program: r0 = socket$nl_generic(0x11, 0x3, 0x10) sendmsg(r0, &(0x7f0000000640)={&(0x7f00000000c0)=@caif=@dgm={0x25, 0xd}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000000)="4ba72c4cfd81685544f46c3f0800", 0x36}], 0x2, 0x0, 0x0, 0x11000000}, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="1b00000000170000000000e223531300"/32], 0x48) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r2, 0x89f3, &(0x7f0000000180)={'sit0\x00', &(0x7f0000000300)={'ip_vti0\x00', 0x0, 0x0, 0x0, 0x5, 0x0, {{0x5, 0x4, 0x0, 0x2, 0x14, 0x0, 0x0, 0x0, 0x89, 0x0, @rand_addr, @private}}}}) r3 = socket$nl_route(0x10, 0x3, 0x0) socket$inet_sctp(0x2, 0x1, 0x84) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045) r4 = io_uring_setup(0x1b7f, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0x0, 0x20002f7}) r5 = socket$inet(0x2, 0x80001, 0x84) syz_usb_connect(0x5, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="92010000ffd26f10cb060600eb9a0102030109022400010000000009040001020a16d100090507000000000000090589"], 0x0) syz_mount_image$nilfs2(&(0x7f0000000a00), &(0x7f0000000a40)='./file2\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0014d6f3193bdd31d0c569cac5c99c6f764dddde108dbb029faaf2c6609b45fdbbda852eb379fa17433537b5d015ca99f164909c9d2a21935f8ccf0dae5e4f3ea48007a3b52b18295ea4e1da8faadc5c9e576c39de48d7131164e228fead7a337f7b6a948d0e332d086b5fa084bf7f6f3e24d734eaf2e53947630c55a0f47fbed11575034ab6625510f3f1a4c6483a92b0c39c313e5893f00285d9c8620b728602"], 0x1, 0xa04, &(0x7f00000014c0)="$eJzs3U9sXEcdAOB56/916qyhgGloYqBAKqiT2laVXBIbyrVSb0WcqpCGCDeFhEurSqRIFTcUVPXYA1UPuSBaxKUHpApURC+RWu4oFCpVRUatQEiAUlexZ9a7Y7/uem2vvX7fJ/08+3Zm38zzrvfNPs/OBKCyaqs/5+enihBeeO35h3721kvfKUIIxxol6k3l1raGQghFy+PX3YwZtz585txmaRFmV3+m7fDwcuOx4yGEq2E6vB7qYe79R2feWFx88fqNRy5PPnfm7V06fAAAqJQfvXXr1fvee/Mbk//79dGFMNK4P/XP63F7PPb7T8b+fd7/L5rSomk7Gc7KDcTIPz8MZOUGs3oGS+obyvYzVFJuuE19A033bXacAHAQrF/XK2ozLdu12szM2nn/tpsjw8XMpYtLj1/Zo4YCADvm32dDCAtCCCGEqFKsHN7rHggAUHX5eOENruYjC7ansbfRzupfXqxt/njYAb1+/au/v+p/+VnvOOycg/pqSseV/o7SOIZ8HOFA9rit/v3Xsv0MbrGdZeMK+2W8YVk789/rflXW/q0+j3ulrP35eNj9qqz9+Tjd/aqs/SM9bke3yto/2uN2dKus/WM9bke/uiem6fd4NMtvPn/m7+n98h4PALT6r/F/QgghROXiJ3vdAQEA9p18fpyVKOXn8/Hk+fk8PHl+Pi9Qnj/SJn+0TT4AsNHcby/86lqx/n/+7Y6HS+Mu7ojp+Bbbk49H3Gr92x33tN36+2XcEgDV9uTP57/95sLiwNr8v+vnso+y+X/TXL3X4nYaL3go227M/TvdWk+tpNyh3TgoAOATpfNv2fy/d8btqTBUPH5x6fzJuD0R0z+NDI3cvv+BHrcbAOhep/P/T4XW+f9jv2Hw9kOa+wWHG+XX+gsPNPbXev9syf1zcXsypt8fGVu9f+bck0vf2/GjB4Bq+sM3D73ywR8vhbXr/+v//07X/9Nl/Hoca/dBLJD6Cen6wIbr/8db65koK3eytdzhsnKnWsvVs3JDMfJ5N/LxgWPZ49I4hTTuIfV30rjGybL2ZBNkDGflBmPcmbVnImvPhuM92dqefB6aVH89uz8f95DKTQYA2OjKU0//4LGlpfOX3XDDDTcaN/b6nQnYbSd+/MQPT1x56un7Lz7x2IXzF85fmpufPX36wfnZ+QdPrF7XP9F8dR8AOAjWO/173RIAAAAAAAAAAAAAAKBML75OvNfHCAC0+ufZEMKCEEIIIaoUKyv5ir8AAL211fX2t6uxtziff1r3IKWH7v/z5O1IxZYXW/tL1i9mJ/X69a/+/qr/5Wd3tv7G+iIdvf8NNK1UEk13V+/N35w61Vz/3YOd1B/Ccn78x7ur/69Z/V8LndW/8sus/i6nxn0nq/+ODuvfcPynuqv/b7H+u+L28S93Wn/r85/W20nL4YxlxzNeUv/fs+NPa/tt+fhHOzrchfyOd2P9AFBFtb1uwE47u5akXkLqR6d+SPP6fKFpnb2Qle+0/1/L9pOv19ettN/UD/pi3E7dnbRuYL7e4Vbbn9YnnMj2W3TYry17/fTLf5XK2r9Tz+NuK2t/vh7kflXW/uEet6NbZe3P/y73q7L2d/axau+VtX+sx+3oV0diWnY+TOefiZiXtuvZ9vgmz8WB61sAwAHxrTM37r329cHvrq3/P7zhc2f6GDgeP1Nfj9v5595kLOs7Fln5L8X0pzF9Kaa/j+k72f52979tAFBN7/n+nxBCCHEQ49VffEJ+1b//5/oCVVb113/Vj7/a7/6e/3bS6yO/jp8MtskfapM/3CZ/JMvPn6/RNvl3ZftdiVL+Z9rkf7ZN/ufa5E+1yT/cJv/uNvlH2uR/oU3+0Tb5x9rkA9CfPh9T7+8AUB3pe1/O/wBQHWliHed/AKiOT8W07Px/T5t8AKD/fDqmzu8AUCHF6KYT9W133p5N9cukmFAxaX7p9HcelwMJ98b0KzH9akzTeildLr8C7AP//8/v/nGtWJ/v70iW3+l88kWt9Zt3+fo/93XYnvz7e1udz77eYT27Vf/kNusHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoLdqqz/n56eKEF547fmH/nX6L+8WIYRjjRL1pnJrW0NN29Mt+wnhlWItvfXhM+ea049iWoTZUISicX94eLlR03gI4WqYDq+Heph7/9GZNxYXX7x+45HLk8+deXsXfwUAAABw4H0cAAD//0fSPJI=") write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x18, 0xfa00, {0x3, 0x0, 0x2, 0x9}}, 0x20) getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8) fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffffb) io_uring_enter(r4, 0x2219, 0x7721, 0x16, 0x0, 0x0) r6 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r6, 0x29, 0x1f, &(0x7f0000000040)=0x1, 0x4) syz_mount_image$nilfs2(&(0x7f0000000dc0), &(0x7f0000000400)='./file0\x00', 0x90, &(0x7f0000003280)=ANY=[@ANYBLOB="0001def4774774366f0b8a20db13db64e85fc9322c3fe018b91ff1291b4f4c56de7e4543f49818e1307d98d09daa1e2a7dbf88003e9401dc73aad0b7dbb5685565c7825ba8340621faeae92abed19c524ab06c4303258d253722e159642af447aeb096c6a26d345d82f2925163331b0e9157441a9c61dd1051d3b970f9ac12f5975cf1ad4e45acef1a54921c492a77bcb1858b68758ed339608b8e43c733219f1f9e0b867840f821e03bc0e8a497c4d5dde436000090a397637dedb2f3"], 0x1, 0xd99, &(0x7f0000006900)="$eJzs3UtvXNUdAPBzx544LxqHmMZN09glpbiP2CRYpbsaKV2gSqgSnwClgYYa+ghdgIKUsOi2kRAfoIh9F31mgRSxSsWmVb8AYtVNipBoG1UCI9vnjMf/zOjOOLbH4/n9pDtn7v2fe88587hz575OAkZWY+1xcXG6SuntW29dvDcz/r/VKTOtHLNrj+N5bCml1GzNl9JkWN7SxHr62SfXLrWnn+e0ShdSlarW9PTs3da8R1JK19Nsup0m03Mfn7z50gfPLL934saJi2/M3dmZ1gMAwGi596N3f/m3x3947fj/f39mKU20ppft86U8fjRv9y9V6+M5af0PqNrSqm28OBDyjeehEfKNdcjXXk4z5BvvUv6BsNxml3wTNeWPtU3r1G4YZhv/46vG/KbxRmN+fv0/+aoPxw5U869cWX7h6oAqCmy7T2fyLj6DwTByw8qxQa+BANbF44b3uR73LDyY1tLGeyv/7tONzvPDNtjtz7/yh6v8d29Y47B99uunqbSrfI+O5vF4HGE8zNfv978sLx6PaPZYz27HEYbl+EK3eo7tcj22qlv94+div/paTsvrcCbE278/8T0dlvcY6Oye/f8Gw8gOK4NeAQF7VjxvbiUr8XheX4xP1MQP1sQP1cQP18SP1MRhlP3h1d+mm9XG//z4n77f/WFlP9tDOf1Sn/WJ+yP7LT+e99uvBy0/nk8Me9rcf09/+uvbf4/n/38ezv8/m39LJ/MKouwvjPvVW+f+hwuDG13yPRyq81CH/GvPpzbnq6Y2lpPa1jP31WN683zHuuU7vTnfZMh3OG+LHAz1jdsnh8N8ZfujrFfL6zUe2tsM7TgQ6lHemeM5PRjac7xbu8KO7AMhXzMPJ0K7pkK7HgnzfTm0q5re3K64/7zU52SYHo+TlHzhbbvvdym+F/G6jEdz+mZO38np+zn9qEO5o6h8Hrud/18+n9OpWb1wZfnyE3m8fE7vjDUnVqef3+V6Aw+u1+t/ptPm63+OtqY3G+3rhWMb06v29cJkmH6hy/Qn83j5Pfvp2KG16fOXfr78k+1uPIy4q6+9/rPnl5cv/8oTTzzxpPVk0GsmYKctvPryLxauvvb6uSsvP//i5Rcvv3L+ie9/78mnnlpcWNuqX2jftgf2l40f/UHXBAAAAAAAAAAAAOhZdajz5JzW3d+2XE9erk+P18czHMr7Vj4N5T4G5frPbvd1KddvHt+FOrL9duNyokG3Eejs3+7/azCM7LCy4i7+wN4w6P7/yn0PS3r03D+Prw4l292nN68v4/0L4UHs9f7nlL+/+v9r9X/V8/ov9Jg1ubVy/3jv0D/aik2nei0/tr/cB3aqv/L/lMsvrXks9Vb+yu9C+fFGpT36cyj/cI/l39f+01sr/y+5/PKyzZ3ttfz1GleNzfWI+43LfQDjfuPir6H95d5+fbd/ix213crlwygbln4m+zUs/X92U5Zb1oN59dw6Tlfuvx37O+i3/uW+3+V34JGw/Krm903/n8Otrv/P8vlb0P8n7DsfOv5nMIzssLKyMtCuT0a135W9YtCv/6C3IQdd/qBf/zqx/8/4fyn2/xnjsf/PGI/9f8Z47F8rxmP/n/H1jP1/xvjJsNzYP+h0TfwrNfFTNfGv1sRP18Tj/7cYn62Jn6mJz9TEH66JP1oTP1sT/0ZN/LGa+OM18bma+H739ZyOavthlMV+I33/YXSU4z/dvv9TNXFgeMV+neP3+5s1cWB4lfM8fL9hBFWd79gR97eX/bhv5vSdnL6f0492rILshm/l9Ns5/U5Ov5vTczmdz+lCTvUNOdx+869TZ25WG+f5HQvxXs8njdcDxPvEnO+xPvH4XL/ns57ssZydKn+Ll4MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADI3G2uPi4nSV0tu33rr4n6kf/Hh1ykwrx+za43geW0opNVNKVR4fD8u7PrGefvbJtUud0ipdWHss4+nZu615j6zOn2bT7TSZnvv45M2XPnhm+b0TN05cfGPuzs60HgAAAEbDFwEAAP//ManlwQ==") r7 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) ioctl$NILFS_IOCTL_CLEAN_SEGMENTS(r7, 0x40786e88, &(0x7f0000000640)={{0x0, 0x0, 0x40, 0xd, 0xe2}, {0x0, 0x0, 0x10, 0x20c, 0xfffffffffffffff8}, {&(0x7f0000000340)=[0x6, 0x3, 0x1ffffc], 0x3, 0x8, 0x1, 0x2}, {0x0, 0x0, 0x28, 0x0, 0xffffffffffffff2d}, {&(0x7f00000003c0)=[0x9], 0x1, 0x8, 0x98f, 0xffff}}) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', 0x0}) r9 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYRES16=r8, @ANYRES32=r8], 0x44}, 0x1, 0x0, 0x0, 0xc0d0}, 0x10) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00'}) r10 = socket$nl_route(0x10, 0x3, 0x0) getresuid(&(0x7f0000000100), &(0x7f0000000300), &(0x7f00000003c0)) sendmsg$nl_route(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=@ipv6_newroute={0x1c, 0x18, 0x1, 0x70bd2c, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x3, 0xc8}}, 0x1c}}, 0x0) [ 100.945037][ T5301] Bluetooth: hci0: command tx timeout [ 101.275179][ T5324] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 101.425327][ T5324] usb 5-1: Using ep0 maxpacket: 16 [ 101.431347][ T5324] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0 [ 101.436197][ T5324] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid wMaxPacketSize 0 [ 101.441210][ T5324] usb 5-1: config 0 interface 0 has no altsetting 0 [ 101.459028][ T5324] usb 5-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb [ 101.474317][ T5324] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 101.478674][ T5324] usb 5-1: Product: syz [ 101.481901][ T5324] usb 5-1: Manufacturer: syz [ 101.491744][ T5324] usb 5-1: SerialNumber: syz [ 101.500105][ T5324] usb 5-1: config 0 descriptor?? [ 101.748589][ T5327] loop0: detected capacity change from 0 to 2048 [ 101.780923][ T5327] NILFS (loop0): invalid segment: Checksum error in segment payload [ 101.784393][ T5327] NILFS (loop0): trying rollback from an earlier position [ 101.838506][ T5327] NILFS (loop0): recovery complete [ 101.865621][ T5330] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 101.933914][ T5327] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000006: 0000 [#1] SMP KASAN NOPTI [ 101.939676][ T5327] KASAN: null-ptr-deref in range [0x0000000000000030-0x0000000000000037] [ 101.943701][ T5327] CPU: 0 UID: 0 PID: 5327 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 101.948352][ T5327] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 101.954233][ T5327] RIP: 0010:nilfs_mdt_save_to_shadow_map+0x141/0x1c0 [ 101.958386][ T5327] Code: 3f 4c 8d 63 d8 4c 89 e0 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 e7 e8 2e a1 84 fe 4d 8b 24 24 49 83 c4 30 4c 89 e0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 e7 e8 10 a1 84 fe 49 8b 34 24 4c 89 ff [ 101.969522][ T5327] RSP: 0018:ffffc9000de6f708 EFLAGS: 00010206 [ 101.972230][ T5327] RAX: 0000000000000006 RBX: ffff888047d387a8 RCX: 0000000000000002 [ 101.975665][ T5327] RDX: ffff88803a840000 RSI: 0000000000000000 RDI: 0000000000000000 [ 101.979669][ T5327] RBP: 0000000000000000 R08: ffff88803a840000 R09: 0000000000000003 [ 101.982802][ T5327] R10: 0000000000000406 R11: 0000000000000002 R12: 0000000000000030 [ 101.985887][ T5327] R13: dffffc0000000000 R14: ffff88804084a940 R15: ffff888047d37c48 [ 101.989076][ T5327] FS: 00007f36db1b26c0(0000) GS:ffff88808ca4f000(0000) knlGS:0000000000000000 [ 101.993124][ T5327] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 101.996225][ T5327] CR2: 00007f36ce3ff000 CR3: 000000003c1c2000 CR4: 0000000000352ef0 [ 102.000467][ T5327] Call Trace: [ 102.002092][ T5327] [ 102.003240][ T5327] nilfs_clean_segments+0x162/0xa50 [ 102.005489][ T5327] ? nilfs_ioctl_move_blocks+0x94b/0xda0 [ 102.008043][ T5327] ? __pfx_nilfs_clean_segments+0x10/0x10 [ 102.010592][ T5327] ? _copy_from_user+0x94/0xb0 [ 102.012783][ T5327] nilfs_ioctl+0x261f/0x2780 [ 102.015535][ T5327] ? __pfx_nilfs_ioctl+0x10/0x10 [ 102.018912][ T5327] ? kasan_save_track+0x4f/0x80 [ 102.021787][ T5327] ? kasan_save_track+0x3e/0x80 [ 102.023854][ T5327] ? kasan_save_free_info+0x46/0x50 [ 102.026468][ T5327] ? __kasan_slab_free+0x5c/0x80 [ 102.028561][ T5327] ? kfree+0x1c1/0x630 [ 102.030295][ T5327] ? tomoyo_path_number_perm+0x501/0x630 [ 102.032796][ T5327] ? security_file_ioctl+0xc3/0x2a0 [ 102.034970][ T5327] ? __se_sys_ioctl+0x47/0x170 [ 102.037152][ T5327] ? do_syscall_64+0x14d/0xf80 [ 102.039621][ T5327] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 102.042876][ T5327] ? kasan_quarantine_put+0xbb/0x1f0 [ 102.045323][ T5327] ? tomoyo_path_number_perm+0x219/0x630 [ 102.047682][ T5327] ? tomoyo_path_number_perm+0x219/0x630 [ 102.050114][ T5327] ? do_vfs_ioctl+0x1166/0x1530 [ 102.052520][ T5327] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 102.055290][ T5327] ? do_futex+0x333/0x420 [ 102.058100][ T5327] ? __fget_files+0x2a/0x420 [ 102.060640][ T5327] ? __fget_files+0x2a/0x420 [ 102.062704][ T5327] ? __fget_files+0x3a0/0x420 [ 102.064861][ T5327] ? __fget_files+0x2a/0x420 [ 102.066821][ T5327] ? bpf_lsm_file_ioctl+0x9/0x20 [ 102.068917][ T5327] ? __pfx_nilfs_ioctl+0x10/0x10 [ 102.070904][ T5327] __se_sys_ioctl+0xfc/0x170 [ 102.073083][ T5327] do_syscall_64+0x14d/0xf80 [ 102.075368][ T5327] ? trace_irq_disable+0x3b/0x150 [ 102.077956][ T5327] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 102.081015][ T5327] ? clear_bhb_loop+0x40/0x90 [ 102.083163][ T5327] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 102.085742][ T5327] RIP: 0033:0x7f36da39c799 [ 102.087738][ T5327] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 102.098869][ T5327] RSP: 002b:00007f36db1b1fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 102.102504][ T5327] RAX: ffffffffffffffda RBX: 00007f36da615fa0 RCX: 00007f36da39c799 [ 102.106413][ T5327] RDX: 0000200000000640 RSI: 0000000040786e88 RDI: 000000000000000c [ 102.110613][ T5327] RBP: 00007f36da432c99 R08: 0000000000000000 R09: 0000000000000000 [ 102.114287][ T5327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 102.117997][ T5327] R13: 00007f36da616038 R14: 00007f36da615fa0 R15: 00007ffdfc30e948 [ 102.121765][ T5327] [ 102.123415][ T5327] Modules linked in: [ 102.126534][ T5327] ---[ end trace 0000000000000000 ]--- [ 102.148382][ T5327] RIP: 0010:nilfs_mdt_save_to_shadow_map+0x141/0x1c0 [ 102.151352][ T5327] Code: 3f 4c 8d 63 d8 4c 89 e0 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 e7 e8 2e a1 84 fe 4d 8b 24 24 49 83 c4 30 4c 89 e0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 e7 e8 10 a1 84 fe 49 8b 34 24 4c 89 ff [ 102.163832][ T5327] RSP: 0018:ffffc9000de6f708 EFLAGS: 00010206 [ 102.166556][ T5327] RAX: 0000000000000006 RBX: ffff888047d387a8 RCX: 0000000000000002 [ 102.169882][ T5327] RDX: ffff88803a840000 RSI: 0000000000000000 RDI: 0000000000000000 [ 102.173252][ T5327] RBP: 0000000000000000 R08: ffff88803a840000 R09: 0000000000000003 [ 102.177472][ T5327] R10: 0000000000000406 R11: 0000000000000002 R12: 0000000000000030 [ 102.181276][ T5327] R13: dffffc0000000000 R14: ffff88804084a940 R15: ffff888047d37c48 [ 102.186178][ T5327] FS: 00007f36db1b26c0(0000) GS:ffff88808ca4f000(0000) knlGS:0000000000000000 [ 102.190223][ T5327] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 102.192989][ T5327] CR2: 00007f36ce3ff000 CR3: 000000003c1c2000 CR4: 0000000000352ef0 [ 102.196979][ T5327] Kernel panic - not syncing: Fatal exception [ 102.200675][ T5327] Kernel Offset: disabled [ 102.202836][ T5327] Rebooting in 86400 seconds..