program:
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4800, 0x0, 0x3, 0x0, &(0x7f0000000080))
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000180)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}, {@nfs_export_on}], [], 0x2c})
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000040)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@nfs_export_on}]})
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000200)='./bus\x00', 0x100000, &(0x7f0000000200)=ANY=[], 0x1, 0x0, 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='system.posix_acl_default\x00', &(0x7f0000000000)=ANY=[@ANYBLOB="02000000010000000000f400040000000000000020"], 0x1c, 0x0)
mkdir(&(0x7f00000002c0)='./file1/file1\x00', 0x0) (fail_nth: 17)

[   68.842265][ T4679] Bluetooth: hci0: command tx timeout
[   68.928931][ T5333] FAULT_INJECTION: forcing a failure.
[   68.928931][ T5333] name failslab, interval 1, probability 0, space 0, times 1
[   68.934524][ T5333] CPU: 0 UID: 0 PID: 5333 Comm: syz.0.0 Not tainted 6.12.0-syzkaller-09073-g9f16d5e6f220 #0
[   68.937710][ T5333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.941186][ T5333] Call Trace:
[   68.942299][ T5333]  <TASK>
[   68.943244][ T5333]  dump_stack_lvl+0x241/0x360
[   68.944934][ T5333]  ? __pfx_dump_stack_lvl+0x10/0x10
[   68.946740][ T5333]  ? __pfx__printk+0x10/0x10
[   68.948415][ T5333]  ? __kmalloc_cache_noprof+0x44/0x2c0
[   68.950533][ T5333]  ? __pfx___might_resched+0x10/0x10
[   68.952405][ T5333]  should_fail_ex+0x3b0/0x4e0
[   68.954071][ T5333]  should_failslab+0xac/0x100
[   68.955858][ T5333]  ? ovl_encode_real_fh+0xdf/0x410
[   68.957798][ T5333]  __kmalloc_cache_noprof+0x6c/0x2c0
[   68.959687][ T5333]  ? dput+0x37/0x2b0
[   68.961079][ T5333]  ovl_encode_real_fh+0xdf/0x410
[   68.962916][ T5333]  ? __pfx_ovl_encode_real_fh+0x10/0x10
[   68.964764][ T5333]  ? _raw_spin_unlock+0x28/0x50
[   68.966565][ T5333]  ovl_encode_fh+0x388/0xc20
[   68.968190][ T5333]  exportfs_encode_fh+0x1bd/0x3e0
[   68.969972][ T5333]  ovl_encode_real_fh+0x129/0x410
[   68.971874][ T5333]  ? __pfx_ovl_encode_real_fh+0x10/0x10
[   68.974055][ T5333]  ovl_lookup_index+0x71/0x6e0
[   68.975890][ T5333]  ? __kmalloc_noprof+0x21a/0x400
[   68.977753][ T5333]  ovl_lookup+0x1d6b/0x2a60
[   68.979509][ T5333]  ? __pfx_ovl_lookup+0x10/0x10
[   68.981278][ T5333]  ? __pfx_lock_acquire+0x10/0x10
[   68.983059][ T5333]  ? d_alloc+0x142/0x190
[   68.984564][ T5333]  ? do_raw_spin_unlock+0x58/0x8b0
[   68.986386][ T5333]  ? _raw_spin_unlock+0x28/0x50
[   68.988043][ T5333]  ? d_alloc+0x142/0x190
[   68.989532][ T5333]  lookup_one_qstr_excl+0x11f/0x260
[   68.991335][ T5333]  filename_create+0x297/0x540
[   68.992989][ T5333]  ? __pfx_filename_create+0x10/0x10
[   68.994661][ T5333]  ? __might_fault+0xaa/0x120
[   68.996469][ T5333]  ? __pfx_lock_release+0x10/0x10
[   68.998411][ T5333]  do_mkdirat+0xbd/0x3a0
[   68.999994][ T5333]  ? __phys_addr_symbol+0x2f/0x70
[   69.001846][ T5333]  ? __check_object_size+0x48e/0x900
[   69.003672][ T5333]  ? __pfx_do_mkdirat+0x10/0x10
[   69.005380][ T5333]  ? strncpy_from_user+0x152/0x270
[   69.007370][ T5333]  ? getname_flags+0x1e3/0x540
[   69.008997][ T5333]  __x64_sys_mkdir+0x6c/0x80
[   69.010763][ T5333]  do_syscall_64+0xf3/0x230
[   69.012494][ T5333]  ? clear_bhb_loop+0x35/0x90
[   69.014262][ T5333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.016308][ T5333] RIP: 0033:0x7fdc4137e819
[   69.017945][ T5333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.025260][ T5333] RSP: 002b:00007fdc421ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[   69.028533][ T5333] RAX: ffffffffffffffda RBX: 00007fdc41535fa0 RCX: 00007fdc4137e819
[   69.031627][ T5333] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200002c0
[   69.034722][ T5333] RBP: 00007fdc421ca090 R08: 0000000000000000 R09: 0000000000000000
[   69.037818][ T5333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   69.040866][ T5333] R13: 0000000000000000 R14: 00007fdc41535fa0 R15: 00007ffe2133b1d8
[   69.043971][ T5333]  </TASK>
[   69.053321][ T5333] ------------[ cut here ]------------
[   69.055581][ T5333] WARNING: CPU: 0 PID: 5333 at fs/overlayfs/copy_up.c:447 ovl_encode_real_fh+0x2e2/0x410
[   69.059436][ T5333] Modules linked in:
[   69.060984][ T5333] CPU: 0 UID: 0 PID: 5333 Comm: syz.0.0 Not tainted 6.12.0-syzkaller-09073-g9f16d5e6f220 #0
[   69.065024][ T5333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   69.068940][ T5333] RIP: 0010:ovl_encode_real_fh+0x2e2/0x410
[   69.071298][ T5333] Code: 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc e8 45 ce 80 fe 90 0f 0b 90 eb 14 e8 3a ce 80 fe 90 0f 0b 90 eb 09 e8 2f ce 80 fe 90 <0f> 0b 90 4c 89 ff e8 93 71 df fe 49 c7 c7 fb ff ff ff eb 8b 89 d1
[   69.078787][ T5333] RSP: 0018:ffffc9000d4d7840 EFLAGS: 00010293
[   69.081130][ T5333] RAX: ffffffff831511e1 RBX: 1ffff92001a9af10 RCX: ffff88801ee92440
[   69.084322][ T5333] RDX: 0000000000000000 RSI: 00000000000000ff RDI: 00000000000000ff
[   69.087391][ T5333] RBP: ffffc9000d4d78f0 R08: ffffffff8315107c R09: 1ffffffff203a9fe
[   69.090418][ T5333] R10: dffffc0000000000 R11: fffffbfff203a9ff R12: 00000000000000ff
[   69.093646][ T5333] R13: 0000000000000080 R14: 1ffff92001a9af0c R15: ffff88801eff8e00
[   69.097315][ T5333] FS:  00007fdc421ca6c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000
[   69.102215][ T5333] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   69.105195][ T5333] CR2: 00007fdc4206d9b8 CR3: 0000000043e38000 CR4: 0000000000352ef0
[   69.108634][ T5333] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   69.111783][ T5333] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   69.115698][ T5333] Call Trace:
[   69.117001][ T5333]  <TASK>
[   69.118167][ T5333]  ? __warn+0x168/0x4e0
[   69.119768][ T5333]  ? ovl_encode_real_fh+0x2e2/0x410
[   69.121769][ T5333]  ? report_bug+0x2b3/0x500
[   69.123542][ T5333]  ? ovl_encode_real_fh+0x2e2/0x410
[   69.125481][ T5333]  ? handle_bug+0x60/0x90
[   69.127162][ T5333]  ? exc_invalid_op+0x1a/0x50
[   69.128970][ T5333]  ? asm_exc_invalid_op+0x1a/0x20
[   69.130867][ T5333]  ? ovl_encode_real_fh+0x17c/0x410
[   69.132993][ T5333]  ? ovl_encode_real_fh+0x2e1/0x410
[   69.134991][ T5333]  ? ovl_encode_real_fh+0x2e2/0x410
[   69.136915][ T5333]  ? __pfx_ovl_encode_real_fh+0x10/0x10
[   69.139071][ T5333]  ovl_lookup_index+0x71/0x6e0
[   69.140825][ T5333]  ? __kmalloc_noprof+0x21a/0x400
[   69.142910][ T5333]  ovl_lookup+0x1d6b/0x2a60
[   69.144684][ T5333]  ? __pfx_ovl_lookup+0x10/0x10
[   69.146626][ T5333]  ? __pfx_lock_acquire+0x10/0x10
[   69.148564][ T5333]  ? d_alloc+0x142/0x190
[   69.150210][ T5333]  ? do_raw_spin_unlock+0x58/0x8b0
[   69.152396][ T5333]  ? _raw_spin_unlock+0x28/0x50
[   69.154280][ T5333]  ? d_alloc+0x142/0x190
[   69.155900][ T5333]  lookup_one_qstr_excl+0x11f/0x260
[   69.157903][ T5333]  filename_create+0x297/0x540
[   69.159744][ T5333]  ? __pfx_filename_create+0x10/0x10
[   69.161912][ T5333]  ? __might_fault+0xaa/0x120
[   69.164027][ T5333]  ? __pfx_lock_release+0x10/0x10
[   69.166016][ T5333]  do_mkdirat+0xbd/0x3a0
[   69.167635][ T5333]  ? __phys_addr_symbol+0x2f/0x70
[   69.169287][ T5333]  ? __check_object_size+0x48e/0x900
[   69.171280][ T5333]  ? __pfx_do_mkdirat+0x10/0x10
[   69.173165][ T5333]  ? strncpy_from_user+0x152/0x270
[   69.175043][ T5333]  ? getname_flags+0x1e3/0x540
[   69.176869][ T5333]  __x64_sys_mkdir+0x6c/0x80
[   69.178698][ T5333]  do_syscall_64+0xf3/0x230
[   69.180418][ T5333]  ? clear_bhb_loop+0x35/0x90
[   69.182371][ T5333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.184689][ T5333] RIP: 0033:0x7fdc4137e819
[   69.186459][ T5333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.193669][ T5333] RSP: 002b:00007fdc421ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[   69.196862][ T5333] RAX: ffffffffffffffda RBX: 00007fdc41535fa0 RCX: 00007fdc4137e819
[   69.199870][ T5333] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200002c0
[   69.203018][ T5333] RBP: 00007fdc421ca090 R08: 0000000000000000 R09: 0000000000000000
[   69.206027][ T5333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   69.208742][ T5333] R13: 0000000000000000 R14: 00007fdc41535fa0 R15: 00007ffe2133b1d8
[   69.211747][ T5333]  </TASK>
[   69.213216][ T5333] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   69.215787][ T5333] CPU: 0 UID: 0 PID: 5333 Comm: syz.0.0 Not tainted 6.12.0-syzkaller-09073-g9f16d5e6f220 #0
[   69.219219][ T5333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   69.222934][ T5333] Call Trace:
[   69.223932][ T5333]  <TASK>
[   69.224815][ T5333]  dump_stack_lvl+0x241/0x360
[   69.226464][ T5333]  ? __pfx_dump_stack_lvl+0x10/0x10
[   69.228262][ T5333]  ? __pfx__printk+0x10/0x10
[   69.230086][ T5333]  ? vscnprintf+0x5d/0x90
[   69.231798][ T5333]  panic+0x349/0x880
[   69.233362][ T5333]  ? __warn+0x177/0x4e0
[   69.234986][ T5333]  ? __pfx_panic+0x10/0x10
[   69.236680][ T5333]  __warn+0x34b/0x4e0
[   69.238189][ T5333]  ? ovl_encode_real_fh+0x2e2/0x410
[   69.239977][ T5333]  report_bug+0x2b3/0x500
[   69.241429][ T5333]  ? ovl_encode_real_fh+0x2e2/0x410
[   69.243327][ T5333]  handle_bug+0x60/0x90
[   69.244828][ T5333]  exc_invalid_op+0x1a/0x50
[   69.246222][ T5333]  asm_exc_invalid_op+0x1a/0x20
[   69.247663][ T5333] RIP: 0010:ovl_encode_real_fh+0x2e2/0x410
[   69.249555][ T5333] Code: 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc e8 45 ce 80 fe 90 0f 0b 90 eb 14 e8 3a ce 80 fe 90 0f 0b 90 eb 09 e8 2f ce 80 fe 90 <0f> 0b 90 4c 89 ff e8 93 71 df fe 49 c7 c7 fb ff ff ff eb 8b 89 d1
[   69.256989][ T5333] RSP: 0018:ffffc9000d4d7840 EFLAGS: 00010293
[   69.259377][ T5333] RAX: ffffffff831511e1 RBX: 1ffff92001a9af10 RCX: ffff88801ee92440
[   69.262396][ T5333] RDX: 0000000000000000 RSI: 00000000000000ff RDI: 00000000000000ff
[   69.265249][ T5333] RBP: ffffc9000d4d78f0 R08: ffffffff8315107c R09: 1ffffffff203a9fe
[   69.268343][ T5333] R10: dffffc0000000000 R11: fffffbfff203a9ff R12: 00000000000000ff
[   69.271228][ T5333] R13: 0000000000000080 R14: 1ffff92001a9af0c R15: ffff88801eff8e00
[   69.274210][ T5333]  ? ovl_encode_real_fh+0x17c/0x410
[   69.276201][ T5333]  ? ovl_encode_real_fh+0x2e1/0x410
[   69.278223][ T5333]  ? __pfx_ovl_encode_real_fh+0x10/0x10
[   69.280373][ T5333]  ovl_lookup_index+0x71/0x6e0
[   69.282249][ T5333]  ? __kmalloc_noprof+0x21a/0x400
[   69.284191][ T5333]  ovl_lookup+0x1d6b/0x2a60
[   69.285930][ T5333]  ? __pfx_ovl_lookup+0x10/0x10
[   69.287642][ T5333]  ? __pfx_lock_acquire+0x10/0x10
[   69.289150][ T5333]  ? d_alloc+0x142/0x190
[   69.290588][ T5333]  ? do_raw_spin_unlock+0x58/0x8b0
[   69.292423][ T5333]  ? _raw_spin_unlock+0x28/0x50
[   69.294211][ T5333]  ? d_alloc+0x142/0x190
[   69.295854][ T5333]  lookup_one_qstr_excl+0x11f/0x260
[   69.297926][ T5333]  filename_create+0x297/0x540
[   69.299804][ T5333]  ? __pfx_filename_create+0x10/0x10
[   69.301873][ T5333]  ? __might_fault+0xaa/0x120
[   69.303714][ T5333]  ? __pfx_lock_release+0x10/0x10
[   69.305759][ T5333]  do_mkdirat+0xbd/0x3a0
[   69.307433][ T5333]  ? __phys_addr_symbol+0x2f/0x70
[   69.309395][ T5333]  ? __check_object_size+0x48e/0x900
[   69.311440][ T5333]  ? __pfx_do_mkdirat+0x10/0x10
[   69.313200][ T5333]  ? strncpy_from_user+0x152/0x270
[   69.315159][ T5333]  ? getname_flags+0x1e3/0x540
[   69.316941][ T5333]  __x64_sys_mkdir+0x6c/0x80
[   69.318718][ T5333]  do_syscall_64+0xf3/0x230
[   69.320468][ T5333]  ? clear_bhb_loop+0x35/0x90
[   69.322260][ T5333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.324510][ T5333] RIP: 0033:0x7fdc4137e819
[   69.326133][ T5333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.332578][ T5333] RSP: 002b:00007fdc421ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[   69.335522][ T5333] RAX: ffffffffffffffda RBX: 00007fdc41535fa0 RCX: 00007fdc4137e819
[   69.338241][ T5333] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200002c0
[   69.341120][ T5333] RBP: 00007fdc421ca090 R08: 0000000000000000 R09: 0000000000000000
[   69.344135][ T5333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   69.346936][ T5333] R13: 0000000000000000 R14: 00007fdc41535fa0 R15: 00007ffe2133b1d8
[   69.349620][ T5333]  </TASK>
[   69.351049][ T5333] Kernel Offset: disabled
[   69.352694][ T5333] Rebooting in 86400 seconds..