc, 0x3f, 0x0, 0x0, @u64=0x2d6}, @typed={0x8c, 0x58, 0x0, 0x0, @binary="f437113ced7940d62ee3923011c614a58b800e27ccc4e92a67ff2493543a1d168c151467ba8ee475b683dfdca50180c9eab98ec041e40515cd629f545c823bfc07e29c6c9fa717815a11c01daf10a1a41f80fc2a3d524a8dece01b0fb7526c1041f176346a2c6f77686fcd86a460de1724926c52becf67db1e589c42cce78d2f486f45796459d029"}, @typed={0x8, 0x57, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x1a}}, @generic="9eabc999bc2295070325a8cba5523648c681a136318ed58da7d830f271f8c2948d186d53f4e38c1e9a54aa63efba6eb9f0fe1638c8e961bab110855b480fdfdb99d03d2e994d1181de415d1397e028b9445ac3992bef2cffbfc9442c020f538a53b4eec3ea76a81c74605a6d1fdb62f58411f49ff537e59640984dca49df7fa0ae8c83e53df99459ced3dbb70b76771024f502304111b404fb277405d3cb9a66b1cfb173fd6a676cc84216ecaeed6453b91939674c231a947722175b509f5b19607d4f5e0f3a1d1ef2d66ec290cb8eed92332911ca2e20e5edfc8d10c6488e39d7cb97a3be7414"]}, 0x354}, 0x1, 0x0, 0x0, 0x5}, 0x4000000)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',hash,posixacl,fowner<', @ANYRESDEC=r0, @ANYBLOB="288669643d", @ANYRESDEC=r0, @ANYBLOB=',fscontext=unconfined_u,\x00'], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7)
r5 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r5, 0x0, 0x0)
write$9p(r5, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000940)={{0x1, 0x1, 0x18, r2, {<r6=>r0, 0xee01}}, './file1\x00'})
write$FUSE_CREATE_OPEN(r5, &(0x7f0000000980)={0xa0, 0x0, 0x0, {{0x3, 0x0, 0x7, 0x6, 0x7, 0x1, {0x0, 0x2, 0x4936, 0x9, 0x69b, 0x400, 0x8, 0x3f, 0x8, 0x8000, 0x8, r6, 0xffffffffffffffff, 0x200, 0x9}}, {0x0, 0xc}}}, 0xa0)

06:45:26 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x1020, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:26 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x6264, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:26 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
connect$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x7, @private1, 0x9}, 0x20)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)
connect$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x7, @private1, 0x9}, 0x20) (async)

[ 2163.143665][T20545] fuse: Unknown parameter 'rootms'
06:45:26 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x1f00, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:26 executing program 4:
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x64, <r0=>0xffffffffffffffff}, './file0\x00'})
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}]}}, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0, {0xe0, 0x6}}, './file0\x00'})

06:45:26 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB="2c726f6f746d7300f36633ce42e43030303030303030e716abde32ab273030303030313430303030f44b3c1ff317000000007108291d812c757365725f69643d51bb4906347bd846a4fa457754cb9841b72ce9f2c33cde1539f16ac43ea2ffffffffdbf7fa1d7607a25a38bbbb9e27fecbe2818aff3932cc4067e0315190c4ce419bfc33e7bfd65fda229f7177073fd79cf080db8c1025", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="0116"], 0x0, 0x0, 0x0)

06:45:26 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x6462, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2163.217175][T20557] fuse: Bad value for 'fd'
06:45:26 executing program 4:
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x64, <r0=>0xffffffffffffffff}, './file0\x00'})
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}]}}, 0x0, 0x0, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0, {0xe0, 0x6}}, './file0\x00'})

06:45:26 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
connect$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x7, @private1, 0x9}, 0x20)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)
connect$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x7, @private1, 0x9}, 0x20) (async)

06:45:26 executing program 3:
r0 = geteuid()
r1 = geteuid()
r2 = syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x800000, &(0x7f0000000740)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@blksize={'blksize', 0x3d, 0xc00}}], [{@obj_role={'obj_role', 0x3d, '\'$^)'}}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@seclabel}, {@fsname={'fsname', 0x3d, 'rootmode'}}, {@fowner_gt={'fowner>', r1}}]}}, 0x0, 0x0, &(0x7f0000000200)="e75935c3ee372887ceaa01455ed7c909bc9f84379b427036a84c7bea2c59497ed9923f82500ba8c2827aa88e49bf19532faec20f49ce1e0eecd1fb93a35cae4c08b8cb0b24bf2a")
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {0x6ba}}, './file0\x00'})
r4 = gettid()
sendmsg$nl_netfilter(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0x8, &(0x7f0000000100)={&(0x7f00000003c0)={0x354, 0x6, 0x0, 0x201, 0x70bd28, 0x25dfdbfd, {0x3}, [@nested={0x1a6, 0x12, 0x0, 0x1, [@generic="3d27bdbb4c678f60616d76bf7ea460fd3261b824fd15d2e3f2b74b761f0ef6d6347efc7ce36ceb21d080b9101ec7eec47e72d31744db517e25c2a20478b06ccd58cbc9c3f1b8b4539eb9b4916455a941745b2ae2ec110749fabe7f18f9c2b14cf17637b6df7e", @generic="a2a3d93e12d899a2d91fec5efc5c260ee209193690aae6c9658e57de4f2a3890ba120f514379621381b72a1a7966740e8f004067a3be9478bd317bbe7d97e62be447237a5f1e0901030f8787b5a353fe9287c0befb129194353b7fa099f5ea61fcbd3b734ccb5b31251f8173840ae1e1d7f18ecd6ee89c05cd73e694b1b1e581b64c7a9250cbc908d35a7207baac7fda1d3540fc14814e3c03e31f1c55808a9d765dc8fda152c5b11867572d32ae24fbcd850cc83ce256bc770f163dbd732f5d168cdbfff83a551e4bb71a81a81a3a25aadb82aa83a98fe9b7241558bcec7fec2f560d20088f5ee7a591af9531", @generic="0fe937bd5a69e114c28f1a768b52c119e2b01b87180325549b05868aca36efb7880fd99974b41c1c2fa7a61cc2d925fca651e94f553d3b3961b613f0ff988e12ef3de0884c6132", @typed={0x8, 0x81, 0x0, 0x0, @pid=r4}]}, @typed={0x8, 0x63, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x20, 0x0, 0x0, @u32=0x7}, @typed={0xc, 0x3f, 0x0, 0x0, @u64=0x2d6}, @typed={0x8c, 0x58, 0x0, 0x0, @binary="f437113ced7940d62ee3923011c614a58b800e27ccc4e92a67ff2493543a1d168c151467ba8ee475b683dfdca50180c9eab98ec041e40515cd629f545c823bfc07e29c6c9fa717815a11c01daf10a1a41f80fc2a3d524a8dece01b0fb7526c1041f176346a2c6f77686fcd86a460de1724926c52becf67db1e589c42cce78d2f486f45796459d029"}, @typed={0x8, 0x57, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x1a}}, @generic="9eabc999bc2295070325a8cba5523648c681a136318ed58da7d830f271f8c2948d186d53f4e38c1e9a54aa63efba6eb9f0fe1638c8e961bab110855b480fdfdb99d03d2e994d1181de415d1397e028b9445ac3992bef2cffbfc9442c020f538a53b4eec3ea76a81c74605a6d1fdb62f58411f49ff537e59640984dca49df7fa0ae8c83e53df99459ced3dbb70b76771024f502304111b404fb277405d3cb9a66b1cfb173fd6a676cc84216ecaeed6453b91939674c231a947722175b509f5b19607d4f5e0f3a1d1ef2d66ec290cb8eed92332911ca2e20e5edfc8d10c6488e39d7cb97a3be7414"]}, 0x354}, 0x1, 0x0, 0x0, 0x5}, 0x4000000)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',hash,posixacl,fowner<', @ANYRESDEC=r0, @ANYBLOB="288669643d", @ANYRESDEC=r0, @ANYBLOB=',fscontext=unconfined_u,\x00'], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7)
r5 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r5, 0x0, 0x0)
write$9p(r5, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000940)={{0x1, 0x1, 0x18, r2, {r0, 0xee01}}, './file1\x00'})

06:45:26 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x2000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2163.277098][T20564] fuse: Unknown parameter 'rootms'
06:45:26 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x6800, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:26 executing program 1:
read$FUSE(0xffffffffffffffff, &(0x7f0000000000)={0x2020}, 0x2020)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:45:26 executing program 4:
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x64, <r0=>0xffffffffffffffff}, './file0\x00'})
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}]}}, 0x0, 0x0, 0x0) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}]}}, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0, {0xe0, 0x6}}, './file0\x00'})

06:45:26 executing program 3:
r0 = geteuid()
r1 = geteuid()
syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x800000, &(0x7f0000000740)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@blksize={'blksize', 0x3d, 0xc00}}], [{@obj_role={'obj_role', 0x3d, '\'$^)'}}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@seclabel}, {@fsname={'fsname', 0x3d, 'rootmode'}}, {@fowner_gt={'fowner>', r1}}]}}, 0x0, 0x0, &(0x7f0000000200)="e75935c3ee372887ceaa01455ed7c909bc9f84379b427036a84c7bea2c59497ed9923f82500ba8c2827aa88e49bf19532faec20f49ce1e0eecd1fb93a35cae4c08b8cb0b24bf2a")
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff, {0x6ba}}, './file0\x00'})
r3 = gettid()
sendmsg$nl_netfilter(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0x8, &(0x7f0000000100)={&(0x7f00000003c0)={0x354, 0x6, 0x0, 0x201, 0x70bd28, 0x25dfdbfd, {0x3}, [@nested={0x1a6, 0x12, 0x0, 0x1, [@generic="3d27bdbb4c678f60616d76bf7ea460fd3261b824fd15d2e3f2b74b761f0ef6d6347efc7ce36ceb21d080b9101ec7eec47e72d31744db517e25c2a20478b06ccd58cbc9c3f1b8b4539eb9b4916455a941745b2ae2ec110749fabe7f18f9c2b14cf17637b6df7e", @generic="a2a3d93e12d899a2d91fec5efc5c260ee209193690aae6c9658e57de4f2a3890ba120f514379621381b72a1a7966740e8f004067a3be9478bd317bbe7d97e62be447237a5f1e0901030f8787b5a353fe9287c0befb129194353b7fa099f5ea61fcbd3b734ccb5b31251f8173840ae1e1d7f18ecd6ee89c05cd73e694b1b1e581b64c7a9250cbc908d35a7207baac7fda1d3540fc14814e3c03e31f1c55808a9d765dc8fda152c5b11867572d32ae24fbcd850cc83ce256bc770f163dbd732f5d168cdbfff83a551e4bb71a81a81a3a25aadb82aa83a98fe9b7241558bcec7fec2f560d20088f5ee7a591af9531", @generic="0fe937bd5a69e114c28f1a768b52c119e2b01b87180325549b05868aca36efb7880fd99974b41c1c2fa7a61cc2d925fca651e94f553d3b3961b613f0ff988e12ef3de0884c6132", @typed={0x8, 0x81, 0x0, 0x0, @pid=r3}]}, @typed={0x8, 0x63, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x20, 0x0, 0x0, @u32=0x7}, @typed={0xc, 0x3f, 0x0, 0x0, @u64=0x2d6}, @typed={0x8c, 0x58, 0x0, 0x0, @binary="f437113ced7940d62ee3923011c614a58b800e27ccc4e92a67ff2493543a1d168c151467ba8ee475b683dfdca50180c9eab98ec041e40515cd629f545c823bfc07e29c6c9fa717815a11c01daf10a1a41f80fc2a3d524a8dece01b0fb7526c1041f176346a2c6f77686fcd86a460de1724926c52becf67db1e589c42cce78d2f486f45796459d029"}, @typed={0x8, 0x57, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x1a}}, @generic="9eabc999bc2295070325a8cba5523648c681a136318ed58da7d830f271f8c2948d186d53f4e38c1e9a54aa63efba6eb9f0fe1638c8e961bab110855b480fdfdb99d03d2e994d1181de415d1397e028b9445ac3992bef2cffbfc9442c020f538a53b4eec3ea76a81c74605a6d1fdb62f58411f49ff537e59640984dca49df7fa0ae8c83e53df99459ced3dbb70b76771024f502304111b404fb277405d3cb9a66b1cfb173fd6a676cc84216ecaeed6453b91939674c231a947722175b509f5b19607d4f5e0f3a1d1ef2d66ec290cb8eed92332911ca2e20e5edfc8d10c6488e39d7cb97a3be7414"]}, 0x354}, 0x1, 0x0, 0x0, 0x5}, 0x4000000)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',hash,posixacl,fowner<', @ANYRESDEC=r0, @ANYBLOB="288669643d", @ANYRESDEC=r0, @ANYBLOB=',fscontext=unconfined_u,\x00'], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7)
r4 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r4, 0x0, 0x0)
write$9p(r4, 0x0, 0x0)

[ 2163.363459][T20572] fuse: Bad value for 'fd'
06:45:26 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x2010, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:26 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='&d=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="0767ca02000000000000", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x186, &(0x7f00000003c0)={0x0, 0x4074, 0x20, 0x2, 0x388}, &(0x7f0000000440)=<r2=>0x0, &(0x7f0000000480)=<r3=>0x0)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(0x0, r4, 0x0)
r5 = socket$l2tp(0x2, 0x2, 0x73)
syz_io_uring_submit(r2, r4, &(0x7f00000014c0)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r5, 0x0, &(0x7f00000004c0)="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", 0x1000, 0x4000, 0x1})
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$media(&(0x7f0000001800), 0xd6d, 0xc0000)
sendmsg$NFNL_MSG_CTHELPER_DEL(r6, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r7, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f00000017c0)=ANY=[@ANYBLOB="2c000000021a0300000000000000060000000000f5ffbb90565425f0e2372d71f68dd1ae18170073797a30e7ffffff0c00048008000140"], 0x2c}}, 0x0)
syz_io_uring_setup(0x1760, &(0x7f0000001500)={0x0, 0x1745, 0x40, 0x2, 0x1db, 0x0, r1}, &(0x7f0000001580), &(0x7f00000015c0))
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000001d00)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xfffff96b}}, './file0\x00'})
r8 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r8, 0x0, 0x0)
r9 = syz_genetlink_get_family_id$l2tp(&(0x7f0000001980), r8)
sendmsg$L2TP_CMD_TUNNEL_DELETE(r8, &(0x7f0000001a80)={&(0x7f0000001940)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000001a40)={&(0x7f00000019c0)={0x54, r9, 0x400, 0x70bd2c, 0x25dfdbfb, {}, [@L2TP_ATTR_VLAN_ID={0x6, 0xe, 0x7}, @L2TP_ATTR_UDP_DPORT={0x6, 0x1b, 0x4e24}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x3}, @L2TP_ATTR_DEBUG={0x8}, @L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x1}, @L2TP_ATTR_MTU={0x6, 0x1c, 0xffff}, @L2TP_ATTR_VLAN_ID={0x6, 0xe, 0x800}]}, 0x54}, 0x1, 0x0, 0x0, 0xc00c1}, 0x8000)
write$9p(r8, 0x0, 0x0)
syz_io_uring_setup(0x5530, &(0x7f0000001600)={0x0, 0x4008b5c, 0x2, 0x1, 0x69, 0x0, r8}, &(0x7f00000018c0)=<r10=>0x0, &(0x7f0000001900))
syz_io_uring_submit(r10, r3, &(0x7f0000001680)=@IORING_OP_MSG_RING={0x28, 0x40, 0x0, r8, 0x8, &(0x7f0000001840)="369f5a69f346d17ba868eade850a063f4c6a724932a7a3689d8084112175d5f3f51215f14d7a5afc0cdfeb523e52698181b3eee08838bb7871b324a0cce0b5c66c0136d6bb44041592b137f3edfb98baffce8c679dd2450bf88868a3036de069e7a5302293bbfbf475711de7d5", 0x6d, 0x0, 0x1})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r11=>r6, {0xee01, 0xee00}}, './file0\x00'})
r12 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r12, &(0x7f0000001c40)={&(0x7f0000001ac0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000001c00)={&(0x7f0000001b00)={0xf0, 0x0, 0x2, 0x101, 0x0, 0x0, {0x7, 0x0, 0x9}, [@CTA_EXPECT_MASTER={0xa0, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0xe}}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}, @CTA_EXPECT_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0xfffffc01}, @CTA_EXPECT_FN={0xa, 0xb, 'Q.931\x00'}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x2}, @CTA_EXPECT_MASK={0x18, 0x3, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}, @CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x1}]}, 0xf0}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
write$P9_RLCREATE(r11, &(0x7f0000000240)={0x18, 0xf, 0x2, {{0x0, 0x4, 0x6}, 0x3}}, 0x18)
sendmsg$NFT_MSG_GETTABLE(r11, &(0x7f0000000380)={&(0x7f0000000280), 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x80, 0x1, 0xa, 0x201, 0x0, 0x0, {0x5, 0x0, 0x3}, [@NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x2d, 0x6, "0f64002620d71e78f582ea4a5a472016257e491b48df44b801c64c65b15bc25f837ec492662ac5a809"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_FLAGS={0x8}]}, 0x80}, 0x1, 0x0, 0x0, 0x20000444}, 0x48080)
getsockopt$inet6_mreq(r11, 0x29, 0x14, &(0x7f0000001c80)={@dev}, &(0x7f0000001cc0)=0x14)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000040)=ANY=[@ANYRES8=r7, @ANYRES8=r0, @ANYRES32=0x0, @ANYRESHEX=r0])
sendmsg$NFT_MSG_GETGEN(0xffffffffffffffff, &(0x7f0000001780)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001740)={&(0x7f0000001700)={0x14, 0x10, 0xa, 0x101, 0x0, 0x0, {0x2, 0x0, 0x2}, ["", "", "", ""]}, 0x14}}, 0x20000000)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
read$proc_mixer(0xffffffffffffffff, &(0x7f0000000180)=""/163, 0xa3)

06:45:26 executing program 4:
pipe2$watch_queue(&(0x7f0000000000), 0x80)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000001c0)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x102}}, {@max_read={'max_read', 0x3d, 0x400}}, {@max_read={'max_read', 0x3d, 0x3ff}}]}}, 0x0, 0x0, 0x0)

06:45:26 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x6c00, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2163.452011][T20583] fuse: Bad value for 'fd'
06:45:26 executing program 4:
pipe2$watch_queue(&(0x7f0000000000), 0x80) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000001c0)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x102}}, {@max_read={'max_read', 0x3d, 0x400}}, {@max_read={'max_read', 0x3d, 0x3ff}}]}}, 0x0, 0x0, 0x0)

06:45:26 executing program 3:
r0 = geteuid()
r1 = geteuid()
syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x800000, &(0x7f0000000740)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@blksize={'blksize', 0x3d, 0xc00}}], [{@obj_role={'obj_role', 0x3d, '\'$^)'}}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@seclabel}, {@fsname={'fsname', 0x3d, 'rootmode'}}, {@fowner_gt={'fowner>', r1}}]}}, 0x0, 0x0, &(0x7f0000000200)="e75935c3ee372887ceaa01455ed7c909bc9f84379b427036a84c7bea2c59497ed9923f82500ba8c2827aa88e49bf19532faec20f49ce1e0eecd1fb93a35cae4c08b8cb0b24bf2a")
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff, {0x6ba}}, './file0\x00'})
r3 = gettid()
sendmsg$nl_netfilter(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0x8, &(0x7f0000000100)={&(0x7f00000003c0)={0x354, 0x6, 0x0, 0x201, 0x70bd28, 0x25dfdbfd, {0x3}, [@nested={0x1a6, 0x12, 0x0, 0x1, [@generic="3d27bdbb4c678f60616d76bf7ea460fd3261b824fd15d2e3f2b74b761f0ef6d6347efc7ce36ceb21d080b9101ec7eec47e72d31744db517e25c2a20478b06ccd58cbc9c3f1b8b4539eb9b4916455a941745b2ae2ec110749fabe7f18f9c2b14cf17637b6df7e", @generic="a2a3d93e12d899a2d91fec5efc5c260ee209193690aae6c9658e57de4f2a3890ba120f514379621381b72a1a7966740e8f004067a3be9478bd317bbe7d97e62be447237a5f1e0901030f8787b5a353fe9287c0befb129194353b7fa099f5ea61fcbd3b734ccb5b31251f8173840ae1e1d7f18ecd6ee89c05cd73e694b1b1e581b64c7a9250cbc908d35a7207baac7fda1d3540fc14814e3c03e31f1c55808a9d765dc8fda152c5b11867572d32ae24fbcd850cc83ce256bc770f163dbd732f5d168cdbfff83a551e4bb71a81a81a3a25aadb82aa83a98fe9b7241558bcec7fec2f560d20088f5ee7a591af9531", @generic="0fe937bd5a69e114c28f1a768b52c119e2b01b87180325549b05868aca36efb7880fd99974b41c1c2fa7a61cc2d925fca651e94f553d3b3961b613f0ff988e12ef3de0884c6132", @typed={0x8, 0x81, 0x0, 0x0, @pid=r3}]}, @typed={0x8, 0x63, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x20, 0x0, 0x0, @u32=0x7}, @typed={0xc, 0x3f, 0x0, 0x0, @u64=0x2d6}, @typed={0x8c, 0x58, 0x0, 0x0, @binary="f437113ced7940d62ee3923011c614a58b800e27ccc4e92a67ff2493543a1d168c151467ba8ee475b683dfdca50180c9eab98ec041e40515cd629f545c823bfc07e29c6c9fa717815a11c01daf10a1a41f80fc2a3d524a8dece01b0fb7526c1041f176346a2c6f77686fcd86a460de1724926c52becf67db1e589c42cce78d2f486f45796459d029"}, @typed={0x8, 0x57, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x1a}}, @generic="9eabc999bc2295070325a8cba5523648c681a136318ed58da7d830f271f8c2948d186d53f4e38c1e9a54aa63efba6eb9f0fe1638c8e961bab110855b480fdfdb99d03d2e994d1181de415d1397e028b9445ac3992bef2cffbfc9442c020f538a53b4eec3ea76a81c74605a6d1fdb62f58411f49ff537e59640984dca49df7fa0ae8c83e53df99459ced3dbb70b76771024f502304111b404fb277405d3cb9a66b1cfb173fd6a676cc84216ecaeed6453b91939674c231a947722175b509f5b19607d4f5e0f3a1d1ef2d66ec290cb8eed92332911ca2e20e5edfc8d10c6488e39d7cb97a3be7414"]}, 0x354}, 0x1, 0x0, 0x0, 0x5}, 0x4000000)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',hash,posixacl,fowner<', @ANYRESDEC=r0, @ANYBLOB="288669643d", @ANYRESDEC=r0, @ANYBLOB=',fscontext=unconfined_u,\x00'], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7)
r4 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r4, 0x0, 0x0)

06:45:26 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x3f00, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:26 executing program 4:
pipe2$watch_queue(&(0x7f0000000000), 0x80)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000001c0)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x102}}, {@max_read={'max_read', 0x3d, 0x400}}, {@max_read={'max_read', 0x3d, 0x3ff}}]}}, 0x0, 0x0, 0x0)
pipe2$watch_queue(&(0x7f0000000000), 0x80) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000001c0)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x102}}, {@max_read={'max_read', 0x3d, 0x400}}, {@max_read={'max_read', 0x3d, 0x3ff}}]}}, 0x0, 0x0, 0x0) (async)

06:45:26 executing program 1:
read$FUSE(0xffffffffffffffff, &(0x7f0000000000)={0x2020}, 0x2020)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:45:26 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x7400, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:26 executing program 4:
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000180)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x1000}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x8001}}, {@blksize={'blksize', 0x3d, 0x800}}]}}, 0x3, 0x0, 0x0)
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
write$9p(r0, 0x0, 0x0)
write$FUSE_LSEEK(r0, &(0x7f0000000040)={0x18, 0x0, 0x0, {0x1}}, 0x18)

[ 2163.611205][T20601] fuse: Bad value for 'fd'
06:45:26 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x4000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:26 executing program 3:
r0 = geteuid()
r1 = geteuid()
syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x800000, &(0x7f0000000740)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@blksize={'blksize', 0x3d, 0xc00}}], [{@obj_role={'obj_role', 0x3d, '\'$^)'}}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@seclabel}, {@fsname={'fsname', 0x3d, 'rootmode'}}, {@fowner_gt={'fowner>', r1}}]}}, 0x0, 0x0, &(0x7f0000000200)="e75935c3ee372887ceaa01455ed7c909bc9f84379b427036a84c7bea2c59497ed9923f82500ba8c2827aa88e49bf19532faec20f49ce1e0eecd1fb93a35cae4c08b8cb0b24bf2a")
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff, {0x6ba}}, './file0\x00'})
r3 = gettid()
sendmsg$nl_netfilter(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0x8, &(0x7f0000000100)={&(0x7f00000003c0)={0x354, 0x6, 0x0, 0x201, 0x70bd28, 0x25dfdbfd, {0x3}, [@nested={0x1a6, 0x12, 0x0, 0x1, [@generic="3d27bdbb4c678f60616d76bf7ea460fd3261b824fd15d2e3f2b74b761f0ef6d6347efc7ce36ceb21d080b9101ec7eec47e72d31744db517e25c2a20478b06ccd58cbc9c3f1b8b4539eb9b4916455a941745b2ae2ec110749fabe7f18f9c2b14cf17637b6df7e", @generic="a2a3d93e12d899a2d91fec5efc5c260ee209193690aae6c9658e57de4f2a3890ba120f514379621381b72a1a7966740e8f004067a3be9478bd317bbe7d97e62be447237a5f1e0901030f8787b5a353fe9287c0befb129194353b7fa099f5ea61fcbd3b734ccb5b31251f8173840ae1e1d7f18ecd6ee89c05cd73e694b1b1e581b64c7a9250cbc908d35a7207baac7fda1d3540fc14814e3c03e31f1c55808a9d765dc8fda152c5b11867572d32ae24fbcd850cc83ce256bc770f163dbd732f5d168cdbfff83a551e4bb71a81a81a3a25aadb82aa83a98fe9b7241558bcec7fec2f560d20088f5ee7a591af9531", @generic="0fe937bd5a69e114c28f1a768b52c119e2b01b87180325549b05868aca36efb7880fd99974b41c1c2fa7a61cc2d925fca651e94f553d3b3961b613f0ff988e12ef3de0884c6132", @typed={0x8, 0x81, 0x0, 0x0, @pid=r3}]}, @typed={0x8, 0x63, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x20, 0x0, 0x0, @u32=0x7}, @typed={0xc, 0x3f, 0x0, 0x0, @u64=0x2d6}, @typed={0x8c, 0x58, 0x0, 0x0, @binary="f437113ced7940d62ee3923011c614a58b800e27ccc4e92a67ff2493543a1d168c151467ba8ee475b683dfdca50180c9eab98ec041e40515cd629f545c823bfc07e29c6c9fa717815a11c01daf10a1a41f80fc2a3d524a8dece01b0fb7526c1041f176346a2c6f77686fcd86a460de1724926c52becf67db1e589c42cce78d2f486f45796459d029"}, @typed={0x8, 0x57, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x1a}}, @generic="9eabc999bc2295070325a8cba5523648c681a136318ed58da7d830f271f8c2948d186d53f4e38c1e9a54aa63efba6eb9f0fe1638c8e961bab110855b480fdfdb99d03d2e994d1181de415d1397e028b9445ac3992bef2cffbfc9442c020f538a53b4eec3ea76a81c74605a6d1fdb62f58411f49ff537e59640984dca49df7fa0ae8c83e53df99459ced3dbb70b76771024f502304111b404fb277405d3cb9a66b1cfb173fd6a676cc84216ecaeed6453b91939674c231a947722175b509f5b19607d4f5e0f3a1d1ef2d66ec290cb8eed92332911ca2e20e5edfc8d10c6488e39d7cb97a3be7414"]}, 0x354}, 0x1, 0x0, 0x0, 0x5}, 0x4000000)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',hash,posixacl,fowner<', @ANYRESDEC=r0, @ANYBLOB="288669643d", @ANYRESDEC=r0, @ANYBLOB=',fscontext=unconfined_u,\x00'], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7)
bpf$ITER_CREATE(0x21, 0x0, 0x0)

06:45:26 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='&d=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="0767ca02000000000000", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x186, &(0x7f00000003c0)={0x0, 0x4074, 0x20, 0x2, 0x388}, &(0x7f0000000440)=<r2=>0x0, &(0x7f0000000480)=<r3=>0x0) (async)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(0x0, r4, 0x0) (async)
r5 = socket$l2tp(0x2, 0x2, 0x73)
syz_io_uring_submit(r2, r4, &(0x7f00000014c0)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r5, 0x0, &(0x7f00000004c0)="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", 0x1000, 0x4000, 0x1}) (async)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$media(&(0x7f0000001800), 0xd6d, 0xc0000) (async)
sendmsg$NFNL_MSG_CTHELPER_DEL(r6, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0) (async, rerun: 64)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc) (rerun: 64)
sendmsg$NFNL_MSG_CTHELPER_DEL(r7, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f00000017c0)=ANY=[@ANYBLOB="2c000000021a0300000000000000060000000000f5ffbb90565425f0e2372d71f68dd1ae18170073797a30e7ffffff0c00048008000140"], 0x2c}}, 0x0)
syz_io_uring_setup(0x1760, &(0x7f0000001500)={0x0, 0x1745, 0x40, 0x2, 0x1db, 0x0, r1}, &(0x7f0000001580), &(0x7f00000015c0)) (async, rerun: 64)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000001d00)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xfffff96b}}, './file0\x00'}) (rerun: 64)
r8 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r8, 0x0, 0x0) (async)
r9 = syz_genetlink_get_family_id$l2tp(&(0x7f0000001980), r8)
sendmsg$L2TP_CMD_TUNNEL_DELETE(r8, &(0x7f0000001a80)={&(0x7f0000001940)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000001a40)={&(0x7f00000019c0)={0x54, r9, 0x400, 0x70bd2c, 0x25dfdbfb, {}, [@L2TP_ATTR_VLAN_ID={0x6, 0xe, 0x7}, @L2TP_ATTR_UDP_DPORT={0x6, 0x1b, 0x4e24}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x3}, @L2TP_ATTR_DEBUG={0x8}, @L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x1}, @L2TP_ATTR_MTU={0x6, 0x1c, 0xffff}, @L2TP_ATTR_VLAN_ID={0x6, 0xe, 0x800}]}, 0x54}, 0x1, 0x0, 0x0, 0xc00c1}, 0x8000) (async)
write$9p(r8, 0x0, 0x0) (async)
syz_io_uring_setup(0x5530, &(0x7f0000001600)={0x0, 0x4008b5c, 0x2, 0x1, 0x69, 0x0, r8}, &(0x7f00000018c0)=<r10=>0x0, &(0x7f0000001900))
syz_io_uring_submit(r10, r3, &(0x7f0000001680)=@IORING_OP_MSG_RING={0x28, 0x40, 0x0, r8, 0x8, &(0x7f0000001840)="369f5a69f346d17ba868eade850a063f4c6a724932a7a3689d8084112175d5f3f51215f14d7a5afc0cdfeb523e52698181b3eee08838bb7871b324a0cce0b5c66c0136d6bb44041592b137f3edfb98baffce8c679dd2450bf88868a3036de069e7a5302293bbfbf475711de7d5", 0x6d, 0x0, 0x1})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r11=>r6, {0xee01, 0xee00}}, './file0\x00'}) (async, rerun: 32)
r12 = socket$nl_netfilter(0x10, 0x3, 0xc) (rerun: 32)
sendmsg$IPCTNL_MSG_EXP_NEW(r12, &(0x7f0000001c40)={&(0x7f0000001ac0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000001c00)={&(0x7f0000001b00)={0xf0, 0x0, 0x2, 0x101, 0x0, 0x0, {0x7, 0x0, 0x9}, [@CTA_EXPECT_MASTER={0xa0, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0xe}}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}, @CTA_EXPECT_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0xfffffc01}, @CTA_EXPECT_FN={0xa, 0xb, 'Q.931\x00'}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x2}, @CTA_EXPECT_MASK={0x18, 0x3, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}, @CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x1}]}, 0xf0}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
write$P9_RLCREATE(r11, &(0x7f0000000240)={0x18, 0xf, 0x2, {{0x0, 0x4, 0x6}, 0x3}}, 0x18) (async)
sendmsg$NFT_MSG_GETTABLE(r11, &(0x7f0000000380)={&(0x7f0000000280), 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x80, 0x1, 0xa, 0x201, 0x0, 0x0, {0x5, 0x0, 0x3}, [@NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x2d, 0x6, "0f64002620d71e78f582ea4a5a472016257e491b48df44b801c64c65b15bc25f837ec492662ac5a809"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_FLAGS={0x8}]}, 0x80}, 0x1, 0x0, 0x0, 0x20000444}, 0x48080)
getsockopt$inet6_mreq(r11, 0x29, 0x14, &(0x7f0000001c80)={@dev}, &(0x7f0000001cc0)=0x14)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000040)=ANY=[@ANYRES8=r7, @ANYRES8=r0, @ANYRES32=0x0, @ANYRESHEX=r0]) (async)
sendmsg$NFT_MSG_GETGEN(0xffffffffffffffff, &(0x7f0000001780)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001740)={&(0x7f0000001700)={0x14, 0x10, 0xa, 0x101, 0x0, 0x0, {0x2, 0x0, 0x2}, ["", "", "", ""]}, 0x14}}, 0x20000000)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
read$proc_mixer(0xffffffffffffffff, &(0x7f0000000180)=""/163, 0xa3) (rerun: 64)

06:45:26 executing program 1:
read$FUSE(0xffffffffffffffff, &(0x7f0000000000)={0x2020}, 0x2020)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:45:26 executing program 4:
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000180)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x1000}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x8001}}, {@blksize={'blksize', 0x3d, 0x800}}]}}, 0x3, 0x0, 0x0) (async)
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0) (async)
write$9p(r0, 0x0, 0x0)
write$FUSE_LSEEK(r0, &(0x7f0000000040)={0x18, 0x0, 0x0, {0x1}}, 0x18)

[ 2163.745411][T20618] fuse: Bad value for 'fd'
06:45:27 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x7a00, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:27 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0xedc0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:27 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='&d=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="0767ca02000000000000", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0) (async)
r1 = syz_io_uring_setup(0x186, &(0x7f00000003c0)={0x0, 0x4074, 0x20, 0x2, 0x388}, &(0x7f0000000440)=<r2=>0x0, &(0x7f0000000480)=<r3=>0x0)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(0x0, r4, 0x0) (async)
r5 = socket$l2tp(0x2, 0x2, 0x73)
syz_io_uring_submit(r2, r4, &(0x7f00000014c0)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r5, 0x0, &(0x7f00000004c0)="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", 0x1000, 0x4000, 0x1}) (async)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$media(&(0x7f0000001800), 0xd6d, 0xc0000) (async)
sendmsg$NFNL_MSG_CTHELPER_DEL(r6, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0) (async)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r7, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f00000017c0)=ANY=[@ANYBLOB="2c000000021a0300000000000000060000000000f5ffbb90565425f0e2372d71f68dd1ae18170073797a30e7ffffff0c00048008000140"], 0x2c}}, 0x0) (async)
syz_io_uring_setup(0x1760, &(0x7f0000001500)={0x0, 0x1745, 0x40, 0x2, 0x1db, 0x0, r1}, &(0x7f0000001580), &(0x7f00000015c0)) (async, rerun: 64)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000001d00)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xfffff96b}}, './file0\x00'}) (async, rerun: 64)
r8 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r8, 0x0, 0x0) (async)
r9 = syz_genetlink_get_family_id$l2tp(&(0x7f0000001980), r8)
sendmsg$L2TP_CMD_TUNNEL_DELETE(r8, &(0x7f0000001a80)={&(0x7f0000001940)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000001a40)={&(0x7f00000019c0)={0x54, r9, 0x400, 0x70bd2c, 0x25dfdbfb, {}, [@L2TP_ATTR_VLAN_ID={0x6, 0xe, 0x7}, @L2TP_ATTR_UDP_DPORT={0x6, 0x1b, 0x4e24}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x3}, @L2TP_ATTR_DEBUG={0x8}, @L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x1}, @L2TP_ATTR_MTU={0x6, 0x1c, 0xffff}, @L2TP_ATTR_VLAN_ID={0x6, 0xe, 0x800}]}, 0x54}, 0x1, 0x0, 0x0, 0xc00c1}, 0x8000)
write$9p(r8, 0x0, 0x0) (async, rerun: 64)
syz_io_uring_setup(0x5530, &(0x7f0000001600)={0x0, 0x4008b5c, 0x2, 0x1, 0x69, 0x0, r8}, &(0x7f00000018c0)=<r10=>0x0, &(0x7f0000001900)) (rerun: 64)
syz_io_uring_submit(r10, r3, &(0x7f0000001680)=@IORING_OP_MSG_RING={0x28, 0x40, 0x0, r8, 0x8, &(0x7f0000001840)="369f5a69f346d17ba868eade850a063f4c6a724932a7a3689d8084112175d5f3f51215f14d7a5afc0cdfeb523e52698181b3eee08838bb7871b324a0cce0b5c66c0136d6bb44041592b137f3edfb98baffce8c679dd2450bf88868a3036de069e7a5302293bbfbf475711de7d5", 0x6d, 0x0, 0x1})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r11=>r6, {0xee01, 0xee00}}, './file0\x00'}) (async)
r12 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r12, &(0x7f0000001c40)={&(0x7f0000001ac0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000001c00)={&(0x7f0000001b00)={0xf0, 0x0, 0x2, 0x101, 0x0, 0x0, {0x7, 0x0, 0x9}, [@CTA_EXPECT_MASTER={0xa0, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0xe}}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}, @CTA_EXPECT_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0xfffffc01}, @CTA_EXPECT_FN={0xa, 0xb, 'Q.931\x00'}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x2}, @CTA_EXPECT_MASK={0x18, 0x3, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}, @CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x1}]}, 0xf0}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
write$P9_RLCREATE(r11, &(0x7f0000000240)={0x18, 0xf, 0x2, {{0x0, 0x4, 0x6}, 0x3}}, 0x18) (async)
sendmsg$NFT_MSG_GETTABLE(r11, &(0x7f0000000380)={&(0x7f0000000280), 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x80, 0x1, 0xa, 0x201, 0x0, 0x0, {0x5, 0x0, 0x3}, [@NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0x2d, 0x6, "0f64002620d71e78f582ea4a5a472016257e491b48df44b801c64c65b15bc25f837ec492662ac5a809"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_FLAGS={0x8}]}, 0x80}, 0x1, 0x0, 0x0, 0x20000444}, 0x48080)
getsockopt$inet6_mreq(r11, 0x29, 0x14, &(0x7f0000001c80)={@dev}, &(0x7f0000001cc0)=0x14) (async, rerun: 32)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000040)=ANY=[@ANYRES8=r7, @ANYRES8=r0, @ANYRES32=0x0, @ANYRESHEX=r0]) (async, rerun: 32)
sendmsg$NFT_MSG_GETGEN(0xffffffffffffffff, &(0x7f0000001780)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001740)={&(0x7f0000001700)={0x14, 0x10, 0xa, 0x101, 0x0, 0x0, {0x2, 0x0, 0x2}, ["", "", "", ""]}, 0x14}}, 0x20000000) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
read$proc_mixer(0xffffffffffffffff, &(0x7f0000000180)=""/163, 0xa3) (rerun: 32)

06:45:27 executing program 3:
r0 = geteuid()
r1 = geteuid()
syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x800000, &(0x7f0000000740)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@blksize={'blksize', 0x3d, 0xc00}}], [{@obj_role={'obj_role', 0x3d, '\'$^)'}}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@seclabel}, {@fsname={'fsname', 0x3d, 'rootmode'}}, {@fowner_gt={'fowner>', r1}}]}}, 0x0, 0x0, &(0x7f0000000200)="e75935c3ee372887ceaa01455ed7c909bc9f84379b427036a84c7bea2c59497ed9923f82500ba8c2827aa88e49bf19532faec20f49ce1e0eecd1fb93a35cae4c08b8cb0b24bf2a")
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff, {0x6ba}}, './file0\x00'})
r3 = gettid()
sendmsg$nl_netfilter(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0x8, &(0x7f0000000100)={&(0x7f00000003c0)={0x354, 0x6, 0x0, 0x201, 0x70bd28, 0x25dfdbfd, {0x3}, [@nested={0x1a6, 0x12, 0x0, 0x1, [@generic="3d27bdbb4c678f60616d76bf7ea460fd3261b824fd15d2e3f2b74b761f0ef6d6347efc7ce36ceb21d080b9101ec7eec47e72d31744db517e25c2a20478b06ccd58cbc9c3f1b8b4539eb9b4916455a941745b2ae2ec110749fabe7f18f9c2b14cf17637b6df7e", @generic="a2a3d93e12d899a2d91fec5efc5c260ee209193690aae6c9658e57de4f2a3890ba120f514379621381b72a1a7966740e8f004067a3be9478bd317bbe7d97e62be447237a5f1e0901030f8787b5a353fe9287c0befb129194353b7fa099f5ea61fcbd3b734ccb5b31251f8173840ae1e1d7f18ecd6ee89c05cd73e694b1b1e581b64c7a9250cbc908d35a7207baac7fda1d3540fc14814e3c03e31f1c55808a9d765dc8fda152c5b11867572d32ae24fbcd850cc83ce256bc770f163dbd732f5d168cdbfff83a551e4bb71a81a81a3a25aadb82aa83a98fe9b7241558bcec7fec2f560d20088f5ee7a591af9531", @generic="0fe937bd5a69e114c28f1a768b52c119e2b01b87180325549b05868aca36efb7880fd99974b41c1c2fa7a61cc2d925fca651e94f553d3b3961b613f0ff988e12ef3de0884c6132", @typed={0x8, 0x81, 0x0, 0x0, @pid=r3}]}, @typed={0x8, 0x63, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x20, 0x0, 0x0, @u32=0x7}, @typed={0xc, 0x3f, 0x0, 0x0, @u64=0x2d6}, @typed={0x8c, 0x58, 0x0, 0x0, @binary="f437113ced7940d62ee3923011c614a58b800e27ccc4e92a67ff2493543a1d168c151467ba8ee475b683dfdca50180c9eab98ec041e40515cd629f545c823bfc07e29c6c9fa717815a11c01daf10a1a41f80fc2a3d524a8dece01b0fb7526c1041f176346a2c6f77686fcd86a460de1724926c52becf67db1e589c42cce78d2f486f45796459d029"}, @typed={0x8, 0x57, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x1a}}, @generic="9eabc999bc2295070325a8cba5523648c681a136318ed58da7d830f271f8c2948d186d53f4e38c1e9a54aa63efba6eb9f0fe1638c8e961bab110855b480fdfdb99d03d2e994d1181de415d1397e028b9445ac3992bef2cffbfc9442c020f538a53b4eec3ea76a81c74605a6d1fdb62f58411f49ff537e59640984dca49df7fa0ae8c83e53df99459ced3dbb70b76771024f502304111b404fb277405d3cb9a66b1cfb173fd6a676cc84216ecaeed6453b91939674c231a947722175b509f5b19607d4f5e0f3a1d1ef2d66ec290cb8eed92332911ca2e20e5edfc8d10c6488e39d7cb97a3be7414"]}, 0x354}, 0x1, 0x0, 0x0, 0x5}, 0x4000000)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',hash,posixacl,fowner<', @ANYRESDEC=r0, @ANYBLOB="288669643d", @ANYRESDEC=r0, @ANYBLOB=',fscontext=unconfined_u,\x00'], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7)

06:45:27 executing program 4:
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000180)={{}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x1000}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x8001}}, {@blksize={'blksize', 0x3d, 0x800}}]}}, 0x3, 0x0, 0x0)
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0) (async)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
write$9p(r0, 0x0, 0x0)
write$FUSE_LSEEK(r0, &(0x7f0000000040)={0x18, 0x0, 0x0, {0x1}}, 0x18)

06:45:27 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="aa88292b496859ac29fc9201b622c56d5103000000", @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

06:45:27 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0xedc0, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2163.864219][T20630] fuse: Bad value for 'fd'
06:45:27 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000180)=ANY=[@ANYBLOB="e11093fcf1f843ce32d7b0200000009a6d487c6b8205a7a67f3d2045dda3d8a85ce22b83036c61117a715fd9", @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80)
write$FUSE_IOCTL(r0, &(0x7f0000000040)={0x20, 0xfffffffffffffffe, 0x0, {0x9, 0x0, 0x9, 0x60}}, 0x20)

06:45:27 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="061b"], 0x0, 0x0, 0x0)

06:45:27 executing program 3:
r0 = geteuid()
r1 = geteuid()
syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x800000, &(0x7f0000000740)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@blksize={'blksize', 0x3d, 0xc00}}], [{@obj_role={'obj_role', 0x3d, '\'$^)'}}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@seclabel}, {@fsname={'fsname', 0x3d, 'rootmode'}}, {@fowner_gt={'fowner>', r1}}]}}, 0x0, 0x0, &(0x7f0000000200)="e75935c3ee372887ceaa01455ed7c909bc9f84379b427036a84c7bea2c59497ed9923f82500ba8c2827aa88e49bf19532faec20f49ce1e0eecd1fb93a35cae4c08b8cb0b24bf2a")
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff, {0x6ba}}, './file0\x00'})
r3 = gettid()
sendmsg$nl_netfilter(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0x8, &(0x7f0000000100)={&(0x7f00000003c0)={0x354, 0x6, 0x0, 0x201, 0x70bd28, 0x25dfdbfd, {0x3}, [@nested={0x1a6, 0x12, 0x0, 0x1, [@generic="3d27bdbb4c678f60616d76bf7ea460fd3261b824fd15d2e3f2b74b761f0ef6d6347efc7ce36ceb21d080b9101ec7eec47e72d31744db517e25c2a20478b06ccd58cbc9c3f1b8b4539eb9b4916455a941745b2ae2ec110749fabe7f18f9c2b14cf17637b6df7e", @generic="a2a3d93e12d899a2d91fec5efc5c260ee209193690aae6c9658e57de4f2a3890ba120f514379621381b72a1a7966740e8f004067a3be9478bd317bbe7d97e62be447237a5f1e0901030f8787b5a353fe9287c0befb129194353b7fa099f5ea61fcbd3b734ccb5b31251f8173840ae1e1d7f18ecd6ee89c05cd73e694b1b1e581b64c7a9250cbc908d35a7207baac7fda1d3540fc14814e3c03e31f1c55808a9d765dc8fda152c5b11867572d32ae24fbcd850cc83ce256bc770f163dbd732f5d168cdbfff83a551e4bb71a81a81a3a25aadb82aa83a98fe9b7241558bcec7fec2f560d20088f5ee7a591af9531", @generic="0fe937bd5a69e114c28f1a768b52c119e2b01b87180325549b05868aca36efb7880fd99974b41c1c2fa7a61cc2d925fca651e94f553d3b3961b613f0ff988e12ef3de0884c6132", @typed={0x8, 0x81, 0x0, 0x0, @pid=r3}]}, @typed={0x8, 0x63, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x20, 0x0, 0x0, @u32=0x7}, @typed={0xc, 0x3f, 0x0, 0x0, @u64=0x2d6}, @typed={0x8c, 0x58, 0x0, 0x0, @binary="f437113ced7940d62ee3923011c614a58b800e27ccc4e92a67ff2493543a1d168c151467ba8ee475b683dfdca50180c9eab98ec041e40515cd629f545c823bfc07e29c6c9fa717815a11c01daf10a1a41f80fc2a3d524a8dece01b0fb7526c1041f176346a2c6f77686fcd86a460de1724926c52becf67db1e589c42cce78d2f486f45796459d029"}, @typed={0x8, 0x57, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x1a}}, @generic="9eabc999bc2295070325a8cba5523648c681a136318ed58da7d830f271f8c2948d186d53f4e38c1e9a54aa63efba6eb9f0fe1638c8e961bab110855b480fdfdb99d03d2e994d1181de415d1397e028b9445ac3992bef2cffbfc9442c020f538a53b4eec3ea76a81c74605a6d1fdb62f58411f49ff537e59640984dca49df7fa0ae8c83e53df99459ced3dbb70b76771024f502304111b404fb277405d3cb9a66b1cfb173fd6a676cc84216ecaeed6453b91939674c231a947722175b509f5b19607d4f5e0f3a1d1ef2d66ec290cb8eed92332911ca2e20e5edfc8d10c6488e39d7cb97a3be7414"]}, 0x354}, 0x1, 0x0, 0x0, 0x5}, 0x4000000)
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7)

06:45:27 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0xff03, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:27 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000180)=ANY=[@ANYBLOB="e11093fcf1f843ce32d7b0200000009a6d487c6b8205a7a67f3d2045dda3d8a85ce22b83036c61117a715fd9", @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0) (async)
pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80)
write$FUSE_IOCTL(r0, &(0x7f0000000040)={0x20, 0xfffffffffffffffe, 0x0, {0x9, 0x0, 0x9, 0x60}}, 0x20)

06:45:27 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x400000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2163.985224][T20646] fuse: Unknown parameter '��)+IhY�)��
�"�mQ'
06:45:27 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="061b"], 0x0, 0x0, 0x0)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="061b"], 0x0, 0x0, 0x0) (async)

06:45:27 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="aa88292b496859ac29fc9201b622c56d5103000000", @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="aa88292b496859ac29fc9201b622c56d5103000000", @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

06:45:27 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000180)=ANY=[@ANYBLOB="e11093fcf1f843ce32d7b0200000009a6d487c6b8205a7a67f3d2045dda3d8a85ce22b83036c61117a715fd9", @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80)
write$FUSE_IOCTL(r0, &(0x7f0000000040)={0x20, 0xfffffffffffffffe, 0x0, {0x9, 0x0, 0x9, 0x60}}, 0x20) (async)
write$FUSE_IOCTL(r0, &(0x7f0000000040)={0x20, 0xfffffffffffffffe, 0x0, {0x9, 0x0, 0x9, 0x60}}, 0x20)

[ 2164.031981][T20649] fuse: Bad value for 'fd'
[ 2164.084079][T20657] fuse: Bad value for 'fd'
06:45:27 executing program 3:
r0 = geteuid()
r1 = geteuid()
syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x800000, &(0x7f0000000740)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@blksize={'blksize', 0x3d, 0xc00}}], [{@obj_role={'obj_role', 0x3d, '\'$^)'}}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@seclabel}, {@fsname={'fsname', 0x3d, 'rootmode'}}, {@fowner_gt={'fowner>', r1}}]}}, 0x0, 0x0, &(0x7f0000000200)="e75935c3ee372887ceaa01455ed7c909bc9f84379b427036a84c7bea2c59497ed9923f82500ba8c2827aa88e49bf19532faec20f49ce1e0eecd1fb93a35cae4c08b8cb0b24bf2a")
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x6ba}}, './file0\x00'})
gettid()
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7)

06:45:27 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x400000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:27 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="061b"], 0x0, 0x0, 0x0)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="061b"], 0x0, 0x0, 0x0) (async)

06:45:27 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x1000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2164.110047][T20661] fuse: Unknown parameter '��)+IhY�)��
�"�mQ'
[ 2164.111564][T20662] fuse: Unknown parameter '��)+IhY�)��
�"�mQ'
06:45:27 executing program 0:
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000540), 0x40, 0x0)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000700)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000006c0)={&(0x7f00000005c0)={0xe0, 0x2, 0x6, 0x401, 0x0, 0x0, {0x5, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x4c, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8}, @IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @private0}}, @IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0x450}, @IPSET_ATTR_NETMASK={0x5, 0x14, 0x2}, @IPSET_ATTR_NETMASK={0x5, 0x14, 0xff}, @IPSET_ATTR_CIDR={0x5}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x7ff}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x7}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0x48, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x2e}, @IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @remote}}, @IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x1}, @IPSET_ATTR_HASHSIZE={0x8}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0xfffffff7}]}]}, 0xe0}, 0x1, 0x0, 0x0, 0x4000000}, 0x4004004)
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r0, 0xc02064b9, &(0x7f00000007c0)={&(0x7f0000000740)=[<r2=>0x0, 0x0], &(0x7f0000000780)=[0x0, 0x0, 0x0], 0x2, 0x0, 0xe0e0e0e0})
ioctl$DRM_IOCTL_MODE_GET_LEASE(r0, 0xc01064c8, &(0x7f0000000840)={0x5, 0x0, &(0x7f0000000800)=[0x0, 0x0, <r3=>0x0, 0x0, 0x0]})
ioctl$DRM_IOCTL_MODE_SETPROPERTY(r1, 0xc01064ab, &(0x7f0000000880)={0x3, r2, r3})
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r4, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r4, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x40, 0x1, 0x8, 0x301, 0x0, 0x0, {0x5, 0x0, 0x8}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x10}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x8100}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x88}]}, 0x40}}, 0x0)
write$9p(r0, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(0xffffffffffffffff, 0xc05064a7, &(0x7f0000000380)={&(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[{}, {}, {}, {}, {}, {}], &(0x7f0000000040)=[0x0, <r5=>0x0], &(0x7f0000000340)=[0x0], 0x6, 0x2, 0x9})
ioctl$DRM_IOCTL_MODE_SETPROPERTY(r0, 0xc01064ab, &(0x7f0000000400)={0x400, r5})
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

[ 2164.155082][T20667] fuse: Bad value for 'fd'
06:45:27 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
getsockopt$SO_J1939_ERRQUEUE(0xffffffffffffffff, 0x6b, 0x4, &(0x7f0000000040), &(0x7f0000000180)=0x4)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x0, 0xee01}}, './file0\x00'})

06:45:27 executing program 3:
r0 = geteuid()
r1 = geteuid()
syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x800000, &(0x7f0000000740)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@blksize={'blksize', 0x3d, 0xc00}}], [{@obj_role={'obj_role', 0x3d, '\'$^)'}}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@seclabel}, {@fsname={'fsname', 0x3d, 'rootmode'}}, {@fowner_gt={'fowner>', r1}}]}}, 0x0, 0x0, &(0x7f0000000200)="e75935c3ee372887ceaa01455ed7c909bc9f84379b427036a84c7bea2c59497ed9923f82500ba8c2827aa88e49bf19532faec20f49ce1e0eecd1fb93a35cae4c08b8cb0b24bf2a")
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x6ba}}, './file0\x00'})
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7)

06:45:27 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="aa88292b496859ac29fc9201b622c56d5103000000", @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000140000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

06:45:27 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x1000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2164.214786][T20673] fuse: Bad value for 'fd'
06:45:27 executing program 0:
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0) (async)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000540), 0x40, 0x0)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000700)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000006c0)={&(0x7f00000005c0)={0xe0, 0x2, 0x6, 0x401, 0x0, 0x0, {0x5, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x4c, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8}, @IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @private0}}, @IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0x450}, @IPSET_ATTR_NETMASK={0x5, 0x14, 0x2}, @IPSET_ATTR_NETMASK={0x5, 0x14, 0xff}, @IPSET_ATTR_CIDR={0x5}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x7ff}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x7}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0x48, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x2e}, @IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @remote}}, @IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x1}, @IPSET_ATTR_HASHSIZE={0x8}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0xfffffff7}]}]}, 0xe0}, 0x1, 0x0, 0x0, 0x4000000}, 0x4004004) (async)
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r0, 0xc02064b9, &(0x7f00000007c0)={&(0x7f0000000740)=[<r2=>0x0, 0x0], &(0x7f0000000780)=[0x0, 0x0, 0x0], 0x2, 0x0, 0xe0e0e0e0}) (async)
ioctl$DRM_IOCTL_MODE_GET_LEASE(r0, 0xc01064c8, &(0x7f0000000840)={0x5, 0x0, &(0x7f0000000800)=[0x0, 0x0, <r3=>0x0, 0x0, 0x0]})
ioctl$DRM_IOCTL_MODE_SETPROPERTY(r1, 0xc01064ab, &(0x7f0000000880)={0x3, r2, r3}) (async)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r4, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r4, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x40, 0x1, 0x8, 0x301, 0x0, 0x0, {0x5, 0x0, 0x8}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x10}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x8100}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x88}]}, 0x40}}, 0x0)
write$9p(r0, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(0xffffffffffffffff, 0xc05064a7, &(0x7f0000000380)={&(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[{}, {}, {}, {}, {}, {}], &(0x7f0000000040)=[0x0, <r5=>0x0], &(0x7f0000000340)=[0x0], 0x6, 0x2, 0x9})
ioctl$DRM_IOCTL_MODE_SETPROPERTY(r0, 0xc01064ab, &(0x7f0000000400)={0x400, r5}) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

06:45:27 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x2000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:27 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
getsockopt$SO_J1939_ERRQUEUE(0xffffffffffffffff, 0x6b, 0x4, &(0x7f0000000040), &(0x7f0000000180)=0x4)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x0, 0xee01}}, './file0\x00'})
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0) (async)
getsockopt$SO_J1939_ERRQUEUE(0xffffffffffffffff, 0x6b, 0x4, &(0x7f0000000040), &(0x7f0000000180)=0x4) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x0, 0xee01}}, './file0\x00'}) (async)

06:45:27 executing program 0:
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0) (async)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000540), 0x40, 0x0)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000700)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000006c0)={&(0x7f00000005c0)={0xe0, 0x2, 0x6, 0x401, 0x0, 0x0, {0x5, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x4c, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8}, @IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @private0}}, @IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0x450}, @IPSET_ATTR_NETMASK={0x5, 0x14, 0x2}, @IPSET_ATTR_NETMASK={0x5, 0x14, 0xff}, @IPSET_ATTR_CIDR={0x5}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x7ff}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x7}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0x48, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x2e}, @IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @remote}}, @IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x1}, @IPSET_ATTR_HASHSIZE={0x8}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0xfffffff7}]}]}, 0xe0}, 0x1, 0x0, 0x0, 0x4000000}, 0x4004004) (async)
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r0, 0xc02064b9, &(0x7f00000007c0)={&(0x7f0000000740)=[<r2=>0x0, 0x0], &(0x7f0000000780)=[0x0, 0x0, 0x0], 0x2, 0x0, 0xe0e0e0e0})
ioctl$DRM_IOCTL_MODE_GET_LEASE(r0, 0xc01064c8, &(0x7f0000000840)={0x5, 0x0, &(0x7f0000000800)=[0x0, 0x0, <r3=>0x0, 0x0, 0x0]})
ioctl$DRM_IOCTL_MODE_SETPROPERTY(r1, 0xc01064ab, &(0x7f0000000880)={0x3, r2, r3}) (async)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r4, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0) (async)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r4, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x40, 0x1, 0x8, 0x301, 0x0, 0x0, {0x5, 0x0, 0x8}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x10}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x8100}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x88}]}, 0x40}}, 0x0) (async)
write$9p(r0, 0x0, 0x0) (async)
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(0xffffffffffffffff, 0xc05064a7, &(0x7f0000000380)={&(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[{}, {}, {}, {}, {}, {}], &(0x7f0000000040)=[0x0, <r5=>0x0], &(0x7f0000000340)=[0x0], 0x6, 0x2, 0x9})
ioctl$DRM_IOCTL_MODE_SETPROPERTY(r0, 0xc01064ab, &(0x7f0000000400)={0x400, r5})
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

06:45:27 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x2000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2164.301574][T20680] fuse: Unknown parameter '��)+IhY�)��
�"�mQ'
[ 2164.303201][T20682] fuse: Bad value for 'fd'
[ 2164.318593][T20687] fuse: Bad value for 'fd'
06:45:27 executing program 1:
r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x6, &(0x7f0000000040)=@raw=[@exit, @ldst={0x1, 0x0, 0x0, 0x1, 0x2, 0x1, 0x10}, @map_val={0x18, 0x5, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x81}, @cb_func={0x18, 0x0, 0x4, 0x0, 0xfffffffffffffffb}], &(0x7f0000000180)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)

06:45:27 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x3000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:27 executing program 3:
r0 = geteuid()
r1 = geteuid()
syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x800000, &(0x7f0000000740)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r0}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@blksize={'blksize', 0x3d, 0xc00}}], [{@obj_role={'obj_role', 0x3d, '\'$^)'}}, {@permit_directio}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@seclabel}, {@fsname={'fsname', 0x3d, 'rootmode'}}, {@fowner_gt={'fowner>', r1}}]}}, 0x0, 0x0, &(0x7f0000000200)="e75935c3ee372887ceaa01455ed7c909bc9f84379b427036a84c7bea2c59497ed9923f82500ba8c2827aa88e49bf19532faec20f49ce1e0eecd1fb93a35cae4c08b8cb0b24bf2a")
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7)

06:45:27 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0) (async)
getsockopt$SO_J1939_ERRQUEUE(0xffffffffffffffff, 0x6b, 0x4, &(0x7f0000000040), &(0x7f0000000180)=0x4) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x0, 0xee01}}, './file0\x00'})

06:45:27 executing program 1:
r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x6, &(0x7f0000000040)=@raw=[@exit, @ldst={0x1, 0x0, 0x0, 0x1, 0x2, 0x1, 0x10}, @map_val={0x18, 0x5, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x81}, @cb_func={0x18, 0x0, 0x4, 0x0, 0xfffffffffffffffb}], &(0x7f0000000180)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x6, &(0x7f0000000040)=@raw=[@exit, @ldst={0x1, 0x0, 0x0, 0x1, 0x2, 0x1, 0x10}, @map_val={0x18, 0x5, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x81}, @cb_func={0x18, 0x0, 0x4, 0x0, 0xfffffffffffffffb}], &(0x7f0000000180)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)

06:45:27 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x3000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:27 executing program 3:
geteuid()
geteuid()
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7)

[ 2164.427396][T20699] fuse: Bad value for 'fd'
[ 2164.440180][T20702] fuse: Bad value for 'fd'
06:45:27 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x4000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:27 executing program 0:
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
write$9p(r0, 0x0, 0x0)
write$P9_RLOCK(r0, &(0x7f0000000000)={0x8, 0x35, 0x2, 0x3}, 0x8)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000180)=ANY=[@ANYBLOB="66643dc6d826f3e35453cc89852812b0e6be09beb120b1ac085fe96c19b912b591c90b9775cedc820c1a9eeb7a331fd4378dcf44daa88e1e42", @ANYRES32=r1, @ANYBLOB="2c726f6f743f6f64653d303030303030303030303030169babfe530a54b6cf5cc2a7d6d4fe56f2000000", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRES8=r0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

06:45:27 executing program 1:
r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x6, &(0x7f0000000040)=@raw=[@exit, @ldst={0x1, 0x0, 0x0, 0x1, 0x2, 0x1, 0x10}, @map_val={0x18, 0x5, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x81}, @cb_func={0x18, 0x0, 0x4, 0x0, 0xfffffffffffffffb}], &(0x7f0000000180)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)

06:45:27 executing program 0:
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
write$9p(r0, 0x0, 0x0)
write$P9_RLOCK(r0, &(0x7f0000000000)={0x8, 0x35, 0x2, 0x3}, 0x8) (async)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0) (async, rerun: 64)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000180)=ANY=[@ANYBLOB="66643dc6d826f3e35453cc89852812b0e6be09beb120b1ac085fe96c19b912b591c90b9775cedc820c1a9eeb7a331fd4378dcf44daa88e1e42", @ANYRES32=r1, @ANYBLOB="2c726f6f743f6f64653d303030303030303030303030169babfe530a54b6cf5cc2a7d6d4fe56f2000000", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRES8=r0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0) (rerun: 64)

06:45:27 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x4000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:27 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(0xffffffffffffffff, &(0x7f00000016c0)={&(0x7f00000015c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001680)={&(0x7f0000001600)={0x70, 0x2, 0x7, 0x201, 0x0, 0x0, {0xa, 0x0, 0x7}, [@NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}, @NFACCT_FILTER={0x3c, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x80000000}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xe}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x8000}, @NFACCT_FILTER_MASK={0x8}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x2}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x1}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x71551523}]}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0xfffffffffffffffe}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x9ca4}]}, 0x70}, 0x1, 0x0, 0x0, 0x20000810}, 0x800)
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
recvmsg$can_j1939(r0, &(0x7f0000001580)={&(0x7f0000000000)=@can, 0x80, &(0x7f0000001400)=[{&(0x7f0000000180)=""/145, 0x91}, {&(0x7f0000000240)=""/64, 0x40}, {&(0x7f0000000280)=""/136, 0x88}, {&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f0000001340)=""/136, 0x88}], 0x5, &(0x7f0000001480)=""/224, 0xe0}, 0x0)

06:45:27 executing program 3:
geteuid()
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7)

06:45:27 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
write$9p(r1, 0x0, 0x0)
read$FUSE(r1, &(0x7f0000000000)={0x2020}, 0x2020)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

[ 2164.612843][T20720] fuse: Bad value for 'fd'
06:45:27 executing program 3:
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x7)

06:45:27 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x5000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:27 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x5000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:27 executing program 0:
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
write$9p(r0, 0x0, 0x0)
write$P9_RLOCK(r0, &(0x7f0000000000)={0x8, 0x35, 0x2, 0x3}, 0x8)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000180)=ANY=[@ANYBLOB="66643dc6d826f3e35453cc89852812b0e6be09beb120b1ac085fe96c19b912b591c90b9775cedc820c1a9eeb7a331fd4378dcf44daa88e1e42", @ANYRES32=r1, @ANYBLOB="2c726f6f743f6f64653d303030303030303030303030169babfe530a54b6cf5cc2a7d6d4fe56f2000000", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRES8=r0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
bpf$ITER_CREATE(0x21, 0x0, 0x0) (async)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0) (async)
write$9p(r0, 0x0, 0x0) (async)
write$P9_RLOCK(r0, &(0x7f0000000000)={0x8, 0x35, 0x2, 0x3}, 0x8) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000180)=ANY=[@ANYBLOB="66643dc6d826f3e35453cc89852812b0e6be09beb120b1ac085fe96c19b912b591c90b9775cedc820c1a9eeb7a331fd4378dcf44daa88e1e42", @ANYRES32=r1, @ANYBLOB="2c726f6f743f6f64653d303030303030303030303030169babfe530a54b6cf5cc2a7d6d4fe56f2000000", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRES8=r0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0) (async)

06:45:27 executing program 3:
socket$inet6(0xa, 0x0, 0x7)

06:45:27 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x6000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2164.726160][T20736] fuse: Bad value for 'fd'
06:45:27 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0) (async)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
write$9p(r1, 0x0, 0x0)
read$FUSE(r1, &(0x7f0000000000)={0x2020}, 0x2020)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:45:28 executing program 0:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f0000000040)={0x14, 0x4, 0x1, 0x101, 0x0, 0x0, {0x5, 0x0, 0x9}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

06:45:28 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x6000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2164.826168][T20749] fuse: Bad value for 'fd'
06:45:28 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x7000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:28 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(0xffffffffffffffff, &(0x7f00000016c0)={&(0x7f00000015c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001680)={&(0x7f0000001600)={0x70, 0x2, 0x7, 0x201, 0x0, 0x0, {0xa, 0x0, 0x7}, [@NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}, @NFACCT_FILTER={0x3c, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x80000000}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xe}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x8000}, @NFACCT_FILTER_MASK={0x8}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x2}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x1}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x71551523}]}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0xfffffffffffffffe}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x9ca4}]}, 0x70}, 0x1, 0x0, 0x0, 0x20000810}, 0x800)
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
recvmsg$can_j1939(r0, &(0x7f0000001580)={&(0x7f0000000000)=@can, 0x80, &(0x7f0000001400)=[{&(0x7f0000000180)=""/145, 0x91}, {&(0x7f0000000240)=""/64, 0x40}, {&(0x7f0000000280)=""/136, 0x88}, {&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f0000001340)=""/136, 0x88}], 0x5, &(0x7f0000001480)=""/224, 0xe0}, 0x0)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(0xffffffffffffffff, &(0x7f00000016c0)={&(0x7f00000015c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001680)={&(0x7f0000001600)={0x70, 0x2, 0x7, 0x201, 0x0, 0x0, {0xa, 0x0, 0x7}, [@NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}, @NFACCT_FILTER={0x3c, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x80000000}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xe}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x8000}, @NFACCT_FILTER_MASK={0x8}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x2}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x1}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x71551523}]}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0xfffffffffffffffe}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x9ca4}]}, 0x70}, 0x1, 0x0, 0x0, 0x20000810}, 0x800) (async)
socket$can_j1939(0x1d, 0x2, 0x7) (async)
recvmsg$can_j1939(r0, &(0x7f0000001580)={&(0x7f0000000000)=@can, 0x80, &(0x7f0000001400)=[{&(0x7f0000000180)=""/145, 0x91}, {&(0x7f0000000240)=""/64, 0x40}, {&(0x7f0000000280)=""/136, 0x88}, {&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f0000001340)=""/136, 0x88}], 0x5, &(0x7f0000001480)=""/224, 0xe0}, 0x0) (async)

06:45:28 executing program 3:
socket$inet6(0xa, 0x0, 0x7)

06:45:28 executing program 1:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
write$9p(r1, 0x0, 0x0)
read$FUSE(r1, &(0x7f0000000000)={0x2020}, 0x2020) (async)
read$FUSE(r1, &(0x7f0000000000)={0x2020}, 0x2020)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:45:28 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x7000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:28 executing program 0:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f0000000040)={0x14, 0x4, 0x1, 0x101, 0x0, 0x0, {0x5, 0x0, 0x9}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

06:45:28 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x8000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:28 executing program 0:
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f0000000040)={0x14, 0x4, 0x1, 0x101, 0x0, 0x0, {0x5, 0x0, 0x9}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) (async, rerun: 32)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (rerun: 32)

[ 2165.514288][T20768] fuse: Bad value for 'fd'
06:45:28 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x9000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:28 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
r1 = getgid()
openat$drirender128(0xffffffffffffff9c, &(0x7f0000000140), 0x501800, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, r1}}, 0x0, 0x0, 0x0)
write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000000)={0x2b, 0x6, 0x0, {0x1, 0x5, 0x2, 0x0, '}^'}}, 0x2b)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r2, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x40, 0x0, 0x1, 0x0, 0x0, 0x0, {0x7, 0x0, 0x4}, [@CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x2}, @CTA_SEQ_ADJ_REPLY={0x14, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x3f}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0xff}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x2b}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x1}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x10)

06:45:28 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x9000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:28 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x10000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2165.639108][T20780] fuse: Bad value for 'fd'
06:45:28 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB="2c726f6f746d6f64653d303131a0303030303030303030703030103030303030303030302c757365725f", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
write$FUSE_NOTIFY_POLL(0xffffffffffffffff, &(0x7f0000000000)={0x18, 0x1, 0x0, {0xffffffffffffffff}}, 0x18)
r0 = getgid()
write$FUSE_CREATE_OPEN(0xffffffffffffffff, &(0x7f0000000180)={0xa0, 0x0, 0x0, {{0x6, 0x3, 0x4, 0x7fffffffffffffff, 0x4, 0x6, {0x4, 0x100000000, 0x6, 0xffff, 0x8, 0x7, 0x80000001, 0x1f, 0x5, 0xc000, 0x3ff, 0xee01, r0, 0x8, 0x8}}, {0x0, 0x2}}}, 0xa0)

[ 2165.715614][T20785] fuse: Bad value for 'fd'
06:45:29 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(0xffffffffffffffff, &(0x7f00000016c0)={&(0x7f00000015c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001680)={&(0x7f0000001600)={0x70, 0x2, 0x7, 0x201, 0x0, 0x0, {0xa, 0x0, 0x7}, [@NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}, @NFACCT_FILTER={0x3c, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x80000000}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xe}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x8000}, @NFACCT_FILTER_MASK={0x8}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x2}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x1}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x71551523}]}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0xfffffffffffffffe}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x9ca4}]}, 0x70}, 0x1, 0x0, 0x0, 0x20000810}, 0x800)
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
recvmsg$can_j1939(r0, &(0x7f0000001580)={&(0x7f0000000000)=@can, 0x80, &(0x7f0000001400)=[{&(0x7f0000000180)=""/145, 0x91}, {&(0x7f0000000240)=""/64, 0x40}, {&(0x7f0000000280)=""/136, 0x88}, {&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f0000001340)=""/136, 0x88}], 0x5, &(0x7f0000001480)=""/224, 0xe0}, 0x0)

06:45:29 executing program 3:
socket$inet6(0xa, 0x0, 0x7)

06:45:29 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0xa000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:29 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
r1 = getgid()
openat$drirender128(0xffffffffffffff9c, &(0x7f0000000140), 0x501800, 0x0) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, r1}}, 0x0, 0x0, 0x0)
write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000000)={0x2b, 0x6, 0x0, {0x1, 0x5, 0x2, 0x0, '}^'}}, 0x2b) (async)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r2, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0) (async)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x40, 0x0, 0x1, 0x0, 0x0, 0x0, {0x7, 0x0, 0x4}, [@CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x2}, @CTA_SEQ_ADJ_REPLY={0x14, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x3f}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0xff}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x2b}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x1}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x10)

06:45:29 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x1f000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:29 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB="2c726f6f746d6f64653d303131a0303030303030303030703030103030303030303030302c757365725f", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
write$FUSE_NOTIFY_POLL(0xffffffffffffffff, &(0x7f0000000000)={0x18, 0x1, 0x0, {0xffffffffffffffff}}, 0x18) (async)
r0 = getgid()
write$FUSE_CREATE_OPEN(0xffffffffffffffff, &(0x7f0000000180)={0xa0, 0x0, 0x0, {{0x6, 0x3, 0x4, 0x7fffffffffffffff, 0x4, 0x6, {0x4, 0x100000000, 0x6, 0xffff, 0x8, 0x7, 0x80000001, 0x1f, 0x5, 0xc000, 0x3ff, 0xee01, r0, 0x8, 0x8}}, {0x0, 0x2}}}, 0xa0)

06:45:29 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB="2c726f6f746d6f64653d303131a0303030303030303030703030103030303030303030302c757365725f", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
write$FUSE_NOTIFY_POLL(0xffffffffffffffff, &(0x7f0000000000)={0x18, 0x1, 0x0, {0xffffffffffffffff}}, 0x18)
r0 = getgid()
write$FUSE_CREATE_OPEN(0xffffffffffffffff, &(0x7f0000000180)={0xa0, 0x0, 0x0, {{0x6, 0x3, 0x4, 0x7fffffffffffffff, 0x4, 0x6, {0x4, 0x100000000, 0x6, 0xffff, 0x8, 0x7, 0x80000001, 0x1f, 0x5, 0xc000, 0x3ff, 0xee01, r0, 0x8, 0x8}}, {0x0, 0x2}}}, 0xa0)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB="2c726f6f746d6f64653d303131a0303030303030303030703030103030303030303030302c757365725f", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0) (async)
write$FUSE_NOTIFY_POLL(0xffffffffffffffff, &(0x7f0000000000)={0x18, 0x1, 0x0, {0xffffffffffffffff}}, 0x18) (async)
getgid() (async)
write$FUSE_CREATE_OPEN(0xffffffffffffffff, &(0x7f0000000180)={0xa0, 0x0, 0x0, {{0x6, 0x3, 0x4, 0x7fffffffffffffff, 0x4, 0x6, {0x4, 0x100000000, 0x6, 0xffff, 0x8, 0x7, 0x80000001, 0x1f, 0x5, 0xc000, 0x3ff, 0xee01, r0, 0x8, 0x8}}, {0x0, 0x2}}}, 0xa0) (async)

06:45:29 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x10000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2166.400745][T20796] fuse: Bad value for 'fd'
06:45:29 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x20000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:29 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
r1 = getgid()
openat$drirender128(0xffffffffffffff9c, &(0x7f0000000140), 0x501800, 0x0) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, r1}}, 0x0, 0x0, 0x0)
write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000000)={0x2b, 0x6, 0x0, {0x1, 0x5, 0x2, 0x0, '}^'}}, 0x2b) (async)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r2, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x40, 0x0, 0x1, 0x0, 0x0, 0x0, {0x7, 0x0, 0x4}, [@CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x2}, @CTA_SEQ_ADJ_REPLY={0x14, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x3f}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0xff}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x2b}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x1}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x10)

06:45:29 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='\x00\x00\x00', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

06:45:29 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x1f000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2166.542261][T20814] fuse: Bad value for 'fd'
06:45:30 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c67726f7505bab830cb44db44d8285c163d0000000000000000", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

06:45:30 executing program 3:
socket$inet6(0xa, 0xb99eb20a3c0532ea, 0x0)

06:45:30 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x20100000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:30 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000000)=r0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000040)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {}, 0x2c, {[], [{@defcontext={'defcontext', 0x3d, 'user_u'}}, {@euid_gt={'euid>', 0xee00}}]}}, 0x0, 0x0, 0x0)
arch_prctl$ARCH_GET_CPUID(0x1011)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
write$9p(r1, 0x0, 0x0)
syz_mount_image$fuse(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x40000, &(0x7f0000000180)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}], [{@context={'context', 0x3d, 'user_u'}}]}}, 0x0, 0x0, &(0x7f0000000240)="7231704a4b4f70b28aab84b8e2d412fa7fd9be4ecf466d7553e080f15d75e953a86a42fea1122b74a714730edf33eca39c7168e9724c65337bf99089f847873ecf8af516df2ba2ba251537bb69ce44f36edfc77b4c73d2fcc52b9aa471fda3cb4234bc95e53790090e46f0eaa863c94dc1fdb61a41eac0aae627d32e5e19c35a7dc41657f3b113d006a05d995b936f573ec5dc594d1fbdc22425c568dd6633587a1b95d7c67f357b48dfc200861aa7665bdd5ab03de048eb8767866bbddeb253e7d39ad090152b5765bc3fa5b461d43eafc222008813f1a61ece81ded1dcd7a04f52a6ad71f5b750a7a35a4acf47b4eaef1c292e2cceedca12cc67bbd3ca946fce447e660593e50eab6a20563e9b8ffb5e6f1ec7bc4fcb093e019569b36408fd45ab3100f0dd2b98c2d20ea3553b2151de654179c567ce3d9991810bf46ccea14a0a521e04d0766f52dfa46788bef2edfe186eddd22903b5c6c94a5aeb25d890cd2a4e60c0e440c274279fde5e4eab635103eb250eb945a0dc51473042b9e1c5e13b57f6f6d4af730f58879a075722e81c38c79785e9111d1960bdeabaaba4914ed7e36d0afc10fc63503ac475f96c8f49f692d3f268d30146ad6ffa5394e538d1e959fa84e2ac52d023666e46a367700dc81e2d17f15b12f35500e1f75ec3d57161ca176249422f4b472f76fbb84f4816bb57d8392d11277d03f9c7ae0270f4ffc49ace06a8a1894ded687f8098a561c59cb7d36c66f1300b122e402b2731b9c513220a4d5271a6c3dd3a44ccd48353faee35b152b0b60f0626e17462f13dd2d27f191cb2f8f4d5354541b087b7db945b3412341de9496e8a25e649473e5f641f6e62b92c43dc8e604a812c2ffe1f57698b791ea62e5a94a2f419fc5447a253ce94018d37392dedb44f6026642e5c7e364925ca435c082a6c9fe280e28e95f273114fa7c327a43633511b27b9ff9f127016532fe1ddf8d527fdf4acc119c4afc3068c770b8271e1483698175e1de2a63587049ae4448c9379a352c4880afde434241f11df2ac262b251ef5b7566b5019a4ebb18361f0b665511af0ddc2f11c963ab931e586ea85906400480e25569cbd25a75d8ae4f9428f1d459255e33eb8c345f6c47e998be56ed4bb7e2a10065e17be713aa1e3ff9907444bc0c20a374d3a6a09ba6a609005db36070b1bb17dc2deefbae46eba0c306a19c00147b1b26a9d8da9b18c802f8f5d8aa7b24e5d73abed43d351e09f84d1a90f6b4349138fb65039b8c6afcd2c61c67b1986e37759881b9100dc6f40677c67f355a549332cfa6888968299bb9cb5b0911076a3fd57c930ae2ee21d1c7dd6a007dac064c91906c3dbf77131321a06dfdc6dc53fb6c7c16b2af2b9b3050224e338f66dad040e2c3e28d7efa6f94b89ceb013e591babf31a1dfcbca5faf148dbc2703caa0719f704d97ebcc614471c6eb690d6250649be5ac0f67f85862b70ee07763b5714c78e3ab52b54faba5aa1644c5743a0c8c5a3f954528d833845aab1aced2cae4165d5d74246fe76f3606e45d7a4bbb8c56fec8a8efd78d5d4b8317e60ad281fb32c0cdcf289c9b4ef8c2910f4091b80ac207ceb458fae077eb933030707eba64c1690ffd1f64783717b9e10f8ca3a8008148cf653384cdf1ab2e2cd424926fb6075476b00d22cc0bfe9dbac0bc0e6e20b6ec72bdb9bbd8513e4275580f05a4fa99e399b026d9c1b65ad553eb481aadb046ce9f9f7b6dd1d416db6436116c3309a9dc04baab43d63d45e3ed79d93b6ca092dbf180d0757c15777bf243bcd8120e8b09e662c6ca380cd9f287b2dde97f5a9a62b681b2cad9da40d1d446cab3c983ecbf882604d6d8a08f80db824a08d9a74f76ec3c2b9c5393f47ee1b089e1bcbaac6aad81e74646daefaa75d039b49a114f7667025fd5e3596fec7c45687b197e7d6395036211cd1447c1138bf652d0a751cf8de366761780383b51ae54e2f7ab398acb14bb1d6979f3c10204ebfea8ca6b2f70ce6e5a166c26a0c1255b4d75b247de73296efdff3e91a10952db3fae2123ca23666ae18186082f07d480cd561fd32189f0676b385880bd90000fc143f26e35d0ed8388ba513b2c8e53469b63b14ffd1ec958420d9f0078a1ef5fa85fba5331e795bb77b32694b25bd0df8e749fdd8d447a17531f27b22d3c8354338c0f56444a9491b8e7447aa0928f9d9e4e487391268279240c1bf447a1a0b48fe3805bbe1ab318ce89edb2a4640488b7a5eda56ba505140b434cef7e3d91c47f736779de1c7d4da1a5e5ef6d66ace3f4550bb0cfc40efe1c4727db26d7e542dadb8e0a530fa46b5a7a3fcb46a19aefabc42d10356ae0a8b611cd3a4e8017228eef73f57920103d8350fdc4aeebd0e7b6e2bf27c893a52e55c94c631afe4b6106d9ccb110876300fc5b3ab1a98714256d2ad0e1f1894bf306207a58993e487648c82817a1e5d2fb47e313ebc0fe107eba26056b7e32f0420bbfc21b2c2c0b06fe9bf50a0f52525e1633b8cd2d5cd671bf5e570ed9e1f4b88773b1b45f7317ef3daf2b8c404afe25ffb44d7a27854b99093e15f2fff4616e537f3229ce8beaaa3b4e95071330a1f05b0812f7587db31ce7999d5c5068c5f6eefbdfc1902e4d4ff56848b996ec758a8020bac8d1b1fa79e67e0e715040e33785ae7fe867203486635eff6e674176d9c7e687f9af7da2990c5eb83d9279148b43faf9b0a6c8eb93c95303940c71967d0c5a064c1bff1a08df499bee92fb0766745e30984a8f258571d832359edae38b11af2938ef5066b68a7547304613e984ce0092fbd5358d66f6047ca07fe4ffc21a8668b5aa47833b6de401b2e2b690f054c1d6e4edd5ea1f17849124dc3c915a5867d672dc5187587ca0e3c37d38c1504d54c559c67028062fd0722132405cd64a0d7bd0bc2403d5454d825d0640a2695e4834fb1a37950cdcfb9c5bd3dd87ea28a4aa6ea811c2760dec9e9225ec88f40dfa089b9947cd5b7ca1fcdf43e6243dba0590822d70fddbb49535c60e1103d899b7d2e80565163df5f5d442bbe4d29c2eda19107af6bdc2d4bbd29094f9caaad5e3eacf9b5022328c9caa76584591e31531bdae24bb519349b7086f49118591c059397489adc3898c46b36a0b1048a90c6a4dadfee77319ea7d88f1f99dc90fc2397a5010c4933192088faa3ffa8f33ff0ddbd99d6025292b1324b21b508db5e3e7b0a745c17a121ae1e98ad2f2f42441428685d0bebd90f1d6ac69c8716ae713a4cae16127c28e224951f44ae049cdab88067ee0daa5953100c273ba8e335306c466151f049a4cad6d553432e93bfa4c7233f5f93aa64f32e2571a8ec42f8399eabfd69ab328c111f2e6adf4884aaf27b6b735e86fc97cb9d3a0c6c138aeabb16bc9e00535502b8ae0118610fc46f38ce7320a7d40fe1f6c1bf8d4472d53261b50f3e79c6590e91179c2f5c146ea15a2f8db334d5e7d09cc29e8fadf1e4c80eee4f34dcc61fb46fb8260af5bce9c15c27b121b367427aa078ac813baee47de577c42b4ce237de678e9ebf043706790f64a3329cdb36daf804a4622235475d33ee8be72a288f3ee8c2eb72123a1dd8a1ffa23cca65fca496bb6d07c85ea69787281eac114f6442f79241c3b44bc0c7c963cddba31c7ee4cf37979a818346517de3e73dba46e319b99bda13258aa405dd96f7a006c92300830af1037ead3d990bc136721cbd349cdd3d4173357201e87eb706d9c28120b9571f5c663d6c5d88803fd008db61075e95d2bf4e3171e0ee8b93d4c8614090a95790d3d17d6c365a54bc1e24c32125dcb1b0877ccb1df077bdac5bfac096edb9ed5a00be8d25a3af80fbb84748b1ab9e9bbc9092ce1035c06967f7710beba4dafdc31487eb06f9735cd956327704cb21d9febdd74088d8a66a8709ccdab7bf652925b7a70fa0e1b4d84d119de79efe5ea3c2ab0ae77c5478b04ec86e32df42c3d95849df032a9439de3497ead7a79e956902f10db8cde8365e2c03fd9b888103ead022615d90dcbceb6109cfe7ec4f970558313b99297686415ba18114bc9976cbebe6fcc92d66034459a16bfd1d6b45afa1a39f33aeef82ad342a937e089743ba4803ddfb4b217222cb661ceb3ea903deec3fa1144108384100a6bf1585ba5b6ea1fafaf614a7115ad2f525b8aae55a802ce41700102bda2178fb7db76e85190bd62230680d152a1669a9c5a6f223ffd91bc4df0711d0962aec6e17ce4449763bd5c9fca659fbf1d72506f7c561ee5c89fedc7697b0763141d0fafe0686e5c2e3988b024915bb395c7ac5839233c6507cc55414bb7e423ce365014572ce6f9b21415259fbcc4462670083a5345293b27b00623f9bedebf0618f564a5219213e0d15832dbb9d4aceae23574fe0d366e99288902798630aeb208e94a5aa1dc7489baaba5471e187aa74cc43ccaaa4fb8138b75ef936e6060702e6966cd1fac201001ca96bfdd94577abcbe13be3e34b8ed6fc0bb729bb13ebd6f0a609396923793a7687c0245b92861b283e6005f99f73f649b41f859a1a84a75272fcefdcab6865723063c53da9379c58ea183aeb0b63564c4a57a269f594e11c426b46c6ac7a1e3582024b659a50d5faf44979d5a3de49fa24fa6e86488785abee6737550b45ed5cd05ae2cd0acaed5ff4be1f2c6296726b15561f3a8c78e5b875851980edb3ab7d84e23a5f2dc3379cad4af71e6c0a57b1d4216a318caec95e728e91d92c917690884e45946048cab7c2cd4f1d3bfb3dcbedc3b69444b455b7ef31079f398f0e49309fc87918e239322b7b44a97c6a0b47b4a1d0c55937f83d3a76abec67d5da82966124cb1fe43c99d16d136f8f2b03f2296238e610a3a3aec97dc364e6355ff95d69480577fe4ddfbf8ef6880028d16cb220ea9ae1d3e1bdaa521d9f6f6a5fdd457e4ceb9d5ede48be701a5a215a0a08116411b4c0576bc6eb6821d12fc6ab5a2a45a2c4dc185f47382eaaefca8a675dd69644549ddb517bba0acf3330117f43f51a0f1597a3597ad0a6121db08b72d174d06a0da72c43e9dcac2ca5456e6d949b7d643564a2e18e7d1b773d7fc6cf6f5d8bf40bf557afa6b37b8e4094a8e021ae7a7a652263d4d05537f07f35b58f52061fffbbc6a118c4b6c95335df1f94c8cd36d871cda12e1b3a8265cdf0b555625eeb1d0ab5fb483b779e4ab3449eac5da0b06d1428c1387be26fc83f9ee3d63dc1324e0fbb817492e4238735ae9d41871fe5ff82b4bfc6fbfdaa502a4d78beef20f5cc53f1988ce1856aacbed19cd28bc02401714455a0248954f61821a822bdd77c6453f3a04574b4906adc5c2176b3730e3e562c6b234d02ce4c6c6006c3b7125301b6afb20806517197ce680501ee1dfbf2d7dab90490dcc0036ea7275a34627ab5299a3ff5cc77c083bd8515fda334390e144543842d02179838089cbbb8eb3ee75ac946be24fac3e223b79efc5172a9f08e5bca52a4f02c50311fdea3041b1d01c3eca80fc2378d8cfbc4221260ade8ec0986b4000d82d5f5b6cc528aa91fed7165e9b359a3a0540352819b33d945984b4bceed97f5856fbcb7be9c4f807f0be1f9c3f21faa0a7348f4d015745e8c07c7ae588538365f3441c331eb682e4bd57944370a76b62d054a89ba5bc2ee8ee86fe5362acab85cc9132828dce3872d91ea5ba93d93db9a35415eeefb2ab81ffb4784382f3a16e2c800f9086014a015acf54efad01aedcac63332a2bfff20205b5979b4fc92c89448fa98f63a72b40f0896d3abbc76afe3f95f73d90705a0b2af665388")

06:45:30 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x20000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:30 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='\x00\x00\x00', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

06:45:30 executing program 0:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='\x00\x00\x00', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

06:45:30 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
r1 = getgid()
openat$drirender128(0xffffffffffffff9c, &(0x7f0000000140), 0x501800, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, r1}}, 0x0, 0x0, 0x0)
write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000000)={0x2b, 0x6, 0x0, {0x1, 0x5, 0x2, 0x0, '}^'}}, 0x2b)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r2, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x40, 0x0, 0x1, 0x0, 0x0, 0x0, {0x7, 0x0, 0x4}, [@CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x2}, @CTA_SEQ_ADJ_REPLY={0x14, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x3f}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0xff}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x2b}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x1}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x10)

06:45:30 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x48000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:30 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000000)=r0) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000040)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {}, 0x2c, {[], [{@defcontext={'defcontext', 0x3d, 'user_u'}}, {@euid_gt={'euid>', 0xee00}}]}}, 0x0, 0x0, 0x0)
arch_prctl$ARCH_GET_CPUID(0x1011) (async)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
write$9p(r1, 0x0, 0x0) (async)
syz_mount_image$fuse(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x40000, &(0x7f0000000180)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}], [{@context={'context', 0x3d, 'user_u'}}]}}, 0x0, 0x0, &(0x7f0000000240)="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")

06:45:30 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x20100000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2167.288166][T20826] fuse: Unknown parameter 'defcontext'
06:45:30 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c67726f7505bab830cb44db44d8285c163d0000000000000000", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

[ 2167.354979][T20835] fuse: Bad value for 'fd'
06:45:30 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x3f000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:30 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x4c000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:30 executing program 0:
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(0xffffffffffffffff, 0xc02064b9, &(0x7f0000000180)={&(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x4, 0x0, 0xcccccccc})
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

06:45:30 executing program 1:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000000)=r0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000040)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {}, 0x2c, {}, 0x2c, {[], [{@defcontext={'defcontext', 0x3d, 'user_u'}}, {@euid_gt={'euid>', 0xee00}}]}}, 0x0, 0x0, 0x0) (async, rerun: 32)
arch_prctl$ARCH_GET_CPUID(0x1011) (rerun: 32)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0) (async)
write$9p(r1, 0x0, 0x0) (async)
syz_mount_image$fuse(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x40000, &(0x7f0000000180)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}], [{@context={'context', 0x3d, 'user_u'}}]}}, 0x0, 0x0, &(0x7f0000000240)="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")

[ 2167.401458][T20840] fuse: Unknown parameter 'defcontext'
06:45:30 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r1, 0x0, 0x0)
write$9p(r1, 0x0, 0x0)
read$FUSE(r1, &(0x7f0000000000)={0x2020}, 0x2020)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:45:30 executing program 4:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c67726f7505bab830cb44db44d8285c163d0000000000000000", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)

06:45:30 executing program 0:
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(0xffffffffffffffff, 0xc02064b9, &(0x7f0000000180)={&(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x4, 0x0, 0xcccccccc})
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)

[ 2167.508348][T20846] fuse: Bad value for 'fd'
[ 2167.514020][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.542043][T20853] fuse: Unknown parameter 'defcontext'
06:45:30 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x40000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:30 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x60000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:30 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
read$FUSE(r0, &(0x7f0000000180)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_LSEEK(r0, &(0x7f0000000040)={0x18, 0xfffffffffffffffe, r1, {0x1}}, 0x18)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{'fd', 0x3d, r0}}, 0x0, 0x0, 0x0)

[ 2167.565057][T20853] fuse: Unknown parameter 'defcontext'
06:45:30 executing program 3:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x300, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:30 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x64620000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2167.596464][T20860] fuse: Bad value for 'fd'
[ 2167.610683][T20853] fuse: Unknown parameter 'defcontext'
06:45:30 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x8cffffff, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:30 executing program 0:
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(0xffffffffffffffff, 0xc02064b9, &(0x7f0000000180)={&(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x4, 0x0, 0xcccccccc})
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(0xffffffffffffffff, 0xc02064b9, &(0x7f0000000180)={&(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x4, 0x0, 0xcccccccc}) (async)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)

06:45:30 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
read$FUSE(r0, &(0x7f0000000180)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_LSEEK(r0, &(0x7f0000000040)={0x18, 0xfffffffffffffffe, r1, {0x1}}, 0x18) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{'fd', 0x3d, r0}}, 0x0, 0x0, 0x0)

[ 2167.642656][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.663422][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.674048][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.706282][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.727508][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.752926][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.771456][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.784914][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.791512][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.797353][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.803997][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.811015][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.816821][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.823106][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.829105][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.834905][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.840941][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.847955][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.853854][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.861641][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.867453][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.873944][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.880160][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.886037][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.892042][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.898131][T20853] fuse: Unknown parameter 'defcontext'
06:45:31 executing program 1:
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
write$9p(r0, 0x0, 0x0)
write$P9_RUNLINKAT(r0, &(0x7f0000000000)={0x7, 0x4d, 0x1}, 0x7)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f00000000c0)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x2}}, {@allow_other}]}}, 0x1, 0x0, 0x0)
read$FUSE(r1, &(0x7f0000002340)={0x2020}, 0x2020)

06:45:31 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1e30e5861666ea8c0f58d170479e6e6f590ed00607e72d6d2895f158adeb6fe46264342a31108ee05cf4f3848771ac0d1b6391f6738cdbf931f9371c6fedd458a872f5fbeba99e5624f5f8f15c9f9cd8e9ca8ec5bbdc85691c33309b1dee1368322b3e90044a901cbe3352e00ac15c4e690665438792eae56133ddc4ffb74b8bbeba6df32cf86dd36ae921d293", @ANYRESHEX=r0, @ANYRES8=r0, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="2cb848cca500"], 0x0, 0x0, 0x0)

06:45:31 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r2=>r0, {<r3=>0x0}}, './file0\x00'})
openat$autofs(0xffffffffffffff9c, &(0x7f0000000240), 0x311500, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f00000001c0)=ANY=[@ANYBLOB="0100000ec700000000000000", @ANYRES32=r0, @ANYRES32=r3, @ANYRES32, @ANYBLOB='./file0\x00'])
r4 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r4, 0x0, 0x0)
write$9p(r4, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r4, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, r2}, './file0\x00'})
write$FUSE_NOTIFY_DELETE(0xffffffffffffffff, &(0x7f0000000000)={0x2d, 0x6, 0x0, {0x4, 0x6, 0x4, 0x0, ')\xd0-!'}}, 0x2d)

06:45:31 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0xc0ed0000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:31 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x68000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:31 executing program 4:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
read$FUSE(r0, &(0x7f0000000180)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_LSEEK(r0, &(0x7f0000000040)={0x18, 0xfffffffffffffffe, r1, {0x1}}, 0x18)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{'fd', 0x3d, r0}}, 0x0, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async)
read$FUSE(r0, &(0x7f0000000180)={0x2020}, 0x2020) (async)
write$FUSE_LSEEK(r0, &(0x7f0000000040)={0x18, 0xfffffffffffffffe, r1, {0x1}}, 0x18) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{'fd', 0x3d, r0}}, 0x0, 0x0, 0x0) (async)

[ 2167.904120][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.910269][T20853] fuse: Unknown parameter 'defcontext'
[ 2167.916086][T20853] fuse: Unknown parameter 'defcontext'
06:45:31 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r2=>r0, {<r3=>0x0}}, './file0\x00'})
openat$autofs(0xffffffffffffff9c, &(0x7f0000000240), 0x311500, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f00000001c0)=ANY=[@ANYBLOB="0100000ec700000000000000", @ANYRES32=r0, @ANYRES32=r3, @ANYRES32, @ANYBLOB='./file0\x00'])
r4 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r4, 0x0, 0x0)
write$9p(r4, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r4, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, r2}, './file0\x00'})
write$FUSE_NOTIFY_DELETE(0xffffffffffffffff, &(0x7f0000000000)={0x2d, 0x6, 0x0, {0x4, 0x6, 0x4, 0x0, ')\xd0-!'}}, 0x2d)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000180)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) (async)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000240), 0x311500, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f00000001c0)=ANY=[@ANYBLOB="0100000ec700000000000000", @ANYRES32=r0, @ANYRES32=r3, @ANYRES32, @ANYBLOB='./file0\x00']) (async)
bpf$ITER_CREATE(0x21, 0x0, 0x0) (async)
sendmsg$IPCTNL_MSG_EXP_NEW(r4, 0x0, 0x0) (async)
write$9p(r4, 0x0, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r4, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) (async)
write$FUSE_NOTIFY_DELETE(0xffffffffffffffff, &(0x7f0000000000)={0x2d, 0x6, 0x0, {0x4, 0x6, 0x4, 0x0, ')\xd0-!'}}, 0x2d) (async)

06:45:31 executing program 1:
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
write$9p(r0, 0x0, 0x0)
write$P9_RUNLINKAT(r0, &(0x7f0000000000)={0x7, 0x4d, 0x1}, 0x7)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f00000000c0)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x2}}, {@allow_other}]}}, 0x1, 0x0, 0x0)
read$FUSE(r1, &(0x7f0000002340)={0x2020}, 0x2020)
bpf$ITER_CREATE(0x21, 0x0, 0x0) (async)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0) (async)
write$9p(r0, 0x0, 0x0) (async)
write$P9_RUNLINKAT(r0, &(0x7f0000000000)={0x7, 0x4d, 0x1}, 0x7) (async)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f00000000c0)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x2}}, {@allow_other}]}}, 0x1, 0x0, 0x0) (async)
read$FUSE(r1, &(0x7f0000002340)={0x2020}, 0x2020) (async)

[ 2167.962662][T20883] fuse: Unknown parameter '0�f�X�pG�noY��-m(��X��o�bd4*1��\��q�c��s���1�7o��X�r��멞V$���\����ʎŻ܅i30��h2+>�J��3R�
[ 2167.962662][T20883] �\NieC����a3����K���m�'
[ 2167.980874][T20889] fuse: Bad value for 'group_id'
[ 2168.000118][T20885] fuse: Bad value for 'fd'
06:45:31 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x6c000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:31 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0xf6ffffff, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:31 executing program 4:
pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80)
r1 = getgid()
write$FUSE_ATTR(r0, &(0x7f0000000180)={0x78, 0x0, 0x0, {0x1ff, 0x5, 0x0, {0x1, 0x7fffffffffffffff, 0xd4d1, 0x6, 0x0, 0x80000000, 0x800, 0x4, 0x1ff, 0xe000, 0x3f, 0xee00, r1, 0x9, 0xde}}}, 0x78)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{'fd', 0x3d, r0}}, 0x0, 0x0, 0x0)

06:45:31 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000000000)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[], [{@hash}, {@uid_lt={'uid<', 0xee00}}, {@audit}, {@appraise_type}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x36, 0x37, 0x32, 0x65, 0x61, 0x34, 0x34], 0x2d, [0x31, 0x39, 0x61, 0x66], 0x2d, [0x31, 0x65, 0x1b, 0x33], 0x2d, [0x39, 0x38, 0x66, 0x39], 0x2d, [0x34, 0x33, 0x37, 0x34, 0x30, 0x61, 0x55, 0x64]}}}, {@smackfsroot={'smackfsroot', 0x3d, 'fd'}}, {@euid_lt}, {@dont_appraise}]}}, 0x0, 0x0, 0x0)

[ 2168.044802][T20895] fuse: Bad value for 'group_id'
[ 2168.058499][T20895] fuse: Bad value for 'group_id'
06:45:31 executing program 0:
r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r2=>r0, {<r3=>0x0}}, './file0\x00'})
openat$autofs(0xffffffffffffff9c, &(0x7f0000000240), 0x311500, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f00000001c0)=ANY=[@ANYBLOB="0100000ec700000000000000", @ANYRES32=r0, @ANYRES32=r3, @ANYRES32, @ANYBLOB='./file0\x00'])
r4 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r4, 0x0, 0x0)
write$9p(r4, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r4, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, r2}, './file0\x00'})
write$FUSE_NOTIFY_DELETE(0xffffffffffffffff, &(0x7f0000000000)={0x2d, 0x6, 0x0, {0x4, 0x6, 0x4, 0x0, ')\xd0-!'}}, 0x2d)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0) (async)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000180)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) (async)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000240), 0x311500, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f00000001c0)=ANY=[@ANYBLOB="0100000ec700000000000000", @ANYRES32=r0, @ANYRES32=r3, @ANYRES32, @ANYBLOB='./file0\x00']) (async)
bpf$ITER_CREATE(0x21, 0x0, 0x0) (async)
sendmsg$IPCTNL_MSG_EXP_NEW(r4, 0x0, 0x0) (async)
write$9p(r4, 0x0, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r4, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) (async)
write$FUSE_NOTIFY_DELETE(0xffffffffffffffff, &(0x7f0000000000)={0x2d, 0x6, 0x0, {0x4, 0x6, 0x4, 0x0, ')\xd0-!'}}, 0x2d) (async)

06:45:31 executing program 1:
r0 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, 0x0, 0x0)
write$9p(r0, 0x0, 0x0) (async)
write$9p(r0, 0x0, 0x0)
write$P9_RUNLINKAT(r0, &(0x7f0000000000)={0x7, 0x4d, 0x1}, 0x7)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f00000000c0)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x2}}, {@allow_other}]}}, 0x1, 0x0, 0x0)
read$FUSE(r1, &(0x7f0000002340)={0x2020}, 0x2020)

[ 2168.096295][T20901] fuse: Bad value for 'fd'
06:45:31 executing program 3:
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x100000000000000, 0x0)

06:45:31 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0xf9fdffff, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:31 executing program 4:
pipe2$watch_queue(&(0x7f0000000000), 0x80) (async)
pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80)
r1 = getgid()
write$FUSE_ATTR(r0, &(0x7f0000000180)={0x78, 0x0, 0x0, {0x1ff, 0x5, 0x0, {0x1, 0x7fffffffffffffff, 0xd4d1, 0x6, 0x0, 0x80000000, 0x800, 0x4, 0x1ff, 0xe000, 0x3f, 0xee00, r1, 0x9, 0xde}}}, 0x78)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{'fd', 0x3d, r0}}, 0x0, 0x0, 0x0)

06:45:31 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x74000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2168.167539][T20911] fuse: Bad value for 'group_id'
06:45:31 executing program 0:
ioctl$DRM_IOCTL_MODE_GETPROPERTY(0xffffffffffffffff, 0xc04064aa, &(0x7f0000000300)={&(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], 0x0, 0x0, '\x00', 0x9, 0x9})
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="8f0f5dd707000000003d", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x14, 0x3, 0x2, 0x3, 0x0, 0x0, {0x7, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x40)

06:45:31 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$nl_netfilter(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x84, 0x8, 0x8, 0x801, 0x70bd27, 0x25dfdbfd, {0x3, 0x0, 0x8}, [@generic="80c897a9fd59f092834663796b0e3905e3ee5147eaee7edd57e20652138371b56991f8e656a73f0fa01e8dc859995fa95511febcf71d5fb9dd3c624fc1b16975157bc78badc5cb2185fc9378603e6957e8405f12afe19d223624ddd2c66ee5b025e190df7ab38ff354c08661e4"]}, 0x84}, 0x1, 0x0, 0x0, 0x48080}, 0x4008080)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)

06:45:31 executing program 4:
pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80)
r1 = getgid()
write$FUSE_ATTR(r0, &(0x7f0000000180)={0x78, 0x0, 0x0, {0x1ff, 0x5, 0x0, {0x1, 0x7fffffffffffffff, 0xd4d1, 0x6, 0x0, 0x80000000, 0x800, 0x4, 0x1ff, 0xe000, 0x3f, 0xee00, r1, 0x9, 0xde}}}, 0x78) (async)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)={{'fd', 0x3d, r0}}, 0x0, 0x0, 0x0)

[ 2168.240304][T20919] __do_sys_memfd_create: 20 callbacks suppressed
[ 2168.240324][T20919] syz-executor.3[20919]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[ 2168.241844][T20920] fuse: Bad value for 'fd'
06:45:31 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0xff030000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:31 executing program 3:
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)
pipe2$watch_queue(&(0x7f00000000c0), 0x80)
r2 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r2, 0x0, 0x0)
write$9p(r2, 0x0, 0x0)
sendmsg$L2TP_CMD_SESSION_GET(r2, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xfffffffffffffe80, &(0x7f0000000180)={&(0x7f0000000200)={0x24, r0, 0x20, 0x70bd29, 0xffe, {}, [@L2TP_ATTR_IP_DADDR={0x8, 0x19, @remote}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x2}]}, 0x62}}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
read$FUSE(r1, &(0x7f00000023c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_LSEEK(r1, &(0x7f0000000080)={0x18, 0x0, r3, {0x1f}}, 0x18)

06:45:31 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x7a000000, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:31 executing program 4:
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38)
r0 = syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0x6}}, './file0/file0\x00'})
r2 = openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000180)={{0x1, 0x1, 0x18, r2}, './file0\x00'})

06:45:31 executing program 0:
ioctl$DRM_IOCTL_MODE_GETPROPERTY(0xffffffffffffffff, 0xc04064aa, &(0x7f0000000300)={&(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], 0x0, 0x0, '\x00', 0x9, 0x9})
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="8f0f5dd707000000003d", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x14, 0x3, 0x2, 0x3, 0x0, 0x0, {0x7, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x40) (async)
sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x14, 0x3, 0x2, 0x3, 0x0, 0x0, {0x7, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x40)

06:45:31 executing program 4:
prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) (async)
r0 = syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100), 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0x6}}, './file0/file0\x00'}) (async)
r2 = openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000180)={{0x1, 0x1, 0x18, r2}, './file0\x00'})

06:45:31 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0)
sendmsg$nl_netfilter(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x84, 0x8, 0x8, 0x801, 0x70bd27, 0x25dfdbfd, {0x3, 0x0, 0x8}, [@generic="80c897a9fd59f092834663796b0e3905e3ee5147eaee7edd57e20652138371b56991f8e656a73f0fa01e8dc859995fa95511febcf71d5fb9dd3c624fc1b16975157bc78badc5cb2185fc9378603e6957e8405f12afe19d223624ddd2c66ee5b025e190df7ab38ff354c08661e4"]}, 0x84}, 0x1, 0x0, 0x0, 0x48080}, 0x4008080)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000002000)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0xc00082}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x2c, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}]}, 0x2c}}, 0x0) (async)
sendmsg$nl_netfilter(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x84, 0x8, 0x8, 0x801, 0x70bd27, 0x25dfdbfd, {0x3, 0x0, 0x8}, [@generic="80c897a9fd59f092834663796b0e3905e3ee5147eaee7edd57e20652138371b56991f8e656a73f0fa01e8dc859995fa95511febcf71d5fb9dd3c624fc1b16975157bc78badc5cb2185fc9378603e6957e8405f12afe19d223624ddd2c66ee5b025e190df7ab38ff354c08661e4"]}, 0x84}, 0x1, 0x0, 0x0, 0x48080}, 0x4008080) (async)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) (async)
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x0, &(0x7f0000002340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}}, 0x0, 0x0, 0x0) (async)

06:45:31 executing program 2:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0xfffffdf9, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

06:45:31 executing program 0:
ioctl$DRM_IOCTL_MODE_GETPROPERTY(0xffffffffffffffff, 0xc04064aa, &(0x7f0000000300)={&(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], 0x0, 0x0, '\x00', 0x9, 0x9})
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20a0000, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="8f0f5dd707000000003d", @ANYRESDEC=0x0, @ANYBLOB=',\x00'], 0x0, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x14, 0x3, 0x2, 0x3, 0x0, 0x0, {0x7, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x40)

[ 2168.428085][T20940] fuse: Bad value for 'fd'
06:45:31 executing program 5:
syz_mount_image$fuse(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x8cffffff, &(0x7f0000002340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESDEC=0x0], 0x0, 0x0, 0x0)

[ 2168.484648][T20939] ==================================================================
[ 2168.492765][T20939] BUG: KASAN: slab-use-after-free in fuse_test_super+0x8c/0xa0
[ 2168.500355][T20939] Read of size 8 at addr ffff888077b03580 by task syz-executor.1/20939
[ 2168.508616][T20939] 
[ 2168.510949][T20939] CPU: 0 PID: 20939 Comm: syz-executor.1 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2168.520859][T20939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2168.530930][T20939] Call Trace:
[ 2168.534219][T20939]  <TASK>
[ 2168.537163][T20939]  dump_stack_lvl+0xd9/0x1b0
[ 2168.541785][T20939]  print_report+0xc4/0x620
[ 2168.546226][T20939]  ? __virt_addr_valid+0x5e/0x2d0
[ 2168.551270][T20939]  ? __phys_addr+0xc6/0x140
[ 2168.555795][T20939]  kasan_report+0xda/0x110
[ 2168.560243][T20939]  ? fuse_test_super+0x8c/0xa0
[ 2168.565029][T20939]  ? fuse_test_super+0x8c/0xa0
[ 2168.569811][T20939]  ? fuse_set_no_super+0x10/0x10
[ 2168.574756][T20939]  fuse_test_super+0x8c/0xa0
[ 2168.579335][T20939]  sget_fc+0x582/0x9b0
[ 2168.583414][T20939]  ? fuse_init_fs_context_submount+0x40/0x40
[ 2168.589387][T20939]  fuse_get_tree+0x39a/0x640
[ 2168.593978][T20939]  vfs_get_tree+0x8c/0x370
[ 2168.598386][T20939]  path_mount+0x1492/0x1ed0
[ 2168.602889][T20939]  ? kmem_cache_free+0xf0/0x480
[ 2168.607825][T20939]  ? finish_automount+0xa50/0xa50
[ 2168.612846][T20939]  ? putname+0x101/0x140
[ 2168.617084][T20939]  __x64_sys_mount+0x293/0x310
[ 2168.621843][T20939]  ? copy_mnt_ns+0xb60/0xb60
[ 2168.626460][T20939]  ? rcu_is_watching+0x12/0xb0
[ 2168.631215][T20939]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2168.637184][T20939]  do_syscall_64+0x38/0xb0
[ 2168.641599][T20939]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2168.647492][T20939] RIP: 0033:0x7fb724e7e1ea
[ 2168.651902][T20939] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2168.671589][T20939] RSP: 002b:00007fb725c3aee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2168.679989][T20939] RAX: ffffffffffffffda RBX: 00007fb725c3af80 RCX: 00007fb724e7e1ea
[ 2168.687974][T20939] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2168.695933][T20939] RBP: 00000000200022c0 R08: 00007fb725c3af80 R09: 0000000000000000
[ 2168.703890][T20939] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2168.711847][T20939] R13: 00007fb725c3af40 R14: 0000000000000000 R15: 0000000020002340
[ 2168.719816][T20939]  </TASK>
[ 2168.722824][T20939] 
[ 2168.725127][T20939] Allocated by task 20935:
[ 2168.729522][T20939]  kasan_save_stack+0x33/0x50
[ 2168.734225][T20939]  kasan_set_track+0x25/0x30
[ 2168.738811][T20939]  __kasan_kmalloc+0xa2/0xb0
[ 2168.743392][T20939]  fuse_get_tree+0xbe/0x640
[ 2168.747880][T20939]  vfs_get_tree+0x8c/0x370
[ 2168.752284][T20939]  path_mount+0x1492/0x1ed0
[ 2168.756776][T20939]  __x64_sys_mount+0x293/0x310
[ 2168.761543][T20939]  do_syscall_64+0x38/0xb0
[ 2168.765966][T20939]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2168.771872][T20939] 
[ 2168.774267][T20939] Freed by task 20935:
[ 2168.778334][T20939]  kasan_save_stack+0x33/0x50
[ 2168.783012][T20939]  kasan_set_track+0x25/0x30
[ 2168.787592][T20939]  kasan_save_free_info+0x2b/0x40
[ 2168.792690][T20939]  ____kasan_slab_free+0x15b/0x1b0
[ 2168.797816][T20939]  slab_free_freelist_hook+0x114/0x1e0
[ 2168.803275][T20939]  __kmem_cache_free+0xb8/0x2f0
[ 2168.808113][T20939]  deactivate_locked_super+0xa0/0x2d0
[ 2168.813473][T20939]  deactivate_super+0xde/0x100
[ 2168.818244][T20939]  cleanup_mnt+0x222/0x3d0
[ 2168.822648][T20939]  task_work_run+0x14d/0x240
[ 2168.827227][T20939]  exit_to_user_mode_prepare+0x210/0x240
[ 2168.832874][T20939]  syscall_exit_to_user_mode+0x1d/0x60
[ 2168.838367][T20939]  do_syscall_64+0x44/0xb0
[ 2168.842777][T20939]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2168.848668][T20939] 
[ 2168.850982][T20939] The buggy address belongs to the object at ffff888077b03580
[ 2168.850982][T20939]  which belongs to the cache kmalloc-32 of size 32
[ 2168.864845][T20939] The buggy address is located 0 bytes inside of
[ 2168.864845][T20939]  freed 32-byte region [ffff888077b03580, ffff888077b035a0)
[ 2168.878461][T20939] 
[ 2168.881033][T20939] The buggy address belongs to the physical page:
[ 2168.887524][T20939] page:ffffea0001dec0c0 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888077b03cc0 pfn:0x77b03
[ 2168.898966][T20939] flags: 0xfff00000000800(slab|node=0|zone=1|lastcpupid=0x7ff)
[ 2168.906501][T20939] page_type: 0xffffffff()
[ 2168.910815][T20939] raw: 00fff00000000800 ffff888012c41500 ffffea0001de6d10 ffffea00007523d0
[ 2168.919389][T20939] raw: ffff888077b03cc0 000000000040003c 00000001ffffffff 0000000000000000
[ 2168.927960][T20939] page dumped because: kasan: bad access detected
[ 2168.934353][T20939] page_owner tracks the page as allocated
[ 2168.940048][T20939] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x112c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_HARDWALL), pid 5110, tgid 5110 (udevd), ts 204894016624, free_ts 204407393166
[ 2168.959139][T20939]  post_alloc_hook+0x2cf/0x340
[ 2168.963912][T20939]  get_page_from_freelist+0xf17/0x2e50
[ 2168.969359][T20939]  __alloc_pages+0x1d0/0x4a0
[ 2168.973942][T20939]  alloc_pages+0x1a9/0x270
[ 2168.978372][T20939]  allocate_slab+0x251/0x380
[ 2168.982955][T20939]  ___slab_alloc+0x8be/0x1570
[ 2168.987708][T20939]  __slab_alloc.constprop.0+0x56/0xa0
[ 2168.993069][T20939]  __kmem_cache_alloc_node+0x137/0x350
[ 2168.998519][T20939]  __kmalloc+0x4f/0x100
[ 2169.002658][T20939]  tomoyo_encode2+0x100/0x3d0
[ 2169.007328][T20939]  tomoyo_encode+0x29/0x50
[ 2169.011732][T20939]  tomoyo_realpath_from_path+0x196/0x710
[ 2169.017377][T20939]  tomoyo_path_perm+0x271/0x450
[ 2169.022219][T20939]  tomoyo_path_unlink+0x92/0xd0
[ 2169.027063][T20939]  security_path_unlink+0xf9/0x160
[ 2169.032161][T20939]  do_unlinkat+0x375/0x6d0
[ 2169.036569][T20939] page last free stack trace:
[ 2169.041222][T20939]  free_unref_page_prepare+0x476/0xa40
[ 2169.046672][T20939]  free_unref_page_list+0xe6/0xb30
[ 2169.051767][T20939]  release_pages+0x32a/0x14e0
[ 2169.056435][T20939]  tlb_batch_pages_flush+0x9a/0x190
[ 2169.061628][T20939]  tlb_finish_mmu+0x14b/0x6f0
[ 2169.066294][T20939]  exit_mmap+0x38b/0xa60
[ 2169.070525][T20939]  __mmput+0x12a/0x4d0
[ 2169.074592][T20939]  mmput+0x62/0x70
[ 2169.078302][T20939]  do_exit+0x9b4/0x2a20
[ 2169.082451][T20939]  do_group_exit+0xd4/0x2a0
[ 2169.087056][T20939]  __x64_sys_exit_group+0x3e/0x50
[ 2169.092076][T20939]  do_syscall_64+0x38/0xb0
[ 2169.096493][T20939]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2169.102400][T20939] 
[ 2169.104705][T20939] Memory state around the buggy address:
[ 2169.110316][T20939]  ffff888077b03480: 00 00 00 00 fc fc fc fc 00 00 00 00 fc fc fc fc
[ 2169.118361][T20939]  ffff888077b03500: fa fb fb fb fc fc fc fc 00 00 00 00 fc fc fc fc
[ 2169.126495][T20939] >ffff888077b03580: fa fb fb fb fc fc fc fc fa fb fb fb fc fc fc fc
[ 2169.134557][T20939]                    ^
[ 2169.138614][T20939]  ffff888077b03600: 00 00 00 00 fc fc fc fc 00 00 00 00 fc fc fc fc
[ 2169.146665][T20939]  ffff888077b03680: fa fb fb fb fc fc fc fc 00 00 00 00 fc fc fc fc
[ 2169.154724][T20939] ==================================================================
[ 2169.163825][T20939] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 2169.171046][T20939] CPU: 0 PID: 20939 Comm: syz-executor.1 Not tainted 6.5.0-rc7-next-20230825-syzkaller #0
[ 2169.180925][T20939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 2169.190968][T20939] Call Trace:
[ 2169.194237][T20939]  <TASK>
[ 2169.197160][T20939]  dump_stack_lvl+0xd9/0x1b0
[ 2169.201770][T20939]  panic+0x6a6/0x750
[ 2169.205668][T20939]  ? panic_smp_self_stop+0xa0/0xa0
[ 2169.210777][T20939]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2169.216755][T20939]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 2169.222902][T20939]  check_panic_on_warn+0xab/0xb0
[ 2169.227877][T20939]  end_report+0x108/0x150
[ 2169.232196][T20939]  kasan_report+0xea/0x110
[ 2169.236600][T20939]  ? fuse_test_super+0x8c/0xa0
[ 2169.241351][T20939]  ? fuse_test_super+0x8c/0xa0
[ 2169.246101][T20939]  ? fuse_set_no_super+0x10/0x10
[ 2169.251026][T20939]  fuse_test_super+0x8c/0xa0
[ 2169.255601][T20939]  sget_fc+0x582/0x9b0
[ 2169.259668][T20939]  ? fuse_init_fs_context_submount+0x40/0x40
[ 2169.265643][T20939]  fuse_get_tree+0x39a/0x640
[ 2169.270225][T20939]  vfs_get_tree+0x8c/0x370
[ 2169.274631][T20939]  path_mount+0x1492/0x1ed0
[ 2169.279137][T20939]  ? kmem_cache_free+0xf0/0x480
[ 2169.283998][T20939]  ? finish_automount+0xa50/0xa50
[ 2169.289022][T20939]  ? putname+0x101/0x140
[ 2169.293267][T20939]  __x64_sys_mount+0x293/0x310
[ 2169.298027][T20939]  ? copy_mnt_ns+0xb60/0xb60
[ 2169.302612][T20939]  ? rcu_is_watching+0x12/0xb0
[ 2169.307361][T20939]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 2169.313333][T20939]  do_syscall_64+0x38/0xb0
[ 2169.317763][T20939]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 2169.323683][T20939] RIP: 0033:0x7fb724e7e1ea
[ 2169.328106][T20939] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2169.347707][T20939] RSP: 002b:00007fb725c3aee8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2169.356108][T20939] RAX: ffffffffffffffda RBX: 00007fb725c3af80 RCX: 00007fb724e7e1ea
[ 2169.364084][T20939] RDX: 00000000200022c0 RSI: 0000000020002300 RDI: 0000000000000000
[ 2169.372137][T20939] RBP: 00000000200022c0 R08: 00007fb725c3af80 R09: 0000000000000000
[ 2169.380200][T20939] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020002300
[ 2169.388188][T20939] R13: 00007fb725c3af40 R14: 0000000000000000 R15: 0000000020002340
[ 2169.396167][T20939]  </TASK>
[ 2169.399426][T20939] Kernel Offset: disabled
[ 2169.403746][T20939] Rebooting in 86400 seconds..