program:
syz_emit_ethernet(0x82, &(0x7f0000000140)={@broadcast, @random="1704b45adbde", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x74, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010101, @local}, @time_exceeded={0x5, 0x0, 0x0, 0xe0, 0x0, 0xe000, {0x16, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty=0xac1414aa, @rand_addr, {[@lsrr={0x83, 0x3}, @rr={0x7, 0x3}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x0, [{@private=0xa010102, 0x10000}, {@private}, {@local}, {@remote}, {@private}, {@dev}, {@private}]}]}}}}}}}, 0x0)
syz_mount_image$nilfs2(&(0x7f0000000000), &(0x7f0000000400)='./file0\x00', 0x90, &(0x7f0000003280)=ANY=[@ANYBLOB="0001def4774774366f0b8a20db13db64e85fc9322c3fe018b91ff1291b4f4c56de7e4543f49818e1307d98d09daa1e2a7dbf88003e9401dc73aad0b7dbb5685565c7825ba8340621faeae92abed19c524ab06c4303258d253722e159642af447aeb096c6a26d345d82f2925163331b0e9157441a9c61dd1051d3b970f9ac12f5975cf1ad4e45acef1a54921c492a77bcb1858b68758ed339608b8e43c733219f1f9e0b867840f821e03bc0e8a497c4d5dde436000090a397637dedb2f3"], 0x1, 0xdb0, &(0x7f00000006c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000280)={@val={0x6}, @void, @eth={@broadcast, @remote, @val={@val, {0x8100, 0x0, 0x0, 0x4}}, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x4, 0xc7, 0x66, 0x0, 0x2f, 0x84, 0x0, @loopback, @loopback}, "44d5c25cd4b517feda3ec4916af38eb472e6414886a96952984f369eb6b001389740878b783d85ef5659e45d0ca84b91eb89705f3852075b159b1c6c001d0afcfc4058d45796b5614ba857d1b4aeeb6fd22bfb72be0a40531de598d6030c197b9e82dc093ea417af9bfe9351dfd471b298149d0e960fa2c91599e6b653ff74456ea3a22b3278e430435d7600a5c5b82e26d3338ef7ca59faecd58beb9f21a10eaa606bd7439073f3e34ddfbc6ec639521202ea"}}}}}, 0xe1)
readahead(r0, 0x2, 0x8)
ioctl$NILFS_IOCTL_CLEAN_SEGMENTS(r0, 0x40786e88, &(0x7f0000000640)={{0x0, 0x0, 0x40, 0xc52a, 0x2}, {0x0, 0x0, 0x10, 0x4a10, 0xfffffffffffffff8}, {0x0, 0x0, 0x8, 0x6, 0x80002}, {&(0x7f00000004c0)=[{0x3fc, 0x6, 0xffffffffffffffff, 0x7f, 0xfffffff6}], 0x1, 0x28, 0x6, 0xffffffffffffff2d}, {&(0x7f00000003c0)=[0x9], 0x1, 0x8, 0x98f, 0xffff}})

[  155.159844][   T45] Bluetooth: hci0: command tx timeout
[  155.297037][ T5344] loop0: detected capacity change from 0 to 4096
[  155.319319][ T5344] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  155.323713][ T5344] NILFS (loop0): mounting unchecked fs
[  155.378779][ T5344] NILFS (loop0): recovery complete
[  155.392173][ T5346] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  155.398684][ T5325] udevd[5325]: incorrect nilfs2 checksum on /dev/loop0
[  155.421877][ T5344] syz.0.0 uses obsolete (PF_INET,SOCK_PACKET)
[  155.429361][ T5344] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000006: 0000 [#1] SMP KASAN NOPTI
[  155.434738][ T5344] KASAN: null-ptr-deref in range [0x0000000000000030-0x0000000000000037]
[  155.438787][ T5344] CPU: 0 UID: 0 PID: 5344 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[  155.443081][ T5344] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  155.447711][ T5344] RIP: 0010:nilfs_mdt_save_to_shadow_map+0x141/0x1c0
[  155.451126][ T5344] Code: 3f 4c 8d 63 d8 4c 89 e0 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 e7 e8 9e 6f 84 fe 4d 8b 24 24 49 83 c4 30 4c 89 e0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 e7 e8 80 6f 84 fe 49 8b 34 24 4c 89 ff
[  155.460246][ T5344] RSP: 0018:ffffc9000f0ff708 EFLAGS: 00010206
[  155.463643][ T5344] RAX: 0000000000000006 RBX: ffff888047b187a8 RCX: 0000000000000002
[  155.467541][ T5344] RDX: ffff888039f08000 RSI: 0000000000000000 RDI: 0000000000000000
[  155.471099][ T5344] RBP: 0000000000000000 R08: ffff888039f08000 R09: 0000000000000003
[  155.475090][ T5344] R10: 0000000000000406 R11: 0000000000000002 R12: 0000000000000030
[  155.479359][ T5344] R13: dffffc0000000000 R14: ffff88801fd03540 R15: ffff888047b17c48
[  155.483051][ T5344] FS:  00007f6ec0ffa6c0(0000) GS:ffff88808ca49000(0000) knlGS:0000000000000000
[  155.487644][ T5344] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  155.491632][ T5344] CR2: 00007ffe3f72dabc CR3: 000000003734d000 CR4: 0000000000352ef0
[  155.495259][ T5344] Call Trace:
[  155.496891][ T5344]  <TASK>
[  155.498313][ T5344]  nilfs_clean_segments+0x162/0xa50
[  155.500750][ T5344]  ? nilfs_ioctl_move_blocks+0x94b/0xda0
[  155.503306][ T5344]  ? __pfx_nilfs_clean_segments+0x10/0x10
[  155.506248][ T5344]  ? _copy_from_user+0x94/0xb0
[  155.509065][ T5344]  nilfs_ioctl+0x261f/0x2780
[  155.511867][ T5344]  ? __pfx_nilfs_ioctl+0x10/0x10
[  155.514389][ T5344]  ? kasan_save_track+0x4f/0x80
[  155.516708][ T5344]  ? kasan_save_track+0x3e/0x80
[  155.519013][ T5344]  ? kasan_save_free_info+0x46/0x50
[  155.521416][ T5344]  ? __kasan_slab_free+0x5c/0x80
[  155.523682][ T5344]  ? kfree+0x1c1/0x630
[  155.526274][ T5344]  ? tomoyo_path_number_perm+0x501/0x630
[  155.529289][ T5344]  ? security_file_ioctl+0xc3/0x2a0
[  155.531882][ T5344]  ? __se_sys_ioctl+0x47/0x170
[  155.534188][ T5344]  ? do_syscall_64+0x14d/0xf80
[  155.536794][ T5344]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.540483][ T5344]  ? kasan_quarantine_put+0xbb/0x1f0
[  155.543184][ T5344]  ? tomoyo_path_number_perm+0x219/0x630
[  155.545879][ T5344]  ? tomoyo_path_number_perm+0x219/0x630
[  155.548411][ T5344]  ? do_vfs_ioctl+0x1166/0x1530
[  155.551020][ T5344]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  155.553588][ T5344]  ? do_futex+0x395/0x420
[  155.555748][ T5344]  ? __fget_files+0x2a/0x420
[  155.557869][ T5344]  ? __fget_files+0x2a/0x420
[  155.559948][ T5344]  ? __fget_files+0x3a0/0x420
[  155.562346][ T5344]  ? __fget_files+0x2a/0x420
[  155.564882][ T5344]  ? bpf_lsm_file_ioctl+0x9/0x20
[  155.567316][ T5344]  ? __pfx_nilfs_ioctl+0x10/0x10
[  155.569581][ T5344]  __se_sys_ioctl+0xfc/0x170
[  155.571988][ T5344]  do_syscall_64+0x14d/0xf80
[  155.574532][ T5344]  ? trace_irq_disable+0x3b/0x150
[  155.577386][ T5344]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.580256][ T5344]  ? clear_bhb_loop+0x40/0x90
[  155.582549][ T5344]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.585498][ T5344] RIP: 0033:0x7f6ec019c819
[  155.587949][ T5344] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  155.597587][ T5344] RSP: 002b:00007f6ec0ff9fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  155.601719][ T5344] RAX: ffffffffffffffda RBX: 00007f6ec0415fa0 RCX: 00007f6ec019c819
[  155.605289][ T5344] RDX: 0000200000000640 RSI: 0000000040786e88 RDI: 0000000000000004
[  155.609494][ T5344] RBP: 00007f6ec0232c91 R08: 0000000000000000 R09: 0000000000000000
[  155.613307][ T5344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  155.616924][ T5344] R13: 00007f6ec0416038 R14: 00007f6ec0415fa0 R15: 00007ffe105c47e8
[  155.621103][ T5344]  </TASK>
[  155.622688][ T5344] Modules linked in:
[  155.625342][ T5344] ---[ end trace 0000000000000000 ]---
[  155.635861][ T5344] RIP: 0010:nilfs_mdt_save_to_shadow_map+0x141/0x1c0
[  155.638947][ T5344] Code: 3f 4c 8d 63 d8 4c 89 e0 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 e7 e8 9e 6f 84 fe 4d 8b 24 24 49 83 c4 30 4c 89 e0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 e7 e8 80 6f 84 fe 49 8b 34 24 4c 89 ff
[  155.648929][ T5344] RSP: 0018:ffffc9000f0ff708 EFLAGS: 00010206
[  155.652142][ T5344] RAX: 0000000000000006 RBX: ffff888047b187a8 RCX: 0000000000000002
[  155.656473][ T5344] RDX: ffff888039f08000 RSI: 0000000000000000 RDI: 0000000000000000
[  155.660247][ T5344] RBP: 0000000000000000 R08: ffff888039f08000 R09: 0000000000000003
[  155.664954][ T5344] R10: 0000000000000406 R11: 0000000000000002 R12: 0000000000000030
[  155.669678][ T5344] R13: dffffc0000000000 R14: ffff88801fd03540 R15: ffff888047b17c48
[  155.673244][ T5344] FS:  00007f6ec0ffa6c0(0000) GS:ffff88808ca49000(0000) knlGS:0000000000000000
[  155.677519][ T5344] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  155.680797][ T5344] CR2: 00007fcd787cfd20 CR3: 000000003734d000 CR4: 0000000000352ef0
[  155.684890][ T5344] Kernel panic - not syncing: Fatal exception
[  155.688269][ T5344] Kernel Offset: disabled
[  155.690390][ T5344] Rebooting in 86400 seconds..