program:
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x1000000, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r0, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x64)
linkat(r0, &(0x7f0000000100)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0x0)
unlink(&(0x7f0000000280)='./file1\x00')
lseek(r1, 0x10000, 0x0) (fail_nth: 6)
[ 73.443411][ T4534] Bluetooth: hci0: command tx timeout
[ 74.352043][ T5108] FAULT_INJECTION: forcing a failure.
[ 74.352043][ T5108] name failslab, interval 1, probability 0, space 0, times 1
[ 74.363885][ T5108] CPU: 0 UID: 0 PID: 5108 Comm: syz.0.0 Not tainted 6.11.0-syzkaller-10669-g11a299a7933e #0
[ 74.367821][ T5108] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 74.371816][ T5108] Call Trace:
[ 74.373006][ T5108]
[ 74.374197][ T5108] dump_stack_lvl+0x241/0x360
[ 74.376021][ T5108] ? __pfx_dump_stack_lvl+0x10/0x10
[ 74.377998][ T5108] ? __pfx__printk+0x10/0x10
[ 74.379754][ T5108] ? kmem_cache_alloc_noprof+0x44/0x2a0
[ 74.381819][ T5108] ? __pfx___might_resched+0x10/0x10
[ 74.383837][ T5108] should_fail_ex+0x3b0/0x4e0
[ 74.385759][ T5108] ? security_file_alloc+0x32/0x310
[ 74.387737][ T5108] should_failslab+0xac/0x100
[ 74.389605][ T5108] ? security_file_alloc+0x32/0x310
[ 74.391637][ T5108] kmem_cache_alloc_noprof+0x6c/0x2a0
[ 74.393678][ T5108] security_file_alloc+0x32/0x310
[ 74.395529][ T5108] init_file+0x93/0x1e0
[ 74.397087][ T5108] alloc_empty_backing_file+0x67/0xe0
[ 74.399172][ T5108] backing_file_open+0x24/0xa0
[ 74.401134][ T5108] ovl_open_realfile+0x1ee/0x350
[ 74.403225][ T5108] ovl_real_fdget_meta+0x339/0x3b0
[ 74.405200][ T5108] ? __pfx_ovl_real_fdget_meta+0x10/0x10
[ 74.407222][ T5108] ? fdget_pos+0x24e/0x320
[ 74.408923][ T5108] ovl_llseek+0x1e7/0x3f0
[ 74.410488][ T5108] ? __fget_files+0x29/0x470
[ 74.411999][ T5108] ? __pfx_ovl_llseek+0x10/0x10
[ 74.413707][ T5108] ? fdget_pos+0x24e/0x320
[ 74.415200][ T5108] __x64_sys_lseek+0x150/0x1e0
[ 74.416811][ T5108] do_syscall_64+0xf3/0x230
[ 74.418385][ T5108] ? clear_bhb_loop+0x35/0x90
[ 74.420122][ T5108] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 74.422411][ T5108] RIP: 0033:0x7f1c0977df39
[ 74.424107][ T5108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 74.431706][ T5108] RSP: 002b:00007f1c0a5e0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000008
[ 74.434575][ T5108] RAX: ffffffffffffffda RBX: 00007f1c09935f80 RCX: 00007f1c0977df39
[ 74.437303][ T5108] RDX: 0000000000000000 RSI: 0000000000010000 RDI: 0000000000000004
[ 74.439935][ T5108] RBP: 00007f1c0a5e0090 R08: 0000000000000000 R09: 0000000000000000
[ 74.442697][ T5108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 74.445557][ T5108] R13: 0000000000000000 R14: 00007f1c09935f80 R15: 00007ffe33846ec8
[ 74.448479][ T5108]
[ 74.565030][ T5108] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000022: 0000 [#1] PREEMPT SMP KASAN NOPTI
[ 74.569881][ T5108] KASAN: null-ptr-deref in range [0x0000000000000110-0x0000000000000117]
[ 74.572910][ T5108] CPU: 0 UID: 0 PID: 5108 Comm: syz.0.0 Not tainted 6.11.0-syzkaller-10669-g11a299a7933e #0
[ 74.576583][ T5108] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 74.580545][ T5108] RIP: 0010:ovl_llseek+0x2a4/0x3f0
[ 74.582492][ T5108] Code: 8d 7c 24 60 e8 ad db e0 fe 48 8b 44 24 60 48 89 44 24 30 48 83 e0 fc 48 89 44 24 20 4c 8d b0 20 01 00 00 4d 89 f7 49 c1 ef 03 <43> 80 3c 27 00 74 08 4c 89 f7 e8 6d dc e0 fe 49 89 1e 48 8b 1c 24
[ 74.589446][ T5108] RSP: 0018:ffffc9000306fe00 EFLAGS: 00010207
[ 74.591522][ T5108] RAX: fffffffffffffff4 RBX: 0000000000000000 RCX: 0000000000000001
[ 74.594246][ T5108] RDX: 0000000000000000 RSI: ffffffff8c610080 RDI: 0000000000000001
[ 74.596889][ T5108] RBP: ffffc9000306fec8 R08: ffffffff901ce56f R09: 1ffffffff2039cad
[ 74.599589][ T5108] R10: dffffc0000000000 R11: fffffbfff2039cae R12: dffffc0000000000
[ 74.602229][ T5108] R13: 1ffff11003ec9a94 R14: 0000000000000114 R15: 0000000000000022
[ 74.605063][ T5108] FS: 00007f1c0a5e06c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000
[ 74.608351][ T5108] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 74.610792][ T5108] CR2: 00007f1c0990b538 CR3: 000000003fec0000 CR4: 0000000000350ef0
[ 74.613867][ T5108] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 74.616940][ T5108] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 74.619974][ T5108] Call Trace:
[ 74.621315][ T5108]
[ 74.622417][ T5108] ? __die_body+0x5f/0xb0
[ 74.624044][ T5108] ? die_addr+0xb0/0xe0
[ 74.625647][ T5108] ? exc_general_protection+0x3dd/0x5d0
[ 74.627696][ T5108] ? asm_exc_general_protection+0x26/0x30
[ 74.629951][ T5108] ? ovl_llseek+0x2a4/0x3f0
[ 74.631696][ T5108] ? __pfx_ovl_llseek+0x10/0x10
[ 74.633533][ T5108] ? fdget_pos+0x24e/0x320
[ 74.635247][ T5108] __x64_sys_lseek+0x150/0x1e0
[ 74.637035][ T5108] do_syscall_64+0xf3/0x230
[ 74.638718][ T5108] ? clear_bhb_loop+0x35/0x90
[ 74.640479][ T5108] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 74.642697][ T5108] RIP: 0033:0x7f1c0977df39
[ 74.644315][ T5108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 74.651503][ T5108] RSP: 002b:00007f1c0a5e0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000008
[ 74.654659][ T5108] RAX: ffffffffffffffda RBX: 00007f1c09935f80 RCX: 00007f1c0977df39
[ 74.657657][ T5108] RDX: 0000000000000000 RSI: 0000000000010000 RDI: 0000000000000004
[ 74.660239][ T5108] RBP: 00007f1c0a5e0090 R08: 0000000000000000 R09: 0000000000000000
[ 74.663137][ T5108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 74.665870][ T5108] R13: 0000000000000000 R14: 00007f1c09935f80 R15: 00007ffe33846ec8
[ 74.668698][ T5108]
[ 74.669850][ T5108] Modules linked in:
[ 74.671802][ T5108] ---[ end trace 0000000000000000 ]---
[ 74.801083][ T5108] RIP: 0010:ovl_llseek+0x2a4/0x3f0
[ 74.804602][ T5108] Code: 8d 7c 24 60 e8 ad db e0 fe 48 8b 44 24 60 48 89 44 24 30 48 83 e0 fc 48 89 44 24 20 4c 8d b0 20 01 00 00 4d 89 f7 49 c1 ef 03 <43> 80 3c 27 00 74 08 4c 89 f7 e8 6d dc e0 fe 49 89 1e 48 8b 1c 24
[ 74.817082][ T5108] RSP: 0018:ffffc9000306fe00 EFLAGS: 00010207
[ 74.821373][ T5108] RAX: fffffffffffffff4 RBX: 0000000000000000 RCX: 0000000000000001
[ 74.828466][ T5108] RDX: 0000000000000000 RSI: ffffffff8c610080 RDI: 0000000000000001
[ 74.835132][ T5108] RBP: ffffc9000306fec8 R08: ffffffff901ce56f R09: 1ffffffff2039cad
[ 74.841739][ T5108] R10: dffffc0000000000 R11: fffffbfff2039cae R12: dffffc0000000000
[ 74.848268][ T5108] R13: 1ffff11003ec9a94 R14: 0000000000000114 R15: 0000000000000022
[ 74.854372][ T5108] FS: 00007f1c0a5e06c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000
[ 74.861107][ T5108] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 74.867219][ T5108] CR2: 00005592b1a8a120 CR3: 000000003fec0000 CR4: 0000000000350ef0
[ 74.874761][ T5108] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 74.879878][ T5108] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 74.886126][ T5108] Kernel panic - not syncing: Fatal exception
[ 74.888721][ T5108] Kernel Offset: disabled
[ 74.890441][ T5108] Rebooting in 86400 seconds..